MAX TNT System Administration

This chapter covers the following topics:

Overview

Logging into the MAX TNT

Securing the serial port

Overview of MAX TNT commands

Displaying system and slot card uptime

Displaying the system version

Viewing the factory configuration

Setting the system name

Setting the system time and date

Managing onboard NVRAM

Resetting the unit

Viewing clock-source information

Updating system software

Backing up and restoring a configuration

Using the status window

Reviewing the fatal error log

Configuring message logging

Checking the power supplies

Expanding system memory

Using a script to configure the MAX TNT

Displaying user session information

Overview
Logging into the MAX TNT
Securing the serial port
Overview of MAX TNT commands
Displaying system and slot card uptime
Displaying the system version
Viewing the factory configuration
Setting the system name
Setting the system time and date
Managing onboard NVRAM
Resetting the unit
Viewing clock-source information
Updating system software
Backing up and restoring a configuration
Using the status window
Reviewing the fatal error log
Configuring message logging
Checking the power supplies
Expanding system memory
Using a script to configure the MAX TNT
Displaying user session information

Overview

This chapter explains how to perform common system administration tasks on the MAX TNT. It focuses on tasks you can perform on the system as a whole, such as resetting the unit, setting the time and date, configuring logging, and backing up and restoring a configuration. For information about managing the MAX TNT slot cards, see Chapter 3, "Administering MAX TNT Slot Cards."

Logging into the MAX TNT

To administer the system, you can log in from a PC connected to the MAX TNT unit's serial port, or from a workstation that has Telnet access to the system. When you log in, you are prompted for a user name:

User:

To log in with administrative (superuser) privileges, enter the default password (Ascend) assigned to the MAX TNT Admin login at the factory:

User: admin
Password: Ascend

The name specified in the Admin User profile appears as your system prompt. For example:

admin>

If you are already connected to the MAX TNT as a different user, use the Auth command to log in as the administrator:

admin> auth admin
Password:

Note: Because the Admin login has superuser privileges, you should change the default password immediately. Be sure to write down the password you assign and store it in a safe place.

Following is an example of changing the password for the Admin login:

admin> read user admin

USER/admin read

admin> set password = top-secret

admin> write
USER/admin written

All subsequent administrator logins will be required to supply the new password. (For more information about configuring User profiles, see Chapter 7, "Creating User Profiles.")

Securing the serial port

By default, when users connect to the serial port on the shelf controller, they are logged in with the Admin User profile. To secure the serial port with a username and password, proceed as follows:

Read the Serial profile:
Set the User-Profile to null:
Set Auto-Logout to Yes:
This automatically logs out the current User profile if DTR is lost on the serial port.
Write the profile:

Now users connecting to the serial port must supply a valid username and password for access to the MAX TNT.

Overview of MAX TNT commands

Each card in the MAX TNT has its own set of commands. The commands on the shelf controller typically affect the operation of the entire system. The commands on particular cards, such as the T1 or Ethernet cards, affect only the cards themselves. This section explains the commands available on the shelf controller.

For information about commands available on the cards, see Chapter 3, "Administering MAX TNT Slot Cards," or the MAX TNT Reference Guide. For information on debug commands, see Chapter 5, "Using the MAX TNT Debug Commands."

Commands are organized by permission levels, as described in Table 2-1. A user gains access to a particular command by logging in to the MAX TNT by means of a user profile that specifies the required permission level. (To create a User profile, see Chapter 7, "Creating User Profiles.") By default, the Admin profile specifies permission to execute all commands.

Table 2-1. Permission levels


Permission level	Description
Code	Allows you to format and manage the PCMCIA cards that store the system software.
Debug	Specialized commands used to troubleshoot the cards. Under most circumstances, these commands are not required for correct operation of the MAX TNT, and in some circumstances might produce undesirable results. (For information about the debug commands, see Chapter 5, "Using the MAX TNT Debug Commands."
Diagnostic	Commands used to monitor the MAX TNT and its cards.
System	Commands that allow you to manage and configure the MAX TNT.
Term-Serv	Accesses the MAX TNT terminal server.
Update	Commands that allow you to update the system configuration.
User	Simple commands available to all users that allow

Commands overview

Table 2-2 briefly describes the MAX TNT commands available on the shelf-controller. Many of the commands are used in later sections of this manual to perform certain system administration tasks. For complete details of each command, see the MAX TNT Reference Guide.

