Bay Networks 5399 Quick start guide

Brand: Bay Networks

Model: 5399

Category: Network switches

Type: Quick start guide

The Bay Networks 5399 Remote Access Concentrator offers secure remote access to corporate networks for employees and telecommuters. With support for multiple WAN connections and a variety of security features, the 5399 provides reliable and protected remote connectivity.

Part No. 166-024-865 Rev. A

April 1997

Quick Start for Windows

Model 5399 Remote

Access Concentrator

Read before installing and using Remote Annex

Software Release 5.0

These installation notes contain information speciﬁc to the

release of the Model 5399 Remote Access Concentrator

module.

The information in this document is subject to change without notice. The statements,

conﬁgurations, technical data, and recommendations in this document are believed to

be accurate and reliable, but are presented without express or implied warranty. Users

must take full responsibility for their applications of any products speciﬁed in this

document. The information in this document is proprietary to Bay Networks, Inc.

The software described in this document is furnished under a license agreement and

may only be used in accordance with the terms of that license.

Restricted Rights Legend

Use, duplication, or disclosure by the United States Government is subject to

restrictions as set forth in subparagraph (c)(1)(ii) of the Rights in Technical Data and

Computer Software clause at DFARS 252.227-7013.

Notice for All Other Executive Agencies

Notwithstanding any other license agreement that may pertain to, or accompany the

delivery of, this computer software, the rights of the United States Government

regarding its use, reproduction, and disclosure are as set forth in the Commercial

Computer Software-Restricted Rights clause at FAR 52.227-19.

Trademarks of Bay Networks, Inc.

Annex, Remote Annex, Annex Manager, Remote Annex 2000, Remote Annex 4000,

Remote Annex 6100, Remote Annex 6300, Remote Annex 5390/Async, Remote

Annex 5391/CT1, Remote Annex 5393/PRI, 5399 Remote Access Concentrator,

BayStack Remote Annex 2000 Server, Quick2Conﬁg, Bay Networks, Bay Networks

Press, and the Bay Networks logo are trademarks of Bay Networks, Inc.

Third Party Trademarks

All other trademarks and registered trademarks are the property of their respective

owners.

Statement of Conditions

In the interest of improving internal design, operational function, and/or reliability,

Bay Networks, Inc. reserves the right to make changes to the products described in

this document without notice.

Bay Networks, Inc. does not assume any liability that may occur due to the use or

application of the product(s) or circuit layout(s) described herein.

In addition, the program and information contained herein are licensed only pursuant

to a license agreement that contains restrictions on use and disclosure (that may

incorporate by reference certain limitations and notices imposed by third parties).

iii166-024-865 Rev. A

Contents

Before Installing the Software. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6

Prerequisites. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6

Windows NT Log On Privileges . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6

Software Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7

Server Software . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7

Workstation Software . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8

Hardware Setup . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9

Setting the Network Address . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11

Configuring the Remote Annex. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12

Protecting the Annex Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .12

Using Quick2Config Annex. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13

Configuring Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13

Connecting the WAN Ports. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .14

166-024-865 Rev. A

Contents

5166-024-865 Rev. A

5399 RAC Quick Start

for Windows

This guide is designed for quick installation of a 5399 Remote Access

Concentrator Module (5399 RAC) in a Bay Networks Lattice System

5000 Hub, and conﬁguration of the 5399 RAC using Quick2Conﬁg

Annex, a Windows-based Annex management tool.

The procedures in this guide cover:

• Installing the software on the Windows NT server

• Setting up the 5399 RAC

• Setting the network addresses and booting the 5399 RAC

• Conﬁguring the 5399 RAC with Quick2Conﬁg and the NA

command line interface

The sample commands and output that follow the instructions involve a

5399 RAC on an Ethernet network with the IP address 192.9.200.62. The

host system address is 192.9.200.55.

See the following documents for additional information:

• Model 5399 Remote Access Concentrator Module Hardware

Installation Guide

• Installing Remote Annex Network Software for Windows

• Remote Annex Server Tools for Windows NT User Guide

• Model 5399 Remote Access Concentrator Network

Administrator’s Guide for UNIX

• The Release Notes provided with the 5399 RAC

166-024-865 Rev. A

5399 RAC Quick Start for Windows

Before Installing the Software

Prerequisites

To install Remote Annex Server Tools for Windows NT, you need:

• Microsoft Windows NT Server 3.51 or 4.0 conﬁgured to

support the TCP/IP protocol

• Administrative privileges on the server

• 10 MB free disk space on an NTFS drive

• One

Windows NT Client 3.51 or 4.0 license per Remote

Annex

• PC with an Intel 486 (or higher) CPU with 32 MB RAM

• CD-ROM drive to install the product

• Several formatted ﬂoppy disks for PCs without CD-ROMs

Before you install the tools, you should close all other Windows

programs.

