Tut Systems SMS2000 manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104

Go to page of

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of Tut Systems SMS2000, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of Tut Systems SMS2000 one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of Tut Systems SMS2000. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of Tut Systems SMS2000 should contain:
- informations concerning technical data of Tut Systems SMS2000
- name of the manufacturer and a year of construction of the Tut Systems SMS2000 item
- rules of operation, control and maintenance of the Tut Systems SMS2000 item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of Tut Systems SMS2000 alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of Tut Systems SMS2000, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the Tut Systems service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of Tut Systems SMS2000.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the Tut Systems SMS2000 item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    TUT Systems, Inc Page 1 of 104 P/N 220-06288-20 TUT Systems SMS2000 User Guide[...]

  • Page 2

    TUT Systems, Inc Page 2 of 104 P/N 220-06288-20 No part of this pub lication may be reproduced or tran smitted, in any form or by any means, electronic, mechanical, photocopying, r ecording, or otherwise, without the prior written consent of the publisher. Information in this ma nual is furnished under licen se and may only be used in accordance wi[...]

  • Page 3

    TUT Systems, Inc Page 3 of 104 P/N 220-06288-20 SMS ™ User’s Guide SMS Software Release 2.3.6[...]

  • Page 4

    TUT Systems, Inc Page 4 of 104 P/N 220-06288-20 Content s Contents ............................................................................................................................. 4 List of Tables ................................................................................................................. ................... 9 List[...]

  • Page 5

    TUT Systems, Inc Page 5 of 104 P/N 220-06288-20 Disabling Automatic Conf iguration Changes .................................................................. 27 Saving a Configuration .................................................................................................... 28 Loading a Config uration File ................................[...]

  • Page 6

    TUT Systems, Inc Page 6 of 104 P/N 220-06288-20 Archiving SMS2000 Firmware and distribut ing it from a Server .................................... 42 Verifying a Successful U pgrade ...................................................................................... 43 Returning to an Older Firmware Versi on.......................................[...]

  • Page 7

    TUT Systems, Inc Page 7 of 104 P/N 220-06288-20 Chapter 10 - Service Creation Using Groups and Rules ............................................. 62 Groups......................................................................................................................... ................... 62 Adding a Group ..................................[...]

  • Page 8

    TUT Systems, Inc Page 8 of 104 P/N 220-06288-20 Adding the SMS2000 as a C lie nt on the RADIUS Server ............................................... 78 Adding Users to the RADIUS Server .............................................................................. 78 Configuring Servi ce Parame ters ................................................[...]

  • Page 9

    TUT Systems, Inc Page 9 of 104 P/N 220-06288-20 Appendix A - RADIUS Access-Accept Dictionary File ............................................... 97 RADIUS Attributes in Access-Accept Packets................................................................................ 97 Appendix B - Technical Assistance and Customer Support ....................[...]

  • Page 10

    TUT Systems, Inc Page 10 of 104 P/N 220-06288-20 Preface This guides in this series provide detailed information and pro cedures that will allow you to communicate and interface with your SMS2000 and OCS products, complete basic system and network confi guration, and manage y our systems usi ng system administ ration tools. For further information,[...]

  • Page 11

    Introduction TUT Systems, Inc Page 11 of 104 P/N 220-06288-20 Chapter1 - Introduction Tut Systems’ Expresso Subscri ber Management System (SMS2000)and Operati on Center Software (OCS) offer a complete so l ution for delivering and cont rolling Internet Protocol (IP) based services to subscriber s. The SMS2000 delivers powerful subscriber managem [...]

  • Page 12

    Introduction TUT Systems, Inc Page 12 of 104 P/N 220-06288-20 • Portal redirection —Clients can be directed to a “for ced portal” for authentication or to deliver dynam ic content. The service provider is abl e to control and differenti ate network service better. • IP multicast —Multimedia content can be delivered to subscribers. By us[...]

  • Page 13

    Introduction TUT Systems, Inc Page 13 of 104 P/N 220-06288-20 Subscriber Management Components The SMS2000 can interact with a num ber of external software and hardware components. Figure 1-1 shows t he subscriber managem ent component s, which are described in SMS2000 Tutorials . Figure 1-1 Subscriber Management Components[...]

  • Page 14

    Introduction TUT Systems, Inc Page 14 of 104 P/N 220-06288-20 SMS2000 The SMS2000 consists of hardware and embedded software ge nerally placed on a property to control public network access. The SMS2000 handles packet switching functions, traffic shaping, and address transl ations for a single property. The SM S2000 has a very small i nternal confi[...]

  • Page 15

    Introduction TUT Systems, Inc Page 15 of 104 P/N 220-06288-20 “provisioning” and “ou tsourcing.” OCS can perform numerous billing fu nctions. It can bill a subscriber’s credit card perio dically (such as, monthly fixed service charges from an apartment dweller) or as serv ices are delivered (such as a daily charge in a hotel room once a g[...]

