Bay Networks Remote Annex Manual de usuario descargar pdf (Pagina 4)

Configuring the Nortel Networks Remote Access Concentrators and the DMS-10 for Remote Access.March 31, 1999 4

3.0 Administration

Initial configuration of the RAC must be done using a serial terminal connected to the

serial port on the back of the RAC. The unit comes without a IP address or Subnet mask.

In order for it to communicate on the network and boot, a IP address will need to be

assigned along with appropriate Subnet mask. If the device is to be booted off a external

device the boot devices address will need to be entered using this ROM monitor. If there is

no boot device available and the RAC is to be booted from its self, then “self” must be set.

Once the basic info has been established and the RAC is booted, the other parameters must

be loaded into the unit. The other parameters involve setting up the WAN (T1 parameters),

IP address for the ports, Security, Name Servers, etc. Administration can be accomplished

using the Command Line Interface (CLI) off the serial port or a telnet session to the RAC,

once the IP address has been set up. The unit can also be programmed using a Browser

based JAVA program. This requires special browser software to be installed on a NT or

UNIX server. The device can also be set up using the NA utility which can be installed in

Windows NT. NA allows a line by line, like CLI, session to be set up or a config file which

can be edited and then downloaded to the EEPROM on the RAC. Using NA allow you to

configure several RAC using a single config file edited slightly for each device if neces-

sary. Only CLI will be covered in this white paper since it is the native setup language.

Once the RAC has been configured it will need to be rebooted to set the changes into its

operating system. If changes from the default settings on the WANs are made the unit will

need to be booted from a server to install the proper driver software.

4.0 Security

Dial Access should never be deployed with out a high level of security. The RADIUS

security server is the recommended security. The RADIUS server is a workstation which

is connected to the network being accessed, it does not have to be co-located with the

RAS. The RADIUS server then acts as a central point to administering dial up access. Its

basic job is to provide authorization for username and password and set access attributes.

The RADIUS server also can administer levels of access which includes type of access, IP

address assignment for the port, number of B-channels allowed for MLPP, as well as other

attributes. Anyone providing dial access should seriously consider providing a RADIUS

server.

5.0 Configuration

5.1 Introduction Windows NT setup

Windows NT provides a reasonably easy to use graphics interface to setup and support the

RAC. Windows NT also provides a solution to download the RAC with its software.

While the RAC is capable of downloading a software image from itself. Providing a exter-

nal server allows the device to be upgraded easily. In addition if any of the WAN ports are

1 2 3 4 5 6 7 8 9 ... 37 38

Sin comentarios

Bay Networks Remote Annex Manual de usuario Pagina 4