RuggedCom RuggedRouter RX1000 User manual
RuggedRouter®
RX1000/RX1100 User Guide
RuggedCom Inc.
30 Whitmore Road,
Woodbridge, Ontario, Canada
L4L 7Z4
Web: www.ruggedcom.com
Te : (905) 856-5288
Fax: (905) 856-1995
To Free: (888) 264-0006
RUGGEDROUTER® USER GUIDE
FOR USE WITH RX1000/RX1100 PRODUCTS
Version 1.13.3 – Octo er 20, 2008
RuggedCom
30 Whitmore Road
Wood ridge, Ontario
Canada L4L7Z4
Tel: (905) 856-5288
Fax: (905) 856-1995
Toll Free: (888) 264-0006
support@ruggedcom.com
http://www.ruggedcom.com
Disclaimer
RuggedCom Inc. makes no warranty of any kind with regard to this
material.
RuggedCom shall not e lia le for errors contained herein or for
consequential damages in connection with the furnishing,
performance, or use of this material.
Warranty
Five (5) years from date of purchase, return to factory. For warranty
details, visit www.ruggedcom.com or contact your customer service
representative.
COPYRIGHT © Octo er 2008 RuggedCom Inc.
ALL RIGHTS RESERVED
This document contains proprietary information, which is protected y
copyright. All rights are reserved.
The RuggedRouter® includes components licensed under the GPL and
BSD style licenses. The full licences of such are included in an
associated document.
No part of this document may e photocopied, reproduced or
translated to another language without the prior written consent of
RuggedCom Inc.
Linux® is the registered trademark of Linus Torvalds in the U.S. and
other countries.
Gauntlet® is the registered trademark of Industrial Defender
Corporation.
A out this User Guide
About this ser Guide
This guide is concerned with aiding the user in the configuration and operation of the
RuggedRouter® using the RuggedCom command line, setup menu and web
management interfaces. Specifically, this guide details aspects of:
•Accessing the User Interfaces
•Security
•Configuring the router
•Status determination
•erformance measurement
•Uploading and downloading files
•Dealing with alarms
This guide also details operation of the RX1100 Gauntlet security appliance.
This guide is intended solely for the purpose of familiarizing the reader with the ways
that the RuggedRouter can be used to support routing over Ethernet, T1/E1, T3
ADSL, DDS and Frame Relay as well as act as a Serial server and time
synchronization device.
Applicable Firmware Revision
This guide is applicable to RuggedRouter ROX 1.13.3 software revision.
Who Should se This ser Guide
This guide is to be used by network technical support personnel who are familiar with
the operation of networks. Others who might find the book useful are network and
system planners, system programmers and line technicians.
How To se This ser Guide
Each chapter has been prepared with a feature description, an application section and a
description of the default mode of operation. It is recommended that you use this
guide along with the following applicable documents.
RuggedRouter® Installation Guide
Rugged MediaConverter Installation Guide
RuggedCom Fiber Guide
Gauntlet® Command and Control Center (CCC) User Manual,
Gauntlet Virtual olling Controller (V C) User Manual
Gauntlet System Installation Manual
Gauntlet System Best ractices
RuggedCom 1
RuggedRouter® User Guide
Document Conventions
This publication uses the following conventions:
Note: Means reader take note. Notes contain helpful suggestions or references to materials
not contained in this guide.
He pfu Hint
This type of note often indicates useful shortcuts or methods employed by other RuggedCom
customers.
Quick Start Recommendations
The following description is included to aid those users experienced with
communications equipment that may wish to attempt to configure the router without
fully reading the guide.
1. Locate/mount the chassis in its final resting place and apply power.
2. The router can be configured through its web management interface, or for
advanced users, through ssh. The default Ethernet addresses for ports one through
four are 192.168.1.1 through 192.168.4.1. Two shell accounts, rrsetup and root,
are provided. Both accounts have a default password of “admin”. The web
management interface uses the root account password. The rrsetup account
provides a shell that configures such items as passwords, addresses, date/time and
services offered by the router. The root account provides a full shell.
3. Attach a C running terminal emulation software to the RS232 port and apply
power to the chassis (default baud rate, data bits, parity - “38400 8 n 1”, no
hardware/software flow control). Set the terminal type to VT100. ress ENTER
to obtain a login prompt.
Initia Configuration Before Attaching To The Network
4. Login as the rrsetup user with password “admin”.
5. Change the root and rrsetup passwords from the she . Record the
passwords in a secure manner. If RADIUS authentication will be employed,
configure at least one authentication server address.
6. Configure the router’s hostname, I address, subnet mask, and gateway addresses
for the built-in Ethernet ports.
7. For an RX1100 router, the Gauntlet Security application may be configured with
the passphrase allocated to the network the network address of the Command and
Control Center (CCC). Note that you must also configure and activate the firewall
before using the Gauntlet.
8. Ensure that the date, time and timezone fields are correctly set.
9. If Web or SSH services will not be used, these can be disabled from the setup
shell.
2 RuggedCom
A out this User Guide
10. All further configuration is accomplished through the web management interface.
Attach the configuring host to one of the Ethernet ports configured above. oint
your web browser at the address for that port, use https and specify a port number
of 10000, e.g. https://192.168.1.1:10000 (or otherwise if configured in step 4).
Login with the root user and password (configured above). If RADIUS
authentication is configured and a server is available, you may also login via a
RADIUS user.