The CD-ROM includes the appropriate Annex software release required

by the Remote Annex Server Tools

for Windows NT.

Windows NT Log On Privileges

If you install Remote Annex Server Tools for Windows NT on a primary

domain controller, all users must have the right to log on locally. The

system cannot authenticate users who do not have this right.

5399 RAC Quick Start for Windows

166-024-865 Rev. A

To allow users to log on to the primary domain controller:

1. Choose Policies > User Rights.

The User Rights Policy window appears.

2. Select Log on locally from the Right ﬁeld.

The Grant To box displays the names of all groups currently allowed

to log on locally.

3. Edit the list using

and .

• To add groups or individual users, click on and

select individual or group names from the Add Users

and Groups window.

• To delete users or groups, highlight a name and click on

Software Installation

Server Software

Installing Remote Annex Network Software for Windows NT loads:

• Operating images that are downloaded to the Annex

• NA command line interface for conﬁguring and managing

the Annex

• Quick2Conﬁg Annex for conﬁguring Annex ports

The NA command line interface and the Quick2Conﬁg Annex can also

be installed on other Windows platforms on the network.

Add Remove

Add

Remove

166-024-865 Rev. A

5399 RAC Quick Start for Windows

To install Remote Annex software on the server:

1. Put the CD-ROM into the Windows NT server’s CD drive.

2. Use the File Manager to select the CD-ROM disk.

3. Double-click on the setup.exe ﬁle.

Once the setup program runs, the Welcome window appears.

4. Click on to continue the installation process.

Refer to Installing Remote Annex Network Software for Windows for

installation details.

Workstation Software

The NA command line interface and Quick2Conﬁg Annex software can

be loaded on Windows NT Workstations (3.51 or 4.0) and on Windows

95 platforms.

To install NA and Quick2Conﬁg Annex on additional Windows

platforms:

1. Put the CD-ROM into workstation’s CD drive.

2. Use the File Manager to select the CD-ROM disk.

3. Double-click on the setup.exe ﬁle.

4. Follow the dialog box instructions to select Install Software and

then NA Command Line Interface and/or Quick2Conﬁg Annex.

5. When prompted for an installation directory, accept the default

directory for each software module.

Refer to Installing Remote Annex Network Software for Windows for

information about installing the NA and Quick2Conﬁg Annex software

on Windows platforms.

5399 RAC Quick Start for Windows

166-024-865 Rev. A

Hardware Setup

This section provides abbreviated instructions for installing the hardware.

For more detailed information, see Model 5399 Remote Access

Concentrator Module Hardware Installation Guide.

To set up the 5399 RAC module:

1. Use the J5-J21/J22 jumper card and the adjacent DIP switch to

select the backplane Ethernet segment (Figure 1).

Figure 1. Model 5399 Jumper DIP Switch Locations

The Ethernet segment bank selector, consisting of three rows of 20 pins

(labeled J5, J21 and J22) and a jumper card, determines whether the

module connects to Ethernet segments 1 through 6 or segments 7 through

DIP

Switch

Jumper

Card

166-024-865 Rev. A

5399 RAC Quick Start for Windows

12 at power up. When the jumper card is installed on the two rows of pins

nearest the front of the module (using J21), the module has access to

segments 1 through 6 (the factory default setting); when the jumper card

is installed on the two rows of pins nearest the back of the module (using

J22), the module has access to segments 7 through 12.

The speciﬁc segment bank is determined by the adjacent DIP switch as

shown in Table 1.

Table 1. Segment Selection DIP Switch Settings

2. Insert the 5399 RAC into the selected hub backplane slot and

secure the module using the inserter/extractor levers and the

captive screws.

3. Connect the console cable and terminal using the service port

on the 5000 chassis as the console port.

4. Set the terminal to 9600 bps, 8 bits, 1 stop bit, no parity, no ﬂow

control, and ASCII.

5. Press the Esc key to display the Slot Selection menu.

6. Select the 5399 RAC module and press r to reset the module.

7. Initialize the 5399 RAC as a System 5000 Hub module and enter

the Monitor Mode. Follow the instructions in “Remote Access

Concentrator” in Section 2 of the

Model 5399 Remote Access

Concentrator Module Hardware Installation Guide.

DIP Switch S1

Switch Number

Jumper Card Connects

J5, J21 (Segment Bank 1-6)

Jumper Card Connects J5,

J22 (Segment Bank 7-12)

1 (default) Segment 1 Segment 7

2 Segment 2 Segment 8

3 Segment 3 Segment 9

4 Segment 4 Segment 10

5 Segment 5 Segment 11

6 Segment 6 Segment 12

Network management software can override this DIP switch

setting, so an installed module may connect to a different

segment (within the segment bank) than is indicated by the DIP

switch setting.

5399 RAC Quick Start for Windows

166-024-865 Rev. A

Setting the Network Address

After initializing the hardware, you initialize the ﬁrmware and enter the

IP address of the 5399 RAC.

