Administration of the Avaya G350 Media Gateway - Avaya Support

More documents

Recommendations

Info

Copyright 2005, Avaya Inc.All Rights ReservedNoticeEvery effort was made to ensure that the information in this documentwas complete and accurate at the time of printing. However, informationis subject to change.WarrantyAvaya Inc. provides a limited warranty on this product. Refer to yoursales agreement to establish the terms of the limited warranty. Inaddition, Avaya’s standard warranty language as well as informationregarding support for this product, while under warranty, is availablethrough the following Web site: http://www.avaya.com/support.Preventing Toll Fraud"Toll fraud" is the unauthorized use of your telecommunications systemby an unauthorized party (for example, a person who is not a corporateemployee, agent, subcontractor, or is not working on your company'sbehalf). Be aware that there may be a risk of toll fraud associated withyour system and that, if toll fraud occurs, it can result in substantialadditional charges for your telecommunications services.Avaya Fraud InterventionIf you suspect that you are being victimized by toll fraud and you needtechnical assistance or support, in the United States and Canada, call theTechnical Service Center's Toll Fraud Intervention Hotline at1-800-643-2353.DisclaimerAvaya is not responsible for any modifications, additions or deletions tothe original published version of this documentation unless suchmodifications, additions or deletions were performed by Avaya. Customerand/or End User agree to indemnify and hold harmless Avaya, Avaya'sagents, servants and employees against all claims, lawsuits, demandsand judgments arising out of, or in connection with, subsequentmodifications, additions or deletions to this documentation to the extentmade by the Customer or End User.How to Get HelpFor additional support telephone numbers, go to the Avaya support Website: http://www.avaya.com/support. If you are:• Within the United States, click the Escalation Contacts link.Then click the appropriate link for the type of support youneed.• Outside the United States, click the Escalation Contacts link.Then click the International Services link that includestelephone numbers for the international Centers ofExcellence.Providing Telecommunications SecurityTelecommunications security (of voice, data, and/or videocommunications) is the prevention of any type of intrusion to (that is,either unauthorized or malicious access to or use of) your company'stelecommunications equipment by some party.Your company's "telecommunications equipment" includes both thisAvaya product and any other voice/data/video equipment that could beaccessed via this Avaya product (that is, "networked equipment").An "outside party" is anyone who is not a corporate employee, agent,subcontractor, or is not working on your company's behalf. Whereas, a"malicious party" is anyone (including someone who may be otherwiseauthorized) who accesses your telecommunications equipment witheither malicious or mischievous intent.Such intrusions may be either to/through synchronous (time-multiplexedand/or circuit-based), or asynchronous (character-, message-, orpacket-based) equipment, or interfaces for reasons of:• Utilization (of capabilities special to the accessed equipment)• Theft (such as, of intellectual property, financial assets, or tollfacility access)• Eavesdropping (privacy invasions to humans)• Mischief (troubling, but apparently innocuous, tampering)• Harm (such as harmful tampering, data loss or alteration,regardless of motive or intent)Be aware that there may be a risk of unauthorized intrusions associatedwith your system and/or its networked equipment. Also realize that, ifsuch an intrusion should occur, it could result in a variety of losses to yourcompany (including but not limited to, human/data privacy, intellectualproperty, material assets, financial resources, labor costs, and/or legalcosts).Responsibility for Your Company’s Telecommunications SecurityThe final responsibility for securing both this system and its networkedequipment rests with you - Avaya’s customer system administrator, yourtelecommunications peers, and your managers. Base the fulfillment ofyour responsibility on acquired knowledge and resources from a varietyof sources including but not limited to:• Installation documents• System administration documents• Security documents• Hardware-/software-based