Showing posts with label Router. Show all posts
Showing posts with label Router. Show all posts

PING Details

A 'ping' is a small data packet which can be sent to any TCP/IP device and should be immediately echoed back to the sender, thus confirming a working route both ways.
You can send Pings from the MS-DOS prompt the router by typing PING followed by the router’s IP address, as shown below. If the pings Timeout (i.e. are not returned) then the router cannot be seen (pinged) from that PC and you have a problem.
Common diagnostic procedures include the following pings :
  • From PC to Router ( e.g. ping 192.168.1.1 )
  • From PC to external IP address (e.g. ping 194.153.0.18 )
  • From PC to external URL (e.g. ping www.draytek.com)
If pinging numeric IP addresses works, but pinging URLs (named addresses) doesn't then the problem is most likely with the DNS facility.
You can also ping directly from the router to internal (LAN) or External (WAN/Internet) IP addresses. To do this, access the router's Telnet interface and use the command 'ip ping'. For example:
> ip ping 192.168.1.10

Pinging 192.168.1.10 with 64 bytes of data
Received Reply from 192.168.1.10, time 20ms
No comments:
Labels: , , , , , ,

set the router name


You can set the Router Name via the [System Maintenance]>[Management Setup] menu
Enabling Syslog
Just enter the router name and then it will appear in the HTML Title bar as shown in the picture below:
Enabling Syslog
No comments:
Labels: , , , , , ,

Syslog

Syslog is a method of logging router activity. When enabled, the router continuously outputs syslog event messages; these can be captured by a syslog daemom (a listening/capturing program) and displayed or logged to a file. DrayTek provide a syslog tool on the CD-Rom which comes with your router, or you can download the latest version.
One the program is installed, go to the Syslog option on the router's main menu. Enter the IP address of the PC which is running the Syslog program (in our example 192.168.1.8):
Enabling Syslog
Run the Syslog program and you will start to see messages and statistics build up. You can leave the Syslog program running continuously (add it to your Windows start up group if you want to):
Example Syslog

How do I use 'Mail Alert' ?

Enabling 'Mail Alert' will cause the router to email your chosen address with certain alerts, notably potential firewall attacks. It is a simple function to set up - go to the Syslog/Mail Alert menu on the router and enter the address of your chosen mail server (local or ISP's) and the addres you want the alerts sent to:

How do I use store syslog on USB Disk?

Instead of the router sending syslog message to a PC and running a sylog utility on that PC, some DrayTek router models can store syslog to an attached USB Disk. The Vigor2820 series supports this functionality from firmware 3.3.3 and later, check the product specification for your specific model
To enable the router to send syslog message to an attached USB Disk instead of an IP Address, enable the toggle button in the [Syslog] menu. The setting can only be saved if the router has detected that a USB storage device is connected to its USB port. After enabling the setting, the router will create a syslog directory and .log file on the USB disk when it needs to write output to teh USB Disk.
The router does not immediately write the output to the USB Disk, it stores in memory first and then, once the log reaches 32KB, it writes the file to the .log file on the USB drive. Once the .log file on the USB drive reaches 1MB, the router will create a new .log with an incremented filename
Syslog to USB Disk
No comments:
Labels: , , , , , , ,

Firmware Upgrading on Macs

  1. Download the router tools and firmware. double the click DrayTek Router Tools.dmg and then the DrayTek Router Tools disk will pop up. double click the disk, the new windows will pop up as next figure.
  2. 2.Click the DrayTek Smart Start Wizard
  3. click the Search, the router's IP and Mac Address should be listed. Click ok.
  4. Type the password, and then click the ok.
  5. Click the Next
  6. Click the Browse, the Router Web will shown up
  7. Double click the DrayTek Firmware Upgrade
  8. Click the Browse to specify firmware file location and type the router's IP address
  9. Click the Firmware Upgrade in the router web
  10. Click ok
  11. 11.click send in firmware upgrade utility.
  12. You may check the firmware version on the rouer web.
No comments:
Labels: , , , , , ,

firmware version do I have?