Table 2-2. MAX TNT system administration commands


Command Name	Permission Level	Effect
?	User	Display a list of commands.
Arptable	System	Display or modify the MAX TNT Address Resolution Protocol (ARP) table.
Auth	User	Select a new User profile.
Callroute	Diagnostic	Display the call-routing database.
Clr-History	System	Clear the fatal-error history log.
Clock-Source	Diagnostic	Display clock-source statistics.
Connection	System	Display the connection-status window.
Date	Update	Set the system date.
Debug	Diagnostic	Enable or disable diagnostic output.
Delete	Update	Permanently delete a profile from local storage.
Device	Diagnostic	Bring a device up or down.
Dir	System	List profiles and profile types.
Dircode	System	Show contents of PCMCIA card code.
Dnstab	System	Display DNS table entries.
Ether-Display	Diagnostic	Display contents of received Ethernet packets.
Fatal-History	System	List fatal-error history log.
Ffsck	Code	Verify the filesystem on a PCMCIA flash card. If errors are detected, they are reported. No errors are fixed.
Format	Code	Prepare a flash card for use.
Get	System	Display fields in a profile.
HDLC	System	Display HDLC-channel information.
If-Admin	Diagnostic	Administer an interface.
IGMP	System	Display IGMP multicast statistics.
IP-pools	System	Display the status of the IP address pools configured in the IP-Global profile.
Ipcache	System	Display IP route caches.
IProute	System	Enables you to manually add or delete IP routes. Routing table changes made by using this command are not remembered across system resets.
Line	System	Display the line status window.
List	System	List fields in working profile.
Load	Update	Upload code or saved configuration to flash.
Log	System	Invoke/control the event log window.
Modem	System	Display modem information.
Netstat	System	Display routing or interface tables.
New	System	Create a new profile.
NSlookup	Diagnostic	Resolve the IP address of a specified host name by performing a DNS lookup.
Nvram	Update	Clear configuration and reboot system
Open	Diagnostic	Start session with slot card.
OSPF	System	Display information related to OSPF routing, including Link-State Advertisements (LSAs), border routers' routing tables, and the OSPF areas, interfaces, statistics, and routing table.
Ping	Diagnostic	Send ICMP echo_request packets to the specified host as a way to verify that the host is up and the transmission path to the host is open.
Power	System	Display power supply statistics.
Quiesce	System	Temporarily disable a modem or DS0 channel.
Read	System	Make the specified profile the working profile.
Refresh	System	Refresh the remote configuration.
Reset	Update	Reboot the system.
Save	Update	Save profile for future restore.
Set	System	Set a parameter's value.
Show	System	Show shelves, slots, or items.
Slot	Diagnostic	Administer a slot card.
Status	System	Display system status or hide status window.
SWANlines	System	Display serial WAN line information.
T1channels	System	Display T1 channel information.
Telnet	Diagnostic	Open a Telnet session to another host.
Terminal-Server	Termserv	Enter terminal-server mode.
Traceroute	Diagnostic	Trace the route an IP packet follows by launching UDP probe packets.
Uptime	Diagnostic	Display how long the MAX TNT has been up since its last reset.
Userstat	System	Display user-session status.
Version	System	Display software version information.
View	System	Change content of a status window.
Whoami	User	Display current User profile name.
Write	Update	Write a profile.

Displaying system and slot card uptime

The Uptime command reports how long the system and its individual cards have been up. The slotLastChange MIB object in the Ascend Enterprise MIB also enables network management stations to obtain uptime information.

The Uptime command uses the following syntax:

admin> help uptime
uptime usage: uptime [ [ -a ] | [ [ shelf ] slot ] ]
uptime                  display the TNT system uptime.
uptime slot             display the TNT slot card uptime.
uptime shelf slot       display the TNT slot card uptime.
uptime -a               display the uptime for all TNT slot cards.

Without an argument, the command displays system uptime. But in the following example, the command displays the uptime for all slot cards in the UP state (cards that are not in the UP state are not reported):

admin> uptime -a
13:26:54
{ shelf-1 slot-1 }                  8t1-card    3 days 00:07:04
{ shelf-1 slot-2 }              48modem-card    3 days 00:06:00
{ shelf-1 slot-4 }              128hdlc-card    3 days 00:05:20
{ shelf-1 slot-5 }               4ether-card    3 days 00:06:38

Uptime displays the current time (13:26:54 in the preceding example), identifies the slot card, and displays the length of time the system has been up, in days followed by hours:minutes:seconds. The following example shows that a modem card in slot 2 has been up for 12 days, 1 hour, 5 minutes and 53 seconds:

admin> uptime 1 2
13:26:39 { shelf-1 slot-2 }         48modem-card 0012 days 01:05:53

Displaying the system version

Use the Version command to determine which system software version is installed. For example:

admin> version
Software version 2.0

Viewing the factory configuration

The read-only Base profile displays the software versions, enabled features, network interfaces, and other system information. To view the Base profile, use the Get command. For example:

admin> get base
shelf-number = 1
software-version = 2
software-revision = 0
software-level = ""
manufacturer = dba-ascend-mfg
d-channel-enabled = yes
aim-enabled = yes
switched-enabled = yes
multi-rate-enabled = yes
t1-pri-conversion-enabled = yes
frame-relay-enabled = yes
maxlink-client-enabled = enabled
data-call-enabled = yes
r2-signaling-enabled = no
serial-number = 7050270
countries-enabled = 511
domestic-enabled = yes
modem-dialout-enabled = yes
firewalls-enabled = no
network-management-enabled = no
phs-support = no
selectools-enabled = no
routing-protocols-disabled = no
tnt-adsl-enabled = no
tnt-sdsl-enabled = no
tnt-idsl-enabled = no

The Base profile displays system information that is not modified across resets. These values are read from the system ROM, security PAL, and from the hardware assembly itself. (For information about the parameters, see the MAX TNT Reference Guide.)

