C3 CMTS User Documentation
Contents
1. See also Filtering Traffic page 8 7 cable submgmt default filter group page 10 125 show cable filter page 10 56 cable filter page 10 106 Parameter Values Description group id 1 to 1024 index id 1 to 1024 dest port 0 to 65536 0 to 256 IP Protocol all Match all protocols icmp Match the ICMP protocol protocol igmp Match the IGMP protocol ip IP in IP encapsulation tcp Match the TCP protocol udp Match the UDP protocol tos mask 0 to 255 tos value 0 to 255 src port 0 to 65536 IP source port number flag mask 0 63 flag value 0 63 status Row status for pktFilterEntry tcp status Row status for tcpUdpEntry ARRIS PROPRIETARY All Rights Reserved 10 Command Line Interface Reference Examples Create a new filter using cable filter group lt 1 1024 gt index lt 1 1024 gt Enter values for filter as required cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou Oxff Value gt cable filter group lt 1 1024 gt index lt 1 1024 gt tcp flags lt 0x0 0x3f Mask gt lt 0Ox0 Ox3f Value gt cable filter group lt 1 1024 gt index lt 1 1024 gt src ip lt N N N N gt cable filter group lt 1 1024 gt index lt 1 1024 gt src mask lt N N N N gt cable filter group lt 1 1024 gt index lt 1 1024 gt src port lt 0 65536 gt lt 1 1024 gt index lt 1 1024 gt dest ip lt N N N N gt lt 1 1024 gt index lt 1 1024 gt dest mask lt N N N2. ISP BLUE ISP DHCP Server ISP E router pe 205 2 3 254 7 ISP BLUE 1 router ae ISP ana Sf 810e rer Pe ies sak tia i Fast Ethernet pe inks ProCurve nore ae a 42 7 oor 4 802 10 rz 10 6 0 2 24 oo trunk paints P RE 1 t fediblus router RED 1 1 r 204 3 4 5 10 6 0 1 24 i baad 1 I fa 0 1 0 fa 0 0 0 4 fa00 1 fa 0 0 2 tag none tag 11 1 tag 22 tag 33 Bridge Bridge Bridge Bridge 2 Group Group Group Group ISP RED 3 DHCP Server A ca 1 0 0 1 ca 1 0 1 ca1 0 2 TF ca1 0 3 I tag none tag 1 tag 2 H tag 3 q l native native 1 native ip 12 bg bg L I 1 routing n all modems in 10 6 0 0 24 ISP RED lt mi ISP BLUE router ISP o ISP BLUE router 204 3 4 5 router ISP RED ISP router 3 56 7 9 205 2 3 254 router router 3 56 7 9 204 3 4 5 205 2 3 254 Figure 5 1 Example of an Open Access system 5 2 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Cable VPN Implementation VLANs combined with the ability to create native VLANs on the cable sub interfaces may be used to create virtual private networks In the above example each subscriber would in effect be provisioned by the cable oper ator to join one of three virtual private networks each virtual private network being connected to a single ISP Subscribers assigned to an ISP in the above example by the provisioning system can have complete downstream priva
3. C3 config if no cable upstream 0 shutdown C3 config if no cable upstream 1 shutdown C3 config if show run inc MIB MIB ifTable 1 up _ifAdmin Enable ifLinkTrap MIB ifTable 2 up _ifAdmin Enable ifLinkTrap MIB ifTable 3 up _ifAdmin Disable ifLinkTrap MIB ifTable 4 up ifAdmin Enable ifLinkTrap MIB ifTable 5 up _ifAdmin Disable ifLinkTrap MIB ifTable 6 up ifAdmin Disable ifLinkTrap MIB ifTable 11 up _ifAdmin Enable ifLinkTrap MIB ifTable 12 up _ifAdmin Enable ifLinkTrap Or from an SNMP viewpoint SNMP table part 2 index Descr 1 ETH WAN ARRIS C3 Broadcom 5421 Rev Al 2 ETH MGT ARRIS C3 Broadcom 5421 Rev Al 3 MAC ARRIS C3 Broadcom 3212 Rev B1 4 DS 1 ARRIS C3 Broadcom 3034 Rev Al 5 US IF 1 ARRIS C3 Broadcom 3138 Rev A2 6 US IF 2 ARRIS C3 Broadcom 3138 Rev A2 11 US CH 1 ARRIS C3 Broadcom 3138 Rev A2 12 US CH 2 ARRIS C3 Broadcom 3138 Rev A2 SNMP table part 3 index Type 1 ethernetCsmacd ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide ethernetCsmacd docsCableMaclayer docsCableDownstream docsCableUpstream docsCableUpstream 205 205 NOR DOB WN ere SNMP table part 7 index AdminStatu J u a NORD OB WN Ko 7S OO OS TOS RR C3 config if cable upstream 1 shutdown C3 config if show run inc MIB MIB ifTable 1 up _ifAdmin Enable ifLinkTrap MIB ifTable 2
4. Dhcp Relay enabled Dhcp Relay information option enabled Relaying non broadcast Dhcp packets Dhcp Relay Agent not validating Dhcp Renew destination IP Dhcp Relay giaddr policy DEFAULT helper address 10 17 42 10 Broadcast throttled 0 drops IP throttled 0 drops Cable Source Verify 0 verification attempts 0 denied 0 DHCP LeaseQueries transmitted MTU 1764 bytes BW 30341 Kbit Downstream utilization 0 Upstream Avg utilization 0 Output q ueu e 0 drops input queue 3 drops 5 minutes input rate 56 bits sec 0 packets sec 5 minutes output rate 209344 bits sec 0 packets sec Release 4 3 Standard 100 7 packets input 77922 bytes Received 10 broadcasts O input errors 330 487 packets output 21903492 bytes 0 output errors ARRIS PROPRIETARY All Rights Reserved 10 79 10 Command Line Interface Reference show interface cable 1 0 classifiers Syntax show interface cable 1 0 classifiers classid verbose Displays all packet classifiers for the cable interface or detailed information about a single classifier show interface cable 1 0 downstream Displays downstream statistics for the cable interface Example C3 show interfaces cable 1 0 downstream Cable1 0 downstream is up 3125636 packets output 190771028 bytes 0 discards 0O output errors 0 total active devices 0 active modems C3 show interface cable 1 0 modem Syntax show interface cable 1 0 modem s
5. str The cable group description See also show running configuration page 10 96 10 112 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable group frequency index Syntax cable group id frequency index freqIndex Assigns a group of frequency bands to the given upstream group You must assign frequency bands to a upstream group before adding upstream chan nels The parameters are Keyword Description id The cable group identifier 1 to 6 freqIndex Frequency index 1 to 10 The C3 always ensures that the channels in a group are within the frequency bands assigned to the group and that no channel overlap occurs See also cable frequency band page 10 111 show cable group page 10 58 cable group load balancing Syntax Release 4 3 Standard no cable group id load balancing initial numeric periodic Configures distribution of cable modems across grouped upstream channels Each upstream channel has a group ID assigned to it which is used to asso ciate that channel with other upstream channels on the same physical cable Cable groups thus reflect the physical cable plant layout and specifically the reverse path combining of the plant All upstream channels in the one cable ARRIS PROPRIETARY All Rights Reserved 10 113 10 Command Line Interface Reference groups should be available to a modem that can see any one of these chan nels E
6. DEFVAL 0 cTapMediationEntry 8 cTapMediationRetransmitType OBJECT TYPE SYNTAX Integer32 0 127 MAX ACCESS read create STATUS current DESCRIPTION If RTP with Ack Nack resilience is selected as a transport the mediation process requires an RTP payload type for data transmissions and a second RTP payload type for retransmissions This is the RTP payload type for retransmissions This object is only effective when the value of cTapMediationTransport is rtpNack DEFVAL 0 cTapMediationEntry 9 cTapMediationTimeout OBJECT TYPE SYNTAX DateAndTime MAX ACCESS read create STATUS current DESCRIPTION The time at which this row and all related Stream Table rows should be automatically removed and the intercept function cease Since the initiating network manager may be the only E 4 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide device able to manage a specific intercept or know of its existence this acts as a fail safe for the failure or removal of the network manager The object is only effective when the value of cTapMediationStatus is active cTapMediationEntry 10 cTapMediationTransport OBJECT TYPE SYNTAX INTEGER udp 1 rtpNack 2 tcp 3 sctp 4 MAX ACCESS read create STATUS current DESCRIPTION The protocol used in transferring intercepted data to the Mediation Device The following protocols may be supported udp PacketCable
7. Cable 1 0 Upstreams 0 5 Figure 3 5 CMTS rear view Procedure 3 3 Follow these steps to connect cables to the CMTS 1 Connect the upstream cable from your plant to the appropriate upstream ports The upstream ports are located on the lower board and are numbered left to right as viewed from the rear k NOTE Connect all RF ports to SELV circuits meeting the requirements of SELV as defined in UL60950 Your headend must provide suitable protection between the RF ports and the CATV outside plant 2 Connect the downstream cable to the downstream port the F connector located at the upper left 3 Connect a PC to the serial connector male DB9 connector on the upper interface module The pin out for this connector is designed to function with a PC when used with a straight through cable and is shown in the following table The serial port operates at 38 400 bps with 8 data bits 1 stop bit and no parity bit Pin Signal 1 Data Carrier Detect DCD 2 Receive Data RD 3 8 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Pin Signal Transmit Data TD Data Terminal Ready DTR Ground GND Data Set Ready DSR Request to Send RTS Clear to Send CTS Unused WO CO NI DD WM BI Ww 4 optional Connect an Ethernet cable between the FE1 port and the network manager 5 Connect an Ethernet cable between the FEO port and the network bri
8. Keyword Description host Unicast all cable originated host DHCP broadcast messages to the specified IP address Unicast all cable modem DHCP broadcast messages to the cable modem specified IP address You can specify up to 5 helper addresses each for cable modems and hosts CPE for redundancy or load sharing The C3 performs no round robin allo cation but unicasts the relayed DHCP to each of the helper addresses specified The cable modem or CPE responds to and interacts with the first DHCP server that replies See also jp dhcp relay page 10 217 ip dhcp relay information option page 10 218 cable dhcp giaddr page 10 215 Directing DHCP Broadcasts to Specific Servers page 7 6 ARRIS PROPRIETARY All Rights Reserved 11 14 05 dhcp lq params Syntax ip dhcp relay Syntax Release 4 3 Standard C3 CMTS User Guide dhcp lq params leasequery code active code unassigned code timeout ticks Sets the DHCP codes used for LEASEQUERY LEASEACTIVE and UNASSIGNED responses and optionally the leasequery response timeout The parameters are Keyword Description code The DHCP response code Valid range O to 255 ticks The timeout in 1 60 second ticks Valid range O sets the default 30 to 255 Default 105 ticks 1 75 seconds Example set up the default CNR LEASEQUERY parameters dhcp lq params leasequery 0 active 0 unassigned 0 timeout 0 no ip dhcp relay non broadcast
9. Sets the accept lifetime for the key The parameters are starttime stoptime the time to start and stop accepting this key The format is AA mm ss day month accept lifetime year starttime duration duration the number of seconds to accept this key infinite stoptime Valid range 1 to 2147482646 seconds infinite always accept this key The default is to accept the key immediately with an infinite lifetime end Exit to keychain configuration mode exit Exit configuration mode to privileged mode help Display this list of subcommands no key string name Set or delete the text for this key Sets the send lifetime for the key The parameters are starttime stoptime the time to start and stop sending this key The format is AA mm ss day month year send lifetime starttime duration n infinite stoptime duration the number of seconds to send this key Valid range 1 to 2147482646 seconds infinite always send this key The default is to allow sending the key immediately with an infinite lifetime show item Show system info The no form of this command removes the specified key from the keychain See also show key chain page 10 21 ip rip authentication page 10 185 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 177 10 Command Line Interface Reference moe7 Configure Line Mode Syntax line console vty start end Configur
10. update giaddr with 10 1 1 1 for modems update giaddr with 10 2 2 1 for hosts cable dhcp giaddr policy If cable dhcp giaddr policy is activated the cable sub interface used on the C3 to relay the DHCP as dictated by cable helper address and ip route should be configured with a secondary IP address Otherwise the C3 uses the primary IP address as the giaddr even with dhcp giaddr policy activated The following example uses VSE encoding and cable sub interfaces to specify the host giaddr cable 1 0 0 one subnet used for all cable modem access ip address 10 1 1 1 255 255 255 0 ip dhcp relay cable helper address 10 9 9 1 cable modem cable dhcp giaddr primary cable 1 0 2 VSE modems with tag 2 will have attached CPE mapped to this sub interface ip address 10 2 2 1 255 255 255 0 encapsulation dotlq 2 native use the primary sub interface address for host giaddr ip dhcp relay cable helper address 10 9 9 1 host cable dhcp giaddr primary cable 1 0 3 VSE modems with tag 3 will have attached CPE mapped to this sub interface ip address 10 3 3 1 255 255 255 0 encapsulation dotlq 3 native use the primary sub interface address for host giaddr ip dhcp relay cable helper address 10 9 9 1 host cable dhcp giaddr primary Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 7 13 7 Managing Cable Modems 7 14 The following examples uses map cpes and cable sub interfaces to specify the h
11. 13 accessDenied CMTS does not allow modem to pass traffic ARRIS PROPRIETARY All Rights Reserved 11 14 05 Data Errors C3 CMTS User Guide Use the following MIBs to check for data errors Table 7 4 Data Errors MIB Object Description docsIfSigQUnerroreds Number of data packets that arrived undamaged docslfSigQCorrecteds Number of data packets that arrived damaged but could be corrected docsIfSigQUncorrectables Number of data packets that arrived so damaged that they were discarded Signal to Noise Ratio Use the following MIB to determine the as measured at the cable modem Table 7 5 DS signal to noise ratio downstream signal to noise ratio MIB Object Value Description 35 to 37 Typical ratio for clean plant Below 29 QAM256 is not usable docslIfSigQSignalNoise QAM64 performance is Below 26 significantly impaired 20 Modem cannot function Downstream Channel Use the following MIBs to determine downstream channel issues Table 7 6 DS channel issues MIB Object Value Description docsIfCmStatusLostSyncs small should be Number of times modem detects downstream had trouble A high number indicates problems on the downstream docsIfDownChannel Frequency Downstream frequency to which the modem is listening docsIfDownChannelWidth 6MHz or whether the CMTS is 8MHz Set automatically based on
12. 4710 15 star 4 0 4 4 1 0 8 bin 18 bin 4 0 4 8 start 4 1 0 21 star 4 1 0 18 star 4 1 0 17 start 4 1 0 23 star 4 1 0 27 star configuration 1 0 0 12 star 1 0 0 19 star 4 2 0 2 start 4 2 0 3 start 4 2 0 5 star 4 1 0 31 star ARRIS PROPRIETARY All Rights Reserved 0 2 start tup tup tup tup _backups tup tup up up tup tup 10 53 10 Command Line Interface Reference rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration kup O O O O0 O0 O0 OT OF OVO nO OO A Oo kup Listing Directory C drwxrwxrwx 1 0 drwxrwxrwx 1 0 drwxrwxrwx 1 0 drwxrwxrwx 1 0 Listing Directory C drwxrwxrwx 1 0 drwxrwxrwx 1 0 drwxrwxrwx 1 0 drwxrwxrwx 1 0 drwxrwxrwx 1 0 drwxrwxrwx 1 0 Listing Directory C drwxrwxrwx 1 0 drwxrwxrwx 1 0 Listing Directory C drwxrwxrwx 1 0 drwxrwxrwx 1 0 Listing Directory C drwxrwxrwx 1 0 drwxrwxrwx 1 0 Listing Directory C drwxrwxrwx 1 0 drwxrwxrwx 1 0 10 54 0 22661 0 22661 0 19306 0 19306 0 19094 0 19307 0 19306 0 19087 0 19094 security 0 2048 0 2048 0 2048 0 2048 CONFIG 0 2048 0 2048 0 2048 0 2048 0 2048 0 20
13. Enables the C3 to modify DHCP requests from cable modems or hosts attached to cable modems by updating the giaddr field with the WAN port IP address The effect of this command is to allow the DHCP server to unicast DHCP responses back to the C3 reducing backbone broadcasts Use the optional keyword non broadcast to prevent relaying of DHCP snooped unicast messages Use no ip dhcp relay default to disable DHCP relay This command sends broadcast DHCP messages received at the cable sub interface to all bridged ARRIS PROPRIETARY All Rights Reserved 10 217 10 Command Line Interface Reference fastethernet sub interfaces When specified on an IP routing only cable sub interface no DHCP relay occurs at all See also DHCP Relay Mode page 7 5 ip dhcp relay information option page 10 218 cable dhcp giaddr page 10 215 cable helper address page 10 216 ip dhcp relay information option Syntax no ip dhcp relay information option Enables modification of DHCP requests from modems or hosts attached to modems to include the modem s address in the option 82 field The CMTS adds option 82 information to any DHCP Discover or Request messages received from a cable modem or attached host DHCP relay ip dhcp relay must be active for this command to have any effect To disable use no ip dhcp relay information option which passes relayed DHCP requests with no option 82 modification See also cable dhcp giaddr page 10 21
14. Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 189 10 Command Line Interface Reference Syntax Syntax 10 190 FEOO port 0 0 FEO1 port 0 1 Example C3 gt enable Password C3 configure terminal C3 config interface fastethernet 0 0 C3 config if For fastethernet interfaces the following commands are available duplex duplex auto Sets the duplex mode of the interface The default is auto which sets both duplex mode and interface speed It should be acceptable under most condi tions ip address ip address ipaddr ipmask secondary Sets the interface IP address and subnet mask If the secondary option is specified specifies a secondary IP address for the interface ARRIS PROPRIETARY All Rights Reserved 11 14 05 Syntax Syntax Release 4 3 Standard C3 CMTS User Guide ip broadcast address ip broadcast address ipaddr Sets the broadcast address for this interface ip igmp proxy no ip igmp proxy non proxy multicasts Enables or disables IGMPv2 proxy operation on this sub interface For a fastethernet sub interface to be proxy enabled the sub interface must e have an IP address configured or e beamember of a bridge group with an IP address configured on at least one sub interface of the group Each fastethernet sub interface must be separately enabled in this manner as each sub interface connects to a physically different network For
15. Subnet mask VLAN ID if necessary Sub interface 8 Configuration IP Address Subnet mask VLAN ID if necessary Fastethernet 0 1 Configuration Physical Interface Configuration IP Address Subnet mask VLAN ID if necessary G 4 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Sub interface 1 Configuration Sub interface 2 Configuration Sub interface 3 Configuration Sub interface 4 Configuration Sub interface 5 Configuration Sub interface 6 Configuration Sub interface 7 Configuration Release 4 3 Standard C3 CMTS User Guide IP Address Subnet mask VLAN ID if necessary IP Address Subnet mask VLAN ID if necessary IP Address Subnet mask VLAN ID if necessary IP Address Subnet mask VLAN ID if necessary IP Address Subnet mask VLAN ID if necessary IP Address Subnet mask VLAN ID if necessary IP Address ARRIS PROPRIETARY All Rights Reserved G 5 G Configuration Forms Subnet mask VLAN ID if necessary Sub interface 8 Configuration IP Address Subnet mask VLAN ID if necessary Cable Configuration IP Networking Make additional copies of this checklist for each sub interface Helper Address 1 O for modems O fo
16. Verify that the FEO and FE1 ports on the back of the CMTS have illuminated green Link LEDs for the port that is being used Wait for the message Press any key to stop auto boot to appear on the console then press any key to stop auto booting before the count reaches 0 k NOTE Auto booting continues after two seconds At prompt type help or and press Enter to view the different commands available for boot options The first commands you see are user level commands CMTS gt Command Description boot Boot the CMTS using current boot parameters bootShow Display current boot parameters enable Enable Supervisor Factory Level sysShow Show system configuration timeShow Displays current Date and Time from RTC ARRIS PROPRIETARY All Rights Reserved 11 14 05 dir vlevel reboot help gt C3 CMTS User Guide Show directory of Compact Flash Set Verbosity Level Reboot Display general help or help about a command Display general help or help about a command Boot the CMTS using current boot parameters End of procedure Procedure 3 6 Setting Boot Parameters 1 Enter privileged mode using the enable command to change the boot parameters The first time you enter this mode there is no password set and you can enter with no password Use the setpwd command if a password is required in the future Several more commands are now available Type to see the entire list gt e
17. e In the case of CPE traffic allocated to cable 1 0 11 incoming frames may be layer 2 they are bridged using bridge group 1 e Inthe case of CPE traffic allocation to cable 1 0 13 only layer 3 traffic is accepted non bridging sub interface and CPE DHCP is directed to only the DHCP server at 10 0 0 1 CPE source IP addresses must belong to subnet 10 11 0 0 16 or be dropped conf t ip routing default cm subinterface cable 1 0 0 default cpe subinterface cable 1 0 13 bridge 1 cable 1 0 0 for modem DHCP only ip address 10 99 99 1 ip dhcp relay cable helper address 10 0 0 1 host cable dhcp giaddr primary cable 1 0 1 for modems once allocated an IP address ip address 10 99 98 1 cable 1 0 11 for cpe layer 2 forwarding for CPE traffic via modem with VSE tag encapsulation dotlq 11 native bridge group 1 11 cable 1 0 13 for cpe layer 3 forwarding for CPE traffic via modem with VSE tag no bridge group ip address 10 11 0 1 255 255 0 0 ip dhcp relay cable helper address 10 0 0 1 host cable dhcp giaddr primary ip source verify subif encapsulation dotlq 13 native 13 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard C3 CMTS User Guide exit exit Example Modems can be mapped by source IP to other cable sub interfaces In the following example if the provisioning system allocated the modem to subnet 10 99 98 0 modem traffic will be allocated the cable 1 0
18. lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil Lation lation profil lation profil lation lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil profil profil lation profil Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le lation profil Release 4 3 Standard N wo request request request initial initial initial station station station advPhys advPhys advPhys advPhyL advP advP advP advPhyU advPhyU request request request initial initial initial station station station advPhys advPhys advPhys advPhyL advP advP advP advPhyU advPhyU request request request initial initial initial station station station advPhys advPhys advPhys advPhyL advP advP advP advPhyU advPhyU 32 request 32 request 32 request NONDNNNNNNNNN DN DN OOO IO OOO OO OO O OO hyL hyL hyU NNN wo OO WWWWWWW WWW WWW
19. 10 252 The time in seconds after which the C3 flushes and stops advertising invalid routes Valid range 1 to 4294967295 sec the time must be greater than or equal to the invalid timer Default 300 seconds no validate update source Enables or disables sanity checks against received RIP updates based on the source IP address of the packet This check is disabled by default ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide version Syntax version 1 2 Sets the version of RIP to use over all C3 interfaces In most cases you should use the default version 2 RIP v1 supports only classful networks the traditional class A B C subnetworks which have been largely supplanted by classless subnets RIP vi summarizes all routes it knows on classful network boundaries so it is impossible to subnet a network prop erly via VLSM Thus select version 1 only if the network the C3 is connected to requires it Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 253 10 Command Line Interface Reference Route map specific Subcommands route map Syntax 10 254 Route map commands can only be entered in the configuration mode of the CMTS Entering the command causes the CLI to enter into the route map configuration level This is signified by the change in the CLI prompt from config to config route map Any changes made in the route map configuration are only commit
20. 2 Boot from Compact Flash Select desired option 2 Application Image path C 4 3 0 32 bin CMTS Ip Address 10 1 1 2 CMTS Subnet Mask 255 255 255 0 TFTP Server Ip Address 10 1 1 1 Gateway Ip Address 10 1 1 1 Saving in non volatile storage gt gt Confirm the boot options ARRIS PROPRIETARY All Rights Reserved 11 14 05 CMTS gt bootShow C3 CMTS User Guide xxx Current Boot Parameters Boot from Boot file Compact Flash C 4 3 0 32 bin CMTS IP Address LOTT CMTS subnet mask ffffffo0 Gateway Address FOSIS Deel CMTS Name CMTS Network port FE 0 Vlan Tagging Disabled Vlan Id 1 0x1 CMTS gt If the Network port shows FE 1 use the wan command at the prompt to change this Use bootShow again to confirm this change Use the following script to configure the C3 this script assumes a factory default configuration If not in a factory default condition the factory default configuration can be restored by erasing the stored configuration file name is startup configuration using write erase from privilege mode Then issue a reload command responding first with no and then yes to reboot The C3 detects no startup configuration file and re creates it If the C3 has been used elsewhere in the past this step is highly recom mended as it may be simpler than inspecting and changing the current configuration Script example Copy this script to the clipboard log on at
21. Authentication timeout 300 secs Authentication retries 3 TCP port in use 22 Secure CLI access disable Secure FTP access disable See also show ip ssh page 10 20 Displays information about the terminal session environment including the terminal type and command history size Example C3 gt show terminal Type ANSI Length 54 lines Width 80 columns Status Ready Automore on Capabilities Editing is Enabled ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide History is Enabled history size is 10 See also terminal page 10 10 show tftp server statistics show users Release 4 3 Standard Displays the current TFTP server statistics Example C3 show tftp server statistics TFTP root directory is read request s is were made read request s is were dropped read request s had errors bytes were successfully read oooo o write request s is were made write request s is were dropped write request s had errors bytes were successfully written oooo o TFTP server is inactive IP checking is done on TFTP transactions C3 gt Displays active management sessions on the CMTS serial or telnet Example C3 gt show users Line Disconnect Location User Timer ARRIS PROPRIETARY All Rights Reserved 10 25 10 Command Line Interface Reference show version 10 26 tty 0 avty 0 C3 gt Displays none serial port arris 0 15 00 192
22. C3 show debug Mac Addresses enabled for Debug debug cable mac address 00a0 73le 3f84 ffff ffff ffff Primary Sids enabled for Debug Example Debugging events message types which are enabled debug cable dhcp relay Contents of Cable Modem Database debuglevel I F PrimSid MAC address Debug C1 0 U0 1 00a0 731e 3f84 Terse C3 Displays the current chassis power supply information fan status and temper ature readings Example C3 show environment Front Panel Display attached HW rev 2 SW rev 7 Power supply status PSU1 off PSU2 on Temperature status CPU1 34 0 degrees CPU2 32 0 degrees Kangal 36 0 degrees Kanga2 36 0 degrees ARRIS PROPRIETARY All Rights Reserved 10 71 10 Command Line Interface Reference show file Syntax 10 72 Fan status Fan Fan Fan Fan Fan Fan Fan Fan LCD status Contrast C3 show file descriptors upper limit 12 lower limit 2 1 Nok WN LL Fo OWOAAI AD OB WW DY rotating rotating rotating rotating rotating rotating 1024 Cadant CMTS V 4 2 0 18 IME 17 12 2 4 MG IP 10 44 116 3 CMS T 008 A C3 ER 007 R 005 DS 117 0Mh Z systems Lists detailed internal information about file usage depending on the keyword used The parameters are Keyword Description descriptors Lists all open file descriptors systems Example C3 show file descrip
23. C3 show run inc MIB MIB ifTable up ifAdmin Enable ifLinkTrap 1 MIB ifTable 2 up _ifAdmin Enable ifLinkTrap MIB ifTable 3 up _ifAdmin Disable ifLinkTrap 4 5 MIB ifTable up ifAdmin Enable ifLinkTrap MIB ifTable up _ifAdmin Disable ifLinkTrap MIB ifTable 6 up ifAdmin Disable ifLinkTrap MIB ifTable 11 up ifAdmin Enable ifLinkTrap MIB ifTable 12 up ifAdmin Enable ifLinkTrap ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide ntp Syntax no ntp server ipaddr interval int delete disable enable master Configures C3 time and date using an external NTP server The parameters are Keyword Description server Sets the address of the Network Time Protocol server delete Removes the specified NTP server from the list disable Disables polling of the specified server enable Enables polling of a previously disabled server intewal The time in seconds the C3 waits between NTP updates Valid range 1 to 2147483647 seconds master Designates the specified server as the master router ospf phs enable Syntax phs enable Enables PHS support Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 157 10 Command Line Interface Reference router ospf Syntax router rip Syntax 10 158 no router ospf Enables or disables the Open Shortest Path First OSPF routing process This command is only av
24. HMAC Auth failure 83020203 SYSLOG_WARNING Service Change ACK rejected Message syntax error 66010100 SYSLOG_NOTICE Missing BP Configuration Setting TLV Type s 66010200 SYSLOG_NOTICE d BP Configuration Setting Value s for Type s 66030102 SYSLOG_ERROR Auth Reject No Information 66030103 SYSLOG_ERROR Auth Reject Unauthorized CM 66030104 SYSLOG_ERROR Auth Reject Unauthorized SAID 66030108 SYSLOG_ERROR Auth Reject Permanent Authorization Failure Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved H 5 H C3 CMTS Syslog Events and SNMP Traps Event Msg Num Severity Message Text 66030109 SYSLOG_ERROR Auth Reject Time of Day not acquired 66030111 SYSLOG_ERROR CM Certificate Error 66030202 SYSLOG_ERROR Auth Invalid No information 66030203 SYSLOG_ERROR Auth Invalid Unauthorized CM 66030205 SYSLOG_ERROR Auth Invalid Unsolicited 66030206 SYSLOG_ERROR Auth Invalid Invalid Key Sequence Number 66030207 SYSLOG_ERROR Auth Invalid Message Key Request Authentication Failure 66030300 SYSLOG_ERROR Unsupported Crypto Suite 66050102 SYSLOG_ERROR Key Reject No information 66050103 SYSLOG_ERROR Key Reject Unauthorized SAID 66050203 SYSLOG_ERROR TEK Invalid No information 66050206 SYSLOG_ERROR TEK Invalid Invalid Key Sequence Number 66060200 SYSLOG_ERROR Unsupported Crypt
25. If a mapped frame has an 802 1Q tag the C3 verifies that the tag is correct for the mapped sub interface if the tag does not match the C3 drops the frame 802 1Q VLAN tags are used to allocate incoming packets to FastEthernet sub interfaces with matching encapsulation dotiq specifications Only one FastEthernet sub interface per physical interface may have no encapsulation configured All untagged traffic is directed to this subinter face If a second FastEthernet sub interface is defined with no VLAN tag the sub interface configuration is ignored and a CLI message warns of the incomplete configuration and informs the user which is the current untagged sub interface If a global specification default cm subinterface cable X Y Z is present in the C3 global configuration then all modem traffic received is mapped to the nominated cable sub interface until the cable modem receives an IP address from DHCP and moves to its correct sub interface Note this is a default mapping and will be overridden by any modem IP address based mapping once the modem has an IP address If no default is specified the C3 automatically assigns cable 1 0 0 as the default sub interface When a cable modem receives a DHCP Ack the C3 inspects the assigned IP address to determine which sub interface that the cable modem should be assigned to The C3 maps all subsequent IP traffic from that cable modem to a sub interface that has the same subnet specified If no
26. Mod IUC req ini sta sho adv adv PRPPRPRPP PR C3 long uest tial tion ei Phys PhyL Type Preamb length qpsk 64 qpsk 640 qpsk 384 qpsk 84 qpsk 96 64qam 104 64qam 104 Release 4 3 Standard C3 CMTS User Guide show cable modulation profile advphy n type verbose Displays information about the specified modulation profile or all profiles if none is specified The parameters are Keyword Description advphy Shows TDMA and SCDMA parameters for each modulation profile and IUC type The modulation profile to display Valid range is 1 to 10 type The IUC type one of advphy advphyl advphys advphyu initial long reqdata request short station verbose Shows the profile parameters in a list format The default is to show parameters in a table format with abbreviated parameter names Example showing the factory default profile C3 show cable modulation profile 1 Diff FEC FEC enco T CW BYTES SIZE no 0x0 0x10 no 0x5 0x22 no 0x5 0x22 no 0x6 Ox4e no 0x8 Oxdc no Oxc Ox4b no 0x10 Oxdc Scrambl Max Guard Last Scrambl Seed B time CW size size short 0x152 0 8 no yes 0x152 0 48 no yes 0x152 0 48 no yes 0x152 13 8 no yes 0x152 0 8 no yes 0x152 6 8 no yes 0x152 0 8 no yes ARRIS PROPRIETARY All Rights Reserved 10 65 10 Command Line Interface Reference show cable service class Syntax show cable service class
27. e An NTP server is available for the CMTS e A Syslog server is available Required boot parameters depend on how the C3 loads its software image Table 3 4 Required boot parameters If the software image is on Required boot parameters are the C3 flash disk none booting interface see below initial IP address of the booting interface an external TFTP server default gateway IP address to the TFTP server the 802 1Q VLAN ID if booting over an 802 1Q VLAN encoded backbone is required The choice of the booting interface fa0 0 or fa0 1 also pre defines certain bridging behavior of the CMTS You can reconfigure this behavior but from a factory default condition before the system loads it s code for the first time or no startup configuration on the compact flash disk e Selecting fa0 0 configures in band behavior All cable modem and CPE traffic is directed to fa0 0 you can use either Ethernet port for managing the CMTS e Selecting fa0 1 configures out of band behavior All CPE traffic is directed to fa0 0 All cable modem traffic is directed to fa0 1 You can use either Ethernet port for managing the CMTS if management access is specified in the interface configuration ARRIS PROPRIETARY All Rights Reserved 11 14 05 Factory Default Network Settings Rear Panel Connectors gt Procedure 3 4 Release 4 3 Standard C3 CMTS User Guide Factory default network se
28. gps gps gps gps qpsk 64qam 64qam qpsk qpsk qpsk NNN WNW Preamb length 64 640 384 64 64 104 104 64 64 400 docsIfCmtsModByteInterleaverBlockSize gt 2 docsIfCmtsModFECCode wordLength 2 docsIfCmtsModFECCorrection For tdmaAndAtdma and atdma burst profiles InterleaveBlockSize gt 36 regardless of whether FEC or the interleaver are enabled Example cable modulation profile 1 request 0 16 2 8 qpsk scrambler 338 no diff 64 fixed cable modulation profile 1 reqData 0 16 2 8 qpsk scrambler 338 no diff 64 fixed cable modulation profile 1 initial 5 34 0 48 qpsk scrambler 338 no diff 400 fixed cable modulation profile 1 station 5 34 0 48 qpsk scrambler 338 no diff 384 fixed cable modulation profile 1 short 6 75 7 8 qpsk scrambler 338 no diff 64 fixed cable modulation profile 1 long 8 220 0 8 qpsk scrambler 338 no diff 64 fixed Use the no form of this command with no parameters after p to remove a modulation profile Example C3 config show cable modulation profile Diff FEC FEC Scrambl Max Guard Last Scrambl enco T CW Seed B time CW BYTES SIZE size size short no 0x0 0x10 0x152 0 8 no yes no 0x5 0x22 0x152 0 48 no yes no 0x5 0x22 0x152 0 48 no yes no 0x6 0x4b 0x152 14 8 no yes no 0x8 Oxde 0x152 0 8 no yes no OXG 0x4b 0x152 6 8 no yes no 0x10 Oxde 0x152 0 8 no yes no 0x0 0x10 0x152 2 8 no yes no 0x0 0x10 0x152 2 8 no yes no 0x5 0x22 0x152 0 48 no yes ARRIS PROPR
29. hy ATDMA hy preamb 8 0 8 hy ATDMA hy preamb 0 qps hy hy 0 hy hy 0 K DMA preamb 48 hy ATDMA hy preamb 8 13 hy ATDMA hy preamb 008 hy ATDMA hy preamb 8 0 8 hy ATDMA hy preamb 0 qps hy hy 0 hy hy 0 K DMA preamb 48 hy ATDMA hy preamb l 8 12 hy ATDMA hy preamb 50 0 hy ATDMA hy preamb 808 hy ATDMA hy preamb 0 qps hy hy 0 hy hy 0 K DMA preamb 48 hy ATDMA hy preambl 8 12 hy ATDMA hy preamb 00 8 hy ATDMA 16qam QpsKk qpsx 16qam 16qam qpsx qpsx 32qam qpsx qpsx 32qam 536 le type qps 536 le type q scramble 536 le type q scrambl 536 le type q scrambl 536 scrambler ps ps er ps ex le type gps 8 1l6qam scram 8 504 le type q 536 ps scrambler le type qps 536 scrambler le type qps scramble 536 r le type qps scrambl 536 le type q scrambl 536 le type q 8 32qam scram 8 504 le type q 8 32qam scram 536 ex ps Qr ps ps le type qps 536 scrambler Le type qps scramble 536 r le type qps scrambl 536 le type q scrambl 536 er ps er Le type qps 8 32qam scram 8 504 le type q scramb 536 hy preamb le type q ps le ps K K 3 K K K K K K 3 K K K K K K 3 K K K K K 338 no diff 304 shortened 38 no diff
30. id the cable group ID 1 to 6 type one of none initial or periodic End of procedure ARRIS PROPRIETARY All Rights Reserved 11 14 05 8 Configuring Security Topics Overview Filtering Traffic Cable Interface VLANS Cable Source Verify Packet Throttling Simple Law Enforcement Monitoring SLEM Configuring SSH Configuring AAA Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved Page 28 32 34 36 38 43 8 Configuring Security Overview 8 2 Management security can be implemented in a number of ways Use the two Fast Ethernet ports to physically separate user data from management data or Restrict access at each interface using the management access specification or Use ACLs to restrict access to from the Cadant C3 at any sub interface Or Use VLANs to separate user data from cable modem and CMTS data Or Use the Cadant C3 cable sub interface native VLAN and downstream privacy capability to isolate user groups from one another In addition the following methods can provide security on the subscriber side of the network Use subscriber management filters to restrict access by CPE devices Use Cable Source Verify to prevent IP address spoofing or CPE config uration errors Use Packet Throttling to reduce broadcast traffic in Layer 2 networks and reduce the effect of Denial of Service DoS attacks in Layer 2 and Layer 3 networks With the requirement from law enforcement
31. l provide default route for CPE ip route 0 0 0 0 0 0 0 0 10 99 98 1 l enable basic snmp snmp server community public ro snmp server community private rw l create account so telnet will work B 22 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Routing Separate Management Traffic Release 4 3 Standard C3 CMTS User Guide cli account arris password arris cli account arris enable password arris j ip routing j inteface fastethernet 0 0 0 remove the default bridge group allocation no bridge group ip address 10 1 1 2 255 255 255 0 ip address 10 99 98 2 255 255 255 0 secondary management access exit j interface cable 1 0 0 no bridge group ip address 10 5 1 2 255 255 255 0 ip address 10 55 1 2 255 255 255 0 secondary turn on the upstreams no cable upstream 0 shutdown no cable upstream 1 shutdown ip dhcp relay cable helper address 10 1 1 1 cable dhcp giaddr policy turn on the downstream no shutdown exit j for convenience during testing remove telnet session timeout line vty timeout 0 exit exit save the configuration write Again this example is the equivalent routing version of the simple bridging example presented above ARRIS PROPRIETARY All Rights Reserved B 23 B CMTS Configuration Examples B 24 CABLE OPERATOR oO DEFAULT ROUTE rv 10 55 1 1 DHCP SERVER I I I I I DHCP Gateway I l 10 1 1 141 19
32. 00 00 00 04 C2 FF 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 co 03 00 00 00 00 00 00 00 76 00 00 00 00 00 00 00 63 07 A8 04 00 00 AO 00 00 00 00 6C 00 00 00 00 00 00 00 82 AY FA OA 00 00 73 00 00 00 00 61 00 00 00 00 00 00 00 53 30 C3 FA 00 00 74 00 00 00 00 6E 00 00 00 00 00 00 00 63 01 2C 8B 00 The C3 can modify the DHCP relay address information giaddr field in the DHCP messages from the cable modem or host The primary function of this DHCP field is to allow the DHCP Offer and DHCP ACK to be routed back to the requesting device through what may be many routers in the backbone network The giaddr advertises the C3 as the gateway to the requesting device DHCP servers use this relay address as a hint to what address space programmed into the DHCP server address scope to allocate an address from ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide The DHCP server looks at the relay address and searches its defined scopes looking for a subnet match If a matching scope is found it allo cates a lease from that scope The following example uses the interface s secondary address to specify the host giaddr cable 1 0 0 ip address 10 1 1 1 255 255 255 0 ip address 10 2 2 1 255 255 255 0 secondary ip dhcp relay use same DHCP server for host and cable modems cable helper address 10 9 9 1
33. 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 7 11 7 Managing Cable Modems Relay Agent Support 7 12 16 54 31 DHCPRELAY 02 OA BE 00 00 00 00 SF 00 00 00 00 00 00 00 35 04 04 01 70 16 54 31 DH 16 54 31 DH 16 54 31 DH 02 OA BE 00 00 00 00 SF 00 00 00 00 00 00 00 35 04 04 01 00 01 FA 70 00 00 00 00 34 00 00 00 00 00 00 00 01 FF co 52 FF 01 FA 70 00 00 00 00 34 00 00 00 00 00 00 00 01 FF co EE 00 06 8B 00 00 00 00 00 32 00 00 00 00 00 00 00 05 BE A8 OE 06 8B 00 00 00 00 00 32 00 00 00 00 00 00 00 05 FF A8 00 00 00 OE 00 00 00 00 00 2E 00 00 00 00 00 00 00 36 FF FA 01 CPRELAY CPRELAY CPRELAY 00 OE 00 00 00 00 00 2E 00 00 00 00 00 00 00 36 FF FA 00 00 Dumping incoming UDP packet 73 OA 00 00 00 00 00 63 00 00 00 00 00 00 00 04 00 C2
34. 04 74 FA 00 00 00 00 00 66 00 00 00 00 00 00 00 OA 06 1c 80 BE 8B 00 00 00 00 00 67 00 00 00 00 00 00 00 FA 08 04 00 70 01 00 00 00 00 00 00 00 00 00 00 00 00 00 8B co FF 00 00 OA 00 00 00 00 00 00 00 00 00 00 00 00 00 O1 A8 BE 03 00 FA 00 00 00 00 00 00 00 00 00 00 00 00 00 33 FA FF 02 80 8B 00 00 00 00 00 00 00 00 00 00 00 00 00 04 C2 FF 06 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 co 03 00 00 00 00 00 00 00 76 00 00 00 00 00 00 00 63 07 A8 04 AO 00 AO 00 00 00 00 6C 00 00 00 00 00 00 00 82 A9 FA OA 73 00 73 00 00 00 00 61 00 00 00 00 00 00 00 59 30 C3 FA 74 00 74 00 00 00 00 6E 00 00 00 00 00 00 00 63 or 2C 8B BE ACK Removing information option from frame Broadcasting ACK to client 00A0 7374 BE70 Dumping outgoing UDP packet 73 OA 00 00 00 00 00 63 00 00 00 00 00 00 00 04 00 C2 00 74 FA 00 00 00 00 00 66 00 00 00 00 00 00 00 OA 06 IG 00 BE 8B 00 00 00 00 00 67 00 00 00 00 00 00 00 FA 08 04 00 70 01 00 00 00 00 00 00 00 00 00 00 00 00 00 8B co EF 00 00 OA 00 00 00 00 00 00 00 00 00 00 00 00 00 01 A8 FF 00 00 FA 00 00 00 00 00 00 00 00 00 00 00 00 00 33 FA FF 00 80 8B 00 00 00 00 00 00 00 00 00 00
35. A stream entry indicates a single data stream to be intercepted to a Mediation Device Many selected data streams may go to the same application interface and many application interfaces are supported INDEX cTapMediationContentId cTapStream802Index id cTapStream802Table 1 CTapStream802Entry SEQUENCE cTapStream802 Index nteger32 cTapStream802Fields BITS cTapStream802Interface nteger32 cTapStream802DestinationAddress MacAddress cTapStream802SourceAddress MacAddress cTapStream802EthernetPid nteger32 cTapStream802SourceLlcSap nteger32 cTapStream802DestinationLlcSap nteger32 cTapStream802InterceptEnable TruthValue cTapStream802InterceptedPackets Counter32 cTapStream802InterceptDrops Counter32 cTapStream802Status RowStatus cTapStream802Index OBJECT TYPE SYNTAX Integer32 1 2147483647 MAX ACCESS not accessible STATUS current DESCRIPTION The index of the stream itself cTapStream802Entry 1 cTapStream802Fields OBJECT TYPE SYNTAX BITS interface 0 dstMacAddress 1 srcMacAddress 2 ethernetPid 3 dstLlicSap 4 srcLlcSap 5 E 12 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide MAX ACCESS read create STATUS current DESCRIPTION This object displays what attributes must be tested to identify traffic which requires interception The packet matches if all flagged fields match interface indicates that traffic on the stated interface is to
36. For IUCs 1 to 4 fec_t lt 10 if they are tdma or tdmaAndAtdma lt 16 if they are being used on an ATDMA channel For IUCs 9 to 11 fec_t lt 16 feclen The FEC codeword length in bytes Valid range 1 to 255 For all burst profiles feclen 2 fec_t lt 255 maxburst The maximum burst size in mini slots guard_time The guard time in symbols Valid range O to 255 modulation The type of modulation to be used for the particular IUC it may be qpsk or qam16 With the Advanced TDMA software option the following additional modulation methods may be used qam8 qam32 qam64 Using SCDMA DOCSIS 2 0 only the methods are qam8 qam32 qam64 qam128 trellis coding must be enabled to use qam128 ARRIS PROPRIETARY All Rights Reserved 10 117 10 Command Line Interface Reference scram Defines whether or not the scrambler should be used scrambler or no scrambler seed The scrambler seed in hexadecimal 0 to 7fff diff Indicates whether differential encoding should be used diff or no diff prelen Length of the preamble in bits 2 to 1024 For DOCSIS 1 x cable modems the length must be divisible by 2 for QPSK and divisible by 4 for 16QAM lastcw Indicates the FEC handling for the last codeword fixed or short ened depth For ATDMA modulation profiles the byte interleaver depth Use a value of 1 to disable interleaving Valid range O to 4294967295 blksize For ATDMA modulation profiles the byte interleaver
37. Query feature When active the C3 can query the DHCP server to verify that the IP address being used by a CPE dhcp is both known to the server and that cable modem is associated with the IP address Any static IP addresses found in cable modem configuration files are assumed to be correct Specifies that the DHCP server is the authoritative source for IP address information This option requires that the authoritative DHCP server knows of a CPE IP addresses including static IP addresses provisioned in cable modem configu ration files See also Cable Source Verify page 8 32 ARRIS PROPRIETARY All Rights Reserved 11 14 05 cable sync interval Syntax cable ucd interval Syntax Release 4 3 Standard C3 CMTS User Guide cable sync interval k Sets the interval in milliseconds between SYNC messages Valid range 1 to 200 For fastest acquisition of modems use a low number about 20 Sync messages use a very minor amount of downstream bandwidth Scope Not applicable to a cable sub interface cable ucd interval k Sets the interval in milliseconds between UCD messages Valid range 1 to 2000 Factory default is 2000 Modems check the change count in each UCD received against the last known change count Only if this change count is different does the modem open the full UCD message and take action If the upstream configuration is static then decreasing this time interval achieves very littl
38. Subnet mask Gateway address if necessary VLAN ID if necessary DHCP Server 1 Parameters IP Address Subnet mask Gateway address if necessary VLAN ID if necessary DHCP Server 2 Parameters IP Address Subnet mask G 2 ARRIS PROPRIETARY All Rights Reserved 11 14 05 DHCP Server 3 Parameters C3 CMTS User Guide Gateway address if necessary VLAN ID if necessary IP Address Subnet mask Gateway address if necessary VLAN ID if necessary Fastethernet 0 0 Configuration Physical Interface Configuration Sub interface 1 Configuration Sub interface 2 Configuration Sub interface 3 Configuration Release 4 3 Standard IP Address Subnet mask VLAN ID if necessary IP Address Subnet mask VLAN ID if necessary IP Address Subnet mask VLAN ID if necessary IP Address Subnet mask VLAN ID if necessary ARRIS PROPRIETARY All Rights Reserved G 3 G Configuration Forms Sub interface 4 Configuration IP Address Subnet mask VLAN ID if necessary Sub interface 5 Configuration IP Address Subnet mask VLAN ID if necessary Sub interface 6 Configuration IP Address Subnet mask VLAN ID if necessary Sub interface 7 Configuration IP Address
39. and can be accessed through both CLI commands and SNMP MIBs k NOTE The wireless extensions support TDMA operation only on DOCSIS 1 1 hardware Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved C 1 C Wireless Cable Applications Feature Summary Downstream Modulation Types Selectable Upconverter IF Frequency Downstream Symbol Rate Downstream Annex Type Configuration Wireless extensions support the following features e QPSK and 16QAM downstream modulation types in Annex A mode e selectable internal or external upconverter e programmable downstream IF frequency e programmable downstream symbol rate in both Annex A and Annex B mode e CLI and SNMP support for configuring the above features that provide full upgrade compatibility with currently deployed systems The C3 provides two extended downstream modulation types QPSK and 16 QAM for wireless applications These modulation types are supported in Annex A mode only The C3 provides an internal upconverter for RF output in the DOCSIS or Euro DOCSIS standard frequency ranges The C3 can also feed an external upconverter through the downstream IF output for frequency plans outside the standard ranges The downstream IF output is programmable through both SNMP and the CLI The supported range is 10MHz to 60MHz Normally the C3 automatically sets the downstream symbol rate based on the modulation and channel width The C3 also supports setting th
40. and this fastethernet interface must be either e A routed fastethernet sub interface or e A fastethernet sub interface in the same bridge group as at least one other routed sub interface a sub interface having an IP address See also jp igmp page 10 204 ip igmp proxy page 10 191 ARRIS PROPRIETARY All Rights Reserved 10 205 10 Command Line Interface Reference ip igmp query max response timeout Syntax ip igmp robustness Syntax 10 206 ip igmp query max response timeout val Sets the maximum interval in 1 10 second increments the C3 waits for a response to an IGMP query Valid range 10 to 255 Scope Cable sub interface only Vv NOTE The ip igmp proxy must already be specified on a fastethernet interface and this fastethernet interface must be either e A routed fastethernet sub interface or e A fastethernet sub interface in the same bridge group as at least one other routed sub interface a sub interface having an IP address See also jp igmp page 10 204 jp igmp proxy page 10 191 ip igmp robustness val Variable for tuning the expected packet loss on a subnet Valid range 1 to 255 Scope Cable sub interface only K NOTE The ip igmp proxy must already be specified on a fastethernet interface and this fastethernet interface must be either e A routed fastethernet sub interface or e A fastethernet sub interface in the same bridge group as at least one other routed sub int
41. ble upstream 0 0 extended frequency detect all ranging ble upstream 0 0 concatenation ble upstream 0 0 fragmentation F 4 ARRIS PROPRIETARY All Rights Reserved 11 14 05 ca ca ca ca ca ca no ca no ca ca ca ca ca ca no ca ca ca ca ca no no ca ca ca ca ca ca ca ca ca ca no ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca no ca no ca no ca Release 4 3 Standard ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 cable upstream ble upstream 0 ble upstream ble upstream ble upstream ble upstream ble upstream 0 cable upstream ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 cable upstream cable upstream ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 ble upstream 0 cable upstream ble upstream ble upstream ble upstream ble upstream ble u ble upstream ble u ble upstream ble u ble upstream ble u ble upstream ble u ble upstream ble upstream Do XS Oo E eS data backoff automatic range backoff automatic contention opp latency 10000 contention opps with data required rate limit status activate cable upstream 0 1 description shutdown 0 1 snmp trap link status channel type SCDMA scdma active codes 126 scdma codes per slot 2 scdma