Identify your Current Firmware Version

You can view your current firmware version number from the router's web interface, here circled in red:
WUI Firmware version 2800/2900 Series WUI Firmware version 2200-2600 Series

Understanding Router Firmware Files

Firmware should be upgraded using the Firmware Upgrade Utility which is supplied on CD with your router (as part of the router tools). The latest version of the tools is also normally included in the firmware files that you can download from the web site; always ensure that you obtain the correct firmware version for your exact router model and country.
If you download firmware, it is normally provided inside a compressed 'ZIP' file. This ZIP will typically contain the following files :
  • v2k60001.all - Firmware only (Filename will vary depending on model)
  • v2k60001.rst - Firmware as above but with factory default settings
  • readme.txt - Contains notes about this release of firmware, detailing changes etc.
  • Additional files may be included depending on model
Ensure you unzip the files before starting the firmware upgrade procedure. If you want to reset the router to factory defaults during the upgrade/reflash or you are concerned that your settings have been corrupted, you can upload the firmware file ending in .RST, otherwise use the .ALL file. Never change the filenames of the .ALL or .RST files.

Upgrading Firmware from the router's Web Interface

In later models, e.g. Vigor 2820, you do not need to use the firmware upgrade Utility; you can upgrade from the router's own web interface (System Maintenance -> Firmware Upgrade). Use the browse button to locate your firmware file on your local PC and then select upgrade:
WUE Firmware Upgrade

Using the firmware upgrade utility

The firmware utility is contained within the Router Tools (on your CD Rom or download from this page). The firmware upgrade program requires you to enter the firmware's filename (which you can browse for) and the admin password for the router (if set). If you browse for the firmware file ensure that you have already unzipped the firmware files (.all and .rst). By default the browse will look for the 'all' file so remember to change the 'file type' selector if you want to use the RST file (see image, right). You also need to enter the router's IP address; if you're not sure what that is, you can press the ... button to locate it. Browse for the firmware file
Once you press 'send' the utility will automatically enable TFTP mode on the router (a special mode in which it can receive the file) and then send the file. During TFTP mode, the first two LEDs on the left flash together. If you have a wireless router, you must use a wired PC (RJ45/Ethernet) to do the firmware upgrade - you cannot reflash firmware over the wireless interface. Firmware Upgrade Utility
After sending the firmware file, the router will write its new firmware to the flash memory and then reboot. This can take typically around 60 second after the file has been sent. It is very important that you do not disturb the router during this time. Once the firmware has been written and the router rebooted, the ACT LED will flash on its own normally again.
Your router is now reflashed. If you have upgraded to a new firmware version, the front page of the web configurator will now confirm the new firmware version, at the top right-hand-side of the screen.

When to use the 'RST' file

The .ALL file contains the router's firmware. If you flash the .ALL file, the router should retain all of its existing settings and after it has flashed and rebooted will resume normal operation automatically. Never change the filename or attempt to alter/edit the firmware file.
If you are making a major firmware upgrade (for example where the first digit changes, say 1.5 to 2.6), or where the readme.txt notes recommend it, you should use the RST file which will clear all existing router settings. The RST file is also necessary if your router has corrupted firmware, or invalid settings which cause it to malfunction.

A firmware corruption should not occur during normal usage but can occur if the router is subject to abnormal trauma (e.g. power/line spike or brown-out). Firmware or settings abnormalities can also occur if you have attempted to flash an invalid firmware file into the router, or tried to restore settings from an incompatible model/device. Reflashing the correct RST file will restore the router's firmware and also the 'factory default' settings of the router, wiping all existing settings. The unit must then be re-configured from scratch. Do not attempt to restore backed up settings from a file if the backup file was taken from a router with corrupt/invalid settings.