Note: The shelf-number is always 1 in a single-shelf system. In a multi-shelf system, it must be unique for each shelf.

Setting the system name

The MAX TNT sends this name to callers whenever it establishes a PPP link. The name is not used in DNS lookups.

You specify the system name in the System profile. For example, to set the MAX TNT unit's system name to tnt01, proceed as follows:

admin> read system

SYSTEM read

admin> set name = tnt01

admin> write

SYSTEM written

Setting the system time and date

This section explains how to set the MAX TNT system clock. The MAX TNT can also use Simple Network Time Protocol (SNTP-described in RFC 1305) to set and maintain its system time by communicating with an SNTP server across an IP interface. For information about configuring the MAX TNT to use SNTP, see the MAX TNT Network Guide.

Use the Date command to set the system time and date if it is incorrect when the system initializes. To view the date and time, enter the Date command with no argument:

admin> date
Mon Feb 24 11:11:00 1998

To set it, append the current date and time to the Date command, in the following format:

yymmddhhmm

This format uses a two-digit number for each of the following settings: year, month, day, hour, and minute, in that order. For example:

admin> date 9712310530

To view the information in more detail, you can read the Timedate profile:

admin> read timedate

TIMEDATE read

admin> list

time = { 11 11 16 }

date = { Wednesday December 31 1997 }

The Time and Date parameters in the Timedate profile cannot be set directly. To change their values, use the Date command as shown above.

Managing onboard NVRAM

The system configuration is stored in the onboard non volatile random access memory (NVRAM). Some error conditions might require that you clear the MAX TNT configuration and reboot. When you clear NVRAM, the system is reinitialized and comes up unconfigured, just as it was when you first installed it.

You can then restore the configuration from a recent backup (see Backing up and restoring a configuration).

Note: Make sure you have a recent backup before using the NVRAM command.

To see how NVRAM is being used, enter the NVRAM command with the -u option:

admin> nvram -u

To clear NVRAM, restoring the unit to its initial, unconfigured state, enter the NVRAM command without specifying an option:

admin> nvram

To clear NVRAM and enter debug mode, use the -t option:

admin> nvram -t

Resetting the unit

When you reset the MAX TNT, the unit restarts and terminates all active connections. All users are logged out and the default security level, configured in the User-Profile parameter, is reactivated. In addition, a system reset can cause a WAN line to temporarily be shut down due to momentary loss of signaling or framing information.

To reset the unit, enter the Reset command:

admin> reset

During a reset, the MAX TNT runs its Power-On Self Test (POST), just as it would if the unit were power-cycled.

To reset the master shelf and all slaves in a multishelf system, append the -a option to the Reset command. For example, while logged into the master shelf, the following command resets all the shelves in a multishelf system:

admin> reset -a

Note that the -a flag is not valid on slave shelves.

Viewing clock-source information

If a line is specified as the clock-source, it can be used as the source of timing information for synchronous connections, so both the sending device and the receiving device can determine where one block of data ends and the next begins. If multiple T1 lines specify that they are the clock-source (the default configuration), you can assign clock-source priority among multiple T1 lines.

To view the clock-source statistics, enter the Clock-Source command:

admin> clock-source

Master: slot-1/1 line 3
Source List:
        Source: slot-1/1 Available      priority: 1

Sources with layer 2 up, which are preferred, are marked with an asterisk. For information about configuring the clock source, see the MAX TNT Hardware Installation Guide.

Using PCMCIA flash cards

Each MAX TNT shelf supports up to two PCMCIA flash-memory cards. The system comes with onboard NVRAM, and each flash card provides its own additional memory. At present, the flash cards contain code for the slot cards, the shelf-controller, and profiles. The system configuration is stored in the onboard NVRAM.

The PCMCIA slots on the shelf-controller are labeled 1 (the slot on top) and 2 (the slot below). See Figure 2-1.

Figure 2-1. PCMCIA slots on the shelf-controller

Formatting a flash card

Before using a PCMCIA card in the MAX TNT, you must format it. First insert the card into slot 1 or slot 2 in the shelf-controller, then use the Format command. Following are examples of formatting the card in slot 1:

admin> format flash-card-1

Or:

admin> format 1

Flash-card-1 is the card inserted in the leftmost of the two PCMCIA slots.

Displaying the contents of flash

The system comes with onboard NVRAM, and each flash card provides its own additional memory. The system configuration is stored in the onboard NVRAM.

