EMR-5000™ User’s Guide Document Number 100-0058-02 (A) EMR-5000 User’s Guide version 2.3 August 2002 Published by SkyStream Networks® 455 DeGuigne Drive Sunnyvale, CA 94085-3890 Copyright © 1998-2002 by SkyStream Networks. All rights reserved. No part of the contents of this book may be reproduced or transmitted in any form or by any means without the written permission of the publisher. Contributors Technical Publications: Jonn Lavinnder and Regina Simmons SkyStream Networks Engineering Department Restricted rights This document contains proprietary and confidential information of SkyStream Networks. The contents of this document may not be disclosed to third parties, copied or duplicated in any form, in whole or in part, without the prior written permission of SkyStream Networks. Use, duplication, or disclosure of the technical data contained in this document is subject to restrictions as set forth in subdivision (c)(1)(ii) of the Rights in Technical Data and Computer Software clause at DFARS 52.227-7013 and/or in similar or successor clauses in the FAR, or in the DOD or NASA FAR Supplement. Unpublished rights reserved under the Copyright Laws of the United States. Contractor/manufacturer is SkyStream Networks, 455 DeGuigne Drive, Sunnyvale, CA 94085-3890, USA. SkyStream is a registered trademark of SkyStream Networks. All other names are trademarks of their respective owners. SkyStream Networks owns the following patents: U.S. Patent No. 6351474, 6351471, 6292490, 6246701, 6195368, 6148082, 6111896, 6064676 and has additional U.S. patents pending. Software license and warranty ATTENTION! Use of the software program on the enclosed disks and/or installed on the computer is subject to the terms of the License Agreement printed on the license card, in the license booklet, or in the user documentation. You should not use this software until you have read the License Agreement. By using the software, you signify that you have read the License Agreement and accept its terms. License SkyStream Networks hereby grants to the Customer a limited, non-exclusive license to use the Software provided solely on the terms and conditions contained herein. “Software” means each software program provided by SkyStream Networks in machine readable, object, printed or interpreted form. Limitations on use The Software is licensed to the Customer solely for Customer’s internal use on the purchased SkyStream Networks equipment and may not be used for any other purpose or application. The customer is licensed to use the Software only on the designated SkyStream Networks equipment. The Software may not be used by Customer on any other computer, on any other SkyStream Networks or similar equipment, or at any other location, except as agreed by SkyStream Networks in writing. Customer will not: Copy all or any part of the Software, except that Customer may make one copy of the i SkyStream Networks Software solely for backup purposes for its own exclusive use, provided that customer shall reproduce and include on such backup copy SkyStream Networks’ proprietary rights notices. ■ ■ ■ Use, print, copy, modify or display the software, in whole or in part, except as specifically authorized by this Agreement. Sublicense, assign, resell, or otherwise transfer the Software to any third party. Any attempted such sublicense; sale, assignment or transfer shall be void and shall be deemed a material breach of this agreement. Reverse engineer, duplicate or otherwise reproduce the Software. Customer acknowledges that this Agreement does not grant to Customer, and Customer will not acquire hereby, any rights to patents, copyrights, trade secrets, trade names, trademarks (whether registered or unregistered), or any other proprietary rights in or to the Software, all of which are expressly retained by SkyStream Networks. Customer acknowledges that the laws and regulations of the United States may restrict the export and re-export of the Software or media in any form without appropriate United States and foreign government approval. If Customer is a unit or agency of the United States Government or is acquiring the Software and Documentation for any such unit or agency, the following apply: ■ ■ If the unit or agency is the Department of Defense (DOD), the Software and its accompanying documentation are classified as “commercial computer software” and “commercial computer software documentation,” respectively, and, pursuant to DFAR Chapter 227.7202, the Government is acquiring the Software and such documentation with terms of the Agreement. If the unit or agency is other than DOD, the Software and its accompanying documentation are classified as “commercial computer software” and “commercial computer software documentation,” respectively, and pursuant to FAR Chapter 12.212, the Government is acquiring the Software and such documentation in accordance with the terms of this Agreement. Warranty SkyStream Networks makes no warranty, express or implied, in connection with the Software, including the results and performance thereof, including without limitation any implied warranties of merchantability or fitness for a particular purpose or non-infringement. Limitation of liability The maximum liability of SkyStream Networks to Customer for damages relating to this agreement for any and all causes whatsoever, and Customer’s maximum remedy, regardless of the form of action, whether in contract, tort or otherwise, shall be limited to the total fees paid by Customer to SkyStream Networks hereunder. In no event shall SkyStream Networks be liable for any lost data or content, lost profits, or business interruption, or for any indirect, incidental, special, consequential, exemplary or punitive damages arising out of or relating to the Software provided hereunder, even if SkyStream Networks has been advised of the possibility of such damages. Technical support For technical support, first contact your reseller of SkyStream Products. If the product was purchased directly from SkyStream, contact SkyStream Networks Customer Support through the World Wide Web (www.skystream.com), via e-mail (service@skystream.com), or if currently under a support contract phone (408) 616-3121; otherwise contact your local SkyStream sales representative. Document No. 100-0058-01(A) ii EMR-5000 User’s Guide version 2.3 Agency compliance and cautions FCC Class A compliance SkyStream Networks EMR equipment has been tested and found to comply with the limits for a Class A digital device, pursuant to part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment. This equipment generates, uses and can radiate radio frequency energy and, if not installed and used in accordance with the instruction manual, may cause harmful interference to radio communications. Operation of this equipment in a residential area is likely to cause harmful interference, in which case the user will be required to correct the interference at personal expense. IMPORTANT! Please note the following: 1 The SkyStream Networks EMR is intended for indoor use only. 2 In case of emergency, disconnect the power cord. 3 If a power cord is not provided: - In the United States, use a standard computer power cord (as specified below). - In Europe, for 230 volt operation, use a cord set marked “HAR” and consisting of a min 3 core H05VVF3G075 cord that has a minimum 0.75 square mm diameter conductors, provided with an IEC 320 receptacle and a male plug for the country of installation, rated 6A, 250V. 4 Do not block the equipment vents. Important safety information! Read the following safety information thoroughly before installing this SkyStream Networks’ product. Failure to follow this safety information may lead to personal injury or damage to the equipment. ■ Installation, maintenance, removal of parts, and removal of the unit must be done by qualified SkyStream authorized service personnel. Power supply ■ ■ ■ This unit must be grounded. The unit must be connected to a grounded outlet to comply with product safety standards. Do not connect the power supply unit to an AC outlet without a ground connection. Power cord The power cord must be approved for the country where it is used. • For USA and Canada: ■ ■ The cord set must be UL-approved and CSA-certified. The attachment plug must be an earth-grounding type with a NEMA 5-15P (15A 125V) plug and a EN60320/IEC320 recepticle. iii SkyStream Networks EMR operating temperature The EMR enclosure meets all specifications over a 41°F to 104°F (5°C to 40°C) ambient temperature range with a maximum temperature gradient of 36°F (20°C) per hour. The enclosure should be located such that the ambient temperature at the front and rear of the unit is not exceeded. Air flow may be needed to achieve these temperatures. Continual or sustained operation at temperatures above these values may degrade MTBF. Operation of the EMR enclosure at the maximum temperature is intended for short time periods only. Continuous operation at the elevated temperatures will reduce product reliability. Relative humidity The values below assume that no condensation on the EMR enclosure occurs. • Operating: 8% to 90% relative humidity with a maximum gradient of 30% per hour. • Non-operating: 5% to 95% relative humidity. ✔ iv SkyStream Networks Table of Contents Overview ................................................................................................................................... 1 SkyStream EMR™ ............................................................................................................................................2 Operating Procedures ................................................................................................................................3 Standard Features .......................................................................................................................................4 Optional Features .......................................................................................................................................7 Hardware Specifications and Installation ................................................................................9 Hardware ...........................................................................................................................................................10 EMR Specifications ..................................................................................................................................10 Controls, Indicators and Connections ...................................................................................................11 Basic Connections ....................................................................................................................................12 Null-Modem Serial Cable Configuration ..............................................................................................12 Crossover Cable Configuration (static IP) ............................................................................................14 Network Hub Configuration (static IP) ................................................................................................16 Network Hub Configuration (DHCP) ..................................................................................................18 Regulatory Compliance ............................................................................................................................20 Replacing the backup battery ..................................................................................................................21 System Logon .........................................................................................................................23 First Time Logon .............................................................................................................................................24 CLI Login ...................................................................................................................................................24 Web GUI Login ........................................................................................................................................25 CLI Commands and Operation .............................................................................................27 Command Line Interface ...............................................................................................................................28 CLI Basics ..................................................................................................................................................28 Navigation in config-mode .....................................................................................................................29 Configuration Values ................................................................................................................................29 Command Definitions ....................................................................................................................................30 root .......................................................................................................................................................30 show .....................................................................................................................................................30 show cli-tree ........................................................................................................................................31 show running-config .........................................................................................................................32 show interface .....................................................................................................................................37 show interface satrx1 .........................................................................................................................37 show interface eth1 ............................................................................................................................38 show interface eth2 ............................................................................................................................38 show interface ppp ............................................................................................................................38 show interface isdn (optional) ..........................................................................................................39 show interface sync (optional) .........................................................................................................40 show active_pids ................................................................................................................................41 show active_macs ..............................................................................................................................41 show active_fkcas ..............................................................................................................................41 show skycast_rules .............................................................................................................................42 v EMR-5000 User’s Guide version 2.3 show skynat_rules .............................................................................................................................. 42 show skynpt_rules ............................................................................................................................. 43 show tcpX ...........................................................................................................................................43 show version ....................................................................................................................................... 44 show turbointernet-vpn .................................................................................................................... 44 no ......................................................................................................................................................... 45 ifconfig ................................................................................................................................................ 45 netstat .................................................................................................................................................. 47 ping ...................................................................................................................................................... 47 reboot .................................................................................................................................................. 48 route ..................................................................................................................................................... 48 passwd ................................................................................................................................................. 48 date ....................................................................................................................................................... 49 timezone .............................................................................................................................................. 49 config ................................................................................................................................................... 50 [config-mode] pref ............................................................................................................................. 51 [config-mode] interface ..................................................................................................................... 53 [config-mode interface] satrx1 ......................................................................................................... 53 [config-mode] interface eth1 or eth2 .............................................................................................. 55 [config-mode] interface ppp ............................................................................................................ 55 [config-mode] interface ppp (node) ................................................................................................ 56 [config-mode interface ppp] server ................................................................................................. 56 [config-mode interface ppp] network ............................................................................................. 57 [config-mode interface ppp] hardware ........................................................................................... 58 [config-mode interface ppp] modem .............................................................................................. 58 [config-mode] interface isdn (optional) .......................................................................................... 59 [config-mode] interface isdn (optional) .......................................................................................... 59 [config-mode interface isdn] server ................................................................................................ 59 [config-mode interface isdn] ppp .................................................................................................... 60 [config-mode interface isdn] line .....................................................................................................61 [config-mode] interface sync (optional) ......................................................................................... 61 [config-mode] active_macs1 ............................................................................................................ 62 [config-mode] active_pids1 ..............................................................................................................63 [config-mode] active_fkcas1 ............................................................................................................ 63 [config-mode] skycast .......................................................................................................................63 [config-mode] skycast_rule ..............................................................................................................64 [config-mode] skynat1 .......................................................................................................................65 [config-mode skynat1] .......................................................................................................................66 [config-mode skynat1 skynat_rules] ............................................................................................... 66 [config-mode skynat1 skynpt_rules] ............................................................................................... 67 [config-mode] snmp .......................................................................................................................... 67 [config-mode snmp mib2sys] ........................................................................................................... 68 [config-mode snmp access] ..............................................................................................................68 vi SkyStream Networks [config-mode snmp trap] ..................................................................................................................69 [config-mode] tcpX ...........................................................................................................................69 [config-mode tcpX] network ............................................................................................................70 [config-mode tcpX network] server ................................................................................................70 [config-mode tcpX network] client .................................................................................................71 [config-mode tcpX] compression ....................................................................................................72 [config-mode tcpX] userport ...........................................................................................................72 [config-mode] turbointernet-vpn .....................................................................................................73 [config-mode turbointernet-vpn] pptp ...........................................................................................73 [config-mode turbointernet-vpn] ipsec ...........................................................................................74 [config-mode turbointernet-vpn ipsec] IPSecConf ......................................................................75 [config-mode turbointernet-vpn ipsec] IPSecKeyExchange .......................................................75 [config-mode turbointernet-vpn ipsec] IPSecSecurity .................................................................76 [config-mode turbointernet-vpn] connection ................................................................................77 [config-mode turbointernet-vpn] advanced ...................................................................................77 maintenance ........................................................................................................................................78 maintenance kernel_list .....................................................................................................................78 maintenance boot_mode ..................................................................................................................79 maintenance sw_upgrade ..................................................................................................................79 maintenance key_upgrade .................................................................................................................80 maintenance reset_counter ...............................................................................................................81 maintenance configuration ...............................................................................................................81 maintenance configuration list .........................................................................................................81 maintenance configuration wrt ........................................................................................................82 maintenance configuration del .........................................................................................................82 maintenance configuration load .......................................................................................................82 maintenance configuration default ..................................................................................................83 maintenance tcpXmode ....................................................................................................................83 diag .......................................................................................................................................................83 diag run ................................................................................................................................................84 diag view ..............................................................................................................................................84 diag upload ..........................................................................................................................................85 diag syslog ...........................................................................................................................................86 stats .......................................................................................................................................................86 stats satrx1 ...........................................................................................................................................86 stats eth1 ..............................................................................................................................................87 stats eth2 ..............................................................................................................................................87 stats tcpX (optional) ..........................................................................................................................87 stats ppp ..............................................................................................................................................88 stats isdn (optional) ............................................................................................................................88 stats turbointernet-vpn ......................................................................................................................89 stats sync (optional) ...........................................................................................................................89 Web GUI Configuration ......................................................................................................... 91 vii EMR-5000 User’s Guide version 2.3 Web GUI .......................................................................................................................................................... 92 Using SkyStream EMR ............................................................................................................................ 92 Navigation ................................................................................................................................................. 93 Help Topics ............................................................................................................................................... 93 Statistics ............................................................................................................................................................ 94 Satellite Receiver ....................................................................................................................................... 94 Network Interface .................................................................................................................................... 96 SkyCast .....................................................................................................................................................100 SkyNAT ...................................................................................................................................................102 DHCP Server ..........................................................................................................................................105 PPP ...........................................................................................................................................................106 ISDN ........................................................................................................................................................107 TCP Acceleration ...................................................................................................................................108 Sync ...........................................................................................................................................................109 Turbo Internet/VPN .............................................................................................................................110 Multifrequency Settings .........................................................................................................................114 Configuration .................................................................................................................................................115 Satellite Receiver .....................................................................................................................................115 Network Interface ..................................................................................................................................120 PID Selection ..........................................................................................................................................122 MAC Address Selection ........................................................................................................................124 Static Routes ............................................................................................................................................126 SkyCast .....................................................................................................................................................128 SkyNAT ...................................................................................................................................................132 DHCP Server ..........................................................................................................................................135 SNMP .......................................................................................................................................................137 PPP ...........................................................................................................................................................139 ISDN ........................................................................................................................................................151 Fixed Key CAS .......................................................................................................................................159 TCP Acceleration ...................................................................................................................................161 Turbo Internet/VPN .............................................................................................................................166 Sync ...........................................................................................................................................................181 Date and Time ........................................................................................................................................182 E-Mail Notification ................................................................................................................................183 Maintenance ...................................................................................................................................................185 Preferences ..............................................................................................................................................185 Configuration File ..................................................................................................................................189 Software Upgrade ...................................................................................................................................192 Change Password ....................................................................................................................................194 System Reboot ........................................................................................................................................195 Diagnostics .....................................................................................................................................................196 Ping ...........................................................................................................................................................196 Netstat ......................................................................................................................................................198 viii SkyStream Networks System Check ..........................................................................................................................................199 Log Information .....................................................................................................................................201 Software Information .............................................................................................................................203 Hardware Information ...........................................................................................................................203 Troubleshooting ................................................................................................................... 205 Troubleshooting .............................................................................................................................................206 LED Display ............................................................................................................................................206 Error and Event Logging ......................................................................................................................207 IPSec Debugging ....................................................................................................................................208 Password Recovery Procedure .............................................................................................................209 Software Upgrade ...................................................................................................................................210 Command Definitions .......................................................................................................... 205 ping ..................................................................................................................................................................206 route .................................................................................................................................................................209 netstat ..............................................................................................................................................................213 TCP Acceleration Working with Applications ..................................................................... 217 Working with Applications ..........................................................................................................................218 Overview ..................................................................................................................................................218 Connecting the TCP Acceleration Client to a LAN .........................................................................218 Glossary ................................................................................................................................. 223 Acronyms, Abbr. & Definitions ..................................................................................................................224 Forms: Bug Reports .............................................................................................................. 