Firmware Upgrade Timeouts

If you gets a "request time out" message after pressing send, check that the PC's own IP address is in the same subnet as the router (e.g. 192.168.1.10 and 192.168.1.1 for the router). Also be sure that you have temporarily removed any software firewall on the PC which might be interfering with the upgrade procedure. If the procedure appears to complete, but then the router remains in TFTP mode (both left hand LEDs flashing together) for over 2 minutes, turn the router off/on and then try the procedure again.Firmware uggrade timeout

Abnormal Firmware Conditions

If for some reason the router is not running normally (e.g. ACT is not flashing normally) and the router cannot be reached from telnet or the web browser, then the firmware upgrade utility may not be able to enable TFTP mode itself. Additionally, in the case of invalid settings or corrupted firmware the router may put itself automatically into TFTP mode when booted. This 'boot loader' mode is stored in a special permanent memory area (ROM) which cannot be erased by the user, so even if the main firmware is completely corrupted, boot loader mode should still be accessible.
If the router is in TFTP mode, either of its own accord, or because you manually enabled it (see below) you must use the TFTP Client Utility instead of the regular Firmware Upgrade utility. The TFTP Client program can be downloaded from the web site.
In TFTP mode the LEDs flash like thisIf you need to enable TFTP mode on the router manually, do as follows : Turn OFF the router (use the power switch or remove the power plug). Using a ballpoint pen, press and hold the Reset button on the rear of the router. You do not need to press hard; you will feel the button gently click. Whilst still holding the button pressed, turn the router back on. You can release the button once you can see TFTP mode is enabled frfom the LEDs (that should be almost immediately) When TFTP mode is enabled, the first and second LEDs will flash together as shown on the left.
Once the router is in TFTP mode, you can run the TFTP client :

Vigor TFTP Utility
If you have changed the router's IP address, try that IP address first. If that doesn't work because settings are corrupted, the router will revert to the default address of 192.168.1.1.
When in TFTP mode, the router's DHCP facility does not operate normally so the uploading PC must already have an IP address (either from DHCP earlier or manually set) and that address must be within the same IP subnet as the router's IP address. You cannot ping or access the web config screens when TFTP mode is running and the wireless interface (if applicable) won't function, so you must do the upgrade from a wired PC. The router will automatically enter TFTP receive mode if its firmware has become corrupted. If you enable TFTP mode accidentally, just turn the router off and on again and it will boot normally (except in the case of firmware corruption or mismatch).

Vigor 2000

For the Vigor2000 only (which does not have a Reset button), you must first enable boot TFTP mode from the console port menu; you will need the serial console cable (supplied) and use Windows Hyperterminal (or similar). Once boot TFTP mode is enabled, you use the TFTP client utility as with other models to send the firmware over the Ethernet interface. If you have very old Vigor2000 firmware in your router still (version 1.3 or older) and cannot reflash it, please contact your dealer for assistance.

How do I remotely upgrade firmware ?

This facility it depends on the model and firmware already installed. On some models, you can update the firmware from another location, via the WAN (public-facing) interface - i.e. without having to be at the same location as the router. Firstly, you must enable the facility from the router's management menu :
Then, using any FTP (not TFTP) program (we used CuteFTP in the example below) you can open an FTP connection to the router's public (WAN) IP address, using the username 'admin' and the admin password you have set on the router. A regular directory will appear as per the example shown below and you can now transfer the appropriate firmware .ALL file. After receiving the file, the router will write it to its flash rom; this can take a couple of minutes. Do not disturb the router during this time. It will reboot once it has written the new firmware, and the router should be back online shortly.
We do not recommend sending the .RST file as that will then clear our the router settings and the router will not be able to log back onto the line, so you will not longer have access to it until someone configures it locally.

Example of upgrading firmware using FTP
After the upgrade, the router configurator main page should then show the new firmware version is installed into the router.
No comments:
Labels: , , , , , , ,

Router Commands Overview





First of all you should remember the keyboard shortcuts of a router.

