Presentasjon om: "ZyXEL Communication Anders Opsahl"— Utskrift av presentasjonen:
1ZyXEL Communication Anders Opsahl (email@example.com) IES-5000 IntroductionZyXEL CommunicationAnders Opsahl
2Agenda- Info om IES * Antall og typer linjekort * User Management * Firmware-upgrade - Config * Backup / restore / save - Port-setup * Åpne / stenge porter * Lage profil, og sette profil på port(er) * Hands on* - VLAN og IP * Sette IP og gateway, samt MGMT-VLAN * Fixed og untagged, samt PVID * PVC-setup * Hands on* - Enkel feilsøking * Hva om det ikke går trafikk på en port? * Linjekort ikke blir active
4IES-5000M Front View 10 Slots Chassis Fan Module -48 VDC Input MSC moduleLine card6.5 U
5Out-of-band Management MSC1000G Front ViewACOAlarmConsoleportHere is the front view of MSC1000G. There are one console port, one out-of-band management port, two Gigabit Ethernet SPF slot and two Gigabit Ethernet port/SPF slot pairs. The SPF slot has high priority than Gigabit ports.There are also has one alarm in and alarm out interface to send the alarm signal to alarm lights or alarm bells.ACO: Press alarm cut-off button to cancel an alarm. This can stop the sending of the alarm signal current.SPF modules1000 Base TEthernetOut-of-band ManagementVLAN Unaware
10ALC1248G-51/53 Front View Power LED Telco 50 connecter ALC1248G-51 SystemLEDConsole portAlarmLED
11Out-of-band MGMT-port (default IP: 192.168.0.1) User ManagementWEB-GUITelnetFTPSSHSNMPConsoleOut-of-band MGMT-port (default IP: )Management IP og VLAN
12Support multi-users & multi-privilege - Up to 16 user account User Management (cnt.)Support multi-users & multi-privilege- Up to 16 user account3 level user privileges- Low: read only- Middle: read/ write- High: read/ write/ user managementSupport remote authentication (RADIUS)On-line user informationIn the IES-5000, it support multi-user based on different privilege level. Total 16 user account could be created on it.3 level user privileges- Low: for read only- Middle: read/ write rights- High: read/ write/ user management rightsIf we would like to create more than 16 user account logging to the IES, we may use the external radius server to support remote auth.Meanwhile, we are able to monitor the on-line logging user’s information
13Up to 3 Web sessions supported User Management (cnt.)Telnet & SSH sessionshare 4 sessionsFTP & SFTP sessionshare 1 sessionUp to 3 Web sessions supportedone session per user accountThe IES-5000 supports both telnet & SSH. If we use SSH session to access the device, then, the session is encrypted. Up to 4 telnet/SSH to access the device simultaneously.Only 1 FTP/SFTP session is supported.Total 3 Web sessions are supported. We can not use the same user name password to access the IES-5000 Web browser simultaneously.
14Firmware (fw)Kommer i revisionsEn revision inneholder siste fw til alle kortftp://ftp.dsl-partner.no/V3.95(LU.0)C0V3.95(LU.1)b1V3.95(LU.0)_0905
15Firmware upgrade3 måter å legge opp firmware på:WEB-GUIFTPConsole
24Port-setup via telnetIES-5000> port adsl setUsage: set <slot-port> <profile> <mode> <slot-port> : example 3-*, 3-3~5,10~15 <profile> : adsl profile name <mode> : gdmt, etsi, auto, adsl2, adsl2+IES-5000> port adsl set 4-1~10,15~20 Max auto
25Port-setup via telnetIES-5000> port enableusage: enable <slot-port><slot-port> : example *-*, 3-*, 3-1,3~5,10~15IES-5000> port enable *-*IES-5000> port enable 3-*IES-5000> port enable 3-1,3~5,10~15
28Hands onLast ned siste fw fra ftp( ftp://ftp.dsl-partner.no/ )Oppgrader alle kort til siste fwLag en ADSL-profil kalt “DSLAM-kurs”Hastighet på profil: 15Mbit ned / 1Mbit oppSett profilen på port nummer 8 på et ADSL-kortEnable port 8 og sjekk syncConfig save
31802.1Q Processs Forwarding Process Ingress Rule Filtering Database Packet ReceiveEgress RulePacket TransmitAccording to the VID information in the tag, the switch forwards and filters the frames among ports. The ports with the same VID can communicate with each other. IEEE 802.1Q VLAN function contains the following three tasks, Ingress Process, Forwarding Process and Ingress Rule: Classify the received frames belonging to a VLANForwarding Process: Decide to filter or forward the frameEgress Rule: Decide if the frames must be sent tagged or untagged
32Ingress Rule Tagged frame Tagged frame VID VID Untagged frame PVIDIngress Process identifies if the incoming frames contain tag, and classifies the incoming frames belonging to a VLAN. Each port has its own Ingress rule. If Ingress rule accepts tagged frames only, the switch port will drop all incoming noIf Ingress rule accepts all frame types, the switch port simultaneously allows the incoming tagged and untagged frames :When a tagged frame is received on a port, it carries a tag header that has an explicit VID. IngressProcess directly passes the tagged frame to Forwarding Process.An untagged frame does not carry any VID about where it belongs. When a untagged frame is received,Ingress Process inserts a tag contained in the PVID into the untagged frame. Each PVC /Ethernet porthas a default VID called PVID (PVC default/Port VID). PVID is assigned to untagged frames or priority tagged frames (frames with null (0) VID) received on this port.After Ingress Process, all frames have 4-bytes tag and VID information will go to Forwarding Process.