Basic Web Based Configuration
11. Change the router password from the System menu, Change Password sub-
menu.
12. If you are using the web management interface you may wish to restrict the
allowed users to a specific subnet. This can be done in the Webmin menu,
Webmin Configuration, IP Access Contro sub-menu.
13. If you are planning to SSH in to the router you may wish to restrict the allowed
users to a specific subnet. This can be done in the Servers menu, SSH Server,
Networking sub-menu.
14. The router's local hostname may configured in the System Menu, System
Hostname sub-menu.
15. The router may be configured to log to a remote server by the Maintenance
menu, System Logs sub-menu. See the chapter “Maintaining The Router” for
more details.
16. The router's DNS settings may configured in the DNS C ients sub-menu. You
may also specify the I addresses of frequently used hosts. See the chapter
“Configuring Networking” for more details.
Physica Interface Re ated
17. Ethernet port parameters may be changed in the Networking menu, Ethernet sub-
menu. The Ethernet Interfaces sub-menu will configure the I address, subnet
mask, gateway address, proxy arping and media type of each interface. See the
chapter “Configuring Ethernet Interfaces” for more details.
18. If your router is equipped with T1/E1 WAN interfaces, the Networking menu,
T1/E1 sub-menu will allow you to configure them with Frame Relay or
connections. See the chapter “Configuring Frame Relay/ And T1/E1” for
more details.
19. If your router is equipped with T3 WAN interfaces, the Networking menu, T3
sub-menu will allow you to configure them with Frame Relay or connections.
See the chapter “Configuring Frame Relay/ And T3” for more details.
20. If your router is equipped with DDS interfaces, the Networking menu, DDS sub-
menu will allow you to configure them with Frame Relay or connections.
See the chapter “Configuring Frame Relay/ And DDS” for more details.
21. If your router is equipped with ADSL interfaces, the Networking menu, ADSL
sub-menu will allow you to configure them. See the chapter “Configuring oE
On ADSL” for more details. If you wish to use OE with an external ADSL
modem, the Networking menu, Ethernet sub-menu will configure it.
RuggedCom 3
RuggedRouter® User Guide
22. If your router is equipped with an embedded modem, the Networking menu,
Modem sub-menu will allow you to configure it with or incoming console
connections. See the chapter “Configuring And Modem” for more details.
23. If your router is equipped with Serial Interfaces, the Servers menu, Seria
Protoco s sub-menu will allow you to configure them with an operating protocol.
See the chapter “Configuring Serial rotocols” for more details.
24. If your router is equipped with a recision Time rotocol Card, the Servers menu,
IRIGB sub-menu will allow you to enable and configure its output ports. See the
chapter “Configuring IRIGB” for more details.
Additiona Configuration
25. You may wish to configure a backup interface to use in the event of a failure of
your default gateway interface. This can be done in the Networking menu,
Network Configuration, End To End Backup sub-menu.
26. If you are planning to connect your router to the Internet, configure the firewall
and then activate it. This can be done in the Networking menu, Shorewa
Firewa sub-menu.
27. The router provides a default event logging configuration. You can modify this
configuration through the Maintenance menu, System Logs sub-menu. Remote
logging can be activated here.
28. The routers SSH and Web Management interfaces are enabled by default. The
routers DHC server, I sec V N server, NT server, OS F/RI protocol, VRR
protocol and firewall are disabled by default. To changes these services visit the
System menu, Bootup and Shutdown sub-menu.
29. You can install static I and Multicast routings for Ethernet and WAN interfaces
via the Networking menu, Network Configuration, Routing and Defau t Route
and Static Mu ticast Routing sub-menus.
30. You can configure the NT server through the Servers menu, NTP Server sub-
menu. See the chapter “Configuring NT ” for more details.
31. You can configure SSH through the Servers menu, SSH Server sub-menu. SSH
can be set-up to issue a login banner from this menu. See the chapter
“Configuring SSH” for more details.
32. Traffic prioritization can be configured on the network interfaces through the
Networking menu, Traffic Prioritization sub-menu.. See the chapter “Traffic
rioritization” for more details.
33. SNM is disabled by default. You can configure SNM by following the
instructions in the Appendix on SNM . You may allow read and write access, set
community names, enable traps and program the router to issue traps with a
specific client address.
34. If your router is an RX1100 you may configure and activate the Snort Intrusion
Detection system and the Gauntlet Security Appliance. If you decide to forward
daily email summaries you must configure a mail forwarder in the Maintenance
menu Misce aneous sub-menu Outgoing Mai sub-menu.
4 RuggedCom
A out this User Guide
35. When your routers configuration is stable, it is recommended that the
configuration should be uploaded from the router and stored as a backup. The
Maintenance menu Backup And Restore sub-menu will be useful.
36. Should you need to transfer files to or from the router, the Maintenance menu
Up oad/Down oad Fi es sub-menu will be useful.
37. Further concerns such as ensuring robustness, measuring and optimizing
performance are dealt with by reading the guide fully.