233 Customer Bug Report Checklist ..................................................................................................................234 ix EMR-5000 User’s Guide version 2.3 x EMR-5000 User’s Guide version 2.3 Chapter 1: Overview 1 SkyStream Networks SkyStream EMR™ MPEG-2 (Motion Pictures Experts Group) A group of standards that specify an encoding and compression process. An MPEG2 system provides a method for combining (multiplexing) several types of multimedia information into one stream. The SkyStream Edge Media Router (EMR) is a powerful platform to receive and manage Internet content at the network edge— empowering service providers and enterprises to deliver rich content to large communities of users via broadcast and broadband networks. The SkyStream EMR receives MPEG-2 transport stream containing IP traffic, decapsulates this IP traffic and forwards it over a pair of 10/100 Ethernet ports. Each port is capable of forwarding packets up to 100 Mbps. The EMR supports both unicast and multicast traffic. IP (Internet Protocol) A connectionless protocol that provides packet routing. Multicasting One-to-many transmission of an IP datagram to a host group—a set of one or more hosts identified by a single IP multicast destination address. A multicast datagram is delivered to all members of a destination host group with the same reliability as unicast IP datagrams. 2 Overview EMR-5000 User’s Guide version 2.3 Operating Procedures The following is a short review of how the satellite receiver and its related components route data through the system. Frequency Translation Basics Sending data such as audio, video, and digital data, from one location to another often requires rearranging it in a variety of ways. The sender packs up the information, and the receiver unpacks it when received. The signal is sent via satellite where the satellite dish receives the signal. In order for the signal be delivered to the receiver, the signal must be down converted (modified) to be carried over coaxial cable. Satellite signals, coming from space use higher carrier frequencies than television broadcast frequencies. Large dish antennas use signals in the C frequency band (3 to 5 GHz) and the current popular consumer small dish antennas use signals in the Ku frequency band (10 to 13 GHz). These carrier frequencies are too high to be used on the coaxial cable that connects the antenna to the receiver. To rectify this problem, the antenna system down converts the carrier frequency value to the range between 950 and 2150 MHz, which is consistent with the coaxial cable transmission requirements. Many satellite frequencies are available, and the same receiver might be used to cover a wide range of frequencies. For example, you may need to receive a signal range of 10.90 to 13.25 GHz. This is a range larger than the satellite receiver is able to support. LNB (Low Noise Block) A combination Low Noise Amplifier and downconverter built into one device attached to the feed. Using a dual-range LNB antenna is one solution to this problem. Each LNB uses a different frequency range. Each LNB monitors either the low or the high part of the frequency range. The satellite receiver must be able to switch the LNB settings from one to the other in order to work with this type of system. 3 SkyStream Networks Standard Features TTL (Time To Live) This value decrements each time the IP frame moves through a router. When the number reaches the value of zero, the stream is discarded. IGMP (Internet Group Management Protocol) A control protocol used by multicastenabled hosts to report their group membership information to directly-attached routers. OS (Operating System) The master control program that runs the computer. The operating system is the first program loaded when the computer is turned on, and its main part, called the “kernel,” resides in memory at all times. SNMP (Simple Network Management Protocol) A standard protocol to manage devices in the network. Manageable devices contain an SNMP Agent responsible for handling the information control request. Easy Management of Data Routing to the Local Area Network Data coming into the network via multicast streams are easily routed to a network or server. Administration for incoming streams including IP address and Time-To-Live (TTL) modification provide easy configuration for various LAN environments. IGMP Service The IGMP service is an integrated option included in the SkyStream EMR. Only data that is requested by the clients on the LAN is forwarded to the listeners. IGMP automatically detects when requests are made on the network where the user application supports IGMP. In addition, the system administrator is able to configure rules for each incoming multicast stream. Recovery Features Many levels of technology have been included to ensure configuration integrity during the initial and re-boot sequences due to power failure or network problems. With solid-state memory, a protected OS file system, and stored configuration data, the SkyStream EMR has administrator-free recovery features. Monitoring The SkyStream EMR provides monitoring and diagnostic functionality for safeguarding data integrity. Online Management Configuration of the SkyStream EMR is handled online using either a command line interface (CLI) or a Web GUI. In this way, all satellite tuning, data handling, and IP routing functions can be controlled and managed remotely via the local area network (LAN). In addition, the EMR supports SNMP management, using third party applications such as HP OpenView. Turbo Internet/VPN SkyStream’s Turbo Internet solution employs an asymmetrical satellite network that provides a high-speed delivery system. Turbo Internet uses the EMR, in an end-to-end broadband content delivery system that includes an IP encapsulator, such as the SkyStream satellite Source Media™ Router (SMR). Most Internet traffic is asymmetrical in nature. There is much more data going toward the Internet terminal than away from it. The Turbo Internet takes advantage of this fact and employs a high-capacity forward path and a lower-capacity return path, such as ISDN or modem. SkyStream’s solution also incorporates Virtual Private Networking (VPN), which emulates point-to-point connectivity. For a secure VPN, data is encrypted using a protocol called the Point-to-Point Tunneling Protocol (PPTP), or IPSec. 4 Overview EMR-5000 User’s Guide version 2.3 SkyNAT SkyNAT is the SkyStream EMR application used to support packet translation of incoming data from satellite for address translation, protocol translation, and TTL translation. The objective of packet translation in an Edge Media Router is to modify IP packets received from the satellite interface prior to sending them on to the Ethernet interface. The following types of translations are possible: ■ ■ ■ ■ IP address translation: Modify the destination address of the received packet prior to sending it out. Protocol translation: Transfer the payload of the packet from one protocol to another. Port translation: Modify the destination and/or source port of a packet; these translations are protocol-dependent. Other translations: Modify other fields in the IP header, such as the Time-ToLive (TTL) field. The EMR suppor ts address translation, protocol translation, and TTL translation. Address Translation Address translation means replacing the received destination IP address, in the packet received from the satellite interface, with a different IP address prior to sending it out over the Ethernet interface. Protocol Translation Protocol translation is the process of receiving data payloads in one protocol, and then re-transmitting these payloads in another protocol. The most common layer-4 data transfer protocols in use are TCP and UDP. UDP to TCP UDP (User Datagram Protocol) A connectionless transport-level protocol used in the suite of IPbased protocols. TCP (Transmission Control Protocol) The connectionoriented, transport-level protocol used in the suite of IP-based protocols. The EMR is capable of converting UDP from the DVB link into TCP in the local area network to reliably deliver the payload. Of course, appropriate client software applications are required to take advantage of this, since packet boundaries are lost in the conversion from UDP to TCP. On the TCP side of the connection, the EMR will listen on a TCP port and wait for clients to connect (i.e., it will act as a server). The EMR supports multiple clients on the same stream, with a set maximum of five clients. The EMR will manage each connection independently. This allows for point-to-multipoint support. SkyCast SkyCast is the SkyStream EMR system used for IP Multicast Management. The user has the option to enable or disable SkyCast; however, the default rule will continue to be processed. 5 SkyStream Networks Rules for Multicast Packet Processing From a rule structure created by the user, the EMR will read the initial startup value of the default processing. If no session file exists or if a default processing is not set in the session file, the EMR will still forward the stream to a listener. This is one of the purposes of having SkyCast enabled. The default rule’s IP address and Netmask are as follows: 1 IP Address: 224.0.0.0 2 Netmask: 240.0.0.0 3 TTL: 0 This r ule instr ucts the EMR to forward all multicast addresses (address 224.0.0.0, mask 240.0.0.0) without changing the TTL (indicated by the value 0). Each rule can take the following actions: Forward-if-listener For the default processing to be forwarded-if-listener, the user must enable SkyCast. The forwarding rule is as follows: Multicast packets will only be forwarded into the local Ethernet port(s) if hosts in the attached network have joined the group. Forward The selection of this option implies that the user wants to always forward packets to the local Ethernet ports. The user adds rules for forwarding packets via the following two mechanisms: ■ Unicast to Multicast ■ Multicast to Multicast To accomplish this, the user must specify the destination Ethernet interface through which the packet will be forwarded. Discard The EMR will discard the packets with the specified destination address. 6 Overview EMR-5000 User’s Guide version 2.3 Optional Features ISDN HDLC (High-level Data Link Control) An ISO communications protocol used in X.25 packet switching networks. It provides error correction at the data link layer. Bit stuffing Adding bits to a transmitted message in order to round out a fixed frame. VSAT (Very Small Aperture satellite Terminal) A small earth station for satellite transmission that handles up to 56 kbits/sec of digital transmission. Integrated Service Digital Network (ISDN) has an optional connection in the expansion slot at the back of the EMR that is configurable via the Web GUI or CLI commands. ISDN allows data to be transmitted from point-to-point and reach a destination without errors. The rate of transmission of the data in the ISDN is 64 kbps per channel. NOTE Two channels are supported in this release. Sync Transmission Interface The EMR has a Sync-In port option through an expansion slot at the back of the unit and configurable via the Web GUI or CLI commands. The Sync-In port can receive streams of synchronous data from an SMR or IP encapsulator. After receiving HDLC frames with bit stuffing via satellite, the SMR packetizes the frames using the Data Pipe packetizer and sends them on to the EMR. The EMR then forwards the MPEG-2 Transport Stream through a Sync card to a Sync Receiver. Internal Modem The EMR has optional internal modem in the expansion slot at the back of the unit. You can select this option in Configuration PPP, Hardware Settings. TCP Acceleration TCP Acceleration optimizes the use of TCP over satellite. This feature overcomes the resource consumption problems normally associated with Internet/Intranet applications in a satellite environment. TCP Acceleration supports both passive and active FTP, concurrent TCP connections, VSAT, and redundancy backup. Features ■ ■ ■ ■ ■ Acceleration—Provides an optimized reliable transport protocol that maximizes bandwidth utilization and reduces overhead traffic. Compression—Compresses data packets in real-time, thereby reducing overall bandwidth requirements and accelerating information transfer. Ease of Integration—Acts as a proxy and inter operates with industry standard Internet applications and network elements such as firewalls and routers. Scalability—Highly scalable using multiple servers together with the Master server, it can handle tens of thousands of users. Redundancy—Designed to be fully redundant and meets carrier and enterprise reliability requirements. Benefits ■ Efficiently utilizes bandwidth requirements 7 SkyStream Networks ■ Acceleration applications response times ■ Optimizes allocation of network resources Licensing Key TCP Acceleration is an optional feature of the EMR. To receive a licensing key, contact your local SkyStream Networks sales representative or service provider. 8 Overview EMR-5000 User’s Guide version 2.3 Chapter 2: Hardware Specifications and Installation 9 SkyStream Networks Hardware This chapter outlines the hardware, software specifications, and initial setup and installation for the SkyStream EMR. In addition, you will learn how to connect and configure the EMR to communicate with your local network. EMR Specifications • • • • • External Connector — F Type female Receiving Frequency — 950 MHz to 2150 MHz Input Signal Level — -65 dBm to -25 dBm RF Input Impedance — 75 ohm Embedded Linux Operating System Physical Specifications Dimensions: 1.75” High x 17” Wide x 13” Long Weight: 3.8 kg Operating Temperature: -0° to 40°C Storage Temperature: -55° to 85°C Humidity (operating) 10% to 90% Power Requirements and Specifications Input Voltage: 100-240 V ac Frequency: 50-60 Hz Power Consumption: 40 W (typical) Regulatory Compliance: UL, CE, FCC 10 Hardware Specifications and Installation EMR-5000 User’s Guide version 2.3 Controls, Indicators and Connections Description of the controls, indicators and connectors on the front and rear panels of the SkyStream EMR shown below: EMR front bezel and indicators Front bezel indicators are as follows: Transport stream activity Indicators The front bezel offers a series of Light Emitting Diodes (LEDs) for immediate indication of the status of each of the network cards. The upper LED, labeled “LINK,” indicates that you have achieved the frequency and symbol rate lock to the satellite signal. The bottom LED, labeled “DATA,” will flash indicating that the FEC is locked. Expansion slot activity Indicators The EXP LEDs indicate the status of each of the network cards. The upper LED, labeled “ACTIVE,” indicates network card activity. The bottom LED, labeled “CONFIG,” should be on solid indicating that this card is healthy. LAN activity indicators These LEDs light up if the EMR is connected to a LAN (two LANs maximum). The upper LED indicates an active link, and if flashing, indicates that data is transmitting. The lower LED indicates that the system is transmitting at 100 Mbps and will stay off if it is at 10 Mbps. EMR rear panel connectors with PCI expansion slot 11 SkyStream Networks Basic Connections The following sections walk you through different available options to setup the basic connection to the EMR. Review the configurations before you begin to determine which is the best option for your installation. You can configure the EMR using four basic connections: • Null-modem Serial Cable — Serial connection using a null-modem serial cable, configuring the EMR using the Command Line Interface (CLI). • Crossover Cable (Static IP) — Ethernet connection with a crossover cable, configuring the EMR using the Web GUI. • Network Hub (Static IP) — Ethernet connection through a hub, configuring the EMR using the Web GUI. • Network Hub (DHCP) — Ethernet connection through a hub, configuring the EMR using the Web GUI. NOTE The PCI expansion slot at the back of the unit can be used for any of the optional PCI cards. Null-Modem Serial Cable Configuration The following components are required for the installation of the SkyStream EMR with the Null-modem serial cable configuration: Hardware Dependencies Null-modem cable An RS-232 cable used to connect two personal computers together in close proximity for file transfer. It attaches to the serial ports of both machines and simulates what would occur naturally if modems and the phone system were used. It crosses the sending wire with the receiving wire. • • • • Low Noise Block Converter (LNB) connected to the satellite receiver Satellite Receiver Sync card (optional) PC or workstation with a serial port. Cables Required – (supplied by the user) • • Serial null-modem cable Coaxial cable for connecting to satellite receiver on the EMR Software Requirements • Serial port software for the PC workstation; for example, Windows™ HyperTerminal IMPORTANT NOTE Looking at the unit from the back, there are two serial connectors; plug the console into the left-hand serial port. If you are using a modem, plug it into the right-hand (AUX) serial port. 12 Hardware Specifications and Installation EMR-5000 User’s Guide version 2.3 The following steps will walk you through connecting a PC directly to the EMR with a serial null-modem cable giving you access to the Command Line Interface configuration page: 1 Mount the EMR in a 19-inch standard rack using the screws and brackets provided. (See separate installation sheet.) 2 Connect to the satellite receiver at the back of the EMR using coaxial cable. 3 Connect the SkyStream EMR to a PC via the serial null-modem cable. 4 Connect the power cord to the EMR and to an available power source. 5 Turn on the power switch found on the back of the EMR. 6 Once the EMR is on, start a HyperTerminal session to open a connection to the EMR with the PC or workstation. 7 Configure HyperTerminal to 9600 baud, 8 bits, no parity, 1 stop (9600 N81) and set Flow control to “None.” 8 Enter the user name to log in, this will open the Command Line Interface (CLI). See Chapter 3, “First Time Logon.” NOTE No password is required if none is assigned. For information on how to configure the SkyStream EMR using the CLI, see Chapter 4, “CLI Commands and Operation.” 13 SkyStream Networks Crossover Cable Configuration (static IP) The following components are required for the installation of the SkyStream EMR with the Crossover cable (static IP) configuration: Hardware Dependencies Crossover cable A network cable that crosses the transmit and receive lines. The crossover cable is used to connect hubs and switches together using standard MDI-X ports, which are already crossover ports. The crossover cable crosses the lines first so that after the MDI-X crosses the lines, they are effectively back to a non-crossed condition. • • • • • Low Noise Block Converter (LNB) connected to the satellite receiver Satellite Receiver ISDN card (optional) Internal modem (optional) PC or workstation with a serial port. Cables Required – (supplied by the user) • • Crossover cable Coaxial cable for connecting to satellite receiver on the EMR Software Requirements • 14 Internet Web GUI Hardware Specifications and Installation EMR-5000 User’s Guide version 2.3 NOTE When using the internal modem, plug the phone line into LINE and use PHONE as a phone extension. The following steps will walk you through connecting a PC directly to the EMR with an Ethernet crossover cable giving you access to the Web GUI: 1 Mount the EMR in an available 19-inch standard rack using the screws and brackets provided. (See separate installation sheet.) 2 Connect to the satellite receiver at the back of the EMR using coaxial cable. 3 Connect the SkyStream EMR to a PC via a crossover network cable. (You must connect the cable to LAN 1 connector on the back of the EMR.) 4 Connect other end of crossover cable to the PC or workstation you are using to connect to the EMR. 5 Connect the power cord to the EMR and an available power source. 6 Turn on the power switch found on the back of the EMR. 7 Enter the following IP address and subnet mask for the PC or workstation you are using to connect to the EMR: IP Address = 172.16.1.3 Subnet mask = 255.255.255.0 This will allow you to connect to the EMR through the Web GUI. NOTE Consult the appropriate Microsoft documentation for details on how to configure the IP address and subnet mask on the PC. 8 If the power light and LAN 1 LEDs on the front of the EMR panel are on then the EMR is running. Enter the EMR’s IP address in the Web GUI’s address field as follows: http://172.16.1.2 Default EMR IP Address: 172.16.1.2 See Chapter 3, “First Time Logon.” For more information on how to configure the EMR through the web interface, refer to Chapter 5, “Web GUI Configuration.” 15 SkyStream Networks Network Hub Configuration (static IP) The following components are required for the installation of the SkyStream EMR with the Network hub (static IP) configuration: Hardware Dependencies Network hub A central connecting device in a network that joins communications lines together in a star configuration. Static IP address A permanent IP address that is assigned to a node in a TCP/IP network. Servers and routers are usually assigned static IP addresses, while client stations are often assigned dynamic IP addresses from a DHCP server each time they come online. • • • • • Low Noise Block Converter (LNB) connected to the satellite receiver. Satellite Receiver Secondary Satellite Receiver (optional) PC or workstation with a serial port. Hub for network interface Cables Required – (supplied by the user) • • Network cable Coaxial cable for connecting to satellite receiver on the EMR Software Requirements • 16 Internet Web GUI Hardware Specifications and Installation EMR-5000 User’s Guide version 2.3 The following steps will walk you through connecting a PC directly to the EMR with an Ethernet hub giving you access the Web interface: 1 Mount the EMR in a 19-inch standard rack using the screws and brackets provided. (See separate installation sheet.) 2 Connect to the satellite receiver at the back of the EMR using coaxial cable. 3 Connect the SkyStream EMR to the hub using a network cable. You must use the LAN 1 connector. 4 Connect the power cord to the EMR and an available power source. 5 Turn on the power switch found on the back of the EMR. 6 Enter the following IP address and subnet mask for the PC or workstation you are using to connect to the EMR: IP Address = 172.16.1.3 Subnet mask = 255.255.255.0 This will allow you to connect to the EMR through the Web GUI. NOTE Consult the appropriate Microsoft documentation for details on how to configure the IP address and subnet mask on the PC. 7 If the power light and LAN 1 LEDs on the front of the EMR panel are on then the EMR is running. Enter the EMR’s IP address in the Web GUI’s address field: http://172.16.1.2 Default EMR IP Address: 172.16.1.2 See Chapter 3, “First Time Logon.” To configure the EMR and satellite receivers further, refer to Chapter 5, “Web GUI Configuration.” 17 SkyStream Networks Network Hub Configuration (DHCP) The following components are required for the installation of the SkyStream EMR with the Network hub (DHCP) configuration: Hardware Dependencies DHCP (Dynamic Host Configuration Protocol) Software that automatically assigns IP addresses to client stations logging onto a TCP/IP network. It eliminates having to manually assign permanent IP addresses. DHCP software typically runs in servers and is also found in network devices such as ISDN routers and modem routers that allow multiple users access to the Internet. • • • • • Low Noise Block Converter (LNB) connected to the satellite receiver Satellite Receiver DHCP Server – (supplied by the user) PC or workstation Hub for network interface Cables Required – (supplied by the user) • • Ethernet cable Coaxial cable for connecting to satellite receiver on the EMR Software Requirements Internet Web GUI – (supplied by the user) 18 Hardware Specifications and Installation EMR-5000 User’s Guide version 2.3 The following steps will walk you through connecting a PC directly to the EMR using Ethernet and giving you access to the Web GUI: 1 Mount the EMR in a 19-inch standard rack using the screws and brackets provided. (See separate installation sheet.) 2 Connect to the satellite receiver coaxial cable(s) at the back of the EMR. 3 Connect the SkyStream EMR to the hub where the PC and the DHCP server are connected. Make sure you connect the cable to LAN 2 port. 4 Connect the power cord to the EMR and to an available power source. 5 Turn on the power switch found on the back of the EMR. 6 Find the MAC address for the EMR’s LAN 2 Ethernet port. (Either on a sticker on the back of the EMR or in additional documentation provided with the EMR.) 7 Configure your DHCP server to recognize the EMR’s MAC address and automatically assign a predetermined IP address that conforms to your local network. If no DHCP server is found and this operation fails, then Ethernet 2 will be assigned to 172.16.2.2. 8 If the power light and LAN 2 LED on the front of the EMR panel are on then the EMR is ready to be configured for data transfer. Enter the EMR’s IP address in the Web GUI’s address field. For more information on how to configure the EMR through the web interface, refer to Chapter 5, “Web GUI Configuration.” 19 SkyStream Networks Regulatory Compliance 20 Feature Standard Comments Electromagnetic Interference (EMI) FCC Class B EN 55024 (1998) EN 55022 (1995) Class A VCCI Class A FCC Part15 Sub part B Class ACISPR 22/85 Class A Noise frequency range: 30 MHz to 1GHz Immunity: Electrostatic Discharge EN 61000-4-2 IEC 1000-4-2 Discharges of ± 15kV with an air discharge probe on the receptacle cause no damage Immunity: Radio Frequency Electromagnetic Field EN 61000-4-3 IEC 1000-4-3 With a field strength of 10 V/m rms, noise frequency ranges from 10 MHz to 1 GHz Eye Safety IEC 825-1 Class 1 Safety EN 60950 Class 1 Hardware Specifications and Installation EMR-5000 User’s Guide version 2.3 Replacing the backup battery The lithium battery on the motherboard powers the real time clock (RTC) for up to 10 years in the absence of power. When the battery starts to weaken, it loses voltage, and the system settings stored in CMOS RAM in the RTC may be wrong. Contact your customer service representative or dealer for a list of approved devices. WARNING (for Customer Service trained technician) There is a danger of explosion if battery is incorrectly replaced. Replace only with the same or equivalent type recommended by the equipment manufacturer. Discard used batteries according to manufacturer’s instructions. Instructions The following instructions should only be undertaken by a trained service person. 1. Observe the standard safety and ESD precautions. 2. Open the chassis. 3. Insert the tip of a small flat bladed screwdriver, or equivalent, under the tab in the plastic retainer. 4. Gently push down on the screwdriver to lift the battery. 5. Remove the battery from its socket. 6. Dispose of the battery according to local ordinances. 7. Remove the new lithium battery from its package, and observe the correct polarity; insert it in the battery socket. 8. Close the chassis. 21 SkyStream Networks 22 Hardware Specifications and Installation EMR-5000 User’s Guide version 2.3 Chapter 3: System Logon 23 SkyStream Networks First Time Logon Accessing the SkyStream EMR happens in one of two ways. You can use either a command-line interface (CLI) or a Web GUI. In addition, you can access the CLI either through the serial port or through telnet via the Ethernet interface. The web interface is accessed via the Ethernet. The following sections walk you through the logon processes for the CLI or Web GUIs. CLI Login If an Ethernet or a Web GUI connection is not available, you can configure the SkyStream EMR with the Command Line Interface (CLI) using the serial port connection, this is reviewed in “Basic Connections.” Security There are two levels of security/authentication in the EMR: TIP SkyStream recommends that only users familiar with the CLI format use the Command Line Interface. ■ emradmin —full privileges ■ emruser —cannot change SMMP properties (PIDs and Ports) Start Telnet from the management PC. 1 Click the Windows Start button. 2 Click Run. 3 In the Open box, type: telnet xxx.xxx.xxx.xxx (and the IP Address of the EMR you are connecting to) 4 Click OK. 5 Type at EMR5000 login: emradmin NOTE No password is required at this time, just press Enter. TIP To look at more lines than can be seen, when typing CLI commands, right-click the Command Prompt Window title bar and click Properties. Click Layout tab and change page Buffer Width to 90 and Height to 70. Make sure that “Let the system position the window” is checked. This should allow you to use scroll bars to view the lines of text. 24 System Logon EMR-5000 User’s Guide version 2.3 Web GUI Login Start the Web GUI from the management PC by typing the EMR’s IP address in the Web GUI’s address field. Security There are two levels of security/authentication in the EMR: ■ emradmin —full privileges ■ emruser —cannot change SMMP properties (PIDs and Ports) 1 Click File from the Menu Bar. 2 Click Open... 3 In the Open box, type: (EMR IP address) TIP After you have logged on for the first time, a good practice is to change the password. See Chapter 4, “Command Definitions—passwd.” ALSO See: Chapter 5, “Maintenance—Change Password.” 4 Click one of the buttons (Statistics, Configuration, Maintenance, or Diagnostics) on the left side of the page. This will open a Network Password dialog box. 5 In User Name type: emradmin. NOTE No password is required at this time. 6 Click OK. 25 SkyStream Networks 26 System Logon EMR-5000 User’s Guide version 2.3 Chapter 4: CLI Commands and Operation 27 SkyStream Networks Command Line Interface CLI Basics This chapter covers the basic operation and commands of the Command Line Interface (CLI). After reading this chapter, you will be able use the CLI to configure and manage the EMR. You can access the SkyStream EMR’s command line interface through a Telnet or console (serial port) connection. Accessing the command line interface is referred to as a CLI session. When you establish a CLI session, commands within the EMR’s CLI are in a tree structure. To configure the EMR, you need to understand how to navigate the CLI tree structure. The following section walks you through navigating within the CLI tree. With the help of the question mark (?) and “Show” functions, you will learn how to determine where you are in the tree, and what functions and subcommands are available. Depending on the position within the tree structure, you will have access to different command options. Once in a given configuration branch, you may enter the system level configuration commands that apply to that particular level. In addition, the command prompt changes to reflect the position within the tree structure to assists with navigation. This allows for easy reference within the tree structure when in configuration mode. To start a CLI session, see Chapter 3, “CLI Login.” To list the main nodes available at the CLI level, type a question mark (?) at the prompt and hit Enter. Typing “?” at the prompt will display the following commands: show, no, ifconfig, netstat, ping, reboot, route, passwd, config, maintenance, diag, and stats. When you combine “show” with the question mark (?), the system displays all the subcommands that you can view. For example, when you type “Show clitree,” the system displays all nodes, subcommands, and functions of the “clitree.” Type “show cli-tree” to display the CLI tree structure: This command will display all the root nodes and root subcommands of “clitree” (see Command Definitions). You can use the “?” with “show” subcommands when there are functions below the subcommands at this level; for example, “show interface ?”. This will display the interfaces available. NOTE Type a space between “show” and “?.” 28 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Navigation in config-mode The CLI has a special configuration mode, which allows you to configure individual subsystems. By typing “config” at the prompt, you will enter configuration mode. The prompt will then change to: [config-mode]# To review what functions are available, enter a question mark (?) at the prompt. Type “?” at the [config-mode]# prompt: The following functions will display: pref, interface, active_macs1, active_pids1, active_fkcas1, skycast, skycast_rule, skynat1, snmp, tcpX, and turbointernetvpn. At the [config-mode]# prompt, enter the next node you wish to access; for example, when you enter interface, the command prompt changes to [configmode interface]#. To access the nodes at the next level, enter a question mark (?) at the prompt. Type “?” at the [config-mode interface]# prompt: Displays the following interfaces: satrx1, eth1, eth2, ppp, isdn (optional) and sync (optional). At the [config-mode interface]# prompt, enter the next node you wish to access. For example, when you enter satrx1 {, the command prompt changes to [config-mode interface satrx1]#. To display the options at the next level, enter question mark (?) at the prompt. NOTE The user must type “{” after the node to configure. If not, CLI will return “{ <CR>” meaning that the user must type “{“ followed by a carriage return (Enter). Type “?” at the [config-mode interface satrx1]# prompt: The satellite-configuration option list appears, which shows all the configurable options available on the interface (see Command Definitions). Configuration Values TIP When typing commands in CLI, after a few keystrokes, use the TAB key to complete a command automatically. Each configuration option has a value that you can enter. For example, the “String” values on the “IfStatus” options allows you to enter a rule. The “IP Address” is simply the IP address being assigned to the Ethernet connection of the satellite receiver. The “Integer” value is a number for setting the specific option. To set the satrx1 to 10 Msymbols, at the prompt, type “symbolrate 10.” It should look like this: [config-mode interface satrx1]# symbolrate 10 NOTE To return to [config-mode], type “}” to close the current node or, to go to the CLI prompt, type “exit.” Conventions: A convention used throughout this User Guide is the use of “<>” (greater than and lesser than brackets)—brackets enclose keystroke instructions. For example: <filename> means, type the name of a file, or <CR> means, press “Enter” i.e., a Carriage Return. 