To check the slot-card images stored in the flash card code directory, use the Dircode command, as shown in the following example:

admin> dircode
Flash card code directory:
Card 1, directory size 16
           4swan-card reg   good   343827 Feb 2 1997        2.0
         48modem-card reg   good   529118 Feb 2 1997        2.0
              t3-card reg   good   192633 Feb 2 1997        2.0
             8e1-card reg   good   149883 Feb 2 17:46              2.0
         192hdlc-card reg   good   512796 Feb 2 1997        2.0
          4ether-card reg   good   140597 Feb 2 1997        2.0
     48modem-56k-card reg   good   532260 Feb 2 1997        2.0
    10-unchan-t1-card reg   good   431873 Feb 2 1997        2.0
            sdsl-card reg   good   359252 Feb 2 1997        2.0
     shelf-controller reg   good   879140 Feb 2 1997        2.0
             8t1-card reg   good   173905 Feb 2 1997        2.0
         capadsl-card reg   good   387092 Feb 2 1997        2.0
          32idsl-card reg   good   482579 Feb 2 1997        2.0

The information displayed by this command includes the card number (1 or 2) and the size of the code directory. It also shows the following information about each code module:

Type of card supported
Subtype of the code, which can be regular or diagnostic
Status, which can be good (present and complete), write (being copied), or bad (incomplete or corrupt)
Size of the code
Date the code was loaded to the flash card
Code version

Checking the file system

If the Dircode command shows a code status other than Good, or if you suspect inconsistencies in the flash card files, use the Fsck command to check the code directory. The Fsck command checks inconsistent conditions in the code directory as well as file contents on a PCMCIA flash card. For each file found, the command displays the type-name, type-number, decimal and hex byte counts, and date written to flash.

If errors are detected they are reported but not fixed. If the Fsck command reports errors, you should reformat the card and then load the code again. If necessary, download the code file again from the Ascend FTP server.

To check the file-system on the flash card in PCMCIA slot 1, use the Fsck command as shown in the following example:

admin> fsck 1
ffs check in progress for card 1...

Dir 1 has magic, size 16, sequence 0x1f
Dir 2 not in use

Using dir entry: 1, total data blocks: 0x40, directory size: 16

4swan-card:(0x09)
    reg   good   343827 (0x053f13) Feb 2 1997
48modem-card:(0x06)
    reg   good   529118 (0x0812de) Feb 2 1997
t3-card:(0x0d)
    reg   good   192633 (0x02f079) Feb 2 1997
8e1-card:(0x05)
    reg   good   149883 (0x02497b) Feb 2 17:46
192hdlc-card:(0x07)
    reg   good   512796 (0x07d31c) Feb 2 1997
4ether-card:(0x08)
    reg   good   140597 (0x022535) Feb 2 1997
48modem-56k-card:(0x0e)
    reg   good   532260 (0x081f24) Feb 2 1997
10-unchan-t1-card:(0x0b)
    reg   good   431873 (0x069701) Feb 2 1997
sdsl-card:(0x10)
    reg   good   359252 (0x057b54) Feb 2 1997
shelf-controller:(0x02)
    reg   good   879140 (0x0d6a24) Feb 2 1997
8t1-card:(0x04)
    reg   good   173905 (0x02a751) Feb 2 1997
capadsl-card:(0x11)
    reg   good   387092 (0x05e814) Feb 2 1997
32idsl-card:(0x14)
    reg   good   482579 (0x075d13) Feb 2 1997

flash card 1 fsck: good.

For details of the command-line options for the Fsck command, see the MAX TNT Reference Guide.

Updating system software

For information on updating system software, see the MAX TNT release notes.

Backing up and restoring a configuration

The Save command saves all configured profiles, all profiles of a specified type, or a specific profile to a file on a local disk or to a file on a network host. You can then use that file to restore the MAX TNT configuration. Note that to save passwords, you must have sufficient permissions to view password fields (for a discussion of permissions, see Understanding command permissions).

Saving the configuration to a local file

To save the MAX TNT configuration to a file on the system you are using to access the MAX TNT, turn on the capture function in your VT100 emulation software, and enter the Save command as follows:

admin> save -a console

The entire configuration scrolls into the might want to print a copy of the configuration for later reference.

The -a option saves all parameters, even those that are set to their default values.

Saving the configuration to a network host

To save the configuration on network host, you must specify the hostname and the full path of a filename, as in the following example:

admin> save -a network host1 /config/981001

configuration being saved to 10.65.212.19

Int he sample command line, host1 is the network host and /config/981001 is the file name.

admin> load config network hostname filename

Where hostname is the name of the host and filename is the name of the file in which the configuration is stored.

Updating the configuration

You can use the Load command to upload code for any of the slot cards to a flash card. For example, to upload new code for an eight port T1 card from a file named 8t1.ffs on a network host named server1:

admin> load t1-8 network server1/cfg/8t1.ffs

Using the status window

The status windows provide information about what is currently happening in the MAX TNT. For example, one status window displays up to 31 of the most recent system events that have occurred since the MAX TNT was powered up, and another displays statistics about the currently active session. An 80-column by 24-row VT100 window is required for use of the status screens.

This section describes the default configuration of the Status windows. For information about customizing the status window display for User logins, see Customizing the environment for a User profile.