RuggedCom 5
RuggedRouter® User Guide
Table Of Contents
About this User Guide............................................................................................................................1
Applicable Firmware Revision..........................................................................................................1
Who Should Use This User Guide.....................................................................................................1
How To Use This User Guide............................................................................................................1
Document Conventions......................................................................................................................2
Quick Start Recommendations...........................................................................................................2
Table Of Contents..................................................................................................................................6
Table Of Figures..................................................................................................................................18
Chapter 1 - Setting Up And Administering The Router......................................................................25
Introduction ...............................................................................................................................25
Access Methods.......................................................................................................................25
Accounts And assword Management.....................................................................................25
Default Configuration..............................................................................................................25
Accessing The RuggedRouter Command rompt...........................................................................26
From the Console ort ...............................................................................................................26
From SSH ....................................................................................................................................26
The RuggedRouter Setup Shell........................................................................................................26
Configuring asswords................................................................................................................27
Configuring I Address Information ...........................................................................................27
Setting The Hostname .................................................................................................................28
Configuring RADIUS Authentication..........................................................................................28
Enabling And Disabling The SSH and Web Server ....................................................................28
Enabling And Disabling The Gauntlet Security Appliance.........................................................28
Configuring The Date, Time And Timezone .........................................................................29
Displaying Hardware Information................................................................................................29
Restoring A Configuration ..........................................................................................................30
The RuggedRouter Web Interface....................................................................................................31
Using a Web Browser to Access the Web Interface....................................................................31
SSL Certificate Warnings ...........................................................................................................31
The Structure of the Web Interface..............................................................................................32
Using The LED Status anel .........................................................................................................33
Obtaining Chassis Information .......................................................................................................34
Chapter 2 - Webmin Configuration.....................................................................................................35
Introduction......................................................................................................................................35
Webmin Configuration Menu .........................................................................................................35
I Access Control ........................................................................................................................35
orts And Addresses ...............................................................................................................36
Change Help Server.....................................................................................................................36
Logging .......................................................................................................................................37
Authentication .............................................................................................................................38
Webmin Events Log ....................................................................................................................38
Chapter 3 - Configure Webmin Users..................................................................................................39
Introduction......................................................................................................................................39
6 RuggedCom
Ta le Of Contents
Webmin User and Group Fundamentals..........................................................................................39
RADIUS User Access Control Fundamentals.................................................................................39
Webmin Users Menu.......................................................................................................................40
Edit Webmin User menu..................................................................................................................41
Current Login Sessions Menu..........................................................................................................41
assword Restrictions Menu............................................................................................................42
Chapter 4 - Configuring The System...................................................................................................43
Introduction......................................................................................................................................43
Bootup And Shutdown ....................................................................................................................43
Change assword Command ........................................................................................................44
Scheduled Commands .....................................................................................................................44
Scheduled Cron Jobs .......................................................................................................................46
System Hostname.............................................................................................................................47
System Time ...................................................................................................................................47
Chapter 5 - Configuring Networking...................................................................................................49
Introduction......................................................................................................................................49
Network Configuration....................................................................................................................49
Core Settings................................................................................................................................50
Dummy Interface..........................................................................................................................51
Routing And Gateways................................................................................................................51
Default Route Table.................................................................................................................51
Configured Static Routes.........................................................................................................52
Manually Entered Static Routes ..............................................................................................52
Static Multicast Routing...............................................................................................................53
DNS Client...................................................................................................................................54
Host Addresses.............................................................................................................................54
End To End Backup.....................................................................................................................55
Configuring End To End Backup.............................................................................................56
Current Routing & Interface Table .............................................................................................56
Chapter 6 - Configuring Ethernet Interfaces........................................................................................57
Introduction......................................................................................................................................57
Ethernet Interface Fundamentals..................................................................................................57
LED Designations ...................................................................................................................57
VLAN Interface Fundamentals....................................................................................................57
VLAN Tag...............................................................................................................................57
RuggedRouter Functions Supporting VLANs.........................................................................58
oE On Native Ethernet Interfaces Fundamentals .................................................................58
Ethernet Configuration.....................................................................................................................59
Ethernet Interfaces........................................................................................................................59
Editing Currently Active Interfaces ............................................................................................60
Virtual Interfaces .....................................................................................................................61
Virtual Lan Interfaces...............................................................................................................61
Edit Boot Time Interfaces ...........................................................................................................61
oE On Native Ethernet Interfaces..........................................................................................62
Edit oE Interface....................................................................................................................63
Logs......................................................................................................................................63
Current Routes & Interface Table................................................................................................64
RuggedCom 7
RuggedRouter® User Guide
Chapter 7 - Configuring Frame Relay/ And T1/E1.......................................................................65
Introduction......................................................................................................................................65
T1/E1 Fundamentals....................................................................................................................65
Frame Relay.............................................................................................................................65
Location Of Interfaces And Labeling.......................................................................................66
LED Designations ...................................................................................................................66
Included With T1E1.................................................................................................................66
T1/E1 Configuration .......................................................................................................................67
T1/E1 Network Interfaces............................................................................................................67
Strategy For Creating Interfaces...............................................................................................67
Naming Of Logical Interfaces..................................................................................................68
Editing A T1/E1 Interface ...........................................................................................................69