For illustration purposes, sample response values indicate a 5399

RAC on an Ethernet network with the IP address 192.9.200.62. The

host system address is 192.9.200.55.

1. At the Monitor prompt, enter addr and answer the prompts as

shown in the example. To accept the default shown in brackets,

press the key.

monitor:: addr

Enter Internet address:: 192.9.200.62

Enter Subnet mask [255.255.255.0]::

Enter preferred load host Internet address [<any

host>]:: 192.9.200.55

Preferred load host address: 192.9.200.55

Enter Broadcast address [0.0.0.0]::

Preferred dump address [0.0.0.0]:: 192.9.200.55

Select type of IP packet encapsulation (ieee802/

ethernet) [<ethernet>]::

Type of IP packet encapsulation: <ethernet>

monitor::

Load Broadcast y/n [y]::

Select type of IP packet encapsulation (ieee802/

ethernet) [<ethernet>]::

Load Broadcast y/n [y]::

2. At the monitor prompt, enter the boot command:

monitor:: boot

Enter boot file name [oper.64.enet]::

Requesting boot file "oper.64.enet".

Unanswered requests shown as "?", transmission errors

as "*".

Requesting boot from 192.9.200.55 via Ethernet...

Booting from 192.9.200.55

Header received OK. Received data blocks shown as "."

. . . . . . . . . . . . . . .EOF

Return

166-024-865 Rev. A

5399 RAC Quick Start for Windows

Conﬁguring the Remote Annex

You can conﬁgure 5399 RAC WAN modules using Quick2Conﬁg Annex

or the NA command line interface, both of which can be run on the server

or another workstation on the network.

Protecting the Annex Conﬁguration

Quick2Conﬁg requires that the 5399 RAC be conﬁgured to accept SNMP

set commands. However, the 5399’s default setting for the

allow_snmp_sets parameter does not permit parameter value changes

because the SNMP set command’s header transmits the community string

in clear text, which may be a security risk. If security is a concern, you

can take the following measures:

1. Edit the %gateway section of the conﬁg.annex ﬁle for the 5399

RAC to deﬁne at least one community string with read/write

privileges. Change the line:

snmp community public

to:

snmp community q2cannex * read-write

The 5399 RAC will accept SNMP sets only from sources using the

community string q2cannex. You can further restrict the access by

including the IP address of the Annex Manager or Quick2Conﬁg

Annex host.

snmp community q2cannex 192.9.200.55 read-write

2. Invoke na, conﬁgure the 5399 RAC to accept and process SNMP

command sets, and exit na:

% na

command: annex 129.9.200.62

command: set annex allow_snmp_sets y

command: quit

3. Enter the selected community string when invoking

Quick2Conﬁg Annex.

5399 RAC Quick Start for Windows

166-024-865 Rev. A

Using Quick2Conﬁg Annex

To conﬁgure 5399 RAC using Quick2Conﬁg Annex:

1. At the Windows system, click on the Quick2Conﬁg icon to open

the application.

2. Choose File > Add Annex, enter the name or IP address of the

5399 RAC in the dialog box, and click on .

Quick2Conﬁg Annex lists the module and its WAN modules in the

tree view on the left and displays a set of tab windows on the right.

3. Select the module and use the tab windows to review and

modify Annex parameters.

4. Choose the Remote Address tab to set the range of IP addresses

to be used by the 5399 RAC.

5. Select the ﬁrst WAN module to display the WAN Interface tab and

conﬁgure the module.

6. Select and conﬁgure the second WAN module.

7. Choose Help > Contents or click on in the dialog box for

detailed information on using Quick2Conﬁg Annex.

Conﬁguring Security

By default, the 5399 RAC allows unrestricted access. If you want to

conﬁgure module security, refer to the Model 5399 Remote Access

Concentrator Network Administrator’s Guide for UNIX for information

on setting up security ﬁles such as acp_passwd and acp_userinfo.

If you have requested dial-up addresses from the acp_dialup ﬁle, see the

Model 5399 Remote Access Concentrator Network Administrator’s Guide

for UNIX for information on adding users to that ﬁle.

Check the Security tab and other Quick2Conﬁg tab windows to make

sure the selections are appropriate to the conﬁgured security regime.

Help

166-024-865 Rev. A

5399 RAC Quick Start for Windows

Connecting the WAN Ports

When the WAN ports and security have been conﬁgured, you can connect

the ports to the external lines.

Plug the channelized T1, channelized E1 or ISDN PRI lines into the WAN

interface ports on the front edge of the 5399 RAC module.

Bay Networks 5399 Quick start guide

Brand: Bay Networks

Model: 5399

Category: Network switches

Type: Quick start guide

Download PDF

report

Bay Networks 5399 Quick start guide

Bay Networks 5399 Quick start guide

Related papers

Other documents