Keyboard Shortcuts
CTRL-N - show next command
CTRL-P - show previous command
SHIFT-CTRL-6 – Break

Configuring the Router

You will be able to learn the basic commands for configuring a router.
sh running-config - details the running configuration file (RAM)
sh startup-config - displays the configuration stored in NVRAM
setup - Will start the the automatic setup; the same as when you first boot the router
config t - use to execute configuration commands from the terminal
config mem - executes configuration commands stored in NVRAM; copies startup-config to running-config




config net - used to retrieve configuration info from a TFTP server
copy running-config startup-config - copies saved config in running config (RAM) to NVRAM or "write memory" for IOS under ver.11
copy startup-config running-config - copies from non-volatile (NVRAM) to current running config (RAM)
boot system flash <put file filename here> - tells router which IOS file in flash to boot from
boot system tftp - tells router which IOS file on the tftp server to boot from
boot system rom - tell router to boot from ROM at next boot
copy flash tftp - Copies flash to tftp server
copy tftp flash - Restores flash from tftp server
copy run tftp - Copies the current running-config to tftp server
copy tftp run - Restores the running-config from tftp server

General Commands

Here is a list of the general commands. These are the basic level commands and most commonly used
no shutdown - (enables the interface)
reload - restarts the router
sh ver - Cisco IOS version, uptime of router, how the router started, where system was loaded from, the interfaces the POST found, and the configuration register
sh clock - shows date and time on router
sh history - shows the history of your commands
sh debug - shows all debugging that is currently enabled
no debug all - turns off all debugging
sh users - shows users connected to router
sh protocols - shows which protocols are configured
banner motd # Your customized message here # - Set/change banner
hostname <give router name> - use to configure the hostname of the router
clear counters - clear interface counters

Privileged Mode commands of a router

Learn how to work in the privileged mode of a router.
enable - get to privileged mode
disable - get to user mode
enable password <give password here> - sets privileged mode password
enable secret <give password here> - sets encrypted privileged mode password
Setting Passwords on router
Here you will be able to learn how to set the password on a router.
enable secret <give password here> - set encrypted password for privileged access
enable password <give password here> - set password for privileged access (used when there is no enable secret and when using older software)
Setting the password for console access:
(config)#line console 0
(config-line)#login
(config-line)#password <put password here>
Set password for virtual terminal (telnet) access (password must be set to access router through telnet):
(config)#line vty 0 4
(config-line)#login
(config-line)#password <put password here>
Set password for auxiliary (modem) access:
(config)#line aux 0
(config-line)#login
(config-line)#password <put password here>

Router Processes & Statistics

By these command you can see the statistics and different processes of the router.
sh processes - shows active processes running on router
sh process cpu - shows cpu statistics
sh mem - shows memory statistics
sh flash - describes the flash memory and displays the size of files and the amount of free flash memory
sh buffers - displays statistics for router buffer pools; shows the size of the Small, Middle, Big, Very Big, Large and Huge Buffers
sh stacks - shows reason for last reboot, monitors the stack use of processes and interrupts routines

IP Commands

Here is a list of the IP Commands
Configure IP on an interface:
int serial 0
ip address 157.89.1.3 255.255.0.0
int eth 0
ip address 2008.1.1.4 255.255.255.0

Other IP Commands:

sh ip route - view ip routing table
ip route <remote_network> <mask> <default_gateway> [administrative_distance] - configure a static IP route
ip route 0.0.0.0 0.0.0.0 <put gateway of the last resort here> - sets default gateway
ip classless - use with static routing to allow packets destined for unrecognized subnets to use the best possible route
sh arp - view arp cache; shows MAC address of connected routers
ip address 2.2.2.2 255.255.255.0 secondary - configure a 2nd ip address on an interface
sh ip protocol

CDP Commands (Cisco Discovery Protocol uses layer 2 multicast over a SNAP-capable link to send data):

sh cdp neighbor - shows directly connected neighbors
sh cdp int - shows which interfaces are running CDP
sh cdp int eth 0/0 - show CDP info for specific interface
sh cdp entry <cdp neighbor here> - shows CDP neighbor detail
cdp timer 120 - change how often CDP info is sent (default cdp timer is 60)
cp holdtime 240 - how long to wait before removing a CDP neighbor (default CDP holdtime is 180)
sh cdp run - shows if CDP turned on
no cdp run - turns off CDP for entire router (global config)
no cdp enable - turns off CDP on specific interface