T1 Settings ..............................................................................................................................69
E1 Settings ..............................................................................................................................69
Editing A Logical Interface (Frame Relay) .................................................................................70
Frame Relay Link arameters..................................................................................................70
Frame Relay DLCIs..................................................................................................................71
Editing A Logical Interface ( ) ...............................................................................................71
T1/E1 Statistics............................................................................................................................72
Link Statistics...........................................................................................................................72
Frame Relay Interface Statistics...............................................................................................73
Interface Statistics............................................................................................................74
T1/E1 Loopback...........................................................................................................................75
Current Routes & Interface Table................................................................................................76
Upgrading Software ....................................................................................................................76
Upgrading Firmware ...................................................................................................................76
Chapter 8 - Configuring Frame Relay/ And T3.............................................................................77
Introduction......................................................................................................................................77
T3 Fundamentals..........................................................................................................................77
Location Of Interfaces And Labeling.......................................................................................77
LED Designations ...................................................................................................................77
T3 Configuration .........................................................................................................................78
T3 Network Interfaces..................................................................................................................78
Naming Of Logical Interfaces..................................................................................................78
Editing A T3 Interface .................................................................................................................79
Editing A Logical Interface (Frame Relay) .................................................................................79
Editing A Logical Interface ( ) ...............................................................................................80
T3 Statistics..................................................................................................................................80
Current Routes & Interface Table................................................................................................80
Upgrading Software ....................................................................................................................81
Chapter 9 - Configuring Frame Relay/ And DDS.........................................................................83
Introduction......................................................................................................................................83
DDS Fundamentals......................................................................................................................83
Location Of Interfaces And Labeling.......................................................................................83
LED Designations ...................................................................................................................83
DDS Configuration .........................................................................................................................84
DDS Network Interfaces..............................................................................................................84
Naming Of Logical Interfaces..................................................................................................85
Editing A Logical Interface (Frame Relay) .................................................................................85
8 RuggedCom
Ta le Of Contents
Editing A Logical Interface ( ) ...............................................................................................86
DDS Statistics..............................................................................................................................86
Link Statistics...........................................................................................................................86
Frame Relay And Interface Statistics...............................................................................87
DDS Loopback.............................................................................................................................87
Current Routes & Interface Table................................................................................................87
Upgrading Software ....................................................................................................................87
Chapter 10 - Configuring oE/Bridged Mode On ADSL................................................................89
Introduction......................................................................................................................................89
ADSL Fundamentals....................................................................................................................89
oE/Bridged Mode Fundamentals...........................................................................................89
Authentication, Addresses and DNS Servers .........................................................................90
oE MTU Issues ...............................................................................................................90
Bridged Mode...........................................................................................................................90
Location Of Interfaces And Labeling.......................................................................................90
LED Designations ...................................................................................................................90
ADSL Configuration .......................................................................................................................91
ADSL Network Interfaces............................................................................................................91
Editing A Logical Interface ( oE) ..........................................................................................92
Editing A Logical Interface (Bridged) ........................................................................................93
ADSL Statistics............................................................................................................................94
Current Routes & Interface Table................................................................................................94
Upgrading Software ....................................................................................................................94
Chapter 11 - Configuring and Modem.........................................................................................95
Introduction......................................................................................................................................95
and Modem Fundamentals...................................................................................................95
Interface............................................................................................................................95
Authentication, Addresses and DNS Servers...........................................................................95
When the Modem Connects.....................................................................................................95
LED Designations....................................................................................................................95
Modem Configuration .............................................................................................................96
Modem Configuration .................................................................................................................96
Modem Client Connections..................................................................................................98
Modem Client ......................................................................................................................99
Modem Server....................................................................................................................100
Modem Incoming Call Logs .....................................................................................................101
Modem Logs ......................................................................................................................101
Modem Connection Logs ..................................................................................................102
Current Routes & Interface Table..............................................................................................102
Chapter 12 - Configuring and Cellular Modem.........................................................................103
Introduction....................................................................................................................................103
and Cellular Modem Fundamentals...................................................................................103
Interface..........................................................................................................................103
Authentication, Addresses and DNS Servers .......................................................................103
When the Modem Connects...................................................................................................103
LED Designations .................................................................................................................103
Cellular Modem Configuration..............................................................................................104
Cellular Modem Configuration..................................................................................................104
RuggedCom 9
RuggedRouter® User Guide
Modem Status............................................................................................................................105
Modem Client Connections................................................................................................106
Modem Client ....................................................................................................................106
Logs, Connection Logs...............................................................................................107
Current Route and Interfaces Table...........................................................................................107
Chapter 13 - Configuring The Firewall..............................................................................................109
Introduction....................................................................................................................................109
Firewall Fundamentals ..................................................................................................................109
Stateless vs Stateful Firewalls................................................................................................109
Linux® netfilter, iptables And The Shoreline Firewall ........................................................109
Network Address Translation................................................................................................110
ort Forwarding.....................................................................................................................111
Shorewall Quick Setup...................................................................................................................111
ShoreWall Terminology And Concepts.........................................................................................113
Zones......................................................................................................................................113
Interfaces................................................................................................................................113
Hosts.......................................................................................................................................114
olicy......................................................................................................................................114