42. bridge group 0 15 0 0 0 24 is subnetted 1 subnets S gt 15 5 5 0 1 0 via 10 7 8 10 Cable 170 9 lt lt lt static with default AD 1 S 1 0 via 10 7 8 11 Cable 1 0 3 lt lt lt lt backup static AD 1 second in config file S 1 0 via 10 7 8 110 Cable 1 0 3 lt lt lt lt backup static AD 1 3 in config file S 1 0 via 10 71 8 11 Cable 1 0 30 lt lt lt lt backup static AD 1 4 in config file S 1 0 via 10 72 8 11 FastEthernet 0 0 5 lt lt lt lt backup static AD 1 5 in config file S 1 0 via 100 78 8 11 Cable 1 0 23 lt lt lt lt backup static AD 1 6 in config file 79 0 0 0 8 is variably subnetted 2 subnets 2 masks R 79 79 79 0 24 120 2 via 10 250 96 102 00 00 03 Fa R 79 79 79 101 32 120 2 via 10 250 96 102 00 00 03 10 144 ARRIS PROPRIETARY All Rights Reserved CMP B BGP FastEthernet 0 1 0 Ethernet 0 1 0 hernet 0 1 0 Ethernet 0 1 0 stEthernet 0 1 0 FastEthernet 0 1 0 11 14 05 Release 4 3 Standard C3 CMTS User Guide In bridging mode One purpose for static routes is to provide routing information for the DHCP relay function Specifically when using the cable helper address command and the specified helper address is not on a subnet known to the C3 for example when the DHCP server specified is behind an external router and the router is not connected to the management port The IP address specified with this command is not on
43. cable downstream annex a b Sets the annex type for the downstream This command has been superseded by the cable downstream mac mode command and is now used only to set the annex type when the MAC mode is set to wireless Since the annex type alone is not sufficient to describe the actual mode of operation this command behaves as follows Setting Annex A or B mode during startup after a firmware upgrade configures the system in EuroDOCSIS or DOCSIS mode Setting Annex A or B after startup changes only the annex type on the down stream See also cable mac mode page 10 198 cable downstream mac mode page 10 222 cable downstream channel width Syntax 10 220 cable downstream channel width 6mhz 8mhz Sets the downstream channel width Use 6Mhz for North America and Japan 8Mhz for Europe ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable downstream frequency Syntax cable downstream frequency hz Sets the downstream center frequency in Hz Valid range 91000000 to 857000000 for 6 MHz North America and Japan DOCSIS 112000000 to 857000000 for EuroDOCSIS The tuner has a resolution of 62500 62 5 kHz If an up converter is not installed the CMTS disables this command cable downstream if frequency Syntax Release 4 3 Standard cable downstream if frequency if Sets the CMTS IF output frequency When changing the MAC mode to docsis or euro docsis the C3 rese
44. dc TO OO O TO O 3 0 O O define a default action for this filter group ie drop all j index 2 index 2 src ip 0 0 0 0 index 2 src mask 0 0 0 0 index 2 dest ip 0 0 0 0 index 2 dest mask 0 0 0 0 index 2 ip proto ALL index 2 ip tos 0x0 0x0 index 2 match action drop index 2 status activate cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou WWWWWW WW Ww do SO tO 0 iro Eiro SO O S Gl define filter group for CPE network 10 4 0 0 j index 1 index 1 src ip 10 4 0 0 index 1 src mask 255 255 0 0 index 1 dest ip 0 0 0 0 index 1 dest mask 0 0 0 0 index 1 ip proto ALL index 1 ip tos 0x0 0x0 index 1 match action accept index 1 status activate index 1 src port all index 1 dest port all index 1 tcp flags 0x0 0x0 cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou Se e a a S co To o O O O O O 0 0 U Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved C3 CMTS User Guide 8 23 8 Configuring Security define a default action for this filter group ie drop all l cable filter group 4 index 2 cable filter group 4 index 2 src ip 0 0 0 0 cable filter group
45. int fa 0 0 2 description ISP2_WAN encapsulation dotlq 222 bridge group 2 exit int fa 0 0 3 description ISP3_WAN encapsulation dotlq 333 bridge group 3 exit interface fa 0 1 0 description MANAGEMENT ip address should be in subnet of DHCP server ip address 10 99 99 2 255 255 255 0 management access encapsulation dotlq 999 bridge group 9 ip 12 bg to bg routing exit 5 14 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide interface fa 0 1 2 description PROVISIONING SERVER ip address should be subnet of provisioning web server ip address 10 88 88 2 255 255 255 0 encapsulation dotlq 888 no management access bridge group 4 exit interface cable 1 0 0 description ISP1_CPE ip address 10 1 0 1 255 255 0 0 no management access set up dhcp relay for CPE devices ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no ip dhcp relay information option VSE tagging all cm with VSE tag of 11 will cause all attached CPE to be mapped to this interface encapsulation dotlq 11 native turn on VPN encapsulation dotlq 11 encrypted multicast bridge group 1 exit interface cable 1 0 2 description ISP2_CPE for CPE devices for ISP2 ip address 10 2 0 1 255 255 0 0 no management access ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no ip dhcp relay information option encapsulation dotlq 22 nati
46. interface cable 1 0 4 description UNPROVISIONED CPE for CPE devices for unprovisioned subscribers ip address 10 4 0 1 255 255 0 0 no management access ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no ip dhcp relay information option encapsulation dotlq 44 native bridge group 1 exit interface cable 1 0 10 default for cm devices all cm will remain on this interface ip address 10 77 77 1 255 255 255 0 no management access set up dhcp relay for cm ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no ip dhcp relay information option exit exit ARRIS PROPRIETARY All Rights Reserved 11 14 05 6 IP Routing Topics Page Routing Concepts 1 Routing Command Overview 13 OSPF Point To Multipoint 14 Route Maps 17 OSPF Route Redistribution Filtering 21 This chapter describes Layer 3 routing operation of the Cadant C3 CMTS See Appendix B for a routing configuration example Routing Concepts IP packets contain a source and destination IP address But an IP packet is transported using lower layer protocols and these link layer protocols require a destination hardware MAC address to forward the packet Default Route When the destination subnet is not known to the C3 the C3 does not know what to do with the packet unless a route is present If no other route is present the ip route 0 0 0 0 0 0 0 0 a b c d command can be used to tell the C3 to p
47. le type qpsk 0 48 qpsk scrambler 338 no diff 384 fixed 536 le type qpsk 00 8 8 8qam scrambler 338 no diff 304 shortened hy ATDMA 8 1504 le type qpsk 50 0 8 8qam scrambler 338 no diff 304 shortened 536 le type qpsk 00 0 8 8qam scrambler 338 no diff 304 shortened 536 le type qpsk scrambler 338 no diff 64 fixed 536 le type qpsk 0 48 qpsk scrambler 338 no diff 640 fixed 536 le type qpsk 0 48 qpsk scrambler 338 no diff 384 fixed 536 le type qpsk 8 8 8 8qam scrambler 338 no diff 104 shortened hy ATDMA 8 1504 le type qpsk 0 0 8 8qam scrambler 338 no diff 104 shortened 536 le type qpsk 8 0 8 8qam scrambler 338 no diff 104 shortened 536 le type qpsk scrambler 338 no diff 64 fixed 536 le type qpsk 0 48 qpsk scrambler 338 no diff 640 fixed 536 le type qpsk 0 48 qpsk scrambler 338 no diff 384 fixed 536 le type qpsk 00 13 8 16qam scrambler 338 no diff 304 shortened hy ATDMA 8 1504 hy preambl le type qpsk 50 0 8 1l6qam scrambler 338 no diff 304 shortened ARRIS PROPRIETARY All Rights Reserved F 11 F Factory Defaults ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ
48. operating in DOCSIS or EuroDOCSIS mode Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 7 23 7 Managing Cable Modems Upstream Channel Table 7 6 DS channel issues MIB Object Value Description __ QAM64 or If different modem has DocsIfDownChannelModulation OAM 256 problem gt 15 Signal is too strong insert dBmv an attenuator Signal is too weak modem might have reliability DocsIfDownChannelPower py Probie in Sucve bad cable too many splitters or unnecessary attenuator 15dBmv to 15 Valid DOCSIS range dBmv Use the following MIBs to determine upstream channel issues Table 7 7 UP channel issues MIB Object Value Description docsIfUpChannel should be This variable is set automatically by Frequency small the modem when it selects a partic ular upstream to use docsIfUpChannelWidth The wider the upstream channel is the higher the data rate docsIfCmStatusTx 8 to 58 Legal range Power dBmv Over 50 Do not use 16 QAM upstream is dBmv impaired to the point where QPSK is required Upgrading Modem Firmware 7 24 Inspecting and upgrading modem firmware is a fundamental part of managing modem operations Action Perform any of the following procedures as necessary e Upgrading from the Configuration File page 7 25 e Upgrade a Single Modem Using an SNMP Manager page 7 25 e Upgrading Software on All Cable M
49. preamble type 10 0 SCDMA no trell preamble type K T5 l16qam scrambler C3 CMTS User Guide L 5 no spr 2 qpsk0 ler 338 spr qpsk1 no diff 384 fixed 2 338 no diff 128 shortened LS 6pr 2 qpsk1 0 0 16qam scrambler 338 no diff 128 shortened SCDMA no trell preamble type L Sspr 2 qpsk1 0 0 16qam scrambler 338 no diff 128 shortened SCDMA no trel preamble type 0 qpsk scrambl SCDMA no trell preamble type 0 qpsk scrambl SCDMA no trell preamble type 0 qpsk scrambl SCDMA no trel preamble type K K K SCDMA no trell preamble type SCDMA no trell preamble type SCDMA no trel preamble type 0 qpsk scramb l SCDMA no trell preamble type 0 qpsk scramb l SCDMA no trell preamble type 0 qpsk scramb l SCDMA no trel preamble type K K 10 0 32qam scrambler SCDMA no trell preamble type T5 l1 5 spr 2 qpsk0 ler 338 no diff 64 fixed L 5 no spr 2 qpsk0 ler 338 no diff 640 fixed L 5 no spr 2 qpsk0 ler 338 no diff 384 fixed LS spr 2 qpsk1 8 10 0 16qam scrambler 338 no diff 64 shortened L 5 Spe 2 qpsk1 0 0 0 16qam scrambler 338 no diff 64 shortened L 5 spr 2 qpsk1 8 0 0 16qam scrambler 338 no diff 64 shortened LS spr 2 qpsk0 ler 338 no diff 64 fixed L 5 no spr 2 qpsk0 ler 338 no diff 640 fixed L 5 no spr 2 qpsk0 ler 338 spr qpsk1 no diff 384 fixed 2 338 no diff 128 shortened L 5 spr 2 qpsk1 0 0 32qam scrambler 338 no diff 1
50. seconds Specifies the number of seconds between LSA retransmissions for adjacencies belonging to an OSPF interface ARRIS PROPRIETARY All Rights Reserved 10 183 10 Command Line Interface Reference Syntax Syntax Syntax Syntax 10 184 ip ospf transmit delay ip ospf transmit delay seconds Sets the estimated number of seconds it takes to send a link state update packet on an OSPF interface ip ospf priority ip ospf priority number Sets priority to help determine the OSPF designated router for a network ip ospf hello interval ip ospf hello interval seconds Specifies the length of time between the hello packets that the C3 software sends on an OSPF interface ip ospf dead interval ip ospf dead interval seconds Set the number of seconds that a device s hello packets must not have been seen before its neighbors declare the OSPF router down ARRIS PROPRIETARY All Rights Reserved 11 14 05 Syntax Syntax Syntax Release 4 3 Standard C3 CMTS User Guide ip ospf authentication mode no ip ospf authentication mode text md5 Enables authentication and specifies the type of authentication used in OSPF packets To disable authentication use the no form of this command ip ospf authentication key chain no ip ospf authentication key chain name Enables authentication of OSPF packets and specifies the key chain to use on an interface To prevent authentication use the
51. vlan Creates or deletes a manual entry in the ARP table You can optionally asso ciate the entry with a specific sub interface and VLAN ID See also show arp page 10 13 arp timeout Syntax arp timeout sec Sets the length of time in seconds to keep ARP entries before timing out Default 14400 4 hours 10 102 ARRIS PROPRIETARY All Rights Reserved 11 14 05 banner Syntax boot system flash Syntax Release 4 3 Standard C3 CMTS User Guide One of no banner ascii string no banner filename ascii text filename Sets the login banner for the CMTS to either a specified ascii string or to an ascii text file located on the flash disk which the banner text is read from The maximum allowable length of the ascii string is 2000 characters If the speci fied text file contains more than 2000 characters it is truncated Vv NOTE To set a banner using an ascii string with spaces in the string enclose the entire banner inside quotations as show in the example below otherwise the command will be rejected due to the spaces Use the no banner command to delete the banner completely C3 config banner cmts3 Location Atlanta boot system flash path filename Boots the system from an alternate image on the Compact Flash disk Specify the drive letter in UPPER case boot system flash C alternate_image bin See also show bootvar page 10 13 reload page 10 42 ARRIS PROPRIETARY All Right
52. 0 FastEthernet 0 1 0 Inbound 2698 8 0 FastEthernet 0 1 0 Inbound 2698 9 0 FastEthernet 0 1 0 Inbound 2698 10 0 FastEthernet 0 1 0 Inbound 2698 11 0 FastEthernet 0 1 0 Inbound 2698 12 0 FastEthernet 0 1 0 Inbound 2698 13 0 FastEthernet 0 1 0 Inbound 2698 14 0 FastEthernet 0 1 0 Inbound 2698 15 0 Fast t 0 1 0 Inbound 2698 16 0 Fast aO A RO Inbound 2698 17 0 Fast t 0 1 0 Inbound 2698 18 38772 Fast E07 1 0 Inbound 2698 19 0 FastkEt t 0 1 0 Inbound 2698 20 304 Cable Outgoing 171 1 0 Cable 1 0 0 Outgoing PLI 2 0 Cable 1 0 0 Outgoing 171 3 0 Cable 1 0 0 Outgoing T7I 4 0 Cable 1 0 0 Outgoing 171 5 0 Cable 1 0 0 Outgoing 171 6 1529 Cable 1 0 0 Outgoing 171 7 1482 Cable 1 0 0 Outgoing 171 8 186184 Cable 1 0 0 Inbound 2601 None Set N A Example interface cable 1 0 0 matches C3 lt config gt show access lists interface cable 1 0 0 matches Interface Direction Acl ID Entry No Matches Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 49 10 Command Line Interface Reference Cable 1 0 0 Outgoing Not Set None Set N A Cable 1 0 0 Inbound Not Set None Set N A C3 lt config gt Example interface fastethernet 0 0 0 matches C3 lt config gt show access lists interface cable 1 0 0 matches Interface Direction Acl ID Entry No Matches Fastethernet 0 0 0 Outgoing Not Set None Set N A Fastethernet 0 0 0 Inbound Not Set None Set N A show bridge Displays information from the bridge MIB Example C3 show bridge Bridge
53. 0 24 is subnetted 1 subnets S gt 15 5 5 0 1 0 via 10 7 8 10 Cable 1 0 9 lt lt lt static with default AD 1 S 1 0 via 10 7 8 11 Cable 1 0 3 lt lt lt lt backup static AD 1 second in config file S 1 0 via 10 7 8 110 Cable 1 0 3 lt lt lt lt backup static AD 1 3 in config file S 1 0 via 10 71 8 11 Cable 1 0 30 lt lt lt lt backup static AD 1 4 in config frre GX S 1 0 via 10 72 8 11 FastEthernet 0 0 5 lt lt lt lt backup static AD 1 5 in config file S 1 0 via 100 78 8 11 Cable 1 0 23 lt lt lt lt backup static AD 1 6 in config 79 0 0 0 8 is variably subnetted R 79 79 79 0 24 120 2 via 10 250 file 2 subnets 2 masks 96 102 00 00 03 Fast Ethernet 0 1 0 R 79 79 79 101 32 120 2 via 10 250 96 102 00 00 03 Fas tEthernet 0 1 0 Note the two numbers in brackets shown for each defined route e The first number is the administrative distance of the route Connected routes meaning a C3 sub interface has an IP address within this subnet have an administrative distance of 0 static routes have a 6 4 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Routing Authentication Key Chains Enabling Authentication Release 4 3 Standard C3 CMTS User Guide default distance of 1 Routes learned through RIP have a default distance of 120 Routes learned through OSPF have a default distance
54. 00 00 00 00 00 00 63 07 A8 04 AO 00 00 00 00 00 82 A9 FA OA 73 00 00 00 00 00 53 33 C3 FA 74 00 00 00 00 00 63 01 2C 8B BE OFFER Removing information option from frame Broadcasting OFFER to client 00A0 7374 BE70 Dumping outgoing UDP packet 73 OA 00 00 00 00 00 63 00 00 00 00 00 00 00 04 00 C2 00 74 FA 00 00 00 00 00 66 00 00 00 00 00 00 00 OA 06 TC 00 BE 8B 00 00 00 00 00 67 00 00 00 00 00 00 00 FA 08 04 00 Dumping 73 00 00 00 00 00 00 00 00 00 00 00 00 00 00 56 31 31 32 39 74 00 00 00 00 00 00 00 00 00 00 00 00 00 00 64 30 30 30 30 BE 00 00 00 00 00 00 00 00 00 00 00 00 00 00 6F 31 34 31 31 70 01 00 00 00 00 00 00 00 00 00 00 00 00 00 8B co FF 00 00 OA 00 00 00 00 00 00 00 00 00 00 00 00 00 01 A8 FE 00 00 FA 00 00 00 00 00 00 00 00 00 00 00 00 00 33 FA FF 00 incoming 56 00 00 00 00 00 00 00 00 00 00 00 00 00 00 63 30 30 30 30 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 73 31 31 37 30 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 69 30 30 30 30 7 10 ARRIS PROPRIETARY All Rights Reserved 80 8B 00 00 00 00 00 00 00 00 00 00 00 00 00 04 C2 FF 00 UDP 80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 73 32 31 31 61 00
55. 00 00 76 6C 61 6E 5F 34 32 2E 63 66 67 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 7 9 7 Managing Cable Modems 00 00 00 00 00 00 35 04 04 opk 70 00 00 00 00 00 00 01 EF co 52 04 00 00 00 00 00 00 02 EE A8 14 04 00 00 00 00 00 00 36 FF FA OL 00 16 54 29 DHCPRELAY 16 54 29 DHCPRELAY 16 54 29 DHCPRELAY 02 OA BE 00 00 00 00 SF 00 00 00 00 00 00 00 35 04 04 01 00 16 54 30 DHCPRELAY 01 00 BE 00 00 00 00 00 00 00 00 00 00 00 00 35 39 33 31 31 01 FA 70 00 00 00 00 34 00 00 00 00 00 00 00 01 EP co FF 00 01 00 56 00 00 00 00 00 00 00 00 00 00 00 00 opik 32 30 30 31 06 8B 00 00 00 00 00 32 00 00 00 00 00 00 00 02 FF A8 00 00 06 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 34 31 36 30 00 OE 00 00 00 00 00 2E 00 00 00 00 00 00 00 36 EE FA 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3C 30 30 30 30 00 00 00 00 00 00 04 00 C2 04 00 00 00 00 00 00 00 OA 06 1c 80 00 00 00 00 00 00 00 FA 08 04 00 00 00 00 00 00 00 00 8B co FF 00 FF 00 00 00 00 00 00 01 A8 EF 03 00 00 00 00 00 00 33 FA EF 02 00 00 00 00 00 00 04 C2 FF 06 00 00 00 00 00 00 00 co 03
56. 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 co 03 00 00 00 00 00 00 00 76 00 00 00 00 00 00 00 63 07 A8 04 00 00 AO 00 00 00 00 6C 00 00 00 00 00 00 00 82 A9 FA OA 00 packet 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 31 30 30 31 30 00 00 00 00 00 00 00 00 00 00 00 00 00 00 63 2E 31 35 30 31 00 AO 00 00 00 00 00 00 00 00 00 00 00 00 82 31 30 30 30 30 00 73 00 00 00 00 61 00 00 00 00 00 00 00 53 33 C3 FA 00 00 73 00 00 00 00 00 00 00 00 00 00 00 00 53 3A 31 31 38 31 00 74 00 00 00 00 6E 00 00 00 00 00 00 00 63 01 2C 8B 00 00 74 00 00 00 00 00 00 00 00 00 00 00 00 63 30 30 30 30 30 11 14 05 C3 CMTS User Guide 62 30 31 30 38 SO 6S 20 3 30 03 SD 07 01 00 AD 73 74 BE 56 32 04 OA FA 8B 6C 36 04 OA FA 8B 01 39 02 02 40 37 07 01 1C 43 03 02 04 07 FF 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 0
57. 1 1 contention opp latency 10000 cable upstream 1 1 contention opps with data required cable upstream 1 1 rate limit cable upstream 1 1 status activate no ip directed broadcast no ip source verify no ip source verify subif no ip 12 bg to bg routing ip verify ip address filter interface Cable 1 0 1 cable utilization interval 10 cable docsisl10 max traffic burst 3044 cable sid verify F 6 ARRIS PROPRIETARY All Rights Reserved 11 14 05 shutdown bridge group 1 no no no no O O e e oo ee allow ip only management access tftp server access cable source verify arp broadcast echo 12 broadcast echo 12 multicast echo ip broadcast echo p multicast echo o 12 broadcast throttle o downstream dhcp server allowed hrottle credits initial 15 running 2 ncapsulation dotlq 1 native C3 CMTS User Guide encapsulation dotlq 1 encrypted multicast igmp disable ip dhcp relay ip dhcp relay information option ip dhcp relay validate renew dhcp relay non broadcast cable dhcp giaddr ip directed broadcast ip source verify ip source verify subif ip 12 bg to bg routing verify ip address filter unattached subinterfaces arp ca ca ca ca ca ca ca ca ca ca ca ca ca OO OOF O09 O09 FF OF OF 8 timeout 14400 le modulation le modulation profil le modulation le modulation le modulation le modulation le modulation le modulation le modulation le modulation le modula
58. 1 sub interface The cable sub interface cable 1 0 1 contains a map cpes specification The map cpes specification under this sub interface directs attached CPE to the cable 1 0 11 sub interface and hence subject to the restrictions imposed by these sub interface s specifications In this case ip source verify subif is specified and thus CPE source IP address must belong to the 10 11 0 0 24 subnet or be dropped that is a CPE IP address cannot belong to another subnet conf t ip routing default cm subinterface cable 1 0 0 default cpe subinterface cable 1 0 2 cable 1 0 0 for modem DHCP only no bridge group ip address 10 99 99 1 ip dhcp relay cable helper address 10 0 0 1 cable modem cable dhcp giaddr primary cable 1 0 1 for modems once allocated an IP address no bridge group encapsulation dotlq 1 native ip address 10 99 98 1 map cpes cable 1 0 11 ARRIS PROPRIETARY All Rights Reserved 8 31 8 Configuring Security Cable Source Verify cable 1 0 2 for unprovisoned cpe no bridge group ip address 10 1 0 1 255 255 255 0 ip source verify subif encapsulation dotlq 11 native ip dhcp relay cable helper address 10 0 0 1 host cable dhcp giaddr primary cable 1 0 11 for cpe IP forwarding no bridge group encapsulation dotlq 11 native encapsulation dotlq 11 encrypted multicast ip address 10 11 0 1 255 255 255 0 ip source verify subif ip dhcp relay cable helper address 10 0 0 1 host cable dhcp
59. 14 05 C3 CMTS User Guide Example Cable Modem Configuration File The cable modem configuration file should be tailored to the specific settings of the TDM to IP converter in use This example is for a converter using 5ms packetization and generating 1080 byte packets at the rate of 200 pps Thus the configuration file has a UGS flow which reflects those parameters NetworkAccess 1 BaselinePrivacy AuthorizeWaitTimeout 10 ReauthorizeWaitTimeout 10 KekGraceTime 300 OpWaitTimeout 10 RekeyWaitTimeout 10 TekGraceTime 600 AuthorizeRejectWaitTimeout 60 SAMapWaitTimeout SAMapMaxRetries 4 MaxCpeAllowed 16 UpstreamPacketClassification PcReference 2 PcServiceFlowReference 2 PcRulePriority 127 PcActivationState 1 PcIpClassification PcIpProtocol 17 PcIpDestPortStart 2000 PcIpDestPortEnd 2142 DownstreamPacketClassification PcReference 102 PcServiceFlowReference 102 PcRulePriority 127 PcActivationState 1 PcIpClassification PcIpProtocol 17 PcIpDestPortStart 2000 PcIpDestPortEnd 2142 UpstreamServiceFlow SfReference 1 SfQosSetType 7 SfTrafficPriority 0 SfSchedulingType 2 UpstreamServiceFlow SfReference 2 SfQosSetType 7 SfSchedulingType 6 SfRqTxPolicy 511 SfUgsSize 1040 SfNominalGrantInterval 5000 SfToleratedGrantJitter 2000 SfGrantsPerInterval 1 DownstreamServiceFlow SfReference 101 SfQosSetType 7 SfTrafficPriority 0 Rel
60. 168 250 80 arris current software version information information shown is for illus trative purposes only Your file names and dates may differ Example C3 gt show version ARRIS CLI version 02 Application image 4 3 0 33 Sep 13 2005 14 48 16 BootRom version 4 1 0 2 VxWorks5 4 2 System serial number hostid 392 WAN CPU card serial number 000250 System System 2 Fast uptime is 0 weeks 0 days 17 hours 32 minutes image file is tftp 10 17 224 12 4 3 0 33 bin Ethernet interface s 1 Cable interface s 256 MB DDR SDRAM memory Compact Flash 18386944 bytes free 109651968 bytes used 128038912 bytes total ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide modes Privileged Mode Commands Release 4 3 Standard To access commands in privileged mode use the enable command from user mode and enter a valid password In privileged mode the command prompt is the hostname followed by a number sign e g C3 All commands in user mode are valid in privileged mode The following is a summary of Privileged mode commands C3 cable Cable related commands calendar Modify date time cd Change Directory chkdsk Check a DOS filesystem for errors clear Reset commands clock Clock configure Enter configuration mode copy Copy a file delete Delete a file dir Display contents of current directory disable Exit privileged mo
61. 195 10 106 10 107 10 196 10 111 10 112 10 112 10 113 10 113 10 216 10 197 10 198 10 114 10 198 10 28 10 115 10 116 10 199 10 121 10 199 10 200 10 200 10 123 10 124 10 124 10 125 10 125 10 125 10 126 10 126 11 14 05 C3 CMTS 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 cable sync interval cable ucd interval cable upstream admission control cable upstream admission limit cable upstream channel type cable upstream channel width cable upstream concatenation cable upstream contention opp latency cable upstream contention opps with data cable upstream data backoff cable upstream description cable upstream differential encoding cable upstream docsis cable upstream dominant interval cable upstream euro docsis cable upstream extended frequency detect cable upstream fec cable upstream fragmentation cable upstream frequency cable upstream group id cable upstream high power offset cable upstream initial ranging delay cable upstream low power offset cable upstream mac mode cable upstream mer timeconstant cable upstream minimum unfrag burst cable upstream minislot size cable upstream modulation profile cable upstream nrng prm guard cable upstream periodic maintenance interval cable upstream plant length cable upstream power level cable upstream pre equalization cable upstream range backoff cabl
62. 3 3 3 CMTS Installation Cable Requirements The following diagram shows the connector and pin locations MOLEX DC RETURN BLACK 1 P N 3901 4031 40 to 60V FEED 2 RED 2 3 PIN CBL 40 to 60V FEED 2 WHITE 3 USED CRIMP MOLEX 3900 0056 Signal To AWG Color DC Return Pin 1 18 Black 40 to 60V Feed 1 Pin 2 18 Red 40 to 60V Feed 2 Pin 3 18 White Figure 3 3 Connector and pin locations A variety of cables and connectors and the tools to work with them must be obtained to complete the installation Table 3 1 Cable and connector types Connector Cable Wire Type Type Serial console included with C3 9 pin RS 232 serial cable DB 9M Ethernet connections Category 3 4 5 or 5E twisted RJ 45 pair cable RG 59 coaxial cable all Cay RG 6 DOCSIS 2 0 cards only p K NOTE Use only RG 59 coaxial cable with DOCSIS 1 1 cards RG 6 cable is not suitable for use with the connectors on these cards but may be used with DOCSIS 2 0 cards ARRIS PROPRIETARY All Rights Reserved 11 14 05 Ethernet Connections Cable Plant Requirements Release 4 3 Standard C3 CMTS User Guide The C3 provides two 10 100 1000BaseT Ethernet ports to allow connec tion to a terminating router server or other networking devices such as a hub switch or bridge Both Ethernet connectors are standard RJ 45 connectors For 10BaseT and 100BaseT uns
63. 4 index 2 src mask 0 0 0 0 cable filter group 4 index 2 dest ip 0 0 0 0 cable filter group 4 index 2 dest mask 0 0 0 0 cable filter group 4 index 2 ip proto ALL cable filter group 4 index 2 ip tos 0x0 0x0 cable filter group 4 index 2 match action drop cable filter group 4 index 2 status activate define a default filter group to block all access from CPE so if mistake made with modem config file no danger of illegal access Note this will block all CPE access if the modem config file does not call the correct filter group id cable filter group 99 index 1 cable filter group 99 index 1 src ip 0 0 0 0 cable filter group 99 index 1 src mask 0 0 0 0 cable filter group 99 index 1 dest ip 0 0 0 0 cable filter group 99 index 1 dest mask 0 0 0 0 cable filter group 99 index 1 ip proto ALL cable filter group 99 index 1 ip tos 0x0 0x0 cable filter group 99 index 1 match action drop cable filter group 99 index 1 status activate cable filter group 99 index 1 src port all cable filter group 99 index 1 dest port all cable filter group 99 index 1 tcp flags 0x0 0x0 activate filters cable filter turn on subscriber managment in the CMTS cable submgmt up to 16 cpe addresses per modem can be learned by the CMTS cable submgmt default max cpe 16 let the cmts learn the attached cpe ip addres up to the maximum 16 cable submgmt default learnable filter cpe traffic based on learned cpe ip address up to the maximum 16 c
64. 8 64qam scram sta sta sta tion AdvPhy AdvPhy 5 34 0 kO 338 no diff 384 tion tion fixed fixed k1 338 no diff 104 gps bler fixed qpsk1 bler 338 no diff 104 fixed Changing the Upstream Channel Type Provisioning a Channel Number DHCP Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved Use the command cable upstream n c channel type atdma or cable upstream n c channel type scdma to change the upstream channel type on the specified logical channel If you are using a provisioning file to assign a DOCSIS 2 0 cable modem to a particular channel use the following table to determine the channel number to specify based on the upstream and logical channel Table 7 2 Channel numbers Logical Upstream Channel 1 3 5 0 3 4 5 6 1 7 9 10 11 12 2 13 14 15 16 17 18 3 19 20 21 22 23 24 Dynamic Host Configuration Protocol DHCP is used by cable modems and CPE devices attached to the cable modem to obtain both an IP address and initial operating parameters This parameter or option transfer is the first interaction a cable modem has with management systems beyond the CMTS 7 3 7 Managing Cable Modems Transparent Mode 7 4 DHCP traffic between the DHCP server and the clients cable modems and subscriber CPEs travel through the C3 The C3 in turn can either pass the traffic through or take a more
65. Address 0000 ca3f 63ca Number of Ports 3 Bridge Type transparent only Learning Discards 0 Aging Time seconds 15000 Bridge forwarding table MAC Address CMTS Port Status Bridge Grp VLAN Tags 0000 92a7 adcc FastEthernet 0 0 0 Learned 0 Untagged 0000 ca31 67d3 Cable 1 0 0 Learned 0 Untagged 0000 ca31 6bf9 Cable 1 0 0 Learned 0 Untagged 0000 ca3f 63ca FastEthernet 0 0 Self N A N A 0000 ca3f 63cb FastEthernet 0 1 Self N A N A NON OPER 0000 ca3f 63cc Cable 1 0 Self N A N A 0001 5c20 4328 FastEthernet 0 0 0 Learned 0 Untagged C3 10 50 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide show bridge group Syntax show bridge group n Shows details of the specified bridge group or all bridge groups if you specify no bridge group Example C3 show bridge group 1 bridge group 1 ATTACHED Cable 1 0 1 VLAN tag 42 native FastEthernet 0 1 1 not bridging no VLAN tag configured FastEthernet 0 0 1 VLAN tag 42 C3 config C3 config bridge 1 bind cable 1 0 1 28 fastethernet 0 0 1 44 C3 config bridge 1 bind cable 1 0 1 19 fastethernet 0 0 1 83 C3 config bridge 1 bind cable 1 0 1 73 fastethernet 0 1 1 53 C3 config show bridge group 1 bridge group 1 ATTACHED Cable 1 0 1 VLAN tag 42 native VLAN tag 19 bound to FastEthernet 0 0 1 VLAN tag 83 VLAN tag 28 bound to FastEthernet 0 0 1 VLAN tag 44 VLAN tag 73 bound to FastEthe
66. An example of this is shown following refer to the 6 static routes and for network 15 0 0 0 24 ARRIS PROPRIETARY All Rights Reserved 10 143 10 Command Line Interface Reference Example C3 show ip route Codes C connected S static I IGRP R RIP M I Be EGP G gt GGP OQ OSPF Boos BS 15 Ls TSIS x candidate default gt primary route Gateway of last resort is 10 250 96 1 to network 0 0 0 0 S 0 0 0 0 0 1 0 via 10 250 96 1 FastEthernet 0 1 0 4 0 0 0 24 is subnetted 1 subnet R 4 4 4 0 120 2 via 10 250 96 102 00 00 03 lt lt lt lt lt rip learned default AD 120 5 0 0 0 24 is subnetted 1 subnets s gt 5 5 5 0 130 0 via 10 250 96 7 FastEthernet 0 1 0 lt lt lt lt primary static with AD changed to 130 S 130 0 via 10 250 96 8 FastEthernet 0 1 0 lt lt lt lt backup static 7 0 0 0 8 is variably subnetted 3 subnets 3 masks R 7 0 0 0 24 120 2 via 10 250 96 102 00 00 03 Fast R 7 0 0 0 8 120 2 via 10 250 96 102 00 00 03 FastEt R 7 7 0 0 16 120 2 via 10 250 96 102 00 00 03 Fast 10 0 0 0 24 is subnetted 4 subnets 10 7 8 0 is directly connected Cable 1 0 9 lt lt lt lt directly connected to c3 configured on sub int AD 0 C 10 250 96 0 is directly connected FastEthernet 0 1 0 C 10 250 99 0 is directly connected FastEthernet 0 0 0 C 10 250 103 0 is directly connected
67. C3 config ARRIS PROPRIETARY All Rights Reserved 10 35 10 Command Line Interface Reference copy Syntax copy orig dest Duplicates the file orig and names it dest Specify files by name or use the following special qualifiers Keyword Description flash Copies a file on the flash disk to the flash disk or a TFTP server running configuration Copies the running configuration to a file or the startup configuration startup configuration Copies the startup configuration to a file or to the running configuration tftp Copies a file from the default TFTP server to the flash disk tftp ipaddr file Copies a file or configuration to or from the TFTP server at the specified address If copying to or from the local disk make sure that the drive letter is in upper case Example C3 copy tftp 10 1 100 1 vxWorks1l st vxWorks1 st C3 copy C test txt C test old txt Copying C3 29886 bytes copied in 0 secs lt 29886 bytes sec gt 10 36 ARRIS PROPRIETARY All Rights Reserved 11 14 05 delete Syntax dir Syntax disable disconnect Syntax Release 4 3 Standard C3 CMTS User Guide delete filename Removes the specified file from the Compact Flash module dir path Displays a list of all files in the current directory or the specified directory path Use show c for even more information Exits to user mode disconnect vt
68. C3 config interface cable 1 0 C3 config if Syntax cable downstream mac mode mode wireless Sets the MAC mode for the downstream The mode is one of the following e docsis standard DOCSIS e euro docsis standard Euro DOCSIS When specifying docsis or euro docsis modes the C3 normally performs parameter checking to ensure proper operation for that mode Specify the wireless option to allow setting the downstream symbol rate modulation and annex type to non standard values Syntax cable downstream annex a b Sets the annex type for the downstream This command has been super seded by the cable downstream mac mode command and is now used only to set the annex type when the MAC mode is set to wireless Since the annex type alone is not sufficient to describe the actual mode of operation this command behaves as follows e Setting Annex A or B during startup after a firmware upgrade config ures the system in DOCSIS or EuroDOCSIS mode e Setting Annex A or B after startup changes only the annex type on the downstream Syntax cable downstream if frequency if ARRIS PROPRIETARY All Rights Reserved C 3 C Wireless Cable Applications Sets the CMTS IF output frequency When changing the MAC mode to docsis or euro docsis the C3 resets the IF frequency to either 43 75MHz docsis or 36 125MHz euro docsis to ensure proper output from the internal upconverter in the desired mode Once the new mode is set
69. Command Line Interface Reference hostname ip default gateway Syntax ip domain name Syntax 10 142 Sets the C3 host name no ip default gateway ipaddr Sets the default gateway for DHCP relay and TFTP routing operations Use show jp route page 10 20 to verify the current default gateway This specification has no effect in ip routing mode In IP routing mode the running configuration contains the default gateway but the specification has no action See also jp route page 10 143 ip domain name string Sets the domain name for the CMTS The string is a domain name such as example net The commands hostname and ip domain name both change the SNMP variable sysName For example if sysName should be cmts example net use the following commands to set it up hostname cmts ip domain name arrisi com The prompt displayed at the CLI is the hostname only using the example above the prompt would be cmts config ARRIS PROPRIETARY All Rights Reserved 11 14 05 ip route Syntax Release 4 3 Standard C3 CMTS User Guide no ip route ipaddr subnet gateway dist Adds a static route to the C3 The parameters are Keyword Description Destination network or host IP address to be routed ipaddr In bridging mode a 0 0 0 0 address and 0 0 0 0 mask has no effect Use ip default gateway instead Netmask or prefix mask of the destination network or h
70. DHCP helper addresses of the sub interface the DHCP message is received on are used Example 1 default cm subinterface cable 1 0 0 default cpe subinterface cable 1 0 0 interface Cable 1 0 0 cable helper address A cable modem cable helper address B cable modem cable helper address C cable helper address cable helper address Flu The C3 sends any cable modem s DHCP discover request to helper addresses A and B and any host s DHCP discover request to helper addresses C D and E Example 2 default cm subinterface cable 1 0 0 default cpe subinterface cable 1 0 0 interface Cable 1 0 0 cable helper address A host cable helper address B host cable helper address C host cable helper address cable helper address iw Fl Any cable modem s DHCP discover request will be sent to helper addresses D and E Any host s DHCP discover request will be sent to helper addresses A B and C Example 3 default cm subinterface cable 1 0 0 default cpe subinterface cable 1 0 0 interface Cable 1 0 0 cable helper address A cable modem cable helper address B host cable helper address C host Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 7 7 7 Managing Cable Modems Redundant DHCP server support Verifying DHCP Forwarding 7 8 cable helper address D cable helper address E Any cable modem s DHCP discover request is sent to helper address A Any host s DHCP discover request will
71. Description automatic The CMTS controls the scheduling frequency of initial main tenance opportunities if the insert interval is set to zero The ranging backoffs should also be set to 16 so that these can be varied dynamically also The default interval between opportunities is about 1 2 seconds but the C3 schedules additional opportunities if it detects that a previous opportunity resulted in a collision due to 2 or more modems trying to use it The minimum interval between opportunities is about 40 ms between 30 and 60 ms to align with a multiple of the dominant grant interval or the shortest grant interval admitted If several physical channels have their opportunities aligned then additional opportunities in one logical channel on a physical channel are accompanied by additional oppor tunities on the other channels as well because of the need to align all opportunities across all channels in the group This may result in decreased efficiency in all channels The fixed period between initial ranging opportunities in centi second 1 100th second intervals Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 197 10 Command Line Interface Reference cable mac mode Syntax cable mac mode mode Sets the MAC mode for both downstream and upstream The mode is one of the following Keyword Description docsis DOCSIS upstream and downstream euro docsis Euro DOCSIS upstream an
72. If this password is not set then the enable password is required for privileged mode access To clear this password issue the no enable secret command The password string must be at least 8 characters long If both the enable and enable secret passwords have not been set the C3 disables access to privileged mode using telnet You can still enter privileged mode using a direct serial connection to the C3 ARRIS PROPRIETARY All Rights Reserved 11 14 05 exception Syntax file prompt Syntax help Release 4 3 Standard C3 CMTS User Guide no exception auto reboot 3212 monitor reboot reset Enables automatic re boot on crash or when the C3 detects a problem on the cable interface The parameters are Keyword Description auto reboot Specifies automatic reboot after a system crash Specifies CMTS behavior upon detecting a problem on the PAo downstream interface reboot or reset file prompt alert noisy quiet Instructs the C3 to prompt the user before performing certain types of file operations Keyword Description noisy The CMTS asks the user to confirm all file operations ajeri The CMTS asks the user to confirm only destructive file operations uiet The CMTS asks the user to confirm only format or erase q commands Displays a list of available commands and a brief description of each command ARRIS PROPRIETARY All Rights Reserved 10 141 10
73. Interface Reference Command Completion and Parameter Prompting Example Example 10 2 Press the Tab key to complete a partially typed command If what you type previous to the Tab could be completed in two different ways for example co could be completed as configure or copy the C3 console beeps and does not attempt to complete the command con lt tab gt configure The question mark key has two purposes e When added to the end of a partially typed command the C3 lists commands that start with the current fragment e When separated from the command by one or more spaces the C3 lists valid parameters or values that can follow the command config 10 logging login config logging buffered Enable local logging of events in a circular buffer on Enable all logging severity Enable disable logging for a particular severity syslog Enable syslog logging for events thresh Configure thresholds trap Enable traps trap control Configure DOCSIS trap control ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Input Editing Use the following keystrokes to edit a command before entering it Character Common sequence Name Action lt CR gt Carriage Return Passes completed line to parser lt NL gt Newline Passes completed line to parser lt DEL gt Delete Backspace one character and delete
74. Layer 3 and the TCP header layer 4 This fragment is an initial fragment Subse quent IP packets fragments of this segment only have a layer 3 header no TCP header Such fragments are non initial fragments If a TCP segment is completely contained in the first IP Datagram then this is a non fragment packet ARRIS PROPRIETARY All Rights Reserved 8 17 8 Configuring Security With regard to defining ACL filters blocking initial fragments is often all that is required as the remaining packets cannot be re assembled that is all packets with an offset greater than zero traditionally are allowed to pass through ACL filters But this type of processing can allow both an overlap ping fragment attack and a tiny fragment attack on the host as detailed in RFC1858 Thus the C3 must also be able to deny non initial fragments Where a data flow to port 80 on a host is to be protected an ACL such as ACL 100 see below may be created This ACL only tests for initial frag ments When an ACL such as ACL102 see below is created non initial fragments containing no layer 4 header match the layer 3 part of the first ACE As there is no Layer 4 information in the packet no layer 4 information is tested This packet is a non initial fragment so the fragment option also matches Thus all ACE filter options that can be matched are matched and the packet is denied In the case where an initial or non fragment hits this fi
75. MyCommunity as a community string and only traps registered under the internet domain are sent which are basically all traps that a CMTS would send ARRIS PROPRIETARY All Rights Reserved 7 19 7 Managing Cable Modems Controlling User Access General Modem Status 7 20 Each command requires a unique identifier for each trap listener You should replace the My prefix with a proper unique identifier such as a host name C3 configure terminal C3 config snmp server user MyCommunity MyGroup v2c access list Trap C3 config snmp server group MyGroup v2c notify MyTrapNotify C3 config snmp server view MyTrapNotify internet included C3 config snmp server notif sec model MySecurity MyCommunity v2c security model v2 C3 config snmp server host MyTrapReceiver MySecurity 192 168 250 107 traps C3 config snmp server enable traps K NOTE Use the command show snmp server to list these settings These settings are persistent across reboots You can control access to the network using password like community strings that enable you to assign users to communities that have names for example public or private This system enables you to manage devices on the network Community names should be kept confidential To prevent unauthorized users from accessing the modem you assign the modem to a community You can also specify that SNMP access is allowed only from the cable side You assign a modem to a com
76. N N N gt informs udp port lt gt timeout lt gt retries lt 0 255 gt snmp server enable informs traps Enables configured traps or informs Example C3 config snmp server enable traps ARRIS PROPRIETARY All Rights Reserved 10 169 10 Command Line Interface Reference snmp server disable Syntax snmp server engineid Syntax 10 170 snmp server disable informs v2c v3 or snmp server disable traps vl v2c v3 Disables configured traps or informs Example C3 config snmp server disable traps v2c snmp server engineid remote string user name auth md5 sha Configures a remote SNMPv3 engineID The parameters are Keyword Description string Octet string in hexadecimal Separate each octet by a colon username User name as a string md5 Use the MD5 algorithm for authorization sha Use the SHA algorithm for authorization ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide snmp server community Syntax Release 4 3 Standard no snmp server community community name access snmp access list name view mib family included excluded Allows SNMP access to the C3 from the specified IP address and subnet using the specified community name Keyword Description One of the following access ro read only rw read and write snmp access list Specifies a defined access list view Specifies a defined vie
77. N gt lt 1 1024 gt index lt 1 1024 gt dest port lt 0 65536 gt lt 1 1024 gt index lt 1 1024 gt ip proto lt 0 256 gt lt 1 1024 gt index lt 1 1024 gt ip tos lt 0x0 Oxff Mask gt lt 0x0 S S O O 0 Decide what to do if the filter matches cable filter group lt 1 1024 gt index lt 1 1024 gt match action accept drop Activate the filter or de activate it cable filter group lt 1 1024 gt index lt 1 1024 gt status activate deactivate The following example creates filters to allow only SNMP traffic to from modems from defined management networks and to block all multicast based traffic to from hosts activate filters cable filter turn on subscriber managment in the CMTS cable submgmt up to 16 cpe addresses per modem can be learned by the CMTS cable submgmt default max cpe 16 let the cmts learn the attached cpe ip addres up to the maximum 16 cable submgmt default learnable filter cpe traffic based on learned cpe ip address up to the maximum 16 cable submgmt cpe ip filtering activate the defaults defined here for all modems and attached cpe cable submgmt default active assign default filters 10 108 ARRIS PROPRIETARY All Rights Reserved 11 14 05 note can be overridden for a modem as can all submgmt defaults by submgmt TLV s in cable cable cable cable j submgmt submgmt submgmt submgmt block mcast cable cable cabl
78. Question Mark Provides help information AA Control A Position cursor to start of line AB Control B Position cursor left one character Telnet session Clears input and resets line ac Control C he Serial console Opens low level console prompting for password AD Control D Delete current character AE Control E Position cursor to end of line AF Control F Position cursor right one character AH Control H Backspace one character and delete AT Tab Complete current keyword AK Control K Delete to end of line AL Control L Redraw line AN Control N Move down one line in command history Telnet session Move up one line in Ap Control P command history Serial console Reboot the CMTS AR Control R Redraw line AU Control U Clears input and resets line buffer AX Control X Clears input and resets line buffer AZ Control Z Pass control to user session exit function lt ESC gt A Up Arrow Move up one line in command history lt ESC gt B Down Arrow Move down one line in command history lt ESC gt C Right Arrow Position cursor right one character lt ESC gt D Left Arrow Position cursor left one character lt SP gt Space Separates keywords Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 3 10 Command Line Interface Reference Output Filtering Character Common sequence Name Action a Quote Surrounds a single token AW Control W Delete the last word before the cursor on the co
79. Release 4 3 Standard C3 CMTS User Guide Both broadcast and IP throttling use throttle credits to determine when to apply throttling There are two types of credits e Initial credits each host needs a certain number of packets to properly register on the network and obtain an IP address This number should allow for retries and retransmits The initial credit expires when the host has sent the specified number of packets regardless of how long it takes to reach that number The default initial credit is 15 packets e Running credits after the initial credit expires the C3 begins applying the running credit When a host sends packets at a rate exceeding the running credit initially 2 packets per second the C3 applies a speci fied ACL to those packets The ACL can throttle specific packets such as broadcast or multicast while allowing other packets through even if those packets still exceed the running credit Broadcast throttling operates on packets incoming from cable modems and subscriber CPE The C3 allows for an initial burst of broadcast packets necessary to register a modem on the network after automatically allowing that initial number of packets to go through without throttling After the initial count is reached the C3 begins throttling broadcast and multicast packets when the number of those packets per second exceeds the specified threshold Use the command 1 2 broadcast throttle in cable sub interface configu rati
80. Trap Listener Release 4 3 Standard C3 CMTS User Guide 7 NOTE SNMP access to the CMTS is off by default You can set up basic access using the following global configuration commands snmp server community public ro snmp server community private rw Management information is a collection of managed objects or variables that reside in a virtual information store called the Management Informa tion Base MIB Collections of related objects are defined in MIB modules MIB objects are defined by a textual name and a corresponding object identifier syntax access mode status and description of the semantics of the managed object The following shows the format of a DOCSIS MIB variable docsIfDownChannelPower OBJECT TYPE SYNTAX TenthdBmv UNITS dBmv MAX ACCESS read write STATUS current DESCRIPTION At the CMTS the operational transmit power At the CM the received power level May be set to zero at the CM if power level measurement is not supported If the interface is down this object either returns the configured value CMTS the most current value CM or the value of 0 See the associated conformance object for write conditions and limitations See the reference for recommended and required power levels REFERENCE DOCSIS Radio Frequency Interface Specification Table 4 12 and Table 4 13 The following CLI commands register the host 192 168 250 107 as a SNMPv2c trap listener Traps sent to this listener have
81. Upconverter Blade cPCI Midplane Fantray PCB h Power Midplane Upconverter Midplane Psu1 Front Pane Extension Card PSU2 Front Panel Display Figure 2 1 Major components of the C3 CMTS Front panel The following diagram shows the C3 front panel J S4 wO SO S 2 xs lt sl N 0 o00000 000 0 000 Cadant C3 CMTS Figure 2 2 Front panel of C3 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 2 5 2 Getting Started The following table lists and describes the front panel indicators Table 2 2 Front panel indicators Description Normal operation One fan has failed More than one fan has failed Upstream is active Upstream is in use not used Name Indication Green FANS Red Flashing Red RXO to Green RX5 Flashing Green AUX Green WAN network port is linked Flashing Green WAN network port is active MGMT network port is linked MGMT network port is active Upconverter is operating properly Upconverter not installed Power supply 1 on the left side behind the front panel is operating properly Power supply 1 fault detected Power supply 2 on the right side behind the front panel is operating properly Green FE 1 Flashing Green Green UP CON Off Green PSU 1 Flashing Red Green PSU 2 Flashing Red Power supply 2 fault detected Flash