36Sette IP og VLAN IES5000> ip set usage: set inband <ip>[/<netmask>] [<inband-vid> <gateway-ip>]set outband <ip>[/<netmask>] [<gateway-ip>]<inband-vid> : inband management vlan id<gateway-ip> : default gateway ipIES5000>IES5000> ip set inband /
37Sette IP og VLAN med “forsikring” IES5000> sys reboot 300telnet-1( ) has initiated reboot, system reboot in 300 seconds!IES5000> sys reboot canceltelnet-1( ) has cancelled system reboot!
39Permanent Virtual Circuit PVC is used to create a logical traffic interfaceSupport various PVC for multiple servicesPVC Categories:PVC - VLAN BridgingPPVC p Priority to ATM QoS mappingPAEPVC - PPPoA forwardingTLSPVC - Transparent VLAN ServiceDTPVC – Double tag PVC
40Bridging PVC Up to 8 PVC per DSL port Each PVC in IES-5000 is a super PVC (IES-2000/3000)- Can join multiple VLANEach PVC is able to accept and receive- Tag Frames- Untagged FramesEach PVC has its own- Default VLAN- Default PriorityFour Priority queues- Applies in single PVC only- Strict priorityOn IES-5000, the PVC mechanism has a change. In previous products, like IES-2000/3000, it provided port based VLAN. On single PVC, it can join only 1 VLAN except the supper channel. However, a single PVC on IES-5000 is able to join multiple VLAN. This is the main difference. Meanwhile, a DSL port support up to 8 PVCs configured.Each PVC is able to accept and receive both Tag Frames & Untagged Frames.Since the IES-5000 is a PVC based VLAN, so that each PVC has its own PVID and default 802.1q priority.802.1p 8 priority levels for each PVC mapped to the 4 physical queues. On DSL port/ PVCs, it supports only Strict Priority Queue only.
41Bridging PVC with VLAN trunking One PVID/default priority within this PVCOne PVC can join multiple VLANsThis PVC joins VLAN 1,2,3PVID = 1, priority=0DSLAMUntagged with PVID=1VLAN 2VLAN 3Tagged Frame,VLAN 2, & VLAN30/33Each PVC has its default PVID and Priority.Each PVC needs to configure PVID because IES uses VLAN to provide different services for different PVC , meanwhile, a PVC is able or join multiple VLAN. The limitation is 16 VLAN per port no matter how many PVC configured.CPE
46Ikke trafikk på en port Er port active? (Port setup) Er det sync på port? (Port statistics)Er MAC-addressen til modem i riktig VLAN? (MAC-table, PVID)Brukes riktig VPI/VCI –verdier? (Vises MAC-adresse er dette korrekt)
47LinjekortNytt kort blir ikke active? (For gammel firmware på linjekort?)Ny type linjekort satt inn i sentral? (Siste fw på MSC-kort?)Kort som har virket, er ikke lenger active? (Lcman enable)
48ADSL2+ fall back ADSL2+ fall back Bi-directional AAL5 ATM VCs PPPoA and IPoAPVC to VLAN mappingThe IP DSLAM provides ADSL2+ fall back feature in addition to the VDSL2 PTM (Packet Transmission Mode) Server. With ADSL2+ fall back turned on, the IP DSLAM can detect an ADSL modem connected to a subscriber line. Then the IP DSLAM switches the operation mode of the corresponding port to ADSL2+ and establishes the corresponding connection service. This helps Telco operators to provide differentiating services (ADSL service can coexist with VDSL service on the same subscriber line) using a single DSLAM.
49DSL operational modeSelect the port’s DSL operational mode as “adsl2+”, or “auto” to have the IP DSLAM automatically determine the mode.Select the port’s DSL operational mode. Select the mode that the subscriber’s device uses or select auto to have the IP DSLAM automatically determine the mode to use.
50VC SetupDefining virtual channels (also called Permanent Virtual Circuits or PVCs) allows you to set priorities for different services or subscribers. You can define up to eight channels on each DSL port and use them for different services or levels of service. You set the PVID that is assigned to untagged frames received on each channel. You also set an IEEE 802.1p priority for each of the PVIDs. In this way, you can assign different priorities to different channels (and consequently the services that get carried on them or the subscribers that use them).
51Link Up StatusThe Home screen of the web configurator displays a port statistical summary with links to each port showing statistical details.