Masquerading And SNAT......................................................................................................115
Rules.......................................................................................................................................116
Configuring The Firewall And V N..............................................................................................117
Route Based Virtual rivate Networking...............................................................................117
olicy Based Virtual rivate Networking..............................................................................118
Virtual rivate Networking To A DMZ.................................................................................119
Firewall Configuration...................................................................................................................120
Network Zones...........................................................................................................................122
Network Interfaces.....................................................................................................................122
Network Zone Hosts..................................................................................................................124
Default olicies..........................................................................................................................125
Masquerading.............................................................................................................................126
Firewall Rules............................................................................................................................127
Static NAT.................................................................................................................................128
TC (Traffic Control) Interfaces, Classes, and Rules..................................................................129
Actions When Stopped...............................................................................................................129
Chapter 14 - Traffic Control..............................................................................................................131
Traffic Control (TC) Fundamentals...............................................................................................131
Traffic Control Example............................................................................................................131
TC Interfaces..........................................................................................................................131
TC Classes..............................................................................................................................132
TC Rules................................................................................................................................132
Traffic Control Configuration........................................................................................................133
TC Interfaces (tcdevices)...........................................................................................................133
TC Classes..................................................................................................................................134
TC Rules....................................................................................................................................136
Hints on optimizing the TC Rule table..................................................................................138
Chapter 15 - Configuring I sec V N ................................................................................................139
Introduction....................................................................................................................................139
V N Fundamentals ...................................................................................................................139
10 RuggedCom
Ta le Of Contents
I sec Modes...........................................................................................................................139
olicy Vs Route Based V Ns................................................................................................140
Supported Encryption rotocols ...........................................................................................140
ublic Key And re-shared Keys...........................................................................................141
X509 Certificates...................................................................................................................141
NAT Traversal.......................................................................................................................141
Other Configuration Supporting I Sec..................................................................................141
The Openswan Configuration rocess...................................................................................142
I sec and Router Interfaces....................................................................................................142
Ipsec V N Configuration...............................................................................................................143
V N Main Menu Before Key Generation..................................................................................143
V N Main Menu ......................................................................................................................143
Server Configuration .................................................................................................................144
ublic Key .................................................................................................................................145
reshared Keys ..........................................................................................................................145
List Certificates..........................................................................................................................146
V N Connections ......................................................................................................................146
I sec V N Connection Details..............................................................................................147
Left/Right System's Settings..................................................................................................148
Export Configuration.............................................................................................................148
Showing I sec Status ................................................................................................................149
I Sec X.509 Roaming Client Example......................................................................................150
Select A Certificate Authority................................................................................................150
Generate X.509 Certificates .................................................................................................151
V N Networking arameters.................................................................................................151
Client Configuration..............................................................................................................151
Router I Sec Configuration...................................................................................................151
Firewall I Sec Configuration.................................................................................................152
Ethernet ort Configuration...................................................................................................152
Chapter 16 - Configuring Dynamic Routing .....................................................................................153
Introduction....................................................................................................................................153
Quagga, RI and OS F..............................................................................................................153
RI Fundamentals......................................................................................................................153
OS F Fundamentals...................................................................................................................154
Link State Advertisements.....................................................................................................154
Key OS F And RI arameters.................................................................................................154
Network Areas.......................................................................................................................154
Router-ID...............................................................................................................................155
Hello Interval and Dead Interval............................................................................................155
Active/ assive Interface Default............................................................................................155
Redistributing Routes.............................................................................................................155
Link Detect.............................................................................................................................156
Configuring OS F Link Costs...............................................................................................156
OS F Authentication.............................................................................................................156
RI Authentication.................................................................................................................156
OS F And Antispoofing........................................................................................................156
Administrative Distances.......................................................................................................157
OS F And VRR Example Network.........................................................................................157
Area And Subnets..................................................................................................................158
VRR Operation....................................................................................................................158
RuggedCom 11
RuggedRouter® User Guide
Dynamic Routing Configuration....................................................................................................159
Enable rotocols........................................................................................................................159
Core............................................................................................................................................160
Core Global arameters.........................................................................................................160
Core Interface arameters......................................................................................................161
View Core Configuration.......................................................................................................161
OS F..........................................................................................................................................161
OS F Global arameters.......................................................................................................162
OS F Interfaces.....................................................................................................................164
OS F Network Areas.............................................................................................................165
OS F Status...........................................................................................................................165
View OS F Configuration.....................................................................................................165
RI .............................................................................................................................................166
RI Global arameters...........................................................................................................166
RI Key Chains......................................................................................................................167
RI Interfaces.........................................................................................................................168
RI Networks.........................................................................................................................169
RI Status...............................................................................................................................169
View RI Configuration........................................................................................................169
Chapter 17 - Link Backup..................................................................................................................171
Introduction....................................................................................................................................171
Link Backup Fundamentals........................................................................................................171
ath Failure Discovery...........................................................................................................171