security tools• Shared information between you and your peers• Telecommunications security expertsTo prevent intrusions to your telecommunications equipment, you andyour peers should carefully program and configure:• Your Avaya-provided telecommunications systems and theirinterfaces• Your Avaya-provided software applications, as well as theirunderlying hardware/software platforms and interfaces• Any other equipment networked to your Avaya productsTCP/IP FacilitiesCustomers may experience differences in product performance, reliabilityand security depending upon network configurations/design andtopologies, even when the product performs as warranted.Standards ComplianceAvaya Inc. is not responsible for any radio or television interferencecaused by unauthorized modifications of this equipment or thesubstitution or attachment of connecting cables and equipment otherthan those specified by Avaya Inc. The correction of interference causedby such unauthorized modifications, substitution or attachment will be theresponsibility of the user. Pursuant to Part 15 of the FederalCommunications Commission (FCC) Rules, the user is cautioned thatchanges or modifications not expressly approved by Avaya Inc. couldvoid the user’s authority to operate this equipment.Product Safety StandardsThis product complies with and conforms to the following internationalProduct Safety standards as applicable:Safety of Information Technology Equipment, IEC 60950, 3rd Edition, orIEC 60950-1, 1st Edition, including all relevant national deviations aslisted in Compliance with IEC for Electrical Equipment (IECEE) CB-96A.Safety of Information Technology Equipment, CAN/CSA-C22.2No. 60950-00 / UL 60950, 3rd Edition, or CAN/CSA-C22.2 No.60950-1-03 / UL 60950-1.Safety Requirements for Customer Equipment, ACA Technical Standard(TS) 001 - 1997.One or more of the following Mexican national standards, as applicable:NOM 001 SCFI 1993, NOM SCFI 016 1993, NOM 019 SCFI 1998.The equipment described in this document may contain Class 1 LASERDevice(s). These devices comply with the following standards:• EN 60825-1, Edition 1.1, 1998-01• 21 CFR 1040.10 and CFR 1040.11.The LASER devices used in Avaya equipment typically operate within thefollowing parameters:Typical Center Wavelength830 nm - 860 nm -1.5 dBm1270 nm - 1360 nm -3.0 dBm1540 nm - 1570 nm 5.0 dBmMaximum Output PowerLuokan 1 LaserlaiteKlass 1 Laser ApparatUse of controls or adjustments or performance of procedures other thanthose specified herein may result in hazardous radiation exposures.Contact your Avaya representative for more laser product information.
Electromagnetic Compatibility (EMC) StandardsThis product complies with and conforms to the following internationalEMC standards and all relevant national deviations:Limits and Methods of Measurement of Radio Interference of InformationTechnology Equipment, CISPR 22:1997 and EN55022:1998.Information Technology Equipment - Immunity Characteristics - Limitsand Methods of Measurement, CISPR 24:1997 and EN55024:1998,including:• Electrostatic Discharge (ESD) IEC 61000-4-2• Radiated Immunity IEC 61000-4-3• Electrical Fast Transient IEC 61000-4-4• Lightning Effects IEC 61000-4-5• Conducted Immunity IEC 61000-4-6• Mains Frequency Magnetic Field IEC 61000-4-8• Voltage Dips and Variations IEC 61000-4-11Power Line Emissions, IEC 61000-3-2: Electromagnetic compatibility(EMC) - Part 3-2: Limits - Limits for harmonic current emissions.Power Line Emissions, IEC 61000-3-3: Electromagnetic compatibility(EMC) - Part 3-3: Limits - Limitation of voltage changes, voltagefluctuations and flicker in public low-voltage supply systems.Federal Communications Commission StatementPart 15:Note: This equipment has been tested and found to comply withthe limits for a Class A digital device, pursuant to Part 15 of theFCC Rules. These limits are designed to provide reasonableprotection against harmful interference when the equipment isoperated in a commercial environment. This equipmentgenerates, uses, and can radiate radio frequency energy and, ifnot installed and used in accordance with the instructionmanual, may cause harmful interference to radiocommunications. Operation of this equipment in a residentialarea is likely to cause harmful interference in which case theuser will be required to correct the interference at his ownexpense.Means of ConnectionConnection of this equipment to the telephone network is shown in thefollowing