Bay Networks 5399 Quick start guide

Category
Network switches
Type
Quick start guide

The Bay Networks 5399 Remote Access Concentrator offers secure remote access to corporate networks for employees and telecommuters. With support for multiple WAN connections and a variety of security features, the 5399 provides reliable and protected remote connectivity.

The Bay Networks 5399 Remote Access Concentrator offers secure remote access to corporate networks for employees and telecommuters. With support for multiple WAN connections and a variety of security features, the 5399 provides reliable and protected remote connectivity.

Part No. 166-024-865 Rev. A
April 1997
Quick Start for Windows
Model 5399 Remote
Access Concentrator
Read before installing and using Remote Annex
Software Release 5.0
These installation notes contain information specific to the
release of the Model 5399 Remote Access Concentrator
module.
Copyright © 1997 Bay Networks, Inc.
All rights reserved. Printed in the USA. April 1997.
The information in this document is subject to change without notice. The statements,
configurations, technical data, and recommendations in this document are believed to
be accurate and reliable, but are presented without express or implied warranty. Users
must take full responsibility for their applications of any products specified in this
document. The information in this document is proprietary to Bay Networks, Inc.
The software described in this document is furnished under a license agreement and
may only be used in accordance with the terms of that license.
Restricted Rights Legend
Use, duplication, or disclosure by the United States Government is subject to
restrictions as set forth in subparagraph (c)(1)(ii) of the Rights in Technical Data and
Computer Software clause at DFARS 252.227-7013.
Notice for All Other Executive Agencies
Notwithstanding any other license agreement that may pertain to, or accompany the
delivery of, this computer software, the rights of the United States Government
regarding its use, reproduction, and disclosure are as set forth in the Commercial
Computer Software-Restricted Rights clause at FAR 52.227-19.
Trademarks of Bay Networks, Inc.
Annex, Remote Annex, Annex Manager, Remote Annex 2000, Remote Annex 4000,
Remote Annex 6100, Remote Annex 6300, Remote Annex 5390/Async, Remote
Annex 5391/CT1, Remote Annex 5393/PRI, 5399 Remote Access Concentrator,
BayStack Remote Annex 2000 Server, Quick2Config, Bay Networks, Bay Networks
Press, and the Bay Networks logo are trademarks of Bay Networks, Inc.
Third Party Trademarks
All other trademarks and registered trademarks are the property of their respective
owners.
Statement of Conditions
In the interest of improving internal design, operational function, and/or reliability,
Bay Networks, Inc. reserves the right to make changes to the products described in
this document without notice.
Bay Networks, Inc. does not assume any liability that may occur due to the use or
application of the product(s) or circuit layout(s) described herein.
In addition, the program and information contained herein are licensed only pursuant
to a license agreement that contains restrictions on use and disclosure (that may
incorporate by reference certain limitations and notices imposed by third parties).
iii166-024-865 Rev. A
Contents
Before Installing the Software. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
Prerequisites. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6
Windows NT Log On Privileges . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6
Software Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
Server Software . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7
Workstation Software . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8
Hardware Setup . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9
Setting the Network Address . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
Configuring the Remote Annex. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
Protecting the Annex Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .12
Using Quick2Config Annex. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13
Configuring Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13
Connecting the WAN Ports. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .14
166-024-865 Rev. A
Contents
iv
5166-024-865 Rev. A
5399 RAC Quick Start
for Windows
This guide is designed for quick installation of a 5399 Remote Access
Concentrator Module (5399 RAC) in a Bay Networks Lattice System
5000 Hub, and configuration of the 5399 RAC using Quick2Config
Annex, a Windows-based Annex management tool.
The procedures in this guide cover:
Installing the software on the Windows NT server
Setting up the 5399 RAC
Setting the network addresses and booting the 5399 RAC
Configuring the 5399 RAC with Quick2Config and the NA
command line interface
The sample commands and output that follow the instructions involve a
5399 RAC on an Ethernet network with the IP address 192.9.200.62. The
host system address is 192.9.200.55.
See the following documents for additional information:
Model 5399 Remote Access Concentrator Module Hardware
Installation Guide
Installing Remote Annex Network Software for Windows
Remote Annex Server Tools for Windows NT User Guide
Model 5399 Remote Access Concentrator Network
Administrator’s Guide for UNIX