Status window command summary

By default, the status window is not displayed upon login, but only when you explicitly request it with one of the following commands:

Status-Opens or closes the status window.
Connection-Opens the status window with the connection information displayed.
Line-Opens the status window with the line information display.
Log-Opens the status window with the log information display.
View-Changes the information displayed in the top or bottom status window.

For details of using these commands, see the MAX TNT Reference Guide.

Opening and closing the status window

To open the system status window, enter the Status command:

admin> status

The system prompt moves to just below the status window. If the system prompt is not visible below the status window, press Escape to display it.

To close the status window, enter the Status command again:

admin> status

Understanding the status window

The status window (Figure 2-2) has three main areas. In its default configuration, these areas contain the following information:

Connections information is displayed on the left side of the window.
General information, such as serial number, software version, and uptime are displayed in the upper-right side of the window.
Log information is displayed in the lower-right side of the window.

Figure 2-2. System status window

Connection status information

With the default setting in a User profile, the left area of the status window initially displays connection information, as shown in Figure 2-2. One line appears for each active connection, showing the user or station name, type of connection, T1 shelf, line, and channel on which the call was placed or received, and the bandwidth or baud rate of the connection.

If the status window is not already displayed, or if you want to scroll through the list of connections, use the Connection command as in the following example:

admin> connection

If the Status window is not displayed, the Connection command opens it and displays the connection-status-mode message below the Status window (if the Status window is already open, the Connection command just displays the message):

[Next/Last Conn:<dn/up arw>, Next/Last Page:<pg dn/up>,Exit: <esc>]

This message indicates the key sequences you can use for displaying additional information in the Connection status area. The Down Arrow and Up Arrow keys display the next and previous connection, respectively, in the list of active connections. The Page Down and Page Up keys display the list a screen at a time.

When the connection-status-mode message is displayed, the system prompt does not appear at the bottom of the window. Press the Escape key to exit this mode and return to the system prompt.

General status information

With the default setting in a User profile, the top area of the status window initially displays general status information about the MAX TNT, including its serial number, the version of system software it is running, and the number of packets transmitted and received. This area also shows the current system date and time and how long the system has been up.

If the top of the status window is displaying another kind of information, such as T1 line information, you can redisplay the general status information with the View command:

admin> view top general

Log messages

With the default setting in a User profile, the bottom area of the status window initially displays the most recent message from the MAX TNT log buffer. The number of system event messages stored in the log is set by the Save-Number parameter in the Log profile.

The first line of the event log window shows the log entry number (M: 00 through M: N, where N is set in the save-number parameter of the Log profile), the level of message, and the device on which the event occurred. The last line shows the date and time when the event occurred.

The middle of the window displays the text of the most recent message.

If the status window is not already displayed, or if you want to scroll through the log, use the Log command:

admin> log

If the Status window is not displayed, the Log command opens it and displays the log-mode message below the Status window (if the Status window is already open, the Log command just displays the message):

[Next/Last Conn:<dn/up arw>, Next/Last Page:<pg dn/up>,Exit: <esc>]

This message indicates the key sequences you can use for displaying additional information in the Log area:

The Down Arrow and Up Arrow keys display the next and previous message in the buffer, respectively.
The Page Up and Page Down. keys display the first and last message in the buffer, respectively.

When the log-mode message is displayed, the system prompt does not appear at the bottom of the window. Press the Escape key to exit this mode and return to the system prompt.

Displaying WAN line information

The status window can also display information about the WAN lines on the MAX TNT. For details, see Displaying line status.

Reviewing the fatal error log

The MAX TNT fatal error log contains messages related to the MAX TNT operations.

To view the log of fatal errors, enter the Fatal-History. For example:

admin> fatal-history

OPERATOR RESET:  Index:  99  Revision: 2.0         Shelf 1 (tntsr)

        Date: 01/30/1998.       Time: 16:55:38

        Reset from unknown, user profile admin.

  SYSTEM IS UP:  Index: 100  Revision: 2.0         Shelf 1 (tntsr)

        Date: 01/30/1998.       Time: 16:56:12

The command's output information includes the date and time at which the error occurred, the system software version that was running at that time, the slot number on which the error occurred, and a stack trace record of the event. (For a list of fatal error messages, see Appendix B, "MAX TNT Log Messages. ")

To clear the fatal error log, enter the Clr-History command:

admin> clr-history

Configuring message logging

The MAX TNT generates error and event messages related to its operations. You can display these messages with the following commands:

Log-Invoke or control the event log window.
Fatal-History-List fatal error history log.

In the Log and User profiles you can configure the way in which the messages are handled .

The Log profile defines system-wide event logging parameters, including the number and level of messages to save and whether to communicate with a Syslog daemon.

Table 2-3 lists the sections describing common tasks you might have to perform to configure MAX TNT message logging. The table includes a brief description of each task, and lists the parameters you will use.

For complete information about the associated parameters, see the MAX TNT Reference Guide.
Table 2-3. Overview of configuring MAX TNT logging

Task

Description

Related parameters

"Configuring MAX TNT system logging"

You can configure the level and number of messages that are logged to the MAX TNT log. These messages are displayed in the log status window.