29 SkyStream Networks Command Definitions The following section defines all the commands used by CLI. root Command Description Range Example Type: ? Shows all top-level root nodes (Nodes at top-level) show no ifconfig netstat ping reboot route passwd config maintenance diag stats Show commands to display information Disable commands Show active interface status Show Networking statistics Ping the specified host Reboot the emr box Show IP routing table Update user password Enter the configuration mode Maintenance command tree Diagnostics command tree Root of the statistics command show Command Description Range Example 30 Type: show ? Shows all show subcommands (All show subcommands) cli-tree running-config interface active_pids active_macs active_fkcas skycast_rules skynat_rules skynpt_rules tcpX version turbointernet-vpn Display the CLI tree Display the current configuration Root of the show interface commands Display active PIDs list Display active MACs list Display active fkcas list Display SkyCast rules Display SkyNAT rules Display SkyNPT rules Display TCP Acceleration setting Show system version information Display Turbo Internet setting CLI Commands and Operation EMR-5000 User’s Guide version 2.3 show cli-tree Command Description Range Type: show cli-tree Shows all CLI tree root nodes and root subcommands (All show subcommands) NOTE ISDN, Sync, and TCP Acceleration are optional features, the CLI commands for these options will only be available if you have these options. Example root -> show no ifconfig netstat ping reboot route passwd config maintenance diag stats root show -> cli-tree running-config interface active_pids active_macs active_fkcas skycast_rules skynat_rules skynpt_rules tcpX version turbointernet-vpn root show cli-tree -> root show running-config -> root show interface -> satrx1 eth1 eth2 ppp isdn sync root show interface satrx1 -> root show interface eth1 -> root show interface eth2 -> root show interface ppp -> root show interface isdn -> rrot show interface sync -> root show active_pids -> root show active_macs -> root show active_fkcas -> root show skycast_rules -> root show skynat_rules -> root show skyntp_rules -> root show tcpX -> root show version -> root show turbointernet-vpn -> root no -> root ifconfig -> root netstat -> root ping -> root reboot -> root route -> root passwd -> root date -> root timezone -> root config -> root maintenance -> kernel_list boot_mode sw_upgrade key_upgrade reset_counter configuration tcpXmode root maintenance kernel_list -> root maintenance boot_mode -> root maintenance sw_upgrade -> root maintenance key_upgrade -> root maintenance reset_counter -> satrx1 root maintenance reset_counter satrx1 -> root maintenance configuration -> list wrt del load default factory root maintenance configuration list -> 31 SkyStream Networks root maintenance configuration wrt -> root maintenance configuration del -> root maintenance configuration load -> root maintenance configuration default -> root maintenance configuration factory -> root maintenance tcpXmode -> root diag -> run view upload syslog root diag run -> root diag view -> root diag upload -> root diag syslog -> root stats -> satrx1 eth1 eth2 tcpX ppp isdn turbointernetvpn sync root stats satrx1 -> root stats eth1 -> root stats eth2 -> root stats tcpX -> root stats ppp -> root stats isdn -> root stats turbointernet-vpn -> root stats sync -> show running-config Command Type: show running-config Description Shows what interfaces are running Range Example (All configurations running) pref { PidInputStyle hex Telnet enable HTTP enable RouterMode enable BoostLevel disable PidRateMonitoring enable ConsoleLogView enable FECMode auto PromiscuousMode disable MACForwarding ethernet-1 TCPProxy disable SMMPCtrlPidStatus lock SMMPDataPidStatus lock SMMPCtrlPortStatus lock SMMPDataPortStatus lock SMMPAutoDiscPortStatus lock SMMPCtrlAddrMCastStatus lock SMMPDataAddrMCastStatus lock SMMPCtrlPid 0X1FF5 SMMPDataPid 0X1FF6 SMMPCtrlPort 20000 SMMPDataPort 20001 SMMPAutoDiscPort 20002 32 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 SMMPCtrlMCastAddr 230.10.10.10 SMMPDataMCastAddr 230.10.10.11 } interface satrx1 { IfStatus up IPAddr 200.100.100.100 SubnetMask 255.255.255.0 SatInFreq 0.00 SymbolRate 20.00 Polarization disable LNBMode none LBANDFreq 1176.00 LNBLowFreq 0.00 LNBHighFreq 0.00 ViterbiRate 1/2 22KHzSwitch disable } interface eth1 { IfStatus up IPAddr 10.1.1.2 SubnetMask 255.255.255.0 DHCP disable } interface eth2 { IfStatus up IPAddr 192.168.4.113 SubnetMask 255.255.255.0 DHCP enable } interface ppp { } interface ppp server { PhoneNum Username Password DebugStatus off ExpectSendEntry1 -,ExpectSendEntry2 -,ExpectSendEntry3 -,ExpectSendEntry4 -,ExpectSendEntry5 -,} interface ppp network { UsePeerDefaultRoute yes MaxRecvUnit 1500 MaxRecvUnit 1500 ConnectTimeout 120 } interface ppp hardware { 33 SkyStream Networks LineSpeed 57600 HwFlowControl enable } interface ppp modem { InitString ATE0V1Q0&D2 DialString ATDT } interface ppp { } interface isdn server { PhoneNumber Not Set UserName Not Set Password Not Set } interface isdn ppp { UseThisAsDefaultRoute yes VJHeaderCompression enable BChannel twochannels MRU 2000 MTU 1500 IPAddressNegotiation enable RequestedIPAddress 0.0.0.0 RequestedRemoteIPAddress 0.0.0.0 } interface isdn line { DChannelProtocol ni1 MSNEAZ1 Not Set MSNEAZ2 Not Set SPID1 Not Set SPID2 Not Set interface sync { PID 0XFFFF SerialBitShift LSB Speed 0 } active_macs1 { 01:00:5e:00:00:00 } active_pids1 { 0X1FF5 } active_fkcas1 { } skycast { Status enable DefaultOrgDestIPAddr 224.0.0.0 DefaultNetmask 240.0.0.0 DefaultTTL 15 34 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 DefaultAction fwd-if-listner DefaultFwdOutNetworkIf eth1 } skycast_rule { 224.6.6.6 224.6.1.24 224.6.6.6 2 fwd eth1 255.255.255.255 224.6.1.4 2 fwd eth1 255.255.255.255 } skynat1 { nat_status disable npt_status disable } skynat1 skynat_rules { } skynat1 skynpt_rules { } snmp mib2sys { SysContact support@skystream.com SysLocation Sunnyvale } snmp access { public rw } snmp trap { 192.168.4.161 public } tcpX { TransparentProxy disable } tcpX network server { PrimaryRemoteServerAddr 192.168.4.177 PrimaryRemoteServerPort 2915 SecondaryRemoteServerAddr 0.0.0.0 SecondaryRemoteServerPort 2913 POP3ServerAddr 0.0.0.0 POP3ServerPort 110 SMTPServerAddr 0.0.0.0 SMTPServerPort 25 NNTPServerAddr 0.0.0.0 NNTPServerPort 119 } tcpX network client { HTTPListenPort 9090 POP3ListenPort 110 FTPListenPort 9091 SSLListenPort 9092 SMTPListenPort 25 NNTPListenPort 119 } tcpX compression { CompressionStatus disabled 35 SkyStream Networks CompressionLevel 1 HTTPCompressionStatus no FTPCompressionStatus no } tcpX compression fileext { txt doc html htm bmp } tcpX userport { 192.22.23.24 23 333 } turbointernet-vpn pptp { ServerIPAddress 192.168.4.187 Username 1234 Password 1234 SatelliteMacFilter pppaddress } turbointernet-vpn ipsec conf { GatewayIPAddress 192.168.4.186 IPSecMode tunnelmode RemoteSubnet 0.0.0.0 RemoteSubnetMask 192.0.0.0 LocalSubnet 0.0.0.0 LocalSubnetMask 240.0.0.0 } turbointernet-vpn ipsec ike { EncryptionAlgorithm 3des AuthAlgorithm hmacmd5 DiffHellman group2 AuthMode sharedsecret SharedSecret 1234 } turbointernet-vpn ipsec security { UseAuthHeader UnKnownEnumValue AHAuthenticationAlgorithm hmacmd5 UseESP UnKnownEnumValue ESPEncryptionAlgorithm 3des ESPAuthenticationAlgorithm hmacmd5 ReplaceKeyEverySeconds 28800 ReplaceKeyEveryKBs 100000 } turbointernet-vpn connection { ConnectionUsed ipsec InitiateConnection automatic Status IPSec Disconnected, PPTP Disconnected } 36 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 turbointernet-vpn advanced { NATApplied ethernet-1 MACPrefix 1234 } show interface Command Description Range Example Type: show interface ? Shows interface settings (EMR interface cards) satrx1 eth1 eth2 ppp Display Display Display Display Satellite Receiver Interface 0 setting Network Interface 0 setting Network Interface 1 setting PPP setting isdn sync Display ISDN setting Display Sync Interface setting show interface satrx1 Command Description Range Example Type: show interface satrx1 Shows interface satrx1 settings (see [config-mode] interface satrx1) SatRx1 current settings SatRxIfStatus :up SatRxIPAddr :200.100.100.100 SatRxSubnetMask :255.255.255.0 SatMACAddr :00:30:1d:00:04:f6 SatInFreq(GHz) :0.00 LBANDFreq(MHz) :1176.00 SymbolRate(MSym/sec) :20.00 Polarization :disabled ViterbiRate :7/8 SignalLockStatus :LOCK DataLockStatus :LOCK MPELockStatus :UNLOCK SignalStrength(%) :56 22KHzSwitch :disable LNBMode :none 37 SkyStream Networks LNBLowFreq(GHz) LNBHighFreq(GHz) :N/A :N/A LNBOffset(MHz) :0.09 Eb/N0 (dB) :10.50 QPSKBER :0.00 ViterbiBER :0.00 ReedSolomonCError :0 ReedSolomonUCError :0 show interface eth1 Command Description Range Example Type: show interface eth1 Shows interface eth1 settings (see [config-mode] interface eth1 or eth2) Eth1 current settings IfStatus IPAddr SubnetMask MACAddr DHCP :up :192.168.100.104 :255.0.0.0 :00:30:1d:00:04:3d :disable show interface eth2 Command Description Range Example Type: show interface eth2 Shows interface eth2 settings (see [config-mode] interface eth1 or eth2) Eth2 current settings IfStatus IPAddr SubnetMask MACAddr DHCP :up :192.168.200.104 :255.255.255.0 :00:30:1d:00:04:3c :disable show interface ppp Command Description 38 Type: show interface ppp Shows interface ppp settings CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Range Example (see [config-mode] interface ppp) PPP current PPP Interface settings PPPStatus :disable DialMode :manual ConnectionStatus :disconnected IfStatus :down current ISP/Remote PPP Server settings PhoneNumber :Not Set UserName :Not Set Password :Not Set DebugOn :off ExpectSendEntry1 :-,- ExpectSendEntry2 :-,- ExpectSendEntry3 :-,- ExpectSendEntry4 :-,- ExpectSendEntry5 :-,- current Network setup UsePeerDefaultRoute :yes MaxRecvUnit (MRU) :1500 MAXTranUnit (MTU) :1500 ReqLocalIPAddr :0.0.0.0 ReqRemoteIPAddr :0.0.0.0 current Hardware settings LineSpeed :57600 HWFlowControl :enable current Modem settings InitString :ATE0V1Q0&D2 DialString :ATDT show interface isdn (optional) Command Description Range Example Type: show interface isdn Shows isdn interface settings (see [config-mode] interface isdn) ISDN Interface settings MasterStatus DialMode : Connected : Manual 39 SkyStream Networks IfStatus ISP/Remote ISDN Server Setup : Up PhoneNumber :Not Set UserName :Not Set Password :******** ISDN-PPP Setup UseThisAsDefaultRoute :Yes VJHeaderCompression :Enabled BChannel :One Channel MRU :2000 MTU :1500 IPAddressNegotiation :Enabled RequestedIPAddress :0.0.0.0 RequestedRemoteIPAddress :0.0.0.0 ISDN Line Settings DChannelProtocol :NI1 MSNEAZ1 :Not Set MSNEAZ2 :Not Set SPID1 :121123 SPID2 :1234567890 show interface sync (optional) Command Description Range Example Type: show interface sync Shows sync interface settings (see [config-mode] interface sync) Sync current settings PID :0XFFFF SerialBitShift :LSB Speed(bps) 40 :2 Media Type :X.21 Protocol :HDLC Link Status :Up CLI Commands and Operation EMR-5000 User’s Guide version 2.3 show active_pids Command Description Range Example Type: show active_pids Shows active PID numbers entered by the user (PIDs in decimal or hexadecimal) Pid list1 ---------------------Pid Num | Pid Type ---------------------34 35 36 48 strmUnknown strmUnknown strmUnknown strmUnknown show active_macs Command Description Range Example Type: show active_macs Shows additional active MAC addresses for satellite receivers (Shows active MAC addresses entered by user) Promiscuous Mode : disable MAC list1 -----------------MAC Address list -----------------00:20:34:59:00:20 show active_fkcas Command Description Range Example Type: show active_fkcas Shows active fixed keys (Shows active fixed keys entered by user) fkcas list1 41 SkyStream Networks -----------------------------------------Pid Num | Key | Parity -----------------------------------------24 12-00-00-20-34-59-00-20 even show skycast_rules SkyCast The SkyStream system used for IP Multicast Management. Command Description Range Example Type: show skycast_rules Shows each SkyCast rule in the following format: original destination IP address, new destination IP address, TTL, packet action, netmask IP address, packets received, and packets sent. to Ethernet 1 and Ethernet 2. (see [config-mode] skycast_rules) skycast status: enable -------------------------------------------------------------------------------OrgIPAddr|NewIPAddr|TTL| Action |eth|NetMask|PktRecv|PktProc|PktToEth1|PktToEth2 -------------------------------------------------------------------------------224.6.6.6 |224.6.6.6 |20 |fwdiflst|1 |255.0.0.0| 0 |0 |0 |0 |0 show skynat_rules SkyNAT EMR application used to support packet translation of incoming data from satellite for address translation, protocol translation, and TTL translation. Command Description Range Example 42 Type: show skynat_rules Shows SkyNAT: original destination IP address, new destination IP address, Time-To-Live, Action, Netmask IP address, packets processed, and packets sent. (see [config-mode] skynat1) nat1 status: Enable CLI Commands and Operation EMR-5000 User’s Guide version 2.3 -------------------------------------------------------------------OrgDestIPAddr | NewDestIPAddr| TTL | NetMask | PktRecv | PktSent -------------------------------------------------------------------244.1.1.1 | 244.2.2.2 | 4 |255.0.0.0| 0 | 0 show skynpt_rules Command Description Range Example Type: show skynpt_rules Shows SkyNTP: original destination IP address, UDP port, TCP Port, packets received, and packets sent. (see [config-mode] skynpt1) ntp1 status: Enable --------------------------------------------------------------------OrgDestIPAddr | NewDestIPAddr| UDPPort | TCPPort | PktRecv | PktSent ---------------------------------------------------------------------244.1.1.1 | 198.164.200.2 | 459 | 459 |0 | 0 show tcpX Command Description Range Example Type: show tcpX Shows TCP Acceleration settings (see [config-mode tcpX]#) TCP Acceleration Current Server side settings PrimaryRemoteServerAddr :192.168.4.144:1161 SecondaryRemoteServerAddr:NotSet:2913 POP3ServerAddr :NotSet:110 SMTPServerAddr :NotSet:25 NNTPServerAddr :NotSet:119 Current Client Side Settings HTTPListenPort :7777 FTPListenPort :7876 SSLListenPort :9092 POP3ListenPort :110 SMTPListenPort :25 NNTPListenPort :119 43 SkyStream Networks Current User Defined Service Settings ----------------------------------------ServerAddress | ServerPort | ClientPort ----------------------------------------200.200.200.200 | 8888 | 9999 Current Compression Settings CompressionStatus:Disabled CompressionLevel :1 HTTPCompression :No FTPCompression :No CompressedFileExt:txt, bmp, doc, PPP Current General Info TCPAccModeStatus :Enabled MaxTCPConn :1000 TransparentProxy :Disabled show version Command Description Range Example Type: show version Shows Bitstream file, current kernel version of EMR software running, number of interfaces, and Field Programmable Gate Array version. (All version numbers) Current Running Kernel Version : EMR.17.06 Software Package : TCP Acceleration Software Build Date : Sep 8 01:15:07 CDT 2001 System Uptime : 0 days, 01:13 Number of Satrx Interface : 1 Number of Ethernet Interface : 2 Total SDRAM : 128 MB Mainboard Version : EMR5000 Boot Version : 1.17 System Firmware Version : 2001/04/27:15:23:42 Tuner Firmware Version : 2001/02/06:17:16:26 show turbointernet-vpn Command 44 Type: show turbointernet-vpn CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Description Range Example Shows Turbo Internet/VPN settings (All version numbers) TurboInternet/VPN current Connection Method Status ConnectionUsed :IPSec Disconnected ,PPTP Disconnected :PPTP InitiateConnection :Upon Request (Manually) current PPTP settings ServerIPAddress :64.165.192.142 UserName :administrator Password :****** SatMACFiltering :PPP Address (Encrypted over DVB) Advanced Options settings NATApplied :Ethernet-1 MACPrefix :0000 no Command 1 Type: no Description Use the no command to delete configuration values under the following four sections; active pids, active macs, skycast rules, and skynat rules. Range Example ( active configuration values) (see [config-mode active_pids1]#) type: no 0x10 (see [config-mode active_macs1]#) type: no 00:00:ce:aa:02:b7 ( s e e [ c o n f i g - m o d e s k yc a s t _ r u l e s ] # ) t y p e : n o 2 3 4 . 2 3 1 . 1 0 . 1 234.231.10.1 237 fwd-if-listener eth1 255.255.255.255 (see [config-mode skynat_rules]#) type: no 244.1.1.1 244.2.2.2 4 255.0.0.0 0 0 ifconfig Command Description Type: ifconfig Shows all interface information 45 SkyStream Networks Range (All ifconfig information) Example eth1 Link encap:Ethernet HWaddr 00:30:1D:00:09:E9 inet addr:192.168.4.187 Bcast:192.168.4.255 UP BROADCAST RUNNING MULTICAST MTU:1500 Mask:255.255.255.0 Metric:1 RX packets:9542660 errors:9 dropped:9 overruns:0 frame:13 TX packets:19700 errors:0 dropped:0 overruns:0 carrier:19441 collisions:0 txqueuelen:1000 Interrupt:9 Base address:0xffe0 eth2 Link encap:Ethernet inet addr:172.16.2.2 HWaddr 00:30:1D:00:09:E8 Bcast:172.16.2.255 UP BROADCAST RUNNING MULTICAST MTU:1500 Mask:255.255.255.0 Metric:1 RX packets:2969131 errors:0 dropped:0 overruns:0 frame:0 TX packets:15155 errors:0 dropped:0 overruns:11414 carrier:11414 collisions:0 txqueuelen:100 Interrupt:28 satrx1 Link encap:Ethernet inet addr:10.1.1.2 HWaddr 00:30:1D:00:09:EA Bcast:10.1.1.255 UP BROADCAST RUNNING MULTICAST Mask:255.255.255.0 MTU:1500 Metric:1 RX packets:644 errors:0 dropped:0 overruns:0 frame:0 TX packets:644 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.255.0.0 UP LOOPBACK RUNNING MTU:3856 Metric:1 RX packets:194 errors:0 dropped:0 overruns:0 frame:0 TX packets:194 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 ppp1 Link encap:Point-to-Point Protocol inet addr:200.100.99.100 UP POINTOPOINT RUNNING NOARP P-t-P:200.100.99.99 MTU:1500 Mask:255.255.255.0 Metric:1 RX packets:10 errors:0 dropped:0 overruns:0 frame:0 TX packets:17 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:30 sl0 Link encap:Serial Line IP UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:10 46 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 netstat Command Description Range Type: netstat Shows all active network connection information (for more information on the netstat command, see Appendix A: Command Definitions) (All netstat information) Example Active Internet connections (w/o servers ) Proto Recv-Q Send-Q Local Address tcp 0 0 192.168.4.163:telnet tcp 0 126 192.168.4.163:telnet tcp 0 0 1.1.2:telnet tcp 0 0 10.1.1.2:telnet tcp 0 0 10.1.1.2:telnet tcp 0 0 10.1.1.2:telnet Active UNIX domain sockets (w/o servers) Proto RefCnt Flags Type unix 3 [ ] DGRAM unix 2 [ ] DGRAM unix 2 [ ] STREAM unix 2 [ ] DGRAM Foreign Address 192.168.4.181:2406 192.168.6.102:4132 10.1.1.1:1077 10.1.1.1:1079 10.1.1.1:socks 10.1.1.1:1081 State ESTABLISHED ESTABLISHED ESTABLISHED ESTABLISHED ESTABLISHED ESTABLISHED State 7107 7110 62 45 I-Node Path /dev/log ping Command 1 Type: ping (see Help) Description Sends ICMP ping packets to a specified address (for more information on the ping command, see Appendix A: Command Definitions). Range Example (All IP addresses on network) usage: ping [-LRdfnqrv] [-c count] [-i wait] [-l preload] [-p pattern] [-s packetsize] [-t ttl] [-I interface address] host NOTE At the prompt, type the string of parameters separated with a space. Command 2 Example Type: ping 192,168.100.70 PING 192.168.100.70 (192.168.100.70): 56 databytes 64 bytes from 192.168.100.70:icm_seq=0 ttl=128 time=1.6 ms NOTE To stop PING command, type CTRL+C. 47 SkyStream Networks reboot Command Type: reboot Description Reboots system Range Example (EMR) You will be prompted “reboot: Are you sure you want to reboot? (yes/no).” route Command Description Range Type: route Shows IP routing information (for more information on the route command, see Appendix A: Command Definitions) (All active network destinations) Example Kernel IP routing table Destination Gateway 192.168.4.0 0.0.0.0 10.1.1.0 10.1.1.2 200.100.10.0 0.0.0.0 224.0.0.0 0.0.0.0 default 192.168.4.254 Genmask 255.255.255.0 255.255.255.0 255.255.255.0 240.0.0.0 0.0.0.0 Flags U U U U UG Metric 0 0 0 0 0 Ref 0 0 0 0 0 Use 0 0 0 0 0 Iface eth1 eth0 etnr0 eth0 eth1 passwd Command Description Range Example Type: passwd Prompts to change password. Type in new password and press Enter. You will be prompted to re-type the password again. (Type a string) Changing password for user cli. New UNIX password: Retype new UNIX password: After retyping the new password correctly, the following message is displayed: passwd: all athentication tokens updated successfully. 48 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 date Command 1 Type: date Description Press enter and it will display the current date and time. Example Tues Jul 16 14:22:00 PDT 2002 Command 2 Type: date 071613002002 Description Sets the date to July 16th 2002 1:00 P.M. date command modifies system time and hardware clock. Range (24 hour clock) timezone Command 1 Type: timezone Description Press enter and it will display the current timezone. Example Command 2 America/Los_Angeles Type: timezone -l NOTE Use the lowercase letter ‘l” not the number “1”. Description Range Example Press enter and it will lists available timezones. (Country/City—see list) Africa/Abidjan Africa/Accra Africa/Addis_Ababa Africa/Algiers Africa/Asmera Africa/Bamako Africa/Bangui Command 3 Type: timezone US/Pacific Description Press enter and it will set new timezone. 49 SkyStream Networks config In config mode, there are three formats for entering values: 1 Attribute + value 2 Value only 3 String of values Each command will give you an example of which format to use. Command 1 Type: config Description Changes prompt to config-mode Command 2 In [config-mode]# type: ? Description Shows all [config-mode]# subcommands Range Example (All [config-mode]# subcommands) pref interface active_macs1 active_pids1 active_fkcas1 skycast skycast_rule skynat1 preferences configuration node Interface configuration Active MAC list for Satellite Receiver 1 PID list for Satellite Receiver 1 FKCas list for Satellite Receiver 0 Skycast configuration node SkyCast rule list Skynat configuration node snmp snmp settings tcpX TCP Acceleration configuration node turbointernet-vpn Turbo Internet/VPN Configuration Node TIP To delete a parameter for active_pids1, active_macs1, active_fkcas1, or skynat_rule1, at the applicable prompt, type “no” and then the parameter. Remember to type “{“ to open the node for configuration. 50 NOTE When changing the attributes of a list such as skycast_rules, active_macs1, active_pids1, active_fkcas1, and skynat_rule1, you must enter the parameters as a string. When editing the string, type the whole corrected string at the appropriate prompt and CLI will make the change. At the CLI prompt, type show running-config to check it. CLI Commands and Operation EMR-5000 User’s Guide version 2.3 [config-mode] pref Command 1 In [config-mode]# type: pref { Description Changes to [config-mode pref] Command 2 In [config-mode pref]# type: ? Description The preferences list appears, which shows configurable system parameters. Each command is a toggle between a pair of parameters. Range Example (see list) Attribute list PidInputStyle Telnet HTTP RouterMode BoostLevel PidRateMonitoring ConsoleLogView FECMode PromiscuousMode MACForwarding TCPProxy SMMPCtrlPidStatus dec | hex disable | enable disable | enable disable | enable disable | enable disable | enable disable | enable auto | manual disable | enable ethernet-1 | ethernet-2 disable | enable lock | unlock SMMPDataPidStatus lock | unlock SMMPCtrlPortStatus lock | unlock SMMPDataPortStatus lock | unlock SMMPAutoDiscPortStatus lock | unlock SMMPCtrlAddrMCastStatus lock | unlock SMMPDataAddrMCastStatus lock | unlock SMMPCtrlPid PidValue SMMPDataPid PidValue SMMPCtrlPort Integer(1 .. 65535) SMMPDataPort Integer(1 .. 65535) SMMPAutoDiscPort Integer(1 .. 65535) SMMPCtrlMCastAddr IP Address (A.B.C.D) SMMPDataMCastAddr IP Address (A.B.C.D) Values ■ PidInputStyle: Type “dec” or “hex” to toggle between decimal or hexadecimal parameters. ■ Telnet: Type “disable” or “enable” to turn Telnet on or off. ■ HTTP: Type “disable” or “enable” to turn HTTP on or off. 51 SkyStream Networks ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ ■ RouterMode: Type “disable” or “enable” to turn RIP V1on or off. For more information, see Chapter 5, Configuration—Static Routes. BoostLevel: Type “enable” to boost the polarization voltage by one-volt. PidRateMonitoring: Type “enable” to see the Bit/rate in PID Selection, and “disable” Router Mode (Decrement TTL) if you don’t want TTL to decrement. ConsoleLogView: Type “enable” to have the log messages to display the on the page. FECMode: Type “auto” or “manual.” For more information, see Chapter 5, Maintenance—Advanced Preferences. PromiscuousMode: Type “disable” or “enable.” For more information, see Chapter 5, Configuration—MAC Address Selection. MACForwarding: Type “ethernet-1” or “ethernet-2.” TCPProxy: Type “disable” or “enable” if you want to forward data from a client to a server via TCP. SMMPCtrlPidStatus: Type “lock” or “unlock” to allow or block a PID being entered through the SMMPCtrlPid command. SMMPDataPidStatus: Type “lock” or “unlock” to allow or block a PID being entered through the SMMPDataPid command. SMMPCtrlPortStatus: Type “lock” or “unlock” to allow or block a PID being entered through the SMMPCtrlPort command. SMMPDataPortStatus: Type “lock” or “unlock” to allow or block a PID being entered through the SMMPDataPort command. SMMPAutoDiscPortStatus: Type “lock” or “unlock” to allow or block a PID being entered through the SMMPAutoDiscPort command. SMMPCtrlAddrMCastStatus: Type “lock” or “unlock” to allow or block a PID being entered through the SMMPCtrlMcastAddr command. SMMPDataAddrMCastStatus: Type “lock” or “unlock” to allow or block a PID being entered through the SMMPDataMCastAddr command. ■ SMMPCtrlPid: Type control PID value. ■ SMMPDataPid: Type data PID value. ■ SMMPCtrlPort: Type integer (1 .. 65535) for control port number. ■ SMMPDataPort: Type integer (1 .. 65535) for data port number. ■ SMMPAutoDiscPort: Type integer (1 .. 65535) for Auto Discovery port number. ■ SMMPMCtrlMCastAddr: Type control multicast IP address. ■ SMMPMDataMCastAddr: Type data multicast IP address. To configure parameters shown above: 52 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Command 3 In [config-mode pref]# type: PidInputStyle dec Description Changes from (default) Hexadecimal to decimal NOTE After entering a new attribute, you can check it by typing the show running-config command. [config-mode] interface Command 1 In [config-mode]# type: interface Description Changes to [config-mode interface]# Command 2 In [config-mode interface]# type: ? Description Shows interfaces Range Example (All interface cards) satrx1 eth1 eth2 ppp SatRx configuration node Ethernet configuration node Ethernet configuration node PPP configuration node isdn sync ISDN configuration node Sync configuration node [config-mode interface] satrx1 Command 1 In [config-mode interface]# type: satrx1 { Description Changes to [config-mode interface satrx1]# Command 2 In [config-mode interface satrx1]# type: ? Description The satellite-configuration option list appears, which shows all the configurable options available on the interface. NOTE The quickest way to do this, if you know the interface name, is to type at the prompt [config-mode]# “interface satrx1 {” (remember to put a space between each value). Range (see values below) Example Attribute list 53 SkyStream Networks IfStatus enable | disable IPAddr IP Address (A.B.C.D) SubnetMask IP Address (A.B.C.D) SatInFreq Float (GHz) SymbolRate Float (Msymbols/sec) Polarization ver_right | horz_left | disable LNBMode none | single | dual LBANDFreq Float (MHz) LNBLowFreq Float (GHz) LNBHighFreq Float (GHz) ViterbiRate 1/2 | 2/3 | 3/4 | 5/6 | 6/7 | 7/8 22KHzSwitch enable | disable | auto Values ■ IfStatus: Type “up” or “down” to turn receiver card on or off ■ IPAddress: Type the IP address for the receiver card ■ SubnetMask: Type Subnet mask IP address, if applicable ■ ■ ■ Polarization A technique used by the satellite designer to increase the capacity of the satellite transmission channels by reusing the satellite transponder frequencies. L-Band The frequency range from 0.5 to 1.5 GHz. Also used to refer to the 950 to 1450 MHz used for mobile communications. SatInFreq: Type the satellite receiver frequency in GigaHertz. This value is only applicable in LNB mode. SymbolRate: Type the Symbol Rate in MegaSymbols. This must be set to match the baud data rate (range is 2 - 45). Polarization: Type “vert_right” or “horiz_left” to select the desired signal NOTE Polarization works when LNB Mode is in “single” or “double” mode. ■ ■ LNBMode: Type “none,” “single” or “double” depending on if you are using LNB Low Frequency by itself, or both LNB Low and High Frequency together LBANDFreq: Type the value in MegaHertz to match LNB and incoming RF feed ■ LNBLowFreq: Type the value for the bottom limit of range in GigaHertz ■ LNBHighFreq: Type the value for the top limit of range in GigaHertz ■ ■ VirterbiRate: Type “1/2”, “2/3”, “3/4”, “5/6” or “7/8”, which is equivalent to the Forward Error Correction (FEC) rate 22KHzSwitch: Type “enable” to turn on switch in the satellite receiver tuner. Type “disable” to turn switch to automatic, or you can just type “auto.” To configure parameters shown above: Command 3 In [config-mode interface satrx1]# type: symbolrate 12 Description Type in attribute and parameter separated with a space. NOTE After entering a new attribute, you can check it by typing the show running-config command. 54 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 [config-mode] interface eth1 or eth2 Command 1 In [config-mode interface]# type: eth1 { Description Changes to [config-mode interface eth1]# Command 2 In [config-mode interface eth1]# type: ? Description The satellite-configuration option list appears, which shows all the configurable options available on the interface. NOTE The quickest way to do this if you know the interface name is at [config-mode]# to type “interface eth1 {” (remember to put a space between each value). Range Example (see values below) Attribute list IfStatus up | down IPAddr IP Address (A.B.C.D) SubnetMask IP Address (A.B.C.D) DHCP enable | disable NOTE At the prompt, type the attribute followed by parameter. Values ■ IfStatus: Type “up” or “down” to turn receiver card on or off ■ IPAddress: Type the IP address for the Ethernet interface ■ SubnetMask: Type Subnet mask, if applicable ■ DHCP: Type “enable” or “disable” to turn DHCP on or off [config-mode] interface ppp Command 1 In [config-mode interface]# type: ppp { Description Changes to [config-mode interface ppp]# Command 2 In [config-mode interface ppp]# type: ? Description The configuration option list appears, which shows all the configurable options available for PPP. Range (see list) 55 SkyStream Networks Example Attribute list EnablePPP enable | disable DialMode manual | demand Status connect | disconnect NOTE At the prompt, type the attribute followed by parameter. [config-mode] interface ppp (node) Command 1 In [config-mode interface]# type ppp Description Changes to [config-mode interface ppp]# Command 2 In [config-mode interface ppp]# type: ? Range (see list) Example server ISP/Remote Server setup network Network setup hardware Hardware settings modem modem setup [config-mode interface ppp] server Command 1 In [config-mode interface ppp]# type server { Description Changes to [config-mode interface ppp server]# Command 2 In [config-mode interface ppp server]# type: ? Range (see values below) Example Attribute list PhoneNum String Username String Password String DebugStatus on | off ExpectSendEntry1 String(Expect),String(Send) ExpectSendEntry2 String(Expect),String(Send) ExpectSendEntry3 String(Expect),String(Send) ExpectSendEntry4 String(Expect),String(Send) ExpectSendEntry5 String(Expect),String(Send) NOTE At the prompt, type the attribute followed by string. 56 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Values ■ PhoneNum: Type phone number to access ppp server without spaces including ‘9’ for an outside line and ‘1’ for long distance, when required. ■ Username: Type user name to access ppp server. ■ Password: Type password to access ppp server. ■ ExpectSendEntry1: Type String(ogin:),String(your-login) ■ ExpectSendEntry2: Type String(word:),String(your-password) ■ ExpectSendEntry3: Type String(>),String(ppp) ■ ExpectSendEntry4: (etc...) [config-mode interface ppp] network Command 1 In [config-mode interface ppp]# type network { Description Changes to [config-mode interface ppp network]# Command 2 In [config-mode interface ppp network]# type: ? Range (see values below) Example Attribute list UsePeerDefaultRoute yes | no MaxRecvUnit Integer MaxTransUnit ConnectTimeout Integer Integer NOTE At the prompt, type the attribute followed by string or parameter. Values ■ UsePeerDefaultRoute: Type “yes” or “no.” ■ MaxRecvUnit: Type (default 1500 bytes) ■ MaxTransUnit: Type (default 1500 bytes) ■ ConnectTimeout: Type number of seconds for connecting (120 default) 57 SkyStream Networks [config-mode interface ppp] hardware Command 1 In [config-mode interface ppp]# type hardware { Description Changes to [config-mode interface ppp hardware]# Command 2 In [config-mode interface ppp hardware]# type: ? Range (see values below) Example Attribute list LineSpeed 1200|2400|4800|9600|19200|57600 HwFlowControl enable | disable NOTE At the prompt, type the attribute followed by string. Values ■ LineSpeed: Type (baud rate of modem—1200, 2400, 4800, 9600, 19200, 57600) ■ HwFlowControl: Type “Enable” or “Disable” [config-mode interface ppp] modem Command 1 In [config-mode interface ppp]# type modem { Description Changes to [config-mode interface ppp modem]# Command 2 In [config-mode interface ppp modem]# type: ? Range (see values below) Example Attribute list InitString String DialString String NOTE At the prompt, type the attribute followed by string. Values 58 ■ InitString: Type ATZ ATE1VE1V1Q0 (default) ■ DialString: Type ATDT (default) 8 characters CLI Commands and Operation EMR-5000 User’s Guide version 2.3 [config-mode] interface isdn (optional) Command 1 In [config-mode interface]# type: isdn { Description Changes to [config-mode interface isdn]# Command 2 In [config-mode interface isdn]# type: ? Description The configuration option list appears, which shows all the configurable options available for ISDN. Range Example (see list) Attribute list Status manual-dial | demand-dial | disconnect NOTE At the prompt, type the attribute followed by string. [config-mode] interface isdn (optional) Command 1 In [config-mode interface]# type: isdn Description Changes to [config-mode interface isdn]# Command 2 In [config-mode interface isdn]# type: ? Range (see list) Example server SP/Remote ISDN Server Setup ppp ISDN-PPP Setup line ISDN Line Settings [config-mode interface isdn] server Command 1 In [config-mode interface isdn]# type: server { Description Changes to [config-mode interface isdn server]# Command 2 In [config-mode interface isdn server]# type: ? Range (see values below) 59 SkyStream Networks Example Attribute list PhoneNumber String UserName String Password String NOTE At the prompt, type the attribute followed by string. Values ■ PhoneNum: Type phone number to access isdn server without spaces including ‘9’ for an outside line and ‘1’ for long distance, when required. ■ Username: Type user name to access isdn server. ■ Password: Type password to access isdn server. [config-mode interface isdn] ppp Command 1 In [config-mode interface isdn]# type: ppp { Description Changes to [config-mode interface isdn ppp]# Command 2 In [config-mode interface isdn ppp]# type: ? Range (see values below) Example Attribute list UseThisAsDefaultRoute VJHeaderCompression yes | no enable | disable BChannel String MRU Integer MTU Integer IPAddressNegotiation enable | disable RequestedIPAddress String RequestedRemoteIPAddress String NOTE At the prompt, type the attribute followed by string. Values ■ UseThisAsDefaultRoute: Type “yes” or “no” ■ VJHeaderCompression: Type “enable” or “disable” ■ BChannel: Type “onechannel” or twochannels” ■ MRU: Type 2000 (default maximum receive unit in bytes) ■ MTU: Type 1500 (default maximum transmit unit bytes) ■ IPAdvancedNegotiation: Type “enable” or “disable” ■ 60 RequestedIPAddress: Type (xxx.xxx.xxx.xxx) EMR IP address (0.0.0.0 will negotiate actual IP address during connection) CLI Commands and Operation EMR-5000 User’s Guide version 2.3 ■ RequestedRemoteIPAddress: Type (xxx.xxx.xxx.xxx) remote ISP IP address (optional) [config-mode interface isdn] line Command 1 In [config-mode interface isdn]# type: line { Description Changes to [config-mode interface isdn line]# Command 2 In [config-mode interface isdn line]# type: ? Range (see values below) Example Attribute list DChannelProtocol String MSNEAZ1 String MSNEAZ2 String SPID1 String SPID2 String NOTE At the prompt, type the attribute followed by string. Values ■ ■ ■ ■ ■ DChannelProtocol: Type one of the following values: Protocol 1TR6, Protocol EDSS1, Protocol Leased, or Protocol NI1. MSNEAZ1: Type Multiple Subscriber Number or Endgeraete Auswahl Ziffer (Germany) Obtain these numbers from your Internet Service Provider. MSNEAZ2: (same as above) SPID1: Type Service Profile Identifier is an additional identifier used to identify the EMR ISDN device to the telephone network. Obtain these numbers from you Internet Service Provider. SPID2: (same as above) NOTE SPID is available by selecting Protocol NI1 as the D-Channel Protocol. [config-mode] interface sync (optional) Command 1 In [config-mode interface]# type: sync { Description Changes to [config-mode interface sync]# Command 2 In [config-mode interface sync]# type: ? 61 SkyStream Networks Description The configuration option list appears, which shows all the configurable options available for Sync. Range (see values below) Example Attribute list PID SerialBitShift Speed PidValue MSB/LSB Integer NOTE At the prompt, type the attribute followed by parameter. Values ■ ■ ■ PID: Type PID <Value> (i.e. 95 in dec. or 5F in Hex.) SerialBitShift: Type “MSB” or “LSB.” See SMR User’s Guide, Chapter 5, “Configure Sync In Hardware Driver.” Speed: Type <integer> (range is 1 to 8 Mbits/s) [config-mode] active_macs1 Command 1 In [config-mode]# type: active_macs1 { Description Changes to [config-mode active_macs1]# Command 2 In [config-mode active_macs]# type: ? Description Configure active MAC Addresses Range Example (All MAC addresses entered by user) Attribute list Active MACAddr String NOTE Type the MAC address at the prompt in the following format: 00:00:00:00:00:00 Command 3 62 Type: 00:30:1d:00:04:c2 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 [config-mode] active_pids1 Command 1 In [config-mode]# type: active_pids1 { Description Changes to [config-mode active_pids1]# Command 2 In [config-mode active_pids]# type: ? Description Add active PIDs Range Example 0-8191 Attribute list PID PidValue NOTE At the prompt, type a PID number. Check to see if system is in decimal or hexadecimal configuration mode. Command 3 Type: 32 [config-mode] active_fkcas1 Command 1 In [config-mode]# type: active_fkcas1 { Description Changes to [config-mode active_fkcas1]# Command 2 In [config-mode active_fkcas1]# type: ? Description Add active PID, fixed key, and parity Range Example (Fixed keys added by user) Attribute list PID PidValue Key xx-xx-xx-xx-xx-xx-xx-xx Parity odd/even NOTE At the prompt, type the string of parameters separated with a space. [config-mode] skycast Command 1 In [config-mode]# type: skycast { 63 SkyStream Networks Description Changes to [config-mode skycast]# Command 2 In [config-mode skycast]# type: ? Description Configure SkyCast Range (see values below) Example Attribute list Status enable | disable DefaultOrgDestIPAddr IP Address (A.B.C.D) DefaultNetmask IP Address (A.B.C.D) DefaultTTL Integer DefaultAction fwd | fwd-if-listner | discard DefaultFwdOutNetworkIf eth1 | eth2 NOTE At the prompt, type attribute followed by parameter. Values ■ Status: Type “enable” or “disable” to turn SkyCast on or off ■ DefaultAction: Type “fwd”, “fwd-if-listner” or “discard” for default - Forward: Sends the Multicast packets into the local network unconditionally. - Forward If Listener: Sends the Multicast packets from this multicast group into the network if there is a group member present - Discard: Discards all packets belonging to this group. ■ ■ DefaultNewDestIPAddr: Type the new destination IP address for default DefaultTTL: Type an integer. If you leave this value as zero, the TTL will remain unchanged [config-mode] skycast_rule Command 1 In [config-mode]# type: skycast_rule { Description Changes to [config-mode skycast_rule]# Command 2 In [config-mode skycast_rule]# type: ? Description Configure skycast rules Range 64 (see values below) CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Example Attribute list OrgDestIPAddr NewDestIPAddr TTL Action OutNetworkIf Netmask IP Address (A.B.C.D) IP Address (A.B.C.D) Integer fwd | fwd-if-listener | discard eth1 | eth2 IP Address (A.B.C.D) NOTE At the prompt, type the string of parameters separated with a space. Values ■ ■ ■ ■ OrgDestIPAddr: Type IP address for original destination of the data stream NewDestIPAddr: Type the IP address for the new destination of the data stream TTL: Type an integer. If you leave this value as zero, the TTL will remain unchanged Action: Type one of the forwarding options: - Forward: Sends the Multicast packets into the local network unconditionally. - Forward If Listener: Sends the Multicast packets from this multicast group into the network if there is a group member present. - Discard: Discards all packets belonging to this group. Command 3 ■ OutNetworkIf: Type “eth1” or “eth2” to select the out interface ■ NetMask: Type the related Net Mask information In [config-mode skycast_rule]# type: 192.168.100.0 224.6.6.6 4 fwd-if-listner eth1 255.255.255.255 [config-mode] skynat1 Command 1 In [config-mode]# type: skynat1 { Description Changes to [config-mode skynat1]# Command 2 In [config-mode skynat1]# type: ? Description Enables SkyNAT Range (see list below) 65 SkyStream Networks Example Command 3 Attribute list nat_status enable | disable npt_status enable | disable Type: nat_status enable [config-mode skynat1] NOTE The suffix number ‘1’ refers to the number of the receiver card. Command 1 In [config-mode]# type: skynat1 NOTE This command is similar to the one before except it does not use a “{“. Description Changes to [config-mode skynat1]# Command 2 In [config-mode skynat1]# type: ? Description Configure SkyNAT’s two options: Address translation rule list, and Protocol translation rule list Range Example (see list below) skynat_rules skynpt_rules Network address translation rule list Network protocol translation rule list [config-mode skynat1 skynat_rules] Command 1 In [config-mode skynat1]# type: skynat_rules { Description Changes to [config-mode skynat1 skynat_rules]# Command 2 In [config-mode skynat1 skynat_rules]# type: ? Description Configure address translation rule list Range Example (see values below) Attribute list OrgDestIPAddr NewDestIPAddr TTL Netmask IP Address (A.B.C.D) IP Address (A.B.C.D) Integer IP Address (A.B.C.D) NOTE At the prompt, type the string of parameters separated with a space. 