tables.For MCC1, SCC1, CMC1, G600, and G650 Media Gateways:Manufacturer’s PortIdentifierFIC CodeSOC/REN/A.S. CodeNetworkJacksOff premises station OL13C 9.0F RJ2GX,RJ21X,RJ11CDID trunk 02RV2-T 0.0B RJ2GX,RJ21XCO trunk 02GS2 0.3A RJ21X02LS2 0.3A RJ21XTie trunk TL31M 9.0F RJ2GXBasic Rate Interface 02IS5 6.0F, 6.0Y RJ49C1.544 digital interface 04DU9-BN 6.0F RJ48C,RJ48M120A4 channel serviceunit04DU9-IKN 6.0F RJ48C,RJ48M04DU9-ISN 6.0F RJ48C,RJ48M04DU9-DN 6.0Y RJ48CPart 68: Answer-Supervision SignalingAllowing this equipment to be operated in a manner that does not provideproper answer-supervision signaling is in violation of Part 68 rules. Thisequipment returns answer-supervision signals to the public switchednetwork when:• answered by the called station,• answered by the attendant, or• routed to a recorded announcement that can be administeredby the customer premises equipment (CPE) user.This equipment returns answer-supervision signals on all direct inwarddialed (DID) calls forwarded back to the public switched telephonenetwork. Permissible exceptions are:• A call is unanswered.• A busy tone is received.• A reorder tone is received.Avaya attests that this registered equipment is capable of providing usersaccess to interstate providers of operator services through the use ofaccess codes. Modification of this equipment by call aggregators to blockaccess dialing codes is a violation of the Telephone Operator ConsumersAct of 1990.REN NumberFor MCC1, SCC1, CMC1, G600, and G650 Media Gateways:This equipment complies with Part 68 of the FCC rules. On either therear or inside the front cover of this equipment is a label that contains,among other information, the FCC registration number, and ringerequivalence number (REN) for this equipment. If requested, thisinformation must be provided to the telephone company.For G350 and G700 Media Gateways:This equipment complies with Part 68 of the FCC rules and therequirements adopted by the ACTA. On the rear of this equipment is alabel that contains, among other information, a product identifier in theformat US:AAAEQ##TXXXX. The digits represented by ## are the ringerequivalence number (REN) without a decimal point (for example, 03 is aREN of 0.3). If requested, this number must be provided to the telephonecompany.For all media gateways:The REN is used to determine the quantity of devices that may beconnected to the telephone line. Excessive RENs on the telephone linemay result in devices not ringing in response to an incoming call. In most,but not all areas, the sum of RENs should not exceed 5.0. To be certainof the number of devices that may be connected to a line, as determinedby the total RENs, contact the local telephone company.REN is not required for some types of analog or digital facilities.For G350 and G700 Media Gateways:Manufacturer’s PortIdentifierFIC CodeSOC/REN/A.S. CodeNetworkJacksGround Start CO trunk 02GS2 1.0A RJ11CDID trunk 02RV2-T AS.0 RJ11CLoop Start CO trunk 02LS2 0.5A RJ11C1.544 digital interface 04DU9-BN 6.0Y RJ48C04DU9-DN 6.0Y RJ48C04DU9-IKN 6.0Y RJ48C04DU9-ISN 6.0Y RJ48CBasic Rate Interface 02IS5 6.0F RJ49CFor all media gateways:If the terminal equipment (for example, the media server or mediagateway) causes harm to the telephone network, the telephone companywill notify you in advance that temporary discontinuance of service maybe required. But if advance notice is not practical, the telephonecompany will notify the customer as soon as possible. Also, you will beadvised of your right to file a complaint with the FCC if you believe it isnecessary.The telephone company may make changes in its facilities, equipment,operations or procedures that could affect the operation of theequipment. If this happens, the telephone company will provide advancenotice in order for you to make necessary modifications to maintainuninterrupted service.If trouble is experienced with this equipment, for repair or warrantyinformation, please contact the Technical Service Center at1-800-242- 2121 or contact your local Avaya representative. If theequipment is causing harm to the telephone network, the telephonecompany may request that you disconnect the equipment until theproblem is resolved.
Page 1: Administration of theAvaya G350 Med
Page 5: ContentsAbout this Book . . . . . .
Page 8 and 9: ContentsConfiguring PPP . . . . . .
Page 10 and 11: ContentsPort classification . . . .
Page 12 and 13: ContentsConfiguring VRRP . . . . .