  • Page 16

    Getting Started TUT Systems, Inc Page 16 of 104 P/N 220-06288-20 Chapter 2 - Getting S t arted Before beginning this chapt er, you must have al ready installed y our hardware, completed your cable and power connections, and successfull y powered up your system following the instructions in the SMS2000 Quick Start Guide . This chapter presents infor[...]

  • Page 17

    Getting Started TUT Systems, Inc Page 17 of 104 P/N 220-06288-20 Style Conventions To facilitate the proper interp retation of command syntax and parameters as you read this guide, we’ve applied styl e conventions to distingui sh various elements of the comm ands, as well as to show how to use the com mands. The styl e conventions used throughout[...]

  • Page 18

    Getting Started TUT Systems, Inc Page 18 of 104 P/N 220-06288-20 Cursor Movement To save time, you can use t he arrow keys on your keyboard to navigat e between levels. The comm and keystrokes are used to m ove the cursor around on the comm and line and within the comm and history buffer. The arrow keys can also be used for cursor movem ent. Naviga[...]

  • Page 19

    Initial Configuration TUT Systems, Inc Page 19 of 104 P/N 220-06288-20 Chapter 3 - Initial Configuration You may configure the SMS2000 via a serial interface or a Telnet connection as described in the following secti ons. Establishing a Connection with the SMS2000 Establishing a Connection Via a Serial Interface Note: Verify you have install ed the[...]

  • Page 20

    Initial Configuration TUT Systems, Inc Page 20 of 104 P/N 220-06288-20 11. Cli ck OK . 12. Set the following parameters in the Settings tab : • Select Terminal keys . • From the Emulation pull-down m enu, select Auto Detect . • Set Backscroll buffer lines to 500 . 13. Cli ck OK to close the dialog box. Note: To avoid cutting off a section of [...]

  • Page 21

    Initial Configuration TUT Systems, Inc Page 21 of 104 P/N 220-06288-20 If you have not already done so, connect the PC to the SMS2000 subscriber port, by plugging one end of a cross-over Ethernet cable int o the Ethernet port on the PC and the other end into the subscriber port on the back of t he SMS2000. Note: If you are not using a hub to connec[...]

  • Page 22

    Initial Configuration TUT Systems, Inc Page 22 of 104 P/N 220-06288-20 Initial Configuration There are five steps required for the initial configuration of the SMS2000: 1. Step 1 Change the password for security purposes. 2. Step 2 Set the Quick Configurat ion. 3. Step 3 Change the system hostname to id entify the system on the network. 4. Step 4 D[...]

  • Page 23

    Initial Configuration TUT Systems, Inc Page 23 of 104 P/N 220-06288-20 This example resets the system configur ation, setting the lo cal IP address to 192.168.1.244 with a 24-bit subnet m ask (255. 255.255.0) and the default gat eway is 192.168.1.1. There are two DNS servers; the first is 192.168.1.42, and t he second is 192.168.1.1. sms2000% set q[...]

  • Page 24

    Initial Configuration TUT Systems, Inc Page 24 of 104 P/N 220-06288-20 for example, to save the current configuration, type: sms2000% save Rebooting the System In order for saved configuration ch anges to take effect, y ou must reboot the system . To force the system to shut down co mpletely and then restart, use this command: reboot For example, t[...]

  • Page 25

    System Adm inistration TUT Systems, Inc Page 25 of 104 P/N 220-06288-20 Chapter4 - System Administration This chapter describes the system administration activities and commands, including: • Configuration E-Mail Settings • Configuration and System File Tools • Configuring SMTP • Configuring NTP • Configuring SNMP Poll ing • Connectivit[...]

  • Page 26

    System Adm inistration TUT Systems, Inc Page 26 of 104 P/N 220-06288-20 Mailing the Current Configuration The config-mail command ma ils the current configura tion to the address specified. The SMS2000 uses the SMTP (Sim ple Mail Transfer Protocol ) server specified by the e-m ail address or SMTP-server comm and line param eter. If you enter config[...]

  • Page 27

    System Adm inistration TUT Systems, Inc Page 27 of 104 P/N 220-06288-20 Note: Some types of changes, i ncluding adding a static port with the set port comm and or resetting the system configuration wi th the set quick config comm and require that you reboot t he SMS2000 before continuing. Automatically Committing Configuration Changes To comm it co[...]

  • Page 28

    System Adm inistration TUT Systems, Inc Page 28 of 104 P/N 220-06288-20 Saving a Configuration After committing configuration cha nges to the running system, the save com mand is used to store the current configuration t o a startup script, which is executed the next tim e the system boots. To save the current configuration for use on the next rebo[...]