66 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Values ■ ■ ■ ■ OrgDestIPAddr: Type IP address for original destination of the data stream NewDestIPAddr: Type the IP address for the new destination of the data stream TTL: Type an integer. If you leave this value as zero, the TTL will remain unchanged NetMask: Type the related Net Mask information [config-mode skynat1 skynpt_rules] Command 1 In [config-mode skynat1]# type: skynpt_rules { Description Changes to [config-mode skynat1 skynpt_rules]# Command 2 In [config-mode skynat1 skynpt_rules]# type: ? Description Configure address translation rule list Range Example (see values below) Attribute list OrgDestIPAddr UDPPort IP Address (A.B.C.D) Integer (1..65535) TCPPort Integer (1 .. 65535) NOTE At the prompt, type the string of parameters separated with a space. Values ■ OrgDestIPAddr: Type IP address for original destination of the data stream ■ UDPPort: Type an integer (customer specific) ■ TCPPort: Type an integer (customer specific) [config-mode] snmp Command 1 In [config-mode]# type: snmp Description Changes to [config-mode snmp]# Command 2 In [config-mode snmp]# type: ? Description Configure SNMP information 67 SkyStream Networks Range Example (see list) mib2sys access trap Mib-2 System settings Snmp access list trap list [config-mode snmp mib2sys] Command 1 In [config-mode snmp]# type: mib2sys { Description Changes to [config-mode snmp mib2sys]# Range Command 2 (see values below) In [config-mode snmp mib2sys]# type: ? Attribute list SysContact SysLocation String String NOTE At the prompt, type the string of parameters separated with a space. Values ■ SysContact: ■ SysLocation: [config-mode snmp access] Command 1 In [config-mode snmp]# type: access { Description Changes to [config-mode snmp access]# Range Command 2 (see values below) In [config-mode snmp access]# type: ? Attribute list Community String Access ro | rw NOTE At the prompt, type the string of parameters separated with a space. Values ■ ■ 68 Community: Type “Public” which ensures that only people on the local network can get information on the SNMP. Access Control: Type “ro” Read_Only or “rw” Read_Write access. CLI Commands and Operation EMR-5000 User’s Guide version 2.3 [config-mode snmp trap] Command 1 In [config-mode snmp]# type: trap { Description Changes to [config-mode snmp trap]# Range Command 2 (see values below) In [config-mode snmp trap]# type: ? Attribute List TrapDest Community IP Address (A.B.C.D) String NOTE At the prompt, type the string of parameters separated with a space. Values ■ ■ Trap Destination: Type IP Address for trap destination. Community: Type “Public” which ensures that only people on the local network can get information on the SNMP. [config-mode] tcpX Command 1 In [config-mode]# type: tcpX Description Changes to [config-mode tcpX]# Command 2 In [config-mode tcpX]# type: ? Description Configure TCP Acceleration Range Example (see list) network Network settings compression Compression settings userport User Defined Ports settings 69 SkyStream Networks [config-mode tcpX] network Command 1 In [config-mode tcpX]# type: network Description Changes to [config-mode tcpX network]# Command 2 In [config-mode tcpX network]# type: ? Description Configure TCP Acceleration Network Settings Range Example (see list) server client Server settings Client settings [config-mode tcpX network] server Command 1 In [config-mode tcpX network]# type: server { Description Changes to [config-mode tcpX network server]# Command 2 In [config-mode tcpX network server]# type: ? Description Configure TCP Acceleration Network Settings for server side Range (see values below) Example Attribute list PrimaryRemoteServerAddr IP Address (A.B.C.D) PrimaryRemoteServerPort Integer SecondaryRemoteServerAddr IP Address (A.B.C.D) SecondaryRemoteServerPort Integer POP3ServerAddr IP Address (A.B.C.D) POP3ServerPort Integer SMTPServerAddr IP Address (A.B.C.D) SMTPServerPort Integer NNTPServerAddr IP Address (A.B.C.D) NNTPServerPort Integer NOTE At the prompt, type attribute followed by parameter. 70 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Values ■ ■ ■ ■ PrimaryRemoteServerAddr: Type IP address for TCP Acceleration primary server PrimaryRemoteServerPort: Type port number for TCP Acceleration primary server SecondaryRemoteServerAddr: Type IP address for TCP Acceleration secondary server SecondaryRemoteServerPort: Type port number for TCP Acceleration secondary server ■ POP3ServerAddr: Type IP address for e-mail server to send mail. ■ POP3ServerPort: Type port number for e-mail server to send mail. ■ SMTPServerAddr: Type IP address for e-mail server to receive mail. ■ SMTPServerPort: Type port number for e-mail server to receive mail. ■ NNTPServerAddr: Type IP address of Network News server. ■ NNTPServerPort: Type port number of Network New server. NOTE After entering a new attribute, you can check it by typing the show running-config command. [config-mode tcpX network] client Command 1 In [config-mode tcpX network]# type: client { Description Changes to [config-mode tcpX network client]# Command 2 In [config-mode tcpX network client]# type: ? Description Configure TCP Acceleration Network Settings for client side Range (see values below) Example Attribute list HTTPListenPort Integer POP3ListenPort Integer FTPListenPort Integer SSLListenPort Integer SMTPListenPort Integer NNTPListenPort Integer NOTE At the prompt, type attribute followed by parameter. 71 SkyStream Networks Values ■ ■ ■ ■ HTTPListenPort: Type HTTP port used by the TCP Acceleration client (default is 9090). POP3ListenPort: Type POP3 port used by the TCP Acceleration client FTPListenPort: Type FTP port used by the TCP Acceleration client (default is 9091). SSLListenPort: Type SSL port used by the TCP Acceleration client (default is 9092). ■ SMTPListenPort: Type SMTP port used by the TCP Acceleration client. ■ NNTPListenPort: Type NNTP port used by the TCP Acceleration client. [config-mode tcpX] compression Command 1 In [config-mode tcpX]# type: compression { Description Changes to [config-mode tcpX compression]# Command 2 In [config-mode tcpX compression]# type: ? Description Configure TCP Acceleration Compression Settings Range Example (see list) Attribute list CompressionStatus enabled | disabled CompressionLevel 1..9 HTTPCompressionStatus yes | no FTPCompressionStatus yes | no NOTE At the prompt, type file extensions required. Command 3 Type: xls To delete extensions Type: no xls [config-mode tcpX] userport 72 Command 1 In [config-mode tcpX]# type: userport { Description Changes to [config-mode tcpX userport]# CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Command 2 In [config-mode tcpX userport]# type: ? Description Configure TCP Acceleration User Defined Ports settings Range Example (see values below) Attribute list FreeTcpServerAddr IP Address (A.B.C.D) ServerPort Integer ClientPort Integer NOTE At the prompt, type the string of parameters separated with a space. Values ■ FreeTcpServerAddr: Type IP address used by TCP Acceleration primary server. ■ ServerPort: Type server side port number. ■ ClientPort: Type client side port number (default is 5631). [config-mode] turbointernet-vpn Command 1 In [config-mode]# type: turbointernet-vpn Description Changes to [config-mode turbointernet-vpn]# Command 2 In [config-mode turbointernet-vpn]# type: ? Description ConfigureTurbo Internet-VPN Range Example (see list) pptp PPTP Configuration ipsec IPSec settings connection Connection Method advanced Advanced settings [config-mode turbointernet-vpn] pptp Command 1 In [config-mode turbointernet-vpn]# type: pptp { Description Changes to [config-mode turbointernet-vpn pptp]# Command 2 In [config-mode turbointernet-vpn pptp]# type: ? 73 SkyStream Networks Description ConfigureTurbo Internet-VPN PPTP Range (see values below) Example Attribute list ServerIPAddress String Username String Password String SatelliteMacFilter tunneladdress | pppaddress NOTE At the prompt, type attribute followed by string. Values ■ ■ ServerIPAddress: Type IP address of of the Windows PPTP server or VPN concentrator. Username: Type your Windows server domain name followed by ‘\\’ and Windows username, for example: domain\\username. ■ Password: Type a password. ■ SatelliteMacFilter: Type “tunneladdress” or “pppaddress.” [config-mode turbointernet-vpn] ipsec Command 1 In [config-mode turbointernet-vpn]# type: ipsec { Description Changes to [config-mode turbointernet-vpn ipsec]# Command 2 In [config-mode turbointernet-vpn ipsec]# type: ? Description ConfigureTurbo Internet-VPN IPSec Range Example (see list) Attribute list IPSecConf 74 IPSec configuration IPSecKeyExchange IPSec Internet Key Exchange IPSecSecurity IPSec Security Associations CLI Commands and Operation EMR-5000 User’s Guide version 2.3 [config-mode turbointernet-vpn ipsec] IPSecConf Command 1 In [config-mode turbointernet-vpn ipsec]# type: IPSecConf { Description Changes to [config-mode turbointernet-vpn ipsec IPSecConf]# Command 2 In [config-mode turbointernet-vpn ipsec IPSecConf]# type: ? Description ConfigureTurbo Internet-VPN IPSec Range (see values below) Example Attribute list GatewayIPAddress String IPSecMode String RemoteSubnet String RemoteSubnetMask String LocalSubnet String LocalSubnetMask String NOTE At the prompt, type attribute followed by string. Values ■ GatewayIPAddress: Type IP address of remote gateway. ■ IPSecMode: Type string ■ RemoteSubnet: Type remote subnet address (leave blank if not used). ■ RemoteSubnetMask: Type remote subnet mask address (leave blank if not used). ■ LocalSubnet: Type local subnet address (leave blank if not used). ■ LocalSubnetMask: Type local subnet mask address (leave blank if not used). [config-mode turbointernet-vpn ipsec] IPSecKeyExchange Command 1 In [config-mode turbointernet-vpn ipsec]# type: IPSecKeyExchange { Description Changes to [config-mode turbointernet-vpn ipsec IPSecKeyExchange]# Command 2 In [config-mode turbointernet-vpn ipsec IPSecKeyExchange]# type: ? 75 SkyStream Networks Description ConfigureTurbo Internet-VPN IPSec Key Exchange Range (see values below) Example Attribute list EncryptionAlgorithm String AuthAlgorithm String DiffHellman String AuthMode String SharedSecret String NOTE At the prompt, type attribute followed by string. Values ■ EncryptionAlgorithm: Type string ■ AuthAlgorithm: Type string ■ DiffHellman: Type string ■ AuthMode: Type pre-shared key. ■ SharedSecret: Type prearranged phrase to use as a key. [config-mode turbointernet-vpn ipsec] IPSecSecurity Command 1 In [config-mode turbointernet-vpn ipsec]# type: IPSecSecurity { Description Changes to [config-mode turbointernet-vpn ipsec IPSecSecurity]# Command 2 In [config-mode turbointernet-vpn ipsec IPSecSecurity]# type: ? Description ConfigureTurbo Internet-VPN IPSec Security Range (see values below) Example Attribute list UseAuthHeader String AHAuthenticationAlgorithm String UseESP String ESPEncryptionAlgorithm String ESPAuthenticationAlgorithm String ReplaceKeyEverySeconds Integer ReplaceKeyEveryKBs Integer NOTE At the prompt, type attribute followed by string or parameter. 76 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Values ■ UseAuthHeader: Type string ■ AHAuthenticationAlgorithm: Type string ■ UseESP: Type string ■ ESPEncryptionAlgorithm: Type string ■ ESPAuthenticationAlgorithm: Type string ■ ReplaceKeyEverySeconds: Type string ■ ReplaceKeyEveryKBs: Typestring [config-mode turbointernet-vpn] connection Command 1 In [config-mode turbointernet-vpn]# type: connection { Description Changes to [config-mode turbointernet-vpn connection]# Command 2 In [config-mode turbointernet-vpn connection]# type: ? Description ConfigureTurbo Internet-VPN Connection Range (see values below) Example Attribute list ConnectionUsing String InitialConnection String NOTE At the prompt, type attribute followed by string. Values ■ ConnectionUsing: Type ■ InitialConnection: Type [config-mode turbointernet-vpn] advanced Command 1 In [config-mode turbointernet-vpn]# type: advanced { Description Changes to [config-mode turbointernet-vpn advanced]# 77 SkyStream Networks Command 2 In [config-mode turbointernet-vpn advanced]# type: ? Description ConfigureTurbo Internet-VPN Advanced Range (see values below) Example Attribute list NATApplied none|ethernet-1|ethernet-2|all MacPrefix String NOTE At the prompt, type attribute followed by string. Values ■ NATApplied: Type “none,” “ethernet-1,” “ethernet-2,” or “all.” ■ MACPrefix: Type hexadecimal (default is “0000”). maintenance Command Description Range Example Type: maintenance ? Shows all maintenance subcommands (All maintenance subcommands) kernel_list boot_mode sw_upgrade key_upgrade reset_counter configuration tcpXmode List of currently installed kernels get/set kernel boot mode Upgrade new software through ftp Get or set upgrade key reset satrx interface counters configuration file operations disable/enable Tcp Acceleration mode maintenance kernel_list Command Description Range Example 78 Type: maintenance kernel_list Displays kernel list for maintenance purposes (see list below) Installed kernel list: EMR.00.09(default) EMR-2.4.0-5000 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 maintenance boot_mode Command 1 Type: maintenance boot_mode Description Selects the boot mode. Example Usage : maintenance bootmode [get | [set <auto> | [<manual> <id>]] ] NOTE If maintenance boot_mode is set to “auto” the boot loader will load the kernel that is most up-to-date. If set to “manual,” the user must set a kernel that is available. This will be loaded the next boot-time. Command 2 Type: maintenance boot_mode get Description Gets settings Range Example Command 3 (see list) Current Boot mode is AUTO Type: maintenance boot_mode set manual EMR-2.4.0-5000 NOTE Check maintenance kernel_list to see what kernels are available. Description Range Example Sets bootmode (see list) Success!! kernel EMR-2.4.0-5000 will boot next time maintenance sw_upgrade Command 1 Type: maintenance sw_upgrade Description Downloads and installs a new software load. Range Example (see list) sw_upgrade Usage : maintenance sw_upgrade ftp <action> [IPAddr] [ -u user [ -p password ] ] [-r rootpath] {file} options : 79 SkyStream Networks action : get, list IPAddr : specifies the IP Address of the remote system -u user : specifies the username to log in with on host -p password : specifies the password to log in with on host -r rootpath : change remote working directory If user is not specified, then the default will be 'anonymous' Command 2 Type: maintenance sw_upgrade ftp get www.skystream.com -u my_name -p my_pwd -r/kernel/skyemr/ EMR_2.4.05000 maintenance key_upgrade Command 1 Type: maintenance key_upgrade Description Installs an upgrade key to enable advanced capabilities. Range Example (see list) Usage : maintenance key_upgrade [get | set <upgrade key>] NOTE When upgrading your EMR to enhance its capabilities, you will receive an Upgrade Key string. Upgrade Key 1 provides support for up to 25 Msymbols and 32 PIDs per receiver. Upgrade Key 2 provides support for up to 45 Msymbols and 64 PIDs per receiver. Command 2 Type: maintenance key_upgrade get Description Gets key Range (see list) Example Command 3 upgrade key : HD39D-MDX4-YASWU Type: maintenance key_upgrade set HD39D-MDX4-YASWU NOTE Check what maintenance upgrade keys are available. Description 80 Sets upgrade key CLI Commands and Operation EMR-5000 User’s Guide version 2.3 maintenance reset_counter Command Description Type: maintenance reset_counter ? Resets interface counters Range (see list) Example satrx1 reset Satrx1 counters maintenance configuration Command Description Range Example Type: maintenance configuration ? Displays subcommands for saving, deleting, loading and setting default configuration files (see list below) list List all configuration files wrt Save configuration file del Delete configuration file load Load configuration file default Set default configuration file factory Restore factory default configuration maintenance configuration list Command Description Range Example Type: maintenance configuration list Displays a list of configuration files (see list) current configuration files filename : config1 desc : 1240, 20, 2 PIDs default : yes 81 SkyStream Networks maintenance configuration wrt Command Description Range Example Type: maintenance configuration wrt Writes the configuration file. (see list) Usage : maintenance configuration wrt -d [ <filename> <desc> ] options : -d : save the session as default NOTE By typing a configuration filename and description after the command, and pressing Enter, the EMR will write to flash memory and permanently save the file. maintenance configuration del Command Description Range Example Type: maintenance configuration del Deletes a configuration file. (see list) Usage : maintenance configuration del [<filename>] NOTE By typing the name of the file after the command, and pressing Enter, the EMR will delete the configuration file from memory. maintenance configuration load Command Description Range Example Type: maintenance configuration load Loads a configuration file. (see list) Usage: maintenance configuration load [<filename>] NOTE By typing the name of the file after the command, and pressing Enter, the EMR will load the configuration file. 82 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 maintenance configuration default Command Description Range Example Type: maintenance configuration default Specifies a certain configuration file to be the default. (see list) Usage: maintenance configuration default [<filename>] NOTE By typing the name of the file after the command, and pressing Enter, the EMR will save the configuration file as the default. IMPORTANT Once the user has saved a configuration file, it is important to designate a configuration file as the default. maintenance tcpXmode Command Description Range Example Type: maintenance tdpXmode Enables or Disables TCP Acceleration. (see list) Usage : maintenance tcpXmode [get | [set <disable | enable>] ] NOTE Type “get” for status and “set enable” to turn TCP Acceleration on. During a software upgrade, please disable TCP Acceleration. diag Command Description Range Example Type: diag ? Shows all diagnostic subcommands to display (All diag subcommands) run view upload syslog run diagnostics view diagnostics upload diagnostics information through ftp remote syslog settings 83 SkyStream Networks diag run Command Description Range Example Type: diag run Runs diagnostic and creates a CLI diagnostic file (see list) Writing /tmp/clidiag.txt into diagnostic log. Success! diag view Command Description Range Example Type: diag view Displays diagnostic log file (see list) Diagnostics: 50001706 root=/dev/ram rw ramdisk=32000 wdt=0 CPU0 1: 3595 4xx UIC Edge 2: 10378 4xx UIC Edge PPC405 IIC 9: 0 4xx UIC Edge 405eth Wakeup 10: 0 4xx UIC Edge 405eth MAL SERR 11: 21224 4xx UIC Edge 405eth TX EOB 12: 10046299 4xx UIC Edge 405eth RX EOB 13: 0 4xx UIC Edge 405eth TX DE 14: 0 4xx UIC Edge 405eth RX DE 15: 0 4xx UIC Edge 405eth MAC 25: 676 4xx UIC Edge satrx1 28: 2975305 4xx UIC Edge eth2 FIT: 0 BAD: 0 Mem: 63582208 56557568 total: Swap: MemTotal: MemFree: 84 0 used: 0 free: shared: buffers: cached: 7024640 39485440 27193344 10973184 0 62092 kB 6860 kB MemShared: 38560 kB Buffers: 26556 kB CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Cached: 10716 kB Active: 37272 kB Inact_dirty: 0 kB Inact_clean: 0 kB Inact_target: 16 kB HighTotal: 0 kB HighFree: 0 kB LowTotal: 62092 kB LowFree: 6860 kB SwapTotal: 0 kB SwapFree: 0 kB IP address Mask Device HW type Flags HW address 192.168.4.254 * eth1 0x1 0x2 00:E0:2B:85:C1:00 192.168.4.186 * eth1 0x1 0x2 00:03:47:70:7A:BF Ip: Forwarding DefaultTTL InReceives InHdrErrors InAddrErrors ForwDatagrams InUn--More--( knownProtos InDiscards InDelivers OutRequests OutDiscards OutNoRoutes ReasmTimeo--More--( (note: this is a fragment of the log file). diag upload Command 1 Type: diag upload Description Uploads the diagnostic results. Range Example (see example) Usage : diag upload ftp <action> [IPAddr] [ -D | -L ] [ -u user [ p password ]] [-r rootpath] {file} options : action : put IPAddr : specifies the IP Address of the remote system -D : upload Diagnostic file -L : upload skyLog file -u user : specifies the username to log in with on host -p password : specifies the password to log in with on host -r rootpath : change remote working directory If user is not specified, then the default will be 'anonymous' Command 2 Type: diag upload ftp put 192.168.4.100 -D -u my_name -p my_pwd -r/kernel/skyemr/diag.txt 85 SkyStream Networks diag syslog Command Description Range Example Type: diag syslog Shows syslog usage (see example) Usage : diag syslog [-l] | [enable | disable options : -l : list remote syslog entry Command 2 Type: diag syslog -l Description Lists remote syslog entry <ipaddr> ] stats Command Description Range Example Type: stats ? Shows all statistics subcommands to display (All stats subcommands) satrx1 eth1 eth2 tcpX ppp Display Display Display Display Display SatRx1 statistics eth1 statistics eth2 statistics tcpX statistics ppp statistics isdn Display isdn statistics turbointernet-vpn sync Display turbointernet-vpn statistics Display sync statistics stats satrx1 Command Description Range Example 86 Type: stats satrx1 Shows all statistics for satrx1 (All satrx1 statistics) Satrx1 current statistics CLI Commands and Operation EMR-5000 User’s Guide version 2.3 M2T Packets Received M2T Packets Dropped Bad Continuity Count Pkts IP Packets Generated IP Packets Dropped IP Packets Sent IP Packets Discarded IP Multicast Packets IP Unicast Packets :54740048 :189 :189 :14079529 :18 :13321546 :0 :2754 :13321546 stats eth1 Command Description Range Example Type: stats eth1 Shows all statistics for eth1 (All eth1 statistics) Eth1 current statistics Bytes received Packets received Bytes sent Packets sent InPacket Errors OutPacket Errors Collisions :19508263 :78966 :13002796 :115654 :0 :0 :0 stats eth2 Command Description Range Example Type: stats eth2 Shows all statistics for eth2 (All eth2 statistics) Eth2 current statistics Bytes received Packets received Bytes sent Packets sent InPacket Errors OutPacket Errors collisions :1713183662 :10979301 :3138600 :44346 :0 :0 :0 stats tcpX (optional) Command Type: stats tcpX 87 SkyStream Networks Description Range Example Shows all statistics for tcpX (All tcpX statistics) tcpX current statistics Current connections :2 stats ppp Command Description Type: stats ppp Shows all statistics for PPP Range (All ppp statistics) Example PPP Statistics current statistics Bytes Received :8173 Bytes Sent :5676 Packets Sent :92 InPacket Errors :0 OutPacket Errors :0 Collisions :0 stats isdn (optional) Command Description Range Example Type: stats isdn Shows all statistics for ISDN (All isdn statistics) ISDN Statistics current statistics Interface Status :Up Local IP Address :209.245.132.211 Remote IP Address 88 :209.244.43.89 Subnet Mask :255.255.255.0 L2 Protocol :L2_HDLC L2 Protocol :L2_HDLC MRU :2000 MTU :1500 Bytes Sent :40484 Bytes Received :20909 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Packets Sent :552 Packets Sent :263 InPacket Errors :0 OutPacket Errors :0 stats turbointernet-vpn Command Description Range PPTP Example Type: stats turbointernet-vpn Shows all statistics for Turbo Internet/VPN (All turbointernet-vpn statistics) TurboInternet/VPN Statistics current PPTP statistics Status :connected PPTPServer :64.165.192.147 EncryptionMethod :MPPE Mode :Stateless encryption KeyLength :128 ConnectionTime :00:01:01 LocalTunnelIPAddr :64.165.192.144 RemoteTunnelIPAddr :64.165.192.147 SubnetMask :255.255.255.255 Bytes Sent :1677 Bytes Received :4196 Packets Sent :36 Packets Received :16 InPacket Errors :0 OutPacket Errors :0 Collisions :0 current IPSec General statistics Status :disconnected stats sync (optional) Command Description Range Example Type: stats sync Shows all statistics for sync (All sync statistics) Sync Statistics current statistics HDLC Frames Received :0 HDLC Frames Processed :2147483212 HDLC Frames Dropped :2147483040 89 SkyStream Networks 90 CLI Commands and Operation EMR-5000 User’s Guide version 2.3 Chapter 5: Web GUI Configuration 91 SkyStream Networks Web GUI In this chapter you will learn how to navigate and configure the SkyStream EMR using the Web GUI. Using SkyStream EMR 92 On the left side of the EMR home page are five buttons giving the user access to the following pages: Home, Statistics, Configuration, Maintenance, and Diagnostics. Additional linked options appear under each of the major topics when you click on them. Web GUI Configuration EMR-5000 User’s Guide version 2.3 Home SkyNAT EMR application used to support packet translation of incoming data from satellite for address translation, protocol translation, and TTL translation. The Home page displays a short animation showing the basic flow of data from the satellite through the EMR to the listeners. SNMP (Simple Network Management Protocol) A standard protocol to manage devices on the network. Manageable devices contain an SNMP Agent responsible for handling the information/control request. The Statistics pages display information about the Satellite Receiver, Network Interfaces, SkyCast (IGMP), SkyNAT, DHCP Ser ver, PPP, ISDN, TCP Acceleration, Sync and Turbo Internet/VPN settings. SkyCast: The SkyStream system used for IP Multicast Management. IGMP (Internet Group Management Protocol) A control protocol used to link a “group” of users to the source of a data stream. DHCP (Dynamic Host Configuration Protocol) Software that automatically assigns IP addresses to client stations logging onto a TCP/IP network. It eliminates having to manually assign permanent IP addresses. DHCP software typically runs in servers and is also found in network devices such as ISDN routers and modem routers that allow multiple users access to the Internet. Navigation Help Topics Statistics Configuration The Configuration pages allow you to modify all the major settings: Satellite Receiver, Network Interface, PID Selection, MAC Address Selection, Static Routes, SkyCast (IGMP), SkyNAT, DHCP Server, SNMP, ISDN, PPP, Fixed Key CAS, TCP Acceleration, Turbo Internet/VPN, Sync, Date/Time and E-mail Notification. Maintenance The Maintenance pages allow you to download and upgrade software for the SkyStream EMR. In addition, you can change the administrator’s password, set preferences, load a configuration file, and reboot the system. Diagnostics The Diagnostics pages provide current Software Infor mation, Hardware Information, and Log File Information; and allows you to run a diagnostics system check, as well as utilities such as Ping and Netstat. Accessing the different functions on the Web GUI is a simple point and click mouse function. The primary menu options are on the left side of the page. When you click the menu options, you access Statistics, Configuration, Maintenance, and Diagnostic functions. By clicking these menu options, new menu specific links will display below the main section. The links allow direct access to monitor and configure the SkyStream EMR. The Web GUI has instant online Help for every available page and function. To access the Help information, click the Help link in the upper right corner of the page. The Help link displays links to the four menu items (Statistics, Configuration, Maintenance, or Diagnostics). For a complete list of Help Topics, click the link at the bottom of each Help page. 93 SkyStream Networks Statistics Satellite Receiver The Satellite Receiver Statistics page allows you to view information gathered from the unicast and multicast streams that are forwarded to the EMR from the Satellite Receiver. T he Satellite Receiver pag e contains the following information: LNB Mode: Shows current mode as None, Single, or Dual. L-BAND Frequency: Shows the L-BAND frequency setting for the tuner. 22kHz Switch: Shows if 22kHz Switch is Enabled, Disabled, or set to automatic. Symbol Rate: Shows the number of symbols per second being received through the tuner. This parameter can be set in Preferences as either megasymbols or kilosymbols. LNB Voltage Control (polarization): Shows if the polarization is set to Vertical Right, Horizontal Left, or Disabled. LNB Offset: Displays the frequency offset of the LNB in megahertz. 94 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Viterbi Rate: Indicates the Forward Error Correction (FEC) ratio of payload bits to the total number of bits. For example, if FEC=3/4, then for every 4 bits, 3 bits are actual data and 1 bit is overhead for error correction. Signal Lock (QPSK Lock): A green bar with the word “LOCK” will appear when the frequency and symbol rate are locked. If the signal cannot be locked, the bar will be grayed out. MPE (Multi-protocol Encapsulation) A DVB and ATSC packetization format that enables a high-speed gateway to an asymmetric Internet (or private IP-based) network by retransmitting IP information in addition to the payload. QPSK (Quadrature Phase Shift Keying) A method of modulating digital signals using four phase states to code two digital bits per phase shift. Data Lock (FEC Lock): A green bar with the word “LOCK” will be displayed if Symbol Rate, L-Band Frequency, and FEC are set properly. If data cannot be locked, a red bar is displayed with the words “NO LOCK” in the bar. MPE Lock: A green bar with the word “LOCK” will be displayed if data with an MPE header is being received. If data cannot be locked, a red bar is displayed with the words “NO LOCK” in the bar. Signal Strength: Shows a value and percentage for the signal strength being received from the satellite (-25 dBm to -65 dBm). Eb/N0: Displays the signal to noise ratio value detected by the Satellite Receiver in decibels. QPSK Bit Error Rate: Displays the measured QPSK bit error rate. Viterbi Bit Er ror Rate: Displays the measured error rate from the FEC algorithm. Reed Solomon Corrected Errors: Shows the errors that were fixed using the Reed Solomon algorithm. These errors indicate that some data was corrupted and then corrected. Errors are collected over time and will continue to build; a button is included on this page to clear the error counters. Reed Solomon Uncorrected Errors: Displays the total number of errors that the Reed Solomon Correction Algorithm detected but was unable to correct. NOTE To reset the error counters to zero click the Reset button. Auto Refresh The Auto Refresh feature sets how often the system will update the information on the current page. To configure the Auto Refresh option: 1 Click the Enable radio button to activate the Auto Refresh feature. 2 In the Auto Interval field, enter the amount of time (in seconds) between updates for the current page. 3 Click the Refresh button to apply the changes. 95 SkyStream Networks Network Interface 96 The Network Interface Statistics page shows the current network statistics information for the satellite receiver and Ethernet interfaces on the EMR. The following information displays on the page: Web GUI Configuration EMR-5000 User’s Guide version 2.3 IP Statistics Packets Any block of data sent over a network. Each packet can contain sender, receiver, and error-control information, in addition to the actual message. Packets can be of fixed-length or variable-length and reassembled, if necessary, when they reach their destination. • MPEG-2 Transport Packets Received: Number of valid MPEG-2 transport packets received. • MPEG-2 Transport Packets Discarded: Number of MPEG-2 transport packets discarded due to bad Sync bytes or Null packets. • Error in MPEG-2 Continuity Count: Number of MPEG-2 packets with continuity count errors. • IP Packets Generated: IP packets that attempted to be reassembled from MPEG-2 packets with valid PIDs and valid MAC addresses. • IP Packets Dropped: IP packets generated but dropped because of failed reassembly. • IP Packets Discarded: IP packets explicitly discarded because of SkyCast rules if the Action is set to Discard. • IP Packets Processed: Number of packets sent to IP stack (not directly forwarded to Ethernet). • • IP Unicast Packets Processed: Unicast Packets sent to IP stack. IP Multicast Packets Processed: Multicast Packets sent to IP stack or forwarded. Auto Refresh See “Satellite Receiver.” Satellite Receiver and Ethernet Parameters • Status: Displays if the receiver(s) and Ethernet connections on the EMR are active by displaying either “UP” or “DOWN.” • Link Status: Shows the status of the physical Ethernet link (10 Mbps, or 100 Mbps; full duplex, half duplex, or none). The EMR auto-regulates depending on the stream flowing in one direction or both directions at a time. • • • IP Address: Shows current IP addresses. • Subnet Mask: Shows current Subnet Mask settings. MAC Address: Shows current MAC Address on the satellite receiver and Ethernet connections on the EMR. DHCP: Shows if DHCP server is enabled or not. 97 SkyStream Networks Ethernet Statistics • • • • • • Bytes Received: Shows number of bytes received via Eth 1 and/or Eth 2. Bytes Sent: Shows number of bytes sent via Eth 1 and/or Eth 2. Packets Received: Shows number of packets received via Eth 1 and/or Eth2. Packets Sent: Shows number of packets sent through Eth 1 and/or Eth 2. InPacket Errors: Shows number of errors in packets coming in. OutPacket Errors: Shows number of errors in packets going out. Ethernet Transmit Events • • • • ARP (Address Resolution Protocol) A TCP/IP protocol used to obtain a node's physical address. A client station broadcasts an ARP request onto the network with the IP address of the target node it wishes to communicate with, and the node with that address responds by sending back its physical address so that packets can be transmitted. ARP returns the layer 2 address for a layer 3 address Total collisions: Shows the total number of single and multiple collisions. Single collisions: Shows the total number of single collisions. Multiple collisions: Shows the total number of multiple collisions. CRC errors: Shows number of frames that received invalid checksum. This is usually caused by interference from nearby radio traffic. • Loss of carrier: Shows number of times the carrier was lost during transmission. This error may indicate a problem with a cable. • PHY lockup corrected: Debugging statistics for Ethernet 1. • Packets dropped - waiting for ARP: Shows number of packets dropped while waiting for node to respond to an ARP request. • Packets dropped - excessive collisions: Shows number of times the frame failed to transmit because of excessive collisions. This usually indicates that the frame had to be continuously retried due to heavy traffic on Ethernet infrastructure. • Packets dropped - excessive deferrals: Shows number of times the frames failed to transmit because of excessive deferrals. This may indicate a node on the LAN is using more aggressive back off delay than this one. • Packets dropped - late collisions: Shows number of times a collision occurred after the sixty-fourth byte of a frame was transmitted. This usually indicates a cable problem on the Ethernet infrastructure. Ethernet Receive Events • • • • 98 Flow control packets: Shows number of flow control packets. False carrier events: Shows number of false carrier events. Invalid data symbols: Shows number of invalid data symbols. Alignment (framing) errors: Shows number of frames received whose size in bits was not a multiple of 8. Occasionally, extra bits of data are inadvertently attached to a transmitted packet causing a frame alignment error. Web GUI Configuration EMR-5000 User’s Guide version 2.3 • Jabber errors (10 Mbps only): Shows number of Jabber errors, which occur when data packets exceed the lengths prescribed in IEEE 802.3. Check the cable connection for the port with the largest number of jabber errors. • Packets dropped - buffer overrun: Shows number of times the hardware First-In First-Out (FIFO) buffer overflowed. • Packets dropped - too short: Shows number of frames received that were shorter than allowed minimum of sixty-four bytes. • Packets dropped - CRC errors: Shows number of packets dropped due to checksum errors. NOTE To see Ethernet Transmit Events and Ethernet Receive Events, enable Verbose Ethernet Statistics in Maintenance-Advanced Preferences. 99 SkyStream Networks SkyCast The SkyCast Statistics page shows whether or not the EMR is running the IGMP protocol and SkyCast Rules: SkyCast SkyCast The SkyStream system used for IP Multicast Management. IGMP (Internet Group Management Protocol) A control protocol used by multicastenabled hosts to report their group membership information to directly-attached routers. 