82. Use this procedure to replace the fuses The C3 CMTS has two fuses located beneath the power connectors on the back of the CMTS chassis Replace Fi AC fuse only with 250V 5A Antisurge T Glass Replace F2 DC fuse only with 250V 10A Antisurge T Glass A WARNING Risk of fire For continued protection against risk of fire replace only with same type and ratings of fuses The following diagram shows the fuse locations AC 110V 250V 10A 250V 5A Antisurge Antisurge T Glass T Glass Figure 9 9 Fuse location End of procedure ARRIS PROPRIETARY All Rights Reserved 9 9 9 Service Procedures Resetting the CMTS after Thermal Overload If a thermal overload occurs the C3 shuts down safely with no damage The power supplies are disabled and remain in an interlocked state until you clear the interlock manually Procedure 9 7 Resetting the CMTS after Thermal Overload Follow these steps to clear the interlocked state 1 Correct the condition that caused the thermal overload 2 Remove the C3 front panel as described in Front Panel Removal and Replacement page 9 2 3 Locate the switch SW2 under the RF test jack on the right side of the C3 The following photo shows its location g P S m o rs sw2 EE Figure 9 10 Location of the SW2 switch K NOTE SW1 is the reset for the environmental monitoring CPU an
83. a specific cost to the default summary route sent by an ABR into a stub area If the no form of this command is used the metric assigned to the default summary route reverts back to the configured interface cost i e configured by the ip ospf cost interface command ARRIS PROPRIETARY All Rights Reserved 11 14 05 area nssa Syntax area stub Syntax Release 4 3 Standard C3 CMTS User Guide no area area id nssa no summary Creates a new Not So Stubby Area NSSA or modifies an existing area config ured using the network command into an NSSA All OSPF routers within an NSSA must be configured to be within an NSSA as well If the area identry was not previously created using the network command this command creates an area entry but associates no interfaces with the new area Use the no form of this command without the no summary qualifier to recon figure the specified NSSA area specified as a standard area Otherwise the specified attribute is removed from the NSSA area no area area id stub no summary Creates a new stub area or modifies an existing area configured using the network command into a stub area All OSPF routers within the area must be configured to be within a stub area If the area id entry was not previously created using the network command running this command creates an area entry but associates no interfaces with the new area Note that stub areas are areas into which in
84. a subnet known by the Cadant C3 IP stack For example the DHCP server specified is behind an external router and this router is NOT connected to the management port K NOTE This command cannot be used to add a default gateway in bridging mode i e a 0 0 0 0 0 0 0 0 address and mask will have no effect in bridging mode Use ip default gateway instead In IP routing mode This command adds a static route to the C3 Use the address mask 0 0 0 0 0 0 0 0 to add a route of last resort to the C3 routing table See also cable dhcp giaddr page 10 215 cable helper address page 10 216 ip route page 10 143 show ip route page 10 20 jp default gateway page 10 142 ARRIS PROPRIETARY All Rights Reserved 10 145 10 Command Line Interface Reference ip routing Syntax no ip routing Turns on IP routing in the C3 Must be executed from global configuration mode Starting IP routing retains configured bridge groups sub interfaces VLAN IDs and Layer 2 bindings between sub interfaces If pure IP routing is required issue a no bridge group command for each defined sub interface The serial console reports the changed interface conditions Changing from basic bridge operation to routing operation is shown as follows Init OK Logical i f 0 sbe0 changing state to ATTACH Logical i f 1 sbe1 changing state to ATTACH See also router rip page 10 158 show ip route page 10 20 Router Config uration Mode
85. a subnet mask for example a subnet mask 255 255 255 0 corresponds to a wildcard mask of 0 0 0 255 The wildcard bits must be set contiguously starting from the least significant bit area The area assigned to the router Area 0 is the backbone area to which all other areas in the system connect The C3 may be used in only one area which means that it cannot be used as an Area Border Router ABR All routers in the same area must be configured with the same area number ARRIS PROPRIETARY All Rights Reserved 10 255 10 Command Line Interface Reference area authentication Syntax area default cost Syntax 10 256 disable Disables routing on this network but leaves the address range configured To remove an entry use the no form of this command If no network address range exists for an interface the interface does not participate in the OSPF routing process Overlapping address ranges are permitted In this case the interfaces are associated with the longest prefix match network address range In the case of a tie the C3 uses the first network address range match no area area id authentication mode text md5 Configures the authentication type on an area This allows password based protection against unauthorized access to an area If the no form of this command is used both plain text and MD5 authentication for the specified area is disabled no area area id default cost cost Assigns
86. active role You have two options e Transparent mode the default the C3 re broadcasts DHCP broadcast packets received from a cable sub interface to all active fastethernet sub interfaces in the same bridge group Transparent mode requires that a DHCP server or relay must be within the same broadcast domain as the CPE e DHCP relay mode by specifying ip dhcp relay on a cable sub inter face the C3 can reduce broadcast traffic by sending DHCP unicast packets only to specific fastethernet sub interfaces K NOTE DHCP relay is required for routing sub interfaces The following sections describe each mode The first option transparent mode is the factory default In this case the C3 simply passes DHCP messages along and takes no part in the DHCP process The following diagram shows the flow of DHCP traffic through the C3 in transparent mode DHCP Ethernet Cable Cable Ethernet DHCP Discover Broadcast DHCP Offer DHCP Request DHCP ACK DHCP Discover Broadcast DHCP Offer DHCP Request repack S Figure 7 1 DHCP traffic flow through the C3 in transparent mode ARRIS PROPRIETARY All Rights Reserved 11 14 05 DHCP Relay Mode What Happens During Relay Release 4 3 Standard C3 CMTS User Guide When DHCP Relay is active on a cable sub interface the C3 intercepts DHCP broadcast packets received at the cable sub interface and re directs them to all fastethernet sub interfaces or to a specific address
87. agencies to have the ability to intercept traffic the 4 2 release of the C3 software introduced the Simple Law Enforcement Monitoring Feature SLEM The C3 supports SLEM in accordance with RFC 3924 This allows the operator to configure ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide the CMTS to intercept customer data and supply the captured data to a mediation device that handles the collection of such information Some of the key features are Intercepts customer traffic by using a set of stream filters encapsu lates this traffic and forwards it to a remote collection point called a Mediation Device MD Allows for up to 20 interception sessions to be active at one time Uses the PacketCable Electronic Surveillance Specification encapsula tion method for tunneling traffic to mediation devices Allows a particular DSCP value to be applied to the forwarded traffic Provides layer 3 and layer 4 IP related stream filter for matching customer data for interception Provides for an optional layer 2 stream filter for matching customer data for interception Allows for stream filters to be configured but not enabled on customer data Keeps count of the number of matched packets per stream filter Keeps count of the number of dropped packets per stream filter that were dropped during the lawful intercept process Maintains a timeout for each individual active interception session to ensure that the interception
88. all interfaces if none are specified Examples C3 show controllers cable 1 0 Cable1 0 downstream Frequency 123 0 MHz Channel Width 6 0 MHz Modulation 64 QAM Power 60 0 dBmV R S Interleave I 32 J 4 Symbol Rate 5056941 MSym sec Downstream channel ID 1 Dynamic Services Stats DSA 0 REQs 0 RSPs 0 ACKs 0 Successful DSAs 0 DSA Failures DSC Q REQ O RSPs 0 ACKs 0 Successful DSCs 0 DSC Failures DSD O REQ 0 RSPs 0 Successful DSDs 0 DSD Failures Hurn DCC 0 REQs 0 RSPs 0 ACKs 0 Successful DCCs 0 DCC Failures Cable1 0 Upstream 0 0 Frequency 10 0 MHz Channel Width 3 200000 MHz Channel type ATDMA SNR 48 1 dB MER 0 0 dB Nominal input power level 4 0 dBmV fixed Tx Timing offset 1821 Ranging Insert Interval ms Set 0 Actual Nom 1280 Min 40 Ranging backoff Set 16 16 Actual 0 3 Data backoff Set 16 16 Actual 6 9 Modulation Profile Group 42 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Ingress cancellation is disabled Minislot Size in number of Timebase Ticks is 4 Upstream channel ID 1 Cable1 0 Upstream 1 1 Frequency 15 0 MHz Channel Width 3 200000 MHz Channel type TDMA SNR 50 0 dB MER 0 0 dB Nominal input power level 4 0 dBmV fixed Tx Timing offset 0 Ranging Insert Interval ms Set 0 Actual Nom Min Ranging backoff Set 16 16 Actual Data backoff Set 16 16 Actual Modulation Profile Group 6 Ing
89. and not the cable 1 0 1 sub interface but must be forwarded across bridge groups to the CPE device For the ACK to be forwarded across bridge groups ip 12 bg 4 18 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide to bg routing again must be specified on fastethernet 0 1 0 No other sub interface needs an ip 12 bg to bg routing specification CPE traffic is still securely restricted to bridge group 1 Provisioning rver mi Internet gateway 205 2 3 254 24 L 10 6 0 2 24 enn pozan 10 6 0 1 24 co Internet 0 1 0 tag none erae Bridge dc So Cadant C3 1 0 0 I I ip l12 bg to bg routing tag none 1 10 6 0 0 24 Network 205 2 3 0 24 Gateway 205 2 3 254 Figure 4 15 Example of attaching bridge groups Incoming Traffic Allocation to a Sub Interface As detailed above the concept of bridge groups and sub interfaces is very powerful but hinges on how traffic arriving by a physical interface is allo cated to a sub interface by the Cadant C3 In summary e Fastethernet sub interfaces use 802 1q VLAN tags e Cable sub interfaces use VSE encoding the map cpes command the default cpe subinterface the cable modem vpn command Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 4 19 4 Bridge Operation Fastethernet Interface Cable Interface Default Mapping of CM toa Sub Interface Cable Modem IP Traffic CPE Traffic 4 20
90. automatic fault recovery Fuse F1 AC fuse 250V 5A Anti surge T Glass Fuse F2 DC fuse 250V 10A Anti surge T Glass 19 in W x 18 3 in D x 1 75 in H 48 3 cm W x 46 5 cm D x 4 4 cm H Height 1 RU rack unit Weight 10 Kg Operating Temperature 0 to 40 C Storage Temperature 40 to 75 C Humidity 10 to 80 non condensing Electromagnetic FCC Part 15 Class A CE MTBF excluding fans 150 000 hours at 25 C based on accelerated life testing Number of Upstreams 2 4 or 6 Frequency Range 5 to 42 MHz DOCSIS 5 to 55 MHz Japan 5 to 65 MHz EuroDOCSIS Modulation QPSK 8QAM 16QAM 32QAM and 64QAM Symbol Rate 160 320 640 1280 2560 5120 Ksymbol sec Data Rate 5 12 to 30 72 Mbps max ARRIS PROPRIETARY All Rights Reserved A 3 A Specifications RF Specifications Downstream Channel Bandwidth 200 400 800 1600 3200 6400 KHz Receive Signal Level 20 dBmv to 26 dBmvV valid level varies by symbol rate Frequency range 88 to 860 MHz Modulation 64 256 QAM Data rate 30 to 53 6 Mbps max Transmit level 45 to 61 dBmV Output Impedance 75 ohm Modulation rate 64 QAM 5 056951 Msymbols sec 256 QAM 5 360537 Msymbols sec EuroDOCSIS 6 952Msymbols sec ARRIS PROPRIETARY All Rights Reserved 11 14 05 B CMTS Configuration Examples Topics C3 Install Debug What to Do if DHCP is Not Working Advanced Bridging DHCP Server Configuration Standard Ether
91. based network redistributing RIP routes DHCP traffic flow through the C3 in transparent mode DHCP traffic flow with dhcp giaddr enabled Simplified network diagram Example of bridging traffic to the FastEthernet RFC 3924 framework AAA Security Model Method list example Front panel latch Front panel faceplate Reset switch Power supply Fan tray Location of battery on CPU card Removing the CPU card ARRIS PROPRIETARY All Rights Reserved C3 CMTS 4 14 4 15 4 16 4 17 4 19 4 22 4 23 5 2 5 6 5 7 5 12 5 13 5 18 6 6 6 7 7 4 7 15 8 21 8 25 8 37 8 43 8 44 9 2 9 2 9 3 9 4 9 6 9 7 11 14 05 C3 CMTS Figure 9 8 Figure 9 9 Figure 9 10 Figure 9 11 Figure 9 12 Figure 9 13 Figure 9 14 Figure 9 15 Figure B 1 Figure B 2 Figure B 3 Figure B 4 Figure B 5 Figure B 6 Figure B 7 Figure B 8 Figure B 9 Release 4 3 Standard List of Figures Replacing the RF card Fuse location Location of the SW2 switch Location of compact flash IF cable routing Adding a MAC PHY card Securing the dual receiver board Fully populated MAC PHY card Simple configuration Default allocation of sub interfaces to the default bridge groups Example of bridge group capabilities Example of how an ISP based DHCP server manages CPE IP addresses Example of all the C3v advanced bridging and VLAN abilities Example of open access without using 802 1Q backbone VLANs Example of a pure routing mode
92. be having dhcp issues for CPE dhcp debug still use cable modem mac address show cable modem now turn on debug for selected modem debug cable mac address x x x x debug cable dhcp relay term mon ARRIS PROPRIETARY All Rights Reserved B 5 B CMTS Configuration Examples Simple Bridging B 6 Watch the console for DHCP e discover e offer e request e ack on the C3 If CPE DHCP is to be monitored enable DHCP debug for the attached cable modem MAC address NOT the CPE MAC address See also Chapter 7 Managing Cable Modems and the section on DHCP Common Configurations The following configurations provide C3 configuration from a factory default condition and in the more complicated examples DHCP server configuration details In a factory default configuration the C3 is configured with two bridge groups only one of which is active e fastethernet 0 0 0 and cable 1 0 0 are members of bridge group 0 e cable 1 0 1 is pre defined e cable 1 0 1 and fastethernet 0 1 0 are both members of bridge group 1 e cable 1 0 1 is shutdown e default cm subinterface cable 1 0 0 e default cpe subinterface cable 1 0 0 All traffic uses the fastethernet 0 0 WAN interface This configuration is the equivalent of v2 0 series software inband management operation The following examples repeat the simple example given above but showing in a more diagrammatic form of the default allocation of sub interfaces to the
93. be intercepted dstMacAddress indicates that traffic destined to a given address should be intercepted srcMacAddress indicates that traffic sourced from a given address should be intercepted ethernetPid indicates that traffic with a stated Ethernet Protocol Identifier should be intercepted dstLlicSap indicates that traffic with an certain 802 2 LLC Destination SAP should be intercepted srcLlcSap indicates that traffic with an certain 802 2 LLC Source SAP should be intercepted At least one of the bits has to be set in order to activate an entry If the bit is not on the corresponding MIB object value has no effect and need not be specified when creating the entry cTapStream802Entry 2 cTapStream802Interface OBJECT TYPE SYNTAX Integer32 1 0 1 2147483647 MAX ACCESS read create STATUS current DESCRIPTION The ifIndex value of the interface over which traffic to be intercepted is received or transmitted The interface may be physical or virtual If this is the only parameter specified and it is other than 1 or 0 all traffic on the selected interface will be chosen f the value is zero matching traffic may be received or transmitted on any interface Additional selection parameters must be selected to limit the scope of traffic intercepted This is most useful on non routing platforms or on intercepts placed elsewhere than a subscriber interface f the value is 1 one or both of cTapStrea
94. be sent to helper addresses B and C Helper addresses D and E are redundant in this configuration See cable helper address page 10 216 for syntax and other information Where multiple helper addresses are specified the C3 unicasts the DHCP Discover to each of the specified helper addresses Any ensuing commu nication with the DHCP client is unicast only to the DHCP server that responded to the first DHCP Discover unicast If a subsequent DHCP request is not answered by this DHCP server the C3 again unicasts the message to all specified DHCP servers cable helper address a b c d unicasts all DHCP broadcast messages to the specified DHCP server IP address cable helper address a b c d cable modem unicasts all cable modem generated DHCP broadcast messages to the specified DHCP server IP address cable helper address a b c d host unicasts all host generated DHCP broadcast messages to the specified DHCP server IP address DHCP forwarding operation can be verified using the C3 debug facilities K NOTE If debugging CPE DHCP turn on debug for the MAC address of the modem that the CPE is attached to For example use the following commands from privilege mode terminal monitor debug cable dhcp relay debug cable mac address 00A0 7374 BE70 6 51 34 DHCPRELAY DISCOVER adding relay information option 6 51 34 DHCPRELAY DISCOVER setting giaddr to 10 250 139 2 6 51 34 DHCPRELAY DISCOVER fr
95. block size Valid range 0 to 4294967295 Together depth and blksize specify the size and dimensions of a data block depth specifies the column height and the row length is equal to blksize depth trell For SCDMA modulation profiles specifies whether to use trellis code modulation Use trell to enable trellis code modulation or no trell to disable it step For SCDMA modulation profiles the interleaver step size Valid range 0 to 32 spread For SCDMA modulation profiles specifies whether or not the SCDMA spreader is enabled Use spr to enable or no spr to disable subframe For SCDMA modulation profiles the SCDMA sub frame size Valid range 0 to 128 Interleavedepth may be off static or dynamic but should be off for TDMA mode Each row in a de interleaver block corresponds to one RS codeword When interleaving is active and is in dynamic mode InterleaveBlockSize will deter mine how many blocks are formed from a packet and thus the number of rows in each block When in static mode the number rows in a block is locked at 10 118 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide the specified value In either case each block is sampled column wise to recon struct the original packet before RS decoding occurs Off mode number rows 1 Interleavedepth must be off disabled for tdma burst profiles For IUCs 1 4 Interleavedepth must be off disabled unless they are being
96. can see a proxy fastethernet subinterface Use this command to start IGMP query messages downstream Scope Cable sub interface only K NOTE The ip igmp proxy must already be specified on a fastethernet interface and this fastethernet interface must be either e A fastethernet sub interface with an IP address i e a routed or Layer 3 sub interface or e A fastethernet sub interface in the same bridge group as at least one other sub interface having an IP address See also ip igmp proxy page 10 191 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide ip igmp last member query interval Syntax ip igmp query interval Syntax Release 4 3 Standard ip igmp last member query interval val Sets the interval between IGMP group specific query messages sent via the downstream to hosts Scope Cable sub interface only K NOTE The ip igmp proxy must already be specified on a fastethernet interface and this fastethernet interface must be either e A routed fastethernet sub interface or e A fastethernet sub interface in the same bridge group as at least one other routed sub interface a sub interface having an IP address See also jp igmp page 10 204 jp igmp proxy page 10 191 ip igmp query interval val Sets the interval between host specific query messages Scope Cable sub interface only K NOTE The ip igmp proxy must already be specified on a fastethernet interface
97. change request that happened during the dynamic channel change process in the CM side and detected in the CMTS side docsDevCmtsDccRspFailTrap 11 An event to report the failure of a dynamic channel change response that happened during the dynamic channel change process in the CMTS side docsDevCmtsDccAckFailTrap 12 An event to report the failure of a dynamic channel change acknowledgement that happened during the dynamic channel change process in the CMTS side Table H 2 iso 1 org 3 dod 6 internet 1 private 4 enterprises 1 arris 4115 arrisProducts 1 ariisProdIdCMTS 4 cmtsC3 3 cmtsC3FFPDMIB 3 dcxFPDObjects 1 dcxPFDTrapGroup 3 SNMP Trap OID SNMP Trap Description dcxFPDAttached 1 Front Panel Display has been attached dcxFPDDetached 2 Front Panel Display has been detached dcxFPDFaniFail 3 Fan nearest the front of the box has failed dcxFPDFan1FailCir 4 Fan nearest the front of the box is working dcxFPDFan2Fail 5 Fan 2nd from the front failed dcxFPDFan2FailCir 6 Fan 2nd from the front is working dcxFPDFan3Fail 7 Fan 3rd from the front failed dcxFPDFan3FailClr 8 ARRIS PROPRIETARY All Rights Reserved Fan 3rd from the front is working 11 14 05 C3 CMTS User Guide SNMP Trap OID SNMP Trap Description dcxFPDFan4Fail 9 Fan 4th from the front failed dcxFPDFan4FailCir 10 Fan 4th from the f
98. configuration problem may be preventing the C3 from accessing the TFTP server at boot time Enabling Licensing Features Requirements Procedure 9 13 Release 4 3 Standard The C3 contains certain features that require a license key in order to be enabled and used These features include e RIP e BRIDGE_GROUPS e OSPF e SCDMA Contact your ARRIS representative to obtain a key s for the feature s being implemented The host ID of the CMTS and the feature s to be implemented must be provided to ARRIS The host ID can be obtained using the privileged command hostid or show license If privileged mode is not available the show version command can be used The ARRIS representative will then provide a key for each CMTS and each feature enabled within the CMTS Enabling Licensing Features Obtain key from ARRIS representative Log into the CMTS and enter privileged mode Enter the key information for the feature being enabled using the license key command Refer to Chapter 10 Mode 3 Privilege Mode Commands for correct command syntax To verify that the key has been accepted the show license command can be used An example of the output is ARRIS PROPRIETARY All Rights Reserved 9 17 9 Service Procedures C3 show license C3 hostid 312 Licensed Features RIP ARSVS01163 BRIDGE_GROUPS ARSVS01164 5 If the feature needs to be disabled for any reason the license remove command may be used Refer
99. control exchange and list all necessary information The first index indicates which Mediation Device the intercepted traffic will be diverted to The second index permits multiple classifiers to be used together such as having an IP address as source or destination cTapStreamGroup 2 cTapStreamIpEntry OBJECT TYPE SYNTAX CTapStreamIpEntry MAX ACCESS not accessible STATUS current DESCRIPTION A stream entry indicates a single data stream to be intercepted to a Mediation Device Many selected data streams may go to the same application interface and many Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved E 7 SLEM MIB application interfaces are supported INDEX cTapMediationContentId cTapStreamIpIndex i cTapStreamIpTable 1 CTapStreamIpEntry SEQUENCE cTapStreamIpIndex nteger32 cTapStreamIpInterface nteger32 cTapStreamIpAddrType netAddressType cTapStreamIpDestinationAddress netAddress cTapStreamIpDestinationLength netAddressPrefixLength cTapStreamIpSourceAddress netAddress cTapStreamIpSourceLength netAddressPrefixLength cTapStreamIpTosByte nteger32 cTapStreamIpTosByteMask nteger32 cTapStreamIpFlowId nteger32 cTapStreamIpProtocol nteger32 cTapStreamIpDestL4PortMin netPortNumber cTapStreamIpDestL4PortMax netPortNumber cTapStreamIpSourceL4PortMin netPortNumber cTapStreamIpSourceL4PortMax netPortNumber cTapStreamIpInterceptEnable TruthValue cTapStreamIpIntercep
100. default bridge groups ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide DEFAULT ROUTE LI 10 1 1 1 REGRET 10 99 98 1 I 10 99 98 3 DHCP SERVER CABLE 1057 421 OPERATOR o 200000 os i i DHCP ROUTER i 10 99 98 14 10 99 98 0 ES network pc o ocoo00 oo i SWITCH Lee Se me a ecto l fastethernet 0 0 0 bridge group 0 ip address 10 1 1 2 ip address 10 99 98 2 secondary EE eee l 40 1 1 0 U Ok DEFAULT ROUTE cable 1 0 0 10 1 1 1 bridge group 0 i lt bridge 0 ip address 10 1 1 2 DHCP SERVER ip address 10 99 98 2 secondary Modem 40 1 1 1 l CMTS defaultcpe ss ee ee J default cm fastethernet 0 1 0 bridge cable 1 0 1 bridge group 1 bridge group 1 shutdown shutdown Figure B 2 Default allocation of sub interfaces to the default bridge groups C3 Configuration The following commands configure the C3 for simple bridging operation make sure in privilege mode before running this script conf t enable basic snmp snmp server community public ro snmp server community private rw l create account so telnet will work cli account arris password arris cli account arris enable password arris l no ip routing this bridge group is already defined bridge 0 j inteface fastethernet 0 0 0 bridge group 0 ip address 10 1 1 2 255 255 255
101. encapsulation dotlq 9 encapsulation dotlq 9 encrypted multicast if required encapsulation dotlq allow 101 199 801 899 encapsulation dotlq allow 1200 1205 1599 end The above sets Cable 1 0 9 to use tag 9 as before but also allows tags 101 199 801 899 1200 1205 and 1599 To ensure transparent bridging all sub interfaces in a bridge group should have the same encapsulations configured Tagged packets arriving on one ARRIS PROPRIETARY All Rights Reserved 10 203 10 Command Line Interface Reference ip igmp Syntax 10 204 sub interface destined for transmission out the other will then be passed with the tag intact Overlapping VLAN tag ranges are not allowed on different subinterfaces of the same physical interface To remove allowed tags from a subinterface use the no form of the command no encapsulation dotlq allow 101 199 801 899 no encapsulation dotlq allow 1 4094 removes all allows The primary encapsulation eg encapsulation dotlq n cannot be removed in this manner but must be explicitly removed as before The a owsare just that other tags which are also handled by the interface See also bridge page 10 104 bridge group page 10 181 show bridge group page 10 51 map cpes page 4 24 ip igmp enable disable Enable or disable active IGMP message processing on cable sub interface whether the processing is in active or passive mode depending on whether the cable sub interface
102. encapsulation dotlq allow 1 4094 removes all allows The primary encapsulation eg encapsulation doti1q n cannot be removed in this manner but must be explicitly removed as before The allows are just that other tags which are also handled by the interface To ping a CPE which is in a transparently bridged bridge group the C3 must have an ARP entry for the CPE However if the C3 doesn t know the appropriate VLAN tag the ARP will never reach the CPE To overcome this the ping command has been extended to allow the operator to enter the initial arp vian tag For example ping 1 2 3 4 arp vlan 18 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Traffic allocation summary Release 4 3 Standard C3 CMTS User Guide would cause the ARP for 1 2 3 4 to be tagged with 18 If the C3 already had an ARP table entry for 1 2 3 4 then the entry would be used and no ARP would be generated The C3 processes incoming cable modem packets as follows e Before the cable modem receives an IP address the C3 assigns all incoming packets from that cable modem to the default CM sub inter face e When the cable modem receives a DHCP Ack the C3 inspects the assigned IP address and uses that to assign further cable modem packets to a sub interface The C3 processes incoming CPE packets in the following order Check for the existence of the cable modem VPN command If it exists map all CPEs to the specified VLA
103. file The CMTS loads the image file and comes online The following output is representative of that generated on the console screen during boot and initialization xxx Current Boot Parameters Boot from Compact Flash Boot file C 4 3 0 32 bin CMTS IP Address i 1061 127 121 CMTS subnet mask ff7f 00 Gateway Address 2 10 1 0 3 CMTS Name CMTS Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 3 15 3 CMTS Installation gt Procedure 3 7 3 16 Network port WAN Vlan Tagging Disabled Attached TCP IP interface to sbe0 Attaching network interface 1o0 done etc No CLI accounts Telnet is disabled Please configure a login account with the cli account command Arris CMTS C38s End of procedure Configuring an Initial CLI Account You must create at least one CLI account before the CMTS allows telnet access Follow these steps to create a CLI account If you have not done so already type enable to enter privileged mode The prompt changes to a symbol Enter the following commands to create an account C3 configure terminal C3 config cli account acctname password passwd The CMTS creates the account with the specified name and password Enter the following command to give privileged enable access to the account C3 config cli account acctname enable password enapasswd C3 config exit The login password and enable p
104. frame size 16 scdma hopping seed 0 modulation profile 6 0 1 pre equalization trigger index 0 snr timeconstant 4 mer timeconstant 8 rng prm guard 1 nrng prm guard 0 0 1 ingress cancellation 0 1 impulse mitigation safe config extended frequency detect all ranging concatenation fragmentation data backoff automatic range backoff automatic contention opp latency 10000 contention opps with data required rate limit status activate 1 description shutdown snmp trap link status ble upstream mac mode docsis frequency 15000000 channel width 3200000 pstream power level 4 fixed low power offset 60 pstream high power offset 60 group id 2 pstream plant length 160 initial ranging delay 300 pstream periodic maintenance interval 1000 short periodic maintenance interval 100 pstream minimum unfrag burst 600 admission control 100 dominant interval default cable upstream 1 admission limit ble upstream voice timeout 1 cable upstream 1 0 description ble upstream 1 0 shutdown cable upstream 1 0 snmp trap link status ble upstream 1 0 channel type TDMA ARRIS PROPRIETARY All Rights Reserved C3 CMTS User Guide F Factory Defaults cable upstream 1 0 modulation profile 1 no cable upstream 1 0 pre equalization cable upstream 1 0 minislot size 4 cable upstream 1 0 trigger index 0 cable upstream 1 0 snr timeconstant 4 cable upstream 1 0 mer timeconstant 8 cable upstream 1 0 rng prm guard 1 cable upstream 1 0 nrng pr
105. giaddr primary Selective use of cable sub interfaces can define with tight limits the address space and layer 2 3 capabilities of CPE devices attached to modems Cable Source Verify blocks IP and ARP packets coming from subscriber equipment when the incoming packets have improper source addresses The following are common reasons for such packets e Misconfigured hosts for example a subscriber may have configured a static IP address instead of using DHCP e Malicious activity by a subscriber such as IP address spoofing or ARP spoofing The C3 builds a database associating cable modem MAC addresses with source IP and CPE MAC addresses e by snooping DHCP traffic for dynamically assigned CPE IP addresses e by DOCSIS pre provisioning for statically assigned CPE IP addresses e by IP learning using the first incoming packet with this IP address to determine the proper cable modem MAC address for that IP address To enable Cable Source Verify use the cable source verify command When Cable Source Verify is active the C3 denies packets whose source IP address does not match the associated cable modem MAC address 8 32 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Lease Query Mode DHCP Authoritative Mode Support Methodologies Release 4 3 Standard C3 CMTS User Guide To disable Cable Source Verify use no cable source verify The C3 can optionally send a Lease Query to the DHCP server to verify that an IP addre
106. is not evaluated and the next route map entry for that Route Map is evaluated The no version of this command disables this match clause within the route map entry The match ip address clause can only be completely disabled by specifying the ACL numbers currently associated with that clause If the route map is marked as invalid only because of the unresolved ACL in the match clause then it s state is changed to valid after the ACL has been created By deleting an ACL associated with a match IP address clause will disable that clause and cause the state of the route map entry to change to invalid This means the route map entry will not be evaluated when processing packets using the route map list associated with that sub interface An ACL associated with a match IP address is not deleted if the clause is removed from the route map entry ARRIS PROPRIETARY All Rights Reserved 6 19 6 IP Routing Provisioning Route Maps Displaying Route maps There is only a one way association between ACLs and match clauses of a route map entry The ACL must be in some way linked to all the match clause instances that reference that ACL so as to satisfy the requirement above This is not the case for route map entry match clauses Route Maps can exist as software entities even if they have no route map entries defined against them They are visible through the show route map command as inactive The reason for their existence in this sta
107. le type qps scrambler no trell 5 le type qps scrambler no trell 5 le type qps scrambler no trell 5 le type qps ae gps no trel le type C3 CMTS User Guide K 338 no diff 64 fixed k 338 no diff 640 fixed k 338 no diff 384 fixed K 8 64qam scrambler 338 no diff 152 shortened K 8 64qam scrambler 338 no diff 304 shortened K r 338 no diff 152 shortened K 338 no diff 64 fixed k 338 no diff 640 fixed k 338 no diff 384 fixed K 8 64qam scrambler 338 no diff 104 shortened K r 338 no diff 104 shortened K 8 0 8 64qam scrambler 338 no diff 104 shortened spr 2 kO 338 no diff 64 fixed no spr 2 kO 338 no diff 640 fixed no spr 2 kO 338 no diff 384 fixed spr 2 k1 8 10 0 qpsk scrambler 338 no diff 120 shortened spr 2 k1 16 150 0 0 qpsk scrambler 338 no diff 120 shortened Ad Ad 12 Ad Ad vP vP 7 vP vP hy SCDMA hy preamb 8 0 0 qps hy SCDMA hy preamb no trell 5 le type qps k scrambler no trell 5 le type qps 0 16 0 0 qpsk scrambler spr 2 k1 338 no diff 120 shortened spr 2 kO 338 no diff 64 fixed F 13 F Factory Defaults cable modulation profile 32 initial AdvPhy SCDMA no trell 5 no spr 2 cable modulation profile 32 initial AdvPhy preamble type qpsk0 cable modulation profile 32 initial 5 34 0 0 qpsk scrambler 338 no diff 640 fixed cable modulation profile 32 station AdvPhy SCDMA no trell 5 no spr 2 cable
108. leaving bridge 2 bind cable 1 0 13 5 fastethernet 0 0 13 55 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 4 27 4 Bridge Operation Transparent bridging 4 28 One way the C3 applies VLAN tags on a subinterface is with the encap sulation dotlq tag command explained above In addition it is now also possible to configure the subinterface so that other tag values will also map to that subinterface Use the following command encapsulation dotlq allow tag tag tag It is possible to have multiple encapsulation dotlq allow commands to fully specify which VLAN tags terminate on the subinterface Example interface cable 1 0 9 bridge group 9 encapsulation dotlg9 encapsulation dotlq 9 encrypted multicast if requried encapsulation dotlq allow 101 199 801 899 encapsulation dotlq allow 1200 1205 1599 end The above sets Cable 1 0 9 to use tag 9 as before but also allows tags 101 199 801 899 1200 1205 and 1599 To ensure transparent bridging all subinterfaces in a bridge group should have the same encapsulations configured Tagged packets arriving on one sub interface destined for transmission out the other will then be passed with the tag intact Overlapping VLAN tag ranges are not allowed on different subinterfaces of the same physical interface To remove allowed tags from a subinterface use the no form of the command no encapsulation dotlq allow 101 199 801 899 no
109. manner Thus a maximum of 9 cable VPNs may be supported with this config uration If DHCP relay is required ip dhcp relay must be turned on and for IP DHCP relay to function the CPE sub interface must have at least one IP address specification If the CPE are to receive IP address from the ARRIS PROPRIETARY All Rights Reserved 5 17 5 Providing Multiple ISP Access Configuration 5 18 operator DHCP server I2 bg to bg routing must be turned on to allow forwarded DHCP to pass across the boundary of bridge group 1 to bridge group 0 ip 12 bg to bg routing CABLE 1 0 0 FA0 0 0 CABLE 1 0 2 bridge 1 CABLE 1 0 3 CABLE 1 0 4 Unprovisioned PC FANO bridge 0 CABLE 1 0 10 z TE Modem Cable Operator DHCP 1 L Figure 5 6 How the C3 bridges data in this configuration conf t remove bridges 0 and 1 so no sub interfaces are attached no bridge 0 no bridge 1 int ca 1 0 remove any previous ip addresses from the cable interface no ip address 10 99 99 253 255 255 255 0 exit remove the cable 1 0 1 subinterface not used no int ca 1 0 1 no ip routing set default subinterface default cm subinterface cable 1 0 10 default cpe subinterface cable 1 0 4 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Define the bridges we will use bridge 0 bridge 1 int fa 0 0 0 description ISP_WAN bridge group 1 exit 1
110. max reliability precedence flash override matches 0 20 deny ip any any matches 43584779 4 4 4 eq 5 tos Example interface matches C3 show access lists interface matches Interface Direction Acl ID Entry No Matches FastEthernet 0 0 0 Outgoing 78 None Set N A FastEthernet 0 0 0 Inbound 2699 1 0 FastEthernet 0 0 0 Inbound 2699 2 0 FastEthernet 0 0 0 Inbound 2699 3 0 FastEthernet 0 0 0 Inbound 2699 4 0 FastEthernet 0 0 0 Inbound 2699 5 0 FastEthernet 0 0 0 Inbound 2699 6 0 FastEthernet 0 0 0 Inbound 2699 7 0 FastEthernet 0 0 0 Inbound 2699 8 0 10 48 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide FastEthernet 0 0 0 Inbound 2699 9 0 FastEthernet 0 0 0 Inbound 2699 10 0 FastEthernet 0 0 0 Inbound 2699 LT 0 FastEthernet 0 0 0 Inbound 2699 12 0 FastEthernet 0 0 0 Inbound 2699 13 0 FastEthernet 0 0 0 Inbound 2699 14 0 FastEthernet 0 0 0 Inbound 2699 15 0 FastEthernet 0 0 0 Inbound 2699 16 0 FastEthernet 0 0 0 Inbound 2699 17 0 FastEthernet 0 0 0 Inbound 2699 18 0 FastEthernet 0 0 0 Inbound 2699 19 0 Fast t 0 0 0 Inbound 2699 20 45057477 Fast t 0 1 0 Outgoing Not Set None Set N A FastEthernet 0 1 0 Inbound 2698 ik 0 FastEthernet 0 1 0 Inbound 2698 2 0 FastEthernet 0 1 0 Inbound 2698 3 0 FastEthernet 0 1 0 Inbound 2698 4 0 FastEthernet 0 1 0 Inbound 2698 5 0 FastEthernet 0 1 0 Inbound 2698 6 0 FastEthernet 0 1 0 Inbound 2698 7
111. may be secured using techniques defined in this chapter but the C3 may also be configured to prevent e IP address spoofing of modems by CPE devices e Spoofing of IP addresses by CPE devices to access the management system e Spoofing of 802 1Q VLAN tags by CPE devices The cable sub interfaces on the C3 can be used to e restrict layer 2 traffic to the attached bridge group e restrict access to defined IP subnets e restrict access to defined VLANS for devices allocated to cable sub interfaces and e add CPEs to private downstream broadcast domains Such restrictions are enforced by placing CPE devices in a native VLAN using either VSE encoding or using the map cpes command Both commands map all CPE traffic to defined cable sub interfaces and thus force CPE traffic to obey the specifications of the this sub interface Both options also allow the CPE assigned to a cable sub interface and hence native VLAN to be placed in private downstream broadcast domains by using separately keyed downstream encryption for each native VLAN using the encapsulation dotiq xx encrypted multicast command Example conf t ip routing cable 1 0 1 no bridge group ip address 10 1 0 1 255 255 0 0 ip address 10 2 0 1 255 255 0 0 secondary ip source verify subif encapsulation dotlq 5 native exit exit ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide In IP routing mode this restricts access by CPE allocated to
112. metric Syntax 10 258 no default metric metric Use in conjunction with the redistribute router configuration command to cause the current routing protocol to use the same metric value for all redis tributed routes A default metric helps solve the problem of redistributing routes with incompatible metrics k NOT The default value of the default metric is 20 The no form of this command resets the default metric to this value If there is a specific metric value configured against a particular protocol i e RIP or static then that value takes precedence over the configured default metric value ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide redistribute connected metric metric type Syntax redistribute rip Syntax Release 4 3 Standard redistribute connected metric metric value metric type 1 2 or no redistribute connected metric metric type Allows OSPF to redistribute all directly connected routes in external LSAs type 5 i e even those which are not configured with the network command This command does not affect the interfaces on which the OSPF is running i e only those interfaces for which the network is configured A metric value can be specified for these redistributed connected routes Valid range is 1 to 16777215 This metric overrides the configured default metric value Use no redistribute connected metric to revert to the default metric value
113. moa moa moa moa moa moa moa moa ud ud ud ud ud ul ul ul ul ul ul ud ud ud ud ud ud ul ul ul ul ul ul ud ud ud ud ud ud ul ul ul ul ul ul ud ud ud lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil Le Le Le Le Le lation profil aunnrnnnninrnnai nr Ft PH PHP PH PHP Pe ee eee Se BwWWWWWWWWWWwWwwwwwwwwn NdNNN DN DN initial station station 5 34 0 48 qpsk scrambler 338 no diff 640 fixed AdvPhy TDMA 5 34 0 48 qpsk scrambler 338 no diff 384 fixed short AdvPhy TDMA short 8 long AdvPhy TDMA long 10 request request initial initial station station 7
114. no form of this command ip rip authentication one of no ip rip authentication key chain name no ip rip authentication mode text md5 Controls the RIP authentication method used on this interface You can specify authentication through a key chain using plain text passwords or MD5 pass words See also key chain page 10 176 Router Configuration Mode page 10 248 ARRIS PROPRIETARY All Rights Reserved 10 185 10 Command Line Interface Reference Syntax Syntax Syntax 10 186 ip rip cost ip rip cost m Manually overrides the default metric for this interface Valid range 1 to 16 The default value is 1 ip rip default route metric no ip rip default route metric m Sets the metric for default routes originated from this interface When 0 0 0 0 0 is advertised from a sub interface it will have a metric set by this command Valid range 1 to 16 ip rip receive no ip rip receive version versions Controls which versions of RIP packets the C3 accepts The valid range for versions is 1 and 2 you can specify one or both versions with the same command The no form of this command resets the receive version on the sub interface to the default receive version 2 To block a specific version simply specify the alternate version For example to block the reception of version 2 packets specify that only version 1 packets are to be received using the ip rip receive version 1 command ARR
115. not require an IP address to operate The C3 however can be managed over an IP network and thus must be assigned a valid IP address for management purposes Due to the nature of operation of a bridge any interface in either of the two default bridges on the C3 may be assigned an IP address and this IP address may be accessed again from any interface in the same bridge group for management purposes You can also assign the same IP address to both a cable and fastethernet sub interface this allows continued management access if one of the interfaces is shut down for any reason 4 16 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Recommended IP address a b c d C3 CMTS User Guide CMTS Management CMTS Management Management Management Systems Systems IP address a b c d Recommended Hi OK but not m7 recommended PC PC 5 bridge 0 IP address a b c d oo say we Modem Modem bridge 1 po bridge 1 bridge 0 L jj bridge 1 ________feeoo Modem Management Systems CMTS Management Replacing a Legacy Bridging CMTS Release 4 3 Standard Figure 4 14 Example of IP addressing This management IP address is normally assigned from the serial console and is programmed in the startup configuration file found on the compact flash disk Do not confuse the management IP address with the IP address set in the boot options The C3 uses the IP address specified in bo
116. of 110 e The second number is the route metric which is significant only for routes with the same administrative distance When there are several paths to a destination IP address the C3 uses the following scheme to determine routing priority e The most specific route that is the route with the longest prefix smallest subnet size has the highest priority e Connected routes always have priority over static routes e Given equally specific routes the C3 chooses the path with the lowest administrative distance Given both equally specific routes with equal administrative distances the C3 uses the route with the lowest metric if the metrics are equal the C3 chooses the first provisioned route If that route fails then the C3 uses the next route Up to 6 routes are supported in this manner Dynamic routing protocols build a network topology using updates received from other routers On a cable data network a subscriber could potentially connect a router to a cable modem then advertise spoofed routes to other networks Authentication prevents malicious subscribers or other entities from polluting the C3 s network topology with bogus information The C3 uses a key chain that supports automatically changing keys over time The authentication system is similar to that supported by Cisco routers Key chains consist of one or more keys Each key in a key chain is a 16 character string or an MD5 key and can be sent to other
117. ok no cable upstream 0 shutdown no cable upstream 1 shutdown no shutdown no management access no ip address as sub interface is not used exit ARRIS PROPRIETARY All Rights Reserved 11 14 05 An extension no Ethernet VLANs used Release 4 3 Standard C3 CMTS User Guide Where the Ethernet backbone does not have VLAN support Open Access is still possible A reminder of some rules to begin with rules that drive the following configuration One sub interface on a physical interface may be untagged There is a maximum of 10 sub interfaces per any single bridge group Up to 64 sub interfaces may be defined for each physical interface Up to 64 bridge groups may be defined DHCP relay operates across bridge groups but must be turned on in the bridge groups where it is required If turned on the DHCP relay supporting sub interface must have at least one IP address specifica tion even if bridging all other traffic With reference to this specific configuration example e There is a maximum of 10 sub interfaces per any single bridge group CPE cable sub interfaces are created and are made members of bridge group 1 For bridge group 1 to access the Ethernet backbone an Ethernet sub interface must also be a member of this bridge group All Cable CPE sub interfaces are added to bridge group 1 that now has untagged access to the Ethernet backbone A maximum of 9 CPE sub interfaces may be supported in this
118. on the top of the C3 case In particular provide adequate side clearance Mount the C3 properly to prevent uneven mechanical loading on the chassis Improper mounting can cause premature failure and potentially hazardous conditions When installed in a closed or multi unit rack assembly the operating temperature inside the rack environment may be higher than ambient temperature The C3 should be installed in an environment where the ambient temperatures remains below 40 Celsius Follow these steps to mount the CMTS in a 19 inch rack Install one rack mounting bracket on each side of the CMTS so that the two hole side is closest to the front of the CMTS and the brackets protrude away from the CMTS Use four screws to fasten each bracket to the CMTS A CAUTION Heavy load Handle with care The CMTS weighs approximately 22 Ibs 10 Kg If necessary have a second person hold the CMTS while mounting it to the rack Mount the CMTS in the rack and secure it using two screws on each side End of procedure ARRIS PROPRIETARY All Rights Reserved 3 7 3 CMTS Installation Procedure 3 2 Connecting Cables Use this procedure to connect RF data and power cables to the CMTS Depending on the configuration ordered the C3 may have 2 4 or 6 upstreams CMTS Rear View Refer to the following figure to locate the cable ports DC power y ok AA i ii AC power He OF O
119. only runs for as long as the session is configured for Relies on SNMPv3 to secure the configuration of the legal intercept feature to ensure that the use of the feature is restricted to authorized users The following sections discuss and explain each of these methods Physically Separating Data The C3 has two physical FastEthernet interfaces allowing C3 management to use a physically different interface to that used by subscriber traffic Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 8 3 8 Configuring Security 8 4 Bridge groups can be used to isolate CPE traffic from management traffic The factory default C3 has two bridge groups pre defined and allocated as follows default cm subinterface cable 1 0 0 default cpe subinterface cable 1 0 0 fastethernet 0 0 0 bridge group 0 no shutdown cable 1 0 0 bridge group 0 no shutdown fastethernet 0 1 0 bridge group 1 no shutdown cable 1 0 1 bridge group 1 encapsulation dotlq 1 shutdown In this configuration e Both modems and CPE are mapped to the cable 1 0 0 sub interface e Any broadcast traffic received at the cable sub interface 1 0 0 is broadcast to the fastethernet 0 0 0 interface The CMTS management IP address can be assigned to either fastethernet 0 0 0 or 0 1 0 k NOTE You can assign the management address to a cable sub interface but this is not recommended since shutting down the cable sub interface also disables management acc
120. p add 205 2 3 0 mask 255 255 255 0 10 6 0 1 B 14 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 Configuration Release 4 3 Standard C3 CMTS User Guide The operator DHCP server needs to specify different configuration files for each modem depending on what the CPE attached to the modem is meant to be doing e Config file for ISP with VSE 1 e Config file for ISP RED with VSE 2 e Config file for ISP BLUE with VSE 3 k NOTE The default CPE sub interface is specified as cable 1 0 1 thus any CPE traffic arriving via a modem with no VSE tagging defaults to this sub interface and ensuring that the CPE default allocation is to ISP The ISP RED CPE uses ip dhcp relay to reach the ISP RED DHCP server and ISP BLUE DHCP is broadcast through the C3 to the ISP BLUE DHCP server e Policy for internet ISP modems configuration file referenced should have VSE 1 e Policy for internet ISP RED modems configuration file referenced should have VSE 2 e Policy for internet ISP BLUE modems configuration file referenced should have VSE 3 Reserve the modem MAC address in the appropriate address pool but OVERRIDE the default modem policy defined above with either e Policy for internet CPE modems config file referenced should have VSE 1 e Policy for internet VPN RED config file referenced should have VSE 2 e Policy for internet VPN BLUE config file referenced should