  • Page 29

    System Adm inistration TUT Systems, Inc Page 29 of 104 P/N 220-06288-20 sms2000% restore config Note: You must reboot the SM S2000 for the restored configuration t o take effect. Restoring the Default Configuration To restore the SMS2000 to the default confi gurati on (with no functions configured), use this command: set default For example, to res[...]

  • Page 30

    System Adm inistration TUT Systems, Inc Page 30 of 104 P/N 220-06288-20 delete smtp - server { server_name | ip_address } For example, to stop forwardi ng mail to the mail server 1.2.3.4, type: sms2000% delete smtp-server 1.2.3.4 Setting the SMTP ID To configure the SMS2000 to m odify the header of outbound e-m ail m essages from subscribers to ens[...]

  • Page 31

    System Adm inistration TUT Systems, Inc Page 31 of 104 P/N 220-06288-20 Configuring the NTP server To configure a network tim e protocol server for the SMS2000 to use when synchroni zing its clock use the set ntp-server com mand. This com mand requires t hat you have already configured a time zone for t he SMS2000 using the set timezone comman d. T[...]

  • Page 32

    System Adm inistration TUT Systems, Inc Page 32 of 104 P/N 220-06288-20 MDU Lite (LongRun or Hom eRun) for addressing inform ation on new subscribers. The SMS2000 may use polling data from Expresso GS/MDU Chassis equipment to determ ine the room from which a subscriber is generating t raffic. This data can then be used by the OCS or another server [...]

  • Page 33

    System Adm inistration TUT Systems, Inc Page 33 of 104 P/N 220-06288-20 sms2000% delete snmp-poll 192.168.254.211 Connectivity and Testing Traceroute To use a standard network application that t rack s the path a packet follows to arrive at a specified network destination, use t his comm and: traceroute { ip_address | hostname } This example shows [...]

  • Page 34

    System Adm inistration TUT Systems, Inc Page 34 of 104 P/N 220-06288-20 { left | right }}[ help | ? ] For example, with system linetest on and the SMS2000 reboot ed, the SMS2000 generates a broadcast to the subscriber Et hernet interface once per second. Installers should check for a blinking LED on a Long Run or Home R un adapter i f they do not h[...]

  • Page 35

    System Adm inistration TUT Systems, Inc Page 35 of 104 P/N 220-06288-20 To activate a port or range of ports as stati c or dynamic, or t o deactivate one or more ports, use this com mand: set port port {[ static [ ip_address | ip_address netmask ip_mask | ip_address / masklen ] [ vlan vlan_id ]] | dynamic | disable ]} For example, to set port 800 t[...]

  • Page 36

    System Adm inistration TUT Systems, Inc Page 36 of 104 P/N 220-06288-20 displog { on | off } For example, to enable t he display of log m essages in current telnet session window, type: sms2000% displog on For example, to disabl e the display of log m essages in current telnet session window, type: sms2000% displog off System Administration Tools D[...]

  • Page 37

    System Adm inistration TUT Systems, Inc Page 37 of 104 P/N 220-06288-20 For example, to reboot the sy stem, type: sms2000% reboot Changing a Password Use the password command to prevent unauthorized users from accessing the SMS2000. Note: A bad password can dramaticall y re duce the system security of the SMS2000. Please follow general password gui[...]

  • Page 38

    System Adm inistration TUT Systems, Inc Page 38 of 104 P/N 220-06288-20 SNMP Management Beginning with SM S2.3.6, the SMS supports rem ote SNMP m anagement. SNM P System Contact and System Location will be reported in the SNMP system OID. All SMS OIDs are read-only. An SNMP trap is sent to the trap-r ecipient when the SMS boots or reboots. By defau[...]

  • Page 39

    System Adm inistration TUT Systems, Inc Page 39 of 104 P/N 220-06288-20 To view SNMP System location information, type: SMS000$ show snmp system-location SNMP Community You can define up to five SNMP Communitie s with unique IP Addresses for access to MIB objects. To add an SNMP Comm unity and M anagement IP, t ype: snmp add community community-nam[...]

  • Page 40

    System Adm inistration TUT Systems, Inc Page 40 of 104 P/N 220-06288-20 To delete the SNMP trap recipient, type: SMS2000% snmp delete trap-recipient To view the SNMP trap recipient configurat ion, type: show snmp trap-recipient Troubleshooting Tools System Information Tools Setting the System Information Dump Use the dump-info command to e-mail the[...]

  • Page 41

    System Adm inistration TUT Systems, Inc Page 41 of 104 P/N 220-06288-20 Subscriber Connectivity Commands Setting the ARP Failure Limit The SMS2000 periodically sends an unsolicited ARP request to clients from whom it has not received network traffic for a certain pe riod of time. If a device does not respond to the specified number of request s, th[...]