100 The SkyCast (IGMP) Statistics shows the current status as Enabled or Disabled; however, if SkyCast is disabled, the default rule will continue to be processed. SkyCast Rules SkyCast Rules shows the following information: • Original Source IP: The original source destination IP address used for remapping. • New Source Dest. IP: The new source destination IP address used for remapping—defaults to eth0. • Source Netmask: The original source destination netmask address used for remapping. • • • • Original Destination IP: The original destination IP address. New Dest. IP: The translated destination IP address. Dest. Netmask: This specifies the range of addresses to be translated. TTL: (Time To Live) Entering a new TTL number affects the number of routers that packets may be sent through. Every time a router forwards a packet, it decrements the TTL by one, if the TTL reaches zero, the packet is discarded. Web GUI Configuration EMR-5000 User’s Guide version 2.3 • • • • • Action: Forward, Forward If Listener, or Discard. Packets Received: Number of packets received from the satellite. Packets Processed: Number of packets forwarded to the network. Packets to Eth 1: Number of packets forwarded to Ethernet 1. Packets to Eth 2: Number of packets forwarded to Ethernet 2. 101 SkyStream Networks SkyNAT SkyNAT EMR application used to support packet translation of incoming data from satellite for address translation, protocol translation, and TTL translation. The SkyNAT Statistics page is divided into two sections, Address Translation and Protocol Translation. These pages allow you to review the data translation process and check for errors. SkyNAT is an EMR feature that allows packets received from the satellite interface to be translated prior to being sent through the local Ethernet(s). The EMR can translate (replace) destination IP addresses and remap TTL values (Address Translation). The EMR can also perform “Protocol Translation” by receiving UDP packets and re-transmitting their payloads over TCP. The first SkyNAT statistics page displays two links for each Satellite Receiver: Address Translation and Protocol Translation. 102 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Address Translation The Address Translation Statistics page shows the following settings: • Original and New Dest. IP Addresses: These settings show the original destination IP address, from where data was being transmitted, and the new IP address, where data is being routed. • TTL (Time To Live) Translated TTL (zero means no change if Router Mode is enabled in Main ten ace Preferences). • • Netmask: This specifies the range of addresses to be translated. Packets Received and Packets Processed: Displays the amount of data that is passing through the Address Translation process. 103 SkyStream Networks Protocol Translation The Protocol Translation Statistics page shows the following settings: 104 • Original Dest. IP Address: This is the address of the incoming UDP packets to be translated. • UDP and TCP Port: Shows the current Protocol UDP and TCP translation settings. The SkyStream EMR changes UDP information into TCP packets to be sent to the local network. • Packets Received and Packets Processed: Displays the amount of data that is passing through the Protocol Translation process. Web GUI Configuration EMR-5000 User’s Guide version 2.3 DHCP Server The DHCP Server Statistics page shows the current DHCP server information. The following information displays on the page: Only Ethernet interfaces with static IP addresses assigned to them can be selected as DHCP Servers. Click the Ethernet interface you wish to view. DHCP Server The DHCP Server Statistics shows the IP address, MAC address, and host name of the client. It also provides the lease time that these settings are valid. IP Address: Shows the IP address of the client. MAC Address: Shows the MAC address of the client. Host Name: Shows the name given to the client. Time to Expire: This value is the lease time shown in HH:MM:SS format, and shows how long these settings are still valid. 105 SkyStream Networks PPP T he PPP Statistics pag e shows the cur rent dial-up access infor mation connecting a single computer to the Internet via modem. The following information displays on the page: PPP Statistics PPP (Point-to-Point Protocol) A data link protocol that provides packet-oriented communication over serial lines. 106 • • • • • • • • • • • • • Interface Status: “Active” or “Inactive” Dial Mode: “Dial on demand” or “Manual dial” Link Status: Physical link is “Up” or “Down.” Local IP Address: Shows the EMR IP address. Remote IP Address: Shows the ISP IP address. Subnet Mask: Shows EMR subnet mask. Connect Speed: Bits per second the modem connects at. Bytes Received: Shows bytes received through the modem. Bytes Sent: Shows bytes sent through the modem. Packets Sent: Shows packets sent through the modem. InPacket Errors: Shows number of errors in packets coming in. OutPacket Errors: Shows number of errors in packets going out. Collisions: Shows number of collisions while frame is being received. Web GUI Configuration EMR-5000 User’s Guide version 2.3 ISDN The Integrated Service Digital Network (ISDN) page shows the data being transmitted from point-to-point. The following information displays on the page: ISDN Statistics • • • • • • • • • • Interface Status: “Active” or “Inactive” Dial Mode: “Manual” or “Dial on Demand” Local IP Address: This is the IP address of the local EMR. Remote IP Address: (Optional) not used in normal operation. Subnet Mask: Usually 255.255.255.255 for point-to-point connection. L2 Protocol: This is a Layer 2 protocol fixed at “HDLC.” L3 Protocol: This is a Layer 3 protocol fixed at “Synchronous PPP.” MRU: Set Maximum Receive Unit for negotiation (default 1500 bytes) MTU: Set Maximum Transmit Unit for negotiation (default 1500 bytes) Stream information: Bytes Sent, Bytes Received, Packets Sent, Packets Received, InPacket Errors, and OutPacket Errors. 107 SkyStream Networks TCP Acceleration The TCP Acceleration Statistics page shows the status and number of TCP connections made by the EMR. The following information displays on the page: TCP Acceleration Statistics 108 • Status Enabled/Disabled: TCP Acceleration status is enabled and ready to make a connection or it can be disabled. • Number of current TCP connections: Displays the current number of TCP connections. Web GUI Configuration EMR-5000 User’s Guide version 2.3 Sync The Sync Statistics page shows the HDLC frames received, processed, and dropped by the EMR. The following information displays on the page: Sync Statistics HDLC (High-level Data Link Control) An ISO communications protocol used in X.25 packet switching networks. It provides error correction at the data link layer. • HDLC Frames Received: Number of frames received in synchronous stream. • HDLC Frames Processed: Number of frames processed by data pipe packetizer. • HDLC Frames Dropped: Number of frames dropped because of failed assembly. 109 SkyStream Networks Turbo Internet/VPN The Turbo Internet/VPN Statistics page shows the status of Point-To-Point Tunneling Protocol (PPTP), IPSec General Statistics, IKE Security Association and IPSec Security Associations in the EMR. The following information displays on the page: NOTE Only one connection method may be used at a time with Turbo Internet/VPN. If PPTP is connected, IPSec is disconnected, and vice-versa. If neither is connected, this page will show disconnected status for both. 110 Web GUI Configuration EMR-5000 User’s Guide version 2.3 PPTP Statistics • • • Status: “Connected” or “Disconnected” PPTP Server: IP address of server of Windows PPTP server or VPN concentrator. Encryption Method: This release supports Microsoft Point-to-Point Encryption (MPPE), MSCHAP-v1 and v2. This release also supports PAP with no encryption. NOTE MPPE uses RC4, a stream cipher, to encrypt the PPP datagrams. It currently supports encryption keys of 40 and 128 bits. • Mode: “stateless encryption” or “non-stateless encryption” NOTE In stateless mode, the encryption keys are changed on every packet. In non-stateless mode, the same key is used for many packets. Stateless mode is more reliable in “lossy” networks, and is more resistant to certain types of cryptographic attacks. Non-stateless mode is a slightly more efficient method in reliable networks. • • Key Length: “40-bits” or “128-bits” • • • Local Tunnel IP Address: IP address on the EMR side. • Connection Time: Time in hours, minutes, and seconds (HH:MM:SS) format since the connection was established. Remote Tunnel IP Address: IP address on the server side. Subnet Mask: Usually 255.255.255.255, since this is a point-to-point connection. Stream information: Bytes Received, Bytes Sent, Packets Received, Packets Sent, InPacket Errors, OutPacket Errors, and Collisions. 111 SkyStream Networks IPSec General Statistics IP Sec The IP security protocol, more commonly known as IPsec, is a suite of protocols that provides security at the network layer. 112 • • • Status: “Connected” or “Disconnected” IPSec Gateway: IP address of remote gateway or VPN concentrator. Stream information: Combined total Bytes Received, Bytes Sent, Packets Received, Packets Sent, InPacket Errors, OutPacket Errors, and Collisions for all IPSec Security Associations. Web GUI Configuration EMR-5000 User’s Guide version 2.3 IKE Security Associations • Gateway: IP address of the other side of the IPSec connection. Usually a VPN server. • Security: Combination of encryption, authentication and key exchange parameters currently used for this connection. • IKE Lifetime: Time (HH:MM:SS) for which the IKE Security Association (SA) remains valid. • • IPSec Lifetime: Time (HH:MM:SS) for which the IPSec SA remains valid. Serial Number: A unique identifier associated with the IKE SA, which usually increments each time the SA is re keyed. NOTE IKE negotiation happens first to create an authenticated encryption channel. This channel is then used to negotiate an IPSec Security Association (SA) between two gateways. The IPSec SA is then used to transfer encrypted and authenticated data traffic between the gateways and any subnets that might be configured. IPSec Security Associations • Direction: “Out” or “In” NOTE IPSec tunnels are unidirectional. • Tunnel Endpoint: Termination point (IP address) of a tunnel. This will usually be the IP address of EMR or the remote IPSec gateway. • Security: IPSec protocol, encryption, and authentication currently used for this connection. • • • • Source: The source address of packets that will use these tunnels. Destination: The destination address of packets that will use these tunnels. Packets: Number of packets sent or received via this tunnel. Uptime: Amount of time this tunnel has been in operation. 113 SkyStream Networks Multifrequency Settings The Multifrequency Statistics page will display if it is set in E-Manager. It will exist as long as Multifrequency logic is searching for a lock. Once it has acquired lock, the information will go away. Set 1 and Set 2 The values follow are the same as in Satellite Receiver Statistics. Status The status will reflect the controls for obtaining lock configured in E-Manager Configuration—Satellite Receiver, Multifrequency Properties. E-Manager Multifrequency Properties The following parameters are set in E-Manager to obtain lock after you have configured two sets of frequencies. Set Immediately: Tries to Set-1 first for lock-on and if it fails will try Set-2 in Continuous Mode. Set upon loosing lock: Tries to trigger change over from one configuration to another when lock is lost. Interval gives the time in seconds it tries to get lock. When continuously trying to get lock. Click the Advanced button and set the Timeout in minutes, which is the time set for acquiring lock. 114 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Configuration Satellite Receiver The Satellite Receiver Configuration page allows you to control Satellite Receiver settings. The first page displays the Satellite Receivers present in the EMR. By clicking the applicable link, you can access the Tuner page for each Satellite Receiver. 115 SkyStream Networks Tuner The first configuration page provides current information on the satellite receiver, such as LNB Mode status, Symbol Rate, L-BAND Frequency, LNB Voltage Control (polarization, 22kHz Switch status, and Data Lock (FEC lock) status. You can also change the LNB Mode by selecting one of the radio buttons (None, Single, and Double) or you can change the configuration by clicking the Change Tuner Settings button. This will open the other boxes for configuration purposes. Once you have completed the configuration, you must click the Apply button. You can then view Satellite Receiver Statistics by clicking the View Tuner Statistics button. In addition, you can configure Multifrequency Settings. Change Tuner Settings You can configure the following fields on the Configuration Satellite Tuner page for Receiver 1: Symbol Rate: Sets a value for the symbol rate received from the satellite tuner in megasymbols. NOTE The symbol rate values can be displayed as Msymbols/s or ksymbols/s. This value can be set in the Maintenance Preference page. LNB Mode: Select the radio button to set the LNB settings. ■ None: Use if no LNB is present. ■ Single: Use if a single LNB is installed; when selected, enter the frequency in gigahertz (GHz). ■ Dual: Use if dual LNBs are installed; when selected enter the High and Low frequencies in gigahertz (GHz). 116 Web GUI Configuration EMR-5000 User’s Guide version 2.3 NOTE The range for LNB Settings is 3 - 220. L-BAND Frequency: Sets the frequency of the incoming L-Band signal in megahertz (MHz). This is only used if the LNB is set to None. LNB High Frequency: In Dual LNB Mode set the high frequency of the LNB converter setting in gigahertz. This setting can be either positive or negative (adjusted above or below the frequency setting). LNB Low Frequency: In Dual LNB Mode set the low frequency of the LNB converter setting in gigahertz. This setting can be either positive or negative (adjusted above or below the frequency setting). LNB Voltage Control (polarization): Sets the desired signal polarization. NOTE Default is Disabled (no voltage). 22kHz Switch: Enables or Disables the 22kHz Switch to automatic. Data Lock (FEC lock): Shows green if Symbol Rate, L-Band Frequency and FEC are set properly, or red if no signal is present. After all the Satellite Receiver tuner settings are complete, click the Apply button. This page is available by selecting the Dual LNB Mode radio button and clicking the Change Tuner Settings button. Clicking Clear will initialize all values to zero. Clicking Cancel will cancel any changes and return you to the previous page. NOTE By default, the EMR auto-detects the Viterbi Rate. If you would rather specify it, go to the Maintenance-Advanced Preferences page and select Manual mode for the FEC. 117 SkyStream Networks Multifrequency Settings Multifrequency allows you to reconfigure EMR satellite information remotely through using two sets of frequency-satellite parameters by which the EMR might achieve lock. First, the EMR tries to acquire lock with one set of parameters, and if it fails, tries a second set. Click the Multifrequency Settings button in the Tuner Configuration page and the following page will display: To configure Set 1, click the Configure Set 1 button. Depending upon which LNB Mode you select, a different dialog box will appear. Enter settings in the same ways as configuring Satellite Receiver and click Apply. Then configure Set 2 in the same way. Click the Advanced button to set the method by which the EMR obtains lock. When you are ready, click the Start Multifrequency button. 118 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Advanced Settings After configuring Advanced Multifrequency Settings, click Apply. Lock means that a signal, data or other information is being recieved and processing properly. Type: Select the type of method for obtaining lock; either Set Immediately or Set upon losing lock. In this way, one set will become the first set applied, followed by the second set of parameters. Interval: Type the interval in seconds that the tuner checks to see if it has lost lock. Timeout: Type the period in minutes that a set of paramteres tries to obtain lock and/or checks the tuner status to make sure that the tuner has lock. The default is zero [0], which means that it will try forever until it acquires lock. 119 SkyStream Networks Network Interface The Network Interface page allows you to modify the network setting on the Ethernet and Satellite Receiver Interfaces. The first page that appears shows the available Ethernet interfaces on the SkyStream EMR. By clicking the link for Ethernet 1, Ethernet 2, Satellite Receiver 1, or Satellite Receiver 2, the following pages appear: To configure the Ethernet interface: Select either “Obtain IP Address from DHCP Ser ver” or “Specify an IP Address” depending on your local network configuration. If you selected to specify an IP address: 1 Enter the IP address. 2 Enter the subnet mask information. 3 Click the Apply button to save the changes. 120 Web GUI Configuration EMR-5000 User’s Guide version 2.3 DHCP Client Requirements The DHCP client must be able to acquire the following information: • • IP Address Subnet Mask NOTE Because the SkyStream EMR is primarily a router, the DHCP client will not set DNS server and domain name information, as DNS lookups may slow down the unit. The DHCP client will only request the three parameters listed above. You can configure Ethernet 2 in the same manner as Ethernet 1. To configure the Satellite Receiver Interfaces: Satellite interfaces only require an IP address and subnet mask. 121 SkyStream Networks PID Selection Packet IDs (PIDs) are identifiers used to tag different MPEG packet flows inside the transport stream. The SkyStream EMR uses PIDs to identify the different broadcast data or programs in the broadcast streams. In order to receive specific data, the correct PID must be entered. The EMR can handle 32 to 64 PIDs for each satellite receiver. Clicking the Satellite Receiver 1 PID Selection link will take you to the next page. 122 Web GUI Configuration EMR-5000 User’s Guide version 2.3 To scan for all PIDs in the stream: 1 Select the Enable PID Scanning radio button and click Apply. This action stops data traffic and displays all detected PIDs in the stream when you press Refresh. 2 When scanning is complete, you should select the Disable radio button because this function has high CPU Usage. If you want to add a PID into Active PIDs, select the PID from the Scanned PIDs list and click the Add button. To add a New Active PID: 1 First select either Decimal or Hexadecimal, depending on the format you want to use when entering PID values. TIP A block of PIDs can be entered as follows: 200,300-320,500. This will add PIDs 200, 500 and 300 through 320 to the list of active PIDs. 2 Enter the PID value, range between 0 and 8191 (0x and 0x1FFF) to New PID box. 3 Click the Add button. 4 To delete an existing PID, click the Delete link next to the PID. NOTE To see Bits/Sec for Active PIDs, enable PID Rate Monitoring in Maintenance Preferences. 123 SkyStream Networks MAC Address Selection Each satellite receiver card has a unique MAC Address assigned by SkyStream. In normal operation, the satellite receiver will only accept unicast packets where the destination MAC addresses matches that of the receiver. Using this page, you can define up to 32 additional MAC addresses per receiver. Incoming unicast packets matching any of these addresses will be accepted and forwarded. You can also disable MAC address filtering. The first page that appears shows the satellite receivers connected to the EMR. Clicking the link will take you to a page where you can add or delete a MAC address. 124 Web GUI Configuration EMR-5000 User’s Guide version 2.3 MAC Addresses can be added or deleted on this page. The MAC Configuration page shows all the cur rent MAC addresses in use. You can also Enable Promiscuous Mode, which means that the EMR accepts all MAC addresses; or you can Disable Promiscuous Mode, which means that the EMR only accepts the listed MAC addresses plus the default receiver MAC addresses. After making changes, click Apply. To add a new MAC Address: 1 Type the New MAC Address. Use hexadecimals separated by colons, spaces, or dashes. 2 Click the Add button. 3 To cancel the MAC Address, click the Delete link. 125 SkyStream Networks Static Routes This page allows you to add static routes to the system. The first page also provides information on current static routes. Enter any additional routing option(s) in the first box. This will allow you to control the infor mation retrieved by the Route function. For additional information on routing options, click the More Info button. This will display a document defining the route command. OR SEE Appendix A: Command Definitions 126 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Current Static Routes Click the Add New Route button and the next page will appear. This page allows you to configure a new route. Select the interface type using the radio option button for Network, Host, or Default Gateway, then click the Apply button to save settings. To reset the route configuration page, click the Cancel button. Enter the IP address, netmask, and gateway network information for the route utility. Type a metric value for this route. If you do not enter a value, the default value is 1. After you have configured the route settings, click the Apply button. Click View Current Routing Table button and the following page will display: RIP V1 The RIP V1 section allows you to configure and enable/disable RIP (Routing Information Protocol). RIP allows the EMR to exchange routing information with neighboring routers and automatically learn the network topology. Use the radio buttons to enable/disable RIP. If RIP is enabled, you can use the radio buttons to export (announce) the default route, if the EMR has one. After you have configured the settings, click the Apply button. 127 SkyStream Networks SkyCast You can enable or disable SkyCast from the Configuration SkyCast page and then apply new rules. Moreover, you can enable or disable Global source readdress, which re-addresses the IP address of all packets regardless of group or address. Click Apply to make effective. The EMR has the following multicast processing functionality (SkyCast): • Forwarding: a particular multicast group may be unconditionally forwarded, discarded, or conditionally forwarded if listeners are in the network. • Remapping: multicast addresses and TTL can be optionally remapped to new values. NOTE When remapping a source IP address, not all fields in the SkyCast rule need to be filled. If the intention is just to remap the Source IP Address then it is only necessary to enter values in the first three fields—Original Source IP, New Source Dest. IP, and Source Netmask. Global Source Re-address If you enable Global Source Readdress, the source IP address of all packets with a multicast destination will be remapped to eth0, eth1, or both depending on whichever one has been a listening member joining the multicast group. In addition, it will use the SkyCast default rule for TTL and forwarding. 128 Web GUI Configuration EMR-5000 User’s Guide version 2.3 NOTE If SkyCast is enabled, then the source map will first try to process the rules in SkyCast and then process global source remapping. If the user only wants to use the default rule—with global source IP remap enabled—and bypass the SkyCast rules, then the user can disable SkyCast. SkyCast Rules SkyCast Rules allow you to add, edit or delete SkyCast rules from the system. SkyCast rules also allow you to apply specific guidelines on how the information is sent to the local network. This section describes how to configure the multicast functionality. • To configure the system, enter the Original Dest. IP Address, New Destination IP Address, Netmask, TTL settings, and the Action rule for forwarding streams. Configure SkyCast To edit current rules or the default rule information, click the Edit link. To delete a Current Rule, click the Delete link next to it. To add a new SkyCast Rule, click the Add New Rule button. Enter the following information to add a new SkyCast Rule: 129 SkyStream Networks TTL (Time To Live) Entering a new TTL number affects the number of routers that packets may be sent through. Every time a router forwards a packet, it decrements the TTL by one, if the TTL reaches zero, the packet is discarded. The TTL settings can vary depending on the topology of the local network to attempt to keep streams from being forwarded outside of your network. • Original Source IP Address, New Source IP Address, and Source Netmask (Optional): These three settings are used to remap the Source IP address. • Original and New Destination IP Addresses: These settings are the Original Destination IP Address of a data stream to be sent to a New Destination IP Address. • Netmask: The netmask specifies the range of addresses to be translated. For example, a netmask of 255.255.255.255 represents only one address, while a netmask of 255.255.255.0 represents a range of 256 addresses. Example: If Original Dest. IP Address is 224.1.1.0, Netmask is 255.255.255.0 and New Dest. IP Address is 225.1.1.0, then packets destined to 224.1.1.1 will translate to 225.1.1.1, packets to 224.1.1.2 translate to 225.1.1.2, and so on up to 224.1.1.255 translating to 225.1.1.255. • TTL (Time To Live) If you leave this value at zero, the TTL remains unchanged. NOTE The default for the TTL value is zero (0). This is a special value used to indicate that the EMR will not change the TTL value as it forwards the packets. If you leave this value at zero the TTL remains unchanged; however, this only applies if Router Mode is enabled in Maintenance Preferences. • Action: The Action radio buttons allow you to set up a specific Forwarding Rule for the specified multicast IP address. The following three options are available: ■ ■ ■ • 130 Forward If Listener: Sends the multicast packets from this multicast group into the network if there is a group member present. Discard: Discards all packets belonging to this group. Forward: Sends the Multicast packets into the local network unconditionally; however, you will need to select which Ethernet to Forward through using the radio buttons (Ethernet 1, and Ethernet 2). Change: To delete a rule, click the Delete link. To edit a rule, click the Edit link. Web GUI Configuration EMR-5000 User’s Guide version 2.3 NOTE The same procedure applies to Default Rules. However, the default rules, in addition to the remapping addresses, only contain Original Destination IP, Netmask, and TTL. 131 SkyStream Networks SkyNAT The SkyNAT Configuration page is divided into two sections, Address Translation and Protocol Translation. These pages allow you to configure the data translation process. To activate this option, click the Enable radio button and then click the Apply button. To turn it off, select the Disable radio button and click the Apply button. Address Translation Click the Address Translation link to access the configuration page. The Address Translation page shows the following settings: • Original and New IP Addresses: These indicate the original destination IP address of the packets to be translated. Packets received on the DVB interface that match the original IP address range are transmitted with the new IP address as their destination. • • Netmask: This specifies the range of addresses to be translated. • Change: To delete a rule, click the Delete link. TTL (Time To Live) If you leave this value at zero, the TTL remains unchanged; otherwise, the new TTL value is set. NOTE This release supports 100 Address Rules. 132 Web GUI Configuration EMR-5000 User’s Guide version 2.3 To add new SkyNAT Address Translation options, click the Add New Rule button. A new page will appear, enter the information for the New Address Translation Rule. 133 SkyStream Networks Protocol Translation Click the Protocol Translation link to access the configuration page. The Protocol Translation page shows the following settings: • Original Dest. IP Address: Indicates the original destination IP address for UDP packets to be subject to translation. Only UDP packets with this destination address will have their payloads translated. • • UDP Port: Indicates the original UDP destination port for translated packets. TCP Port: The EMR will listen to incoming TCP connections on this port to deliver the packet payloads. To add new SkyNAT Protocol Translation options, click the Add New Rule button. • Original Dest. IP Address: Indicates the original destination IP address for UDP packets to be subject to translation. Only UDP packets with this destination address will have their payloads translated. • • UDP Port: Indicates the original UDP destination port for translated packets. TCP Port: The EMR will listen to incoming TCP connections on this port to deliver the packet payloads. To save these options, click the Apply button. NOTE TCP and UDP port numbers are between 0 and 65535. 134 Web GUI Configuration EMR-5000 User’s Guide version 2.3 DHCP Server The DHCP Configuration page allows you to set up the DHCP Server settings. To configure the Server settings enter the Domain name, DNS server(s), Subnet mask, Lease Time, Default Broadcast Address, Router(s), and address ranges to be assigned to listeners in the appropriate boxes on the configuration page. To apply the setting, click the Apply button. You can also view DHCP Server Statistics. The following information gives you details about the different configurations for DHCP Client and Server settings. 135 SkyStream Networks DHCP Server Requirements Only Ethernet interfaces with static IP addresses assigned to them can be selected as DHCP Servers. Once the ser ver is enabled, set the following parameters to be distributed to the clients: • • • • Domain Name: Value to be passed to clients. • • Address Ranges: One or more ranges of IP address: (10) DNS servers: Up to three addresses. Subnet mask: Client subnet mask. Lease Time (seconds): Amount of time a DHCP Client can hold an address without renewing. Routers: Up to two router IP addresses. This page shows both interfaces: Ethernet 1, and by scrolling down, Ethernet 2 is available for configuration in the same manner. 136 Web GUI Configuration EMR-5000 User’s Guide version 2.3 SNMP SNMP (Simple Network Management Protocol) is a widely used network monitoring and control protocol. To configure the SkyStream EMR for SNMP, enter the following information: • • Trap Destination: Enter the IP address to be used for the trap destination. Trap Community: Sets the trap community name to be used with this level of access. • SNMP Community: Enter the SNMP community name to be used with this access level. • Access Control: Defines this access level for this community. Select Read_Only or Read_Write from the pull down box. Allows Write or Read only access to the SNMP function. • • Click the Add button to apply the SNMP settings. Click the Edit or Delete link next to the SNMP section in order to modify or remove the SNMP settings. 137 SkyStream Networks You can click the Edit System Infor mation button to edit Contact and Location. Enter the following information: • • • • 138 Contact: Type contact name or address for person responsible for this event. Location: Type location of this unit. Click the Submit button to apply new settings. Click the Cancel button to remove the SNMP entry. Web GUI Configuration EMR-5000 User’s Guide version 2.3 PPP Point-to-Point Protocol is a data link protocol that provides dial-up access over serial lines connecting a single computer to the Internet via a modem. To configure the SkyStream EMR for PPP, you must enter connection information into the following tabs: ISP/Remote PPP Server Setup, Network Setup, Hardware Settings, Modem Settings, and Demand Dialer. The button Enable/Disable toggles PPP “on” or “off ” and the Connect/ Disconnect button toggles Manual Dialing “on” or “off.” You can also View PPP Statistics. NOTE These values are set per EMR and are not saved in a configuration file. 139 SkyStream Networks ISP/Remote PPP Server Setup PAP (Password Authentication Protocol) The most basic access control protocol for logging onto a network. A table of usernames and passwords is stored on a server. When users log on, their usernames and passwords are sent to the server for verification. Click the ISP/Remote PPP Ser ver Setup tab and enter the following information: • Phone Number: Type phone number of remote ISP server. If your system requires you to dial ‘9’ for an outside line, type ‘9<comma>’ and phone number without spaces. • • User Name: Type User Name required to log-on to remote ISP. Password: Type password to log-on to remote ISP. Click Advanced button to set up Expect/Send Strings or turn Debug on or off. Click Apply button or click Cancel to remove the entry. 140 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Advanced ISP/Remote PPP Server Expect/Send Strings Generally, a script consists of one or more “expect/send” pairs of strings, separated by spaces, with an optional “subexpect-subsend” string pair, separated by a dash as shown in the illustration. What you expect to receive in your logon script is in the Expect box, and what you would type to log on is in the Send box. You must be an advanced user to use this feature. If you have had difficulty connecting to your ISP, you can check the Log File for possible connection errors. Debug On/Off To view the Log File, click the Debug on radio button and click Apply, then click the View Log button. For more information, consult your service provider for documentation on “hooking up a PPP link to an Inter net Ser vice Provider (ISP).” 141 SkyStream Networks Network Setup Click the Network Setup tab and enter the following information: MRU (Maximum Receive Unit) The largest packet size that can be received over the network. MTU (Maximum Transmission Unit) The largest packet size that can be transmitted over the network. Messages longer than the MTU must be divided into smaller packets by the communications protocol. • • • • Use Peer as Default Route: Toggle radio buttons for modem-side gateway. Maximum Receiver Unit (MRU): 1500 (default) bytes Maximum Transmit Unit (MTU): 1500 (default) bytes Connect Timeout: PPP connection timeout (default is 45 seconds). Click Apply button or click Cancel to remove the entry. Click Advanced button to set up Local IP Address or Remote IP Address. • Local IP Address: Type the EMR IP address (0.0.0.0 will negotiate actual IP address during connection). • Remote IP Address: Type ISP IP address (optional) Click Apply button or click Cancel to remove the entry. 142 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Hardware Settings Click the Hardware Settings tab and enter the following information: • • Line Speed: Select line speed (baud rate of the modem) • Hardware Flow Control: Toggle radio buttons between Enable and Disable. Modem Type: Select Internal or External modem (this line only appears if the EMR has an internal modem). Click Apply button or click Cancel to remove the entry. 143 SkyStream Networks Modem Setup Click the Modem Setup tab and enter the following information: • INIT String: ATZ ATE1VE1V1Q0 (default) Initial string of up to 256 characters. You can override this setting with a new initializing string. • Dial String: ATDT (default) Dial string of 8 characters. Click Apply button or click Cancel to remove the entry. Modem Setup for External ISDN You can use an external ISDN through the PPP page with some modification on the AT string, the new INIT string for using external ISDN would be as follows: INIT String: ATE0V1Q0&D2!D1=57600%A2=96&K3 The explanation for this new AT string is as follows: ■ ATE0 - Echo Off ■ ATV1 - Result Code format (long format) ■ ATQ0 - Enable Result Codes ■ AT&D2 - DTR Control ■ AT!D1= - Specify Default DTE Speed (n=speed) ■ ■ 144 AT%A2= - Protocol Control (n=95 for async to sync conversion , n=96 for MLPPP) AT&K3 - Enable RTC CTS Web GUI Configuration EMR-5000 User’s Guide version 2.3 Demand Dialer The Demand Dialer is your gateway to remote ISP/PPP servers. The Idle timeout at the top of the Demand Dialer page allows you to specify the time in seconds before the dialer hangs up. Click the Demand Dialer tab to connect, view, edit, and delete rules. 145 SkyStream Networks You can create a new rule by clicking the New Rule button at the bottom of the page and click the New day/time button to set up dialing rules. After you have configured the Demand Dialer rule, click Apply button. The Advanced button provides a way to “ignore” all packets received on a given interface. Advanced Button This feature provides a way to “ignore” all packets received on a given interface, and can be used to prevent demand dial if spurious traffic is expected on a particular interface. This is useful if you have Promiscuous MAC enabled, and do not want unexpected packets to trigger a dial. The packets are still processed as usual; however, they will not cause an automatic dial even if they match one of the “accept” rules. By default, packets received by the Satellite Receiver(s) are ignored by the demand-dial and demand-tunnel rules. This can be changed by clicking the receiver checkboxes and clicking Apply. 