121. page 10 248 ip ssh These commands manage the C3 SSH server See also Configuring SSH page 8 38 ip ssh authentication retries Syntax no ip ssh authentication retries number Sets the number of authentication retries for SSH access The default is 3 10 146 ARRIS PROPRIETARY All Rights Reserved 11 14 05 ip ssh port Syntax ip ssh server Syntax ip ssh timeout Syntax ip ssh version Syntax Release 4 3 Standard C3 CMTS User Guide no ip ssh port number Sets the TCP port at which the C3 listens for SSH connections The default is port 22 no ip ssh server enable Enables or disables the C3 SSH server no ip ssh timeout secs Sets the SSH session idle timeout The default is 0 which disables session timeout no ip ssh version 1 2 Enables or disables SSHv1 or SSH v2 connections The default is to allow either version ARRIS PROPRIETARY All Rights Reserved 10 147 10 Command Line Interface Reference login user Syntax logging buffered Syntax 10 148 no login user name stringl password string2 Changes the user level login name and password for vty telnet sessions Example C3 login user name Change login user name password Change login user password C3 login user name lt STRING gt C3 login user name arris C3 login user password c3cmts C3 See also Initial Configuration page 3 10 to set the password for privilege
122. phs route map snmp ssh for SSH terminal users version C3 gt Show aliases ARP table Show boot parameters Show Date and Time Show Date and Time Context info about recent crashes Displays user SSH connections Show information from the autopsy file Hardware information Command History IP related info IPC info Key Information System memory NTP Servers PHS configuration Display all configured route maps SNMP counters Displays the version and configuration data Terminal info Users logged into CLI Version information Displays any defined aliases for commands ARRIS PROPRIETARY All Rights Reserved 11 14 05 show arp Prot Address IP LO 763193 IP 10 1 176 254 C3 show bootvar Release 4 3 Standard C3 CMTS User Guide Example C3 gt show aliases Alias Command string scm show cable modem See also alias page 10 102 Equivalent to the show ip arp command without arguments Example C3 gt show arp Age min Hardware Addr Vlan Type Interface 15 0 0001 5c20 4328 ARPA B 0 FastEthernet 0 0 0 00e0 168b f c89 ARPA B 0 FastEthernet 0 0 0 Displays boot variables Example C3 gt show bootvar Boot Image Device Compact Flash C 3 0 1 27 bin Boot Config file Device current flashdisk file C3 gt See also boot system flash page 10 103 privilege mode required ARRIS PROPRIETARY All Rights Reserved 10 13 10 Command Line Interface Reference show c
123. range 100 to 10000 in 1 100 second intervals The default is 10000 If this value is too short and 1000 s of modems are ranging a lot of bandwidth will be wasted If this value is too long less bandwidth is used but the modem s clock may drift possibly causing collisions where no collisions should occur cable upstream plant length Syntax cable upstream n c plant length 1 Sets the initial maintenance region size for the physical upstream to allow for timing variation across modems separated by this distance Valid range 1 to 160 km Set the distance to the maximum one way distance between modems and the C3 in the plant cable upstream power level Syntax Release 4 3 Standard cable upstream n power level p fixed auto Sets the target input power level to be used by the physical upstream when the CMTS ranges modems ARRIS PROPRIETARY All Rights Reserved 10 239 10 Command Line Interface Reference v NOTE It is generally a bad idea to change this parameter The parameters are Keyword Description Target power level The allowable values depend on the channel width 200 kHz 16 to 14 dBmV 400 kHz 13 to 17 dBmV 800 kHz 10 to 20 dBmV 1600 kHz 7 to 23 dBmV 3200 kHz 4 to 26 dBmV 6400 kHz 0 to 29 dBmV Re adjust the configured power level automatically when the symbol rate changes In auto mode doubling the symbol rate increases the configured power level by 3dB to main t
124. relaying interface primary IP address For hosts replace the giaddr with the relaying interface s first secondary IP address round robin Applies only when more than one secondary IP address is specified for a cable sub interface When active the C3 rotates in a round robin fashion through multiple secondary IP addresses for client DHCP Discover messages If a DHCP request fails due to no leases being available the C3 relays the next DHCP Discover using the next secondary IP address Should this fail the process repeats next address used for the relay address until all available address ranges in the DHCP server have been tested If no cable helper address is active the CMTS broadcasts DHCP messages through all active Ethernet interfaces with the updated giaddr field See also jp dhcp relay page 10 217 ip dhcp relay information option page 10 218 cable helper address page 10 216 DHCP page 7 3 ARRIS PROPRIETARY All Rights Reserved 10 215 10 Command Line Interface Reference cable helper address Syntax 10 216 no cable helper address ipaddr cable modem host Updates the giaddr field with the relaying interface primary IP address unless cable dhcp giaddr policy is active and then unicasts the DHCP Discover or Request packet to the specified IP address If no option is specified all cable originated DHCP broadcast messages will be unicast to the specified IP address
125. report are Column Description Flap aging time Aging time in dats of cable modem flap events Flap insertion time If a modem is online less than this time seconds the CMTS settings records the modem in the flap list Power adjustment threshold The power level change that triggers a flap event for a modem Flap list size Number of entries recorded in the flap list sort interface Sorts by MAC address sort time Sorts by time cable x y Shows the flap list for a specified cable interface Example Mac Addr CableIF Ins Hit Miss CRC Flap Time 0090 836b 452q 00a0 7300 0012 00a0 7312 4bd8 00a0 7312 4be9 00a0 7312 4c7b 00a0 7312 4cl1f 00a0 7388 9167 00a0 7316 6a2e 00a0 7311 43fe 00a0 73ad 3827 00a0 7314 2ecc Release 4 3 Standard C1 0 U0 1384 7 0 12 1385 NOV 25 18 26 29 C1 0 U4 711 5 0 0 711 NOV 25 22 08 56 C1 0 U4 449 100 23 0 621 NOV 25 22 19 01 C1 0 U4 361 70 4 0 549 NOV 25 22 02 33 C1 0 U4 307 91 0 0 522 NOV 24 06 14 14 C1 0 U5 145 21 23 0 509 NOV 24 06 10 44 C1 0 U4 5 2284 1525 179 288 NOV 25 22 20 22 C1 0 U5 180 0 0 0 180 NOV 23 01 56 34 C1 0 U4 124 48 0 0 124 NOV 23 01 44 11 C1 0 U2 5 21179 1354 0 43 NOV 23 15 25 35 C1 0 U4 0 26546 27 0 29 NOV 25 18 48 12 ARRIS PROPRIETARY All Rights Reserved 10 57 10 Command Line Interface Reference C3 show cable flap list summary show cable flap list print per upstream summary CableIF Ins Hit Miss CRC Flap C1 0 U0 597 22605 3320 16 1029 C
126. routes and traffic There are a number of parameters which can be used in the match clauses of a route map structure when used to control route redistribution The match ip address clause identified routes based on the network prefix a standard or an extended access list number is used as the parameter The access lists themselves can also be configured with either the permit of deny keyword Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 6 21 6 IP Routing The rules applied to the use of permit or deny keywords used by the refer enced route maps and access lists are as follows e Ifan ACL is used in a route map permit clause routes permitted by the ACL are redistributed e If an ACL is used in a route map deny clause routes permitted by the ACL are not redistributed e Ifan ACL is used in a route map permit or deny clause and the ACL denies a route then the route map clause match is not found and the next route map clause is evaluated The format of the OSPF redistribute command is as follows redistribute static rip metric lt 1 16777215 gt metric type lt 1 2 gt route map lt WORD gt tag lt A B C D gt Value Definition metric Specifies the metric value to be applied to routes from this source routing protocol to the OSPF routing domain The default value is set at 20 metric type The external link type associated with the default route advertised into the OSPF routin
127. seconds arp vlan Specifies the 802 1Q VLAN tag to use for the initial ARP if there is no current ARP table entry for lt ip address gt and the ARP packet would be bridged out a transpar ently bridging bridge group Note that the tag speci fied must actually be allowed on the outgoing subinterface Valid range 1 to 4094 The ping operation may be terminated at any time by pressing any key on the CLI The following example displays a successful ping of a host on f0 0 eg subnet 10 250 0 0 24 where the ping response is received on f0 1 eg subnet 10 250 136 0 24 C3 gt ping 10 250 0 1 interval 1 size 1200 repeat 10 source 10 250 136 2 timeout 5 ARRIS PROPRIETARY All Rights Reserved 10 9 10 Command Line Interface Reference systat terminal 10 10 The successful system response would be Type any key to abort Sending 10 1200 byte ICMP Echos to 10 250 0 1 timeout is 5 seconds Packet sent with a source address of 10 250 136 2 Lo tek deed det Success rate is 100 percent 10 10 round trip min avg max 0 0 0 ms Display users logged into the CLI Example C3 gt systat Line Disconnect Location User Timer console none serial port z vty 0 none 10 17 224 69 root vty 1 none 10 1 255 44 root Changes the definition of the terminal type width or screen length C3 gt terminal length Set num lines in window monitor Turn on debug output no timeout Set inactivity ti
128. select traffic to be intercepted ethernetPid Ethernet Protocol Identifier may be used to select traffic to be intercepted dstLicSap IEEE 802 2 Destination SAP may be used to select traffic to be intercepted srcLicSap IEEE 802 2 Source SAP may be used to select traffic to be intercepted cTapStreamGroup 1 The access list for intercepting data at the IP network layer cTapStreamIpTable OBJECT TYPE SYNTAX SEQUENCE OF CTapStreamIpEntry MAX ACCESS not accessible STATUS current DESCRIPTION The Intercept Stream IP Table lists the IPv4 and IPv6 streams to be intercepted The same data stream may be required by multiple taps and one might assume that often the intercepted stream is a small subset of the traffic that could be intercepted This essentially provides options for packet selection only some of which might be used For example if all traffic to or from a given interface is to be intercepted one would configure an entry which lists the interface and wild card everything else If all traffic to or from a given IP Address is to be intercepted one would configure two such entries listing the IP Address as source and destination respectively and wild card everything else If a particular voice ona teleconference is to be intercepted on the other hand one would extract the multicast destination IP address the source IP Address the protocol UDP and the source and destination ports from the call
129. shown below Make sure the connectors line up properly and that the screws line up with the standoffs on the MAC PHY board Figure 9 13 Adding a MAC PHY card k NOTE Do not attempt to push the dual receiver board into place at this time 9 20 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide 5 Use the torque driver to secure the dual receiver board to the MAC PHY board Turn each screw in sequence as shown below 1 turn at a time until all four screws are tightened to 0 2 nm torque ee se se ecooeoe eoecce e coocoo oe ecoocooo ooooooo eeeveee coecoece ceseeiss L Figure 9 14 Securing the dual receiver board 6 Repeat these steps as necessary to install another dual receiver board if required Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 9 21 9 Service Procedures 9 22 A fully populated MAC PHY card is shown below oo G H FO N ome 3 oe Figure 9 15 Fully populated MAC PHY card End of procedure ARRIS PROPRIETARY All Rights Reserved 11 14 05 10 Command Line Interf
130. sub interface directly to a VLAN tagging fastethernet sub interface if required If the CPE IP address must be configured on a dynamic basis or is not bound to the modem IP address as would be the case if all modems are required to be allocated an IP address from one large single address pool consider using VSE encoding Chapter 8 instead of using the map cpes command VSE encoding and the use of the encapsulation dotiq lt n gt native command allows CPE attached to a modem to be allocated to a cable sub interface based on modem configuration file specified and hence provisioning system speci fied parameters and is independent of the assigned modem IP address Example One modem subnet one CPE subnet IP routing ip routing interface cable 1 0 j ip address 10 1 0 1 255 255 0 0 ip dhcp relay cable helper address 10 2 0 1 cable dhcp giaddr primary option 82 not really required for standard DHCP server no ip dhcp relay information option map cpes cable 1 0 1 j interface cable 1 0 1 for CPE devices ip address 10 11 0 1 255 255 0 0 ip dhcp relay ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard C3 CMTS User Guide cable helper address 10 2 0 1 cable dhcp giaddr primary option 82 not really required for standard DHCP server no ip dhcp relay information option Example One modem subnet CPE data bridged no IP routing no ip routing I conf t bridge 2 j i
131. subset match can be found in any cable sub interface specification the IP packet is mapped to the default cable sub interface Upstream CPE traffic may be allocated to cable sub interfaces using e the cable modem vpn command e VSE encoding e map cpes specification e default cpe subinterface specification If a mapped frame has an 802 1Q tag the C3 verifies that the tag is correct for the mapped sub interface if the tag does not match the C3 drops the frame Again one cable sub interface may have no encapsulation specification All other cable sub interfaces must have an encapsulation specification in the form e encapsulation dotiq X or e encapsulation dotiq X native ARRIS PROPRIETARY All Rights Reserved 11 14 05 VSE and 802 1Q Native Tagging Release 4 3 Standard C3 CMTS User Guide The combination of native tagging and VSE encoding is one method that allows CPE traffic to be mapped to a cable sub interface A cable sub interface with native tagging means that e all traffic received at this interface will be internally tagged by the C3 before being passed to the bridge group to which the sub interface is a member e Traffic leaving the bridge group via this natively tagged sub interface will be tagged as it leaves the C3 Contrast this behavior with the 802 1Q tagging on a FastEthernet sub interface where all traffic leaving the C3 is tagged if the FastEthernet sub interface has an 802 1q tag specificat
132. tag for this frame to be accepted In either case the C3 passes the frame to the bridge group this cable sub interface is a member of bridging the frame to other sub interfaces assigned to the bridge group ARRIS PROPRIETARY All Rights Reserved 4 25 4 Bridge Operation bridge bind 4 26 Frames bridged to fastethernet sub interfaces are treated as follows e If the fastethernet sub interface has an encapsulation specification the C3 encodes the frame with this tag and the frame leaves the CMTS with an 802 1Q encoding e Ifthe fastethernet sub interface does not have an encapsulation spec ification the C3 strips the 802 1Q header and the frame leaves the CMTS untagged Note that the cable interface 802 1Q tag can be different from the fasteth ernet interface 802 1Q tag Example configure terminal bridge 11 fastethernet 0 0 1 bridge group 11 encapsulation dotlq 111 cable 1 0 0 for modem only bridge group 0 ip address 10 99 99 1 255 255 255 0 ip dhcp relay cable helper address 10 0 0 1 cable modem cable dhcp giaddr primary map cpes cable 1 0 11 cable 1 0 11 for cpe bridging bridge group 11 accept 802 1q tagged frames only encapsulation dotlq 11 The bridge bind can be used to bind a cable sub interface directly to a FastEthernet sub interface as detailed earlier A bridge bind can also be used with VSE and 802 1Q native encoding The following example shows CPE traffic mapped to a c
133. the CMTS See the following photo Figure 9 2 Front panel faceplate Push the right side of the faceplate back towards the front of the CMTS slowly so that the edge connector on the rear of the faceplate mates prop erly with the connector on the front of the CMTS Press the right side of the face plate in firmly to latch it to the CMTS ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Resetting the Power Supplies Procedure 9 1 Release 4 3 Standard If a power supply shuts down for thermal reasons the F Amber LED on the front of the power supply lights up and the C3 becomes non opera tional Resetting the Power Supplies Correct the thermal condition Remove the front panel Push the SW1 button with a non conductive material e g plastic probe and hold in for 2 seconds There will be an audible click and the fans will start up Replace the front panel and verify the LEDs and the LCD displays are working The following figure shows the location of the reset switch O Reset Switch a S9 SW2 Figure 9 3 Reset switch End of procedure ARRIS PROPRIETARY All Rights Reserved 9 3 9 Service Procedures Replacing a Power Supply gt Procedure 9 2 Diagram Action 1 2 3 4 5 Replacing a Power Supply The C3 CMTS can have two fully redundant power supplies You can replace one supply without powering d
134. the Cadant C3 CMTS Planning the Installation Network Requirements The CMTS may be connected to your network using one or both Ethernet interfaces If it is desired to keep subscriber data traffic physically separate from management traffic then both ethernet interfaces must be used Alternatively data and management traffic can be sent on different VLANS via a single Ethernet interface Regardless of the connection method selected at least one network connection is required to the CMTS Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 3 1 3 CMTS Installation Power Requirements Earthing 3 2 To assure high system reliability the C3 chassis supports two hot swap pable load sharing power supply modules A single supply can provide all the power that a fully loaded system needs with sufficient safety margin Each type of power supply has a separate power connector mounted on the rear panel of the C3 chassis The power connectors are typically plugged into the AC power or DC power distribution unit of the rack or cabinet using the power cords supplied with the C3 k NOTE Make sure that the power circuits have sufficient capacity to power the C3 before connecting power To disconnect power from the C3 for servicing remove both power leads AC and DC from the rear socket The C3 has no power switch Reliable earthing of rack mounted equipment should be maintained See Safety page 1 4 for common safety co
135. the ICMP reply blocking either will block ping so assigning only an inbound ACL is sufficient ACLs can be associated to interfaces before the ACL is defined The ip access group command takes the following format when config uring an interface access group ACL number in out An example of the command is as follows note that the command only applies when configuring an interface C3 gt enable C3 config t config t gt interface fastethernet 0 0 fastethernet 0 0 gt ip access group 102 in fastethernet 0 0 gt ip access group 103 out fastethernet 0 0 gt z This configuration associates ACL number 102 to incoming traffic on the fastethernet 0 0 interface and ACL number 103 to outgoing traffic Example The network must support the following features e CPEs can be allocated to a number of different subnets e No CPE with a static address should be usable on any subnet other than the assigned subnet e No CPE should have access to modem subnets One solution to this problem involves a mixture of ACL and subscriber management based filtering and provides a good example of the differ ences in these filtering techniques k NOTE It is possible to solve this problem using bridge groups sub interfaces and ACLs per sub interface but the point of this example is to show the use of ACL and subscriber management filtering Blocking CPE access to modems is relatively straight forward All the CPE subn
136. the cable modulation profile command Default QPSK Profile C3 config cable modulation profile 2 qpsk C3 config show cable modulation profile Mod IUC Type Preamb Diff FEC FEC Scrambl Max Guard Last Scrambl length enco T CW Seed B time CW BYTES SIZE size size short 2 request qpsk 64 no 0x0 0x10 0x152 0 8 no yes F 18 ARRIS PROPRIETARY All Rights Reserved 11 14 05 ini sta sho lon adv adv adv MM NN NMNNDN NH tial tion rt g Phys PhyL PhyU gps gps Gps gps Gps gps gps NNN N NN NW Default QAM Profile Mod IUC req ini sta sho lon adv adv adv NNN NNN DN NH uest tial tion rt g Phys PhyL PhyU Type 16qam 16qam 16qam 16qam 16qam 16qam 16qam 16qam 640 384 64 64 104 104 104 Preamb length 64 640 384 64 64 104 104 104 Default Advanced PHY Profile Mod IUC req ini sta sho adv adv adv MM NNNMNNN DN NH long uest tial tion BE Phys PhyL PhyU Type qpsk qpsk qpsk qpsk qpsk 64gqam 64gqam 64gqam Preamb length 64 640 384 64 64 104 104 104 Default Mixed Profile Release 4 3 Standard no no no no no no no 0x5 0x5 0x6 0x8 Oxc 0x10 0x10 0x22 0x22 0x4b Oxdc Ox4b Oxdc Oxdc Diff FEC FEC enco T CW BYTES SIZE no 0x0 0x10 no 0x5 0x22 no 0x5 0x22 no 0x6 Ox4b no 0x8 Oxdc no Oxc Ox4b no 0x10 Oxdc no 0x10 Oxdc Diff
137. the lowest administrative distance until the route fails then uses the next higher administrative distance and so on Up to 6 static routes may be configured in this manner The route to a connected subnet subnet of a sub interface always has an administrative distance of 0 and thus takes precedence over any static route In case of two static routes to the same prefix with equal administrative distance the C3 uses the first provisioned route If that route fails then the C3 uses the next route After rebooting the C3 uses the first static route defined in the startup configuration file An example of this is shown in Routing Priority page 6 3 refer to the 6 static routes and for network 15 0 0 0 24 Static routing is supported in all C3 operating modes Learned routing or dynamic routing means that the C3 learns routes to various destinations from messages sent by other routers on the network In this version of C3 operating software the C3 supports the following protocols e RIPv2 RFC 2453 e OSPFv2 RFC 2328 These protocols are known as Internal Gateway Protocols IGP RIP and OSPF routing support is an extra cost option Contact your ARRIS representative to obtain a license key ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide To enable routing in the C3 see Routing Command Overview page 6 13 About RIP RIP Routing Information Protocol is an early and common standard p
138. the serial console CLI entering privilege mode and using the Hyperterm Edit paste to console mode befor make sure in privileg running this script conf t enable basic snmp snmp server community public ro snmp server community private rw l create account so telnet will work cli account arris password arris cli account arris enable password arris l no ip routing bridge 0 l inteface fastethernet 0 0 0 bridge group 0 ip address 10 1 1 2 255 255 255 0 ip address 192 168 253 253 255 255 255 0 secondary management access exit l interface cable 1 0 0 bridge group 0 give cable interface ip address so dhcp relay will work Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved B 3 B CMTS Configuration Examples DHCP Server Configuration can be the same as the management ip address as running in bridging mode ip address 10 1 1 2 255 255 255 0 ip address 192 168 253 253 255 255 255 0 secondary turn on the upstreams no cable upstream 0 shutdown no cable upstream 1 shutdown Turn on DHCP relay so DHCP will be unicast to the required DHCP server ip dhcp relay cable helper address 10 1 1 1 cable dhcp giaddr policy turn on the downstream no shutdown exit for convenience during testing remove telnet session timeout line vty timeout 0 exit exit save the configuration write At this point the two green LEDS for Rx1 and Rx2 on the front
139. the string is to be encrypted The Message Integrity Check is performed during modem registration The modem passes to the CMTS a secret given it by its configuration file and hence sourced from the provisioning systems If this feature is turned on and the secret received in the configuration file does not match this configured value the modem is not allowed to register The string is stored in the configuration in clear text Use cable encrypt shared secret if a hashed value is to be stored in the configuration See also cable encrypt page 10 195 ARRIS PROPRIETARY All Rights Reserved 10 199 10 Command Line Interface Reference cable sid verify Syntax cable source verify Syntax 10 200 no cable sid verify Enables accepting DHCP packets whose SID is zero Use the no form of this command to accept such packets The factory default settings reject DHCP packets with a SID of zero in accordance with DOCSIS specifications Some cable modems send these illegal packets if your system needs to support such modems then you need to disable verification no cable source verify dhcp authoritative Enables safeguards against ARP spoofing IP address spoofing and misconfig ured CPE devices by verifying that the source IP address for incoming packets matches the MAC address of the device assigned the IP address The parameters are Keyword Description Requires that the DHCP server supports the DHCP Lease
140. the subscriber uses or alternatively by the configuration file the modem receives from the provisioning system Assignment to a cable VPN by modem IP address allows legacy provi sioning systems to be compatible with the ARRIS Cadant C3 cable VPN facility No configuration file modifications are required This method restricts the number of supported cable VPNs to 31 one cable modem sub interface for every mapped CPE sub interface and the DHCP server must support a method to assign a modem an IP address outside the subnet of the giaddr relay address in the modem DHCP discover Assignment to cable VPNs by a configuration file allows the full number of 63 cable VPNs to be implemented but in this case the DHCP server must support assignment of DHCP options modem configuration file to indi vidual modems In either case CPE are mapped to a specific cable sub interface with native VLAN tagging with the properties of this cable sub interface defining the properties of the cable VPN e A layer 2 bridged cable sub interface allows all layer 2 protocols inside the cable VPN e When IP routing is active a layer 3 sub interface with ip source verify subif specified only allows IP protocols inside the VPN and only source addresses within the subnets associated with the cable sub interface primary subnet and up to 15 secondary subnets per sub interface e Ahybrid layer 2 3 sub interface allows both IP and layer 2 protocols All cab
141. this sub inter face to the stated subnets only Example routing case conf t ip routing cable 1 0 1 no bridge group ip address 10 1 0 1 255 255 0 0 encapsulation dotlq 5 native exit exit Example hybrid case conf t ip routing cable 1 0 1 bridge group 0 ip address 10 1 0 1 255 255 0 0 encapsulation dotlq 5 native exit exit Example bridging case conf t no ip routing cable 1 0 1 bridge group 0 encapsulation dotlq 5 exit exit This restricts access by CPE allocated to this sub interface to those CPE that generate 802 1Q encoded data and with a VLAN tag of 5 In the above cases the CPE incoming data is either allocated by the Cadant C3 to the specified cable sub interfaces using 802 1Q tags gener ated by the CPE devices or allocated to matching native vlan using map cpes or VSE encoding or a cable modem VPN command Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 8 29 8 Configuring Security Sample Configuration 8 30 In the following sample configuration e All modems use the cable 1 0 0 sub interface for initial DHCP e Regardless of the cable sub interface used by a modem VSE encoding in a modem configuration file modem directs attached CPE to either the cable 1 0 11 or the cable 1 0 13 sub interfaces and hence subject to the restrictions imposed by these sub interface s specifications e The default CPE sub interface has been specified as cable 1 0 13
142. to Chapter 10 Mode 3 Privilege Mode Commands for command syntax End of procedure 9 18 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Upgrading Dual Upstream Receivers DOCSIS 2 0 Systems Requirements gt Procedure 9 14 Release 4 3 Standard This procedure outlines the steps necessary to add a second or third dual upstream receiver to a DOCSIS 2 0 MAC PHY card This procedure assumes that one dual receiver card is already installed Dual receiver cards should be populated from left to right Before starting the upgrade procedure ensure that you have the following e the upgrade hardware ordered from ARRIS e torque driver with a size 1 Phillips head bit capable of measuring 2 Nm 28 oz in e thread locking compound Upgrading Dual Upstream Receivers DOCSIS 2 0 Systems Remove the MAC PHY as outlined in procedure Replacing the RF Card page 9 8 Verify that the IF cable is routed as shown below to avoid pinching or cutting the cable during the upgrade procedure IF Cable Figure 9 12 IF cable routing Place a dab of thread locking compound onto the four screws attached to the dual receiver card The dual receiver board has screws already attached ARRIS PROPRIETARY All Rights Reserved 9 19 9 Service Procedures 4 Place a dual receiver board in the position
143. to display verbose Provide additional information ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard columns C3 CMTS User Guide Show selected columns one or more separated by spaces from the following list Allows customizing of output Column Name Description CORRECTED FEC Corrected FEC Codewords CPE CPE information GOOD FEC Good FEC Codewords INTERFACE Interface IP IP address MAC MAC address PROV MODE Provisioned mode REC PWR Receive Power REG TYPE Registration Type SID Prim SNR Signal to Noise Ratio STATUS Status TIMING Timing offset UNCORRECTED FEC Uncorrected FEC Codewords UP MOD Upstream Modulation VLAN BGROUP VLAN ID See also show interface cable 1 0 modem page 10 80 Example detail C3 show cable modem detail MAC Address IP Address Primary SID Interface Timing Offset Received Power Provisioned Mode Registration Type Upstream Modulation Ranging Registration Total good FEC CW Total corrected FEC 00a0 731e 3f 84 10 99 88 100 a d C1 0 U1 3167 4 7 dBmV SNR 66 3 dBmvV 2 DLs lt D1 0 TDMA online BPI not enabled 377 0 ARRIS PROPRIETARY All Rights Reserved 10 61 10 Command Line Interface Reference Total uncorrectable FEC 2 0 Example registered C3 show cable modem registered I F Prim Online Timing Rec CPE IP address SID state offset power C1 0 U
144. to do here in this case exit exit Selecting the fastethernet 0 1 interface as the boot options network inter face when there is no existing startup configuration file pre assigns the bridge groups to force all cable modem traffic to the fastethernet 0 1 inter face and all CPE traffic to the fastethernet 0 0 interface This results in out of band operation of the C3 Selecting FEO1 as the booting interface e pre assigns interface fastethernet 0 0 0 to bridge group 1 e pre assigns interface cable 1 0 0 to bridge group 0 e pre assigns interface fastethernet 0 1 0 to bridge group 0 e pre assigns cable 1 0 1 to bridge group 1 e sets default cm subinterface cable 1 0 e sets default cpe subinterface cable 1 0 1 e carries the boot option specified IP address forward into a factory default configuration as the fastethernet 0 1 IP address Again all the above settings may be changed at the CLI ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide The following diagram shows data flow in the C3 when fastethernet 0 1 is the boot interface Backbone fastethernet 0 0 0 bridge group 1 cable 1 0 1 bridge group 1 PC default cpe subinterface cable 1 0 0 ip I2 bg to bg routing bridge 1 fastethernet 0 1 0 bridge 0 boot IP address cable 1 0 0 Modem bridge group 0 bridge group 0 Cable Operator default cm subinterface cable 1 0 0 DHCP TFTP TOD Decide what
145. traffic is restricted to a management only sub interface This sub interface is configured with the CMTS IP address and has management access enabled C Backbone Cable Operator DHCRTETR MOR fastethernet 0 0 0 bridge group 1 bridge 1 cable 1 0 1 bridge group 1 PC default cpe subMterface cable 1 0 0 default cm subir erface cable 1 0 0 L fastethernet 0 1 0 no bridge group Ea bridge 0 EA CMTS cable 1 0 0 Modem Management bridge group 0 Only Figure 4 10 Example of Bridge group 1 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 4 13 4 Bridge Operation Bridge Binding 4 14 The final example shows CMTS management traffic on a management only sub interface as before and cable modem traffic and CPE traffic on separate bridge groups fastethernet 0 0 0 bridge group 1 L fastethernet 0 1 0 bridge 1 no bridge group 0 Cable Operator cable 1 0 1 mm Management bridge group 1 PC default cpe subinterface cable 1 0 0 fastethernet 0 1 1 l eco mmj bridge 0 cable 1 0 0 bridge group 0 Modem Cab e encap dot1q 22 prdge group o le Operator default cm subinterface cable 1 0 0 DHCP TFTP TOD Figure 4 11 Example of CMTS management traffic Bridge binding provides a direct link between a tagged cable sub interface and a tagged FastEthernet sub interface The c
146. type X of service and network 3 redirect datagram for the type X of service and host 8 echo request X router advertisement X 9 0 normal router advertisement X 16 does not route common traffic X 10 router selection X time exceeded 11 0 time to live exceeded in transit X 1 fragment reassembly time X exceeded parameter problem T 0 pointer indicates the error X missing a required option X 2 Bad length X 13 timestamp X 14 timestamp reply X 15 information request X 16 information reply X 17 address mask request X 18 address mask reply X 30 traceroute X 31 datagram conversion error X 32 mobile host redirect X 33 ipv6 where are you X 34 ipv6 I am here X 37 domain name request X Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 8 13 8 Configuring Security TCP Definition 8 14 icmp icmp type code Equivalent CLI Keyword Query Error 38 domain name reply X 39 skip X photuris 0 bad spi 1 authentication failed 40 2 decompression failed 3 decryption failed 4 need authentication 5 need authorisation K NOTE The icmp types destination unreachable redirect router advertisements time exceeded parameter problem and photuris have explicit code values associated with them Other icmp types have an implicit not listed code value of zero and thus no icmp code option is expected at the CLI level Syntax no access list ACL number permit deny tcp host so
147. typing end exit or Ctrl Z before using other commands The following is a summary of the Global configuration mode commands aaa Authentication configuration parameters access list Access List Configuration alias Create a command alias arp Create a static ARP entry banner Set the login banner for the headend boot Configure boot parameters bridge Configure bridging cable Cable related commands card Card Name Gri Configure the cli crypto Configures SSH encryption default Set the last resort cable subinterface to use for CMs or CPEs docsis Configure DOCSIS Test Modes elog Event logging exception Crash Autopsy Configuration file Set the confirmation level for file commands hostname Set the systems name interface Configure a particular interface ip Internet Protocol Configuration key Key management line Configure console or telnet logging Configure message logging login Change login user name or password mac address table Create a static FDB entry mib Modify the SNMP MIBS ntp Network Time Protocol phs enable Enable PHS support route map Configure a route map router Enable a routing process snmp access list Create an access list snmp server Modify SNMP parameters tacacs server Set TACACS encryption key ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide tfitp server Configure TFTP server a
148. upstream n c safe config Enables or disables safe configuration mode for the specified logical upstream channel When safe configuration is enabled the default the C3 refuses SNMP and CLI commands which would result in an invalid channel configuration Certain upstream configuration commands primarily for burst profile or channel settings can result in invalid configurations Use the no form of this command to turn off safe configuration mode This may be required for scripts which temporarily misconfigure a channel in a sequence of upstream configuration commands The C3 takes offline an upstream channel with an invalid configuration cable upstream scdma active codes Syntax no cable upstream n c scdma active codes codes For SCDMA only logical channels sets the number of codes used to carry data Reducing the number of codes can improve performance in noisy upstreams Valid range 64 to 128 prime numbers within this range are invalid Corresponds to the docsIfUpChannelScdmaActiveCodes MIB cable upstream scdma codes per slot Syntax Release 4 3 Standard no cable upstream n c scdma codes per slot codes For SCDMA only logical channels sets the number of codes per mini slot Valid range 2 to 32 ARRIS PROPRIETARY All Rights Reserved 10 243 10 Command Line Interface Reference Corresponds to the docsIfUpChannelScdmaCodesPersSlot MIB cable upstream scdma frame size Syntax no cable upstream n
149. used in an atdma channel If forward error correction is not being used fec_t 0 Interleavedepth must be off disabled static mode number rows gt 2 to lt 2048 IF FEC is being used fec_t 0 and the interleaver is in static mode Inter leavedepth gt 2 you must have InterleaveBlockSize gt Interleavedepth feclen 2 fec_t lt 2048 dynamic mode number rows 0 The number of rows in each block is dynamically selected to uniformly distrib uted the number of rows across the blocks The value of InterleaveBlockSize should be larger than a RS codeword size feclen 2 fec_t to achieve a useful number of rows in each block If the number of rows is too small inter leaving will have little effect and robustness in the presence of noise will be degraded just as low value of Interleavedepth would have in manual mode InterleaveBlockSize will be ignored unless InterleaveDepth is in manual mode i e gt 2 InterleaveBlockSize must be 0 for tdma burst profiles InterleaveBlockSize lt 2048 always If FEC is being used docsIfCmtsModFECCorrection 0 and the interleaver is in dynamic mode docsIfCmtsModByteInterleaverDepth 0 you must have Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 119 10 Command Line Interface Reference Mod IUC req ini sta adv adv req req ini NNNRFPRPRPRPRP RB 10 120 uest tial tion short long Phys PhyL uest Data tial Type
150. wd SS a SS a Ss e a hyL hyL hyU Www Oo CO Ww oo hyL hyL hyU WWWWWWWWWWWwWWwWWww ww w Ww ARRIS PROPRIETARY All Rights Reserved Ad Ad 0 Ad Ad 5 Ad Ad 5 Ad Ad 12 Ad Ad 16 Ad Ad 12 Ad Ad 0 Ad Ad 5 Ad Ad 5 Ad Ad 12 Ad Ad 5 Ad Ad 12 Ad Ad 0 Ad Ad 5 Ad Ad 5 Ad Ad 12 Ad Ad vP vP 16 vP vP 34 vP vP 34 vP vP 7 vP vP 2 vP vP 7 vP vP 16 vP vP 34 vP vP 34 vP vP 7 vP vP 22 vP vP 7 vP vP 16 vP vP 34 vP vP 34 vP YP 7 vP vP ATDMA preamb 8 qps ATDMA hy hy 0 hy hy 0 hy hy 0 K 48 qps ATDMA preamb 48 qps hy ATDMA hy preamb 8 11 hy ATDMA 20 0 hy ATDMA hy preamb 8 0 8 64q hy ATDMA hy preamb 0 8 qps hy ATDMA hy 0 hy hy 0 K 48 qps ATDMA preamb 48 qps hy ATDMA hy preamb 8 11 hy ATDMA 0 0 8 64q hy ATDMA hy preamb SCDMA preamb 0 qpsk SCDMA preamb 0 qpsk SCDMA preamb 0 qpsk SCDMA preamb hy hy 0 hy hy 0 hy hy 0 hy hy hy SCDMA preamb hy preambl preamb hy preambl hy preamb 536 le type qps scrambler 536 le type qps k scrambler 536 le type qps k scrambler 536 le type qps 8 1504 le type gps 536 le type qps am scramble 536 le type qps scrambler 536 le type qps k scrambler 536 le type qps k scrambler 536 le type qps 8 1504 le type qps am scramble 536 le type qps no trell 5
151. with VoIP e Hotels and other chains use it to download software updates from headquarters to hundreds of reservations terminals simultaneously e Retailer chains use it to update price lists quickly and simultaneously at all their locations Multicast traffic is often used for network equipment communication proto cols Network protocols such as Internet Group Management Protocol IGMP Routing Information Protocol RIP and Open Shortest Path First OSPF all communicate via multicast Traffic sent to a multicast group can be received by multiple interfaces An interface may belong to any number of multicast groups As explained in RFC 1112 the membership group does not list the IP addresses of the indi vidual hosts ARRIS PROPRIETARY All Rights Reserved 11 14 05 Proxy Interface Release 4 3 Standard C3 CMTS User Guide It is important to understand that an IP host group address is not bound to a set of IP unicast addresses The multicast routers do not need to main tain a list of individual members of each host group For example a multi cast router attached to an Ethernet need associate only a single Ethernet multicast address with each host group having local members rather than a list of the members individual IP or Ethernet addresses In order for IGMP multicast to work on the C3 CMTS IGMP must be enabled for each interface that uses multicast Once IGMP is enabled on an interface it starts querying hosts
152. without disabling the redistribution of the connected routes Disable redistribution of connected routes by using the no redistribute connected command redistribute rip metric metric value metric type 1 2 or no redistribute rip metric metric type Allows OSPF to redistribute RIP learned routes in external LSAs type 5 A metric value can be specified for these redistributed OSPF routes Valid range is 1 to 16777215 This metric overrides the configured default metric value Use the no redistribute rip metric command to revert to the default metric value without disabling the redistribution of the RIP routes A metric type can be specified for these redistributed OSPF routes The uses of this option are explained in the section Route redistribution Use the no ARRIS PROPRIETARY All Rights Reserved 10 259 10 Command Line Interface Reference redistribute rip metric type command to revert to the default metric type i e 2 without disabling the redistribution of the RIP routes Disable redistribution of RIP routes by using the no redistribute rip command redistribute static metric metric type Syntax 10 260 redistribute static metric metric value metric type 1 2 or no redistribute static metric metric type Allows OSPF to redistribute all statically configured routes in external LSAs type 5 i e excluding any configured default route A metric value can be specified for these red
153. you can specify tftp n n n n filename to copy the configuration to a TFTP server erase Erases the startup configuration on the Compact Flash disk If you do not create a new startup configuration the CMTS uses the factory default configuration at the next reload See also Bridge Groups page 4 4 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 45 10 Command Line Interface Reference Mode 4 show aaa 10 46 Privileged SHOW Commands In privileged mode displays detailed information about the CMTS configura tion Privileged mode supports the user mode show options and adds the following options e show aaa show access lists show bridge show bridge group show c show cable show cli show configuration show controllers show debug show environment show file show flash show interfaces show license show logging show mib show processes show reload show running configuration show snmp server show startup config show tacacs show tech support Displays the Authentication configuration ARRIS PROPRIETARY All Rights Reserved 11 14 05 show access lists Syntax C3 show access lis 01 perm priority matches 02 perm immediate matche 03 perm flash matches 0 04 perm flash override m Release 4 3 Standard Extended IP access 1 1 s i a ts list t tcp t tcp t tcp t CCP tches C3 CMTS User Guide show a
154. 0 dscp The Differentiated Services Codepoint value O to 63 or one of the following Binary Keyword Description Value afil Match packets with AF11 dscp 001010 afi2 Match packets with AF12 dscp 001100 af13 Match packets with AF13 dscp 001110 af21 Match packets with AF21 dscp 010010 af22 Match packets with AF22 dscp 010100 af23 Match packets with AF23 dscp 010110 af31 Match packets with AF31 dscp 011010 af32 Match packets with AF32 dscp 011100 af33 Match packets with AF33 dscp 011110 af41 Match packets with AF41 dscp 100010 af42 Match packets with AF42 dscp 100100 af43 Match packets with AF43 dscp 100110 csi Match packets with CS1 precedence 1 dscp 001000 cs2 Match packets with CS2 precedence 2 dscp 010000 cs3 Match packets with CS3 precedence 3 dscp 011000 cs4 Match packets with CS4 precedence 4 dscp 100000 cs5 Match packets with CS5 precedence 5 dscp 101000 cs6 Match packets with CS6 precedence 6 dscp 110000 cs7 Match packets with CS7 precedence 7 dscp 111000 default Match packets with default dscp 000000 ef Match packets with EF dscp 101110 ICMP Definition Syntax no access list ACL number permit deny icmp host source source source wildcard any host dest dest dest wildcard any icmp type icmp code fragment precedence precedence tos tos dscp dscp Creates an ACL with the specified ICMP filter en
155. 0 ip address 10 99 98 2 255 255 255 0 secondary management access exit j interface cable 1 0 0 bridge group 0 give cable interface ip address so dhcp relay will work Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved B 7 B CMTS Configuration Examples Simple Bridging with Separate Management Traffic B 8 can be the same as the management ip address as running in bridging mode ip address 10 1 1 2 255 255 255 0 ip address 10 99 98 2 255 255 255 0 secondary turn on the upstreams no cable upstream 0 shutdown no cable upstream 1 shutdown do not broadcast dhcp as we do not know what else is out there ip dhcp relay cable helper address 10 1 1 1 cable dhcp giaddr policy turn on the downstream no shutdown exit j for convenience during testing remove telnet session timeout line vty timeout 0 exit exit save the configuration write It is possible to configure the C3 using the factory default bridge groups and sub interfaces to separate management traffic from other network traffic e fastethernet 0 1 and cable 1 0 are members of bridge group 0 e cable 1 0 1 is pre defined e cable 1 0 1 and fastethernet 0 0 are both members of bridge group 1 e default cm subinterface cable 1 0 e default cpe subinterface cable 1 0 1 If the boot options network interface is changed to the fastethernet 0 1 0 sub interface on first power up no startup configuration file exists
156. 0 no management access ip dhcp relay ip dhcp relay information option cable dhcp giaddr primary cable helper address 172 16 5 48 cable helper address 172 16 5 49 exit j cable 1 0 1 for CPE traffic bridge group 1 encapsulation dotlq 11 native no ip dhcp relay exit j set the bridge mode default gateway ip default gateway 10 160 0 1 l route all traffic to network 172 16 5 0 to fa 0 1 1 and thus VLAN tag 1 for CMTS management ip route 172 16 5 0 255 255 255 0 172 16 11 1 l add specific host routes for DHCP servers as they are on the same subnet as the CMTS traffic but a different VLAN ie force modem traffic to fa 0 1 1 and thus VLAN tag 2 for CM management ip route 172 16 5 48 255 255 255 0 10 160 0 1 ip route 172 16 5 49 255 255 255 0 10 160 0 1 exit Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 8 27 8 Configuring Security Cable Interface VLANS Encrypting Native VLANS 8 28 Modems of CPE assigned to a cable subinterface are given a private broad cast domain encryption key and only allows the CPE using this cable subinterface to receive broadcasts with the bridge group attached to this cable subinterface Other CPE assigned to other cable subinterfaces will not be able to decode such downstream broadcasts Since downstream broadcasts such as ARP can provide network topology information of other subscribers this feature eliminates such risk Access to the C3 itself
157. 0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 63 82 53 63 35 01 01 3c 56 64 6F 63 73 69 73 31 2E 31 3A 30 BO 22 25 20v ai 202i 20 Si 20 Ba 20y sal 30 3 30 33 30 31 30 31 30 34 30 31 30 31 30 35 30 31 30 3L 30 36 30 31 30 3 30 37 30 S131 30 30 Se 30 31 31 30 30 39 30 31 30 30 30 61 30 31 30 31 30 62 30 31 30 38 30 63 30 31 30 31 3D 07 01 00 A0 73 74 BE 70 39 02 02 40 37 07 01 1C 43 03 02 04 07 52 14 01 04 80 00 00 03 02 06 00 A0 73 74 BE 70 04 04 00 00 00 00 FF 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 16 54 29 DHCPRELAY Dumping incoming UDP packet 02 01 06 00 73 74 BE 70 00 00 80 00 00 00 00 00 OA FA 8B OF OA FA 8B 01 OA FA 8B 02 00 AO 73 74 BE 70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
158. 0 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 16 54 31 DHCPRELAY REQUEST adding relay information option 16 54 31 DHCPRELAY REQUEST from 00A0 7374 BE70 forwarded to server 10 290 139 1 16 54 31 DHCPRELAY Dumping outgoing UDP packet 01 01 06 01 73 74 BE 70 00 00 80 00 00 00 00 00 00 00 00 00 00 00 00 00 OA FA 8B 02 00 A0 73 74 BE 70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 63 82 53 63 35 01 03 3c 56 64 6F 63 73 69 73 31 2E 31 3A 30 Soren IA SU Sil SO Sr 20 S120 Ba 20 Sd Oe 30 3 30082 S081 B00 34 BOS BO 3 BO Se BO 310 30 21 20 36 30 31 30 31 30 37 30 37 31 30 30 38 30 SL 31L 30 30 39 30 31 30 30 30 61 30 31 30 31 30 6230 31 30 38 30 6330 31 30 32 3D O07 01 00 Ad 73 74 BE 70 32 04 OA FA 8B OE 36 04 OA FA 8B 01 39 02 02 40 37 07 01 1C 43 03 02 04 07 52 OE OT 04 80 00 00 03 02 06 00 AO 73 74 BE 70 FF 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00
159. 0 51 10 52 10 56 10 56 10 57 10 58 10 58 10 59 10 59 10 65 10 66 10 66 10 14 10 66 10 67 10 67 10 14 10 14 10 67 10 15 10 68 10 15 10 70 10 71 10 15 CLI ix 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 CLI x show file show flash show hardware show history show interface cable show interface cable 1 0 classifiers show interface cable 1 0 downstream show interface cable 1 0 modem show interface cable 1 0 privacy show interface cable 1 0 qos paramset show interface cable 1 0 service flow show interface cable 1 0 sid show interface cable 1 0 signal quality show interface cable 1 0 stats show interface cable 1 0 upstream show interface fastethernet X Y stats show interfaces show ip arp show ip igmp groups show ip igmp interface show ip interface brief show ip opsf database show ip ospf show ip ospf database show ip ospf database database summary show ip ospf interfaces show ip ospf neighbor show ip protocols ospf show ip rip show ip route show ip ssh show ipc show key chain show license show logging show memory ARRIS PROPRIETARY All Rights Reserved C3 CMTS 10 72 10 74 10 16 10 17 10 78 10 80 10 80 10 80 10 81 10 82 10 83 10 84 10 84 10 85 10 85 10 86 10 75 10 17 10 18 10 18 10 19 10 91 10 88 10 90 10 91 10 88 10 8