The Release Notes provided with the 5399 RAC
166-024-865 Rev. A
5399 RAC Quick Start for Windows
6
Before Installing the Software
Prerequisites
To install Remote Annex Server Tools for Windows NT, you need:
Microsoft Windows NT Server 3.51 or 4.0 configured to
support the TCP/IP protocol
Administrative privileges on the server
10 MB free disk space on an NTFS drive
One
Windows NT Client 3.51 or 4.0 license per Remote
Annex
PC with an Intel 486 (or higher) CPU with 32 MB RAM
CD-ROM drive to install the product
Several formatted floppy disks for PCs without CD-ROMs
Before you install the tools, you should close all other Windows
programs.
The CD-ROM includes the appropriate Annex software release required
by the Remote Annex Server Tools
for Windows NT.
Windows NT Log On Privileges
If you install Remote Annex Server Tools for Windows NT on a primary
domain controller, all users must have the right to log on locally. The
system cannot authenticate users who do not have this right.
7
5399 RAC Quick Start for Windows
166-024-865 Rev. A
To allow users to log on to the primary domain controller:
1. Choose Policies > User Rights.
The User Rights Policy window appears.
2. Select Log on locally from the Right field.
The Grant To box displays the names of all groups currently allowed
to log on locally.
3. Edit the list using
and .
To add groups or individual users, click on and
select individual or group names from the Add Users
and Groups window.
To delete users or groups, highlight a name and click on
.
Software Installation
Server Software
Installing Remote Annex Network Software for Windows NT loads:
Operating images that are downloaded to the Annex
NA command line interface for configuring and managing
the Annex
Quick2Config Annex for configuring Annex ports
The NA command line interface and the Quick2Config Annex can also
be installed on other Windows platforms on the network.
Add Remove
Add
Remove
166-024-865 Rev. A
5399 RAC Quick Start for Windows
8
To install Remote Annex software on the server:
1. Put the CD-ROM into the Windows NT server’s CD drive.
2. Use the File Manager to select the CD-ROM disk.
3. Double-click on the setup.exe file.
Once the setup program runs, the Welcome window appears.
4. Click on to continue the installation process.
Refer to Installing Remote Annex Network Software for Windows for
installation details.
Workstation Software
The NA command line interface and Quick2Config Annex software can
be loaded on Windows NT Workstations (3.51 or 4.0) and on Windows
95 platforms.
To install NA and Quick2Config Annex on additional Windows
platforms:
1. Put the CD-ROM into workstation’s CD drive.
2. Use the File Manager to select the CD-ROM disk.
3. Double-click on the setup.exe file.
4. Follow the dialog box instructions to select Install Software and
then NA Command Line Interface and/or Quick2Config Annex.
5. When prompted for an installation directory, accept the default
directory for each software module.
Refer to Installing Remote Annex Network Software for Windows for
information about installing the NA and Quick2Config Annex software
on Windows platforms.
Next
9
5399 RAC Quick Start for Windows
166-024-865 Rev. A
Hardware Setup
This section provides abbreviated instructions for installing the hardware.
For more detailed information, see Model 5399 Remote Access
Concentrator Module Hardware Installation Guide.
To set up the 5399 RAC module:
1. Use the J5-J21/J22 jumper card and the adjacent DIP switch to
select the backplane Ethernet segment (Figure 1).
Figure 1. Model 5399 Jumper DIP Switch Locations
The Ethernet segment bank selector, consisting of three rows of 20 pins
(labeled J5, J21 and J22) and a jumper card, determines whether the
module connects to Ethernet segments 1 through 6 or segments 7 through
1
DIP
Switch
S1
Jumper
Card
ON
2
3
4
5
6
166-024-865 Rev. A
5399 RAC Quick Start for Windows
10
12 at power up. When the jumper card is installed on the two rows of pins
nearest the front of the module (using J21), the module has access to
segments 1 through 6 (the factory default setting); when the jumper card
is installed on the two rows of pins nearest the back of the module (using
J22), the module has access to segments 7 through 12.
The specific segment bank is determined by the adjacent DIP switch as
shown in Table 1.
Table 1. Segment Selection DIP Switch Settings
2. Insert the 5399 RAC into the selected hub backplane slot and
secure the module using the inserter/extractor levers and the
captive screws.
3. Connect the console cable and terminal using the service port
on the 5000 chassis as the console port.
4. Set the terminal to 9600 bps, 8 bits, 1 stop bit, no parity, no flow
control, and ASCII.
5. Press the Esc key to display the Slot Selection menu.
6. Select the 5399 RAC module and press r to reset the module.
7. Initialize the 5399 RAC as a System 5000 Hub module and enter
the Monitor Mode. Follow the instructions in “Remote Access
Concentrator” in Section 2 of the
Model 5399 Remote Access
Concentrator Module Hardware Installation Guide.
DIP Switch S1
Switch Number
Jumper Card Connects
J5, J21 (Segment Bank 1-6)
Jumper Card Connects J5,
J22 (Segment Bank 7-12)
1 (default) Segment 1 Segment 7
2 Segment 2 Segment 8
3 Segment 3 Segment 9
4 Segment 4 Segment 10
5 Segment 5 Segment 11
6 Segment 6 Segment 12
Network management software can override this DIP switch