146 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Click Edit or Add New Rule and enter the following information: IPv6-in-IPv4 A next-generation Internet Protocol, known first as IPng and then as IPv6, has been under development by the Internet Engineering Task Force (IETF) for several years to replace the current Internet Protocol known as IPv4. • • Action: Select from list “accept,” or “ignore.” Protocol: Select from the following list: TCP, UDP, ICMP, IGMP, EGP, GRE, IPv6-in-IPv4, ESP, AH, or any protocol. NOTE Only TCP and UDP may use port numbers. • • • • • • Source IP Address: The dialer source IP address NetMask: The dialer source netmask Destination IP Address: The dialer destination IP address Netmask: The dialer destination netmask Source Port (0 for any): The dialer source port number. Type zero ‘0’ for any port. Destination Port (0 for any): The dialer destination port number. Type zero ‘0’ for any port. 147 SkyStream Networks Click New day/time button and enter Start Time and End Time. You can also select specific days in that time period. NOTE No New day/time rule can cross the boundary of a day. The first scenario shows that a New date/time rule cannot be set past 11.59 PM (actually 11:59:59). To continue into the following day, you must create a second rule that starts the next day starting at midnight (12.00 AM). The second scenario shows how two rules allow you to dial at anytime except for one hour from noon to 1.00 PM. To achieve this, you must create one rule that starts, say, at midnight and finishes at 11.59 AM and another that starts at 1.00 PM and ends at 11.59 PM. This will block off one hour starting at noon. 148 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Click Show debug log at the bottom of the Demand Dialer Rules page and the following page will appear: Demand dialer rules Any default routes must be removed prior to starting demand dialing. When demand dialing is enabled, the demand dialer installs itself as the default route and listens for outgoing packets. When an outgoing packet arrives at the default route, the rules are scanned in priority order; from top to bottom: first “ignore” and then “accept.” The first matching rule is used. The same rules are used for both ISDN and PPP. Demand dialer rules have two actions and these actions apply to whichever device—dial-up modem (PPP), or ISDN—is configured to “Dial on Demand.” Only one device may be configured to dial on demand—you cannot enable both PPP and ISDN at the same time. Changes to any rules will take effect the next time the modem dials out; they do not affect a current connection. Rules can add up to a maximum of 40 rules. ignore Packets that match an ignore rule will be ignored and will not match any later rules. Except for the lack of a <timeout> parameter, the parameters are exactly as described for the accept command. There is a single timer in the demand dialer, which counts down whenever the link is connected. When it reaches zero the link is disconnected. Accept rules can be used to refresh the timer and maintain the link in the connected state. The ability to define different rules for different types of traffic are very flexible configuration. EMR has a default set of rules that may be restored by clicking on the “Restore factory default rules” button. This set of rules will be sufficient for most users. These rules may be customized as necessary. 149 SkyStream Networks accept Packets that match an accept rule will cause the link to come up and/or stay up for at least <timeout> seconds. The value <timeout> must be a non-negative integer. A <timeout> of zero means the connection associated with the packet will be killed immediately. The default is 300 seconds. The following debugging method will assist you in the development of custom rule sets and to diagnose problems with demand-dial connections. The “Show debug log” button displays a log file that indicates the activity of the demand dialer. Each time a demand rule causes the EMR to dial out, a “Trigger” message will appear in the log. This trig ger message indicates the original source, protocol, source address (and port), and destination address (and port) of the matching packet that initiated the connection. Trigger: from locally generated: tcp 192.168.4.178/1044 64. 165.192.147/1723 The above trigger is an example of an EMR initiating a PPTP connection to a PPTP server at 64.165.192.147, port 1723 The source of the packet that caused the trigger can be one of the following: locally generated — a packet that originated from EMREMR itself. eth1 — a packet that was received on Ethernet-1 eth2 — a packet that was received on Ethernet-2 satrx1 — a packet that was received on Satellite Receiver-1 satrx2 — a packet that was received on Satellite Receiver-2 This debug ging message makes it easier for you to know what caused the modem to dial when configured for demand dialing. This allows you to adjust demand rules if necessary. If a timeout expires and causes the disconnection of the link, a message like the one below will appear in the log: Closing down idle link 150 Web GUI Configuration EMR-5000 User’s Guide version 2.3 ISDN Integrated Service Digital Network (ISDN) allows data to be transmitted from point-to-point and reach a destination without errors. The rate of transmission of the data in the ISDN is 64 kbps per channel (maximum 128 kbps). The EMR supports BRI, passive, with two B-channels. NOTE Even without an ISDN card, it is still possible to use an external ISDN through PPP. See PPP Modem Setup. To configure the EMR ISDN, you must enter connection information into the following tabs: NOTE These values are set per EMR and are not saved in a configuration file. ■ ISP/Remote ISDN Server Setup ■ ISDN-PPP Setup ■ ISDN Line Settings The Manual dial now button, at the bottom of the main ISDN configuration properties page, causes the EMR to immediately dial out using the currently configured phone number, username, and password. Alternatively, clicking the Dial on demand button causes the EMR to dial out only when necessary. The decision to dial out and the amount of time to stay connected are controlled by a 151 SkyStream Networks set of demand dialer rules. You can configure the demand dialer rules by clicking on the menu tab Demand Dialer. See Demand dialer rules. ISP/Remote ISDN Server Setup Click the ISP/Remote ISDN Ser ver Setup tab and enter the following information: • • • 152 Phone Number: Type phone number of remote ISP server. User Name: Type User Name required to log-on to remote ISP. Password: Type password to log-on to remote ISP. Web GUI Configuration EMR-5000 User’s Guide version 2.3 ISDN-PPP Setup Click the ISDN-PPP Setup tab and enter the following information: • • Use ISDN Connection As Default Route: Toggle “Yes” or “No” VJ Header Compression: Toggle “Enable” or “Disable.” This setting allows you to enable or disable Van Jacobson style TCP/IP header compression. • • • B Channel (Multilink PPP): Select “One B-Channel” or “Two B-Channels” • • IP Address Negotiation: Toggle “Enable” or “Disable.” • Remote IP Address: Type remote ISP IP address (optional) Maximum Receiver Unit (MRU): 2000 (default) bytes Maximum Transmit Unit (MTU): 1500 (default) bytes Requested IP Address: Type the EMR IP address (0.0.0.0 will negotiate actual IP address during connection). Click Apply button or click Cancel to remove the entry. 153 SkyStream Networks ISDN Line Settings ISDN Line Settings • D-Channel Protocol: Select from the following list: Protocol 1TR6, Protocol EDSS1, Protocol Leased, and Protocol NI1. Line numbers • MSN/EAZ1 and 2: Multiple Subscriber Number or Endgeraete Auswahl Ziffer (Germany) Obtain these numbers from your Internet Service Provider. • SPID 1 and 2: Service Profile Identifier is an additional identifier used to identify the EMR ISDN device to the telephone network. Obtain these numbers from you Internet Service Provider. NOTE SPID is available by selecting Protocol NI1 as the D-Channel Protocol. 154 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Demand Dialer The Demand Dialer is a tool which allows the EMR to dial out only when necessary. The decision to dial out and the amount of time to stay connected are controlled by a set of demand dialer rules. When a packet arrives at EMR and no route exists for the destination IP address, the demand dialer will compare the packet against the set of rules. The first matching rule is used to determine if the demand dialer should dial out or remain connected for a period of time. These rules allow great flexibility when connecting to an Internet Service Provider (ISP). Click the Demand Dialer tab to connect, view, edit, delete rules. The Idle timeout at the top of the Demand Dialer page allows you to specify the time in seconds before the dialer hangs up. 155 SkyStream Networks You can create a new rule by clicking the New Rule button at the bottom of the page and click the New day/time button to set up dialing rules. After you have configured the Demand Dialer rule, click Apply button. The Advanced button provides a way to “ignore” all packets received on a given interface. Advanced Button This feature provides a way to “ignore” all packets received on a given interface, and can be used to prevent demand dial if spurious traffic is expected on a particular interface. This is useful if you have Promiscuous MAC enabled, and do not want unexpected packets to trigger a dial. The packets are still processed as usual; however, they will not cause an automatic dial even if they match one of the “accept” rules. By default, packets received by the Satellite Receiver(s) are ignored by the demand-dial and demand-tunnel rules. This can be changed by clicking the receiver checkboxes and clicking Apply. 156 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Click Edit or Add New Rule and enter the following information: IPv6-in-IPv4 A next-generation Internet Protocol, known first as IPng and then as IPv6, has been under development by the Internet Engineering Task Force (IETF) for several years to replace the current Internet Protocol known as IPv4. • Action: Select from list “accept,” or “ignore.” See Configuration PPP, Demand dialer rules. • Protocol: Select from the following list: TCP, UDP, ICMP, IGMP, EGP, GRE, IPv6-in-IPv4, ESP, AH, or any protocol. NOTE Only TCP and UDP may use port numbers. • • • Source IP Address: The source IP address of packets that matches this rule. Netmask: The netmask associated with the source IP address that matches this rule. Destination IP Address: The destination IP address that matches this rule. 157 SkyStream Networks • • • Netmask: The destination netmask that matches this rule. Source Port (0 for any): The source port number for packets that matches this rule. Type zero ‘0’ if the port number doesn’t matter. Destination Port (0 for any): The destination port number for packets that matches this rule. Type zero ‘0’ if the port number doesn’t matter. Click Show debug log at the bottom of the Demand Dialer Rules page and the following page will appear: If you click the Restore factory default rules button, you will delete all the current rules and replace them with a factory default set of rules. These rules should be sufficient for most users, and they can be modified as necessary. 158 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Fixed Key CAS NOTE Fixed Key CAS is synonymous with Stream Secure in SkyStream’s SkyConsole. You can use Fixed Key CAS for descrambling MPEG streams. If you do not enter Fixed Key CAS into the system, scrambled streams will not be accessible. The Fixed Key Conditional Access System option enables each receiver to decode up to 128 encrypted PID streams (one Fixed Key CAS per PID). If the broadcaster is scrambling this information, you will receive a key or keys for each scrambled PID; that is, if you are authorized to receive the information. The first page allows you to select the Satellite Receiver you wish to configure. Click the link and the next page displays the current Fixed Key CAS settings. If you want to add a new key, click the Add New Key button. If you want to edit a Fixed Key, click on the Edit link. Click the Delete link to remove a Fixed Key. PID: Select how you wish to enter the PID values, either Decimal or Hexadecimal by selecting the radio buttons, and then type the PID number. 159 SkyStream Networks Key (Hex): Type eight hexadecimals in the following format XX-XX-XX-XXXX-XX-XX-XX Parity: Select parity to either odd or even using the radio buttons. Click the Apply button to set the Fixed Key CAS. To remove the entry, click the Reset button, and to stop the entry, click the Cancel button. Click the Edit link to edit the Fixed Key CAS setting. 160 Web GUI Configuration EMR-5000 User’s Guide version 2.3 TCP Acceleration TCP Acceleration optimizes the use of TCP over satellite. TCP Acceleration supports both passive and active FTP, concurrent TCP connections, VSAT, and redundancy backup. To configure the SkyStream EMR for TCP Acceleration, you must enter connection information into the following tabbed panes: ■ Network Settings ■ Compression Settings ■ User Defined Ports NOTE These values are set per EMR and are not saved in a configuration file. 161 SkyStream Networks Network Settings Click the Network Settings tab and enter the following information: Server Side Settings • Primary Remote Server Address: Enter the IP address and port used by the TCP Acceleration primary server. • Secondary Remote Server Address: If you want a backup server, enter the IP address and port for the TCP Acceleration secondary server. • POP3 Server Address: If you want to use an e-mail program to send mail, enter the IP address and port of your Post Office Protocol 3 (POP3) mail server. NOTE For information on using TCP Acceleration with various browsers, mail programs and FTP applications see Appendix B: TCP Acceleration—Working With Applications. • 162 SMTP Server Address: If you want to use an e-mail program to receive mail, enter the IP address and port of your Simple Mail Transfer Protocol (SMTP) mail server. Web GUI Configuration EMR-5000 User’s Guide version 2.3 • NNTP Server Address: If you want to use a Network News Transport Protocol (NNTP), enter the IP address and port of your NNTP server. Client Side Settings • HTTP Listen Port: Enter the HyperText Transport Protocol (HTTP) port used by the TCP Acceleration Client (default is 9090). • FTP Listen Port: Enter the File Transfer Protocol (FTP) port used by the TCP Acceleration Client (default is 9091). • SSL Listen Port: Enter the Secure Sockets Layer (SSL) port used by the TCP Acceleration Client (default is 9092). • POP3 Listen Port: Enter the POP3 port used by the TCP Acceleration Client. • SMPT Listen Port: Enter the SMTP port used by the TCP Acceleration Client. • NNTP Listen Port: Enter the NNTP port used by the TCP Acceleration Client. 163 SkyStream Networks Compression Settings Click the Compression Settings tab and enter the following information: • Compression: Enter the IP address and port used by the TCP Acceleration primary server. • Compression Level: This display allows you to select the level of compression. The highest compression level is 9 and the lowest is 1. • • • HTTP Compression: Select one of the radio buttons (Yes or No). FTP Compression: Select one of the radio buttons (Yes or No). Compressed File Extensions: *.txt, *.doc, *.html, *.htm and *.bmp are default extensions. However, you may delete them, if you wish, by clicking the applicable Delete button. In addition, you may type new extensions into the text box at the bottom of the list, and add them to the list by clicking the Add button. After making changes, click the Apply button. NOTE Compression Settings also displays the Maximum number of TCP connections allowed (1000). 164 Web GUI Configuration EMR-5000 User’s Guide version 2.3 User Defined Ports Click the User Defined Services tab and add or delete information, as required. • Free-TCP Server Address: Enter the IP address used by the TCP Acceleration primary server and port numbers for the Server side and Client side (client default is 5631). You may delete the entry lines by clicking the applicable Delete button. In addition, you may type new lines into the text box at the bottom of the list, and add them to the list by clicking the Add button. After making changes, click the Apply button. Preferences Preferences allows you to “Enable” or “Disable” Transparent Proxy. For HTTP only, by enabling Transparent Proxy you do not have to enter proxy information to the client connected to the EMR. 165 SkyStream Networks Turbo Internet/VPN SkyStream’s Turbo Internet solution employs an asymmetrical satellite network that provides a high-speed delivery system. Turbo Internet uses the EMR, in an end-to-end broadband content delivery system that includes an IP encapsulator, such as the SkyStream satellite Source Media Router (SMR). Most Internet traffic is asymmetrical in nature. There is much more data going toward the Internet terminal than away from it. The Turbo Internet takes advantage of this fact and employs a high-capacity forward path and a lower-capacity return path, such as ISDN or modem. SkyStream’s solution also incorporates Virtual Private Networking (VPN), which emulates point-to-point connectivity. For a secure VPN, data is encrypted using a protocol called the Point-to-Point Tunneling Protocol (PPTP), or IPSec. NOTE Demand dialing is not supported when the LAN is the return channel. To configure the SkyStream EMR for Turbo Internet/VPN, you must enter connection information into the following tabs: 166 ■ PPTP ■ IPSec ■ Connection Method ■ Demand Rules ■ Advanced Options Web GUI Configuration EMR-5000 User’s Guide version 2.3 NOTE These values are set per EMR and are not saved in a configuration file. Click the Manual connect now button at the bottom of the main Turbo Internet/VPN configuration properties page to immediately try to make a connection or click Connect on demand to initiate connection through Demand Rules. NOTE When PPTP is connected, IPSec is disconnected. Similarly, when IPSec is connected, PPTP is disconnected. Manual connect The EMR will attempt to establish a PPTP or IPSec tunnel with the remote server as soon as you click Manual Connect (or if the EMR is loaded with a configuration file that was set for Manual Connect). If the connection attempt fails, or the remote server is disconnected, EMR will repeatedly try to connect to the server. You should use this mode should be used if you want the tunnel to remain up continuously. Connect on demand The EMR will establish a connection with the PPTP server or IPSec gateway only when “interesting” packets arrive. These are packets which match one of the ACCEPT demand rules, as specified on the Configuration - Turbo Internet page. If the connection is idle for the specified timeout, EMR will disconnect from the tunnel server. This feature may be used in conjunction with PPP or ISDN demand dialing to maintain a tunnel connection only as long as there is a need. In the demand case, you can install a route to act as a proxy while the tunnel is disconnected. For PPTP, this proxy is the default route. For IPSec you can install this proxy as a network route to the remote subnet. NOTE If both Turbo Internet and PPP/ISDN are configured for demand tunnels and demand dial, the idle timeouts are treated independently. If Turbo Internet is configured for 90-second timeout, and the PPP is configured for a 120 second timeout, the modem will remain connected for 210 seconds after the connection becomes idle. The tunnel will close after 90 seconds, and after another 120 seconds of inactivity the modem will hang-up. If you change the Demand Rules or timeout, you need to disconnect and reconnect PPP or Turbo Internet. 167 SkyStream Networks Advanced Button Click the Advanced button to set logging options. IPSec Logging Options • • • • • IPSec/IKE Interaction Messages Control Crypto Raw Bytes PPTP Logging Options • General (Always enabled) Select options and click View Log to check information. 168 Web GUI Configuration EMR-5000 User’s Guide version 2.3 PPTP Click the PPTP tab and configure parameters, as required. • Server IP Address: IP address of the Windows PPTP server or VPN concentrator. • Username: When authenticating against a Windows server, type your Windows domain name followed by two back slashes ‘\\’ and your Windows username, for example: domain\\username. • • Password: Type a password. • Satellite MAC filtering: Toggle between: Tunnel Address (No encryption over the air) or PPP Address (Encryption over the air). When a Turbo Internet/VPN connection is made, EMR listens for satellite traffic for this connection by adding a MAC Address entry into its MAC Address Selection list. If the PPTP Server is configured to send encrypted traffic to EMR, you should choose to listen for your PPP Address (Encryption over the air—over the air means: comes from the IP encapsulator (SMR) via satellite. If the PPTP Server is configured to send unencrypted traffic to EMR, you should select Tunnel Address (No encryption over the air)—packets will be in the clear. Click Apply button or click Cancel to remove the entry. 169 SkyStream Networks IPSec Click the IPSec tab and configure parameters, as required, then click Apply button or click Cancel to remove the entry. NOTE IPSec requires configuration to be exact. This may require debugging; in which case, see Chapter 6, “Troubleshooting” for IPSec Debugging. 170 Web GUI Configuration EMR-5000 User’s Guide version 2.3 IPSec Configuration Tunnel mode Enables AH or ESP to process the network layer protocol —the main advantage is that the IP header can be fully encrypted and authenticated. In addition, it uses the IP address of VPN initiator to hide the VPN client's IP address. Transport mode Enables AH or ESP to process transport layer field and /or higher layers of the datagrams. Most of the time compulsory Tunnels (EMR is the terminating edge) can be configured in tunnel mode and Voluntary Tunnels (client PC is terminating edge) in transport mode. • Remote Gateway IP Address: IP address of the remote gateway or VPN concentrator. • IPSec mode: Select from “Tunnel Mode” or “Transport Mode” NOTE Tunnel Mode applies ESP encryption and authentication to the entire original IP packet (IP header and data), thus hiding the ultimate source and destination addresses. This is the default selection, and it is the most secure. Transport Mode applies ESP encryption and authentication only to the transport layer segment (data only) of the original IP packet. This mode protects packet contents but not the ultimate source and destination addresses. Tunnel mode settings • • • • Remote Subnet (leave blank if not used): Remote subnet address Remote Subnet Mask (leave blank if not used): Remote subnet mask address Local Subnet (leave blank if not used): Local subnet address Local Subnet Mask (leave blank if not used): Local subnet mask address IPSec is very selective about which IP traffic is actually encrypted/authenticated and sent through the tunnels. For traffic to be sent though an IPSec tunnel it must have specific source and destination IP addresses. The tunnel mode settings are used to configure these addresses. • For IP packets sent from EMR to the remote gateway, the IP packet source address must match the Local Subnet and Local Subnet Mask settings. The IP packet destination address must match the Remote Subnet and Remote Subnet Mask settings. • For IP packets sent from the remote gateway to EMR, the IP packet source address must match the Remote Subnet and Remote Subnet Mask settings. The IP packet destination address must match the Local Subnet and Local Subnet Mask settings. Otherwise, the packet will not travel through the IPSec tunnel. The end of an IPSec tunnel can terminate at an entire subnet or at the single IP address of the IPSec gateway. This allows EMR to support four tunnel scenarios. These scenarios describe which traffic is sent through the IPSec tunnels: • LAN-to-LAN: Traffic from local subnet (attached to EMR) to remote subnet (attached to remote gateway). Both the local subnet and remote subnet must be entered. • LAN-to-Gateway: Traffic from local subnet (attached to EMR) to the remote gateway. Only the local subnet should be entered. The remote subnet should be left blank. 171 SkyStream Networks • Gateway-to-LAN: Traffic from EMR to the remote subnet (attached to remote gateway). Only the remote subnet should be entered. The local subnet should be left blank. • Gateway-to-Gateway: Traffic from EMR to the remote gateway. Leave both the local subnet and the remote subnet blank. NOTE To use EMR in a classic VPN configuration, LAN-to-LAN mode should be used. Internet Key Exchange (IKE) • DES (Data Encryption Standard) A National Institute of Standards and Technology (NIST) secret key cryptography method that uses a 56-bit key. DES is based on an IBM algorithm, which uses the block cipher method that breaks the text into 64-bit blocks before encrypting them. Encryption Algorithm: Select from the following list: DES (56-bit), and 3DES (168-bit). NOTE The EMR uses Triple-DES encryption as a default because it is the most secure. • Authentication Algorithm: Select from “HMAC-MD5 (128-bit)” or “HMAC-SHA1 (160-bit).” NOTE MD5 uses a 128-bit hash and is fastest. SHA1 uses a 160-bit hash and is more secure but requires more processing overhead. • Diffie-Hellman Group: Select from the following: Group 1 (768-bits), Group 2 (1024-bits), and Group 3 (1536-bits). NOTE The EMR uses Perfect Forward Secrecy (PFS) by default. PFS is a cryptographic concept where each new key is unrelated to any previous key. In IPSec negotiations, Phase 2 keys are based on Phase 1 keys unless Perfect Forward Secrecy is specified. Perfect Forward Secrecy uses DiffieHellman techniques to generate the keys. You must select one of the following groups and make sure that PFS is enabled at both the EMR and VPN side: Group 1 (768-bits) Use PFS and Diffie-Hellman Group 1 to generate IPSec session keys, where the prime and generator numbers are 768 bits. This option requires the least processing overhead. Group 2 (1024-bits) Use PFS and Diffie-Hellman Group 2 to generate IPSec session keys, where the prime and generator numbers are 1024 bits. This option is more secure than Group 1 but requires more processing overhead. Group 5 (1536-bits) Use PFS and Diffie-Hellman Group 5 to generate IPSec session keys, where the prime and generator numbers are 1536 bits. This option is more secure than Group 2 but requires more processing overhead. • • Authentication Mode: Pre-shared key is the only choice in this release. Shared secret (PSK): Type prearranged phrase to use for authentication. IPSec Security Associations (SA) • 172 Use Authentication Header (AH): Select check box. Web GUI Configuration EMR-5000 User’s Guide version 2.3 NOTE Authentication Header (AH) and Encapsulating Security Protocol (ESP) may be used separately or in combination. If you choose to use them together, you may use separate authentication algorithms for each. • PSK (Pre-Shared Key) A prearranged passphrase that is shared by two sides. PSK is an authentication method for IPSec. AH (Authentication Header) A protocol used by IPSec. AH provides data integrity, origin authentication, and replay resistance. ESP (Encapsulating Security Payload) A protocol used by IPSec, EPS provides data confidentiality, integrity, origin authentication, replay resistance, and limited traffic flow confidentiality. Authentication Algorithm: Select from the following list: MD5 (128-bit) or SHA1 (160-bit). NOTE The EMR default is MD5/HMAC-128; that is, ESP using HMAC (Hashed Message Authentication Coding) with the MD5 hash function, which uses a 128-bit key. SHA1/HMAC-160 is ESP using HMAC with the SHA-1 hash function, which uses a 160-bit key. This selection is more secure but requires more processing overhead. • • • • Use Encapsulating Security Payload (ESP): Select check box Encryption Algorithm: Select from the following list: DES (56-bit), and 3DES (168-bit). Authentication Algorithm: Select “MD5 (128-bit)” or “SHA1 (160-bit).” Replaces keys every: Keys replaced in increments of seconds and kilobytes of data, whichever comes first. 173 SkyStream Networks Connection Method Click the Connection Method tab and configure parameters, as required. • Connect using: Select from the following list: No tunneling protocol (NAT only), Point-To-Point Tunneling Protocol, and IPSec. No tunneling protocol (NAT only) connection NOTE If configured as No Tunneling Protocol with NAT enabled, and a MAC filtering entry is added, no connection is made to any tunneling server. This mode should be used when the client machine itself is going to be a VPN client; for example, a Windows Client PC connected to an EMR that establishes a PPTP connection to a remote PPTP server. Note that, only one PPTP client can be used per subnet in this case. IPSec clients usually cannot be used, because NAT rewrites packet headers, which causes IPSec packet integrity checking to fail. IPSec connection 174 Web GUI Configuration EMR-5000 User’s Guide version 2.3 • Initiate connection: Click “Manual connect now” or “Connect on demand.” Connect on demand—the Turbo Internet/VPN connection will be tried as soon as the PPP or ISDN link is established. Demand dialing should normally be configured to take full advantage of this mode. Manual connect now—the Turbo Internet/VPN connection will be tried when the user clicks the Connect button on the main Configuration - Turbo Internet/VPN page. Click Apply button or click Cancel to remove the entry. Example IPSec or PPTP: If the destination IP address is 10.1.1.2 and MAC Prefix is set to 0000, the EMR would listen for incoming packets with a MAC address of 00:00:0a:01:01:02. Check your IP Encapsulator (SMR) settings to determine what this value should be. Example No Tunneling Protocol: Use the following steps to enable NAT if you have a single modem: 1 Click Advanced Options and apply NAT by selecting an Ethernet. Click Apply. 2 Click Connection Method and Connect using: No Tunneling Protocol. Click Apply. 3 Go to the main Turbo Internet/VPN page and click Enable NAT button. 175 SkyStream Networks Demand Rules The demand rules for Turbo Internet/VPN are separate from PPP and ISDN to allow you to customize different demand rules for tunneled and non-tunneled traffic. Click the Demand Rules tab to connect, view, edit, and delete rules. You can create a new rule by clicking the Add New Rule button at the bottom of the 176 Web GUI Configuration EMR-5000 User’s Guide version 2.3 page. After you have configured the Demand Rule, click Apply button. The Advanced button provides a way to “ignore” all packets received on a given interface. Advanced Button This feature provides a way to “ignore” all packets received on a given interface, and can be used to prevent demand dial if spurious traffic is expected on a particular interface. This is useful if you have Promiscuous MAC enabled, and do not want unexpected packets to trigger a dial. The packets are still processed as usual; however, they will not cause an automatic dial even if they match one of the “accept” rules. By default, packets received by the Satellite Receiver(s) are ignored by the demand-dial and demand-tunnel rules. This can be changed by clicking the receiver checkboxes and clicking Apply. 177 SkyStream Networks Click Edit or Add New Rule and enter the following information: IPv6-in-IPv4 A next-generation Internet Protocol, known first as IPng and then as IPv6, has been under development by the Internet Engineering Task Force (IETF) for several years to replace the current Internet Protocol known as IPv4. • Action: Select from list “accept,” or “ignore.” See Configuration PPP, Demand dialer rules. • Protocol: Select from the following list: TCP, UDP, ICMP, IGMP, EGP, GRE, IPv6-in-IPv4, ESP, AH, or any protocol. NOTE Only TCP and UDP may use port numbers. • • • • • • Source IP Address: The source IP address of packets that matches this rule. Netmask: The netmask associated with the source IP address that matches this rule. Destination IP Address: The destination IP address that matches this rule. Netmask: The destination netmask that matches this rule. Source Port (0 for any): The source port number for packets that matches this rule. Type zero ‘0’ if the port number doesn’t matter. Destination Port (0 for any): The destination port number for packets that matches this rule. Type zero ‘0’ if the port number doesn’t matter. If you click the Restore factory default rules button, you will delete all the current rules and replace them with a factory default set of rules. These rules should be sufficient for most users, and they can be modified as necessary. 178 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Click Show debug log at the bottom of the Demand Rules page and the following page will appear: Advanced Options NAT should be enabled when client PCs, connected to EMR, are hidden behind the IP address of an EMR; that is, in the case of Turbo Internet. NAT should be disabled when setting up a VPN scenario. In this case, the IP addresses assigned to client PCs connected to an EMR should be routeable from the other segments of the VPN. Click the Advanced Options tab and configure parameters, as required. • NAT Applied To: Select Ethernet 1 and Ethernet 2, as required. NOTE NAT should be disabled when IPSec is selected. 179 SkyStream Networks • MAC Prefix for IP to MAC Conversion (IPCOPY): Default is “0000,” in hexadecimal. NOTE An IP address contains 32-bits, and a MAC address 48-bits. MAC Prefix for IP MAC Conversion puts the hexadecimal entered (16-bits) in front of the IP address. 180 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Sync The Sync-In port option can receive streams of synchronous data from an SMR and forward an MPEG-2 Transport Stream through a Sync card to a Sync Receiver. To configure the SkyStream EMR for Sync, enter the following information: Sync Configuration • PID: Enter the PID value and select Decimal or Hexadecimal by selecting the radio buttons, and then type the PID number. • Serial bit shift: Select the radio button first MSB or first LSB depending on the respective SMR setting for Sync. See SMR User’s Guide, Chapter 5, “Configure Sync In Hardware Driver.” MSB (Most Significant Bit) The first bit in a bit field. LSB (Least Significant Bit) The lowest-order bit. Clock Setting You can specify the speed within the range of 1 to 8 Mbits/s in bps. NOTE Depending on the sync card installed there may be an external clock to set. General Information • • • Media Type: Displays the hardware interface. Protocol: Displays the data stream format used. Interface: Displays the status of the connection. After configuration, click Apply button or click Cancel to remove the entry. 181 SkyStream Networks Date and Time NTP (Network Time Protocol) A protocol used to synchronize the clocks of two computers on the network in a master/slave fashion. The Date and Time option allows you to configure the clock either from an internal source or NTP Server. To configure the SkyStream EMR for Date and Time, enter the following information: Date and Time Configuration • Current Local Time: Nothing to enter—gives the time from the EMR internal clock or NTP Server. • UTC Time: Nothing to enter—gives the Coordinated Universal Time based on the internal clock setting and the local time zone. • Set Local Time: Select the month and type in the day and year. Type in hours and minutes; and select AM or PM. • • Time Zone: Select one of the POSIX standard time zones. • NTP Time Server IP Address (optional): If you want to receive your time from an external source, type the IP address of the NTP server. Synchronize clock to NTP server: Select the applicable radio button. The choices are “Never” or “Every” (type in how often you want to set the time) “minutes.” After configuration, click Apply button or click Cancel to remove the entry. 182 Web GUI Configuration EMR-5000 User’s Guide version 2.3 E-Mail Notification E-Mail notifies up to three recipients information about the status of the EMR. The contents of this information can be one or all of the following: PPP Connection Information, Satellite Receiver Lock/Unlock Status, Frequency Details, Symbol Rate, Viterbi Rate, Signal/Noise Ratio (Eb/N0), Viterbi BitError Rate, QPSK Bit-Error Rate, and Active PIDs. You can also select to automatically send e-mail or send e-mail now. 183 SkyStream Networks To configure the SkyStream EMR for e-mail, enter the following information: E-Mail Notification Configuration • SMTP Relay Server IP Address: Type the IP address for the standard Internet e-mail protocol. • Sender e-mail address: Type the sender's e-mail address. The default is “emr5000@localhost.” • Recipient E-mail Address (Up to three): Type the e-mail addresses that you want to receive EMR status information. • Subject Line: Type the subject of the e-mail. The default is “EMR E-mail Notification.” • Contents of E-mail Notification: Select the check boxes for contents of email notification. You can select from the following check boxes: PPP Connection Information, Satellite Receiver Lock/Unlock Status, Frequency Details, Symbol Rate, Viterbi Rate, Signal/Noise Ratio (Eb/N0), Viterbi BitError Rate, QPSK Bit-Error Rate, and Active PIDs. • Automatically Send E-mail: Select the applicable radio button. The choices are “Never” or “When PPP/ISDN Link is established.” • Number of retries, in case first attempt fails: Type a value for the number of times the EMR should try to send the e-mail notification. • Delay between retries (seconds): Type a value for the number of seconds between retries. After configuration, click Apply button or click Cancel to remove the entry. If you want to send the e-mail immediately then click Send e-mail now button. 184 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Maintenance The Maintenance pages allow you to access: Preferences, Software Upgrade, Change Password, and Reboot. Preferences The Maintenance Preferences page allows you to choose the units of measurement for the symbol rate, and the PID unit you want to use. In addition, you can disable Router Mode (Decrement TTL) if you do not want TTL to decrement enable, and enable PID Rate Monitoring to see the Bit/rate in PID Selection. You must select the applicable Ethernet port when enabling MAC Forwarding, and by enabling the TCP Proxy, you can forward data from a client to a server via TCP. If you have a low-bandwidth, you might want to enable Lightweight web page graphics. Reboot and the home page will load easier. 