Use Of Routing rotocols And The Default Route................................................................172
Link Backup Configuration............................................................................................................172
Link Backup Main Menu...........................................................................................................172
Link Backup Configurations......................................................................................................172
Edit Link Backup Configuration................................................................................................173
Link Backup Logs......................................................................................................................174
Link Backup Status....................................................................................................................174
Test Link Backup.......................................................................................................................174
Chapter 18 - Configuring VRR ........................................................................................................177
Introduction....................................................................................................................................177
VRR Fundamentals .................................................................................................................177
The roblem With Static Routing..........................................................................................177
The VRR Solution...............................................................................................................177
VRR Terminology...............................................................................................................177
VRR Configuration......................................................................................................................180
VRR Main Menu.....................................................................................................................180
VRR Configuration Menu.......................................................................................................180
Editing A VRR Instance..........................................................................................................181
Editing A VRR Group.............................................................................................................182
Viewing VRR Instances Status ...............................................................................................182
Chapter 19 - Configuring Traffic rioritization ................................................................................183
Introduction....................................................................................................................................183
Traffic rioritization Fundamentals ..........................................................................................183
riority Queues.......................................................................................................................183
Filters.....................................................................................................................................183
12 RuggedCom
Ta le Of Contents
TOS rioritization..................................................................................................................184
rioritization Example...............................................................................................................185
Configuring Traffic rioritization..................................................................................................186
Traffic rioritization Main Menu...............................................................................................186
Interface rioritization Menu.....................................................................................................186
rioritization Queues..............................................................................................................187
rioritization Filters...............................................................................................................187
rioritization Transmit Queue Length...................................................................................188
rioritization Statistics...............................................................................................................188
Chapter 20 – Configuring Generic Routing Encapsulation ..............................................................189
Introduction....................................................................................................................................189
GRE Fundamentals ...................................................................................................................189
GRE Configuration........................................................................................................................190
GRE Main Menu........................................................................................................................190
GRE Configuration Menu..........................................................................................................190
Chapter 21 - Network Utilities ..........................................................................................................193
Introduction....................................................................................................................................193
Network Utilities Main Menu........................................................................................................193
ing Menu......................................................................................................................................194
Traceroute Menu............................................................................................................................194
Host Menu......................................................................................................................................195
Trace Menu....................................................................................................................................195
Tcpdump A Network Interface..............................................................................................195
Frame Relay Link Layer Trace A WAN Interface.................................................................196
Serial Trace A Serial Server ort...........................................................................................196
Interface Statistics Menu................................................................................................................197
Current Routing & Interface Table ...........................................................................................197
Interface Status.......................................................................................................................198
Chapter 22 - Configuring Serial rotocols ........................................................................................199
Introduction....................................................................................................................................199
Serial I ort Features................................................................................................................199
LED Designations .................................................................................................................199
Serial rotocols Applications.....................................................................................................200
Character Encapsulation.........................................................................................................200
RTU olling...........................................................................................................................200
Broadcast RTU olling..........................................................................................................200
Serial rotocols Concepts And Issues........................................................................................201
Host And Remote Roles.........................................................................................................201
Use Of ort Redirectors.........................................................................................................201
Message acketization...........................................................................................................201
Use of Turnaround Delays.....................................................................................................202
TcpModBus Server Application................................................................................................202
Local Routing At The Server Gateway..................................................................................202
MultiMaster Capability..........................................................................................................202
TcpModbus Concepts And Issues..............................................................................................202
Host And Remote Roles.........................................................................................................202
ort Numbers.........................................................................................................................203
Retransmissions.....................................................................................................................203
RuggedCom 13
RuggedRouter® User Guide
ModBus Exception Handling.................................................................................................203
TcpModbus erformance Determinants................................................................................204
A Worked Example................................................................................................................205
DN (Distributed Network rotocol)........................................................................................206
Address Learning for DN .....................................................................................................206
DN Broadcast Messages......................................................................................................206
Serial rotocols Configuration.......................................................................................................207
Serial rotocols Main Menu......................................................................................................207
Assign rotocols Menu..............................................................................................................208
ort Settings Menu.....................................................................................................................208
RawSocket Menu.......................................................................................................................208
TcpModBus Menu.....................................................................................................................209
DN Menu.................................................................................................................................210
Serial rotocols Statistics Menu................................................................................................212
rotocol Specific acket Error Statistics...............................................................................212
Serial rotocols Trace Menu......................................................................................................213
Serial rotocols Sertrace Utility.................................................................................................214
Chapter 23 - Configuring GOOSE Tunnels.......................................................................................215
Introduction....................................................................................................................................215
IEC61850 GOOSE Fundamentals..............................................................................................215
Layer 2 Tunnel Daemon Details............................................................................................215
Layer 2 Tunnel Configuration........................................................................................................216
Layer 2 Tunnels Main Menu......................................................................................................216
General Configuration Menu.....................................................................................................217
GOOSE Tunnels Menu..............................................................................................................217
GOOSE Statistics Menu.............................................................................................................218
Activity Trace Menu..................................................................................................................219
Chapter 24 - Configuring The DHC server......................................................................................221
Introduction....................................................................................................................................221
DHC Fundamentals..................................................................................................................221