160. 0 multicasts 353328 unicasts 0 discards 3 errors 0 unknown protocol 365125 FEC blocks input 4 uncorrectable 0 corrected 365121 good O microreflections Total Modems On This Upstream Channel 1 1 active Cable1 0 Upstream 1 0 is up line protocol is up C3 Description US CH 2 0 Cadant C3 CMTS BCM3140 Rev Al Utilization 0 Modem throughput during last utilisation interval of 10 sec Lightest load 100 00 of Max traffic rate above Min rsvd rate Average load 100 00 of Max traffic rate above Min rsvd rate Heaviest load 100 00 of Max traffic rate above Min rsvd rate 5 minutes Minislots for BE 00 00 5 minutes Minislots for NrtPS 00 00 5 minutes Minislots for RtPS 00 00 5 minutes Minislots for UGS_AD 00 00 5 minutes Minislots for UGS 00 00 5 minutes Minislots used 00 00 1 sec Voice minislots 0 00 5 minutes input rate 182 bits sec 0 packets sec 5 minutes output rate 0 bits sec 0 packets sec 182019 packets input 12304 broadcasts 0 multicasts 169715 unicasts 0 discards 333 errors 0 unknown protocol 178976 FEC blocks input 15 uncorrectable 7 corrected 178954 good O microreflections Total Modems On This Upstream Channel 1 1 active show interface fastethernet X Y stats Syntax 10 86 show interface fastethernet X Y stats Displays detailed information about a specific Ethernet interface Specifying no option shows detailed interface statistics Example C3 sh
161. 0114 SYSLOG_WARNING REG REQ rejected Message syntax error s 73020115 SYSLOG_WARNING REG REQ rejected Primary service flow error s 73020116 SYSLOG_WARNING REG REQ rejected Message too big s 73030100 SYSLOG_WARNING REG aborted no REG ACK 73030200 SYSLOG_WARNING REG ACK rejected unspecified reason ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Event Msg Num Severity Message Text 73030300 SYSLOG_WARNING REG ACK rejected message syntax error 83000100 SYSLOG_WARNING Service Add rejected Unspecified reason 83000101 SYSLOG_WARNING Service Add rejected Unrecognized configuration setting 83000102 SYSLOG_WARNING Service Add rejected Temporary no resource 83000103 SYSLOG_WARNING Service Add rejected Permanent administrative 83000104 SYSLOG_WARNING Service Add rejected Required parameter not present 83000105 SYSLOG_WARNING Service Add rejected Header suppression setting not supported 83000106 SYSLOG_WARNING Service Add rejected Service flow exists 83000107 SYSLOG_WARNING Service Add rejected HMAC Auth failure 83000108 SYSLOG_WARNING Service Add rejected Add aborted 83000109 SYSLOG_WARNING Service Add rejected Multiple errors 83000110 SYSLOG_WARNING Service Add rejected Classifier not found 83000111 SYSLOG_WARNING Service Add rejected Classifier exists 83000113 SYSLOG_WARN
162. 05 C3 CMTS User Guide a Loosen the two Phillips screws securing the CPU card to the chassis The screws run through the black pull tabs on each end of the card Screws Figure 9 7 Removing the CPU card b Push the red tabs towards the outer edge of the unit The black latches will click when they have been released Gently push the black latches towards the outer edge of the unit to release the card c Grasp the CPU by the black tabs on either end of the card and slide the card out of the chassis 3 Gently lift the spring metal contact over the battery and lift the battery from its holder You may need to use a small screwdriver to gently pry the battery out of the holder 4 Insert the new battery in the holder 5 Replace the CPU card into the chassis a Line up the CPU card with the guides inside the chassis and slide the card into the chassis b Push the card into the chassis until the latches click into place Secure the card using the Phillips screws 6 Replace the power connections End of procedure Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 9 7 9 Service Procedures Replacing the RF Card Requirements gt Procedure 9 5 9 8 The C3 may be shipped with 2 4 or 6 upstreams Contact your ARRIS representative to obtain a new upstream card Replacing the upstream card requires a complete shutdown of the C3 CMTS Use anti static precautions such
163. 05 Configuring the C3 to Boot from the Flash Disk Procedure 9 11 Release 4 3 Standard C3 CMTS User Guide Configuring the C3 to Boot from the Flash Disk Follow these steps to configure the C3 for local booting This procedure uses the file name C3_v04 03 00 32 as an example replace it with the actual software load file name Use the following commands to configure the C3 to boot from the image on the Compact Flash disk C3 configure terminal C3 config boot system flash C3_v04 03 00 32 bin C3 exit A CAUTION Service affecting Perform the following step only during a scheduled maintenance window to minimize service disruptions During the maintenance window reboot the C3 using the reload command C3 reload Save configuration when rebooting Y N Y Are you sure you want to reboot the CMTS Y N Y Reload in progress CadantC3 shutting down 3 After the C3 finishes rebooting log in and use the show version command to verify that it is running the correct software image C3 gt show version ARRIS CLI version 02 Application image 4 3 0 32 Sep 20 2003 15 26 37 BootRom version 1 26 VxWorks5 4 2 ARRIS PROPRIETARY All Rights Reserved 9 15 9 Service Procedures Configuring the C3 to Boot from a TFTP Server Procedure 9 12 9 16 The Application image shows the software image version currently running If this does not correspond to the image on the compact
164. 0500 SYSLOG_WARNING Bad DS FREQ Format invalid 73010501 SYSLOG_WARNING Bad DS FREQ Not in use 73010502 SYSLOG_WARNING Bad DS Freq Not multiple of 62500 Hz 73010600 SYSLOG_WARNING Bad US CH Invalid or Unassigned 73010601 SYSLOG_WARNING Bad US CH Change followed with REO Registration REQ 73010700 SYSLOG_WARNING Bad US CH Overload Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved H 1 H C3 CMTS Syslog Events and SNMP Traps Event Msg Num Severity Message Text 73010800 SYSLOG_WARNING Network Access has invalid parameter 73010900 SYSLOG_WARNING Bad Class of Service Invalid configuration 73011000 SYSLOG_WARNING Bad Class of Service Unsupported class 73011100 SYSLOG_WARNING Bad Class of Service Invalid Class ID or out of range 73011200 SYSLOG_WARNING Bad Max DS Bit Rate Invalid format 73011201 SYSLOG_WARNING Bad Max DS Bit Rate Unsupported setting 73011300 SYSLOG_WARNING Bad Max US Bit Invalid format 73011301 SYSLOG_WARNING Bad Max US Bit Rate Unsupported setting 73011400 SYSLOG_WARNING Bad US Priority Configuration Invalid format 73011401 SYSLOG_WARNING Bad US Priority Configuration Setting out of range 73011500 SYSLOG_WARNING Bad Guaranteed Min US CH Bit Rate Configuration setting Invalid format 73011501 SYSLOG_WARNING oe Min US CH Bit Rate Configuration s
165. 08 SYSLOG_WARNING Service Add Response rejected Multiple errors 83010109 SYSLOG_WARNING Service Add Response rejected Classifier exists 83010110 SYSLOG_WARNING Service Add Response rejected PHS rule exists 83010111 SYSLOG_WARNING Service Add Response rejected Duplicate reference ID or index in message 83010112 SYSLOG_WARNING Service Add Response rejected Classifier for another flow ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Event Msg Num Severity Message Text 83010113 SYSLOG_WARNING Service Add Response rejected Parameter invalid for context 83010114 SYSLOG_WARNING Service Add Response rejected Major service flow error 83010115 SYSLOG_WARNING Service Add Response rejected Major classifier error 83010116 SYSLOG_WARNING Service Add Response rejected Major PHS Rule error 83010117 SYSLOG_WARNING Service Add Response rejected Multiple major errors 83010118 SYSLOG_WARNING Service Add Response rejected Message too big MAC 83010200 SYSLOG_WARNING Service Change Response rejected Invalid transaction ID 83010201 SYSLOG_WARNING Service Change aborted No RSP 83010202 SYSLOG_WARNING Service Change Response rejected HMAC Auth failure 83010204 SYSLOG_WARNING Service Change Response rejected Unspecified reason 83010205 SYSLOG_WARNING Service Change Response rejected Un
166. 1 0 U2 5 tea 87 3 13 C1 0 U3 46 77 160 0 56 C1 0 U4 16 0 0 0 16 C1 0 U5 94 86 238 14 130 C3 show cable flap settings Flap Flap Range Power Flap Aging Insertion Miss Adjust List Time Time Threshold Threshold Size 10 180 6 3 500 show cable frequency band Syntax show cable group Syntax 10 58 show cable frequency band index Displays the specified frequency group or all frequency groups if no frequency group is specified See also cable frequency band page 10 111 show cable group n Displays the selected cable group and its load balancing configuration Specify no option to display all configured cable groups ARRIS PROPRIETARY All Rights Reserved 11 14 05 show cable host Syntax show cable modem Syntax Release 4 3 Standard C3 CMTS User Guide show cable host ipaddr macaddr Displays all CPE devices connected to the cable modem specified by IP address or MAC address Host IP address only returned if subscriber manage ment is turned on The information is returned using the C3 knowledge of active CPE behind the specified modem and not by using an SNMP query on the modem The parameters are Keyword Description ipaddr IP address of modem to view macaddr MAC address of modem to view See also show interface cable 1 0 modem page 10 80 and cable submgmt page 10 123 show cable modem ipaddr macaddr cable 1 0 upstream n detail offenders registered su
167. 1 1 5 online pt 2378 5 0 0 16 10 250 2 131 C1 0 U0 1 6 online 197 540 0 16 10 250 1 18 C1 0 U1 1 7 online pt 5345 52 0 16 10 250 2 176 10 62 ARRIS PROPRIETARY All Rights Reserved MAC address 0000 ca3e 6c23 0000 ca3e 6c29 0000 ca3e 6c35 DOC D2 0S D2 0A D2 0S 11 14 05 C1 0 U0 0 8 online 2845 C3 CMTS User Guide 4 8 0 1 10 250 2 9 00a0 7387 2bcd D1 0 The show cable modem registered command reports one of the following states for each modem State Meaning Offline The cable modem is inactive init r1 The C3 has successfully received a ranging request from the modem in a contention interval i e initial ranging init r2 The CMTS has responded to an initial ranging request from the modem but has not yet completed ranging i e the modem s transmit parameters are still outside of the acceptable range as defined by the CMTS init rc The cable modem has successfully adjusted its transmit power and timing so that initial ranging has completed successfully init d The cable modem has sent a DHCP request init i The CMTS has relayed a DHCP response to the modem but the modem has not yet acknowledged the new address to the DHCP server init o The modem is ready to or is currently TFTP ing the configuration file init t modem ready for ToD Online The modem has successfully completed registration Online d online network ac
168. 10 100 1000Base T interface AC power Input receptacle for 90 to 264 volts AC DC power Input receptacle for 40 to 60 volt DC RS232 RS 232 serial port for initial setup 38400 N 8 1 Alarm Reserved for future use RXO Upstream 1 cable upstream 0 RX1 Upstream 2 cable upstream 1 RX2 Upstream 3 cable upstream 2 RX3 Upstream 4 cable upstream 3 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 2 7 2 Getting Started Table 2 4 Rear panel ports Port Interface RX4 Upstream 5 cable upstream 4 RX5 Upstream 6 cable upstream 5 Downstream Downstream output from upconverter Intermediate frequency IF output 43 75 MHz for NA DOCSIS 36 125 MHz for EuroDOCSIS which may be routed to an external upconverter Downstream IF Output v NOTE ARRIS does not support simultaneous use of the Downstream and Downstream IF outputs Major Components of the Cadant C3 CMTS Redundant Power Supplies Up Converter Wideband Digital Receiver Media Access Control MAC Chip 2 8 The Cadant C3 CMTS supports simultaneous powering from AC or DC using one or two power supplies If two power supplies are installed the load is shared between both In this configuration one power supply may fail without impacting system operations The CMTS has separate connec tions for AC and DC power The Cadant C3 CMTS incorpo
169. 10 27 for more details You need to use the enable password to enter privileged mode 10 6 ARRIS PROPRIETARY All Rights Reserved 11 14 05 exit help lIc ping Syntax Release 4 3 Standard C3 CMTS User Guide Terminates the console CLI session Provides a list of the available commands for the current user mode llc ping macaddr attempts interval Keyword Description macaddr MAC address in the form N N N attempts 4 Number of repeat count lt continuous 7 gt p interval lt number gt inter ping interval in seconds Sends a series of MAC level echo requests to the specified modem MAC address and reports whether the CMTS received an echo response for each packet This command runs until you press a key or until the C3 has sent the specified number of pings v NOTE Not all cable modems or MTAs respond to llc ping Example C3 gt llc ping 1111 1111 1111 continuous 5 C3 gt llc ping 1111 1111 1111 6 7 ARRIS PROPRIETARY All Rights Reserved 10 7 10 Command Line Interface Reference logout ping Syntax 10 8 Closes the connection to the CMTS regardless of operating mode One of ping ping ping ping ping ping ping ipaddr ipaddr ipaddr ipaddr ipaddr ipaddr ipaddr interval lt 0 3600 gt repeat lt 1 2147483647 gt size lt 36 4079 gt source ipaddr timeout lt 0 3600 gt arp vlan lt 1 4094 gt Sends a series of 5 ICMP echo r
170. 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 CLI vi enable password enable secret encapsulation dotiq end Ctrl Z erase exception exit file prompt format help hostid hostname interface interface cable interface fastethernet interface ip access group ip address ip broadcast address ip default gateway ip dhcp relay ip dhcp relay information option ip dhcp relay validate renew ip directed broadcast ip domain name ip igmp ip igmp last member query interval ip igmp query interval ip igmp query max response timeout ip igmp robustness ip igmp verify ip router alert option ip igmp version ip igmp proxy ip 12 bg to bg routing ip ospf authentication key chain ip ospf authentication mode ARRIS PROPRIETARY All Rights Reserved C3 CMTS 10 140 10 140 10 202 10 181 10 39 10 141 10 7 10 141 10 39 10 141 10 39 10 142 10 180 10 193 10 189 10 181 10 182 10 190 10 191 10 142 10 217 10 218 10 218 10 182 10 142 10 204 10 205 10 205 10 206 10 206 10 207 10 207 10 191 10 182 10 185 10 185 11 14 05 C3 CMTS 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 ip ospf cost ip ospf dead interval ip ospf hello interval ip ospf priority ip
171. 2 0 0 0 42 780 0x80000078 Oxe2cd 111 250 0 1 11 250 0 1 332 0x80000044 0x16be 24 27 20 1 212121 T 1625 Ox8000003e Oxa59e Network Link States Area 0 0 0 0 Link ID ADV Router Age Seq Checksum 10 250 0 17 2221632401 1382 0x80000032 Oxe2f Summary Net Link States Area 0 0 0 0 Link ID ADV Router Age Seq Checksum 10 1 130 0 21 21 211 T625 0x8000002d 0x2021 10 1 132 0 21 21 21 1 1625 0x800000b1 0x1b9 10 1 134 0 2027 20 0 1625 0x800000b1 Oxeacd Type 5 AS External Link States Link ID ADV Router Age Seq Checksum Se 5 35 40 0 0 0 42 539 0x80000008 0x4b43 9 9 9 9 0 0 0 42 784 0x80000034 0x845 10 25 25 0 0 0 42 791 0x80000034 Oxblab ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide show ip ospf database database summary Lists the total number of each LSA type currently held in the OSPF LSA data base Example C3 show ip ospf database database summary OSPF Router with ID 0 0 0 42 Area ID Router Network Summary Summary Type 7 Opaque Opaque SubTotal Network ASBR Link Area 0 0 0 0 3 1 3 0 N A 0 0 7 Opaque AS 0 AS External 3 Total 10 show ip opsf database Syntax show ip ospf database asbr summary external network opaque area opaque as opaque link router summary Displays detailed information on the various types of the link states currently held in the internal and external LS database Keyword Description asbr summary Type 4 ASBR summary routes
172. 2 168 253 1 l WAIA I route add 10 55 1 0 10 55 1 0 H i I via 10 1 1 2 fastethernet 0 0 0 l r i ip address 192 168 253 2 as ae a ee eee route add 10 5 1 0 viaoa fo aa a DEFAULT ROUTE 10 5 1 1 10 5 1 0 l cable 1 0 1 DHCP ip address 10 55 1 1 l Madeni SERVER C3 ip dhcp relay l 10 1 1 1 cable helper address 10 1 1 1 cable dhcp giaddr cable 1 0 0 ip address 10 5 1 1 N ip dhcp relay cable helper address 10 1 1 1 cable dhcp giaddr fastethernet 0 1 0 ip address 10 1 1 2 ip routing default cm subinterface cable 1 0 0 default cpe subinterface cable 1 0 1 Figure B 8 Example of the equivalent routing version of simple bridging configure terminal turn on simple snmp access snmp server community public ro snmp server community private rw l inband managment l ip routing provide default route for CPE ip route 0 0 0 0 0 0 0 0 192 168 253 1 I default cpe subinterface cable 1 0 1 default cm subinterface cable 1 0 interface fastethernet 0 0 0 ip address 192 168 253 2 255 255 255 0 no bridge group no management access no shutdown I interface fastethernet 0 1 ip address 10 1 1 2 255 255 255 0 management access no shutdown ARRIS PROPRIETARY All Rights Reserved 11 14 05 Hybrid operation Release 4 3 Standard C3 CMTS User Guide j interface cable 1 0 0 no bridge goup ip address 10 5 1 1 255 255 255 0 ip dhcp relay ip dhcp rela
173. 28 shortened SCDMA no trell preamble type l 5 spr 2 qpsk1 0 0 32qam scrambler 338 no diff 128 shortened SCDMA no trel preamble type 0 qpsk scrambl SCDMA no trell preamble type 0 qpsk scrambl SCDMA no trell preamble type l1 5 spr 2 qpsk0 ler 338 no diff 64 fixed L 5 no spr 2 qpsk0 ler 338 no diff 640 fixed L 5 no spr 2 qpsk0 0 qpsk scramb ler 338 no diff 384 fixed F 15 F Factory Defaults cable modulation profile advPhyS AdvPhy SCDMA no trell 5 spr 2 advPhyS AdvPhy preamble type qpskl advPhyS 12 78 10 0 32qam scrambler 338 no diff 64 shortened advPhyL AdvPhy SCDMA no trell 5 spr 2 advPhyL AdvPhy preamble type qpskl advPhyL 5 220 0 0 32qam scrambler 338 no diff 64 shortened advPhyU AdvPhy SCDMA no trell 5 spr 2 advPhyU AdvPhy preamble type qpskl advPhyU 12 78 0 0 32qam scrambler 338 no diff 64 shortened request AdvPhy SCDMA no trell 5 spr 2 request AdvPhy preamble type qpsk0 request 0 16 0 0 qpsk scrambler 338 no diff 64 fixed initial AdvPhy SCDMA no trell 5 no spr 2 initial AdvPhy preamble type qpsk0 initial 5 34 0 0 qpsk scrambler 338 no diff 640 fixed station AdvPhy SCDMA no trell 5 no spr 2 station AdvPhy preamble type qpsk0 station 5 34 0 0 qpsk scrambler 338 no diff 384 fixed advPhyS AdvPhy SCDMA no trell 5 spr 2 advPhyS AdvPhy preamble type qpskl advPhyS 12 78 10 0 64qam scrambler 338 no diff 128 shortened advPhyL AdvPhy SCDMA no trell 5 spr 2 advPhyL AdvPhy prea
174. 3044 cable insertion interval automatic cable sync interval 10 cable ucd interval 2000 cable max ranging attempts 16 cable sid verify cable downstream rate limit cable flap list size 500 cable flap list aging 259200 cable flap list miss threshold 6 cable flap list insertion time 180 cable downstream admission control 100 no cable downstream admission limit no description shutdown mac address 00a0 7384 040a load interval 300 snmp trap link status bridge group 0 ip address 172 16 1 2 255 255 255 0 no allow ip only no management access no tftp server access no cable source verify arp broadcast echo 12 broadcast echo 12 multicast echo ip broadcast echo ip multicast echo no 12 broadcast throttle no downstream dhcp server allowed Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved C3 CMTS User Guide F 3 F th ip no no no ip no ca ca ca ca ca ca ca no ca ca no no ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca no ca no ca no ca ca no ca ca ca ca ca ca no no ca ca ca ca Factory Defaults rottle credits initial 15 running 2 igmp enable ip dhcp relay ip dhcp relay information option ip dhcp relay validate renew dhcp relay non broadcast cable dhcp giaddr ble downstream mac mode docsis ble downstream channel width 6mhz ownstream frequency 501000000 ownstream interleave depth 32 ownstream modulation 64qam ble downstream power lev
175. 33 10 Command Line Interface Reference clock summer time recurring Syntax clock summer time timezone recurring start end Creates a recurring period of summer time for the specified time zone Use clock summer time date to set a specific period of summer time The parameters are Keyword Description timezone The time zone name Use clock timezone to create the timezone start The starting date and time The format is week day month hh mm week This can be first last or 1 to 4 day This is a day of the week sun through sat or 1 to 7 end Example The ending date and time C3 clock summer time EDT recurring first sun apr 02 00 first sun oct 02 00 clock timezone Syntax no clock timezone name offset Creates a time zone Use no clock timezone to delete a configured timezone Keyword Description name Any text string to describe the time zone offset The offset in hours and optionally minutes from UTC Valid range 13 to 13 10 34 ARRIS PROPRIETARY All Rights Reserved 11 14 05 configure Syntax Release 4 3 Standard C3 CMTS User Guide configure terminal memory network overwrite network Changes the command entry mode to global configuration mode See G oba Configuration Commands page 10 98 for details Example C3 configure Configuring from terminal memory or network terminal terminal
176. 34 0 48 qpsk scrambler 338 no diff 640 fixed station AdvPhy TDMA station 5 34 0 48 qpsk scrambler 338 no diff 384 fixed short AdvPhy TDMA short 6 78 15 8 qpsk scrambler 338 no diff 84 shortened long AdvPhy TDMA long 8 220 0 8 qpsk scrambler 338 no diff 96 shortened request AdvPhy TDMA request 0 16 0 8 qpsk scrambler 338 no diff 64 fixed initial AdvPhy TDMA initial 5 34 0 48 qpsk scrambler 338 no diff 640 fixed station AdvPhy TDMA station 5 34 0 48 qpsk scrambler 338 no diff 384 fixed short AdvPhy TDMA short 6 78 15 8 qpsk scrambler 338 no diff 84 shortened long AdvPhy TDMA long 4 220 0 8 qpsk scrambler 338 no diff 96 shortened request AdvPhy TDMA request 0 16 0 8 qpsk scrambler 338 no diff 64 fixed initial AdvPhy TDMA ARRIS PROPRIETARY All Rights Reserved F Factory Defaults ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ ol F 10 moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa
177. 4129 899510 4 579 FastEthernet0 1 Switching path Pkts Tn Chars In Pkts Out Chars Out Processor 0 0 0 0 Total 0 0 0 0 Cablel1 0 Switching path Pkts In Chars In Pkts Out Chars Out Processor 0 0 0 0 Total 0 0 0 0 C3 show interface cable Syntax show interface cable 1 0 option Displays detailed information about a specific cable interface Each option is described in detail below Specifying no option shows a summary of interface statistics Example C3 show interface cable 1 0 Cable1 0 is up line protocol is up 10 78 Hardware is BCM3212 B1 address is 0000 ca3f 63cc Description DS 1 Cadant C3 CMTS BCM3034 Rev Al Alias Bridge Group 0 Primary Internet Address 10 17 43 10 24 Outgoing access list is not set Inbound access list is not set ARRIS PROPRIETARY All Rights Reserved 11 14 05 IP Throt Direct S Layer II C3 CMTS User Guide tling access list is not set ubnet Broadcast Propagation disabled Bridge To Bridge Routing subIf Routing disabled Src Ip Directly Connected NW filter disabled Sre Ip S Valid Ip Incoming cable so ubI f Directly Connected NW filter disabled Address filter enabled non IP ARP packets allowed urce verify disabled ARP broadcast echo enabled L2 L2 IP TFE L2 Throt broadcast multicast broadcast multicast broadcast echo enabled echo enabled echo enabled echo enabled throttle disabled tle credits initial 15 running 2 C3
178. 48 CONFIG DELETED 0 2048 0 2048 CONFIG TEMP 0 2048 0 2048 CONFIG CURRENT 0 2048 0 2048 CONFIG ALT 0 2048 0 2048 Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan 11 PPP PR 1980 4 2 0 6 start 1980 1980 1980 1999 1980 1980 1980 1980 1980 00 00 1980 00 00 1980 00 00 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 4 2 0 10_s 4 2 0 11_s 4 2 0 15 s 4 3 0 11_s 4 3 0 27_s 4 2 0 7 8 4 2 0 9 s 4 3 0 1s ELET ED EMP POHU URRE TTZ ARRIS PROPRIETARY All Rights Reserved NT car car tar car car Care CaL Care 11 14 05 Listing Directory drwxrwxrwx 1 0 drwxrwxrwx 1 0 drwxrwxrwx 1 0 drwxrwxrwx 1 0 drwxrwxrwx 1 0 drwxrwxrwx 1 0 Listing Directory drwxrwxrwx 1 0 drwxrwxrwx 1 0 Listing Directory drwxrwxrwx 1 0 drwxrwxrwx 1 0 Listing Directory drwxrwxrwx 1 0 drwxrwxrwx 1 0 Listing Directory drwxrwxrwx 1 0 drwxrwxrwx 1 0 Listing Directory drwxrwxrwx 1 0 drwxrwxrwx 1 0 Listing Directory drwxrwxrwx 1 0 drwxrwxrwx 1 0 rwxrwxrwx 1 0 Listing Directory drwxrwxrwx 1 0 drwxrwxrwx 1 0 Listing Directory drwxrwxrwx 1 0 drwxrwxrwx CWXCWXILWX r rWXrWXrWX r rWXrWXrWX r rWXrWXrWX r rWXrWXrWX r rWXrWXr
179. 5 cable helper address page 10 216 ip dhcp relay validate renew Syntax 10 218 no ip dhcp relay validate renew When this command is active the destination IP address in a Renew message is validated against the configured helper address for cable sub interface If the destination address is not validated the Renew is dropped See also cable helper address page 10 216 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Cable Downstream The following downstream commands are available Scope Not applicable to a cable sub interface cable downstream admission control Syntax no cable downstream n admission control pct Specifies the level of oversubscription allowed on the downstream For example a value of 300 means that the C3 allocates 33 100 300 of the configured minimum bit rate worst case to each modem Valid range 100 to 10000 Omit the percentage to disable oversubscription Use the no form of this command to allow unlimited oversubscription cable downstream admission limit Syntax no cable downstream admission limit pct Limits the bandwidth usage by services using reserved bandwidth on the downstream to the specified percentage Valid range 0 to 99 percent Use the no form of this command to allow unlim ited usage Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 219 10 Command Line Interface Reference cable downstream annex Syntax
180. 5 C3_v04 03 00 32 bin Load C3_v04 03 00 32 bin from tftp 10 1 12 5 00 EEE eee OK 8300967 bytes 9 12 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Using a Compact Flash Reader Procedure 9 10 Release 4 3 Standard C3 CMTS User Guide 8300967 bytes copied in 25 secs 332038 bytes sec C3 dir Listing Directory C rwxrwxrwx 10 0 690 Sep 15 19 56 autopsy txt rwxrwxrwx 10 0 996 Aug 19 14 40 root der rwxrwxrwx 1 0 0 10901 Sep 15 19 56 snmpd cnf rwxrwxrwx 1 0 0 45 Sep 16 16 35 tzinfo txt rwxrwxrwx 10 0 19213 Aug 19 14 40 fp_uload hex rwxrwxrwx 10 10764 Sep 15 19 55 startup configuration rwxrwxrwx 10 0 5208 Aug 19 14 40 dfu_uload hex drwxrwxrwx 10 0 2048 Aug 26 18 31 CONFIG drwxrwxrwx 10 0 2048 Sep 15 16 38 SOFTWARE rwxrwxrwx 10 0 10901 Sep 15 19 56 snmpd cnf drwxrwxrwx 10 0 2048 Aug 19 15 07 Syslog rwxrwxrwx 10 0 8001301 Sep 17 19 57 vxWorks bin img rwxrwxrwx 1 0 0 10764 Sep 15 19 55 startup temp 161251 Sep 15 19 55 shutdownDebug log rwxrwxrwx 10 0 1258 Sep 23 16 08 tmp_file 0001 rwxrwxrwx 10 0 8300967 Sep 23 16 08 C3_v04 03 00 32 bin rwxrwxrwx 10 0 Proceed to Configuring the C3 to Boot from the Flash Disk page 9 15 End of procedure Using a Compact Flash Reader Instead of copying the software image over the network you can eject the Compact Flash disk from the C3 and copy the image directly from another computer You need a Compact Flash reader and driver softw
181. 5 authentication use the no cable shared secret command Use cable encrypt shared secret with no string specified to enable MD5 authentication and set the expected shared secret to DOCSIS Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 195 10 Command Line Interface Reference cable flap list Syntax 10 196 no cable flap list aging insertion time miss threshold size default value Sets parameters for the flap list The parameters are Keyword Description Sets the time that entries remain in the flap list Use no aging cable flap list aging to disable entry aging Valid range 300 to 864000 seconds that is 5 minutes to 10 days Default 259200 seconds 72 hours insertion time Sets the re insertion threshold time Use no cable flap list insertion time to disable re insertion Valid range 60 to 86400 seconds 1 minute to 1 day Default 180 seconds miss threshold Sets the miss threshold Use no cable flap list miss threshold to disable Valid range 1 to 12 Default 6 size Sets the maximum number of flap list entries Use no cable flap list size to allow an unlimited number of entries Valid range 1 to 6000 entries Default 500 ARRIS PROPRIETARY All Rights Reserved 11 14 05 cable insertion interval C3 CMTS User Guide Syntax cable insertion interval automatic t Sets the insertion interval The options are Keyword
182. 6 37 37 37 37 37 37 37 37 37 37 3h By 37 37 37 37 37 37 38 38 38 38 38 38 38 38 38 station station station vP vP vP vP vP vP vP vP vP aq aq aq aq aq aq aq aq aq hys hys hys hyL hyL hyL hyU hyU hyU request request request initial initial initial station station station vP vP vP vP vP vP vP vP vP aq aq aq aq aq aq aq aq aq hys hys hys hyL hyL hyL hyU hyU hyU request request request initial initial initial station station station vP vP vP vP vP vP vP vP vP aq aq aq aq aq aq aq aq aq hys hys hys hyL hyL hyL hyU hyU hyU request request request initial initial initial station station station ARRIS PROPRIETARY All Rights Reserved Ad Ad 5 Ad Ad 12 Ad Ad 16 Ad Ad 12 Ad Ad 0 Ad Ad 5 Ad Ad 5 Ad Ad 12 Ad Ad 5 Ad Ad 12 Ad Ad 0 Ad Ad 5 Ad Ad 5 Ad Ad 12 Ad Ad 16 Ad Ad 12 Ad Ad 0 Ad Ad 5 vP vP 34 vP vP hy hy 0 hy hy 00 hy hy 50 hy hy 00 hy hy 0 hy hy 0 hy hy 0 hy hy vP vP 16 vP vP 34 vP vP 34 vP vP 7 vP vP 22 vP vP 7 ny ny ny ny hy hy 0 hy hy 0 hy hy 0 hy hy 00 hy hy 50 hy hy 00 hy hy 0 hy hy 0 16 vP vP vP vP 16 vP vP 34 AdvPhy AdvPhy 5 34 0 SCDMA no trell preamble type 0 qpsk scrambl SCDMA no trel
183. 6 21 7 3 7 23 7 24 11 14 05 C3 CMTS Table of Contents Provisioning Upstream Load Balancing 7 27 8 Configuring Security Overview 8 2 Physically Separating Data 8 3 Filtering Traffic 8 7 Cable Interface VLANS 8 28 Cable Source Verify 8 32 Packet Throttling 8 34 Broadcast Throttling 8 35 IP Throttling 8 35 Simple Law Enforcement Monitoring SLEM 8 36 Configuring SSH 8 38 Configuring AAA 8 43 TACACS Commands 8 47 9 Service Procedures Removing Power for Servicing 9 2 Resetting the Power Supplies 9 3 Replacing a Power Supply 9 4 Fan Tray Replacement 9 5 Replacing the Battery 9 5 Replacing the RF Card 9 8 Replacing Fuses 9 9 Resetting the CMTS after Thermal Overload 9 10 Upgrading the CMTS Software 9 11 Enabling Licensing Features 9 17 Upgrading Dual Upstream Receivers DOCSIS 2 0 Systems 9 19 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved v Table of Contents 10 vi Command Line Interface Reference User Mode Commands User Mode SHOW Commands Privileged Mode Commands Privileged SHOW Commands Global Configuration Commands Configure keychain key Mode Configure Line Mode Interface Configuration Commands Router Configuration Mode Specifications Product Specifications CMTS Configuration Examples C3 Install Debug What to Do if DHCP is Not Working Advanced Bridging DHCP Server Configuration Standard Ethernet Backbone Wireless Cable Applications Overview Feature Summary Confi
184. 64 fixed 338 no diff 640 fixed 338 no diff 384 fixed bler 338 no diff 104 shortened 338 no diff 104 shortened 338 no diff 104 shortened 38 no diff 64 fixed 338 no diff 640 fixed 338 no diff 384 fixed bler 338 no diff 200 shortened bler 338 no diff 304 shortened 338 no diff 200 shortened 38 no diff 64 fixed 338 no diff 640 fixed 338 no diff 384 fixed bler 338 no diff 152 shortened 338 no diff 200 shortened 12 78 0 8 32qam scrambler 338 no diff 152 shortened 11 14 05 ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca CTOOTVDO DD TO ODA DO FTO ODDO TO XOXO DOO ODO TODO DO TOHVODXVD OOOO ODODOOOO ooo o moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa ud ud ud ud ud ul ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil
185. 8 8 8 16qam scrambler 338 no diff 168 shortened 220 0 8 16qam scrambler 338 no diff 192 shortened AdvPhy TDMA amp ATDMA 1 0 0 16 0 8 qpsk scrambler 338 no diff 64 fixed AdvPhy TDMA amp ATDMA 1 0 5 34 0 48 qpsk scrambler 338 no diff 640 fixed AdvPhy TDMA amp ATDMA 1 0 5 34 0 48 qpsk scrambler 338 no diff 384 fixed short AdvPhy TDMA amp ATDMA 1 0 short 6 78 15 8 qpsk scrambler 338 no diff 84 shortened long AdvPhy TDMA amp ATDMA 1 0 long 8 220 0 8 qpsk scrambler 338 no diff 96 shortened advPhys advPhys advPhys advPhyL advPhyL advPhyL advPhyU advPhyU advPhyU request request initial initial station station AdvPhy TDMA amp ATDMA 1536 AdvPhy preamble type qpskl 12 78 6 8 64qam scrambler 338 no diff 104 shortened AdvPhy TDMA amp ATDMA 1536 AdvPhy preamble type qpskl 16 220 0 8 64qam scrambler 338 no diff 104 shortened AdvPhy TDMA amp ATDMA 1536 AdvPhy preamble type qpskl 12 78 0 8 64qam scrambler 338 no diff 104 shortened AdvPhy TDMA amp ATDMA 0 0 16 0 8 qpsk scrambler 338 no diff 64 fixed AdvPhy TDMA amp ATDMA 0 5 34 0 48 gqpsk scrambler 338 no diff 640 fixed AdvPhy TDMA amp ATDMA 0 5 34 0 48 qpsk scrambler 338 no diff 384 fixed short AdvPhy TDMA amp ATDMA 1 0 short 8 78 8 8 16qam scrambler 338 no diff 168 shortened long AdvPhy TDMA amp ATDMA 1 0 long 10 advPhys advPhys advPhys advPhyL advPhyL advPhyL advPhyU advPhyU advPhyU request request request initial
186. 9 10 87 10 19 10 20 10 20 10 21 10 21 10 92 10 92 10 21 11 14 05 C3 CMTS 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 show mib show ntp show phs show processes show reload show route map show running configuration show snmp show snmp server show ssh show startup configuration show tech support show terminal show tftp server statistics show users show version shutdown snmp trap link status snmp access list snmp server snmp server community snmp server community entry snmp server contact snmp server disable snmp server enable snmp server engineid snmp server group snmp server host snmp server location snmp server notif entry snmp server notif sec model snmp server user snmp server view speed systat tacacs key Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 93 10 21 10 22 10 93 10 96 10 22 10 96 10 22 10 96 10 24 10 97 10 97 10 24 10 25 10 25 10 26 10 213 10 189 10 159 10 159 10 171 10 173 10 172 10 170 10 169 10 170 10 163 10 168 10 172 10 172 10 166 10 165 10 160 10 192 10 10 10 174 CLI xi 392 393 394 395 396 397 398 399 400 401 402 403 CLI xii tacacs server host tacacs server key tacacs server source address tacacs server timeout terminal test cable ucc cable throttle credits timer
187. ACS Global Server Properties Release 4 3 Standard C3 CMTS User Guide Keyword Description When list name is specified then a named ire authentication method list is configured method1 An ordered list of authentication methods to be method2 associated with the specified method list While in global configuration mode use the following command to create or remove a method list for use by the enable service Enter the command no aaa authentication enable default method1 methodz2 where Keyword Description method1 An ordered list of authentication methods to be method2 associated with the enable list In line configuration mode use the following command to bind or release a configured method list to the authentication server for the selected line interface Enter the command no login authentication login default list name where Keyword Description Uses the default list created with the aaa authentication login command default Uses the indicated list created with the aaa list name authentication login command While in global configuration mode use the following command to create or remove the global default encryption key Enter the command no tacacs server key lt key gt where Keyword Description Key used to set authentication and encryption key This key must match the key used on the TACACS daemon Wh
188. AN l web server MGMT l a inm maa l m g A Ld VEAN 6B8 NS p 4 Modem assigned to ISP 1 by l ee l IP address CPE traffic assigned l VPNs bridged l biman epas I to VLANS sii i E CABLE VPN 44 i i Default VPN for TODD DTT TTTTTT PC unprovisioned subscribers Figure 5 2 Example network diagram ARRIS PROPRIETARY All Rights Reserved 11 14 05 Configuration Release 4 3 Standard C3 CMTS User Guide The following shows how the C3 bridges data flowing through the above network ip 12 bg to bg routing e bridge 1 L FA0 0 0 ISP1 PC na gt bridge 2 CABLE 1 0 2 FA0 0 2 ISP2 PC HI CABLE 1 0 3 FA0 0 3 ISP3 PC f CABLE 1 0 10 C L hridge9 CABLE 1 0 14 L Modem FA0 1 0 CABLE 1 0 13 Cable Operator DHCP 1 bridge 4 C FA0 1 2 CABLE 1 0 4 i eer Unprovisioned rovisionin web server forward Figure 5 3 Bridging data flow through the C3 Run the following as a script on a factory default C3 configuration j conf t remove the factory default assignments remove bridges 0 and 1 so no sub interfaces are attached no bridge 0 no bridge 1 int ca 1 0 remove any previous ip addresses from the cable interface no ip address 10 99 99 253 255 255 255 0 exit remove the cable 1 0 1 subinterface as factory defined but not going to be used no int ca 1 0 1 ARRIS PROPRIETARY All
189. AdvPhy ATDMA 536 advPhyU AdvPhy preamble type qpsk advPhyU 12 78 0 8 qpsk scrambler 338 no diff 304 shortened request AdvPhy ATDMA 536 request AdvPhy preamble type qpsk request 0 16 0 8 qpsk scrambler 338 no diff 64 fixed initial AdvPhy ATDMA 536 initial AdvPhy preamble type qpsk initial 5 34 0 48 qpsk scrambler 338 no diff 640 fixed station AdvPhy ATDMA 536 station AdvPhy preamble type qpsk station 5 34 0 48 qpsk scrambler 338 no diff 384 fixed advPhyS AdvPhy ATDMA 536 advPhyS AdvPhy preamble type qpsk advPhyS 12 100 12 8 qpsk scrambler 338 no diff 104 shortened ARRIS PROPRIETARY All Rights Reserved 11 14 05 ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca CTOOTVDO DD TO ODA DO FTO ODDO TO XOXO DOO ODO TODO DO TOHVODXVD OOOO ODODOOOO ooo o moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa ud ud ud ud ud ul ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud lation profil latio
190. All Rights Reserved 10 21 10 Command Line Interface Reference IP Address Interval Master Success Attempts Active Offset s 63 149 208 50 C3 gt show phs show route map show snmp 10 22 300 Yes 0 35 Yes Unknown Displays PHS configuration Example C3 gt show phs PHS is enabled Displays all configured route maps Displays SNMP activity counters Example C3 gt show snmp SNMP information Agent generates Authentication traps yes Silent drops 0 Proxy drops 0 Incoming PDU Counters Total packets 752 Bad versions 0 Bad community names 4 Bad community uses 1 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard C3 CMTS User Guide ASN parse errors 0 Packets too big 0 No such names 0 Bad values 0 Read onlys 0 General errors 0 Total MIB objects retrieved 1588 Total MIB objects modified 0 Get requests 399 GetNext requests 348 Set requests 1 Get responses 0 Traps 0 Outgoing PDU Counters C3 Total packets 802 Packets too big 0 No such names 6 Bad values 0 General errors 0 Get requests 0 GetNext requests 0 Set requests 0 Get responses 748 Traps 54 ARRIS PROPRIETARY All Rights Reserved 10 23 10 Command Line Interface Reference show ssh show terminal 10 24 Displays the configuration data for the SSH server Example C3 gt show ssh SSH daemon disabled Version configured 1 99 SSH1 and SSH2
191. BONE fastethernet 0 0 0 bridge group 1 bridge 1 cable bridge group 1 PC fastethernet 0 1 0 bridge 0 cable bridge group 0 bridge group 0 PC Figure 4 1 Example of a bridge group When the C3 runs in bridging mode there is no interaction between bridge groups at the MAC level or layer 2 level whether by ARP or any other protocol The problem with this concept is that although there are two physical FastEthernet interfaces allowing each to be assigned to a separate bridge group there is only one physical cable interface This issue is solved by the use of sub interfaces ARRIS PROPRIETARY All Rights Reserved 11 14 05 Sub Interfaces Release 4 3 Standard C3 CMTS User Guide Sub interfaces split a physical interface into multiple logical interfaces to allow more flexibility in creating bridge groups This allows each sub inter face to have different specifications for e bridge group membership e IP addressing e DHCP relay address provided to the DHCP server e DHCP relay mode and helper address e IP routing e g for RIP e IGMP e Filtering using both ACL and subscriber management e C3 management access e 802 1Q tagging e other layer 3 parameters A sub interface is specified using a dot notation as follows e Cable 1 0 2 is a sub interface of the physical interface cable 1 0 e Similarly FastEthernet 0 1 5 is a sub interface of
192. C3 config if exit C3 config exit C3 copy running config startup config ARRIS PROPRIETARY All Rights Reserved 11 14 05 Procedure 3 10 Release 4 3 Standard C3 CMTS User Guide b To assign the management IP address to the fastethernet 0 1 0 FE0 1 primary sub interface enter the following commands C3 config terminal C3 config interface fastethernet 0 1 C3 config if ip address mgmt ip addr mask C3 config if exit C3 config exit C3 copy running config startup config Enter the following commands to set the default gateway IP address C3 config terminal C3 config ip default gateway gw_ip addr C3 config exit C3 copy running config startup config End of procedure Configuring IP Routing Mode Follow these steps to the configure the C3 CMTS for IP routing mode If IP routing is turned on while a cable subinterface has the same IP address as a fastethernet interface in the same bridge group changing to pure IP routing is not successful Remove the cable interface IP address or change the cable interface IP address before turning on IP routing mode If pure IP routing with no bridge groups is required use step c otherwise use steps a and b a IP routing with bridge group memberships C3 config terminal C3 config ip routing b Configure the default route if necessary C3 config terminal C3 config ip route 0 0 0 0 0 0 0 0 route Where route
193. C3 CMTS User Documentation 1 About this Manual Scope In this Document Conventions Used in This Manual For More Information FCC Statement Safety 2 Getting Started About the C3 CMTS Fast Start Introducing the ARRIS Cadant C3 CMTS Major Components of the Cadant C3 CMTS 3 CMTS Installation Planning the Installation 4 Bridge Operation Terms and Abbreviations Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 1 1 1 2 1 4 1 4 2 1 2 2 2 2 2 8 3 1 4 2 Table of Contents Bridging Features Bridge Concepts Bridge Binding IP Addressing Attaching Bridge Groups Incoming Traffic Allocation to a Sub Interface Providing Multiple ISP Access Open Access Cable VPN Implementation Using the Modem IP Address to allocate CPE to a VPN Using a Modem Configuration File to Allocate CPEs to a VPN IP Routing Routing Concepts About RIP About OSPF Loopback Interfaces Multicast Operations Layer 3 Multicast Operation Routing Command Overview OSPF Point To Multipoint OSPF User interface Route Maps Match Clauses Provisioning Route Maps Displaying Route maps OSPF Route Redistribution Filtering Managing Cable Modems Changing the Upstream Channel Type DHCP Data Errors Upgrading Modem Firmware ARRIS PROPRIETARY All Rights Reserved C3 CMTS 4 3 4 4 4 14 4 16 4 18 4 19 5 1 5 3 5 5 5 11 6 1 6 3 6 8 6 9 6 12 6 13 6 14 6 16 6 17 6 19 6 20 6 20
194. CL definition with the specified entry or adds a new entry to an existing ACL The parameters are ACL number The ACL identifier Value 1 to 99 or 1300 to 1399 The C3 supports up to 30 ACLs with each ACL containing up to 30 ACEs ipaddr A single IP address or when specified with wi dcard the base address of a subnet wildcard The inverted mask defining the limits of a subnet For example if the subnet contains 256 addresses the wildcard is 0 0 0 255 any Matches any IP address Syntax no access list ACL number permit deny protocol host source source source wildcard any host dest dest dest wildcard any icmp type icmp code precedence precedence tos tos dscp dscp Creates an ACL definition with the specified entry or adds a new entry to an existing ACL The parameters are ACL number The ACL identifier Value 100 to 199 or 2000 to 2699 The C3 supports up to 30 ACLs with each ACL containing up to 30 ACEs protocol The IP protocol type O to 255 or one of the following Keyword Description ahp Authentication Header Protocol eigrp EIGRP routing protocol esp Encapsulation Security Protocol gre GRE tunneling icmp Internet Control Message Protocol ARRIS PROPRIETARY All Rights Reserved 8 9 8 Configuring Security 8 10 Keyword Description igp IGP routing protocol ip any Internet protocol ipinip I
195. CMTS Network port WAN ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Vlan Tagging Enabled Vlan Id 1 0x1 C3 gt 5 To change the above list of boot options enter bootCfg at the command prompt You can change the boot parameters one at a time Enter the new value for each parameter in turn to modify them Then enter bootShow to review the changes Set the IP address for the ARRIS Cadant C3 to suit your network gt bootCfg Options 1 Boot from TFTP 2 Boot from Compact Flash Select desired option 2 Application Image path C 4 3 0 32 bin CMTS Ip Address 10 1 127 121 CMTS Subnet Mask 255 255 128 0 TFTP Server Ip Address Gateway Ip Address 10 1 0 3 Saving in non volatile storage gt gt Application Image path is the name of the file and the file path if stored locally on the compact flash disk that contains the code image to be loaded Note that the drive letter C is in UPPER CASE Gateway Ip Address is the IP address of the default router on the back bone network The C3 uses this IP address for TFTP server booting 6 Once the boot parameters have been modified as required boot the system by entering or boot at the prompt Once the system is booted the serial port supports the CLI When this is the first time the ARRIS Cadant C3 has been powered up the CMTS auto matically creates all of the required run time files from the specified image
196. Count is 0 Adjacent neighbor count is 0 This command lists the directly connected OSPF router neighbors for each interface on which OSPF is enabled C3 show ip ospf neighbor show ip ospf neighbor Neighbor ID Pri State Address Interface 100 100 100 44 3 FULL 10 250 136 44 FastEthernet 0 1 0 13 13 13 13 1 FULL 10 250 136 46 FastEthernet 0 1 0 N A 1 DOWN 10 250 136 66 FastEthernet 0 1 0 6 16 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Table 6 3 OSPF router configuration mode commands Command Description To configure OSPF routers interconnecting to non broadcast networks use this form of the neighbor router configuration command To remove a configuration use the no form of this command no neighbor jp address Table 6 4 Interface configuration mode commands Command Description To configure the OSPF network type to a type other than the default for a given media use the ip ospf network interface configuration command broadcast i f network reba dese j Sets the network type to broadcast default setting point to multipoint point to multipoint non broadcast non broadcast Seti k ae no ip ospf network Sets the network type to point to multipoint The optional non broadcast keyword sets the point to multipoint network to be non broadcast If you use the non broadcast keyword the neighbor command is required To return to the default va
197. DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ ol F 12 moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa ud ud ud ud ud ul ul ul ul ul ul ud ud ud ud ud ud ul ul ul ul ul ul ud ud ud ud ud ud ul ul ul ul ul ul ud ud ud lation lation lation lation lation lation lation lation lation lation profil lation profil lation profil lation profil lation profil lation lation Lation lation profil lation profil lation profil Lation lation profil lation profil profil lation profil lation profil lation profil lation profil lation profil lation lation lation lation profil lation profil lation profil lation lation profil lation profil profil lation profil lation profil profil lation profil lation profil lation profil lation lation lation lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil profil profil profil profil profil profil lation profil profil profil profil profil profil profil lation profil profil profil
198. FEC FEC enco T CW BYTES SIZE no 0x0 0x10 no 0x5 0x22 no 0x5 0x22 no 0x6 Ox4b no 0x8 Oxdc no Oxc Ox4b no 0x10 Oxdc no 0x10 Oxdc 0x152 0x152 0x152 0x152 0x152 0x152 0x152 TCA Da O YO O Scrambl Max Seed 0x152 0x152 0x152 0x152 0x152 0x152 0x152 0x152 B size O O OOA G Scrambl Max Seed 0x152 0x152 0x152 0x152 0x152 0x152 0x152 0x152 B size 0 0 O 6 OS AO 48 48 Cc CO no no no no no no no C3 CMTS User Guide yes yes yes yes yes yes yes C3 config cable modulation profile 2 qam C3 config show cable modulation profile Guard Last Scrambl time size 8 48 48 8 Cc CO CO CW short no no no no no no no no yes yes yes yes yes yes yes yes C3 config cable modulation profile 2 advanced phy C3 config show cable modulation profile Guard Last Scrambl time size 8 48 48 8 Cc CO C ARRIS PROPRIETARY All Rights Reserved CW short no no no no no no no no yes yes yes yes yes yes yes yes C3 config cable modulation profile 2 mix C3 config show cable modulation profile F 19 F Factory Defaults Mod MM NNNNN DN NH F 20 IUC req ini sta sho lon adv adv adv uest tial tion rt g Phys PhyL PhyU Type Preamb Diff FEC qpsk qpsk qpsk 16qam 16qam 16qam 16qam 16qam 64 640 384 64 64 104 104 104 no no no no no no n
199. I is enabled and a key encryption Online pk key KEK is assigned The CMTS rejected the registration request from the modem reject m because the shared secret from the modem does not match the CMTS shared secret The class of service offered by the modem as part of the reject c registration request was not valid reject pk The Key Encryption Key KEK offered by the modem was invalid reject pt The Traffic Encryption Key TEK offered by the modem was invalid ARRIS PROPRIETARY All Rights Reserved 7 21 7 Managing Cable Modems Use the following MIB to check general modem status Table 7 3 General Modem Status MIB Object Value Description docsIfCmStatusValue 2 notReady Modem is searching for a downstream channel 3 notSynchronized Modem has found a downstream channel but has not set timing 4 phySynchronized Modem sees a digital signal and is looking for a UCD 5 usParametersAcquir ed Modem has found a UCD and is ranging 6 rangingComplete Modem is waiting for a DHCP address 7 ipComplete Modem has IP address and is trying to contact a Network Time Protocol NTP server 8 todEstablished Modem has determined the time 9 securityEstablished 10 paramTransferCo mplete Received the configuration file 11 registrationComple te CMTS accepted the registration request 12 operational Modem is online
200. IETARY All Rights Reserved 11 14 05 sta sho lon adv adv NM NM NN NH Mod IUC req ana sta sho adv adv PRPPRPRPP PR C3 long tion rt g Phys PhyL uest tial tion rt Phys PhyL qpsk 384 qpsk 64 qpsk 64 64gam 104 64gam 104 Type Preamb length qpsk 64 qpsk 640 qpsk 384 qpsk 64 qpsk 64 64gam 104 64gam 104 cable service class Syntax Release 4 3 Standard C3 CMTS User Guide no 0x5 0x22 0x152 0 48 no yes no 0x6 0x4b 0x152 7 8 no yes no 0x8 Oxdc 0x152 0 8 no yes no Oxc Ox4b 0x152 6 8 no yes no 0x10 Oxdc 0x152 88 8 no yes C3 config no cable modulation profile 2 C3 config show cable modulation profile Diff FEC FEC Scrambl Max Guard Last Scrambl enco T CW Seed B time CW BYTES SIZE size size short no 0x0 0x10 0x152 0 8 no yes no 0x5 0x22 0x152 0 48 no yes no 0x5 0x22 0x152 0 48 no yes no 0x6 0x4b 0x152 14 8 no yes no 0x8 Oxdce 0x152 0 8 no yes no Oxc Ox4b 0x152 6 8 no yes no 0x10 Oxdc 0x152 0 8 no yes See Default Modulation Profiles page F 18 for a listing of the default profiles no cable service class name option Defines a DOCSIS 1 1 upstream or downstream service class The mame is a character string that names the service class Note that some devices such as Touchstone Telephony Modems use the service class name to find service flow parameters The option is one of the following activity timeout sec Activity timeout in
201. ING Service Add rejected PHS rule exists 83000114 SYSLOG_WARNING Service Add rejected Duplicated reference ID or index in message 83000115 SYSLOG_WARNING Service Add rejected Multiple upstream flows 83000116 SYSLOG_WARNING Service Add rejected Multiple downstream flows 83000117 SYSLOG_WARNING Service Add rejected Classifier for another flow 83000118 SYSLOG_WARNING Service Add rejected PHS rule for another flow 83000119 SYSLOG_WARNING Service Add rejected Parameter invalid for context 83000120 SYSLOG_WARNING Service Add rejected Authorization failure 83000121 SYSLOG_WARNING Service Add rejected Major service flow error 83000122 SYSLOG_WARNING Service Add rejected Major classifier error 83000123 SYSLOG_WARNING Service Add rejected Major PHS rule error 83000124 SYSLOG_WARNING Service Add rejected Multiple major errors 83000125 SYSLOG_WARNING Service Add rejected Message syntax error 83000126 SYSLOG_WARNING Service Add rejected Message too big 83000127 SYSLOG_WARNING Service Add rejected Temporary DCC 83000200 SYSLOG_WARNING Service Change rejected Unspecified reason 83000201 SYSLOG_WARNING Service Change rejected Unrecognized configuration setting 83000202 SYSLOG_WARNING Service Change rejected Temporary no resource 83000203 SYSLOG_WARNING Service Change rejected Permanent administrative 83000204 SYSLOG_WARNING Service Change rejected Requestor not owner of service flow 83000205 SYSLOG_WARNING Service Ch