185 SkyStream Networks DNS Proxy DNS (Domain Name System) Name resolution software that lets users locate computers on a UNIX network or the Internet (TCP/IP network) by domain name. The DNS server maintains a database of domain names (host names) and their corresponding IP addresses. DNS Proxy allows you to enable the EMR as a DNS proxy server, thereby updating configuration files based on DNS information obtained once the PPP connection is established. It is necessary to enter an IP address for the primary DNS. Any address is acceptable initially; after which, the ISP will automatically update the DNS entries. The secondary DNS server is a backup. If you disable DNS Proxy then the DHCP configuration is updated with DNS ser ver information obtained from the ISP. Security The Security section allows you to enable or disable Telnet, HyperTerminal, and the FTP server on port 21. SMMP SkyStream Multicast Management Protocol allows you to specify the control and data addresses for your SMMP multicast protocol. All units must have the same control and data multicast addresses to communicate. These values should mirror E-Manager’s Advanced Preference. You must unlock the radio buttons to edit the values. NOTE When making changes, it is necessary to make the same changes on the client E-Manager side. PID ■ Control PID: MPEG PID used for SMMP through IP. ■ Data PID: MPEG PID used for SMMP through IP. Port ■ 186 Control Port: SMMP control endpoint port number of EMR node in group. Web GUI Configuration EMR-5000 User’s Guide version 2.3 ■ ■ Data Port: EMR endpoint port number. Auto Discovery Port: SMMP port number used with a return channel for Auto Discovery. IP Address ■ Control Multicast Address: SMMP multicast address for control. ■ Data Multicast Address: SMMP multicast address for data. By clicking the Advanced button, the Maintenance—Advanced Preferences page appears, allowing the advanced user to Boost the polarization voltage by one volt and set the FEC Mode to either Auto or Manual. You can also enable or disable Verbose Ethernet Statistics, which provides extensive Ethernet statistics that can be used in diagnosing network problems. These statistics are visible on the Network Statistics page. Enabling Console Log View displays the log messages on the page. Click Apply after each change. Click Clear to start a new syslogd file. NOTE Once the user has saved a configuration file, it is important to designate a configuration file as the default. The configuration file designated as “default” will be the one loaded upon reboot of the EMR. Settings When configuring your EMR there are some settings that you will save and remain in effect per session. You save these settings to a named configuration file. However, some settings you will save per unit that remain current, regardless of which configuration file is in effect, until you change them. Settings in Effect per Session ■ Tuner settings—frequencies, LNB details, FEC value ■ Satellite—permanent MAC address, assigned MAC address 187 SkyStream Networks ■ FKCAS info—PIDs, keys and parities ■ PID info—list of active PIDs ■ MACs info—MAC filtering information, promiscuous mode ■ Enable/Disable ■ IGMP settings ■ SkyCastRules—default/normal rules and status (active/inactive) ■ SkyNAT rules—rules and status (active/inactive) ■ SkyNPT rules—rules and status (active/inactive) ■ SYNC—configuration parameters ■ ISDN—configuration parameters ■ SMMP—lock status of all parameters Settings in Effect per Unit ■ EMR usernames and passwords ■ SNMP configuration ■ DHCP server configuration ■ SSH and SSL keys ■ Diagnostics output (if the user has run diagnostics) ■ Upgrade key ■ RIP enable/disable ■ Telnet, http, and enable/disable ■ Eth1/Eth2 setup ■ DHCP enable/disable ■ IP addresses, netmask, broadcast address ■ Tuner setup—IP address, netmask, broadcast address ■ Static routes ■ Remote syslog status (enable/disable) ■ Log level settings (info/warn/critical) ■ Log batching interval ■ Preferences NOTE In addition, all items under Maintenance—Preferences except SMMP settings and configuration details for the following: PPP, Turbo Internet / VPN, TCP Acceleration setup including transparent proxy and enable/ disable. 188 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Configuration File You can store and recall many different configurations from this page. After you configure and set the SkyStream EMR, go to this page and type a name for this current session into the Save current config as box. Enter a description for this configuration, select the Default check box, if required, then click the Save button. NOTE Values for advanced options in TCP Acceleration, Turbo Internet, PPP, and ISDN apply to all configuration files per EMR and cannot be saved in a configuration file. IMPORTANT The Restore Factory Default button is handy when you want to start a fresh. However, this clears all information, including the current upgrade key. This means that the EMR will go back to Basic Mode. You must reenter the upgrade key if you have one for Enhanced Mode. To delete a session, click the Delete link next to the session name that you want to remove. To load a specific session, click the Load link next to the session name that you want to load into the system. The (Loaded) notation appears next to the configuration session that was last loaded. The last column on the page allows you to choose your default configuration. However, there is a “Default” that is not listed as a file that the EMR goes to if no sessions are stored. The EMR configuration does not persist until you save it. If you do not save and power down the unit, your change will be lost. 189 SkyStream Networks Export/Import Configuration File Using FTP You have the option of either using the internal FTP server that resides in the EMR or using a remote FTP server. NOTE It is possible to export and import up to five session files all of which can be saved into one configuration file called “emr5000.cfg.” 1 Type the Remote FTP Host IP address where you want to export the configuration file to. 190 Export Configuration file using FTP 2 Type the Directory where the file is to be sent. 3 Type a valid User Name and Password to access the FTP host. Web GUI Configuration EMR-5000 User’s Guide version 2.3 4 Type remote destination filename (*.cfg). 5 Select file to export from the check boxes available. 6 Click Export Now. Import Configuration file using FTP 1 Type the Remote FTP Host IP address where you want to import the configuration file from. 2 Type the Directory where the file is located. 3 Type a valid User Name and Password to access the FTP host. 4 Click Import Now. Using internal FTP to copy cfg file to another EMR By using a laptop or other workstation connected to the network, you can FTP to the EMR through the Command Prompt. You can also copy to a floppy and transfer the file that way. 1 Click the Windows Start button. 2 Click Run. 3 In the Open box, type: cmd 4 Click OK. 5 If required, at the command prompt change the drive and directory where you want to save the configuration file. This is because the ftp “get” command will be saved to the local directory. At the prompt type: ftp xxx.xxx.xxx.xxx (“ftp” and the “IP Address” of the EMR you are connecting to) 6 Type at User <xxx.xxx.xxx.xxx:<none>>: emradmin or emruser and press Enter. 7 Type at Password: <your password> 8 Type at ftp> ls This will give you a list of contents. You should see the file emr5000.cfg. 9 Type at ftp> get emr5000.cfg and press Enter. This will put a copy of the file into the local directory. 10 Type at ftp> bye. This will log you out. 11 Take your laptop or floppy and access the network that contains the EMR to which you want to copy the configuration file. 12 Follow steps 1 to 7. 13 Type at ftp> put emr5000.cfg and press Enter. This will put a copy of the file into the EMR’s home directory. 191 SkyStream Networks Software Upgrade Occasionally, SkyStream Networks will have available new software to upgrade the SkyStream EMR. The software upg rade works as follows: Place the SkyStream-supplied image file on an FTP server accessible to the EMR then you can configure the EMR to go out and download the image file. The following steps walk you through downloading and upgrading this software: 192 Web GUI Configuration EMR-5000 User’s Guide version 2.3 How to download a software upgrade 1 Type the Remote FTP Host IP address where the software upgrade is located. 2 Type the Directory where the image file is located. 3 Type a valid User Name and Password to access the FTP host. 4 Click the Go button. A new window will appear allowing you to select the version of software you wish to replace. The amount of time it takes to complete the download process is determined by network traffic. The system will automatically bring up an information box showing the current versions of the software currently installed on the system including the new version. 5 Reboot the EMR to begin using the new software upgrade. NOTE If an upgrade error or problem with the new download occurs, the EMR is able to automatically fall back to the last successful working version. Boot Selection If boot selection is set to “Auto” mode, the boot loader will load the kernel that is most up-to-date. If set to “Manual” mode, the user must select a kernel that is currently available. This will be loaded the next time you boot the EMR. The onboard flash has enough memory for two kernels: A Factory version on the flash, which is the software load shipped with the unit, and two user versions. The factory version cannot be deleted. Choose a software kernel from the list box and click Apply to set the changes. Feature Upgrade The Feature Upgrade is used for applying additional pay features to the SkyStream EMR. To activate the Feature Upgrades, SkyStream will give you an upgrade key with your purchase. The upgrade key is entered into the Key field; all you have to do is click the Apply button to enable the additional features. NOTE When upgrading your EMR to enhance its capabilities, you will receive an Upgrade Key string. The Basic software package provides support for up t o 2 8 M s y m b o l s , 3 2 P I D s , a n d 1 6 M A C A d d r e s s e s p e r r e c e i v e r. T h e Enhanced software package provides support for up to 45 Msymbols, 64 PIDs, and 32 MAC Addresses per receiver. TCP Acceleration During a software upgrade, it is important to disable TCP Acceleration. After completing the upgrade, select the Enable radio button and click the Apply button. 193 SkyStream Networks Change Password Depending on your password and security privileges, either emradmin or emruser, you can change the password. After you have logged on for the first time, as outlined in Chapter 3, “System Logon,” a good practice is to change the password. However, make sure that you keep a copy of the password in a safe place. If you forget or lose your password, see Chapter 6, “Troubleshooting—Password Recovery.” After typing in the old password and entering the new password twice, click the Change button. 194 Web GUI Configuration EMR-5000 User’s Guide version 2.3 System Reboot Occasionally, you will need to restart or reboot the SkyStream EMR after software upgrades or after changing the network settings. To reboot the system, click the Reboot Now button. The EMR will reboot and start back up with the new configuration changes. Check the LED indicator lights on the front panel to see whether the EMR is functioning properly. 195 SkyStream Networks Diagnostics The Diagnostics pages allow you to run and view System Diagnostics and Log File Content, as well as network utilities such as Ping and Netstat. Ping The Ping utility is used to test communications and view packet loss through networks. Using the Ping utility with the SkyStream EMR, you can test connectivity to a remote system by sending ICMP Ping packets and waiting for a response. On the Network Utility Ping page, you are able to configure the ping functions by filling in the following fields: • Enter option(s) for ping: allows you to configure specific options to add to the ping utility. (optional) • • • IP Address: Where you want the ping to test connectivity. Packet Size: Enter the size of the packet you wish to transmit. Number of packets to send: Enter the number of packets the system will send. Once all the settings are ready, click the Apply button to run the ping utility. Wait a few seconds and a report will display on the success of the ping. 196 Web GUI Configuration EMR-5000 User’s Guide version 2.3 For additional information on the options field, click the More Info button and a window will appear with additional information. OR SEE Appendix A: Command Definitions 197 SkyStream Networks Netstat The Netstat utility is used to display infor mation the Linux networking subsystem. It is capable of showing information on the network connections, routing tables, interface statistics, netlink messages, and multicast memberships, depending on the options you enter. To configure the Netstat utility, enter the Netstat options. To run the utility, click the Apply button. For more information on the Netstat options, click the More Info button and a window will appear with additional information. OR SEE Appendix A: Command Definitions 198 Web GUI Configuration EMR-5000 User’s Guide version 2.3 System Check The System Check page checks the integrity of the EMR and generates a Log File that you can send to SkyStream Networks for assistance to evaluate and help solve problems that might occur. The current Log File is saved and will be named SkyDiag.txt. When you click the Run Tests button, the diagnostic program runs and places the new diagnostics information in the SkyDiag.txt file. The following steps walk you through uploading the system check to another PC or to SkyStream for further assistance. 1 Click the Run Tests button. 2 Click the View button to see the results of the test. 199 SkyStream Networks 3 Enter the Remote FTP Host IP address 4 Enter the Path (directory) where the file should be saved. 5 Enter the Username and Password for the FTP Host or PC workstation where you are saving the file. 6 To upload the SkyDiag.txt file, click the Upload button. The Upload Log File button accesses the current SkyDiag.txt and displays an FTP transfer window. Select the directory and enter the appropriate user name and password to transfer the file to this directory for later review. This will help with troubleshooting any problems that may arise. 200 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Log Information The Log File Information page shows you the current Log File information and how to access and run the Log File for use in troubleshooting system problems. The log information is written to the flash memory—the EMR can save up to 256 kilobytes of log information. To configure the Log File utility, enter the Log file options. Current Log File Name: i.e. SkyLog.txt Batching Interval: Type the number of seconds between Log File updates. The default for this setting is “0.” Log Info Level Check boxes: This option sets the level of information that will be saved in the Log File. The available options are Information, Warning, and Fatal. The default level is set to Fatal, which gives you the best performance. • • • Information: logs all events into the system Warning: logs details regarding possible problems and errors. Fatal: logs only details on major errors or system problems. 201 SkyStream Networks • Click the Apply button to set the new configuration. To reset the Log File configuration page, click the Cancel button. Click the View button to see the current Log File in a new page, or click Clear Log to remove log entries. Remote FTP Host 1 Type the Remote FTP Host IP address 2 Type the Path (directory) where the file should be saved. 3 Type the Username, and Password for the FTP Host or PC workstation where you are saving the file. 4 Click the Upload button to load the settings. Remote SysLogd You can save the Log File of a remote system by selecting the Enable radio button and typing in the remote IP address at SysLogd IP Access. To view the Log File at any time, click the View button. A new page will appear with the log file information. NOTE If the setup is such that a large number of events are routinely generated, SkyStream recommends that the Log File be changed to Warning or Informational and that the Batching file be changed to a high enough value so that the system is not slowed by constant updates to the Log File. The default setting for the Log Info Level is chosen and designed to allow the EMR to operate a maximum efficiency. By just logging the fatal errors, fewer resources are being allocated to logging extra information to the flash memory. The flash memory allocated for the log file information has a maximum size of 256K divided into two equal blocks of 128K each. When the memory on both blocks is filled, the system erases the first block and begins writing again. This will cause the system to remove the oldest log entries. 202 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Software Information Hardware Information The Software Information Diagnostics page displays Current Software Version, Current Driver Version, Current Boot Version, Software Build Date, and Software Package (Basic or Performance) information. The Hardware Information page displays the current Mainboard Version, Total SDRAM, System Firmware Version, Tuner Firmware Version, System Uptime and Mainboard Temperature. 203 SkyStream Networks 204 Web GUI Configuration EMR-5000 User’s Guide version 2.3 Chapter 6: Troubleshooting 205 SkyStream Networks Troubleshooting This chapter provides detailed information and procedures for isolating receiver malfunctions in a logical manner. LED Display Troubleshooting the SkyStream EMR is accomplished easily and quickly by viewing the LED status lights on the front of the EMR. The current status of the EMR is found by reading the LED display. The table below describes the function of each indicator. LED Display Properties Table LEDs Link Data On/Off On/Off Active Config On/Off On/Off Link/ Active 100TX LAN2 LAN1 On/Off On/Off Power Minor Alarm Major Error On/Off On/Off TS3 TS2 TS1 EXP2 EXP1 206 Description On/Off Transport Stream indicator LEDs. If the Link LED is on, there is a lock. If the Data LED is on, data is being received. The EMR is able to handle up to 3 transport streams (currently supports 2 streams). Expansion slot indicator LEDs. This feature is to be used with a future upgrade option. Network Connection indicator LEDs. If the Link/Active indicator is on, the corresponding Ethernet interface is connected and has link with the remote side. This indicator flashes when there is network traffic. The 100TX indicator will be on if the link connection is at 100 Mbps, and will stay off if the rate is at 10 Mbps. The power LED indicates that the system is plugged in and turned on. The Minor Alarm indicator shows if the EMR has found a non-fatal error. (not available) The Major Alarm indicator shows if the EMR has encountered a major or fatal error. During loading the kernel will be turned on, and after a successful load, it will turn off. Troubleshooting EMR-5000 User’s Guide version 2.3 Error and Event Logging The EMR has error/event logging capabilities. The Log File can then be accessed and printed out in order to troubleshoot system problems and/or send the Log File to SkyStream Networks for further assistance. Contact SkyStream Networks Customer Service with any questions or concerns. Errors and events are reported and logged using the following mechanisms: • Through SNMP, as traps, the EMR will support up to four trap destination IP addresses. The responsibility of the SNMP manager is to receive the traps and save them in the Log File. • Using a standard Unix Syslog system, the EMR is configured to send log entries to a standard syslog daemon. • Errors and events are logged and saved to the Log File. NOTE Refer to the Log Information section in the Diagnostics chapter for more information on how to access this function. The following types of errors are logged to the Log File in order to aid in troubleshooting: • • • The satellite receiver subsystem lost its signal lock A new route was learned A new data PID has been detected These events can be separated into the following parts: • • • • • A timestamp of when the event occurred The subsystem generating the event Level of severity for the event Description of the event ID number for the event 207 SkyStream Networks IPSec Debugging IPSec negotiation occurs in two phases: Internet Key Exchange (IKE) is used to create an Security Association (SA), followed by an IPSec Security Association (SA). Both phases must succeed before any data can traverse the connection. Due to the complexity of configuring IPSec, it may be necessary to debug parameters. To access the IPSec debug log, from the Configuration-Turbo Internet/VPN page, click the Advanced button, select logging preferences, and click View Log; the bottom of the log will give debugging information. IPSec Debug Log messages: 1 “initiating Main Mode” If the connection is stuck here, it is likely that, either the packets cannot get to the remote gateway, or the remote gateway IKE (Phase 1) parameters do not match those on the EMR. 2 “informational payload, type NO_PROPOSAL_CHOSEN” This message means that the IKE or IPSec parameters are not matched between the EMR and the remote gateway. Check the settings for both IKE and IPSec SAs and make sure they agree with the remote gateway. 3 “informational payload, type IPSEC_RESPONDER_LIFETIME” EMR supports a re keying interval between 60 and 86400 seconds (one day). This message means that the remote gateway is configured to use a re keying interval that is outside the boundaries of what EMR supports. Change the re 208 Troubleshooting EMR-5000 User’s Guide version 2.3 key interval on the remote gateway to be less that or equal to the interval set on the EMR. 4 “we require PFS but Quick I1 SA specifies no GROUP_DESCRIPTION” EMR uses Perfect Forward Secrecy by default. This message means that the remote gateway is not correctly configured for PFS on the IPSec (not IKE) Phase 2 negotiations. Enable PFS Diffie Hellman Group 1, 2, or 5 on the remote gateway. 5 “informational payload, type INVALID_ID_INFORMATION” This message means that the local subnet, local subnet mask, remote subnet, or remote subnet mask do not agree with the remote gateway configuration. Remember that EMR’s local subnet is the remote gateway’s remote subnet and vice versa. 6 “informational payload, type INVALID_COOKIE” This usually means the other side has rejected our connection attempt immediately. Check that the remote gateway is accepting requests from EMR's IP Address. Password Recovery Procedure In the event that you forget your password or user identity, the following procedure will enable you to create a new one. Password recovery in itself is not possible; however, you can bypass the system in an emergency. SkyStream will give you a special key, so that when you boot the EMR, you will have sixty seconds to type in the key; the system will erase the password. To gain access to your EMR, you will be able to enter the default user identity and password. If you do not have the special key, contact SkyStream Customer Support. Password Recovery The following steps take you through the process: 1 Connect to the EMR through a PC connected to the serial port. 2 Run HyperTerminal from Windows Accessories: ■ Click the Windows Start button ■ Choose Programs > Accessories > Hyperterminal ■ Click Hyper Terminal icon 3 From CLI or the Web GUI reboot the EMR. 4 In HyperTerminal, at the prompt type: resetpw 5 You have sixty seconds to type the special key (provided by SkyStream Customer Support for each unit) Upon entering this key, the old password will be erased and the EMR will reboot. You can now gain access to the EMR through CLI or the Web GUI by using the default user identity and password (see Chapter 3, “System Logon”). 209 SkyStream Networks Software Upgrade 210 When performing a software upgrade, a message may appear in the Web GUI stating that the kernel is too large. If this happens, make sure that you have disabled TCP Acceleration. Go to the Maintenance—Software Upgrade page and Disable TCP Acceleration. You can re-Enable TCP Acceleration after the upgrade. Troubleshooting EMR-5000 User’s Guide version 2.3 Appendix A: Command Definitions 205 SkyStream Networks ping The following information can be found in the “UNIX System Manager's Manual” NAME ping - send ICMP ECHO_REQUEST packets to network hosts SYNOPSIS ping [-dfnqrvR] [-c count] [-i wait] [-p pattern] [-s packetsize] DESCRIPTION Ping uses the ICMP protocol's mandatory ECHO_REQUEST datagram to elicit an ICMP ECHO_RESPONSE from a host or gateway. ECHO_REQUEST datagrams (”pings”) have an IP and ICMP header, followed by a struct timeval and then an arbitrary number of pad bytes used to fill out the packet. The options are as follows: -c count: Stop after sending (and receiving) count ECHO_RESPONSE packets. -d: Set the SO_DEBUG option on the socket being used. -i wait: Wait seconds between sending each packet. The default is to wait for one second between each packet. -n: Numeric output only. No attempt will be made to lookup symbolic names for host addresses. -p pattern: You may specify up to 16 pad bytes to fill out the packet you send. This is useful for diagnosing data-dependent problems in a network. For example, -p ff will cause the sent packet to be filled with all ones. -q: Quiet output. Nothing is displayed except the summary lines at startup time and when finished. -R: Record rout e. Includes the RECORD_ROUTE opt ion in the ECHO_REQUEST packet and displays the route buffer on returned packets. Note that the IP header is only large enough for nine such routes. Many hosts ignore or discard this option. -r: Bypass the normal routing tables and send directly to a host on an attached network. If the host is not on a directly-attached network, an error is returned. This option can be used to ping a local host through an interface that has no route through it (e.g., after the interface was dropped by routed(8)). -s packetsize: Specifies the number of data bytes to be sent. The default is 56, which translates into 64 ICMP data bytes when combined with the 8 bytes of ICMP header data. 206 Command Definitions EMR-5000 User’s Guide version 2.3 -v: Verbose output. ICMP packets other than ECHO_RESPONSE that are received are listed. When using ping for fault isolation, it should first be run on the local host, to verify that the local network interface is up and running. Then, hosts and gateways further and further away should be pinged. Round-trip times and packet loss statistics are computed. If duplicate packets are received, they are not included in the packet loss calculation, although the round trip time of these packets is used in calculating the minimum/average/maximum round-trip time numbers. When the specified number of packets have been sent (and received) or if the program is terminated with a SIGINT, a brief summary is displayed. If ping does not receive any reply packets at all it will exit with code 1. On error it exits with code 2. Otherwise it exits with code 0. This makes it possible to use the exit code to see if a host is alive or not. This prog ram is intended for use in network testing, measurement, and management. Because of the load it can impose on the network, it is unwise to use ping during normal operations or from automated scripts. ICMP PACKET DETAILS An IP header without options is 20 bytes. An ICMP ECHO_REQUEST packet contains an additional 8 bytes worth of ICMP header followed by an arbitrary amount of data. When a packetsize is given, this indicated the size of this extra piece of data (the default is 56). Thus t h e a m o u n t o f d a t a r e c e i ve d i n s i d e o f a n I P p a c k e t o f t y p e I C M P ECHO_REPLY will always be 8 bytes more than the requested data space (the ICMP header). If the data space is at least eight bytes large, ping uses the first eight bytes of this space to include a timestamp which it uses in the computation of round trip times. If less than eight bytes of pad are specified, no round trip times are given. DUPLICATE AND DAMAGED PACKETS Ping will report duplicate and damaged packets. Duplicate packets should never occur and seem to be caused by inappropriate link-level retransmissions. Duplicates may occur in many situations and are rarely (if ever) a good sign, although the presence of low levels of duplicates may not always be cause for alarm. Damaged packets are obviously serious cause for alarm and often indicate broken hardware somewhere in the ping packet's path (in the network or in the hosts). TRYING DIFFERENT DATA PATTERNS The (inter)network layer should never treat packets differently depending on the data contained in the data portion. Unfortunately, data-dependent problems have been known to sneak into networks and remain undetected for long periods of time. In many cases the particular pattern that will have problems is something that doesn't have sufficient transitions, such as all ones or all zeros, or 207 SkyStream Networks a pattern right at the edge, such as almost all zeros. It isn't necessarily enough to specify a data pattern of all zeros (for example) on the command line because the pattern that is of interest is at the data link level, and the relationship between what you type and what the controllers transmit can be complicated. This means that if you have a data-dependent problem you will probably have to do a lot of testing to find it. If you are lucky, you may manage to find a file that either can't be sent across your network or that takes much longer to transfer than other similar length files. You can then examine this file for repeated patterns that you can test using the -p option of ping. TTL DETAILS The TTL value of an IP packet represents the maximum number of IP routers that the packet can go through before being thrown away. In current practice you can expect each router in the Internet to decrement the TTL field by exactly one. The TCP/IP specification states that the TTL field for TCP packets should be set to 60, but many systems use smaller values (4.3 BSD uses 30, 4.2 used 15). The maximum possible value of this field is 255, and most Unix systems set the TTL field of ICMP ECHO_REQUEST packets to 255. This is why you will find you can ping some hosts, but not reach them with telnet(1) or ftp(1). In normal operation ping prints the TTL value from the packet it receives. When a remote system receives a ping packet, it can do one of three things with the TTL field in its response: Not change it; this is what Berkeley Unix systems did before the 4.3BSD-Tahoe release. In this case the TTL value in the received packet will be 255 minus the number of routers in the round-trip path. Set it to 255; this is what current Berkeley Unix systems to. In this case the TTL value in the received packet will be 255 minus the number of routers in the path from the remote system to the pinging host. Set it to some other value. Some machines use the same value for ICMP packets that they use for TCP packets, for example either 30 or 60. Others may use completely wild values. BUGS Many Hosts and Gateways ignore the RECORD_ROUTE option. The maximum IP header length is too small for options like RECORD_ROUTE to be completely useful. There's not much that can be done about this, however. Flood pinging is not recommended in general, and flood pinging the broad cast address should only be done under very controlled conditions. HISTORY The ping command appeared in 4.3BSD. 208 Command Definitions EMR-5000 User’s Guide version 2.3 route The following information can be found in the ‘Linux Programmer's Manual’ NAME route - show / manipulate the IP routing table SYNOPSIS route [-CFvnee] route [-v][-A family]add [-net|-host]target [netmask Nm][gw Gw] [metric N][mss M][window W] [irttI][reject][mod][dyn][reinstate][[dev]If] route [-v][-A family] del [-net|-host]target[gw Gw][netmask Nm] [metric N][[dev]If] route [-V][--version][-h][--help] DESCRIPTION Route manipulates the kernel's IP routing table. Its primary use is to set up static routes to specific hosts or networks via an interface after it has been configured with the ifconfig(8) program. OPTIONS -v: Select verbose operation. -A family: Use the specified address family (e.g. inet, inet6). -n: Show numerical addresses instead of trying to determine symbolic host names. This is useful if you are trying to determine why the route to your nameserver has vanished. -e: Use netstat(8)-format for displaying the routing table. -ee will generate a very long line with all parameters from the routing table. -net: The target is a network -host: The target is a host -F: Displays the kernel FIB routing table. The layout can be changed with -e and -ee -C: Displays the kernel's route cache del: Deletes a route add: Adds a route target: The destination network or host. You can provide IP addresses in dotted decimal or host/network names. netmask Nm: Modifier specifies the netmask of the route to be added. 209 SkyStream Networks gw Gw: Any IP packets for the target network/host will be routed through the specified gateway. NOTE: The specified gateway must be reachable first. This usually means that you have to set up a static route to the gateway beforehand. If you specify the address of one of your local interfaces, it will be used to decide about the interface to which the packets should be routed to. This is a BSDism compatibility hack. metric M: Set the metric field in the routing table (used by routing daemons) to M. mss M: Set the TCP Maximum Segment Size (MSS) for connections over this route to M bytes. This is normally used only for fine optimization of routing setups. The default is 536. window W: Set the TCP window size for connections over this route to W bytes. This is typically only used on AX.25 networks and with drivers unable to handle back to back frames. irtt I: Set the initial round trip time (irtt) for TCP connections over this route to I milliseconds (1-12000). This is typically only used on AX.25 networks. If omitted the RFC 1122 default of 300ms is used. reject: Install a blocking route, which will force a route lookup to fail. This is for example used to mask out networks before using the default route. This is NOT for fire-walling. mod, dyn, reinstate: Install a dynamic or modified route. Both flags are generally only set by a routing daemon.This is only for diagnostic purpose. dev If: Forces the route to be associated with the specified device, as the kernel will otherwise try to determine the device on its own (by checking already existing routes and device specifications, and where the route is added to). In most normal networks you won't need this. If dev: If is the last option on the command line, the word dev may be omitted, as it's the default. Otherwise the order of the route modifiers (metric - netmask gw - dev) doesn't matter. EXAMPLES route add -net 127.0.0.0: Adds the normal loopback entry, using netmask 255.0.0.0 (class A net, determined from the destination address) and associated with the “lo” device (assuming this device was previously setup correctly with ifconfig(8)). route add -net 192.56.76.0 netmask 255.255.255.0 dev eth0: Adds a route to the network 192.56.76.x via “eth0”. The Class C netmask modifier is not really necessary here because 192.* is a Class C IP address. The word “dev” can be omitted here. route add default gw mango-gw: Adds a default route (which will be used if no other route matches). All packets using this route will be gatewayed through “mango-gw”. The device which will actually be used for that route depends on 210 Command Definitions EMR-5000 User’s Guide version 2.3 how we can reach “mango-gw” - the static route to “mango-gw” will have to be set up before. route add ipx4 sl0: Adds the route to the “ipx4” host via the SLIP interface (assuming that “ipx4” is the SLIP host). route add -net 192.57.66.0 netmask 255.255.255.0 gw ipx4: This command adds the net “192.57.66.x” to be gatewayed through the former route to the SLIP interface. route add 224.0.0.0 netmask 240.0.0.0 dev eth0: This is an obscure one documented so people know how to do it. This sets all of the class D (multicast) IP routes to go via “eth0.” This is the correct normal configuration line with a multicasting kernel. route add 10.0.0.0 netmask 255.0.0.0 reject: This installs a rejecting route for the private network “10.x.x.x.” OUTPUT The output of the kernel routing table is organized in the following columns: Destination: The destination network or destination host. Gateway: The gateway address or ‘*’ if none set. Genmask: The netmask for the destination net; ‘255.255.255.255’ for a host destination and ‘0.0.0.0’ for the default route. Possible flags are: U (route is up) H (target is a host) G (use gateway) R (reinstate route for dynamic routing) D (dynamically installed by daemon or redirect) M (modified from routing daemon or redirect) ! (reject route) Metric: The ‘distance’ to the target (usually counted in hops). It is not used by recent kernels, but may be needed by routing daemons. Ref Number of references to this route. (Not used in the Linux Kernel.) Use: Count of lookups for the route. Depending on the use of -F and -C this will be either route cache misses (-F) or hits (-C). Iface: Interface to which packets for this route will be sent. MSS: Default maximum segment size for TCP connections over this route. Window Default: window size for TCP connections over this route. irtt: Initial RTT (Round Trip Time). The kernel uses this to guess about the best TCP protocol parameters without waiting on (possible slow) answers. 