  • Page 42

    System Adm inistration TUT Systems, Inc Page 42 of 104 P/N 220-06288-20 Upgrading from Tut Systems’ Website 1. Go to the Tut Systems webs ite at http://www.tutsystem s.com. 2. On the Support pull-down m enu, click "SMS/ OCS". 3. Click Down loads. 4. Enter your Com pany's nam e and product serial num ber (as printed on your invoi ce[...]

  • Page 43

    System Adm inistration TUT Systems, Inc Page 43 of 104 P/N 220-06288-20 Verifying a Successful Upgrade 1. After the SMS2000 reboots, tel net to the SMS2000. Note If the new firmware fails to boot, the SMS2000 reloads the older fi rmware. 2. Login. Use the version comm and to verify that the release m atches the upgrade version and the SMS2000 boote[...]

  • Page 44

    System Adm inistration TUT Systems, Inc Page 44 of 104 P/N 220-06288-20 new firmware because the SMS2000 will not boot the older firm ware, it will continue to fail to boot the newer firm ware upon each subsequent boot attem pt. Always download the newer firm ware again in the event of upgrade problem s.[...]

  • Page 45

    Authentication TUT Systems, Inc Page 45 of 104 P/N 220-06288-20 Chapter 5 - Authentication Authentication is the p rocess of verifying the identity of a sub scriber. Authentication The SMS2000 is capable of perform ing authenticati on by using an external server (OCS or RADIUS). For more inform ation on using the OCS for aut hentication, see the OC[...]

  • Page 46

    Authentication TUT Systems, Inc Page 46 of 104 P/N 220-06288-20 Configuring the Command Server Setting the Command Server for OCS Interaction To set the command server for the OCS interaction, use this co mmand: set cmd-serv ip_address For example, to set t he comm and server to 10.228.10.251, type: sms2000% set cmd-serv 10.228.10.251 Note: This is[...]

  • Page 47

    Authentication TUT Systems, Inc Page 47 of 104 P/N 220-06288-20 The auth add web command autom atically adds an allow- net to the specified server so that subscribers can be redirected to the all ow-net without being intercept ed. For more information on allow-nets, see “ Allow-Nets” on page 49 . To add a Web server as the authentication server[...]

  • Page 48

    Authentication TUT Systems, Inc Page 48 of 104 P/N 220-06288-20 A warning will appear. Note: You do not have to specifically enable authentication. Si mply addi ng a Web or RADIUS server is sufficient. Disabling Authentication Use the auth off comma nd to disable authenticat ion for the current group. If you use the auth off command with the forced[...]

  • Page 49

    Authentication TUT Systems, Inc Page 49 of 104 P/N 220-06288-20 HTTP Request Throttle Setting the HTTP Request Throttle Use the set http-request throttle command to configure a per-session throttle on the rate at which HTTP requests from that session are handled before authenticat ion. A new session begins with max_requests requests enabled. Every [...]

  • Page 50

    Authentication TUT Systems, Inc Page 50 of 104 P/N 220-06288-20 Setting an Allow-Net Note: When adding the OCS using the auth add web comm and an allow-net is automatically configured for you . An OCS server will always be added as an allow-net entry when you u se an OCS authentication serv er. This allows the SMS2000 to redirect subscribers to the[...]

  • Page 51

    Authentication TUT Systems, Inc Page 51 of 104 P/N 220-06288-20 Deleting an Allow-Net To remove allow-net entries, use this command: delete allow-net [ ip_address netmask | ip_address / masklen | dns-name | dns- name/masklen ] For example, to dele te an allow-net start ing at 192.168.254.128 with a 32-bit network mask, type: sms2000% delete allow-n[...]

  • Page 52

    Authentication TUT Systems, Inc Page 52 of 104 P/N 220-06288-20 SMS2000 can substitute subscriber informati on for replaceable param eters in the URL. For example, here the set authok com mand is shown usi ng the secret as well as the blockall parameters, and a URL wit h parameters em bedded in it which are handl ed during the redirect. sms2000% se[...]

  • Page 53

    Authentication TUT Systems, Inc Page 53 of 104 P/N 220-06288-20 • Support RADIUS ports 1812 and 1813 for R ADIUS request and accounting ports (per official RADIUS assigned ports) • Support Session-Tim eout attribute • Support Idle-Tim eout attribute • Set the NAS type parameter Note: RADIUS packages are available for all major Linux dist ri[...]

  • Page 54

    Authentication TUT Systems, Inc Page 54 of 104 P/N 220-06288-20 Syntax Description Alias Adding the alias parameter to the end of the auth add radius comma nd will configure the SMS to receive RADIUS response packets from an IP address other that the IP address configured as the RADIUS server. Multiple RADIUS Servers Default Older versions of SMS u[...]

  • Page 55

    Authentication TUT Systems, Inc Page 55 of 104 P/N 220-06288-20 The alias parameter can be combined with the multiple RADIUS servers to p rovide fault- tolerant clustered R ADIUS servers. RADIUS server configuration to support this is not covered by this docum entation as serv er confi gurations can vary widely. Set NAS port type parameter Beginnin[...]