202. IP address of the default route or route of last resort ARRIS PROPRIETARY All Rights Reserved 3 19 3 CMTS Installation 3 20 c True IP routing removing bridge group memberships C3 config terminal C3 config ip routing C3 config interface fastethernet 0 0 0 C3 config if no bridge group C3 config if interface cable 1 0 0 C3 config if no bridge group C3 config if interface fastethernet 0 1 0 C3 config if no bridge group C3 config if interface cable 1 0 1 C3 config if no bridge group C3 config if exit C3 config exit Set the IP address of the cable interface C3 config interface cable 1 0 0 C3 config if ip address cbl_ip subnet The cbl_ip address may not be in the same subnet as the management IP address Configure the DHCP relay this is required for a cable modem to register when the CMTS is in IP routing mode C3 config if ip dhcp relay Cable helper address is mandatory for IP routing cable sub interfaces that are running DHCP relay C3 interface cable helper address ipaddr C3 interface exit Enter the following commands to save the routing configuration C3 config exit C3 copy running config startup config End of procedure ARRIS PROPRIETARY All Rights Reserved 11 14 05 Configuring the Cable Interfaces Requirements Cable Connections Action Procedure 3 11 Release 4 3 Standard C3 CMTS User Guide Use t
203. IS PROPRIETARY All Rights Reserved 11 14 05 Syntax Syntax Syntax Release 4 3 Standard C3 CMTS User Guide ip rip send no ip rip send version v Controls which version of RIP packets the C3 transmits Valid range 1 or 2 The no form of this command resets the send version on the sub interface to the default receive version 2 To block a specific version simply specify the alternate version For example to block the sending of version 2 packets specify that only version 1 packets are to be sent using the ip rip send version 1 command ip rip v2 broadcast no ip rip v2 broadcast Enables or disables broadcasting of RIPv2 updates ip source verify no ip source verify subif Enables or disables source IP verification checks on this interface The optional subif keyword verifies the IP address against the originating sub interface subnet specifications This command is only valid and has any effect only on a routing only sub interface Where a sub interface is both a bridging and routing sub interface even if ip routing is turned on this command has no effect as the sub interface bridges all traffic ARRIS PROPRIETARY All Rights Reserved 10 187 10 Command Line Interface Reference Syntax Syntax Syntax 10 188 ip verify ip address filter no ip verify ip address filter Enables or disables RFC1812 IP address checks on this interface load interval load interval ti
204. LOG_WARNING Service Change rejected Major service flow error 83000222 SYSLOG_WARNING Service Change rejected Major classifier error 83000223 SYSLOG_WARNING Service Change rejected Major PHS rule error 83000224 SYSLOG_WARNING Service Change rejected Multiple major errors 83000225 SYSLOG_WARNING Service Change rejected Message syntax error 83000226 SYSLOG_WARNING Service Change rejected Message too big 83000227 SYSLOG_WARNING Service Change rejected Temporary DCC 83000300 SYSLOG_WARNING Service Delete rejected Unspecified reason 83000301 SYSLOG_WARNING Service Delete rejected Requestor not owner of service flow 83000302 SYSLOG_WARNING Service Delete rejected Service flow not found 83000303 SYSLOG_WARNING Service Delete rejected HMAC Auth failure 83000304 SYSLOG_WARNING Service Delete rejected Message syntax error 83010100 SYSLOG_WARNING Service Add Response rejected Invalid transaction ID 83010101 SYSLOG_WARNING Service Add aborted No RSP 83010102 SYSLOG_WARNING Service Add Response rejected HMAC Auth failure 83010103 SYSLOG_WARNING Service Add Response rejected Message syntax error 83010104 SYSLOG_WARNING Service Add Response rejected Unspecified reason 83010105 SYSLOG_WARNING Service Add Response rejected Unrecognized configuration setting 83010106 SYSLOG_WARNING Service Add Response rejected Required parameter not present 83010107 SYSLOG_WARNING Service Add Response rejected Service Flow exists 830101
205. Link States external Type 5 AS External Link States network Type 2 Network LSA Opaque area Type 10 area opaque Link States Opaque as Type 11 AS opaque Link States opaque link Type 9 link local opaque Link States router Type 1 router Link States summary Type 3 network summary Link States Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 91 10 Command Line Interface Reference show license Displays a list of additional license features enabled on this CMTS Example C3 show license C3 hostid 312 Licensed Features RIP ARSVS01163 BRIDGE GROUPS ARSVS01164 See also icense page 10 40 show logging Displays event logging information Example C3 show logging Syslog logging disabled DOCSIS Trap Control 0x0 Event Reporting Control Event Local Priority 0 emergencies yes 1 alerts yes 2 critical yes 3 errors no 4 warnings no 5 notifications no 6 informational no 7 debugging no Log Buffer bytes Trap no no yes yes yes yes no no 10 92 ARRIS PROPRIETARY All Rights Reserved Logging Throttling Control unconstrained Syslog no no yes yes yes yes no no Local Volatile no no no yes yes yes no no 11 14 05 show mib Syntax show processes Syntax Release 4 3 Standard C3 CMTS User Guide show mib ifTable Displays the current state of the iffable MIB Example C3 show mib ifTable index if
206. MACDownChannelMacMode DocsisMacType C 4 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide dcxMACDownChannellfFrequency Integer32 dcxMacDownChannelSymbolRate Integer32 dcxMacDownChannelSymbolAlpha Integer32 dcxMacDownChannelAnnex Integer32 Gl dcxMACDownChannelMacMode OBJECT TYP SYNTAX DocsisMacType MAX ACCESS read only STATUS current DESCRIPTION Indicates the DOCSIS MAC mode that applies to this channel dcxMACDownstreamChannelEntry 1 dcxMACDownChannellfFrequency OBJECT TYPE SYNTAX Integer32 5000000 80000000 UNITS hertz MAX ACCESS read write STATUS current DESCRIPTION The IF frequency output by the modulator for this channel dcxMACDownstreamChannelEntry 2 dcxMacDownChannelSymbolRate OBJECT TYPE SYNTAX Integer32 1250000 6952000 MAX ACCESS read write STATUS current DESCRIPTION When dcxMACCmtsMacMode is set to custom mode this value may written to set the downstream symbol rate dcxMACDownstreamChannelEntry 3 Gl dcxMacDownChannelAlpha OBJECT TYP SYNTAX Integer32 MAX ACCESS read only STATUS current DESCRIPTION The excess bandwidth for the channel dcxMACDownstreamChannelEntry 4 dcxMacDownChannelAnnex OBJECT TYPE SYNTAX INTEGER annexA 1 annexB 2 MAX ACCESS read write STATUS current DESCRIPTION When dcxMACCmtsMacMode is set
207. MIB certain fields in Mediation Device table This may be dependent on hardware capabilities software capabilities The following values may be supported ipV4SrcInterface SNMP ifIndex Value may be used to select the interface denoted by cTapMediationSrcInterface on the intercepting device from which to transmit intercepted data to an IPv4 address Mediation Device ipV SrcInterface SNMP ifIndex Value may be used to select the interface denoted by cTapMediationSrcInterface on the intercepting device from which to transmit intercepted data to an IPv6 address Mediation Device udp UDP may be used as transport protocol denoted by cTapMediationTransport in transferring intercepted data to the Mediation Device rtcpNack RTP with Nack resilience may be used as transport protocol denoted by cTapMediationTransport in transferring intercepted data to the Mediation Device tep TCP may be used as transport protocol denoted by cTapMediationTransport in transferring intercepted data to the Mediation Device sctp SCTP may be used as transport protocol denoted by cTapMediationTransport in transferring intercepted data to the Mediation Device cTapMediationGroup 3 the stream tables In the initial version of the MIB only IPv4 and IPv6 intercept is defined It is expected that in the future other types of intercepts may be required these will be defined in tables like the cTap
208. N tag then go to step 5 Check for modem based VSE encoding and map the traffic to a cable sub interface with an encapsulation tag matching the VSE tag allocated to the modem then go to step 5 Check the sub interface the attached modem is assigned to for a map cpes specification if found map the CPE traffic to the specified cable sub interface then go to step 5 Check for default mapping of CPE to a cable sub interface using the default cpe subinterface specification and map CPE traffic to this cable sub interface then go to step 5 Check for CPE based 802 1Q VLAN tagging against the mapped sub interface VLAN specification specified under the cable sub interface or using a bridge bind specification Bridge the frame with a matching tag and drop the frame if e the VLAN specification does not exist or e the VLAN specification exists but does not match the frame Check that the sub interface exists and is active If not active or does not exist then drop the data frame This testing is performed for modem sourced frames and CPE sourced frames arriving via a cable modem The only test above that is relevant to a cable modem is the test allowing modems to be allocated to cable sub interfaces based on the allocated modem IP address ARRIS PROPRIETARY All Rights Reserved 4 29 4 Bridge Operation 4 30 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Open Access Release 4 3 Standard Providing Multiple ISP Acc
209. OMPLIANCE STATUS current DESCRIPTION The compliance statement for entities which implement the Cisco Intercept MIB MODULE this module MANDATORY GROUPS cTapMediationComplianceGroup cTapStreamComplianceGroup cTapMediationCpbComplianceGroup cTapNotificationGroup cTapMIBCompliances 1 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide units of conformance cTapMediationComplianceGroup OBJECT GROUP OBJECTS cTapMediationNewIndex pMediationDestAddressType pMediationDestAddress pMediationDestPort pMediationSrcInterface pMediationRtcpPort pMediationDscp pMediationDataType p p p p p A J 4 J t J J 4 4 t J 4 4 MediationRetransmitType MediationTimeout MediationTransport MediationNotificationEnable MediationStatus t J E J S 4 ti J aaaaaaaaaaaa TTT STATUS current DESCRIPTION These objects are necessary for description of the data streams directed to a Mediation Device i cTapMIBGroups 1 cTapStreamComplianceGroup OBJECT GROUP OBJECTS cTapStreamCapabilities STATUS current DESCRIPTION These objects are necessary for a description of the packets to select for interception i cTapMIBGroups 2 cTapStreamIpComplianceGroup OBJECT GROUP OBJECTS cTapStreamIpInterface pStreamIpAddrType pStreamIpDestinationAddress pStreamIpDestinationLength pStreamIpSourceAddress pStreamIpSourceLength pStr
210. P in IP tunneling nos KA9Q NOS compatible IP over IP tunneling ospf OSPF routing protocol pcp Payload Compression Protocol pim Protocol Independent Multicast tcp Transmission Control Protocol udp User Datagram Protocol icmp code See CMP Definition page 8 11 precedence Matches the precedence bits of the IP header s TOS field Value 0 to 7 or one of the following Keyword Description Value network Match packets with network control precedence 7 internet Match packets with internetwork control 6 precedence critical Match packets with critical precedence 5 flash override Match packets with flash override precedence 4 flash Match packets with flash precedence 3 immediate Match packets with immediate precedence 2 priority Match packets with priority precedence 1 routine Match packets with routine precedence 0 tos Matches Type of Service TOS bits in the IP header s TOS field Value one of 0 2 4 8 16 or one of the following Keyword Description Value min delay Match packets with minimum delay TOS 8 max throughput Match packets with maximum throughput 4 TOS max reliability Match packets with maximum reliability 2 TOS minmonetary cost Match packets with minimum monetary 1 y cost TOS ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Keyword Description Value normal Match packets with normal TOS
211. Relay Information Option Release 4 3 Standard C3 CMTS User Guide DHCP Ethernet cuts Cable Cable Ethernet HOST Server Modem B CAST Discover DHCP Discover ee TD N Relay address IP1 B CAST UNICAST to IP1 DHCP OFFER of PP OFFER of p __ Offer Relayed IP address in same au B CAST subnet as IP1 BCAST DHCP Request Relayed Request s UNICAST to IP1 ACK Rela ed DHCP ACK BCAST I B CAST Discover DHCP Discover Relay address IP2 UNICAST to IP2 DHCP OFFER of gt a y O aye n IP address in same PHE ee ec subnet as IP2 AST DHCP Re uest BC CAST 1 Relayed Request B 1 UNICAST to IP2 aD DHCP ACK ee ed Figure 7 2 DHCP traffic flow with dhcp giaddr enabled The C3 can insert an option option number 82 in the DHCP Discover or Request message that tells the management systems at the time of cable modem or host DHCP whether the DHCP is from a modem or a host The MAC address of the cable modem is inserted into this option field for every DHCP Discover or Request message with the exception of Renews relayed by the C3 from the cable plant If the MAC address in the chaddr field matches the MAC address stored in the option 82 field the discover or request must have come from a cable modem ARRIS PROPRIETARY All Rights Reserved 7 15 7 Managing Cable Modems DHCP Server Use of Option 82 7 16 Similarly if the MAC addresses do not match then the Discover or Req
212. Rights Reserved 5 7 5 Providing Multiple ISP Access no ip routing set default subinterface for cm and cpe taffic before cm has an IP address default cm subinterface cable 1 0 10 catch any unknown CPE and direct to the provisioning web server default cpe subinterface cable 1 0 4 Define the bridges we will use for ISP1 traffic bridge 1 for ISP2 traffic bridge 2 for ISP3 traffic bridge 3 for provisioning server traffic bridge 4 bridge 9 used for cm dhcp discover and management access to CMTS all cm will have access to this bridge group no matter what ip address they end up with bridge 9 int fa 0 0 0 description ISP1 no ip address bridge group 1 encapsulation dotlq 111 no ip 12 bg to bg routing exit int fa 0 0 2 description ISP2 no ip address bridge group 2 encapsulation dotlq 222 no ip 12 bg to bg routing exit int fa 0 0 3 description ISP3 no ip address bridge group 3 encapsulation dotlq 333 no ip 12 bg to bg routing exit l interface fa 0 1 0 description Management ip address 10 99 99 2 255 255 255 0 NOTE CMTS management can only occur from this VLAN encapsulation dotlq 999 management access bridge group 9 ip 12 bg to bg routing ip address should be in subnet of DHCP server 5 8 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide this is also the CMTS management address DHCP server should have st
213. Route 10 0 0 1 10 0 0 2 secondary Release 4 3 Sta ndard Figure 8 2 Example of bridging traffic to the FastEthernet In the above diagram all broadcast modem traffic is mapped to the cable 1 0 0 sub interface by the default cm sub interface specification and thus to bridge group 0 This bridge group bridges traffic to fastethernet 0 1 1 and is thus VLAN encoded with tag 2 and sent to the L2 L3 switch then to the CM DHCP servers Modem discover broadcast however is unicast by the DHCP Relay func tion to both 172 16 5 48 and 172 16 5 49 This subnet is not directly connected to the C3 so is routed using the defined host routes to the ARRIS PROPRIETARY All Rights Reserved 8 25 8 Configuring Security write erase reload L2 L3 switch at 10 160 0 1 Again modem Renew is directed to either 172 16 5 48 or 172 16 5 49 depending on which answered the original DHCP Again these packets will be routed using the host routes All CPE traffic is mapped to cable 1 0 1 on bridge group 1 and bridged to the fastethernet 0 0 0 sub interface CPE devices have no specified DHCP relay so the C3 broadcasts DHCP from the fastethernet 0 0 0 sub inter face to the DHCP server DHCP relay could be activated if required in which case the cable 1 0 1 sub interface would need an IP address pref erably in the subnet required for the CPE devices Fastethernet 0 1 0 is not a member of any bridge group and will thus be assumed by th
214. SSHv1 or SSHv2 connections use the following command the default is to allow both C3 no ip ssh version vl v2 End of procedure ARRIS PROPRIETARY All Rights Reserved 8 41 8 Configuring Security Procedure 8 7 Managing SSH Connections Follow these steps as needed to manage SSH connections 1 To view existing SSH connections use the following user level command C3 gt show ip ssh 2 To disconnect an active SSH connection use the following privileged command C3 disconnect ip ssh user End of procedure 8 42 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Configuring AAA Release 4 3 Standard C3 CMTS User Guide The AAA security model is an architectural framework for the management of common security functions within a mixed network environment and is an industry standard to which our competitors adhere to The AAA security model includes support for Authentication Authorization and Accounting K NOTE The C3 CMTS Release 4 3 supports authentication only AAA Servers Figure 8 4 AAA Security Model The C3 CMTS has partially implemented the AAA security model in this release Currently only authentication of telnet and console lines are supported This is accomplished via the TACACS protocol Included in this release is the support for multiple TACACS servers method lists and user settable TACACS traffic source address The TACACS protocol specification co
215. SSIVE Network Type BROADCAST Cost 1 Internet Address 10 7 7 7 32 Area 0 0 0 0 Loopback interface is treated as a stub Host Lists the directly connected OSPF router neighbors for each interface on which OSPF is enabled Example ate Address Interface 1L DR 10 250 0 17 FastEthernet 0 1 0 1L BDR 10 250 0 45 FastEthernet 0 1 0show ip Lists the internal OSPF route table The table consists of routes for all the local interfaces running OSPF and all the routes learned through OSPF Example C3 show ip ospf routing table Dest ID Out I F Next Hop Cost Dest Type Path Type Area 10 250 0 0 24 10 250 0 42 0 0 0 0 1 NETWORK INTRA 0 10 3 3 0 24 10 33333 0 0 0 0 1 NETWORK INTRA 0 10 250 1 0 24 10 250 1 1 0 0 0 0 1 NETWORK INTRA 0 10 250 136 0 24 10 250 0 42 10 250 0 45 11 NETWORK INTRA 0 10 1 134 0 23 10 250 0 42 10 250 0 17 4 NETWORK INTER 0 10 1 132 0 23 10 250 0 42 10 250 0 17 4 NETWORK INTER 0 1041 13070723 10 250 0 42 10 250 0 17 4 NETWORK INTER 0 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 89 10 Command Line Interface Reference 2121621 1 32 show ip ospf database 10 90 10 250 0 42 10 250 0 17 I ABR INTRA Lists a summary of each LSA type currently held in the OSPF LSA database Example C3 show ip ospf database OSPF Router with ID 0 0 0 42 Router Link States Area 0 0 0 0 Link ID ADV Router Age Seq Checksum 0 0 0 4
216. Source Verify Failure DHCP Lease Expired Count s 0x90130107 SYSLOG_ERROR Source Verify Failure Spoofing CMTS or STATIC MAC Count s 0x90130108 SYSLOG_ERROR CM in SCDMA mode was ranging too often and was reset 0x90130109 SYSLOG_NOTICE TACACS server unreachable for authentication on line s s 0x9013010a SYSLOG_NOTICE TACACS server group unreachable for authentication on line s group s 0x9013010b SYSLOG_INFO AAA successful authentication on line s s 0x9013010c SYSLOG_NOTICE AAA authentication failure on line s s 0x9013010d SYSLOG_INFO AAA successful enable authentication on line s s 0x9013010e SYSLOG_NOTICE AAA enable authentication failure on line s s SNMP Traps Release 4 3 Standard The shaded items are SNMP traps which have no corresponding SYSLOG ARRIS PROPRIETARY All Rights Reserved H 7 H C3 CMTS Syslog Events and SNMP Traps Table H 1 docsDevNotification 2 docsDevTraps 1 docsDevCmtsTraps 3 SNMP Trap OID SNMP Trap Description docsDevCmtsInitRegReqFailTrap 1 An event to report the failure of a registration request from CM happened during the CM initialization process and detected in the CMTS side The values of docsDevEvLevel docsDevid and docsDevEvText are from the entry which logs this event in the docsDevEventTable DocsIfCmtsCmStatusDocsisMode and docsIfCmtsCmStatusMacAddress indicate the DOCSIS version of the CMTS and the MAC address of the CMTS if there is a cable ca
217. StreamIpTable with appropriate attributes Such tables when defined will be used by the Mediation Entry in exactly the same way that the cTapStreamIpTable is used Such Tables all belong in cTapStreamGroup cTapStreamCapabilities OBJECT TYPE SYNTAX BITS tapEnable 0 interface l1 ipv4 2 ipV6 3 14Port 4 dscp 5 dstMacAddr srcMacAddr ethernetPi dstLlcSap srcLlcSap PROC oe MAX ACCESS read only STATUS current DESCRIPTION This object displays what types of intercept streams can be configured on this type of device This may be dependent on ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide hardware capabilities software capabilities The following fields may be supported interface SNMP ifIndex Value may be used to select interception of all data crossing an interface or set of interfaces tapEnable set if table entries with cTapStreamIpInterceptEnable set to false are used to pre screen packets for intercept otherwise these entries are ignored ipv4 IPv4 Address or prefix may be used to select traffic to be intercepted ipv IPv6 Address or prefix may be used to select traffic to be intercepted 14Port TCP UDP Ports may be used to select traffic to be intercepted dscp DSCP may be used to select traffic to be intercepted dstMacAddr Destination MAC Address may be used to select traffic to be intercepted srcMacAddr Source MAC Address may be used to
218. T TYPE SYNTAX RowStatus MAX ACCESS read create STATUS current ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide DESCRIPTION The status of this conceptual row This object manages creation modification and deletion of rows in this table cTapStream802InterceptEnable can be modified any time even the value of this entry rowStatus object is active When other rows must be changed cTapStream802Status must be first set to notInService cTapStream802Entry 12 The debug table cTapDebugTable OBJECT TYPE SYNTAX SEQUENCE OF CTapDebugEntry MAX ACCESS not accessible STATUS current DESCRIPTION A table that contains Lawful Intercept debug information available on this device This table is used to map an error code to a text message for further information cTapDebugGroup 1 cTapDebugEntry OBJECT TYPE SYNTAX CTapDebugEntry MAX ACCESS not accessible STATUS current DESCRIPTION A list of the debug messages INDEX cTapDebugIndex cTapDebugTable 1 CTapDebugEntry SEQUENCE cTapDebugIndex Unsigned32 cTapDebugMessage SnmpAdminString cTapDebugIndex OBJECT TYPE SYNTAX Unsigned32 MAX ACCESS not accessible STATUS current DESCRIPTION Indicates an error code cTapDebugEntry 1 cTapDebugMessage OBJECT TYPE SYNTAX SnmpAdminString MAX ACCESS read only STATUS current DESCRIPTION A text string contains the description of an error code
219. TATUS current DESCRIPTION cTapMediationContentId is a session identifier from the intercept application s perspective and a content identifier from the Mediation Device s perspective The Mediation Device is responsible for making sure these are unique although the SNMP RowStatus row creation process will help by not allowing it to create conflicting entries Before creating a new entry a value for this variable may be obtained by reading cTapMediationNewIndex to reduce the probability of a value collision cTapMediationEntry 1 cTapMediationDestAddressType OBJECT TYPE SYNTAX InetAddressType MAX ACCESS read create STATUS current DESCRIPTION The type of cTapMediationDestAddress cTapMediationEntry 2 cTapMediationDestAddress OBJECT TYPE SYNTAX InetAddress MAX ACCESS read create STATUS current DESCRIPTION The IP Address of the Mediation Device s network interface to which to direct intercepted traffic cTapMediationEntry 3 cTapMediationDestPort OBJECT TYPE SYNTAX InetPortNumber MAX ACCESS read create STATUS current DESCRIPTION The port number on the Mediation Device s network interface to which to direct intercepted traffic cTapMediationEntry 4 cTapMediationSrcInterface OBJECT TYPE SYNTAX InterfaceIndexOrZero MAX ACCESS read create STATUS current DESCRIPTION Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved E 3 E SLEM MIB The interface on the intercepting
220. TAX InetPortNumber MAX ACCESS read create STATUS current DESCRIPTION The maximum value that the layer 4 destination port number in the packet must have in order to match this classifier entry This value must be equal to or greater than the value specified for this entry in cTapStreamIpDestL4PortMin f both cTapStreamIpDestL4PortMin and cTapStreamIpDestL4PortMax are at their default values the port number is effectively unused DEFVAL 65535 by default any transport layer port number cTapStreamIpEntry 13 cTapStreamIpSourceL4PortMin OBJECT TYPE SYNTAX InetPortNumber MAX ACCESS read create STATUS current DESCRIPTION The minimum value that the layer 4 destination port number in the packet must have in order to match This value must be ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide equal to or less than the value specified for this entry in cTapStreamIpSourceL4PortMax If both cTapStreamIpSourceL4PortMin and cTapStreamIpSourceL4PortMax are at their default values the port number is effectively unused DEFVAL 0 by default any transport layer port number cTapStreamIpEntry 14 cTapStreamIpSourceL4PortMax OBJECT TYPE SYNTAX InetPortNumber MAX ACCESS read create STATUS current DESCRIPTION The maximum value that the layer 4 destination port number in the packet must have in order to match this classifier entry This value must be equal to or greater than the valu
221. Type ifAdminStatus LinkTraps ifAlias 1 ETH up enabled 2 ETH down enabled 3 CMAC up disabled 4 DS down enabled 5 US down disabled 6 US down disabled 11 US CH down enabled 12 US CH down enabled C3 show processes cpu memory Displays information about running processes and CPU utilization The options are no option Show status for all processes including stopped processes cpu Show CPU usage over time memory Show currently running processes Example ARRIS PROPRIETARY All Rights Reserved 10 93 10 Command Line Interface Reference C3 show processes NAME ENTRY tExcTask excTask tLogTask logTask tAutopsy autopsy tShell shell tPcmciad pcmciad Scheduler schedulerMai tNetTask netTask tTimerSvr TimerSvr tMdp1 MdpMain tMdp2 MdpMain tPortmapd portmapd tIgmp igmpTask FEtMgr fftMain tRngMgr RngMain tAuthMgr AuthMain tRegMgr RegMain tTek BPIPKHTask tDsxMgr DsxMain tBpi BPIPTask tCPPIf PPIf main tUsDsMgr channelMgtMa tCmMgr CmmMain tBridge bridge main tDhcpRelay dhcpRelayMai tNTPMib NTPMibMain tDsxHelper DsxHelper tDDMibs DocsDevMIBMa SysMgr 8103 688 tCmtsDebugLSM CmtsDebug tSnmpD snmpd_main tTimeout activeTimeou tPtyCli cli ptyOutpu tRomC1i cli main tEthMgr ethMgtMain tEFPD fpd main tIdlRngMgr idleRingMgrM tLogEvt LogEventTask tMTmrs MiscTimersMa SysMgrMonit8103eb34 tDcacheUpd dcacheUpd IdleTask 8103f 1d8 C3 10 94 89ef85d0 89ef5al0 89e
222. WX r rWXrWXrWX rrererrrrrrre oo0oo0oo0oo0000O0O rwWXxrWwWxrwx Release 4 3 Standard 0 OOOO O S SOFTWARE 0 2048 J 0 2048 J 0 2048 J 0 2048 J 0 2048 J 0 2048 J SOFTWARE DELETED 0 2048 J 0 2048 J SOFTWARE TEMP 0 2048 J 0 2048 J SOFTWARE CURRENT 0 2048 J 0 2048 J SOFTWARE ALT 0 2048 J 0 2048 J licenses 0 2048 J 0 2048 J Syslog 0 2048 J 0 2048 J 0 8680 J tftpboot 0 2048 J 0 2048 J 2048 J 2048 J 20608 J 25679 J 20467 J 19306 J 19094 J 19306 J 19344 J 19087 J an an an an an an an an an an an an an an an an an an an an an configuration backups an an an an an an an an an an PRPPRPRPP OANA ORDA RRRER 1980 00 00 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 00 00 1999 00 00 1980 1980 00 00 1980 00 00 1980 1999 1999 1980 1999 1980 1980 1980 C3 CMTS User Guide ELET ED POHU EMP of URRI LT Py NT nvlog bin Pee PP Br FP Be WrRFNWNOOFR ARRIS PROPRIETARY All Rights Reserved OSD Oo OVO Or O 27 config b 12_ config b 19 config b 10 config b 1_config bk 15 config b 15 config b sil config D A NAN A GOG AAAA SO S So OS O S ko 10 55 10 Command Line Int
223. a a a La La a a a a a ia ia ia ia ia ia tion tion tion tion tion tion tion tion tion lation tion tion tion tion tion lation lation tion profil profil profil profil profil profil profil profil profil profil profil profil profil profil profil profil profil profil 0000000000000000 MO DO KB DB DB DDB A BA BABB BA WAR BR BRA NONDNNNNNNNNNNNNNN DN LH The following listing is an example of a modulation profile used for DS1 transmission request request request ini tial initial ini tial station sta stat aq aq aq aq aq aq aq aq aq lt a aaa Aa tion ion Phys Phys Phys PhyL PhyL PhyL PhyU PhyU PhyU AdvPhy ATDMA 536 AdvPhy preamble type q 0 16 0 8 qpsk scramble AdvPhy ATDMA 536 AdvPhy preamble type q 0 34 0 48 gqpsk scramb AdvPhy ATDMA 536 AdvPhy preamble type q 0 34 0 48 gqpsk scramb AdvPhy ATDMA 536 AdvPhy preamble type q 6 223 8 8 16qam scram AdvPhy ATDMA 536 AdvPhy preamble type q 6 223 0 8 16qam scram AdvPhy ATDMA 536 AdvPhy preamble type q 6 223 0 8 16qam scram DSK DSK ler 338 no diff 512 psk ler 338 no diff 800 psk bler 338 no diff 32 psk bler 338 no diff 64 psk bler 338 no diff 64 ARRIS PROPRIETARY All Rights Reserved r 338 no diff 32 fixed fixed fixed shortened shortened shortened 11
224. aa authentication enable Syntax no aaa authentication enable default group tacacs groupname local none Creates or deletes a method list for use by the enable service The options are Keyword Description tacacs TACACS server group groupname Custom name for a group of TACACS servers local Associated enable password none No authentication aaa authentication login Syntax no aaa authentication login default methodlist group tacacs groupname local none Maintains or removes a login authentication methods list The options are Keyword Description Configures the default authentication default i method list methodlist Configures a named authentication method list Character string used to name the group groupname of servers Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 99 10 Command Line Interface Reference aaa new model Syntax access list 10 100 Keyword Description local Associated enable password none No authentication no aaa new model Creates or deletes a default configuration for AAA Defines and manages Access Control Lists ACLs Use ACLs to prevent illegal access to services provided by the C3 such as Telnet DHCP relay and SNMP from external sources such as cable modems CPEs or other connected ARRIS PROPRIETARY All Rights Reserved 11 14 05 Syntax Syntax Release 4 3 St
225. able dhcp giaddr primary for CPE traffic via modem with VSE tag 11 encapsulation dotlq 11 native cable 1 0 13 for cpe layer 2 forwarding for CPE traffic via modem with VSE tag 13 bridge group 13 encapsulation dotlq 13 native The map cpes command allows re direction of CPE traffic attached to a modem to a specified cable sub interface Once a modem is allocated an IP address the modem is mapped to any cable sub interface that has a matching subnet Thus if modems are allo cated to different subnets they can be mapped by the C3 to different cable sub interfaces If a map cpes specification is in place in the cable sub interface that the modem is allocated to all incoming CPE frames arriving via this modem are allocated to the specified cable sub interface Example configure terminal bridge 11 interface fastethernet 0 0 1 bridge group 11 encapsulation dotlq 111 interface cable 1 0 0 for modem only bridge group 0 ip address 10 99 99 1 255 255 255 0 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Default Mapping of CPE toa Sub Interface Cable Modem VPN CPE 802 1Q Traffic Release 4 3 Standard C3 CMTS User Guide ip dhcp relay cable helper address 10 0 0 1 cable modem cable dhcp giaddr primary map cpe cable 1 0 11 interface cable 1 0 11 for cpe bridging bridge group 11 accept 802 1q tagged frames only encapsulation dotlg 11 If a the global specification de
226. able sub interface using VSE encoding All traffic is bridged and VLAN tagged on exit from the bridged fastethernet sub interface Aseries of bridge bind specifications also adds support for 802 1Q tagging to this cable sub interface cable 1 0 13 This facility has been used by a customer to provide tiered services inside the VPN formed by the combi nation of the mapping of CPE traffic to this cable sub interface and the use ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide of the command encapsulation dotigq xx encrypted multicast to provide downstream broadcast privacy to CPE using this cable sub inter face Example Bridge 0 Bridge 1 bridge 2 int fa 0 0 0 management ip address ip address 10 1 0 1 255 255 255 0 bridge group 0 int fa 0 0 13 bridge group 2 no ip address encapsulation dotlq 13 int cable 1 0 0 for modem only ip address 10 99 99 1 255 255 255 0 bridge group 0 ip dhcp relay cable helper address 10 0 0 1 cable modem map cpes ca 1 0 13 int cable 1 0 13 bridge group 2 for cpe layer 2 forwarding encapsulation dotlq 13 native create VPN privacy encapsulation dotlq 13 encrypted multicast exit all traffic ariving at cable 1 0 13 check for tag 4 bridge to fa 0 0 13 and tag with 44 before leaving bridge 2 bind cable 1 0 13 4 fastethernet 0 0 13 44 all traffic ariving at cable 1 0 13 check for tag 5 bridge to fa 0 0 13 and tag with 55 before
227. able sub interface may use a native tag used with VSE or map cpes or may use normal 802 1Q tagging A FastEthernet interface must use 802 1Q tagging for bridge binding purposes Using a bridge bind specification can further reduce the broadcast domain This is especially relevant in the cable interface where the downstream and upstream are treated as separate interfaces in the bridge group A layer 2 broadcast received at the cable interface is re broadcast on all interfaces attached to the bridge group This includes the cable downstream inter face if the command I2 broadcast echo is present This characteristic of the cable interface can be a security risk Use of the bridge bind is one method provided in the C3 to restrict such broadcasts propagating into the cable downstream or to unwanted Ethernet interfaces ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard C3 CMTS User Guide The following diagram shows the effect of bridge binding on upstream Layer 2 broadcasts INTERFACE 0 0 INTERFACE 0 0 CABLE DOWNSTREAM CABLE DOWNSTREAM BROADCAST OPTIONAL BROADCAST BROADCAST 12 broadcast echo CABLE UPSTREAM CABLE UPSTREAM BROADCAST BROADCAST INTERFACE 0 4 INTERFACE 0 4 CABLE UPSTREAM BRIDGE BIND TO INTERFACE 0 0 BROADCAST Figure 4 12 Bridge binding on US Layer 2 broadcast Bridge binding may be used in another way If all CPE traffic is allocated to a cable sub i
228. able submgmt cpe ip filtering activate the defaults defined here for all modems and attached cpe cable submgmt default active Assign default filters cable submgmt default filter group cm upstream 99 8 24 ARRIS PROPRIETARY All Rights Reserved 11 14 05 submgm submgm submgm Now all se filter gro filter gro filter gro l up 3 for CP up 1 for CPE C3 CMTS User Guide t default filter group cm downstream 99 t default filter group cpe upstream 99 t default filter group cpe downstream 99 for a modem config file submgmt TLV to reference in network 10 1 0 0 in network 10 3 0 0 up 4 for CP Using Simple VLANS to Isolate Modem and CMTS Traffic H F H F H in network 10 4 0 0 Previous version of the C3 firmware supported the cable vpn command This command is now redundant due to the extensive enhancements to the C3 VLAN and VPN capabilities This section shows how to configure a C3 for the equivalent function of the old cable vpn command using the base C3 software license Se ee a EEEN CMTS CA DHCP TFTP TOD CPE1 PPPoE traffic VLAN 22 SSS fastethernet 0 0 no ip address l s o 000000 07 a OEE eT VLAN Aware Switch fastethernet 0 1 CMTS Modem1 10 99 99 2 Default
229. able upstream docsis page 10 231 cable upstream extended frequency detect Syntax no cable upstream n c extended frequency detect all ranging initial ranging periodic ranging Increases the range of upstream frequency offsets that the C3 can detect and correct for during ranging The no command is the default for software releases prior to 4 2 and is not available in release 4 2 and later It disables extended frequency detection The choices are Keyword Description all ranging Default mode and only mode available for software releases 4 2 and later Detects large frequency offsets in all ranging bursts If extended frequency detection is required this is the recommended setting initial ranging Not available in release 4 2 and later Detects large frequency offsets in IUC3 bursts With only initial ranging detection enabled the offset may become so large that the C3 may not detect subsequent periodic ranging bursts periodic ranging Not available in release 4 2 and later Detects large frequency offsets in periodic ranging bursts This setting requires initial ranging bursts to be within the standard offset limits 10 232 ARRIS PROPRIETARY All Rights Reserved 11 14 05 cable upstream fec C3 CMTS User Guide Syntax no cable upstream n c fec Enable Forward Error Correction FEC Use the no form to turn FEC off cable upstream fragmentation Syntax no cable upstream n
230. access level no logging buffered severity Enables local logging of events in a circular buffer If not buffered events are written only to the console The option is severity Severity level 0 to 7 ARRIS PROPRIETARY All Rights Reserved 11 14 05 logging on Syntax logging severity Syntax Release 4 3 Standard C3 CMTS User Guide no logging on Enables all syslog messages traps and local logging To disable use the no logging on command no logging severity level local no local trap no trap sys no sys vol no vol Controls event generation by the severity level of the event The parameters are Keyword Description level Configures the specified severity level Enables or disables local logging for the specified security local or no local level Enables or disables trap logging for the specified security trap or no trap level sys or no sys Enables or disables syslog logging for the specified secu rity level Enables or disables local volatile logging for the specified vol or no vol security level ARRIS PROPRIETARY All Rights Reserved 10 149 10 Command Line Interface Reference Factory default settings are logging thresh none logging thresh interval 1 logging severity 0 local no trap no sys no vol logging severity 1 local no trap no sys no vol logging severity 2 local trap sys no vol logging severity 3 no local trap sys vo
231. ace Reference The Cadant C3 command line interface CLI is intended to follow the familiar syntax of many other communications products and to provide ease of use for administrators Access Levels and Modes Release 4 3 Standard The user interface operates in the following modes User mode This is the initially active mode when a user logs into the CLI The user is limited to harmless commands such as changing the terminal setting pinging a host or displaying certain configuration infor mation Privileged mode Type enable and enter a valid password in order to enter privileged mode In privileged mode all the commands of user mode are available along with extra commands for debugging file manipulation diagnostics and more detailed configuration display Configure mode Type configure while in privileged mode to enter Configure mode In configure mode the commands available relate to general system configuration and are not specific to any particular inter face Cable modem commands are also available in configure mode Configure interface sub modes To configure a particular interface enter a configuration sub mode by typing the appropriate command from Configure mode The currently available interfaces are terminal fasteth ernet and cable Router configuration mode To configure routing parameters routing configuration mode must be entered ARRIS PROPRIETARY All Rights Reserved 10 1 10 Command Line
232. ace it performs the following functions e Stops querying hosts for multicast membership information e Becomes a host member for all active group memberships on the interfaces for which it is the proxy e Forwards all multicast traffic going to or coming from joined multicast hosts on the C3 CMTS proxied interfaces ARRIS PROPRIETARY All Rights Reserved 6 11 6 IP Routing IGMP Implementation DOCSIS Compliance for IGMP Encryption Enabling Multicast Internet Group Management Protocol IGMP is a IP protocol for managing multicast groups on the Internet For an overview of standards related to IGMP see RFCs 2236 and 2933 The DOCSIS Specifications SP RFIv1i 1 106 001215 and SP OSSIv2 0 101 011231 Annex E describe IGMP DOCSIS 1 1 requirements as either Passive or Active operation modes The C3 CMTS operates in either passive or active mode It also complies with DOCSIS 2 0 The C3 CMTS can add encryption and authorization to multicast data over a DOCSIS cable interface The encryption may be added statically provi sioned or dynamically Static operation operates with modems in either BPI or BPI mode The dynamic operation operates only on modems running in BPI mode Use the following command to enable multicasting Enable multicast for the cable sub interface C3 config interface cable 1 0 4 C3 config ip igmp enable Enable multicast for the IGMP proxy fastethernet sub interface C3 config interface fasteth
233. ach cable group offers two configurations for load balancing Keyword Description none No load balancing is performed Modems come online using any upstream in the same group Use no cable group id load balancing to disable load balancing initial numeric The number of modems is evenly distributed across the available active channels in the same group Modems are redirected to the most appropriate upstream during initial ranging Once a modem comes online it will remain on the same channel until rebooted at which time it may be moved to another channel if appropriate periodic The C3 periodically checks bandwidth usage on upstream cable groups and if necessary moves cable modems to different upstreams to balance usage on each upstream channel See also cable upstream group id page 10 234 cable max qos active timeout Syntax no cable max qos active timeout 1 65535 seconds no cable max qos active timeout default Manages the timeout override for active DSX flows If an MTA specifies a non zero timeout value in its dynamic service message then a value in the MTA request is used only if it is lower than the value configured in the CLI If the 10 114 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide TTM specifies a higher value zero or no value then the CLI specified value is used The defaults ensure that inactive resources are released These commands apply to a
234. ack to the originating bridge group If no helper address is specified the C3 bridges the broadcast to all FastEthernet sub interfaces in the same bridge group or drops the packet if no bridge group membership exists Such as on a routed sub interface If the helper address is not within a subnet known to the C3 the C3 inspects its IP route table for a route to this destination subnet this route then specifies the sub interface to use for the unicast If such a route does not exist no unicast will occur The routing table can be influenced by e primary and secondary IP addresses of sub interfaces and the resulting subnet memberships of those interfaces e ip default gateway specification in bridging mode e ip route 0 0 0 0 0 0 0 0 a b c d specification for the route of last resort in IP routing mode e a static route configured with ip route e RIP propagation in the network The C3 can differentiate between DHCP messages from cable modems and hosts The cable helper address command allows such DHCP messages to be directed to different DHCP servers Example The cable operator manages the cable modem IP addresses an ISP manages the host IP addresses cable 1 0 0 cable helper address 10 1 1 1 cable modem cable helper address 10 2 2 2 host ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Up to 5 helper addresses may be specified per helper address classification modem host or either Only the
235. address is 0000 caab 5613 Description ETH MGT Cadant C3 CMTS BCM5421 Rev Al Alias Primary Internet Address 10 44 116 3 29 Outgoing access list is not set Inbound access list is not set Direct Subnet Broadcast Propagation disabled Layer II Bridge To Bridge Routing subIf Routing disabled Src Ip Directly Connected NW filter disabled Src Ip SubIf Directly Connected NW filter disabled Valid Ip Address filter enabled Incoming non IP ARP packets allowed MTU 1500 bytes BW 100000 Kbit Full duplex 100Mb s Output queue 0 drops input queue 628 drops 5 minutes input rate 325 bits sec 0 packets sec 5 minutes output rate 0 bits sec 0 packets sec 628 packets input 43762 bytes Received 0 broadcasts 628 multicasts 0 giants O input errors 0 CRC 0 frame 1 packets output 64 bytes 0O output errors 0 collisions 0 excessive collisions 0 0 late collision 0 deferred lost no carrier 10 76 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Cablel1 0 is up line protocol is up C3 Hardware is BCM3214 A3 address is 0000 caab 5614 Description DS 1 Cadant C3 CMTS BCM3040 Rev AO Primary Internet Address 10 21 36 1 25 Secondary Internet Address 1 is 10 21 36 129 25 Outgoing access list is not set Inbound access list is not set IP Throttling access list is not set Direct Subnet Broadcast Propagation disabled Layer II Bridge To Bridge Routing subIf Routing disabled Src Ip Directly Connected NW filter disa
236. ae8 895249a8 8955c120 89571918 8956e928 8955e818 895bd638 89568cc8 896dbe78 8957ef30 89575058 89557c40 895b4 98 89510cc8 895e47c8 895b9af0 896c2c80 89605ff8 89603c58 895e1d38 895dee50 895d9420 89578048 8953e098 8957a778 895b24e0 8950c688 896beae8 89ed0fb8 89efb020 3d0002 0 0 0 0 3d0002 0 0 3d0002 0 0 0 0 3d0002 0 30065 0 260001 0 388002 388002 0 3d0004 3d0002 0 0 3d0004 3006c 0 Hi O O OOOD GOOT OO OO OGOGO TFH OG OO OOG OG HOO OU O 0O GOG 0O OR OO O O S Oo OS N Oy 11 14 05 C3 show processes memory NAME LogTask Autopsy Shell Pemciad cheduler NetTask TimerSvr Mdp1 Ss Q xe N Portmapd Igmp ftMgr RngMgr AuthMgr RegMgr Tek DsxMgr w 5 D PRET UsDsMgr CmMgr Bridge DhcpRelay NTPMib DsxHelper DDMibs SysMgr tCmtsDebugLo tSnmpD tTimeout PtyCli RomCli Ch ct ch ch Cetea tt ct eeart oet TE CE Ai Ere ate et AU cc te E Pa ote E ty ct OS lt Q K dlRngMgr OgEvt MTmrs ysMgrMonito DcacheUpd dleTask ERRUPT Ea RS le Gai tt Ch GIS cer Gir eh ict Zz H Q Ww HE ENTRY excTask logTask autopsy shell pcmciad schedulerMai netTask TimerSvr MdpMain MdpMain portmapd igmpTask fftMain RngMain AuthMain RegMain DsxMain BPIPTask PPIf main channelMgtMa CmmMain bridge main dhcpRelayMai NTPMibMain DsxHelper DocsDevMIBMa 0x008103e688 SM_CmtsDeb
237. agement access ip dhcp relay cable helper address 10 99 99 1 no ip dhcp relay information option encapsulation dotlq 2 native turn on downstream broadcast privacy encapsulation dotlq 2 encrypted multicast bridge group 2 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 5 9 5 Providing Multiple ISP Access no ip 12 bg to bg routing exit interface cable 1 0 3 description ISP3_CPE ip address 10 3 0 1 255 255 0 0 no management access ip dhcp relay cable helper address 10 99 99 1 no ip dhcp relay information option encapsulation dotlq 3 native turn on downstream broadcast privacy encapsulation dotlq 3 encrypted multicast bridge group 3 no ip 12 bg to bg routing exit interface cable 1 0 4 description UNPROVISIONE D_CPE ip address should be in the subnet of the provisioning server ip address 10 4 0 1 255 255 0 0 no management access ip dhcp relay cable helper address 10 99 99 1 no ip dhcp relay information option encapsulation dotlq 4 native turn on downstream broadcast privacy ecnapsulation dotlq 4 encrypted multicast bridge group 4 no ip 12 bg to bg routing exit interface cable 1 0 10 description modem_default default for cm devices before they have IP address ip address 10 77 77 1 255 255 255 0 no management access encapsulation dotlq 10 native bridge group 9 ip address 10 77 77 1 255 255 255 0 no management access set up dhcp relay for cm ip dhcp
238. ailable if Layer 3 mode of operation has been enabled using the ip routing command in global configuration mode IP routing must be enabled and OSPF must be licensed before the C3 executes this command If IP routing is not enabled the CMTS generates an error message K NOTE No OSPF configuration is applied until the OSPF configuration mode is exited using the exit command Also note that no show commands are available within the OSPF router configuration mode To disable OSPF routing use the command no router ospf The C3 keeps the configuration in memory to completely erase OSPF data you must disable routing save the configuration then reboot the C3 no router rip Enter router configuration mode IP routing must be enabled and RIP must be licensed before this command can be executed If IP routing is not enabled the CMTS generates an error message See also Router Configuration Mode page 10 248 ARRIS PROPRIETARY All Rights Reserved 11 14 05 snmp access list Syntax snmp server Release 4 3 Standard C3 CMTS User Guide Syntax no snmp access list list name deny permit any host host name ipaddr port port subnet mask Creates an SNMP access list The parameters are Keyword Description server Sets the address of the Network Time Protocol server host name The FQDN of the host port Port number Valid range 0 to 65536 ipaddr The host IP address subnet S
239. ain constant SNR on the upstream channel Similarly halving symbol rate decreases the configured power level by 3dB ang You can reset the configured power level after a symbol rate change but any subsequent symbol rate change again changes the configured power level Any change in the power level results in a change in modem transmit power levels The power level is still subject to the maximum ranges detailed above fixed Do not perform automatic power level readjustments 10 240 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable upstream pre equalization Syntax no cable upstream n c pre equalization Enable cable modem pre equalization on the logical channel Use the no form of this command to disable pre equalization cable upstream range backoff Syntax cable upstream n c range backoff automatic start end Sets the random backoff window for initial ranging on the logical channel The parameters are Keyword Description automatic Automatically change the backoff Manually set the backoff startand end must be in the range start end O to_15 the value for end must be higher than start cable upstream rate limit Syntax Release 4 3 Standard no cable upstream n c rate limit token bucket Enables rate limiting on the logical channel with optional token bucket limiting The parameter is ARRIS PROPRIETARY All Rights Reserve
240. alendar show clock show clock timezone 10 14 Displays the date and time from the internal real time clock The internal clock has a battery backup and operates whether or not the C3 is powered down Example C3 gt show calendar 20 13 38 GMT Tue Aug 27 2005 20 13 38 UTC Tue Aug 27 2005 C3 gt See also Clock timezone page 10 34 Displays the date and time from the system clock The C3 synchronizes the system clock with the calendar at boot time Example C3 gt show clock 15 54 27 481 GMT Tue Jul 15 2005 15 54 27 481 UTC Tue Jul 15 2005 C3 gt See also clock timezone page 10 34 Displays the current time zone and its offset from GMT Example C3 gt show clock timezone Local time zone is GMT 0 00 from UTC ARRIS PROPRIETARY All Rights Reserved 11 14 05 show context show crypto key Syntax show exception Release 4 3 Standard C3 CMTS User Guide Displays recent startup and shutdown history Example C3 gt show context Shutdown Date Tue 08 Jul 2005 time 02 27 54 Bootup Date Tue 08 Jul 2005 time 02 29 55 Bootup Date Wed 09 Jul 2005 time 01 38 21 Shutdown Date Wed 09 Jul 2005 time 03 00 26 Bootup Date Wed 09 Jul 2005 time 03 01 16 show crypto key mypubkey type or show crypto key pubkey chain rsa name userid Displays public keys The first form of this command displays the SSH server host public key Specify either dsa or rsa format You can also copy the public keys