211 SkyStream Networks HH (cached only): The number of ARP entries and cached routes that refer to the hardware header cache for the cached route. This will be -1 if a hardware address is not needed for the interface of the cached route (e.g. lo). Arp (cached only): Whether or not the hardware address for the cached route is up to date. AUTHOR Currently maintained by Phil Blundell [Philip.Blundell@pobox.com]. 212 Command Definitions EMR-5000 User’s Guide version 2.3 netstat NAME netstat - Display network connections, routing tables, interface statistics, masquerade connections, netlink mes- sages, and multicast memberships SYNOPSIS netstat [-venaocs] [--tcp|-t] [--udp|-u] [--raw|-w] [--groups|-g] [--unix|-x] [-inet|--ip] [--ax25] [--ipx] [--netrom] netstat [-venc] [--inet] [--ipx] [--netrom] [-ddp] [--ax25] {--route|-r} netstat [-venpac] {--interfaces|-i} [iface] netstat [enc] {--masquerade|-M} netstat [-cn] {--netlink|-L} netstat {-V|--version} {h|--help} : DESCRIPTION Netstat displays information of the Linux networking sub- system. (no option) You can view the status of network connections by listing the open sockets. This is the default operation: If you don't specify any address families, then the active sockets of all configured address families will be printed. The address family inet will display raw, udp and tcp sockets. -a, --all The -a, --all option will print information about all sockets, including the listening server sockets. -l, --listening The -l, --listening option will print information about listening server sockets only. -e, --extend The -e, --extend option prints some additional information : (e.g. user id and inode of the connection). -p, --programs The -p, --programs option displays additional information about the program that is using the socket (e.g. process id and the name of the program). -v, --verbose The -v, --verbose switch makes netstat complain about known address families which are not supported by the kernel. -r, --route With the -r, --route option, you get the kernel routing tables in the same format as route -e use. netstat -er will use the output format of route. Please see route(8) for details. -g, --groups With the -g, --groups option, IGMP multicast group member- ship information for IPv4 and IPv6 is displayed. -i, --interface iface If you use the -i, --interfaces option, a table of all (or the specified iface) networking interfaces will be printed. The output uses the ifconfig -e format, and is described in ifconfig(8). netstat -ei will print a table or a single interface entry just like ifconfig does. With the -a switch, you can include interfaces which are not configured (i.e. don't have the U=UP flag set). 213 SkyStream Networks -M, --masquerade A list of all masqueraded sessions can be viewed, too. With the -e switch you can include some more infor mations about sequenze numbering and deltas, caused by data rewrites on FTP sessions (PORT command). Masquerade sup- port is used to hide hosts with unofficial network addresses from the outside world, as described in ipfw(4),ipfwadm(8) and ipfw(8). -L, --netlink Recent kernels have a kernel/user communication support called netlink. You can get messages about creation or deletion of interfaces or routes from /dev/route (36,0). OPTIONS -v, --verbose Tell the user what is going on by being verbose. Especially print some useful informations about unconfigured address families. -n, --numeric Shows numerical addresses instead of trying to determine symbolic host, port or user names. -p, --programs Displays process name and PID of the owner of each socket it dumps. You have to be the owner of such process to have all it's sockets matched to it or generally root user will see all the necessary information in place. -A, --af family Use a different method to set the address families. family is a comma (',') separated list of address family key- words like inet, unix, ipx, ax25, netrom and ddp. This is has the same effect as using the long options --inet, -unix, --ipx, --ax25, --netrom and --ddp. -c, --continous : This will cause netstat to print the selected table every second continuously on the screen until you interrupt it. OUTPUT Active Internet connections (TCP, UDP, RAW) Proto The protocol (tcp, udp, raw) used by the socket. Recv-Q The count of bytes not copied by the user program connected to this socket. Send-Q The count of bytes not acknowledged by the remote host. Local Address The local address (local hostname) and port number of the socket. Unless the -n switch is given, the socket address is resolved to its canonical hostname, and the port number is translated into the corresponding service name. Foreign Address The remote address (remote hostname) and port number of the socket. As with the local address:port, the -n switch turns off hostname and service name resolution. State The state of the socket. Since there are no states in RAW and usually no states used in UDP, this row may be left blank. Normally this can be one of several values: ESTABLISHED The socket has an established connection. 214 Command Definitions EMR-5000 User’s Guide version 2.3 SYN_SENT The socket is actively attempting to establish a connection. SYN_RECV A connection request has been received from the network. FIN_WAIT1 The socket is closed, and the connection is shutting down. FIN_WAIT2 Connection is closed, and the socket is waiting for a shutdown from the remote end. TIME_WAIT The socket is waiting after close to handle packets still in the network. CLOSED The socket is not being used. CLOSE_WAIT The remote end has shut down, waiting for the socket to close. LAST_ACK The remote end shut down, and the socket is closed. Waiting for acknowledgement. LISTEN The socket is listening for incoming connections. Those sockets are only displayed if the -a,--listening switch is set. CLOSING Both sockets are shut down but we still don't have all our data sent. UNKNOWN The state of the socket is unknown. User The name or the UID of the owner of the socket. PID/Program name Slash-separated pair of the PID and process name of the program holding this socket. Option -p enables display of this column. You will also need root privileges as you have to have access rights to process to be able to see the program's sockets matched up to it. This identification information is not yet available for IPX sockets. Timer (this needs to be written) Active UNIX domain Sockets Proto The protocol (usually unix) used by the socket. RefCnt The reference count (i.e. attached processes via this socket). F l a g s T h e f l a g s d i s p l ay e d i s S O _ AC C E P T O N ( d i s p l ay e d a s AC C ) , SO_WAITDATA (W) or SO_NOSPACE (N). SO_ACCECPTON is used on unconnected sockets if their corresponding processes are waiting for a connect request. The other flags are not of normal interest. Type There are several types of socket access: SOCK_DGRAM The socket is used in Datagram (connectionless) mode. SOCK_STREAM This is a stream (connection) socket. SOCK_RAW The socket is used as a raw socket. SOCK_RDM This one serves reliably-delivered messages. SOCK_SEQPACKET This is a sequential packet socket. SOCK_PACKET RAW Interface access socket. UNKNOWN Who ever knows, what the future will bring us - just fill in here :-) 215 SkyStream Networks State This field will contain one of the following Keywords: FREE The socket is not allocated LISTENING The socket is listening for a connection request. Those sockets are only displayed if the -a,--listening switch is set. CONNECTING The socket is about to establish a connection. CONNECTED The socket is connected. DISCONNECTING The socket is disconnecting. (empty) The socket is not connected to another one. UNKNOWN This state should never happen. PID/Program name PID and process name of the program holding this socket. More info available in Active Internet connections section written above. Path This displays the path name as which the corresponding processes attached to the socket. Active IPX sockets (this needs to be done by somebody who knows it) Active NET/ROM sockets (this needs to be done by somebody who knows it) Active AX.25 sockets (this needs to be done by somebody who knows it) NOTE Since kernel release 2.2 netstat -i does not display interface statistics for alias interfaces anymore. To get per alias interface counters you need to setup explicit rules using the ipchains(8) command. FILES /etc/services -- The services translation file /proc/net/dev -- devices information. 216 Command Definitions EMR-5000 User’s Guide version 2.3 Appendix B: TCP Acceleration Working with Applications 217 SkyStream Networks Working with Applications This appendix contains the following sections: • • Overview Overview outlines the main issues involved in working with applications. Connecting TCP Acceleration Client to a LAN describes how users can connect to a LAN and optimize Internet applications to work with TCP Acceleration. This refers specifically to Netscape and Internet Explorer. • Working with Mail Programs describes how to configure mail clients to work with TCP Acceleration. • Configuring Standalone FTP Applications describes how to perform file transfers using the TCP Acceleration Client. • Configuring News Protocols describes how to configure news clients to work with TCP Acceleration. You can use TCP Acceleration with various browsers, mail programs and FTP applications. This means that your HTTP requests, e-mails and file transfers from these configured applications are sent through the TCP Acceleration Server. This appendix describes how to connect TCP Acceleration to the local area network (LAN), enabling it to act as your proxy server. This allows you to configure Netscape and Internet Explorer browsers to work with TCP Acceleration. In addition, this appendix describes how to configure mail clients and standalone FTP applications to work with TCP Acceleration components. Connecting the TCP Acceleration Client to a LAN During installation, TCP Acceleration automatically configures the proxy settings of your Netscape and Internet Explorer browsers. You can further improve the speed of your Internet connection by using the TCP Acceleration Client as a proxy server. For HTTP and FTP requests, you must define the IP address of the TCP Acceleration Client as your proxy server. TCP Acceleration Clients that are used by multiple users connecting through a LAN are called TCP Acceleration Group Clients. This section describes the proxy configuration for Netscape and Internet Explorer browsers in the following two sub-sections: ■ ■ 218 Configuring Netscape for TCP Acceleration—describes how to customize Netscape 4.0 to work with TCP Acceleration. Configuring Internet Explorer for TCP Acceleration—describes how to customize Internet Explorer 5.0 to work with TCP Acceleration. TCP Acceleration Working with Applications EMR-5000 User’s Guide version 2.3 Configuring Netscape for TCP Acceleration You can customize the proxy server settings in a Netscape 4.0 browser to work with TCP Acceleration, directly under the Netscape Preferences tab. To configure Netscape 4.0 for TCP Acceleration: 1 2 3 4 Open your Netscape browser. From the Edit menu, select Preferences. Click Advanced in the Category tree and then click Proxies. Select the Manual Proxy Configuration option to configure the proxy server settings. 5 In the HTTP text box, enter localhost for the TCP Acceleration Client and then 9090 in the related Port box. 6 In the Security text box, enter localhost for the TCP Acceleration Client and then 9092 in the related Port box. 7 In the FTP text box, enter localhost for the TCP Acceleration Client and then 9090 in the related Port box. NOTE If a TCP Acceleration Client is installed on your computer, enter localhost as the address. If the TCP Acceleration Client is installed on another computer, enter the TCP Acceleration Clients computer’s IP address. To access local sites without using TCP Acceleration, enter the intranet IP address in the Exceptions box. 8 Click OK to save the proxy settings. 9 Click OK again to exit the Preferences window. Configuring Internet Explorer for TCP Acceleration You can customize the proxy server settings in an Internet Explorer 5.0 browser (or previous version) to work with TCP Acceleration by configuring the HTTP and FTP server addresses directly in the Proxy Settings window. To configure Internet Explorer 5.0 for TCP Acceleration: 1 Open your Internet Explorer browser. 2 From the Tools menu, select Internet Options. 3 Click the Connections tab and then click LAN Settings. NOTE It is recommended to select the Bypass proxy server for local addresses check box to enable bypassing the proxy server for local addresses. 4 Select the Use the same proxy server for all protocols check box to enable access to the Internet using a proxy server, and then click Advanced to display the Proxy Settings window. NOTE These configurations are also relevant for previous versions of Internet Explorer. 5 In the HTTP text box, enter localhost for the TCP Acceleration Client and then 9090 in the related Port box. 6 In the Secure text box, enter localhost for the proxy address used for Secure Sockets Layer (SSL) and then 9092 in the related Port box. 219 SkyStream Networks 7 In the FTP text box, enter localhost for the TCP Acceleration Client and then 9090 in the related Port box. NOTE If a TCP Acceleration Client is installed on your computer, enter localhost as the address. If the TCP Acceleration Client is installed on another computer, enter the TCP Acceleration Clients computer’s IP address. To access local sites without using TCP Acceleration, enter the intranet IP address in the Exceptions box. If you are using a local web server, it is recommended that you enter the web server’s address as an exception. 8 Click OK to save the proxy settings. 9 Click OK again to exit the Local Area Network (LAN) Settings window. 10 Click OK to exit the Internet Options window. Working with E-Mail Programs The TCP Acceleration Client, residing on a local machine, forwards mail requests initiated by various e-mail applications. To use TCP Acceleration with mail, you must configure the mail client to work with TCP Acceleration and configure TCP Acceleration to work with the mail server. In order to configure the mail client to work with TCP Acceleration, you must define the IP address of the TCP Acceleration Client for outgoing mail (SMTP) ser ver and for the incoming mail (POP3) server. The mail parameters are included in Chapter 5, “Configuring TCP Acceleration—Network Settings.” To configure your mail client to work with TCP Acceleration: 1 In the Network Settings pane—Server Side Settings, POP3 Server Address box, enter the IP address of your POP3 mail server. 2 In the SNMP Server Address box, enter the IP address of your SMTP mail server. 3 Save the configuration settings. 4 Configure your mail client to access localhost as mail server. See applicable email application set-up documentation. Configuring Standalone FTP Applications Standalone FTP applications are Internet applications without the support of a browser, and can be configured to perfor m file transfer using the TCP Acceleration Client. The FTP application used must be configured to work through a firewall or proxy server. To configure the FTP application: 1 In the Network Settings pane—Client Side Settings, FTP Listen Port box, enter the port number (default is 9091). 2 Enable proxy server support and firewall access for incoming FTP requests. See applicable FTP application set-up documentation. 3 Save the configuration settings. 220 TCP Acceleration Working with Applications EMR-5000 User’s Guide version 2.3 Configuring News Protocols The Network News Transport Protocol (NNTP) specifies a protocol for the distribution, inquiry, retrieval, and posting of news articles using a reliable stream-based transmission of news. You can configure News protocols to perform transfers using the TCP Acceleration Client. To configure your news client to work with TCP Acceleration: 1 In the Network Settings pane—Server Side Settings, NNTP Server Address box, enter the IP address of your news server. 2 Save the configuration settings. See applicable news server set-up documentation. 221 SkyStream Networks 222 TCP Acceleration Working with Applications EMR-5000 User’s Guide version 2.3 Glossary 223 SkyStream Networks Acronyms, Abbr. & Definitions The acronyms, abbreviations, and definitions in this user guide have been modified to accommodate SkyStream applications. Sources 224 • • • Technical Specification of DVB-simulcrypt (sim061) • Address Translation The process of replacing the received destination IP address in the packet with a different IP address. • AH (Authentication Header) A protocol used by IPSec. AH provides data integrity, origin authentication, and replay resistance. • Algorithm A set of ordered steps used for solving a problem, such as a mathematical formula or the instructions in a program. The terms algorithm and logic are synonymous. Both refer to a sequence of steps to solve a problem. However, an algorithm implies an expression that solves a complex problem rather than the overall input-process-output logic of typical business programs. • ARP (Address Resolution Protocol) A TCP/IP protocol used to obtain a node's physical address. A client station broadcasts an ARP request onto the network with the IP address of the target node it wishes to communicate with, and the node with that address responds by sending back its physical address so that packets can be transmitted. ARP returns the layer 2 address for a layer 3 address. • Bandwidth The transmission capacity of a communications network expressed in bits per second. • Bit stuffing Adding bits to a transmitted message in order to round out a fixed frame. • • Broadcast To transmit to everybody on a network or network segment. • Command Line In a command-driven system, the area on the screen that accepts typed-in commands. European Telecommunication Standard (ETS 300 468) Computer Desktop Encyclopedia by TechWeb Client/Server An architecture in which the client (personal computer or workstation) is the requesting machine and the server is the supplying machine, both of which are connected through a local area network (LAN) or wide area network (WAN). Glossary EMR-5000 User’s Guide version 2.3 • CPU (Central Processing Unit) The computing part of the computer also called the processor. It consists of the control unit and Arithmetic Logic Unit (ALU). • Crossover cable A network cable that crosses the transmit and receive lines. The crossover cable connects hubs and switches together using standard MDI-X ports, which are already crossover ports. The crossover cable crosses the lines first so that after the MDI-X crosses the lines, they are effectively back to a non-crossed condition. • Data Bits The number of bits used to represent one character of data. When transmitting ASCII text through the modem, either seven or eight bits may be used. Most other forms of data require eight bits. • Datagram The unit of data, or packet, transmitted in an IP network. Each datagram contains source and destination addresses and data. • • Data Stream The continuous flow of data from one place to another. Default Handling A control used to determine IGMP forwarding rules, Forward, Forward If Listener, or Discard—configurable by the system administrator. • DES (Data Encryption Standard) A National Institute of Standards and Technology (NIST) secret key cryptography method that uses a 56-bit key. DES is based on an IBM algorithm, which uses the block cipher method that breaks the text into 64-bit blocks before encrypting them. • • Discard To discard all IP Multicast frames. DHCP (Dynamic Host Configuration Protocol) Software that automatically assigns IP addresses to client stations logging onto a TCP/IP network. It eliminates having to manually assign IP addresses to individual computers. DHCP software typically runs in servers and is also found in network devices such as ISDN routers and modem routers that allow multiple users access to the Internet. • DNS (Domain Name System) Name resolution software that lets users locate computers on a UNIX network or the Internet (TCP/IP network) by domain name. The DNS server maintains a database of domain names (host names) and their corresponding IP addresses. • DVB (Digital Video Broadcasting) A standard that provides the necessary guidelines for the delivery of digital content over a variety of media. • EGP (Exterior Gateway Protocol) A broad category of routing protocols that are designed to span different autonomous systems. • Encapsulation In communications, a method for transmitting multiple protocols within the same network. The frames of one type of protocol are carried within the frames of another. For example, SNA’s SDLC frames can be encapsulated within TCP/IP and transmitted over a TCP/IP network. 225 SkyStream Networks 226 • ESP (Encapsulating Security Payload) A protocol used by IPSec. ESP provides data confidentiality, integrity, origin authentication, replay resistance, and limited traffic flow confidentiality. ESP may be used in tunnel or transport mode. In tunnel mode, the inner IP header is encrypted and authenticated while the outer header is not. In transport mode there is no inner IP header and only the payload is encrypted and authenticated. • Forward To unconditionally forward any IP Multicasting frames into the local network. • Forward If Listener Multicast streams will automatically start when the first user joins that multicast group. The multicast stream will automatically stop when the last user leaves the group. • Frequency The number of oscillations (vibrations) per second. Frequency is measured in Hertz (Hz), which is the same as “oscillations per second” or “cycles per second.” Electromagnetic radiation is measured in kilohertz (kHz), Megahertz (MHz), and Gigahertz (GHz). • FTP (File Transfer Protocol) Used for storage of files accessible via the Internet using proper FTP designed software, protocols, and passwords. • GRE (Generic Routing Encapsulation) Encapsulation mode used for PPTP tunnels. • HDLC (High-level Data Link Control) An ISO communications protocol used in X.25 packet switching networks. It provides error correction at the data link layer. • Hexadecimal The term Hexadecimal means 16. The base 16 numbering system is used as a shorthand for representing binary numbers. Each half byte (four bits) is assigned a hex digit. Hex values are identified with an “h” or dollar sign, thus $3E0, 3E0h and 3E0H all stand for the hex number 3E0. Hex values are also identified with the “0x” format, as in 0x101 for PID 101 in hexadecimals. • Host In network architecture, a client station (user’s machine) is considered to be a host, because it is a source of information to the network in contrast to a device such as a router or switch that directs traffic. However, in remote control software a host is a virtual client. • ICMP (Internet Control Message Protocol) A TCP/IP protocol used to send error and control messages. For example, a ping utility sends ICMP echo requests to verify the existence of an IP address. • IEEE 802.3 CSMA/CD Ethernet IEEE standards for local area networks (LANs) and metropolitan area networks (MANs). The IEEE specification for LANs breaks the data link layer into two sub layers: the LLC (Logical Link Control) and MAC (Media Access Control). The LLC provides a common interface to the MAC layers, which specify the access method used. Glossary EMR-5000 User’s Guide version 2.3 • IGMP (Internet Group Management Protocol) A control protocol used by multicast-enabled hosts to report their group membership information to directly attached routers. • IP Address (Internet Protocol Address) The layer-3 address of a computer attached to a TCP/IP network. Every station must have a unique IP address. Client workstations have a permanent address or one dynamically assigned to them each dial-up session. IP addresses are written as four sets of numbers separated by periods; for example, 204.171.64.2. • IP Sec The IP security protocol, more commonly known as IPsec, is a suite of protocols that provides security at the network layer. • ISDN (Integrated Services Digital Network) An international telecommunications standard for providing a digital service from the customer's premises to the dial-up telephone network. • Ku-Band Part of the electromagnetic spectrum used predominately for fixed satellite communications and uses frequencies in the 10 to 17 GHz range. • LAN (Local Area Network) A communications network that serves users within a confined geographical area, made up of servers, workstations, a network operating system, and a communications link. • L-Band The frequency range from 0.5 to 1.5 GHz. Also used to refer to the 950 to 1450 MHz used for mobile communications. • LNB (Low Noise Block) A combination Low Noise amplifier and downconverter built in one device attached to the feed. • Lock means that a signal, data or other information is being recieved and processing properly. • • LSB (Least Significant Bit) The lowest-order bit. MAC Address (Media Access Control Address) On a local area network (LAN) or other network, the MAC address is your interface card’s unique hardware number. • MAC Forwarding This MAC-level encapsulation feature is very similar to IPlevel encapsulation. IP Forwarding is forwarded from a sub-device based on an IP Address. Whereas MAC Forwarding encapsulation forwards data from the sub-device based on a MAC address. • MPE (Multi-protocol Encapsulation) DVB and ATSC packetization format that enables a high-speed gateway to an asymmetric Internet (or private IPbased) network by retransmitting IP information in addition to the payload. • MRU (Maximum Receive Unit) The largest packet size that can be received over the network. • MSB (Most Significant Bit) The first bit in a bit field. 227 SkyStream Networks 228 • MTU (Maximum Transmission Unit) The largest packet size that can be transmitted over the network. Messages longer than the MTU must be divided into smaller packets by the communications protocol. • Multicasting One-to-many transmission of an IP datagram to a host group which is a set of one or more hosts identified by a single IP multicast destination address. A multicast datagram is delivered to all members of a destination host group with the same reliability as unicast IP datagrams. • NAT (Network Address Translation) An Internet Engineering Task Force (IETF) standard that allows an organization to present itself to the Internet with one address. NAT converts the address of each LAN node into one IP address for the Internet and vice versa. It also serves as a firewall by keeping individual IP addresses hidden from the outside world. • Netmask In the context of the EMR, the netmask specifies the range of addresses to be translated. For example, a netmask of 255.255.255.255 represents only one address, while a netmask of 255.255.255.0 represents a range of 256 addresses. • Network hub A central connecting device in a network that joins communications lines together in a star configuration. • New IP Address The IP address modified by the SkyStream EMR in order to send to the proper IP Multicast address on the network. • NTP (Network Time Protocol) A protocol used to synchronize the clocks of two computers on the network in a master/slave fashion. • Null-modem cable An RS-232 cable used to connect two personal computers together in close proximity for file transfer. It attaches to the serial ports of both machines and simulates what would occur naturally if modems and the phone system were used. It crosses the sending wire with the receiving wire. • • On Air Broadcasting. Original Destination IP Address Client address where the multicast stream is being sent. • OS (Operating System) The master control program that runs the computer. The operating system is the first program loaded after the computer is turned on, and its main part, called the “kernel,” resides in memory at all times. • Packet Any block of data sent over a network. Each packet can contain sender, receiver, and error-control information, in addition to the actual message. Packets can be of fixed-length or variable-length and reassembled, if necessary, when they reach their destination. • PAP (Password Authentication Protocol) The most basic access control protocol for logging onto a network. A table of usernames and passwords is stored on a server. When users log on, their usernames and passwords are sent to the server for verification. Glossary EMR-5000 User’s Guide version 2.3 • Payload The data-carrying capacity of some structure. It typically refers to a part of a packet or frame in a communications system that holds the message data in contrast to the headers, which are considered overhead. • PC (Personal Computer) A stand-alone computer that can be used as a workstation and file server in a LAN (local area network). • PID (Packet Identifier) A 13 bit packet identifier used to identify different data types inside the transport stream. • Ping An Internet utility used to determine whether a particular IP address is online. Ping is used to test and debug a network by sending out a packet and waiting for a response. • Polarization A technique used by the satellite designer to increase the capacity of the satellite transmission channels by reusing the satellite transponder frequencies. In linear cross polarization schemes, half of the transponders beam their signals to earth in a vertically polarized mode; the other half horizontally polarize their down links. Although the two sets of frequencies overlap, they are 90 degree out of phase, and will not interfere with each other. To successfully receive and decode these signals on earth, the earth station must be outfitted with a properly polarized feedhorn to select the vertically or horizontally polarized signals as desired. • PPP (Point-to-Point Protocol) A data link protocol that provides packetoriented communication over serial lines. PPP also provides password protection using the Password Authentication Protocol (PAP). • PPTP (Point-to-Point Tunneling Protocol) A protocol that encapsulates other protocols for transmission over an IP network. For example, it can be used to send NetWare IPX packets over the Internet. Due to its RSA encryption, PPTP is also used to create a private network (VPN) within the public Internet. Remote users can access their corporate networks via any ISP that supports PPTP on its servers. • Protocol Translation The process of receiving data payloads in one protocol and retransmitting these payloads in another protocol. • PSK (Pre-Shared Key) A prearranged passphrase that is shared by two sides. PSK is an authentication method for IPSec. • QPSK (Quadrature Phase Shift Keying) A method of modulating digital signals using four phase states to code two digital bits per phase shift. • Reed Solomon Algorithm A system that corrects data errors with a mathematical algorithm. • RF (Radio Frequency) The range of electromagnetic frequencies above the audio range and below visible light. All broadcast transmission, from AM radio to satellites, falls into this range, which is between 30 KHz and 300 GHz. 229 SkyStream Networks 230 • RIP (Routing Information Protocol) A simple routing protocol that is part of the TCP/IP protocol suite. It determines a route based on the smallest hop count between source and destination. • Router A device that forwards data packets from one local area network (LAN) or wide area network (WAN) to another. Based on routing tables and routing protocols, routers read the network address in each transmitted frame and make a decision on how to send it based on the most expedient route. • • • Server A computer in a network shared by multiple users. • SMTP (Simple Mail Transfer Protocol) The standard e-mail protocol on the Internet. It is a TCP/IP protocol that defines the message format and the message transfer agent (MTA), which stores and forwards the mail. SMTP was originally designed for only ASCII text, but MIME and other encoding methods enable program and multimedia files to be attached to e-mail messages. • SkyNAT EMR application used to support packet translation of incoming data from satellite for address translation, protocol translation, and TTL translation. • SNMP (Simple Network Management Protocol) A standard protocol to manage devices on the network. • Static IP address A permanent IP address that is assigned to a node in a TCP/IP network. Servers and routers are usually assigned static IP addresses, while client stations are often assigned dynamic IP addresses from a DHCP server each time they come online. • Subnet Mask The Subnet Mask is used to divide the IP address space into ranges of addresses called “subnets”. IP hosts in a subnet assume that they have a direct connection (e.g., connected to the same Ethernet hub) and talk directly to each other. The subnet mask divides the IP address into parts: a network number and a host number. Hosts whose network number is the same are in the same subnet. The subnet mask is a 32-bit field where “1” bits indicate what part of the IP address is a network number. Subnet masks are typically expressed in the same quad dotted notation as IP addresses. • TCP/IP The Transmission Control Protocol (TCP) on top of the Internet Protocol (IP). Enables communication between different types of computers and computer networks. The Internet Protocol is a connectionless protocol that provides packet routing. TCP, which is connection-oriented, provides reliable communication. SkyCast The SkyStream system used for IP Multicast Management. SMMP (SkyStream’s Multicast Management Protocol) This protocol uses standard IP multicast to control groups of EMR units. A proprietary protocol is required because the standard control protocols have the following limitations. Glossary EMR-5000 User’s Guide version 2.3 • TTL (Time To Live) This value decrements each time the IP packet moves through a router. When the number reaches the value of zero, the packet is discarded. • Transport mode Enables AH or ESP to process transport layer field and /or higher layers of the datagrams. Most of the time, compulsory Tunnels (EMR is the terminating edge) can be configured in tunnel mode and Voluntary Tunnels (client PC is terminating edge) in transport mode. • Tunnel mode Enables AH or ESP to process the network layer protocol — the main advantage is that the IP header can be fully encrypted and authenticated. In addition, it uses the IP address of VPN initiator to hide the VPN client's IP address. • UDP (User Datagram Protocol) A connectionless transport-level protocol used in the suite of IP-based protocols. It enables the sending of data from one computer to an application running on another computer. Like TCP (Transmission Control Protocol), UDP is used with IP (the Internet Protocol). Unlike TCP, UDP is connectionless and does not guarantee reliable communication; the application must deal with lost or out-of-order packets. • Unicast To transmit from one station to another, such as from client to server or server to server. • UTC (Universal Time, Coordinated) Coordinated Universal Time differs from International Atomic Time by an integral number of seconds and is the basis of most radio time systems and legal time systems. The step adjustments (Leap Seconds) are usually inserted after the 60th second of the last minute of December 31 or June 30. • VPN (Virtual Private Networking) Emulates point-to-point connectivity. For a secure VPN, data is encrypted using a protocol called the Point-to-Point Tunneling Protocol (PPTP), or IPSec. • VSAT (Very Small Aperture satellite Terminal) A small earth station for satellite transmission that handles up to 56 kbits/sec of digital transmission. • WAN (Wide Area Network) A communications network that covers a wide geographic area, such as state or country. 231 SkyStream Networks 232 Glossary EMR-5000 User’s Guide version 2.3 Forms: Bug Reports 233 SkyStream Networks Customer Bug Report Checklist This checklist is to aid SkyStream in reproducing the “Bug” that occurred during the installation or configuration of your EMR unit. Each installation is unique to your specific configuration needs. To ensure that the conditions are exactly the same when reproducing the “Bug” at SkyStream, please include the following: ■ Customer Name: ■ Date: ■ Location: ■ EMR Serial Number: ■ EMR Software Version Number: ■ Web Browser Number: Summary ■ ■ ■ ■ ■ ■ 234 Block diagram (or detailed description) of network and system with IP addresses. EMR Configuration information – LB and Frequency, Symbol Rate, Viterbi rate, etc. Screen shots of serial-connection console (e.g., HyperTerminal session) and Web GUI. Third-party equipment before and/or after EMR (as necessary/pertinent to problem). Number of data streams (MPEG PIDs) included in the RF feed. Bandwidth of each stream and data service (include how the stream is measured). ■ PID #s and packetizers used for each data stream. ■ Number of active MAC addresses ■ Reports Forms: Bug Reports EMR-5000 User’s Guide version 2.3 SkyStream Networks Customer Bug Report Form Customer Name: _________________________________________________________________________ Date: _____________________________________ Location: _____________________________________ EMR Serial Number: ________________________ EMR Software Version: _________________________ Web Browser Version Number: ______________________________________________________________ SUMMARY: Detailed discription of the network and system with IP address (or attach a block diagram): Detailed discription of interface (or attach screen shots of the interface): A list of ALL third party equipment before and after the EMR: 235 SkyStream Networks 236 Forms: Bug Reports