DHC Network Organizations...............................................................................................221
DHC Client Options............................................................................................................221
Option 82 Support with Disable NAK ..................................................................................223
Example DHC Scenarios And Configurations........................................................................223
Single Network With Dynamic I Assignment.....................................................................223
Single Network With Static I Assignment...........................................................................224
Single Network With Option82 Clients On One Switch.......................................................224
Multiple Subnets On Separate VLANs Using Option82 On One Switch..............................225
DHC Configuration......................................................................................................................227
DHC Server Main Menu..........................................................................................................227
DHC Shared Network Configuration.......................................................................................228
DHC Subnet Configuration.....................................................................................................229
DHC Group Configuration......................................................................................................230
DHC Host Configuration.........................................................................................................230
DHC ool Configuration.........................................................................................................231
Chapter 25 - Configuring NT ..........................................................................................................233
Introduction....................................................................................................................................233
NT Fundamentals ....................................................................................................................233
14 RuggedCom
Ta le Of Contents
The NT Sanity Limit ...........................................................................................................234
NT And The recision Time rotocol Card........................................................................234
Included With NT ...............................................................................................................234
NT Configuration.........................................................................................................................235
NT Server Main Menu.............................................................................................................235
Generic Options.........................................................................................................................235
Servers Configuration................................................................................................................236
eers Configuration....................................................................................................................236
Viewing NT Status...................................................................................................................236
Viewing The NT Log ..............................................................................................................237
Viewing G S Status...................................................................................................................238
Viewing The G S Log ..............................................................................................................238
Chapter 26 - Configuring SSH ..........................................................................................................239
Introduction....................................................................................................................................239
SSH Fundamentals ....................................................................................................................239
Included With SSH................................................................................................................239
SSH Configuration.........................................................................................................................239
SSH Main Menu.........................................................................................................................239
Authentication ...........................................................................................................................240
Networking ................................................................................................................................240
Access Control .......................................................................................................................241
Chapter 27 - Configuring IRIGB And IEEE1588..............................................................................243
Introduction....................................................................................................................................243
IEEE1588 Fundamentals............................................................................................................243
T Network Roles................................................................................................................243
T Master Election..............................................................................................................244
Synchronizing NT from IEEE1588......................................................................................244
IRIGB Fundamentals..................................................................................................................244
IRIGB Output Formats...........................................................................................................245
Reference Clocks...................................................................................................................245
How The Router Selects A Reference Clock.........................................................................245
G S Cable compensation...........................................................................................................245
IRIGB/IEEE1588 Configuration....................................................................................................246
IRIGB/IEEE1588 Main Menu....................................................................................................246
General Configuration ...............................................................................................................246
IRIGB Configuration .................................................................................................................247
IEEE1588 Configuration............................................................................................................247
IRIGB Status..............................................................................................................................248
IEEE1588 Status........................................................................................................................248
IRIGB Log..................................................................................................................................248
Chapter 28 - Configuring the Intrusion Detection System.................................................................249
Introduction....................................................................................................................................249
Snort Fundamentals....................................................................................................................249
Which Interfaces To Monitor.................................................................................................249
Snort Rules.............................................................................................................................249
Alerting Methods...................................................................................................................250
erformance And Resources..................................................................................................250
IDS Configuration..........................................................................................................................251
RuggedCom 15
RuggedRouter® User Guide
Snort IDS Main Menu................................................................................................................251
Global Configuration.............................................................................................................251
Interfaces................................................................................................................................251
Rulesets..................................................................................................................................252
Rule Lookup by SID ............................................................................................................252
Network Settings .......................................................................................................................253
re rocessors.............................................................................................................................253
Alerts & Logging.......................................................................................................................254
Edit Config File..........................................................................................................................254
Chapter 29 - Maintaining The Router................................................................................................255
Introduction....................................................................................................................................255
Alert System...................................................................................................................................255
Alert Main Menu........................................................................................................................255
Alert Configuration....................................................................................................................256
Alert Filter Configuration .....................................................................................................257
Alert Definition Configuration...............................................................................................257
Change Alert Definition.........................................................................................................258
Industrial Defender.........................................................................................................................260
What information is sent to an SEM unit...............................................................................260
Industrial Defender Configuration.............................................................................................260
Configuring Industrial Defender Addresses...........................................................................261
Retrieving an Industrial Defender Key..................................................................................261
Configuring remote syslogging..............................................................................................262
Gauntlet Security............................................................................................................................263
What And How Gauntlet rotects..............................................................................................263
Gauntlet And The Firewall.........................................................................................................263
Step 1 of 3 - Shorewall Configuration...................................................................................263
Step 2 of 3 – Gauntlet Configuration.....................................................................................264
Step 3 of 3 - CCC Configuration...........................................................................................264
Note on VRR , Firewall Rules, and Gauntlet.......................................................................264
Gauntlet Status Menu.................................................................................................................265
Upgrading Gauntlet....................................................................................................................265
Backup And Restore .....................................................................................................................266
General Configuration................................................................................................................267
Configuration Rollback..............................................................................................................268
Archive History..........................................................................................................................269
Archive Backup..........................................................................................................................269
Archive Restore..........................................................................................................................270