Save-Number
Save-Level

"Configuring Syslog on the MAX TNT"

Syslog is a IP protocol that allows you to track events on the MAX TNT. A host running a Syslog daemon is typically a UNIX host, but it may also be a Windows system.

Sylsog-Enabled
Call-Info
Host
Port
Facility

Task	Description	Related parameters
"Configuring MAX TNT system logging"	You can configure the level and number of messages that are logged to the MAX TNT log. These messages are displayed in the log status window.	Save-Number Save-Level
"Configuring Syslog on the MAX TNT"	Syslog is a IP protocol that allows you to track events on the MAX TNT. A host running a Syslog daemon is typically a UNIX host, but it may also be a Windows system.	Sylsog-Enabled Call-Info Host Port Facility

Configuring MAX TNT system logging

The MAX TNT records system events in its status window event log. You can use the Save-Level and Save-Number parameters in the Log profile to configure the level and number of messages logged.

The Save-Level parameter specifies the lowest level of message to be saved for status display. The lowest possible level is None (this is the default). The highest level is Debug. For a list of the log message levels, see the MAX TNT Reference Guide.

The Save-Number parameter specifies the number of messages to be saved in the status display. The default is 100.

To configure the MAX TNT system log, proceed as in the following example:

Read in the Log profile:
Specify the type of message you want logged:
Specify the number of messages to save in the event log:
Write the profile to save the changes:

Specifying a session ID base

The SessionID-Base parameter specifies the base number to use for generating a unique ID for each session. If SessionID-Base is zero, the MAX TNT sets the initial base for session IDs to the absolute clock. For details, see the MAX TNT Reference Guide.

Configuring Syslog on the MAX TNT

To maintain a permanent log of MAX TNT system events and send Call Detail Reporting (CDR) reports to a host that can record and process them, configure the MAX TNT to report events to a Syslog host on the local IP network.

The host running a Syslog daemon is typically a UNIX host, but it may also be a Windows system. If the log host is not on the same subnet as the MAX TNT, the MAX TNT must have a route to that host, either via RIP or a static route. (For information about Syslog messages, see Syslog messages.)

Note: Do not configure the MAX TNT to send reports to a Syslog host that can only be reached by a dial-up connection. That would cause the MAX TNT to dial the log host for every logged action, including hang ups.

To configure Syslog, you might need to set some or all of the following parameters:

Parameter

Description

Sylsog-Enabled

Enables Syslog.

Call-Info

Specifies whether the MAX TNT sends a one-line Syslog message to the Syslog host when an authenticated call terminates. This message includes information such as the called and calling number and the encapsulation, data rate, and length of session.

Host

The IP address of the Syslog host.

Port

Specifies the port number on which the remote Syslog daemon is listening. It is set to port 514 by default.

Facility

Identifies the messages as being from a particular MAX TNT.

Syslog-Format

Specifies whether the messages the MAX TNT sends to Syslog are in MAX TNT format (the default) or in the same format as other Ascend MAX products.

Parameter	Description
Sylsog-Enabled	Enables Syslog.
Call-Info	Specifies whether the MAX TNT sends a one-line Syslog message to the Syslog host when an authenticated call terminates. This message includes information such as the called and calling number and the encapsulation, data rate, and length of session.
Host	The IP address of the Syslog host.
Port	Specifies the port number on which the remote Syslog daemon is listening. It is set to port 514 by default.
Facility	Identifies the messages as being from a particular MAX TNT.
Syslog-Format	Specifies whether the messages the MAX TNT sends to Syslog are in MAX TNT format (the default) or in the same format as other Ascend MAX products.

To configure Syslog reporting on the MAX TNT, proceed as in the following example:

Read in the Log profile:
Enable Syslog:
Specify that you want end of call information sent:
Specify the IP address of the host running Syslog:
Specify the port the Syslog daemon is listening on:
The MAX TNT will send all messages out on this port as soon as you write the Log profile.
Specify the Syslog facility:
After setting a log facility number, you need to configure the Syslog daemon to write all messages containing that facility number to a particular log file. This file will be the MAX TNT log file.
Specify the format of Syslog messages:
admin> set syslog-format = max
Write the profile to save the changes:

Note that Call-Info is intended for diagnostic support. It uses UDP, which provides no guaranteed delivery, so it should not be used for billing purposes.

Configuring the Syslog daemon

To configure the Syslog daemon to interact with the MAX TNT, you need to modify the
/etc/syslog.conf file on the log host. This file specifies which action the daemon will perform when it receives messages from a particular log facility number (which represents the MAX TNT). For example, if you set Log Facility to Local5 in the MAX TNT, and you want to log its messages in /var/log/tnt01, add the following line to /etc/syslog.conf:

local5.info<tab>/var/log/tnt01

Note: The Syslog daemon must reread /etc/syslog.conf after it has been changed.

Checking the power supplies

To check the status of the MAX TNT redundant power supplies, enter the Power command. For example:

admin> power

Power supply A not present

Power supply B present, OK

You can also use the Ascend Power Supply MIB to manage and monitor the power supplies.