  • Page 56

    Authentication TUT Systems, Inc Page 56 of 104 P/N 220-06288-20 show status radius Shows the status of and configuration of R ADIUS servers in the running system , including whether they are DEAD or ALIVE. If the RADIUS server is DEAD, the command will also indicate the number of minutes until it is alive ag ain. show status radius Example This exa[...]

  • Page 57

    Authorization TUT Systems, Inc Page 57 of 104 P/N 220-06288-20 Chapter 6 - Authorization Authorization entail s determi ning if a particular user has perm ission to use a service. Authorization The SMS2000 is capable of perform ing authorization by using an external server (OCS or RADIUS) or by using onboard groups and rules. For det ails about usi[...]

  • Page 58

    Accounting TUT Systems, Inc Page 58 of 104 P/N 220-06288-20 Chapter 7 - Accounting Accounting entails t he reporting of network resource usage. Accounting The SMS2000 is capable of performing accounti ng by using an external server (OCS, RADIUS, or Syslog). For m ore information on usi ng the OCS for accounting, see the O CS User’s Guide . For mo[...]

  • Page 59

    Accounting TUT Systems, Inc Page 59 of 104 P/N 220-06288-20 Radius Accounting Configuration Sending Accounting Messages to a RADIUS Server Note: This comm and does not require that y ou have configured RADIUS authentication. When subscribers connect or disconnect, usage data can be sent to a RADIUS accounti ng server. RADIUS accounting can be confi[...]

  • Page 60

    Provisioning TUT Systems, Inc Page 60 of 104 P/N 220-06288-20 Chapter 8 - Provisioning The SMS2000 is capable of perform ing provisioning by using an external server (OCS or RADIUS) or internally using groups and rules. For m ore informati on on using the OCS to provision the SMS2000, see the OCS User’s Guide . For m ore information on RADIUS, se[...]

  • Page 61

    Billing TUT Systems, Inc Page 61 of 104 P/N 220-06288-20 Chapter 9 - Billing Billing is charging the su bscriber money for using the serv ice. Billing The SMS2000 is capable of performing billing by using an external server (OCS or RADIUS). For more information on using the OCS for billing, see th e OCS User’s Guide . For more information on RADI[...]

  • Page 62

    Service Creation Using Groups and Rules TUT Systems, Inc Page 62 of 104 P/N 220-06288-20 Chapter 10 - Service Creation Using Group s and Rules Groups are created on the SMS2000 in order to provide an easier way to manage multiple subscribers. Subscribers are placed into groups according to a set of rules. Rules may be configured directly on the SMS[...]

  • Page 63

    Service Creation Using Groups and Rules TUT Systems, Inc Page 63 of 104 P/N 220-06288-20 Deleting a Group To delete groups with specific charact eristics, use this com mand: group delete groupname For example, to dele te the group library, ty pe: sms2000% group delete library Setting the Active Group Context Most configuration it ems are tie d to t[...]

  • Page 64

    Service Creation Using Groups and Rules TUT Systems, Inc Page 64 of 104 P/N 220-06288-20 SMS2000 Rules The SMS2000 includes a mechanis m called rule s. Managers can use the rules directly to create configurations which are specific to their environment. Most configuration att ributes for the SMS2000, includi ng traffic shaping and subscriber ID inf[...]

  • Page 65

    Service Creation Using Groups and Rules TUT Systems, Inc Page 65 of 104 P/N 220-06288-20 Rule Expression Components A rule expression tells when to apply a rule. The action for the rule is always to place the ession in a group. This group is specifi ed either by group add groupname , or group goupname for an existing group, or by incl uding the opt[...]

  • Page 66

    Service Creation Using Groups and Rules TUT Systems, Inc Page 66 of 104 P/N 220-06288-20 VLAN When using a VLAN switch as a wiring soluti on, each VLAN effectively is treated as a “room,” similar to the “snmp-info” used with Tut Systems equipment (e.g., an MDU Lite or Expresso GS/MDU Chassis). Managers can write rules t hat affect one or ma[...]

  • Page 67

    Service Creation Using Groups and Rules TUT Systems, Inc Page 67 of 104 P/N 220-06288-20 “not mac=00:11: 22:33:44:55” applies t he rule so long as the MAC address of the unit is not the given address. In other words, it appl ies to every com puter in the world but one. The AND Operator The “AND” operator is used to group two or m ore expres[...]

  • Page 68

    Service Creation Using Groups and Rules TUT Systems, Inc Page 68 of 104 P/N 220-06288-20 Using Rule Priorities Each rule has a numeric priority; the smaller the number, the greater th e priority. When assigning a group to a new session, the SMS2000 fi rst looks at all rule s with priority 1. If it finds any m atching rule , it stops and uses the gr[...]