Page 14 and 15: ContentsChapter 19: Configuring pol
Page 16 and 17: Contents16 Administration of the Av
Page 18 and 19: About this Book4. Scroll down to fi
Page 20 and 21: About this BookSending us commentsA
Page 22 and 23: Introduction●●●●●●●
Page 24 and 25: Configuration overviewIf you intend
Page 26 and 27: Configuration overviewSaving config
Page 28 and 29: Accessing the Avaya G350 Media Gate
Page 50 and 51: Basic device configurationConfiguri
Page 52 and 53:
Basic device configurationThe Media
Page 54 and 55:
Basic device configurationSetting r
Page 56 and 57:
Basic device configuration●●●
Page 58 and 59:
Basic device configurationEach firm
Page 60 and 61:
Basic device configurationThe follo
Page 62 and 63:
Configuring Ethernet portsConfiguri
Page 64 and 65:
Configuring Ethernet portsWAN Ether
Page 66 and 67:
Configuring loggingSyslog serverA S
Page 68 and 69:
Configuring loggingFilters and seve
Page 70 and 71:
Configuring loggingTable 5: Logging
Page 72 and 73:
Configuring VoIP QoSConfiguring RTP
Page 74 and 75:
Configuring VoIP QoSConfiguring QoS
Page 76 and 77:
Configuring VoIP QoSConfiguring Wei
Page 78 and 79:
Configuring the G350 for modem useN
Page 80 and 81:
Configuring the G350 for modem use8
Page 82 and 83:
Configuring a WAN Interface●●
Page 84 and 85:
Configuring a WAN InterfaceFigure 3
Page 86 and 87:
Configuring a WAN Interface3. Use t
Page 88 and 89:
Configuring a WAN InterfaceE1/T1 de
Page 90 and 91:
Configuring a WAN InterfaceUSP defa
Page 92 and 93:
Page 94 and 95:
Configuring a WAN Interfacetrying t
Page 96 and 97:
Configuring a WAN Interface8. Use t
Page 98 and 99:
Configuring a WAN InterfaceConfigur
Page 100 and 101:
Page 102 and 103:
Configuring a WAN InterfaceNote:Not
Page 104 and 105:
Configuring a WAN InterfaceIf one o
Page 106 and 107:
Configuring a WAN InterfacePPP VoIP
Page 108 and 109:
Configuring a WAN Interface● VLAN
Page 110 and 111:
Configuring a WAN Interface110 Admi
Page 112 and 113:
Configuring PoELoad detectionThe MM
Page 114 and 115:
Configuring PoEPoE configuration CL
Page 116 and 117:
Configuring PoE116 Administration o
Page 118 and 119:
Configuring Emergency Transfer Rela
Page 120 and 121:
Configuring SNMPThere are several w
Page 122 and 123:
Configuring SNMPUsersSNMPv3 uses th
Page 124 and 125:
Configuring SNMPGroup NameSecurityM
Page 126 and 127:
Configuring SNMP- notification type
Page 128 and 129:
Configuring SNMPConfiguring dynamic
Page 130 and 131:
Configuring SNMPThe following examp
Page 132 and 133:
Configuring advanced switchingVLAN
Page 134 and 135:
Configuring advanced switchingMulti
Page 136 and 137:
Configuring advanced switching●
Page 138 and 139:
Configuring advanced switchingRelia
Page 140 and 141:
Configuring advanced switchingSwitc
Page 142 and 143:
Configuring advanced switchingPort
Page 144 and 145:
Configuring advanced switchingThe S
Page 146 and 147:
Configuring advanced switching●Po
Page 148 and 149:
Configuring advanced switchingThe f
Page 150 and 151:
Configuring advanced switchingPort
Page 152 and 153:
Configuring contact closureContact
Page 154 and 155:
Configuring contact closure154 Admi
Page 156 and 157:
Configuring RMON monitoringRMON CLI
Page 158 and 159:
Configuring RMON monitoring158 Admi
Page 160 and 161:
Configuring the routerOverview of t
Page 162 and 163:
Configuring the routerLayer 2 logic
Page 164 and 165:
Configuring the routerStatic routes
Page 166 and 167:
Configuring the routerRouting table
Page 168 and 169:
Configuring the routerRouting packe
Page 170 and 171:
Configuring the routerThe following
Page 172 and 173:
Configuring the routerDynamic MTU d
Page 174 and 175:
Configuring the routerAdditional GR
Page 176 and 177:
Configuring the routerYou can use t
Page 178 and 179:
Configuring the routerDHCP/BOOTP re
Page 180 and 181:
Configuring the routerApplication
Page 182 and 183:
Configuring the routerNote:Note:If
Page 184 and 185:
Configuring the routerG350-001(supe
Page 186 and 187:
Configuring the routerDirected broa
Page 188 and 189:
Configuring the routerDynamic ARP t
Page 190 and 191:
Configuring the routerConfiguring I
Page 192 and 193:
Configuring the routerPoison-revers
Page 194 and 195:
Configuring the router●●●●U
Page 196 and 197:
Configuring the routerOSPF commands
Page 198 and 199:
Configuring the routerand what metr
Page 200 and 201:
Configuring the router●●●●
Page 202 and 203:
Configuring the routerReassembly pa
Page 204 and 205:
Configuring IPSec VPNConfiguring a
Page 206 and 207:
Configuring IPSec VPNConfiguring IP
Page 208 and 209:
Configuring IPSec VPNPrerequisite -
Page 210 and 211:
Configuring IPSec VPN●hash: the h
Page 212 and 213:
Configuring IPSec VPNTo configure p
Page 214 and 215:
Configuring IPSec VPN3. Exit crypto
Page 216 and 217:
Configuring IPSec VPN9. Exit crypto
Page 218 and 219:
Configuring IPSec VPNIPSec VPN main
Page 220 and 221:
Configuring IPSec VPN2. Use the set
Page 222 and 223:
Configuring IPSec VPNConfiguring th
Page 224 and 225:
Configuring IPSec VPNip-rule 30sour
Page 226 and 227:
Configuring IPSec VPNFull or partia
Page 228 and 229:
Configuring IPSec VPN2. Configure b
Page 230 and 231:
Configuring IPSec VPNip-rule 4sourc
Page 232 and 233:
Page 234 and 235:
Configuring IPSec VPN2. Configure B
Page 236 and 237:
Page 238 and 239:
Configuring IPSec VPNInterface vlan
Page 240 and 241:
Configuring IPSec VPN3. Allowed ICM
Page 242 and 243:
Configuring IPSec VPNip access-cont
Page 244 and 245:
Page 246 and 247:
Configuring IPSec VPNFigure 21: Ful
Page 248 and 249:
Configuring IPSec VPNConfiguration
Page 250 and 251:
Page 252 and 253:
Configuring IPSec VPN252 Administra
Page 254 and 255:
Configuring policyAccess control li
Page 256 and 257:
Configuring policyDefining policy l
Page 258 and 259:
Configuring policyAttaching policy
Page 260 and 261:
Configuring policyDevice-wide polic
Page 262 and 263:
Configuring policyEditing and creat
Page 264 and 265:
Configuring policySource and destin
Page 266 and 267:
Configuring policyComposite operati
Page 268 and 269:
Configuring policy●●●CoS —
Page 270 and 271:
Configuring policyThe following com
Page 272 and 273:
Configuring policySimulating packet
Page 274 and 275:
Configuring policy-based routingPol
Page 276 and 277:
Configuring policy-based routingCon
Page 278 and 279:
Configuring policy-based routing●
Page 280 and 281:
Configuring policy-based routingMod
Page 282 and 283:
Configuring policy-based routingEdi
Page 284 and 285:
Configuring policy-based routingIn
Page 286 and 287:
Configuring policy-based routingThe
Page 288 and 289:
Setting synchronizationIf, for any
Page 290 and 291:
FIPSFigure 26: Image of the cryptog