Archive Difference Tool............................................................................................................272
SNM Configuration.....................................................................................................................274
SNM Configuration Main Menu..............................................................................................274
System Configuration.................................................................................................................275
Network Addressing Configuration...........................................................................................275
Access Control...........................................................................................................................276
Trap Configuration.....................................................................................................................277
MIB Support...............................................................................................................................279
RADIUS Authentication................................................................................................................280
RADIUS Authentication Configuration.....................................................................................281
Edit RADIUS Server arameters...............................................................................................281
Outgoing Mail................................................................................................................................283
16 RuggedCom
Ta le Of Contents
Chassis arameters.........................................................................................................................284
ower over Ethernet.......................................................................................................................285
ower over Ethernet Menu.........................................................................................................286
System Logs...................................................................................................................................287
Syslog Factory Defaults.............................................................................................................287
Remote Logging.........................................................................................................................288
Upgrade System.............................................................................................................................289
RuggedRouter Software Fundamentals......................................................................................289
When A Software Upgrade Requires A Reboot........................................................................290
Automatic Upgrade....................................................................................................................290
Upgrade to RX1100...................................................................................................................290
Change Repository Server..........................................................................................................291
Automatic Upgrading.................................................................................................................292
Upgrading All ackages.............................................................................................................292
Installing A New ackage..........................................................................................................292
re-upgrade/ ost-upgrade scripts...............................................................................................293
Uploading And Downloading Files...............................................................................................294
Chapter 30 - Security Considerations................................................................................................295
Introduction....................................................................................................................................295
Security Actions ........................................................................................................................295
Appendix A - Setting Up A Repository ............................................................................................297
Repository Server Requirements ..............................................................................................297
Initial Repository Setup..............................................................................................................297
Upgrading The Repository.........................................................................................................298
Setting Up The Routers..............................................................................................................298
An Alternate Approach..........................................................................................................298
Upgrading Considerations .....................................................................................................299
Appendix B - Re-Flashing Router Software .....................................................................................300
Appendix C - Installing Apache Web Server On Windows..............................................................301
Appendix D - Installing IIS Web Server On Windows......................................................................303
Appendix E - RADIUS Server Configuration...................................................................................304
FreeRadius.............................................................................................................................304
Windows Internet Authentication Service.............................................................................304
Appendix F - V N/L2T Configuration in Windows.......................................................................307
Index...................................................................................................................................................308
RuggedCom 17
RuggedRouter® User Guide
Table Of Figures
Figure 1: RuggedRouter Setup Main Menu.....................................................................................26
Figure 2: RuggedRouter Setup assword Change Menu.................................................................27
Figure 3: RuggedRouter Interfaces Setup Menu..............................................................................27
Figure 4: RuggedRouter DNS Client Menu.....................................................................................27
Figure 5: RADIUS Server Configuration menu...............................................................................28
Figure 6: Gauntlet Setup Menu........................................................................................................28
Figure 7: RuggedRouter Date/Time/Timezone Menu.....................................................................29
Figure 8: RuggedRouter Hardware Information Menu....................................................................29
Figure 9: Selecting a configuration to reload...................................................................................30
Figure 10: Selecting a previously made configuration.....................................................................30
Figure 11: Signing On To The Router With A Web Browser.........................................................31
Figure 12: RuggedRouter Web Interface Main Menu Window.......................................................32
Figure 13: LED Status anel............................................................................................................34
Figure 14: Meaning of LEDs...........................................................................................................34
Figure 15: Webmin Configuration Menu.........................................................................................35
Figure 16: Webmin Configuration Menu, I Access Control..........................................................35
Figure 17: Webmin Configuration Menu, orts and Addresses......................................................36
Figure 18: Webmin Configuration Menu, Change Help Server......................................................36
Figure 19: Webmin Configuration Menu, Logging.........................................................................37
Figure 20: Webmin Configuration Menu, Authentication...............................................................38
Figure 21: Webmin Events Log.......................................................................................................38
Figure 22: Webmin users menu.......................................................................................................40
Figure 23: Edit Webmin User Menu................................................................................................41
Figure 24: Current login sessions menu...........................................................................................41
Figure 25: assword Restrictions Menu..........................................................................................42
Figure 26: Bootup and Shutdown, art 1.........................................................................................43
Figure 27: Bootup and Shutdown, art 2.........................................................................................44
Figure 28: System Menu Change assword Command...................................................................44
Figure 29: Scheduled Commands....................................................................................................44
Figure 30: Scheduled Commands Displaying a Command.............................................................45
Figure 31: Webmin Scheduled Cron Jobs.......................................................................................46
Figure 32: Creating a Cron Job........................................................................................................46
Figure 33: Scheduled Cron Jobs menu displaying cron jobs...........................................................47
Figure 34: System Hostname...........................................................................................................47
Figure 35: System Time...................................................................................................................47
Figure 36: Network Configuration Menu........................................................................................49
Figure 37: Core Networking Settings..............................................................................................50
Figure 38: Dummy Interface............................................................................................................51
Figure 39: Routing And Gateways...................................................................................................51
Figure 40: Static Multicast Routing.................................................................................................53
Figure 41: DNS Client.....................................................................................................................54
Figure 42: Host Addresses...............................................................................................................54
Figure 43: End To End Backup Example........................................................................................55
Figure 44: End To End Backup........................................................................................................56
Figure 45: Ethernet Menu................................................................................................................59
Figure 46: Current and Boot Time Ethernet Configuration.............................................................59
Figure 47: Editing a Network Interface............................................................................................60
Figure 48: Creating a Virtual Interface............................................................................................61
Figure 49: Creating a Virtual Lan Interface.....................................................................................61
18 RuggedCom
Other manuals for RuggedRouter RX1000
2
This manual suits for next models
1
Table of contents
Other RuggedCom Network Router manuals
RuggedCom
RuggedCom RUGGEDSWITCH RS900G User manual
RuggedCom
RuggedCom RuggedServer RS401 User manual
RuggedCom
RuggedCom RUGGEDSWITCH RS900G User manual
RuggedCom
RuggedCom RuggedSwitch M2100 User manual
RuggedCom
RuggedCom RuggedRouter RX1000 User manual
RuggedCom
RuggedCom RUGGEDBACKBONE RX1510 Manual
RuggedCom
RuggedCom RuggedVDSL RS930 User manual
RuggedCom
RuggedCom RuggedSwitch RS940G User manual
RuggedCom
RuggedCom RuggedVDSL RS930L User manual
RuggedCom
RuggedCom RuggedServer RS400 User manual
RuggedCom
RuggedCom RuggedSwitch RSG2200 User manual
RuggedCom
RuggedCom RuggedServer RS910 User manual
RuggedCom
RuggedCom RuggedSwitch RSG2300 User manual
RuggedCom
RuggedCom RUGGEDBACKBONE RX5000 Manual
RuggedCom
RuggedCom RuggedVDSL RS900L User manual
RuggedCom
RuggedCom RuggedVDSL RS900L User manual
RuggedCom
RuggedCom RuggedSwitch RS900GP Manual
RuggedCom
RuggedCom RuggedSwitch M2200 User manual
RuggedCom
RuggedCom RuggedSwitch RS500 User manual
RuggedCom
RuggedCom RuggedRouter RX1000 User manual