241. an be specified Default behavior can be overridden by cable modem configuration file TLVs passed to CMTS during registration Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 8 7 8 Configuring Security Working with Access Control Lists 8 8 See also cable filter group page 10 107 and related commands See also access list page 10 100 and related commands This section describes the access list syntax for each type of Access Control List ACL definition Common uses for ACLs include e Preventing illegal access to services provided by the C3 such as Telnet DHCP relay and SNMP from sources external to it such as CMs CPEs or other connected devices e Preventing access to service via the C3 that is traffic passing through the C3 can also be subjected to ACL based filtering For example ACLs could prevent access to certain TCP ports on CPEs to block external access to proxies and other services The C3 applies ACLs to all network traffic passing through the CMTS ACLs and ACEs Access Control Lists ACLs are lists of Access Control Entries ACEs that are used to control network access to a resource Up to 30 ACLs may be defined each ACL can contain up to 30 ACEs The ACL number defines the type of ACL being created or referred to Number Type 1 99 Standard IP 100 199 Extended IP 1300 1999 Standard IP expanded range 2000 2699 Extended IP expanded range Multi
242. and SNMPv3 manages the instructions received from the Mediation Device For details see the SNMP server commands beginning with snmp server page 10 159 8 36 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide SLEM MIBs SLEM is supported in accordance with RFC 3924 which outlines the Cisco proposed architecture for Lawful Intercept in IP Networks This architec ture is becoming the standard to which companies are adhering The following diagram outlines the framework of RFC 3924 L1 Administration Function lt OOO MD Provisioning Interface Law Enforcement Agency EA a IRIIAP H2 ly Intercept Related Information Intercept Access Point IRI IAP IRI 3 t H3 Mediation Device Intercept Request Intercepted Content User Content_ Content Intercept Access User Content _ Point E Content IAP Figure 8 3 RFC 3924 framework The Tap Mediation Capabilities offered are UDP and ipV4SrcInterface only only UDP may be used as the transport protocol in transferring intercepted data to the Mediation Device and an SNMP ifIndex value may be used to select the interface on the C3 from which intercepted data is transferred to the Mediation Device IPV6SrcInterface rtcpNack tcp and stcp trans port types are not supported The Tap Stream Capabilities offe
243. and a notify view A read view and a write view allows a user to respectively do SNMP GET and SNMP SET transactions on some MIB families defined by the respective views The notify view supports SNMP TRAP transactions The C3 predefines two groups public and private which correspond to the public and private SNMP community strings The public group has read access the private group has read and write access The example following and the example at the top of this section is focused on notification but you can also create extra SNMP access lists to extend the default public and private community strings For example to disable the default public and private community strings use the following commands no snmp server group public vl no snmp server group public v2c no snmp server group private vl no snmp server group private v2c To enable them again use the following commands snmp server group public vl read default snmp server group public v2c read default snmp server group private vl read default write default Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 163 10 Command Line Interface Reference 10 164 snmp server group public v2c read default write default default is a predefined view in the C3 that allows access to all MIBs under the ISO family tree Similarly public and private are pre defined group names allowing read access and read write access respectively A user creat
244. and crypto key generate type modules er to generate SSH keys where type lis one of rsa dsa or both len is the key length one of 768 1024 or 2048 default is 1024 The C3 creates public and private keys and stores DSA and RSA public keys in c ssh cmts_dsa_pubkey pem or c ssh cmts_ rsa_pubkey pem respectively End of procedure Importing SSH Keys Follow these steps to load public keys for a specific user into the C3 If you are loading public keys in ASCII format through the terminal enter the following command before starting the upload C3 config crypto key import rsa user pem terminal ARRIS PROPRIETARY All Rights Reserved 8 39 8 Configuring Security Procedure 8 3 ap Procedure 8 4 ap Procedure 8 5 8 40 If you are loading public keys from a web or FTP server enter the following command before starting the upload C3 config crypto key import rsa user pem url url End of procedure Displaying SSH Keys Follow these steps to display currently installed SSH keys To display CMTS public keys use the following user level command C3 gt show crypto key mypubkey rsa dsa To display the installed RSA public key for a specific user use the following user level command C3 gt show crypto key pubkey chain rsa name user End of procedure Deleting SSH Keys Follow these steps to delete the current SSH keys on
245. andard C3 CMTS User Guide devices You can also use ACLs to prevent access to service via the CMTS that is traffic passing through the C3 can also be subjected to ACL based filtering You can define up to 30 ACLs each ACL may contain up to 30 entries ACEs The C3 applies ACLs to all network traffic passing through the CMTS After defining ACLs use jp access group page 10 182 to associate each ACL with a specific interface or sub interface See ACLs and ACEs page 8 8 for details about creating ACLs Standard ACL definition no access list ACL number permit deny host ipaddr any A standard ACL allows or denies access to traffic to or from a particular IP address The valid range for standard ACLs is 1 to 99 or 1300 to 1399 Extended IP definitions no access list ACL number permit deny protocol options Extended ACLs support very precise definitions of packets See Filtering Traffic page 8 7 for more details The valid range for extended ACLs is 100 to 199 or 2000 to 2699 ARRIS PROPRIETARY All Rights Reserved 10 101 10 Command Line Interface Reference alias Syntax no alias aliasname string Creates an alias which if entered as a command executes the command string The command string must be enclosed in quotes Use no alias to remove an alias C3 config alias scm show cable modem arp Syntax no arp ipaddr macaddr cable 1 0 s vlan fastethernet 0 n s
246. ange rejected Service flow not found 83000206 SYSLOG_WARNING Service Change rejected Required parameter not present 83000207 SYSLOG_WARNING Service Change rejected Header suppression serting not supported 83000208 SYSLOG_WARNING Service Change rejected HMAC Auth failure Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved H 3 H C3 CMTS Syslog Events and SNMP Traps Event Msg Num Severity Message Text 83000209 SYSLOG_WARNING Service Change rejected Multiple errors 83000210 SYSLOG_WARNING Service Change rejected Classifier not found 83000211 SYSLOG_WARNING Service Change rejected Classifier exists 83000212 SYSLOG_WARNING Service Change rejected PHS rule not found 83000213 SYSLOG_WARNING Service Change rejected PHS rule exists 83000214 SYSLOG_WARNING Service Change rejected Duplicated reference ID or index in message 83000215 SYSLOG_WARNING Service Change rejected Multiple upstream flows 83000216 SYSLOG_WARNING Service Change rejected Multiple downstream flows 83000217 SYSLOG_WARNING Service Change rejected Classifier for another flow 83000218 SYSLOG_WARNING Service Change rejected PHS rule for another flow 83000219 SYSLOG_WARNING Service Change rejected Parameter invalid for context 83000220 SYSLOG_WARNING Service Change rejected Authorization failure 83000221 SYS
247. apMediationTable OBJECT TYPE SYNTAX SEQUENCE OF CTapMediationEntry MAX ACCESS not accessible STATUS current DESCRIPTION This table lists the Mediation Devices with which the intercepting device communicates These may be on the same or different Mediation Devices This table is written by the Mediation Device and is always volatile This is because intercepts may disappear during a restart of the intercepting equipment cTapMediationGroup 2 cTapMediationEntry OBJECT TYPE E 2 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide SYNTAX CTapMediationEntry MAX ACCESS not accessible STATUS current DESCRIPTION The entry describes a single session maintained with an application on a Mediation Device INDEX cTapMediationContentId id cTapMediationTable 1 CTapMediationEntry SEQUENCE cTapMediationContentId nteger32 cTapMediationDestAddressType netAddressType cTapMediationDestAddress netAddress cTapMediationDestPort netPortNumber cTapMediationSrcInterface nterfaceIndexOrZero cTapMediationRtcpPort netPortNumber cTapMediationDscp Integer32 CISCO ORIG Dscp cTapMediationDataType nteger32 cTapMediationRetransmitType nteger32 cTapMediationTimeout DateAndTime cTapMediationTransport NTEGER cTapMediationNotificationEnable TruthValue cTapMediationStatus RowStatus cTapMediationContentId OBJECT TYPE SYNTAX Integer32 1 2147483647 MAX ACCESS not accessible S
248. apter 8 Configuring Security ARRIS PROPRIETARY All Rights Reserved 10 123 10 Command Line Interface Reference cable submgmt cpe ip aging Syntax no cable submgmt cpe ip aging Enables or disables CPE IP aging Aging is disabled by default Use the cable submgmt default cpe ip aging interval page 10 125 command to set the aging time cable submgmt cpe ip filtering Syntax 10 124 no cable submgmt cpe ip filtering Enables or disables CPE IP filtering If disabled then CPE source IP address are not validated If enabled CPE IP addresses learned by the CMTS up to the maximum number allowed default max cpe are used to validate received CPE traffic The CMTS discards any CPE traffic received that does not match this list The docsSubMgtCpelIpTable may be populated by e using SNMP on the CMTS MIB e information received during modem registration this information in turn being provided to the modem by its configuration file e the CMTS learning CPE addresses Subscriber management filters are designed so that they can be re assigned using the cable modem provisioning system these defaults may be overridden using TLVs in a modem configuration file If these filters are never going to be manipulated in this manner then you should consider using ACLs a more suit able and more flexible static filtering mechanism ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable submgmt defau
249. aptop s MAC address to a small value on the DHCP server After disconnecting the laptop wait for the lease time to expire and connect it to the next cable modem e Use USB instead of Ethernet to connect the laptop to the cable modem This announces the laptop MAC address to the C3 as the MAC address of the cable modem plus one Thus the MAC address of the laptop as seen by the C3 is unique and the DHCP server When the laptop is moved to the next cable modem the C3 and DHCP server see a different MAC address associated with it Note that in all cases the laptop needs to complete a new DHCP session to access the cable network ARRIS PROPRIETARY All Rights Reserved 8 33 8 Configuring Security Configuring Lease Query The dhcp lq params command sets the DHCP codes used for LEASE Parameters QUERY LEASEACTIVE and UNASSIGNED responses and optionally the leasequery response timeout This may be necessary to configure the C3 to interoperate with provisioning managers that use different codes for these responses The default values are for Cisco CNR Example set up the default CNR LEASEQUERY parameters dhcp lq params leasequery 0 active 0 unassigned 0 timeout 0 For details see dhcp q params page 10 217 Lease Query Overhead When sending LeaseQuery requests to multiple DHCP servers eg servers operating in failover mode the C3 now holds an election to determine the result e any server replying with conflicti
250. ard C3 CMTS User Guide Center Frequency MHz Channel Width MHz Modulation O QPSK O 8 QAM O 16 QAM O 32 QAM O 64 QAM Center Frequency MHz Channel Width MHz Modulation O QPSK O 8 QAM O 16 QAM O 32 QAM O 64 QAM ARRIS PROPRIETARY All Rights Reserved G 9 G Configuration Forms G 10 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS Syslog Events and SNMP Traps Syslog Events The shaded items are SYSLOG events which have no corresponding SNMP Event Msg Num Severity Message Text 77000100 SYSLOG_INFO A transmit opportunity was missed because the MAP arrived too late 82010100 SYSLOG_WARNING No Ranging Requests received from POLLED CM CMTS generated polls 82010200 SYSLOG_WARNING Retries exhausted for polled CM 82010300 SYSLOG_WARNING Unable to Successfully Range CM 73000400 SYSLOG_WARNING Service unavailable Other 73000401 SYSLOG_WARNING Service unavailable Unrecognized configuration setting 73000402 SYSLOG_WARNING Service unavailable Temporarily unavailable 73000403 SYSLOG_WARNING Service unavailable Permanent 73000500 SYSLOG_WARNING Registration rejected authentication failure CMTS MIC invalid 73010100 SYSLOG_WARNING REG REQ has invalid MAC header 73010200 SYSLOG_WARNING REG REQ has invalid SID or not in use 73010400 SYSLOG_WARNING REG REQ missed required TLV s 7301
251. are if not already installed to perform this task Follow these steps 1 Attach the Compact Flash reader to your computer if necessary ARRIS PROPRIETARY All Rights Reserved 9 13 9 Service Procedures 2 Push the eject button to the right of the Compact Flash card on the back of the C3 The following figure shows the location of the eject button Eject oe _ Ol 000000 Figure 9 11 Location of compact flash The console displays the message interrupt Compact Flash card removed k NOTE Removing the Compact Flash card from the C3 has no effect on normal operation However the C3 refuses all commands that would change the configuration or operation of the CMTS or access the disk until you replace the Compact Flash card 3 Insert the Compact Flash card into your computer s reader The result depends on your computer MacOS X and Windows systems automatically mount the disk most Linux or BSD systems require you to use the mount command as root to mount the disk 4 Copy the new software image onto the Compact Flash disk 5 Eject the Compact Flash card from your computer and insert it in the slot in the C3 rear panel The C3 console displays the messages interrupt Compact Flash Card inserted and C Volume is OK 6 Proceed to Configuring the C3 to Boot from the Flash Disk below End of procedure 9 14 ARRIS PROPRIETARY All Rights Reserved 11 14
252. as a wrist grounding strap grounded to a grounded work area when handling the upstream card Replacing the RF Card Power down the CMTS by removing all power leads from the rear sockets Disconnect the upstream RF cables from the CMTS Label the RF cables if necessary to prevent misconnection after replacing the upstream card Remove the upstream card from the CMTS chassis as follows a Loosen the two Phillips screws securing the upstream card to the chassis The screws run through the black pull tabs on each end of the card gt an OO 000000 O0 Screws Figure 9 8 Replacing the RF card b Push the red tabs towards the outer edge of the unit The black latches will click when they have been released Gently push the black latches towards the outer edge of the unit to release the card c Grasp the upstream card by the black tabs on either end of the card and slide the card out of the chassis 4 Install the new upstream card into the chassis a Line up the upstream card with the guides inside the chassis and slide the card into the chassis b Push the card into the chassis until the latches click into place Secure the card using the Phillips screws ARRIS PROPRIETARY All Rights Reserved 11 14 05 Replacing Fuses Procedure 9 6 Requirements Release 4 3 Standard C3 CMTS User Guide Replace the RF cables and power connections End of procedure Replacing Fuses
253. ase 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 99 10 99 10 100 10 100 10 102 10 256 10 256 10 257 10 257 10 102 10 102 10 194 10 249 10 103 10 103 10 104 10 104 10 104 10 105 10 105 10 181 10 194 10 215 10 195 10 219 10 219 10 220 10 220 10 221 10 221 10 222 CLI i 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 CLI ii cable downstream mac mode cable downstream modulation cable downstream power level cable downstream rate limit cable downstream symbol rate cable downstream upconverter cable encrypt cable filter cable filter group cable flap list cable frequency band cable group cable group description cable group frequency index cable group load balancing cable helper address cable insertion interval cable mac mode cable max qos active timeout cable max ranging attempts cable modem cable modem offline aging time cable modulation profile cable privacy cable service class cable shared secret cable sid verify cable source verify cable submgmt cable submgmt cpe ip aging cable submgmt cpe ip filtering cable submgmt default active cable submgmt default cpe ip aging interval cable submgmt default filter group cable submgmt default learnable cable submgmt default max cpe ARRIS PROPRIETARY All Rights Reserved C3 CMTS 10 222 10 223 10 223 10 223 10 224 10 225 10
254. ass the packet to this gateway of last resort IP address a b c d in this example Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 6 1 6 IP Routing Static Routing Dynamic Routing 6 2 This default gateway also may not know how to route the packet In this case the gateway may return the ICMP host unreachable or destination unreachable message if the gateway routing policies allow any such response The gateway device is normally a router and the unknown subnet may be on the other side of this router This other device would also normally have knowledge of the network topology far beyond its own interfaces Such knowledge is often propagated between such routing devices using an internal gateway protocol IGP the C3 supports both RIP Routing Infor mation Protocol and OSPF Open Shortest Path First protocols for this purpose Static routing involves manually configuring routes to certain IP hosts using the ip route command If you are not using learned dynamic routing you must configure a static route to the default gateway device using the ip route command Use the ip route command to provide a route to a destination network or to a destination host The ip route 0 0 0 0 0 0 0 0 a b c d command is a special form of this command used to set a default route as discussed above Different gateways may be given for the same route with different admin istrative distances the C3 uses the route with
255. assword may be the same if you prefer End of procedure ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Procedure 3 8 Configuring the Network Time Protocol optional The C3 optionally uses NTP to set its internal clock You can configure the NTP server IP address from the CLI using telnet or a serial console once the application image is running Follow these steps to configure NTP if desired 1 Log into the CMTS using the account you created in the previous task 2 Type enable to enter privileged mode and then type the enable password set in the previous task 3 Enter the following commands to begin configuring NTP C3 config t C3 config t ntp server ntp_ip addr 4 Create a timezone to specify the time offset from GMT C3 config t clock timezone name offset Where name is the name of the time zone any string and offset is the offset in hours from GMT Example clock timezone EDT 4 5 Exit the global configuration mode by typing exit or end 6 Confirm the time settings C3 show clock 7 Copy the running configuration to the startup configuration C3 copy running config startup config C3 write The CMTS stores the new time settings in non volatile memory K NOTE If NTP is not available set the internal clock using the clock set command End of procedure Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 3 17 3 CMTS Installatio
256. atic routes added for each CPE subnet with this address as the gateway e g route add 10 1 0 0 mask 255 255 255 0 10 99 99 2 route add 10 2 0 0 mask 255 255 255 0 10 99 99 2 route add 10 3 0 0 mask 255 255 255 0 10 99 9972 so that CPE DHCP ofer and ack can be routed back to the appropriate bridge group and hence CPE device Note dhcp relay must be active in all CPE bridge groups for this to happen and only DHCP will be routed exit interface fa 0 1 2 description Provisioning ip address should be a subnet of provisioning web server ip address 10 88 88 2 255 255 255 0 encapsulation dotlq 888 no management access bridge group 4 no ip 12 bg to bg routing exit interface cable 1 0 0 description ISP1_CPE ip address 10 1 0 1 255 255 0 0 Note up to 15 secondary IP addresses can be added for non contigous ISP subnets no management access set up dhcp relay for CPE devices must have dhcp relay active in each bridge group for dhcp to be forwarded across the bridge groups to the dhcp server in bridge group 9 ip dhcp relay cable helper address 10 99 99 1 no ip dhcp relay information option native tagging required for internal processing encapsulation dotlq 1 native turn on downstream broadcast privacy encapsulation dotlq 1 encrypted multicast bridge group 1 no ip 12 bg to bg routing exit f interface cable 1 0 2 description ISP2_CPE ip address 10 2 0 1 255 255 0 0 no man
257. ation dotlq 1 encrypted multicast no cmts management allowed no management access exit interface cable 1 0 2 for VPN RED bridge group 2 need to use dhcp relay so set up ip addressing for relay to work ip address 204 3 4 1 255 255 255 0 ip dhcp relay cable helper address 204 6 6 6 cable dhcp giaddr primary VSE tag of 2 is required here encapsulation dotlq 2 native give VPN members downstream privacy encapsulation dotlq 2 encrypted multicast allow 12 multicast and bcast echo 12 broadcast echo 12 multicast echo do not allow ip traffic to leave this bridge group no ip 12 bg to bg routing no cmts management allowed no management access if required that VPN members get ip address from operator provisioning system add the following Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved B 17 B CMTS Configuration Examples ip address 10 2 0 254 255 255 255 0 ip DHCP relay cable helper address 10 6 0 2 cable DHCP giaddr primary exit j interface cable 1 0 3 for VPN BLUE bridge group 3 VSE tag of 3 is required here encapsulation dotlq 3 native give VPN members downstream privacy encapsulation dotlq 3 encrypted multicast allow 12 multicast and bcast echo 12 broadcast echo 12 multicast echo do not allow ip traffic to leave this bridge group no ip 12 bg to bg routing no cmts management allowed no management access if required
258. ation profile 34 advPhyU AdvPhy preamble type qpskl cable modulation profile 34 advPhyU 12 78 0 0 8qam scrambler 338 no diff 64 shortened cable modulation profile 35 request AdvPhy SCDMA no trell 5 spr 2 cable modulation profile 35 request AdvPhy preamble type qpsk0 cable modulation profile 35 request 0 16 0 0 qpsk scrambler 338 no diff 64 fixed cable modulation profile 35 initial AdvPhy SCDMA no trell 5 no spr 2 cable modulation profile 35 initial AdvPhy preamble type qpsk0 cable modulation profile 35 initial 5 34 0 0 qpsk scrambler 338 no diff 640 fixed cable modulation profil cable modulation profil cable modulation profil cable modulation profil cable modulation profil cable modulation profil cable modulation profil cable modulation profil cable modulation profil cable modulation profil cable modulation profil cable modulation profil F 14 ARRIS PROPRIETARY All Rights Reserved 11 14 05 ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca CTOOTVDO DD TO ODA DO FTO ODDO TO XOXO DOO ODO TODO DO TOHVODXVD OOOO ODODOOOO ooo o moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa
259. ation required is lower than the map cpes method Notable differences are e All modems are now contained in the one IP subnet This requires that the DHCP server must support the specification of DHCP options per reserved address e The encapsulation native commands in cable sub interfaces 0 1 through 1 0 3 must match the VSE tagging If no match is found the CPE traffic will be mapped to the default cable 1 0 4 sub interface and be bridged to the provisioning web server e Again option 82 processing is turned off but may be turned on again if an option 82 aware DHCP server is to be used Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 5 13 5 Providing Multiple ISP Access Factory default C3 Run the following as a script on a factory default C3 configuration configuration j conf t remove bridges 0 and 1 so no sub interfaces are attached no bridge 0 no bridge 1 int ca 1 0 remove any previous IP addresses from the cable interface no ip address 10 99 99 253 255 255 255 0 exit remove the cable 1 0 1 subinterface not used no int ca 1 0 1 no ip routing set default subinterface for cm taffic before cm has an IP address default cm subinterface cable 1 0 10 default cpe subinterface cable 1 0 4 Define the bridges we will use for CPE trafic bridge 1 bridge bridge bridge bridge wo fF WDM int fa 0 0 0 description ISP1_WAN encapsulation dotlq 111 bridge group 1 exit
260. aving multiple non contiguous or small subnets the Windows DHCP server super scope or CNR s primary secondary processing can be used to issue an IP address from the available scopes on a round robin basis e Windows 2000 The giaddr scope is just one scope of many in a super scope an address is issued on a round robin basis from any of the scopes in the matching super scope e Cisco CNR The giaddr scope matches at least one scope in a primary secondary set of scopes an address is issued from the primary and secondary scopes on a round robin basis Simple Network Management Protocol SNMP enables you to monitor and control network devices in DOCSIS systems and to manage configura tions statistics collection performance and security SNMPv2c is used throughout DOCSIS It supports centralized as well as distributed network management strategies and includes improvements in the Structure of Management Information SMI protocol operations management archi tecture and security The C3 also supports SNMPv3 for greater network security The configuration options available are defined in the smmp server series of global configuration commands starting on page 10 159 By using an SNMP Manager application such as HP OpenView SNMPc or NET SNMP you can monitor and control devices on the cable network using MIB variables ARRIS PROPRIETARY All Rights Reserved 11 14 05 MIB Variables Configuring a Host as a
261. aximize throughput when two logical channels are configured on a phys 10 228 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide ical upstream When the value is small logical channels carrying no traffic reduce the amount of bandwidth available for mapping BE opportunities Specify 10000 or the keyword default to use the default setting cable upstream contention opps with data Syntax cable upstream n c contention opps with data automatic disallowed required Enables or disables sharing of contention opportunities with SCDMA data frames The options are Keyword Description automatic The C3 may share contention opportunities with SCDMA frames disallowed The C3 may not share contention opportunities with SCDMA frames The C3 must share contention opportunities with SCDMA EN frames default Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 229 10 Command Line Interface Reference cable upstream data backoff Syntax cable upstream n c data backoff automatic start end Set the random backoff window for data on a logical channel The parameters are Keyword Description automatic Automatically change the window Manually specify the window valid range is 0 to 15 end start end must be larger than start cable upstream description Syntax no cable upstream n c description string Sets the textual description of t
262. ble filter group 1 index 1 ip proto ALL cable filter group 1 index 1 ip tos 0x0 0x0 cable filter group 1 index 1 match action accept cable filter group 1 index 1 status activate cable filter group 1 index 1 src port all cable filter group 1 index 1 dest port all cable filter group 1 index 1 tcp flags 0x0 0x0 I define a default action for this filter group ie drop all cable filter group 1 index 2 cable filter group 1 index 2 src ip 0 0 0 0 cable filter group 1 index 2 src mask 0 0 0 0 8 22 ARRIS PROPRIETARY All Rights Reserved 11 14 05 cable filter group cable filter group cable filter group cable filter group cable filter group cable filter group index 2 dest ip 0 0 0 0 index 2 dest mask 0 0 0 0 index 2 ip proto ALL index 2 ip tos 0x0 0x0 index 2 match action drop index 2 status activate PRPPRPPP Fa define filter group for CPE network 10 3 0 0 j index 1 index 1 src ip 10 3 0 0 index 1 src mask 255 255 0 0 index 1 dest ip 0 0 0 0 index 1 dest mask 0 0 0 0 index 1 ip proto ALL index 1 ip tos 0x0 0x0 index 1 match action accept index 1 status activate index 1 src port all index 1 dest port all index 1 tcp flags 0x0 0x0 cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou cable filter grou j WWWWWWW WWW WwW Ww
263. ble group 3 description no cable group 4 load balancing Ino cable group 4 description no cable group 5 load balancing Ino cable group 5 description no cable group 6 load balancing Ino cable group 6 description i no logging syslog host logging thresh none logging thresh interval 1 log Q H Q Log Q E Q severity logging severity logging severity logging severity logging severity logging trap control 0x0 elog on elog size 50 lca ble service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable service class Multicast cable filter severity 0 local no trap no sys no vol 1 local no trap no sys no vol 2 local trap sys no vol 3 no local trap sys vol logging severity 4 no local trap sys vol 5 no local trap sys vol 6 no local no trap no sys no vol logging severity 7 no local
264. bled Src Ip SubIf Directly Connected NW filter disabled Valid Ip Address filter enabled Incoming non IP ARP packets allowed cable source verify disabled ARP broadcast echo enabled L2 broadcast echo enabled L2 multicast echo enabled IP broadcast echo enabled IP multicast echo enabled L2 broadcast throttle enabled Downstream DHCP Server not allowed Throttle credits initial 15 running 2 Dhcp Relay enabled Dhcp Relay information option enabled Relaying non broadcast Dhcp packets Not adding information option to relayed non broadcast packets Dhcp Relay Agent not validating Dhcp Renew destination IP Dhcp Relay giaddr policy DEFAULT helper address 10 43 211 248 Broadcast throttled 1 drops IP throttled 0 drops Cable Source Verify 0 verification attempts 0 denied 0 DHCP LeaseQueries transmitted MTU 1764 bytes BW 30341 Kbit Downstream utilization 3 Upstream Avg utilization 0 Output queue 0 drops input queue 4 drops 5 minutes input rate 728 bits sec 0 packets sec 5 minutes output rate 618 bits sec 0 packets sec 802 packets input 175160 bytes Received 391 broadcasts 0 multicasts O input errors 582 packets output 145671 bytes 0 output errors Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 77 10 Command Line Interface Reference Example stats C3 show interfaces stats FastEthernet0 0 Switching path Pkts In Chars In Pkts Out Chars Out Processor 4129 899510 4 579 Total
265. bridge group 0 l AAN l ip address 10 99 99 253 i mecece DHCP SERVER l ip address 10 99 98 253 secondary Modem 10 99 99 1 default cpe subinterface cable 1 0 0 J CMTS default cm subinterface cable 1 0 0 fastethernet 0 1 0 bridge 1 cable 1 0 1 bridge group 1 bridge group 1 shutdown shutdown Figure 4 6 Example of a bridging network configuration if the following is to be pasted to the command line then paste from supervisor mode configure terminal j bridges already set up from factory default bridge 0 bridge 1 j interface fastethernet 0 0 0 ip address 10 99 99 253 255 255 255 0 bridge group 0 no ip 12 bg to bg routing j interface fastethernet 0 1 0 bridge group 1 no IP address required do not need running either ARRIS PROPRIETARY All Rights Reserved 4 9 4 Bridge Operation Fast Ethernet 0 1 as the Boot Options Network Interface 4 10 shutdown interface cable 1 0 0 bridge group 0 no shutdown no cable upstream 0 shutdown no cable upstream 0 0 shutdown ip address 10 99 99 253 255 255 255 0 ip address 10 99 98 253 255 255 255 0 secondary j Update giaddr with 10 99 99 253 for cable modem update giaddr with 10 99 98 253 for host ip dhcp relay no ip dhcp relay information option cable dhcp giaddr policy unicast ALL dhcp to 10 99 99 1 cable helper address 10 99 99 1 exit j interface cable 1 0 1 bridge group 1 shutdown nothing
266. c This requires that the modem DHCP TFTP and ToD servers be present on the fastethernet 0 1 interface as in the following example The following diagram shows the default version 2 0 compatible oper ating mode CMTS management traffic and cable modem traffic share bridge group 0 Backbone fastethernet 0 0 0 bridge group 1 cable 1 0 1 A bridge group 1 PC default cpe subinterface cable 1 0 0 bridge 1 oo fastethernet 0 1 0 ikea boot IP address cable 1 0 0 zannanna Modem bridge group 0 bridge group 0 Cable Operator default cm subinterface cable 1 0 0 DHCP TFTP TOD i Figure 4 8 Default V2 0 compatible operating mode 4 12 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide The following diagram shows bridge group 0 restricted to carrying CMTS management traffic and bridge group 1 used for all cable modem and CPE traffic Es Backbone Cable Operator DHCP TETP TOD fastethernet 0 0 0 bridge group 1 bridge 1 i e AN cable 1 0 1 bridge grou PC L fastethernet 0 1 0 epee default cpe submterface cable 1 0 0 no bridge group default cm subirkerface cable 1 0 0 CMTS Management bridge 0 Onl y cable 1 0 0 Modem bridge group 0 Figure 4 9 Example of Bridge group 0 The following diagram shows bridge group 0 unused and bridge group 1 used for all cable modem traffic CMTS management
267. c fragmentation forced multiple grant nn forced piggyback mm Configures fragmentation for the specified logical channel Use the no form to disable fragmentation The options are Keyword Description forced multiple grant Forced multiple grant mode where packets are broken up into nn size bytes and multiple grants are scheduled to transfer these smaller packets Valid range 0 to 1522 byte initial ranging Forced piggy back for fragmentation If the cable modem is instructed to fragment a packet in to size mm bytes but multiple grants are not seen by the cable modem to transfer the fragments this mode forces the cable modem to use piggybacking to transfer the fragments Valid range 0 to 1522 bytes Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 233 10 Command Line Interface Reference cable upstream frequency Syntax cable upstream n frequency k Sets the upstream frequency for the physical upstream in Hz Valid range North American DOCSIS 5000000 to 42000000 5 MHz to 42 MHz EuroDOCSIS 5000000 to 65000000 5 MHz to 65 MHz cable upstream group id Syntax 10 234 cable upstream n group id g Specify the upstream group that the physical upstream belongs to Valid range 1 to 6 This provides a form of load balancing by distributing cable modems across upstreams with the same group id during registration according to the cable group policy The
268. c scdma frame size size For SCDMA only logical channels sets the frame size in units of spreading intervals The number of spreading intervals along with the signalling rate determines the time duration of an SCDMA frame Valid range 1 to 32 Corresponds to the docsIfUpChannelScdmaFrameSize MIB cable upstream scdma hopping seed Syntax no cable upstream n c scdma hopping seed size For SCDMA only logical channels a 15 bit seed used to initialize the code hopping sequence Valid range 0 to 32767 Corresponds to the docsIfUpChannelScdmaHoppingSeed MIB cable upstream scrambler Syntax no cable upstream n c scrambler Enables the upstream scrambler Use the no form of this command to disable the scrambler 10 244 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable upstream short periodic maintenance interval Syntax cable upstream n short periodic maintenance interval p Sets the ranging interval used on the physical upstream after a parameter change timing offset power etc This allows the modem to complete ranging adjustments quickly without waiting for periodic ranging opportunities Valid range 10000 to 40000000 microseconds Recommended value is 1000000 1 second cable upstream shutdown Syntax Release 4 3 Standard no cable upstream n c shutdown Disables the upstream or logical channel Shutting down the physical upstream also shuts down all logical channel
269. cTapDebugEntry 2 notifications cTapMIBActive NOTIFICATION TYPE STATUS current DESCRIPTION This Notification is sent when an intercepting router or switch is first capable of intercepting a packet corresponding to a configured data stream If the configured data stream is an IP one the value of the corresponding cTapStreamIpStatus is included in this notification If the configured data stream is an IEEE 802 one the value of the corresponding cTapStream802Status is included in this notification This notification may be generated in conjunction with the intercept application which is designed to expect the Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved E 15 E SLEM MIB E 16 notification to be sent as reliably as possible e g through the use of a finite number of retransmissions until acknowledged as and when such mechanisms are available for example with SNMPv3 this would be an InformRequest Filter installation can take a long period of time during which call progress may be delayed cTapMIBNotifications 1 cTapMediationTimedOut NOTIFICATION TYPE OBJECTS cTapMediationStatus STATUS current DESCRIPTION When an intercept is autonomously removed by an intercepting device such as due to the time specified in cTapMediationTimeout arriving the device notifies the manager of the action cTapMIBNotifications 2 cTapMediationDebug NOTIFICATION TYPE OBJECTS cTapMediationCon
270. can be used by the network to enable the intercept Intercept Access Point IAP An IAP is a device within the network that is used for intercepting lawfully authorized intercept information It may be an existing device that has intercept capability or it could be a special device that is provided for that purpose There are two types of IAP s IAP s that provide content and IAP s that provide intercept related information IRI Content IAP A content IAP is an IAP that is used to intercept the IP traffic of interest IRI IAP This is an IAP that is used to provide intercept related infor mation IRI Law Enforcement Agency LEA This is the agency that has requested the intercept and to which the service provider delivers the informa tion Mediation Device MD The mediation device requests intercepts from IAPs The mediation device receives the data from the IAP packages it in the correct format which may vary from country to country and delivers it to the LEA In the case where multiple law enforcement agencies are intercepting the same subject the mediation device may replicate the information multiple times The assumption is that the service provider operates the mediation device via specially autho rized personnel and that the LEA only has access to and from the mediation device The C3 supports the transmission of intercepted data to an IPv4 Mediation Device uses UDP as the transport protocol to the Mediation Device
271. ccess lists acl interface matches cable X Y Z matches fastethernet X Y Z matches Displays access list information It can be supplied with an access list number Implicit ACE ACE index and ACL type extended standard is shown in output If no option is specified this command will display the full list of configured ACLs The options are acl Displays the specified ACL configuration interface matches cable matches fastethernet matches Displays statistics of matches against each interface in each direction Interface cable X Y Z matches or interface fastethernet X Y Z shows ACL s for the selected sub interface Example single ACL C3 show access lists 1 access list 1 permit 192 5 34 0 0 0 0 255 access list 1 permit 128 88 0 0 0 0 255 255 access list 1 permit 36 0 0 0 0 255 255 255 all other access Note implicitly denied C3 show access lists Extended IP access list 100 01 permit ip any any lt matches 00 gt DEFAULT deny ip any any lt matches 00 gt Example no option display the full list 2 a 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos 5 precedence host 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos 5 precedence host 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos 5 precedence host 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos 5 precedence 0 ARRIS PROPRIETARY All Rights Reserved 10 47 10 Command Line Interface Reference network matches 0 08 permit tcp host 1 1 1 2 eq 1 host min monetary cost pre
272. ce ID SID Enables verbose debugging The CMTS defaults to terse verbose mode debug cable load balancing Syntax no debug cable load balancing Enables or disables debugging for periodic load balancing 10 134 ARRIS PROPRIETARY All Rights Reserved 11 14 05 debug cable mac address Syntax no debug cable mac address macaddr mask verbose C3 CMTS User Guide Enables or disables debugging on the cable modems matching the specified MAC address The options are Keyword Description macaddr Enables debugging on the cable modem with the specified MAC address Enables debugging on all cable modems whose MAC mask address AND ed with the mask matches the specified MAC address Enables verbose debugging The CMTS defaults to terse verbose mode debug cable privacy Syntax no debug cable privacy mac address macaddr level n Enables Baseline Privacy BPI debugging on the specified cable modem The options are Keyword Description macaddr The MAC address of the cable modem Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 135 10 Command Line Interface Reference Keyword Description level The BPI debug level 0 1 2 no output trace incoming outgoing message same as level 1 and display information of incoming message 3 same as level 2 and display outgoing message data verbose debug cable range Enables verbo
273. ce to be operationally up When a bridge group is attached whether the C3 is configured for IP routing or bridging mode IP packets entering the bridge group whose MAC destination address is an interface on the C3 can now be passed to the C3 s IP stack and IP level communication between bridge groups can occur This communication is not always desirable as it degrades bridge group isolation Therefore this function is turned off by default for every sub interface created from the CLI Use the sub interface command ip I2 bg to bg routing to allow such IP traffic to leave a bridge group and be passed to the IP stack In some cases this is a required step for DHCP to be successful In the following example e modem traffic is isolated to bridge group 0O the same bridge group that the DHCP server is connected to e modem DHCP succeeds even if DHCP relay is not turned on Now consider the CPE devices e All CPE traffic is isolated to bridge group 1 e DHCP relay must be activated on cable 1 0 1 for DHCP from the CPE to reach the DHCP server connected to fastethernet 0 1 0 e DHCP relay requires that cable 1 0 1 be given an IP address e The DHCP ack and offer from the DHCP server will be received at fastethernet 0 1 0 e DHCP relay will forward the offer or ack back to the relaying inter face the cable 1 0 1 sub interface e The ACK to a CPE DHCP renew is not captured by the DHCP Relay function being addressed to the CPE
274. cedence network matches 0 09 permit tcp host 1 1 1 2 eq 1 host min monetary cost precedence priority matches 10 permit tcp host 1 1 1 2 eq 1 host min monetary cost precedence immediate matches 0 11 permit tcp host 1 1 1 2 eq 1 host 4 min monetary cost precedence flash matches 0 12 permit tcp host 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos min monetary cost precedence flash override matches 0 13 permit tcp host 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos min monetary cost precedence critical matches 0 14 permit tcp host 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos min monetary cost precedence internet matches 765 05 permit tcp host 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos 5 precedence critical matches 25 06 permit tcp host 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos 5 precedence internet matches 547 07 permit tcp host 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos 5 precedence 4 4 4 eq 5 tos 4 4 4 eq 5 tos Bo Rn BA 4 4 eq 5 tos B BB 15 permit tcp host 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos max reliability precedence network matches 0 16 permit tcp host 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos i max reliability precedence priority matches 0 17 permit tcp host 1 1 1 2 eq 1 host i r 5 4 4 4 eq 5 tos 4 max reliability precedence immediate matches 0 18 permit tcp host 1 1 1 2 eq 1 host 4 max reliability precedence flash matches 125 19 permit tcp host 1 1 1 2 eq 1 host 4 4 4 4 eq 5 tos
275. cept status activate from the management system to modems rom 172 16 5 0 24 network to modems ne grou grou grou grou grou grou grou grou grou OnO O O 0 TTT T D NNNNNNNN ND grou grou grou grou OS OT O S NNN Release 4 3 Standard twork index index index index index index index index index index index index index rrererrrrrrre WWW WwW sre ap 172516570 srce mask 255 255 255 0 dest ip 10 160 0 0 dest mask 255 252 0 0 ip proto UDP ip tos 0x0 0x0 match action accept status activate src ip 0 0 0 0 srce mask 0 0 0 0 dest ip 0 0 0 0 ARRIS PROPRIETARY All Rights Reserved C3 CMTS User Guide 10 109 10 Command Line Interface Reference cable cable cable cable cable fil fil fil fil fil cer cer cer cer cer allow SNMP allow U grou grou grou grou grou from DP from to 172 16 5 0 2 cable cable cable cable cable cable cable cable cable cable cable cable cable cable cable cable cable cable 10 110 fil fil fil fil fil fil fil fil fil fil fil fil fil fil fil fil fil fil cer cer CEE cer cer cer cer cer cer cer cer cer cer CSE cer cer cer cer grou grou grou grou grou grou grou grou grou grou grou grou grou grou grou grou grou grou S S OS to g NM NNN NH index 3 dest mask 0 0 0 0 index 3 ip proto ALL index 3 ip tos 0x0 0x0 index 3 match action dro
276. cess disabled Online pt The modem is online and BPI is enabled The modem has a valid traffic encryption key TEK Online pk The modem is online BPI is enabled and a key encryption key KEK is assigned reject m The CMTS rejected the registration request from the modem because the shared secret from the modem does not match the CMTS shared secret reject c The class of service offered by the modem as part of the registration request was not valid reject pk The Key Encryption Key KEK offered by the modem was invalid reject pt The Traffic Encryption Key TEK offered by the modem was invalid Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 63 10 Command Line Interface Reference Example summary C3 show cable modem summary Interface Total Offline Unregistered Rejected Registered Cable1 0 U0 1 0 0 0 1 Cable1 0 U1 0 0 0 0 0 Cablel1 0 1 0 0 0 1 C3 Example summary verbose C3 show cable modem sum verbose Interface Total Offline Ranging Ranging IP Rejected Registered Aborted Completed Completed Cablel 0 U0 1 0 0 0 0 0 0 1 Cablel 0 U1 0 0 0 0 0 0 0 0 Cablel1 0 1 0 0 0 0 0 0 1 C3 Example columns C3 show cable modem columns IP MAC VLAN IP address MAC address Vian ID 0 0 0 0 00a0 73ae ecl3 3 0 0 0 0 00a0 7374 b99e 4 C3 10 64 ARRIS PROPRIETARY All Rights Reserved 11 14 05 show cable modulation profile Syntax
277. cy from subscribers assigned to other ISPs as follows e Downstream broadcast privacy e Downstream unicast privacy e Upstream unicast broadcast privacy The following discussion refers to a native VLAN with downstream privacy enabled as a cable VPN All physical interfaces may have up to 64 sub interfaces defined allowing up to 63 native VLANs to be defined per Cadant C3 interface cable 1 0 0 bridge group 1 encapsulation dotlq 33 native create native vlan encapsulation dotlq 33 encrypted multicast add downstream privacy exit When this is done the native VLAN provides downstream privacy for its members and is described following as a cable VPN Traffic arriving on one interface with tag X will be bridged out to the other interface with tag X Effectively this allows 4094 VLANs The number of bridge groups supported remains at 64 Example configure terminal interface cable 0 0 1 encapsulation dotlq 1 as per normal encapsulation dotlq allow 1 4094 bridge group 1 interface cable 1 0 1 encapuslation dotlq 1 as per normal encapsulation dotlq allow 1 4094 bridge group 1 end Cable VPNs may use IP routing or bridging modes or both or may even decode or encode 802 1Q VLANS inside the cable VPNs as required Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 5 3 5 Providing Multiple ISP Access The provisioning systems may assign subscribers to a cable VPN by the IP address assigned to the modem
278. d time Limits the bandwidth usage for flows with sip voice VSE Valid range 1 to 100 seconds cable upstream voice timeout Syntax cable upstream n voice timeout time Sets the timeout for unused polls for flows with sip voice VSE Valid range 1 to 100 seconds Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 247 10 Command Line Interface Reference moes Router Configuration Mode Use the global command router rip to enter router configuration mode Router configuration requires a license Contact your ARRIS representative for a license key Common Routing Subcommands passive interfac Syntax no passive interface cable 1 0 s default fastethernet 0 n s Suppress routing updates on an interface The C3 learns routes on this sub interface but does not advertise routes RIP specific Subcommands Use the global command router rip to enter RIP configuration mode Example C3 config router rip C3 config router auto summary Enable automatic network number summarization default information Control distribution of default information default metric Set metric of redistributed routes multicast Enable multicast routing packet support network Enable routing on an IP network passive interface Suppress routing updates on an interface redistribute Redistribute information from another routing protocol timers Adjust routing timers 10 248 ARRIS PROPRIETARY All Ri
279. d 10 241 10 Command Line Interface Reference token bucket Override DOCSIS 1 0 defaults with token bucket rate limiting The C3 limits upstream traffic to a modem based on the Class of Service CoS DOCSIS 1 0 or Service flow specification DOCSIS 1 1 The C3 enforces 1 0 CoS with a moving one second window algorithm and enforces 1 1 QoS with token bucket rate limiting according to the formula max T T R 8 B over any interval T If the token bucket option is specified then 1 0 CoS will use the 1 1 token bucket rate limiting algorithm with a burst size B equal to the maximum upstream channel transmit burst configuration setting in the 1 0 CoS If the required bandwidth exceeds the enforced bandwidth the C3 either delays the packet or in extreme cases drops the packet 7 NOTE Using the no cable upstream rate limit command will disable upstream rate limiting and the upstream rate limit parameters in the cable modem configuration file will be ignored ARRIS strongly recommends that upstream rate limiting remain enabled at all times To disable token bucket rate limiting use either cable upstream rate limit or no cable upstream rate limit token bucket cable upstream rng prm guard Syntax cable upstream n c rng prm guard symbols Sets the number of guard symbols in the ranging preamble 10 242 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable upstream safe config Syntax no cable