Page 292 and 293:
FIPSSupported algorithmsThe cryptog
Page 294 and 295:
FIPSSecurity levelThe cryptographic
Page 296 and 297:
FIPSTable 14: Roles and required id
Page 298 and 299:
FIPSTable 15: Critical security par
Page 300 and 301:
FIPSCSP access rights within roles
Page 302 and 303:
FIPSTable 18 shows Role and Service
Page 304 and 305:
FIPSTable 18: Role and service acce
Page 306 and 307:
FIPSPassword guidelinesBelow are ge
Page 308 and 309:
FIPS2. Define the PMI (Primary Mana
Page 310 and 311:
FIPS10. Physically disconnect all n
Page 312 and 313:
FIPS18. To configure all interfaces
Page 314 and 315:
FIPS●Use the snmp-server user use
Page 316 and 317:
FIPS●●TFTPSNMPExample:G350-001(
Page 318 and 319:
FIPSG350-N(super)# ip crypto-list 9
Page 320 and 321:
FIPSError statesTable 19 describes
Page 322 and 323:
FIPSConsiderationsThe following rul
Page 324 and 325:
Traps and MIBsNameParameters(MIB va
Page 326 and 327:
Page 328 and 329:
Page 330 and 331:
Page 332 and 333:
Traps and MIBsMIB FileIP-FORWARD-MI
Page 334 and 335:
Traps and MIBsObjectOIDgenOpResetSu
Page 336 and 337:
Traps and MIBsThe following table p
Page 338 and 339:
Traps and MIBsObject OIDipCidrRoute
Page 340 and 341:
Traps and MIBsObject OIDgenMemUtili
Page 342 and 343:
Traps and MIBsObject OIDdsx1Circuit
Page 344 and 345:
Page 346 and 347:
Traps and MIBsObject OIDipOutDiscar
Page 348 and 349:
Traps and MIBsObject OIDsnmpOutBadV
Page 350 and 351:
Page 352 and 353:
Traps and MIBsObject OIDdistributio
Page 354 and 355:
Traps and MIBsObject OIDrs232SyncPo
Page 356 and 357:
Traps and MIBsObject OIDifInUnknown
Page 358 and 359:
Traps and MIBsObject OIDdsx1Fdl 1.3
Page 360 and 361:
Page 362 and 363:
Traps and MIBsObject OIDipPolicyCon
Page 364 and 365:
Traps and MIBsObject OIDipPolicyCom
Page 366 and 367:
Page 368 and 369:
Traps and MIBsObject OIDchGroupList
Page 370 and 371:
Traps and MIBsObject OIDgenGroupLog
Page 372 and 373:
Traps and MIBsObject OIDcmgModuleSe
Page 374 and 375:
Traps and MIBsObject OIDcmgVoipLoca
Page 376 and 377:
Traps and MIBsObject OIDfrCircuitDl
Page 378 and 379:
Traps and MIBsObject OIDipAdEntIfIn
Page 380 and 381:
Traps and MIBsObject OIDpppLinkStat
Page 382 and 383:
Traps and MIBsObject OIDifTableXtnd
Page 384 and 385:
Page 386 and 387:
Traps and MIBsObject OIDospfIfAuthT
Page 388 and 389:
Traps and MIBs388 Administration of
Page 390 and 391:
Configuring the G350 using the Avay
Page 392 and 393:
Page 394 and 395:
Page 396 and 397:
Page 398 and 399:
Page 400 and 401:
Page 402 and 403:
Page 404 and 405:
Page 406 and 407:
Page 408 and 409:
Page 410 and 411:
Page 412 and 413:
Page 414 and 415:
Page 416 and 417:
Page 418 and 419:
Page 420 and 421:
Page 422 and 423:
Page 424 and 425:
Page 426 and 427:
Page 428 and 429:
Configuring the G350 using the GIW2
Page 430 and 431:
Page 432 and 433:
Page 434 and 435:
Page 436 and 437:
Page 438 and 439:
Page 440 and 441:
IndexCommands, (continued)autoneg .
Page 442 and 443:
IndexCommands, (continued)show-rule
Page 444 and 445:
IndexHHello packets . . . . . . . .
Page 446 and 447:
IndexPolicy-based routingapplicatio
Page 448 and 449:
Indexset vlan . . . . . . . . . . .
Page 450:
Index450 Administration of the Avay
show all

Administration of the Avaya G350 Media Gateway - Avaya Support

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?