Expanding system memory

If you need to accommodate very large routing tables or memory-intensive WAN interfaces, such as T3, you can increase the memory on a shelf controller by inserting a DRAM (JEDEC) card of 4, 8, 16, and 32MB.

To expand system memory:

Power down the MAX TNT.
Insert the DRAM card into the slot on the shelf controller labeled DRAM. (See Figure 2-3.)
Power up the MAX TNT.

Figure 2-3. DRAM slot

Using a script to configure the MAX TNT

The MAX TNT CLI allows you to create configuration scripts with a simple text editor and a Telnet client program with a Text Upload feature. This section briefly describes how you could use a script to make changes to the MAX TNT configuration.

Following are the basic steps:

Create a text file that contains the configuration commands as you would enter them in the MAX TNT CLI.
Log into the MAX TNT with sufficient permissions to change the configuration.
To upload the file to the MAX TNT, use the upload file feature of your Telnet of terminal software

Creating a text file

Following is an example of a text file that configures a T1 line in shelf 1, slot 1.

new T1
set name = SF
set physical-address shelf = shelf-1
set physical-address slot = slot-1
set physical-address item-number = 1
set line-interface enabled = yes
set line-interface frame-type = esf
set line-interface encoding = b8zs
set line-interface clock-source = eligible
write -f 
;

Note: The Write -f command causes the script to overwrite an existing configuration without prompting.

You can use this file as a basis for configuring all twenty-eight lines on a DS3 card by changing the parameters, such as Item-Number, as required. Carefully review your text file to make sure it is correct.

Logging into the MAX TNT

To log into the MAX TNT for administrative tasks, use a profile that has write permissions, as in the following example:

% telnet mytnt
User: admin
Password: mypassword
admin>

If you are already logged into the MAX TNT, make sure you are at the highest level by entering the list .. command (possibly more than once), as in the following example:

admin>list ..
name = ""
physical-address* = { shelf-1 slot-1 1 }
line-interface = { yes esf b8zs eligible middle-priority inband wink-start digi+

admin>list ..
error: at highest level

Uploading the text file

Use an ASCII text upload to upload the text file directly to the MAX TNT prompt. Carefully review your changes through the console.

Displaying user session information

You can obtain MAX TNT user session information with the Userstat and Finger commands.

Using the Userstat command

The Userstat command displays the active users on the MAX TNT. To display the most complete information about active sessions, use the -l option, as in the following example:

admin> userstat -l

SessionID  Line/Chan  Slot:Item  Tx/Rx Rate  Svc Address      Username

228687860  1.01.02/01 1:03:01/01 56K/56K     PPP 10.100.0.1   barney

228687861  1.02.03/02 1:04:02/00 28800/33600 PPP 10.168.6.24  jake

<end user list> 2 active user(s)

Following are the Userstat output fields with descriptions:


Field	Description
`SessionID`	Unique ID assigned to the session.
`Line/Chan`	Physical address (shelf.slot.line/channel) of the network port on which the connection was established, (for example, a T1 line/channel).
`Slot:Item`	Shelf:slot:item/logical-item of the host port to which the call was routed (for example, modem, HDLC channel).
`Tx/Rx Rate`	Transmit and receive rate. Note that for modem connections, the transmit rate is set automatically to the receive rate, because modem cards do not support asymmetric data rate connections.
`Svc`	Type of service in use for the session. Following are the possible values: --- (The service is being negotiated.) PPP (Point-to-Point Protocol) SLP (Serial Line IP) MPP (Multilink Protocol Plus) MP (Multilink Protocol) X25 (X.25) FRY (Frame Relay) EUR (EU-RAW) EUI (EU-UI) TLN (Telnet) BTN (Binary Telnet) TCP (raw TCP) TRM (Terminal Server) VCN (Virtual Connect) D25 (D-channel X.25) DTP (DTPT)
`Dialed#`(displays only with `-l` option)	The number dialed to initiate this session.
`ConnTime`(displays only with `-l` option)	The amount of time (in hours:minutes:seconds format) since the session was established.
`IdleTime`(displays only with `-l` option)	The amount of time (in hours:minutes:seconds format) since data was last transmitted across the connection.

To terminate a user, use the -k option, as in the following example:

admin> userstat

SessionID  Line/Chan  Slot:Item   Rate  Svc Address         Username

246986325  1.01.02/01 1:13:01/000 33600 PPP 100.100.8.2     100.100.8.2    

<end user list>  1 active user(s)

admin> userstat -k 246986325

Session 246986325 cleared

The Userstat command can terminate PPP, SLIP, MP+, Telnet, Telnet binary, Raw TCP, or terminal server user sessions. You cannot use the -k option to terminate Frame Relay or DTPT service types.

You can configure the Userstat command output with the Userstat-Format parameter. For information, see the MAX TNT Reference Guide.

Using the Finger command

Finger is described in RFC 1288. To enable it in the MAX TNT, set the Finger parameter to Yes, as follows:

Read the Ip-Global profile:
Set Finger to Yes:
Write the profile:

The default value for this parameter is No, which causes the MAX TNT to reject queries from Finger clients with the following message:

Finger online user list denied.

