To control and monitor the device, various management interfaces can be used.

To access the device, you may use network connection via Telnet or SSH as well as direct connection via RS-232 compliant console port. For Telnet, SSH or console port connections, the command line interface is used for device management.

Factory settings contain trusted zone description and IP address for device management access – 192.168.1.1/24.

Trusted zone includes the following interfaces:

  • for ESR-10: GigabitEthernet 1/0/2-6;
  • for ESR-12V(F), ESR-14VF: GigabitEthernet 1/0/2-8;
  • for ESR-15: GigabitEthernet 1/0/2-5;
  • for ESR-20: GigabitEthernet 1/0/2-4;
  • for ESR-21: GigabitEthernet 1/0/2-12;
  • for ESR-30: GigabitEthernet 1/0/3-4;
  • for ESR-100: GigabitEthernet 1/0/2-4;
  • for ESR-200: GigabitEthernet 1/0/2-8;
  • for ESR-1000: GigabitEthernet 1/0/2-24;
  • for ESR-1200: GigabitEthernet 1/0/2-16, TengigabitEthernet 1/0/3-8;
  • for ESR-1500: GigabitEthernet 1/0/2-8, TengigabitEthernet 1/0/2-4;
  • for ESR-1511: GigabitEthernet 1/0/2-8, TengigabitEthernet 1/0/1-4;
  • for ESR-1700: GigabitEthernet 1/0/2-4, TengigabitEthernet 1/0/3-12;
  • for ESR-3100: GigabitEthernet 1/0/2-8, TengigabitEthernet 1/0/3-8;
  • for ESR-3200: GigabitEthernet 1/0/2-8, TengigabitEthernet 1/0/3-12.

By default, the user 'admin' with the password 'password' is defined in factory settings.

For each management interface provided, there are unified configuration operating principles. When modifying and applying the configuration, you should follow the specific sequence described herein that is intended to protect the device from misconfiguration.

Command line interface (CLI)

Command Line Interface (CLI) allows to perform the device management and monitor its operation and status. You will require the PC application supporting Telnet or SSH protocol operation or direct connection via the console port (e.g. HyperTerminal).

Command line interface enables user authorization and restricts access to commands depending on their access level, provided by the administrator.

You can create as many users as you like, access rights will be assigned individually to each user.

To ensure command line interface security, all commands are divided into 2 categories–privileged and unprivileged. Privileged commands basically include configuration commands. Unprivileged commands include monitoring commands.

The system allows multiple users to connect to the device simultaneously.

Types and naming procedure of router interfaces

Network interfaces of various types and purposes are used for the router operation. The naming system allows you to uniquely address the interfaces by their functional purpose and location in the system. The following table contains the list of interfaces types.

Table 55 – Types and naming procedure of router interfaces

Interface type

Designation

Physical interfaces

Designation of physical interface includes its type and identifier.

The identifier of physical interfaces is as follows: <UNIT>/<SLOT>/<PORT>, where

  • <UNIT> – number of a device in a device group,
  • <SLOT> – device module number or '0' if the device does not consist of modules,
  • <PORT> – port sequence number.

1Gbps ports

gigabitethernet <UNIT>/<SLOT>/<PORT>

Designation example: gigabitethernet 1/0/12

It is permitted to use short name, for example, gi1/0/12.

10Gbps ports

tengigabitethernet <UNIT>/<SLOT>/<PORT>

Designation example: tengigabitethernet 1/0/2

It is permitted to use short name, for example, te1/0/2.

40Gbps ports

fortygigabitethernet <UNIT>/<SLOT>/<PORT>

Designation example: fortygigabitethernet 1/0/2

It is permitted to use short name, for example, fo1/0/2.

Channel aggregation groups

Designation of channel aggregation group includes its type and identifier:

port-channel <CHANNEL_ID>

Designation example: port-channel 6

It is permitted to use short name, for example, po1.

Sub-interfaces

Designation of sub-interface is generated from the designation of basic interface and sub-interface identifier (VLAN) separated by a dot.