  • Page 69

    IP Addressing TUT Systems, Inc Page 69 of 104 P/N 220-06288-20 Chapter 1 1 - IP Addressing Tut Systems’ Expresso Subscri ber Management System (SM S2000) and Operation Center Software (OCS) offer a complete so lution for del ivering and controll ing Internet Protocol (IP) based services to subscribers. The SMS2000 allows alm ost any type of in-bu[...]

  • Page 70

    IP Addressing TUT Systems, Inc Page 70 of 104 P/N 220-06288-20 Figure 11-1 Plug and Play with NAT Client A belie ves that it’s IP address is 38.1. 43.32 and clie nt B believes it ’s IP address is 141.211.43.87. The SMS2000 will respond to each of these clients as their respective gateways, 38.1.43.1 and 141.211.43.1. By usi ng Network Address T[...]

  • Page 71

    IP Addressing TUT Systems, Inc Page 71 of 104 P/N 220-06288-20 through DHCP that corresponds to a real address from one of the SMS2000’s DHCP pools. Note: Addresses in the DHCP pool must be in the same subnet as the SM S2000 or in a control-net. For example, sms2000% group add dhcpers sms2000% dhcp-pool mypool 192.168.0.100 192.168.0.110 255.255.[...]

  • Page 72

    IP Addressing TUT Systems, Inc Page 72 of 104 P/N 220-06288-20 Configuring a Control Network for Additional Client IP Addresses Note: This comm and is only required when usi ng DHCP or static IP addresses on a physical network with multiple IP subnets, and the adm inistrator wants subscribers to be allocated DHCP or st atic addresses from these add[...]

  • Page 73

    IP Addressing TUT Systems, Inc Page 73 of 104 P/N 220-06288-20 For example, to set the IP type to DHCP, type: sms2000% iptype DHCP Source-Nets Setting a Source-Net Note: Source nets are only used with IP ty pes 1 to 1 and 1 to 1 unique . The comm and set source-net configures a source-net. A source-net is a SM S2000 configured subnet to which subsc[...]

  • Page 74

    IP Addressing TUT Systems, Inc Page 74 of 104 P/N 220-06288-20 DHCP Creating DHCP Pools Subscribers who use protocols that ar e not NAT-friendly (inc luding some gam ing servers) or who use a dynamic DNS service t o act as a Web server may want to have a non-NATed real DHCP address. Subscribers who want this service m ust have DHCP enabled on their[...]

  • Page 75

    IP Addressing TUT Systems, Inc Page 75 of 104 P/N 220-06288-20 To specify the IP address of a DNS server and (optionally ) add it for use in the active/current group, use this com mand: set dns [ add ] ip_address For example, to configure t he SMS2000 to use 192.168.254.254 as a DNS server. sms2000% set dns 192.168.254.254 Note: Changing the DNS se[...]

  • Page 76

    Printing TUT Systems, Inc Page 76 of 104 P/N 220-06288-20 Chapter 12 - Printing The Expresso Subscriber Management Sy stem (SMS2000) offers printing capabilities. Setting up the LPR Host To define the printing param eters, including t he name of the LPR host and t he maxim um number of pages and bytes al lowed per job, use this com mand: set lpr { [...]

  • Page 77

    Using SMS with RADIUS Server TUT Systems, Inc Page 77 of 104 P/N 220-06288-20 Chapter 13 - Using SMS2000 with a RADIUS Server SMS2000 can authenticate subscribers a nd send accounting messa ges using RADIUS. Beginning with the 2.3.6 rel ease of SMS software, ma ny RADIUS attributes and additional features have been added. For example: • Add multi[...]

  • Page 78

    Using SMS with RADIUS Server TUT Systems, Inc Page 78 of 104 P/N 220-06288-20 Adding the SMS2000 as a Client on the RADIUS Server For the SMS2000 to be a RADIUS client , it must have an ent ry in your RADIUS server’s clients list. The location and format of this list is different for different RADIUS servers. Adding Users to the RADIUS Server RAD[...]

  • Page 79

    Using SMS with RADIUS Server TUT Systems, Inc Page 79 of 104 P/N 220-06288-20 If no connect informati on is provided, connect inform ation defaults t o that specified for the default group (called “*” or “star”). Thi s informati on can be specified at the SMS2000. If no bandwidth ma nagement is speci fied at the SMS2000, then users wit hout[...]

  • Page 80

    Using SMS with RADIUS Server TUT Systems, Inc Page 80 of 104 P/N 220-06288-20 Any port combinat ion can be specified when configuring RADIUS servers. See page 53, Chapter 5, for detail s on using the auth add radius comma nd . Check the /etc/services files on the RADIUS serv er and verify that the RADIUS server is set to use the same ports as the S[...]