IPX Commands

Enable IPX on router:
ipx routing
Configure IPX + IPX-RIP on an int:
int ser 0
ipx network 4A

Other Commands:

sh ipx route - shows IPX routing table
sh ipx int e0 - shows ipx address on int
sh ipx servers - shows SAP table
sh ipx traffic - view traffic statistics
debug ipx routing activity - debugs IPS RIP packets
debug ipx sap - debugs SAP packets

Routing Protocols

RIP, IGPR and OSPF are the routing protocols and here is a list of the commands for the working on the routing protocols.
Configure RIP:
router rip
network 157.89.0.0
network 208.1.1.0
Other RIP Commands:
debug ip rip - view RIP debugging info
Configure IGRP:
router IGRP 200
network 157.89.0.0
network 208.1.1.0
Other IGRP Commands:
debug ip igrp events - view IGRP debugging info
debug ip igrp transactions - view IGRP debugging info
Access Lists
Here is a list of the Access list command of a router.
sh ip int ser 0 - use to view which IP access lists are applies to which int
sh ipx int ser 0 - use to view which IPX access lists are applies to which int
sh appletalk int ser 0 - use to view which AppleTalk access lists are applies to which int
View access lists:
sh access-lists
sh ip access-lists
sh ipx access-lists
sh appletalk access-lists
Apply standard IP access list to int eth 0:
access-list 1 deny 200.1.1.0 0.0.0.255
access-list 1 permit any
int eth 0
ip access-group 1 in
Apply Extended IP access list to int eth 0:
access-list 100 deny tcp host 1.1.1.1 host 2.2.2.2 eq 23
access-list 100 deny tcp 3.3.3.0 0.0.0.255 any eq 80
int eth 0
ip access-group 100 out
Apply Standard IPX access list to int eth 0:
access-list 800 deny 7a 8000
access-list 800 permit -1
int eth 0
ipx access-group 800 out
Apply Standard IPX access list to int eth 0:
access-list 900 deny sap any 3378 -1
access-list 900 permit sap any all -1
int eth 0
ipx access-group 900 out

WAN Configurations Commands

Networking over WAN is the main functionality of a router. The most common use of a router is for the WAN connectivity. Here is a list of the commands for the different methods of the WAN connectivity.

PPP Configuration

Point to point protocol is a method for the WAN connectivity and you will find here some commands of PPP.
encapsulation pppppp authentication <chap or pap here>
ppp chap hostname <put router name here>
ppp pap sent-username <put user name here>
sh int ser 0 - use to view encapsulation on the interface

Frame-Relay Configuration

One of the methods for the WAN connectivity is the Frame Relay. Find here some basic commands for the WAN connectivity through Frame Relay.
encapsulation frame-relay ietf - use IETF when setting up a frame-relay network between a Ciscorouter and a non-Cisco router
frame-relay lmi-type ansi - LMI types are Cisco, ANSI, Q933A; Cisco is the default; LMI type is auto-sensed in IOS v11.2 and up
frame-relay map ip 3.3.3.3 100 broadcast - if inverse ARP won't work, map Other IP to Your DLCI # (local)
keep alive 10 - use to set keep alive
sh int ser 0 - use to show DLCI, LMI, and encapsulation info
sh frame-relay pvc - shows the configured DLCI's; shows PVC traffic stats
sh frame-relay map - shows route mapssh frame-relay lmi - shows LMI info

Miscellaneous Commands

In the last but not least here is a list of the some miscellaneous and useful commands
sh controller t1 - shows status of T1 lines
sh controller serial 1 - use to determine if DCE or DTE device
(config-if)#clock rate 6400 - set clock on DCE (bits per second)
(config-if)#bandwidth 64 - set bandwidth (kilobits)
No comments:
Labels: , , , , , , ,
Subscribe to: Posts (Atom)

SEARCH

Search Term:
Related Posts Plugin for WordPress, Blogger...

stumbleupon