Designation examples:

  • gigabitethernet 1/0/12.100
  • tengigabitethernet 1/0/2.123
  • fortygigabitethernet 1/0/2.1024
  • port-channel 1.6

Sub-interface identifier may take values of [1..4094].

Q-in-Q interfaces

Designation of Q-in-Q interface is generated from the designation of basic interface, service VLAN identifier and user VLAN identifier separated by a dot.

Designation examples:

  • gigabitethernet 1/0/12.100.10
  • tengigabitethernet 1/0/2.45.12
  • fortygigabitethernet 1/0/2.408.507
  • port-channel 1.6.34

Service and user VLAN identifier may take values of [1..4094].

E1 interfaces

Designation of E1 interface includes its type and identifier.

E1 interfaces identifier is as follows: <UNIT>/<SLOT>/<STREAM>, where

  • <UNIT> – number of a device in a device group,
  • <SLOT> – number of device E1 module,
  • <STREAM> – E1 flow sequence number.

Designation example: e1 1/0/1

E1 channels aggregation groups

Designation of E1 channels aggregation group includes its type and interface sequence number:

multilink <CHANNEL_ID>

Designation example: multilink <CHANNEL_ID>

Logical interfaces

Designation of logical interface is the interface sequence number:

Designation examples:

  • loopback 4
  • bridge 60
  • service-port 1

Serial interfaces

Designation of serial interface includes its type and identifier.

Serial interfaces identifier is as follows: <UNIT>/<SLOT>/<STREAM>, where

  • <UNIT> – number of a device in a device group [1..1],
  • <SLOT> – device module number or '0' if the device does not consist of modules,
  • <PORT> – port sequence number.

Designation example: serial 1/0/1

USB modems

Designation of USB modem includes its type and sequence number:

modem <MODEM-NUM>

Designation example: modem 1

FXS/FXO ports

Designation of FXS/FXO ports includes its type and sequence number:

interface voice-port <NUM>

Designation example: voice-port 1

1. Number of interfaces of each type depends on the router model.
2. The current firmware does not support for devices stacking. A device number in unit device group can only take the value of 1.
3. Some commands support for simultaneous operation with the interface group.
To specify the interface group, you may use a comma-separated list or specify a range of identifiers using a hyphen '-'.

Examples of interface groups specifying:

interface gigabitethernet 1/0/1, gigabitethernet 1/0/5
interface tengigabitethernet 1/0/1-2
interface fortygigabitethernet 1/0/1-2
interface gi1/0/1-3,gi1/0/7,te1/0/1,fo1/0/1
CODE

Types and naming procedure of router tunnels

Network tunnels of various types and purposes are used for the router operation. The naming system allows you to uniquely address the tunnels by their functional purpose. The following table contains the list of tunnels types.

Table 56 – Types and naming procedure of router tunnels

Tunnel type

Designation

L2TPv3 tunnel

Designation of L2TPv3 tunnel includes the type and sequence number of a tunnel:

l2tpv3 <L2TPV3_ID>

Designation example: l2tpv3 1

GRE tunnel

Designation of GRE tunnel includes the type and sequence number of a tunnel:

gre <GRE_ID>

Designation example: gre 1

SoftGRE tunnel

Designation of SoftGRE tunnel includes the type and sequence number of a tunnel and, optionally, a virtual interface VLAN ID:

softgre <GRE_ID>[.<VLAN>]

Designation examples: softgre 1, softgre 1.10

IPv4-over-IPv4 tunnel

Designation of IPv4-over-IPv4 tunnel includes the type and sequence number of a tunnel:

ip4ip4 <IPIP_ID>

Designation example: ip4ip4 1

IPsec tunnel

Designation of IPsec tunnel includes the type and sequence number of a tunnel:

vti <VTI_ID>

Designation example: vti 1

Logical tunnel (tunnel between VRF)

Designation of logical tunnel includes the type and sequence number of a tunnel:

lt <LT_ID>

Designation example: lt 1

Number of tunnels of each type depends on the router model and firmware version.