  • Page 81

    Using SMS with RADIUS Server TUT Systems, Inc Page 81 of 104 P/N 220-06288-20 RADIUS Attributes Sent In Access- Request Packets The SMS2000 sends the following attributes in Access-Request packets. The RADIUS server may choose to ignore any or all of th ese. The RADIUS server may m ake its access response based on any or all of these. User-Name(1) [...]

  • Page 82

    Using SMS with RADIUS Server TUT Systems, Inc Page 82 of 104 P/N 220-06288-20 Setting Traffic Shaping The SMS2000 provides traffic shaping t o limit the maxim um bandwi dth for a group of subscribers or a static port. The configurat ion paramete rs for traffic shaping that you set with the shape command apply to the active group. xbs is the maxim u[...]

  • Page 83

    SMS2000 and Property Managem ent System s TUT Systems, Inc Page 83 of 104 P/N 220-06288-20 Chapter 14 - SMS2000 and Property Management Systems (PMS) For hotels desiring PMS billing, the SMS2000 and the OCS can be configured to send billing records to the PMS. Both SMS2000 and the OCS are involved in PMS billing. The SMS2000 is physically connected[...]

  • Page 84

    SMS2000 and Property Managem ent System s TUT Systems, Inc Page 84 of 104 P/N 220-06288-20 Note: For more inform ation on using the set pms-server com mand, see the SMS2000 Command Reference. Protocol Modes All PMS protocols (except M icros-Fidelio) work in one of three m odes: • TTY • ACK-NAK • ENQ-ACK-NAK TTY provides best effort delivery, [...]

  • Page 85

    SMS2000 and Property Managem ent System s TUT Systems, Inc Page 85 of 104 P/N 220-06288-20 That character is used to va lidate that the message was transm itted without errors. It is calculated by adding up all of the character s in the message pro ceeding it (except the STX and modulo the sum by 256). The PMS has a limi ted tim e frame in which t [...]

  • Page 86

    Customizing SMS2000 We b Authentication with RADIUS TUT Systems, Inc Page 86 of 104 P/N 220-06288-20 Chapter 15 - Customizing SMS2000 W eb Authentication with RADIUS This chapter describes how to work wit h and customize web pages on the SM S2000 when using RADIUS authenticati on. You can obtain the original web pages, for use in customizi ng, by c[...]

  • Page 87

    Customizing SMS2000 We b Authentication with RADIUS TUT Systems, Inc Page 87 of 104 P/N 220-06288-20 If the modified page y ou are loading is the first cust omized page for a group, a new directory is created to store this and other m odified files. This directory is automatically given the same nam e as the active group. There is no need t o reboo[...]

  • Page 88

    Customizing SMS2000 We b Authentication with RADIUS TUT Systems, Inc Page 88 of 104 P/N 220-06288-20 the location of th e image is relative towhere the file is located. Since th e default pages and their images resi de in the same directory , the default pages load with no problem . When customizing web pages absolute paths to images such as <im[...]

  • Page 89

    Customizing SMS2000 We b Authentication with RADIUS TUT Systems, Inc Page 89 of 104 P/N 220-06288-20 <FORM NAME="PPAuth" ACTION="PP-Authenticate" METHOD=POST> <INPUT TYPE=TEXT NAME="userid" SIZE=20 MAXSIZE=255 VALUE=""> <INPUT TYPE=PASSWORD NAME="pw" SIZE=20 MAXSIZE=255 VALUE="&q[...]

  • Page 90

    Customizing SMS2000 We b Authentication with RADIUS TUT Systems, Inc Page 90 of 104 P/N 220-06288-20 <!-- Netscape "HTML Tag Reference" at the URL: > <!-- http://developer.netscape.com/docs/manuals/htmlguid/index.htm > <!-- contains information on the META tag, and its use for redirection > <!-- Click on "META&qu[...]

  • Page 91

    Configuring Web Proxy Settings TUT Systems, Inc Page 91 of 104 P/N 220-06288-20 Chapter 16 - Configuring W eb Proxy Settings This chapter describes how to configure web proxy settings. Web Proxy Settings Setting the WPAD CURL The SMS2000 supports DNS based web proxy auto discovery . The wpad.dat file m ust ensure that the subscriber does not use th[...]

  • Page 92

    Configuring Web Proxy Settings TUT Systems, Inc Page 92 of 104 P/N 220-06288-20 Note: Subscribers can manuall y remove a wpad.dat when using Windows 2000/NT by removi ng the following fil e: C:WINNTTemporary Internet Fileswpad.dat The file all versions of Windows should be nam ed sim ilarly. To configure the tim e period for which a wpad.dat fil[...]

  • Page 93

    Configuring Web Proxy Settings TUT Systems, Inc Page 93 of 104 P/N 220-06288-20 For example to show the st atus of proxy server support, type: sms2000% show proxy-server Adding TCP Proxy Ports The SMS2000 automat ically li stens for proxy server connections on port 80 when t he proxy server is enabled. The set proxy-ports command will add the ports[...]