setting, so an installed module may connect to a different
segment (within the segment bank) than is indicated by the DIP
switch setting.
11
5399 RAC Quick Start for Windows
166-024-865 Rev. A
Setting the Network Address
After initializing the hardware, you initialize the firmware and enter the
IP address of the 5399 RAC.
For illustration purposes, sample response values indicate a 5399
RAC on an Ethernet network with the IP address 192.9.200.62. The
host system address is 192.9.200.55.
1. At the Monitor prompt, enter addr and answer the prompts as
shown in the example. To accept the default shown in brackets,
press the key.
monitor:: addr
Enter Internet address:: 192.9.200.62
Enter Subnet mask [255.255.255.0]::
Enter preferred load host Internet address [<any
host>]:: 192.9.200.55
Preferred load host address: 192.9.200.55
Enter Broadcast address [0.0.0.0]::
Preferred dump address [0.0.0.0]:: 192.9.200.55
Select type of IP packet encapsulation (ieee802/
ethernet) [<ethernet>]::
Type of IP packet encapsulation: <ethernet>
monitor::
Load Broadcast y/n [y]::
Select type of IP packet encapsulation (ieee802/
ethernet) [<ethernet>]::
Load Broadcast y/n [y]::
2. At the monitor prompt, enter the boot command:
monitor:: boot
Enter boot file name [oper.64.enet]::
Requesting boot file "oper.64.enet".
Unanswered requests shown as "?", transmission errors
as "*".
Requesting boot from 192.9.200.55 via Ethernet...
Booting from 192.9.200.55
Header received OK. Received data blocks shown as "."
. . . . . . . . . . . . . . .EOF
Return
166-024-865 Rev. A
5399 RAC Quick Start for Windows
12
Configuring the Remote Annex
You can configure 5399 RAC WAN modules using Quick2Config Annex
or the NA command line interface, both of which can be run on the server
or another workstation on the network.
Protecting the Annex Configuration
Quick2Config requires that the 5399 RAC be configured to accept SNMP
set commands. However, the 5399’s default setting for the
allow_snmp_sets parameter does not permit parameter value changes
because the SNMP set command’s header transmits the community string
in clear text, which may be a security risk. If security is a concern, you
can take the following measures:
1. Edit the %gateway section of the config.annex file for the 5399
RAC to define at least one community string with read/write
privileges. Change the line:
snmp community public
to:
snmp community q2cannex * read-write
The 5399 RAC will accept SNMP sets only from sources using the
community string q2cannex. You can further restrict the access by
including the IP address of the Annex Manager or Quick2Config
Annex host.
snmp community q2cannex 192.9.200.55 read-write
2. Invoke na, configure the 5399 RAC to accept and process SNMP
command sets, and exit na:
% na
command: annex 129.9.200.62
command: set annex allow_snmp_sets y
command: quit
3. Enter the selected community string when invoking
Quick2Config Annex.
13
5399 RAC Quick Start for Windows
166-024-865 Rev. A
Using Quick2Config Annex
To configure 5399 RAC using Quick2Config Annex:
1. At the Windows system, click on the Quick2Config icon to open
the application.
2. Choose File > Add Annex, enter the name or IP address of the
5399 RAC in the dialog box, and click on .
Quick2Config Annex lists the module and its WAN modules in the
tree view on the left and displays a set of tab windows on the right.
3. Select the module and use the tab windows to review and
modify Annex parameters.
4. Choose the Remote Address tab to set the range of IP addresses
to be used by the 5399 RAC.
5. Select the first WAN module to display the WAN Interface tab and
configure the module.
6. Select and configure the second WAN module.
7. Choose Help > Contents or click on in the dialog box for
detailed information on using Quick2Config Annex.
Configuring Security
By default, the 5399 RAC allows unrestricted access. If you want to
configure module security, refer to the Model 5399 Remote Access
Concentrator Network Administrator’s Guide for UNIX for information
on setting up security files such as acp_passwd and acp_userinfo.
If you have requested dial-up addresses from the acp_dialup file, see the
Model 5399 Remote Access Concentrator Network Administrator’s Guide
for UNIX for information on adding users to that file.
Check the Security tab and other Quick2Config tab windows to make
sure the selections are appropriate to the configured security regime.
OK
Help
166-024-865 Rev. A
5399 RAC Quick Start for Windows
14
Connecting the WAN Ports
When the WAN ports and security have been configured, you can connect
the ports to the external lines.
Plug the channelized T1, channelized E1 or ISDN PRI lines into the WAN
interface ports on the front edge of the 5399 RAC module.
  • Page 1 1
  • Page 2 2
  • Page 3 3
  • Page 4 4
  • Page 5 5
  • Page 6 6
  • Page 7 7
  • Page 8 8
  • Page 9 9
  • Page 10 10
  • Page 11 11
  • Page 12 12
  • Page 13 13
  • Page 14 14

Bay Networks 5399 Quick start guide

Category
Network switches
Type
Quick start guide

The Bay Networks 5399 Remote Access Concentrator offers secure remote access to corporate networks for employees and telecommuters. With support for multiple WAN connections and a variety of security features, the 5399 provides reliable and protected remote connectivity.

Ask a question and I''ll find the answer in the document

Finding information in a document is now easier with AI