Setting the Finger parameter to Yes enables the MAX TNT to accept Finger queries and return the requested active session details to a remote client. The client can ask for a short or wide format. For example, a UNIX client can request the wide (140-character) format by using the -l option, as in the following command which displays, in wide format, session information for the system named tnt1:

# finger -l @tnt1

The following command displays the same information in narrow (80-character) format:

# finger @tnt1

The client can also request the details of all sessions, or of a single session. For example, to request information about a single user named Gavin:

# finger gavin@tnt1

The Finger forwarding service, which uses the hostname format @host1@host2, is not supported. If the remote client uses the forwarding request format, the client sees the following message:

Finger forwarding service denied.

Call logging using the RADIUS accounting protocol

Call logging is a RADIUS-accounting based feature for logging call information from the MAX TNT. Its main purpose is to duplicate accounting information for sites that want to keep accounting records separate from other groups that might need call-logging details to manage resources or troubleshoot call problems.

Once you have configured call logging, the MAX TNT sends Start Session, Stop Session, and Failure-to-Start Session packets to a call-log host. A call-log host is a local host that supports the RADIUS accounting protocol and is configured properly to communicate with the MAX TNT (for example, a RADIUS accounting server or a host running NavisAccess). The call-log information is sent independently of RADIUS accounting records. If both call logging and RADIUS accounting are in use, the information is sent in parallel.

You set the following parameters, shown with their default values, to configure the MAX TNT to communicate with one or more call-log hosts:

CALL-LOGGING
      call-log-enable = no
      call-log-host-1 = 0.0.0.0
      call-log-host-2 = 0.0.0.0
      call-log-host-3 = 0.0.0.0
      call-log-port = 0
      call-log-key = ""
      call-log-timeout = 0
      call-log-id-base = acct-base-10
      call-log-reset-time = 0
      call-log-stop-only = yes
      call-log-limit-retry = 0

The parameters shown have the following functions:


Parameter	Function
Call-Log-Enable	Enables call logging. If set to No, none of the other call-logging parameters apply. If set to Yes, you must specify the IP address of at least one call-log host in the Call-Log-Host-N parameters
Call-Log-Host-N	Each specifies the IP address of one call-log host. The MAX TNT first tries to connect to server #1 for call-logging. If it receives no response, it tries to connect to server #2. If it receives no response from server #2, it tries server #3. If the MAX TNT connects to a server other than server #1, it continues to use that server until it fails to service requests, even if the first server has come online again.
Call-Log-Port	Specifies the UDP destination port to use for call-logging requests. The default value of 0 (zero) indicates any UDP port. If you specify a different number, the call-log host must specify the same port number (the numbers must match).
Call-Log-Key	A shared secret that enables the server to receive data from the MAX TNT. The value must match the configured shared secret on the call-log host.
Call-Log-Timeout	Specifies the number of seconds the MAX TNT waits for a response to a call-logging request. It can be set to a value of from 1 to 10. The default value is 0 (zero), which disables the timer.
Call-Log-ID-Base	Specifies whether the MAX TNT presents a session ID to the call-log host in base 10 or base 16. The default is base 10.
Call-Log-Reset-Time	Indicates the number of seconds that must elapse before the MAX TNT returns to using the primary call-log host (Call-Log-Host-1). The default value of 0 (zero) disables the reset to the primary call-log host.
Call-Log-Stop-Only	Specifies whether the MAX TNT should send an Stop packet with no user name. The MAX TNT typically sends Start and Stop packets to record connections. Authentication is required to send a Start packet. There are situations that the MAX TNT will send an Stop packet without having sent an Start packet in which case the Stop packets have no user name. The default value for Call-Log-Stop-Only is Yes. You can set it to No to prevent the unit from sending Stop packets with no user name.
Call-Log-Limit-Retry	If the server does not acknowledge a Start or Stop packet within the number of seconds specified in Call-Log-Timeout, the MAX TNT tries again, resending the packet until the server responds or the packet is dropped because the queue is full. The Call-Log-Limit-Retry parameter sets the maximum number of retries for these packets. The default value of 0 (zero) indicates an unlimited number of retries. There is minimum of 1 retry.

Following is an example of a procedure that enables call logging, specifies one call-log host on the local network, ans specifies 10 retries:

admin> read call-logging
CALL-LOGGING read

admin> set call-log-enable = yes

admin> set call-log-host-1 = 10.2.3.4

admin> set call-log-limit-retry = 10

admin> write
CALL-LOGGING written

For complete information about the call logging parameters, see the MAX TNT Reference Guide. For information about configuring RADIUS, see the MAX TNT RADIUS Configuration Guide.

techpubs@eng.ascend.com

Permission level

Description

Command Name

Permission Level

Effect

Checking the file system

Understanding the status window

Log messages

Task

Description

Related parameters

Specifying a session ID base

Parameter

Description

Creating a text file

Uploading the text file

Field

Description

Parameter

Function