  • Page 94

    SMS2000 Troubleshooting TUT Systems, Inc Page 94 of 104 P/N 220-06288-20 Chapter 17 - SMS2000 T roubleshooting SMS2000 Troubleshooting Procedures Table 17-3 provides valuable inform ation for troubl eshooting the SMS2000. Table 17-3 SMS2000 Troubleshooting Procedures Problem Area Commands What to Look for ping router address Look for any packets re[...]

  • Page 95

    SMS2000 Troubleshooting TUT Systems, Inc Page 95 of 104 P/N 220-06288-20 Problem Area Commands What to Look for From connecting equipment (such as Tut Expresso GS/MDU Chassis), verify that packets are being sent and received. Check the W (mux statistics) or the S from the Expresso Management. Look for packets and bytes on a line. Received packets o[...]

  • Page 96

    SMS2000 Troubleshooting TUT Systems, Inc Page 96 of 104 P/N 220-06288-20 Problem Area Commands What to Look for Verify OCS screens off- line It is possible to reproduce the subscriber experience from any Web browser. This allows the custom screens from the OCS to be tested prior to deploying at a hotel Open browser with URL: http:<ocsipaddress&g[...]

  • Page 97

    Appendix TUT Systems, Inc Page 97 of 104 P/N 220-06288-20 Appendix A - RADIUS Access-Accept Dictionary File RADIUS Attributes in Access-Accept Packets The SMS2000 uses the attributes defi ned in the following dicti onary file: # # #RADIUS #Remote Authentication Dial In User Service # #Livingston Enterprises, Inc. #6920 Koll Center Parkway #Pleasant[...]

  • Page 98

    Appendix TUT Systems, Inc Page 98 of 104 P/N 220-06288-20 #7= 1(integer encoding) # ATTRIBUTEUser-Name1string # comment ATTRIBUTEUser-Password2string ATTRIBUTECHAP-Password3string ATTRIBUTENAS-IP-Address4ipaddr ATTRIBUTENAS-Port5integer ATTRIBUTEService-Type6integer ATTRIBUTEFramed-Protocol7integer ATTRIBUTEFramed-IP-Address8ipaddr ATTRIBUTEFramed-[...]

  • Page 99

    Appendix TUT Systems, Inc Page 99 of 104 P/N 220-06288-20 VALUEService-TypeLogin1 VALUEService-TypeFramed2 VALUEService-TypeCallback-Login3 VALUEService-TypeCallback-Framed4 VALUEService-TypeOutbound5 VALUEService-TypeAdministrative6 VALUEService-TypeNAS-Prompt7 VALUEService-TypeAuthenticate-Only8 VALUEService-TypeCallback-NAS-Prompt9 #Framed Proto[...]

  • Page 100

    Appendix TUT Systems, Inc Page 100 of 104 P/N 220-06288-20 VALUEAcct-AuthenticLocal2 #Framed-IP-Address VALUEFramed-IP-AddressAssigned255.255.255.255 #Prompt Values VALUEPromptNo-Echo0 VALUEPromptEcho1 # #Tut Vendor Specific Attrs. (Vendor ID 1748) ATTRIBUTE Tut:Port-Range-Lo 1 integer ATTRIBUTE Tut:Port-Range-Hi 2 integer ATTRIBUTE Tut:Mac-Address[...]

  • Page 101

    Appendix TUT Systems, Inc Page 101 of 104 P/N 220-06288-20 Appendix B - T echnical Assistance and Customer Support Technical Support Tut Systems offers a com prehensive range of custom er support services, including training, technical assistance, installation, and maintenance agreements. For further information and pri cing on Tut System s’ serv[...]

  • Page 102

    Appendix TUT Systems, Inc Page 102 of 104 P/N 220-06288-20 • Write the RMA num ber on the shipping box. • Ship the equipment to the address given you by Cust omer Support. Note: Do not return products to Tut Sy stems wit hout first obtaini ng an RMA number. Units received without prope r authorization will be returned to the sender. Appendix C [...]

  • Page 103

    Appendix TUT Systems, Inc Page 103 of 104 P/N 220-06288-20 Assistance For assistance, contact your nearest representative. FCC Radio Frequency Interference Statement This equipment has been tested and found to com ply with the li mits for a com puting device, pursuant to Part 15 of FCC Rul es. These limi ts are designed to provide reasonable protec[...]

  • Page 104

    Appendix TUT Systems, Inc Page 104 of 104 P/N 220-06288-20 prior notice. Purchasers of Tut System s’ products should m ake their own evaluati on to determine the suitability of each product for their specific application. Tut System s’ obligations regarding the use or appli cati on of its products shal l be lim ited to those commitm ents to the[...]