280. d 11 14 05 show interface cable 1 0 stats Displays interface statistics Example C3 show interface cablel 0O stats C3 CMTS User Guide Cablel1 0 Switching path Pkts In Chars In Pkts Out Chars Out Processor 1118 60760 764 1060272851 Total 1118 60760 764 1060272851 C3 show interface cable 1 0 upstream Syntax show interface cable 1 0 upstream port logchan Displays upstream information for all ports and logical channels or the speci fied port or logical channel Valid range 0 to 5 Example C3 show interface cablel 0 upstream Cablel1 0 Upstream 0 0 is up line protocol is up Description US CH 1 0 Cadant C3 CMTS BCM3140 Utilization 20 Modem throughput during last utilisation interval Lightest load 100 00 of Max traffic rate Average load 100 00 of Max traffic rate Heaviest load 100 00 of Max traffic rate Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 5 minutes Minislots for BE 00 00 5 minutes Minislots for NrtPs 00 00 5 minutes Minislots for RtPS 00 00 5 minutes Minislots for UGS_AD 00 00 5 minutes Minislots for UGS 19 99 5 minutes Minislots used 19 99 1 sec Voice minislots 0 00 5 minutes input rate 260 bits sec 0 packets sec Rev Al of 10 above above above sec Min rsvd rate Min rsvd rate Min rsvd rate 10 85 10 Command Line Interface Reference 5 minutes output rate 0 bits sec 0 packets sec 355296 packets input 1968 broadcasts
281. d ARRIS PROPRIETARY All Rights Reserved 3 23 3 CMTS Installation Procedure 3 13 3 24 The valid power range depends on the channel width the range 4 to 14 is valid for all channel widths See cable upstream power level page 10 239 for individual ranges Example cable upstream 2 power level 0 Repeat steps 2 through 5 for each upstream that you need to configure Proceed to Enabling the Interfaces page 3 24 End of procedure Enabling the Interfaces Follow these steps to enable the cable interfaces Enable an upstream cable interface using the following commands e For physical interfaces no cable upstream n shutdown e For logical interfaces no cable upstream n c shutdown Repeat this command for each configured upstream or logical channel Enable the downstream cable interface using the following command C3 config if no shutdown The CMTS is now ready to acquire and register cable modems To display the current CMTS configuration use the show running config command End of procedure ARRIS PROPRIETARY All Rights Reserved 11 14 05 4 Bridge Operation Topics Page Bridging Features Bridge Concepts 4 Bridge Binding 14 IP Addressing 16 Attaching Bridge Groups 18 Incoming Traffic Allocation to a Sub Interface 19 The C3 CMTS supports IP bridging and routing modes of operation This chapter describes bridging mode For more information see Chapter 5 Providing Mult
282. d ARRIS PROPRIETARY All Rights Reserved 8 21 8 Configuring Security deny cpe on cable 1 0 3 ip access to 192 168 0 2 access list 103 deny ip 10 3 0 0 0 0 255 255 192 168 0 2 0 0 0 access list 103 deny ip 10 4 0 0 0 0 255 255 192 168 0 2 0 0 0 permit cpe on cable 1 0 3 dhcp access to 10 99 99 0 network access list 103 permit udp 10 3 0 0 0 0 255 255 10 99 99 150 0 0 0 0 eq bootpce access list 103 permit udp 10 4 0 0 0 0 255 255 10 99 99 150 0 0 0 0 eq bootpce permit all remaining ip remember that the last ACE is always an implicit deny all access list 103 permit ip any any j interface cable 1 0 1 ip access group 101 in interface cable 1 0 3 ip access group 103 in exit exit lt 3 E oe Sample subscriber The following commands define subscriber management filters to provide management filter definition the functionality described above Requirement define filters that can be referenced from modem configuration files that restrict CPE source address to a defined subnet Assign default CMTS submgmt filters to block all IP based CPE access for the default subscriber management filters configure terminal define filter group for CPE network 10 1 0 0 cable filter group 1 index 1 cable filter group 1 index 1 src ip 10 1 0 0 cable filter group 1 index 1 src mask 255 255 0 0 cable filter group 1 index 1 dest ip 0 0 0 0 cable filter group 1 index 1 dest mask 0 0 0 0 ca
283. d downstream mixed DOCSIS downstream Euro DOCSIS upstream See also cable downstream mac mode page 10 222 cable max ranging attempts Syntax cable max ranging attempts k Sets the maximum number of ranging attempts allowed for modems If modems exceed this limit they are sent a ranging response with status ABORT and should proceed to attempt ranging on another advertised via downstream UCDs upstream channel Scope Not applicable to a cable sub interface Valid range 0 to 1024 10 198 ARRIS PROPRIETARY All Rights Reserved 11 14 05 cable privacy Syntax cable shared secret Syntax Release 4 3 Standard C3 CMTS User Guide no cable privacy option Configures Baseline Privacy for the cable modems on this interface The options are Keyword Description accept self signed Allow self signed cable modem certificates for certificate BPI Check certificate validity periods against the check cert validity periods current time of day Sets the lifetime of the Key Encryption Key KEK Valid range 0 to 6048000 seconds Sets the lifetime of the Traffic Encryption Key TEK Valid range 0 to 6048000 seconds kek life time n tek life time n no cable shared secret string encrypted Sets the shared secret to the specified string If no string was specified clear the string This also enables or disables the CMTS MIC calculation The encrypted keyword specifies that
284. d has a VLAN tag of 999 As there are no sub interfaces defined with matching subnets to that allocated for modems all modem traffic will remain mapped to this interface 2 500000 oo L r L z 1 1 z 1 i 1 1 i E 3 l Edge Router Ei ae z x able Operator e Router PC PC 8 DHCP 1 dge Router 3 ee eee E 1 VLAN Switch ye VLAN Switch Wy Se ee ee ee Provisionin l web serve MGMT Em i VPN E ral I I N CMTS 4 GOOT VLAN NSS pe l Modem assigned to ISP 1 by VPNs bride ad l configuration file CPE traffic assigned to ANE I by VSE coding in configuration file i Default VPN for unprovisioned eee PC subscribers Figure 5 4 Diagram of network used in this example ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide ip 12 bg to bg routing ser bridge 1 CABLE 1 0 0 BE FA0 0 0 ISP1 PC e o bridge 2 FA0 0 2 m ISP2 PC CABLE 1 0 3 FA0 0 3 ISP3 PC C bridge 9 CABLE 1 0 10 FA0 1 0 Modem Cable Operator DHCP 1 bridge 4 C FA0 1 2 CABLE 1 0 4 a aA Unprovisioned Provisioning web server Figure 5 5 How the C3 bridges data in the example Configuration As can be seen following the level of configur
285. d immediately after the user hits the enter key Each route map entry has an action associated with it called permit or deny The permit or deny option describes the actions to be taken if the match clauses for that route map entry are satisfied The action is typically used to describe the action to take if all the match clauses for that partic ular route map entry are satisfied If no option is specified the system defaults to permit From the global configuration mode enter the following command to create delete or modify a route map and route map entry config no route map tag name permit deny seq num config route map The tag name is the name given to the route map and can be from 3 12 characters long The seq num refers to the route map entry being created or modified K NOTE The route map command can only be entered in the configuration mode of the CMTS Entering the command causes the CLI to enter into the route map configuration level This is signified by the change in the CLI prompt from config to config route map To create a Route Map with the name my map1 and a route map entry identified by the sequence number 10 use the following command config route map my map1 permit 10 config route map K NOTE A route map entry can exist without any clauses defined against it The no version of the command deletes the associated route map entry or Route Map if the sequenc
286. d should never be needed 4 Press SW2 to clear the thermal overload interlock condition End of procedure 9 10 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Upgrading the CMTS Software Booting Methods Requirements Procedure 9 8 Release 4 3 Standard The C3 can boot from a software image located on its local Compact Flash disk or from an image on a TFTP server Use this procedure to upgrade a C3 CMTS to the current software version and set the booting method The C3 supports the following booting methods e Local boot the C3 loads and runs a software image located on its Compact Flash disk Network boot the C3 loads and runs a software image located on a TFTP server Before performing this procedure you need the upgrade software image Contact your ARRIS representative for information about obtaining the upgrade software image For network booting you must have an operating TFTP server containing the software image file that the C3 downloads at boot time For best results the TFTP server in question should be located on the same LAN and preferably on the same hub as the C3 Close location minimizes the possibility that a network failure could prevent the C3 from booting prop erly A CAUTION Service affecting Upgrading the C3 requires a reboot to load the new software image To minimize disruption of service perform the reboot only during a scheduled maintena
287. d the specified route 192 168 253 1 m CABLE OPERATOR DHCP 10 1 1 1 10 2 1 253 no ip bg to bg routing fastethernet 0 1 0 ip address 10 1 1 2 no ip routing Gateway 192 168 253 1 DHCP 172 16 5 1 DEFAULT ROUTE 192 168 253 1 DHCP SERVER 172 16 5 1 fastethernet 0 0 0 bridge group 1 able 1 0 1 bridge group 1 ip address 192 168 253 2 ip dhcp relay Le cable helper address 172 16 5 1 cable dhcp giaddr bridge 0 cable 1 0 0 bridge group 0 ip address 10 2 1 1 ip dhcp relay cable helper address 10 1 1 1 cable dhcp giaddr 192 168 253 0 E oe a ee EE DEFAULT ROUTE 10 2 1 253 DHCP Modem SERVER Saseecsescesoouesae ip default gateway 10 1 1 1 default cm subinterface cable 1 0 0 default cpe subinterface cable 1 0 1 Figure B 4 Example of how an ISP based DHCP server manages CPE IP addresses configure terminal turn on simple snmp access snmp server community public ro snmp server community private rw ARRIS PROPRIETARY All Rights Reserved B 11 B CMTS Configuration Examples j no ip routing ip route 172716 5 0 255 2550255 0 192 168 253 1 default cm subinterface cable 1 0 0 default cpe subinterface cable 1 0 1 bridges already defined as factory default bridge 0 bridge 1 j interface fastethernet 0 0 0 bridge group 1 no ip address no shutdown no management access exit j inte
288. dcast The following is list of the OSPF scaling limits which have been defined for the C3 OSPF applications Note that these values are fixed and cannot be modified via configuration Table 6 1 OSPF Scaling Limits Name Value Maximum number of statically configured OSPF neighbors 32 across all OSPF Point to Multipoint interfaces Maximum number of OSPF neighbors across all OSPF 256 interface ARRIS PROPRIETARY All Rights Reserved 6 15 6 IP Routing OSPF User interface The following commands are grouped for convenience This is not a step by step procedure Table 6 2 Global configuration mode commands Command Description This command lists the local interfaces on which OSPF is enabled and the current configuration of those interfaces C3 show ip ospf interfaces FastEthernet 0 1 0 is up line protocol is up Network Type POINT TO MULTIPOINT Cost 1 Transmit Delay is 1 sec State POINT TO MULTIPOINT Priority 1 Timer intervals configured Hello 30 Dead 120 Wait 120 Retransmit 5 Internet Address 10 250 136 2 24 Area 0 0 0 2 show ip ospf interfaces cable No Designated Router elected fastethernet X Y Z No Backup Designated Router elected Neighbor Count is 2 Adjacent neighbor count is 2 Adjacent with neighbor 100 100 100 44 Adjacent with neighbor 13 13 13 13 Secondary Internet Address 11 250 136 2 24 Area 0 0 0 2 No Designated Router elected No Backup Designated Router elected Neighbor
289. de disconnect Disconnect a CLI connection elog Event logging erase Erase a file system format Format a file system hostid Display id of CMTS used when ordering software licenses license Scan C licenses for new license fil mkdir Create a directory more Show contents of a file no pwd Show current directory reload Restart CMTS rename Rename a file rmdir Delete a directory script CLI command script send Send message to other CLI users test Perform Diagnostics undebug Toggle Debug output write Save Display running configuration ARRIS PROPRIETARY All Rights Reserved 10 27 10 Command Line Interface Reference cable modem Syntax 10 28 one of no cable modem address cable modem address dsa tftpaddr file cable modem address dsc tftpaddr file sfid sfid2 cable modem address dsd sfid sfid2 cable modem address max hosts n cable modem address subscriber ipaddr auto cable modem address ucc max failed attempts n cable modem address vpn vpn id Sets user and QoS parameters The parameters are Keyword Description Specify a cable modem by IP address MAC address or all to specify all cable modems on the CMTS Initiate a Dynamic Service Addition DSA for the specified cable modem Specify the TFTP server and configuration file containing the dynamic service to add Initiate a Dynamic Service Change DSC for the speci
290. default group ids are 1 to 6 for upstreams 1 to 6 respectively so by default no load balancing occurs See also cab e group page 10 112 show cable group page 10 58 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable upstream high power offset Syntax cable upstream n high power offset offset Specifies the maximum allowed input power on the physical upstream in dB above the nominal input power Cable modems whose input power is higher than this limit are forced to range The parameter is offset The maximum allowed offset in 1 10 dB increments Valid range 10 to 100 in steps of 10 10 20 and so forth See also cable upstream low power offset page 10 236 cable upstream initial ranging delay Syntax Release 4 3 Standard no cable upstream n c initial ranging delay time Increases the size of the broadcast IUC3 by time microseconds This may be needed in wireless applications with low downstream symbol rates or modula tions when a large delay in the downstream interleaver can cause the modem to perform initial ranging much later than expected Valid range 300 to 3000 us Default 300 us The default value is adequate for standard HFC based DOCSIS or Euro DOCSIS installations ARRIS PROPRIETARY All Rights Reserved 10 235 10 Command Line Interface Reference cable upstream low power offset Syntax cable upstream n low power offset offset Specifies the minim
291. dem configuration file and the provisioning systems to the C3 during modem registration ARRIS PROPRIETARY All Rights Reserved 4 21 4 Bridge Operation The C3 inspects all vendor specific encoding received during registration and accepts VSE information with an ARRIS vendor ID This TLV can contain a number that identifies what cable sub interface native tag all traffic passing through this modem is mapped to Thus all CPE traffic passing through a modem that received this configu ration file can be mapped to a particular cable sub interface Important The C3 ignores all other vendor specific information e g the C3 ignores a Thomson vendor_id The following diagram shows an example of an ARRIS VSE with a VPN ID of OOOBh 11 decimal Vendor Specific Encoding 01 02 00 08 Vendor ID VPN ID Figure 4 16 Example of ARRIS VSE with a VPN ID of OOOBh 4 22 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide The following diagram shows an example of a configuration file containing such VSE information a VSE tag of 11 decimal is shown PacketACE Jim_arris_ se_11 cfg File Edit Tools Help DALA B Mo CMTS MIC Kep Contig Type pe NetworkAccess 1 m VYendorSpecific 080300000401 020006 ClassOfService Classld 1 i Max pstraamBurst 0 2 MHasUpstreamA ate 128000 UpstreamChannelPriority 3 MaxDownetreamAate 500000 Figure 4 17 Example configuration file wit
292. device from which to transmit intercepted data If zero any interface may be used according to normal IP practice cTapMediationEntry 5 cTapMediationRtcpPort OBJECT TYPE SYNTAX InetPortNumber MAX ACCESS read only STATUS current DESCRIPTION The port number on the intercepting device to which the Mediation Devices directs RTCP Receiver Reports and Nacks This object is only relevant when the value of cTapMediationTransport is rtpNack This port is assigned by the intercepting device rather than by the Mediation Device or manager application The value of this MIB object has no effect before activating the cTapMediationEntry id cTapMediationEntry 6 cTapMediationDscp OBJECT TYPE SYNTAX Integer32 0 63 CISCO ORIG Dscp MAX ACCESS read create STATUS current DESCRIPTION The Differentiated Services Code Point the intercepting device applies to the IP packets encapsulating the intercepted traffic DEFVAL 34 by default AF41 code 100010 cTapMediationEntry 7 cTapMediationDataType OBJECT TYPE SYNTAX Integer32 0 127 MAX ACCESS read create STATUS current DESCRIPTION If RTP with Ack Nack resilience is selected as a transport the mediation process requires an RTP payload type for data transmissions and a second RTP payload type for retransmissions This is the RTP payload type for transmissions This object is only effective when the value of cTapMediationTransport is rtpNack
293. dge or router 6 Make the power connection as follows e If using AC power connect the power cord to the input socket in the upper right above the fuses e If using DC power connect the supplied DC power cable to the small white connector to the immediate left of the AC input connector k NOTE When DC powering the chassis should be earthed to the rack using the supplied M4 earthing stud as detailed in Earthing page 3 2 7 Apply power to the CMTS The cooling fans should start to turn and the CMTS should display initial startup messages on the LCD screen on the front panel The following figure shows the location of the LCD End of procedure LCD oF AUER ae o 000000 000 Cadant C3 CMTS Figure 3 6 LCD location Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 3 9 3 CMTS Installation Initial Configuration Prerequisites Optional Items Initial Boot Parameters 3 10 The following sequence can be used to start up the ARRIS Cadant C3 This startup sequence assumes an out of the box initial condition The following items must be set up before configuring the CMTS e An external DHCP server must be running e Anexternal TFTP server must contain the cable modem configuration file specified by the DHCP server The following items are optional for the initial configuration but may be required for normal operation e A TOD server is available for the cable modem
294. e If the upstream is being dynamically changed to move upstreams around noise or upstream parame ters are being changed rapidly for any other reason then this time interval can be decreased Scope Not applicable to a cable sub interface ARRIS PROPRIETARY All Rights Reserved 10 201 10 Command Line Interface Reference cable utilization interval Syntax encapsulation dotiq Syntax 10 202 cable utilization interval time Sets the utilization monitoring interval for US DS channels Specify the time in seconds Valid range 0 to 86400 seconds no encapsulation dotlq N native encrypted multicast The options are Keyword Description Specifies the VLAN ID There can be only ONE VLAN spec N See h ified per sub interface using this command Checks certificate validity periods against the current time native of day ehctyoted Downstream broadcast or multicast traffic to members of sat L this VPN is encrypted if BPI or BPI is enabled Only members of this VPN receive this multicast or broadcast K NOTE The VLAN tag is used internally Outbound data is not encoded with this tag Any un encoded inbound data will be issued with this VLAN tag for internal use tag will not leave the ARRIS Cadant C3 This command is applicable on a bridged interface no IP address or a routed interface has an IP address VLAN tags are the only way to allocate incoming fastethernet packet
295. e cable cable cable cable cable cable cable cable cable cable cable cable cable cable cable cable cable cable filter filter filter filter filter filter filter filter filter filter filter filter filter filter filter filter filter filter filter filter filter allow SNMP allow UDP f on 10 160 0 0 1 cable cable cable cable cable cable cable cable cable cable cable cable cable filter filter filter filter filter filter filter filter filter filter filter filter filter default default default default traffic group 1 grou grou grou grou grou grou grou grou grou grou grou S FO HOO FO OS OTS OOo PRPPRPRPRPRPRPRHE PB grou grou grou grou grou grou grou grou grou 0 O T S TW O S T S PRPPRPRPRPRPPR a modem config file filter group cm upstream 3 filter group cm downstream 2 filter group cpe upstream 1 filter group cpe downstream 1 index index index index index index index index index index index index index index PRPPRPRPRPRPRPRPRPEP EB src ip 0 0 0 0 srce mask 0 0 0 0 dest ip 224 0 0 0 dest mask 240 0 0 0 ip proto ALL ip tos 0x0 0x0 match action drop status activate srce port all dest port all tcp flags 0x0 0x0 src ip 0 index index index index index index index MPMNNNNNN DN NH 0 0 0 srce mask 0 0 0 0 dest ip 0 0 0 0 dest mask 0 0 0 0 ip proto ALL ip tos 0x0 0x0 match action ac
296. e cable modems to reset and specify a new software download image in the configuration file Modify the configuration file using the CMTS vendor s configuration file editor so that it specifies the new software download image filename Make sure that the configuration file includes the Software Upgrade TFTP Server Address where the new software download image is located Reset all cable modems on the CMTS by using the clear cable modem all reset command or by using SNMP to set the docsDevResetNow MIB object on all cable modems to True 1 This forces all modems to reset The reset process forces the cable modems to reacquire the RF signal and reregister with the CMTS The cable modems download the new configuration file which specifies a new software download image Because the name of the new image does not match the software image of the cable modems all cable modems download this new image After the downloading process has started you can monitor the process using the docsDevSwOperStatus MIB object During the download this object returns a value of inProgress 1 and the Test LED on the front panel of the cable modem blinks ARRIS PROPRIETARY All Rights Reserved 11 14 05 5 6 C3 CMTS User Guide If downloading fails the docsDevSwOperStatus MIB object returns a value of failed 4 If downloading is successful the cable modem automatically resets and the docsDevSwOperStatus MIB object returns a value of completeFromProv
297. e use the following command to assign a server to a server group To remove a server from a server group use the no command Enter the command no tacacs server host host name port integer timeout integer key string source address jp addr where Keyword Description host name IP address of the selected servers ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Keyword Description port nteger Optional Specifies a server port number Default port number is 49 timeout integer Optional Specifies a timeout value This overrides the global timeout value set with the tacacs server timeout command for this server only key string Optional Specifies an authentication and encryption key This must match the ky used by the TACACS daemon Specifying this key overrides the key set by the global command tacacs server key for this server only source address p addr Optional The source IP address of outbound TACACS packets Displaying Configuration There are several show commands available in enable mode To display the configured TACACS configuration use the following command show tacacs To display AAA session details use the following command show aaa sessions To display AAA method list details use the following command show aaa method list all authentication where Keyword Description all Optiona
298. e C3 advertises its default route i e 0 0 0 0 0 to neigh bors When this is disabled the default the C3 learns its default route default metric Syntax no default metric m Sets the metric for advertised routes This is primarily a way to override the default metric for advertised routes When a connected or static route gets redistributed into an RIP domain the C3 needs to start to advertise the route to the neighbor in RIP responses Connected and static routes do not use a metric specification so the C3 needs to know which metric value to associate with them in RIP advertisement This value is specified by the default metric command When a connected or static route gets redistributed into a RIP domain the C3 needs to start to advertise the route to the neighbor in RIP responses Connected and static routes do not use a metric specification so the C3 needs to know which metric value to associate with them in RIP advertisement This value is specified by the default metric command Valid range 1 to 15 Default 1 multicast Syntax no multicast Enables or disables multicast of routing updates When enabled the C3 multi casts RIP updates to IP address 224 0 0 9 all RIP v2 routers listen for updates 10 250 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide on this address When disabled the C3 broadcasts updates required for RIP vi operation redistribute connected metric Syntax no
299. e CMTS to be a CMTS management interface only Traffic from the CMTS to the 172 16 5 0 network is destined for a network not connected to the C3 To assist a static route is added for this network via 172 16 11 1 The following is a sample configuration for the diagram above if the following is to be pasted to the command line then paste from privilege mode and paste over a factory default configuration Restore factory default using then select do not save configuration and select yes to restart a Start S bipt Tant RnSAnnnn eanna configure terminal no ip routing default cm subinterface cable 1 0 0 default cpe subinterface cabel 1 0 1 interface fastethernet 0 0 0 for all CPE traffic no ip address required bridge group 1 no shutdown no management access interface fastethernet 0 1 0 for CMTS management remove the factory default assignment no bridge group set management IP address ip address 172 16 11 4 255 255 255 0 management access encapsulation dotlq 1 no shutdown exit 8 26 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide interface fastethernet 0 1 1 for modem traffic bridge group 0 ip address 10 160 0 4 255 252 0 0 no management access no shutdown encapsulation dotlq 2 j interface cable 1 0 0 for modem traffic bridge group 0 get basic rf going no shutdown no cable upstream 0 shutdown ip address 10 160 0 4 255 252 0
300. e number is not supplied Each route map entry has an associated sequence number defined using the following command ARRIS PROPRIETARY All Rights Reserved 11 14 05 Committing Changes Match Clauses Release 4 3 Standard C3 CMTS User Guide config route map tag name seq num A sequence number is associated with each route map entry and is used to define the order of evaluation of each route map entry This is a numer ical value between 1 and 65536 It must be a unique number for the route map it is associated It is a way of identifying one of four route map entries in a route map list These route map entries will be evaluated in ascending order in accordance with their sequence number identifier Each Route Map must be identified using a character string not less that 3 characters and not greater that 13 characters K NOTE A route map entry can exist without any clauses defined against it Any changes made in the route map configuration are only committed after the user exits from the route map configuration mode using the following command config route map exit The following command in the config route map mode associates an ACL with the route map entry config route map no match ip address acl number The acl number is a list of between 1 and 4 ACL numbers These numbers identify the ACL which will be used for this clause If the ACL referred to does not exist the route map entry
301. e rate manually The supported range is 1 25MSym sec to 6 952MSym sec EuroDOCSIS maximum in both Annex A and Annex B modes The downstream annex type may be set without affecting symbol rate and IF frequency In normal operation the C3 may be configured for DOCSIS EuroDOCSIS or a mixed mode DOCSIS downstream and EuroDOCSIS upstream modes The cable downstream mac mode CLI command and the dcxMACCmtsMacMode MIB can set the annex type When setting a standard mode the C3 automatically configures some parameters including symbol rate and IF frequency to ensure proper operation The C3 also places limitations on parameters such as modula tion type and frequency range to ensure standards compliance C 2 ARRIS PROPRIETARY All Rights Reserved 11 14 05 User Interface CLI Setting the Cable MAC Mode Setting the Annex Setting the IF Frequency Release 4 3 Standard C3 CMTS User Guide To configure the C3 for deployment in a wireless network a fourth mode wireless is supported through both CLI and SNMP The custom mode allows the C3 to set parameters independently to accommodate wireless operation This section briefly describes new and changed commands and MIBs used to configure the C3 for wireless operation All of the following commands are invoked from configuration mode for the cable interface From privileged mode use the following series of commands to configure the cable interface C3 configure terminal
302. e specified for this entry in cTapStreamIpSourceL4PortMin f both cTapStreamIpSourceL4PortMin and cTapStreamIpSourceL4PortMax are at their default values the port number is effectively unused DEFVAL 65535 by default any transport layer port number cTapStreamIpEntry 15 cTapStreamIpInterceptEnable OBJECT TYPE SYNTAX TruthValue MAX ACCESS read create STATUS current DESCRIPTION f true the tap should intercept matching traffic If false this entry is used to pre screen packets for intercept DEFVAL true cTapStreamIpEntry 16 cTapStreamIpInterceptedPackets OBJECT TYPE SYNTAX Counter32 MAX ACCESS read only STATUS current DESCRIPTION The number of packets matching this data stream specification that have been intercepted cTapStreamIpEntry 17 cTapStreamIpInterceptDrops OBJECT TYPE SYNTAX Counter32 MAX ACCESS read only STATUS current DESCRIPTION The number of packets matching this data stream specification that having been intercepted were dropped in the lawful intercept process cTapStreamIpEntry 18 cTapStreamIpStatus OBJECT TYPE SYNTAX RowStatus MAX ACCESS read create STATUS current DESCRIPTION The status of this conceptual row This object manages creation modification and deletion of rows in this table cTapStreamIpInterceptEnable may be modified any time even the value of this entry rowStatus object is active When other rows mus
303. e typeis one of dsa rsa or both Specifying the optional userid deletes only the public keys asso ciated with that C3 user ID See also Configuring SSH page 8 38 ARRIS PROPRIETARY All Rights Reserved 10 131 10 Command Line Interface Reference debug Syntax 10 132 no debug Enables debugging output to the serial console or telnet sessions if the term monitor command is used in a telnet session Debug commands are global across terminal and telnet sessions Use the terminal monitor command to send debug output to a telnet session Debug may be enabled in one telnet session and disabled in another telnet session Use show debug to show the state of debugging across all sessions A CAUTION Reduced system performance Producing debugging information can consume extensive CMTS resources which may result in reduced system performance For best results only enable debugging when necessary and disable it as soon as it is no longer needed To turn off debugging give the command no debug or undebug Debugging can be turned on and off the no form of the command for one or many modems based on MAC address or primary SID Modems are added to the debug list when specified and removed with the no command variant Commands that add remove modems from the debug list are no debug cable interface lt type x y gt mac address lt M M M gt m m m sid lt nnnn gt verbose no debug cable mac address lt M M M g
304. e upstream rate limit cable upstream rng prm guard Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 201 10 201 10 226 10 227 10 227 10 228 10 228 10 228 10 229 10 230 10 230 10 230 10 231 10 231 10 232 10 232 10 233 10 233 10 234 10 234 10 235 10 235 10 236 10 236 10 237 10 237 10 238 10 238 10 238 10 239 10 239 10 239 10 241 10 241 10 241 10 242 CLI iii 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 CLI iv cable upstream safe config cable upstream scdma active codes cable upstream scdma codes per slot cable upstream scdma frame size cable upstream scdma hopping seed cable upstream scrambler cable upstream short periodic maintenance interval cable upstream shutdown cable upstream snr timeconstant cable upstream status cable upstream token bucket cable upstream trigger index cable upstream voice allowed cable upstream voice timeout cable utilization interval cable vpn calendar set cd chkdsk clear access list counters clear arp cache clear ip cache clear ip igmp group clear ip ospf process clear ip route clear logging clear mac address clear mac address table clear screen cli account cli logging clock summer time date clock summer time recurring clock timezone configure copy ARRIS PROPRIETARY All Rights Rese
305. eamIpTosByte pStreamIpTosByteMask pStreamIpFlowId pStreamIpProtocol pStreamIpDestL4PortMin pStreamIpDestL4PortMax pStreamIpSourceL4PortMin pStreamIpSourceL4PortMax pStreamIpInterceptEnable pStreamIpInterceptedPackets pStreamIpInterceptDrops psStreamIpStatus t J J t d t 3 2 J t J 2 J J 4 J i J J 4 J t J a J 4 4 i J qagaagaagaaagaagagqaqaaqagqagqaaaqaa a J gooooooooooAMAANMA YD HW STATUS current DESCRIPTION These objects are necessary for a description of IPv4 and IPv6 packets to select for interception Hi cTapMIBGroups 3 cTapStream802ComplianceGroup OBJECT GROUP OBJECTS TapStream802Fields TapStream802Interface TapStream802DestinationAddress TapStream802SourceAddress TapStream802EthernetPid TapStream802SourceLlcSap TapStream802DestinationLlcSap TapStream802InterceptEnable TapStream802InterceptedPackets Q JETRI t 4 t QQQaAaaqaqaa a Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved E 17 SLEM MIB cTapStream802InterceptDrops cTapStream802Status STATUS current DESCRIPTION These objects are necessary for a description of IEEE 802 packets to select for interception cTapMIBGroups 4 cTapNotificationGroup NOTIFICATION GROUP NOTIFICATIONS cTapMIBActive cTapMediationTimedOut cTapMediationDebug cTapStreamIpDebug STATUS current DESCRIPTION The
306. eamble type qpskl advPhyL 16 220 0 8 64qam scrambler 338 no diff 104 shortened advPhyU AdvPhy ATDMA 1536 advPhyU AdvPhy preamble type qpskl advPhyU 12 78 0 8 64qam scrambler 338 no diff 104 shortened request AdvPhy SCDMA no trell 5 spr 2 request AdvPhy preamble type qpsk0 request 0 16 0 0 qpsk scrambler 338 no diff 64 fixed initial AdvPhy SCDMA no trell 5 no spr 2 initial AdvPhy preamble type qpsk0 initial 5 34 0 0 qpsk scrambler 338 no diff 640 fixed station AdvPhy SCDMA no trell 5 no spr 2 station AdvPhy preamble type qpsk0 station 5 34 0 0 qpsk scrambler 338 no diff 384 fixed advPhyS AdvPhy SCDMA no trell 5 spr 2 advPhyS AdvPhy preamble type qpskl advPhyS 12 78 10 0 64qam scrambler 338 no diff 64 shortened advPhyL AdvPhy SCDMA no trell 5 spr 2 advPhyL AdvPhy preamble type qpskl advPhyL 16 220 0 0 64qam scrambler 338 no diff 64 shortened advPhyU AdvPhy SCDMA no trell 5 spr 2 advPhyU AdvPhy preamble type qpskl advPhyU 12 78 0 0 64qam scrambler 338 no diff 64 shortened request AdvPhy TDMA request 0 16 0 8 qpsk scrambler 338 no diff 64 fixed initial AdvPhy TDMA initial 5 34 0 48 qpsk scrambler 338 no diff 640 fixed station AdvPhy TDMA station 5 34 0 48 qpsk scrambler 338 no diff 384 fixed short AdvPhy TDMA short 8 78 15 8 qpsk scrambler 338 no diff 84 shortened long AdvPhy TDMA long 10 150 0 8 qpsk scrambler 338 no diff 200 shortened request AdvPhy TDMA request 0 16 0 8 qpsk scrambler 338 no diff 64 fixed initial AdvPhy TDMA initial 5
307. ease 4 3 Standard ARRIS PROPRIETARY All Rights Reserved D 3 D DSi Applications DownstreamServiceFlow SfReference 102 SfQosSetType 7 SfMinReservedRatePktsize 1014 SfMinReservedRate 1800000 MaxClassifiers 10 PrivacyEnable 1 D 4 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard SLEM MIB The C3 supports Simple Law Enforcement Monitoring SLEM based on the description of the Cisco SLEM concept outlined in the internet draft RFC 3924 This MIB is defined below CISCO TAP MIB DEFINITIONS BEGIN IMPORTS MODULE IDENTITY OBJECT TYPE NOTIFICATION TYPE Integer32 Unsigned32 Counter32 enterprises FROM SNMPv2 SMI MODULE COMPLIANCE OBJECT GROUP NOTIFICATION GROUP FROM SNMPv2 CONF InetAddressType InetAddress InetAddressPrefixLength InetPortNumber FROM INET ADDRESS MIB RowStatus TruthValue DateAndTime MacAddress FROM SNMPv2 TC SnmpAdminString FROM SNMP FRAMEWORK MIB InterfaceIndexOrZero FROM IF MIB Dscp FROM CISCO QOS PIB MIB ciscoMgmt FROM CISCO SMI enterprises FROM RFC1155 SMI Explicitly set the cisco and ciscoMgmt OIDs cisco OBJECT IDENTIFIER ARRIS PROPRIETARY All Rights Reserved E 1 E SLEM MIB enterprises 9 ciscoMgmt OBJECT IDENTIFIER tt cisco 9 cTapMIB MODULE IDENTITY LAST UPDATED 2005051000002 ORGANIZATION Cisco Systems Inc CONTACT INFO Cisco Systems Customer Service Postal 170 W Ta
308. eased on a round robin basis from any of the scopes in the super scope e Cisco Network Registrar operates in a similar manner CNR uses the concept of primary and secondary scopes One primary scope may have many secondary scopes Together the primary and secondary scopes form a super scope in the Windows DHCP server sense To summarize DHCP server behavior e Where one scope only exists for a giaddr either a reserved address is issued or an available address from this scope is issued e Where two scopes exist and an address is reserved in one scope but the incoming giaddr matches the DHCP discover to the other scope the reserved address is not issued Further no address from the scope matching the giaddr is issued e If the two scopes are a member of a Super scope or are ina primary secondary relationship the reserved address is issued and if no reserved address is present an address from either scope is issued on a round robin basis ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide The main aim of DOCSIS provisioning is to reserve the MAC address of a modem in a scope but not to have to do this for a PC Option 82 aware DHCP servers can assist in this process Introducing a concept of primary and secondary DHCP clients e A primary client has a DHCP Discover with the chaddr field matching the option 82 agent remote id sub option field sub option number 2 e A secondary clienthas different MAC addr
309. ecific Subcommands page 10 248 e sub interface specific described in Common Interface Subcommands for Cable and fastEthernet Interfaces page 10 180 The only commands required to start OSPF routing are C3 config ip routing C3 config router ospf C3 config router network address subnet wildcard area id Where subnet is a standard subnet address wi dcardis an inverted mask for example if the mask is 255 255 255 0 the wildcard is 0 0 0 255 and dis the area assigned to the router Tip to enable OSPF on all sub interfaces use the command network 0 0 0 0 255 255 255 255 area id Other routing parameters have reasonable defaults for most network configurations However it is recommended to manually enter the router id instead of allowing the C3 to auto select it This will allow OSPF to come up more reliably after a restart and or upgrade OSPF related routing commands fall into two categories e general described in OSPF specific Subcommands page 10 255 e sub interface specific described in Common Interface Subcommands for Cable and fastEthernet Interfaces page 10 180 ARRIS PROPRIETARY All Rights Reserved 6 13 6 IP Routing OSPF Point To Multipoint 6 14 The OSPF network is independent from the actual physical interface type It is used to define the operation of the OSPF protocol on a sub interface basis OSPF supports four network types e Broadcast e Non Broadcast Multiple Access NBMA e Poi
310. ed by snmp server user can only be part of a group if they share the same security model Groups are unique and are stored in the SNMP table vacmAccessTable and users are stored in vacmSecurityToGroupTable iso dot org dod internet snmpV2 snmpModules snmpVacmMIB vacmMI BObjects vacmSecurityToGroupTable and iso dot org dod internet snmpV2 snmpModules snmpVacmMIB vacmMI BObjects vacmAccessTable Example C3 config snmp server group MyGroup v2c notify MyTrapNotify To add MyCommunity as a community string for SNMPv2c GETs as well as for notifications use the following command C3 config snmp server MyGroup v2c read myTrapNotify notify MyTrapNotify Now MyGroup may be used as view for both SNMP TRAP and SNMP GET transactions ARRIS PROPRIETARY All Rights Reserved 11 14 05 snmp server user Syntax Syntax Release 4 3 Standard C3 CMTS User Guide For vl v2c no snmp server user username group v2c v1 snmp access list list For v3 no snmp server user username group v3 auth md5 sha passwd priv des56 passwd2 enc snmp access list list Defines an SNMP user The parameters are Keyword Description username Specifies the user name string rou Specifies the user security model group snmp server AEE group Specifies the SNMP version and security model to use V3 v2c vi This must match the SNMP version specified in the group definition l
311. ed or used by standard DHCP server no ip dhcp relay information option j interface cable 1 0 12 for CPE devices ip address 10 12 0 1 255 255 0 0 dhcp spec required for cpe dhcp ip dhcp relay cable helper address 10 2 0 1 cable dhcp giaddr primary option 82 not required or used by standard DHCP server no ip dhcp relay information option Example self mapping using map cpes This example shows the map cpes command referencing the same sub inter face Only subnets in the mapped sub interface are valid for CPE and so the primary sub interface specification is also a valid subnet for CPE devices ip routing j interface cable 1 0 0 valid subnet for CM and CPE devices ip address 10 1 0 1 255 255 0 0 valid subnets for CPE devices ip address 10 11 0 1 255 255 0 0 secondary ip address 10 21 0 1 255 255 0 0 secondary ip address 10 31 0 1 255 255 0 0 secondary ip dhcp relay use primary address for modem giaddr use first secondary address for cpe giaddr ARRIS PROPRIETARY All Rights Reserved 11 14 05 shutdown Syntax Release 4 3 Standard C3 CMTS User Guide cable dhcp giaddr policy us the one dhcp server for cm and cpe cable helper address 10 2 0 1 allow the dhcp server to tell what is cm what is cpe ip dhcp relay information option map all cpe attached to cm using this interface to this interface map cpes cable 1 0 0 See also encapsulation dot1q page 10 202 no sh
312. efault for internet access default cpe sub interface cable 1 0 1 interface fa 0 0 0 bridge group 1 no ip address required as bridging only no management access exit j interface fa 0 1 0 bridge group 0 this is the C3 management IP address ip address 10 6 0 1 255 255 255 0 management access need this to allow CPE DHCP RENEW ACK from DHCP server back to bg 1 and hence requesting CPI ip 12 bg to bg routing exit Gl interface cable 1 0 0 bridge group 0 all modems are here by default enter RF config here cable upstream 0 frequency 10000000 cable upstream 0 channel width 3200000 cable upstream 0 ingress cancellation no cable upstream 0 shutdown cable upstream 1 frequency 15000000 cable upstream 1 channel width 3200000 cable upstream 1 ingress cancellation no cable upstream 1 shutdown no shutdown Note can be the same as the management address ip address 10 6 0 1 255 255 255 0 ip DHCP relay cable helper address 10 6 0 2 cable modem cable DHCP giaddr primary exit j interface cable 1 0 1 for internet CPE bridge group 1 use this ip address to give giaddr to CPE DHCP discovers T B 20 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide CPE should be given 205 2 3 254 as their gateway address and 205 2 3 254 should be the internet edge router ip address 205 2 3 253 255 255 255 0 ip DHCP relay cable helper add
313. el 50 ble privacy accept self signed certificate cable privacy check cert validity periods ble privacy kek life time 604800 ble privacy tek life time 43200 cable shared secret DLE DLE DLE cable upstream 0 description ble upstream 0 shutdown ble upstream 0 snmp trap link status ble upstream 0 mac mode docsis ble upstream 0 frequency 10000000 ble upstream 0 channel width 3200000 ble upstream 0 power level 4 fixed ble upstream 0 low power offset 60 ble upstream 0 high power offset 60 ble upstream 0 group id 1 ble upstream 0 plant length 160 ble upstream 0 initial ranging delay 300 ble upstream 0 periodic maintenance interval 1000 ble upstream 0 short periodic maintenance interval 100 ble upstream 0 minimum unfrag burst 600 ble upstream 0 admission control 100 ble upstream 0 dominant interval default cable upstream 0 admission limit ble upstream 0 voice timeout 1 cable upstream 0 0 description ble upstream 0 0 shutdown cable upstream 0 0 snmp trap link status ble upstream 0 0 channel type TDMA ble upstream 0 0 modulation profile 1 cable upstream 0 0 pre equalization ble upstream 0 0 minislot size 4 ble upstream 0 0 trigger index 0 ble upstream 0 0 snr timeconstant 4 ble upstream 0 0 mer timeconstant 8 ble upstream 0 0 rng prm guard 1 ble upstream 0 0 nrng prm guard 2 cable upstream 0 0 ingress cancellation cable upstream 0 0 impulse mitigation ble upstream 0 0 safe config
314. ence 10 Match clauses Ip address acl 202 Set clauses Ip next hop 192 168 2 2 6 20 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Ip tos min delay Policy routing matches 1233 packets 94990 bytes Use the following CLI command to show the number of registered users of all Route Maps currently configured on the CMTS This command may be evoked from either the global configuration or interface configuration modes of the CLI config show route map map name An example of the system response is route map my map1 is not active number of users 1 route map my map2 is active number of users 3 route map my map4 is active number of users 1 route map my map7 is active number of users 0 An application can register for a Route Map which does not exist No more than 16 users can register for use against any given Route Maps This command is ARRIS specific and the output format of it may change to include more useful information about Route Maps K NOTE A Route Map which is not currently active does not get displayed using the show route map map name command OSPF Route Redistribution Filtering OSPF allows AS external routes to be injected into the OSPF routing domain by using the redistribute command Filtering of these redistributed AS external routes is achieved by use of Route Maps The route map func tion is a generic mechanism which may be used by many routing tasks to filter both IP
315. ency bands by configuring several bands with the same value of index but different values of band Use the no form of this command to remove a band from a frequency group Removing the last band from a group also removes the group The following example defines 6 cable frequency groups with one frequency band per group cable frequency group 1 1 start 1800000 stop 68200000 cable frequency group 2 1 start 1800000 stop 68200000 cable frequency group 3 1 start 1800000 stop 68200000 cable frequency group 4 1 start 1800000 stop 68200000 cable frequency group 5 1 start 1800000 stop 68200000 cable frequency group 6 1 start 1800000 stop 68200000 If you attempt to modify an existing frequency band all upstream channels in ARRIS PROPRIETARY All Rights Reserved 10 111 10 Command Line Interface Reference the cable groups that use this band must fall within all the frequency bands assigned to the frequency group See also show cable frequency band page 10 58 cable group frequency index page 10 113 cable group Syntax no cable group id option Manages cable groups See the sections following for details cable group description Syntax no cable group id description str Creates a textual description of this cable group that is displayed in the running configuration Use the no form of this command to remove the current description The parameters are Keyword Description The cable group identifier 1 to 6
316. enerated for this entry are sent as inform informs snmp server community entry Syntax Release 4 3 Standard no snmp server community entry index community name user name Configures or deletes an entry in the snmpCommunityEntry table You can use this command to change the community entry for a user previously defined by the snmp server user command The parameters are Keyword Description The name of an entry in the snmpCommunityEntry index table The snmp server user command automati cally creates an entry in this table The community name to assign to this user community name defined for example by the snmp server community command user name The user name to assign to this community entry The snmp server user command creates an entry with identical community and user names If you change one or the other the C3 looks for the commu nity name in messages from SNMP clients The user must be associated with a group of the same type v1 or v2c for the community entry to be useful ARRIS PROPRIETARY All Rights Reserved 10 173 10 Command Line Interface Reference tacacs key Syntax tacacs server host Syntax tacacs server key Syntax 10 174 no tacacs key lt string gt Configures or deletes the per server encryption key The parameters are string The unencrypted cleartext shared key no tacacs server host ip addr Configures or dele
317. equests to the specified IP address and reports whether the CMTS received an echo response for each packet ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard C3 CMTS User Guide Keyword Description interval Specifies the interval in seconds between successful successive ping attempts If the ping attempt is unsuccessful the timeout setting will take priority over the interval setting Valid range 0 to 3600 The default is 0 seconds repeat Specifies the number of ping attempts to be made Valid range 1 to 2147483647 The default is 5 size Specifies the size in bytes of the ping packet generated This size includes the IP packet header and the ICMP payload i e not the L2 header size Valid range 36 to 4079 The default is 64 byte ip packet source Specifies the source IP address to be included in the IP header of the ping packet This IP address must be configured on an operational interface otherwise the command will fail The source IP address specified does not determine the outbound interface of the ping request instead it is used to select the inbound inter face that the responding host will issue its corre sponding ping response to timeout Specifies the timeout in seconds between successive unsuccessful ping attempts i e the period that will be waited for a ping response after a ping request has been issued Valid range O to 3600 The default is 2
318. erface a sub interface having an IP address See also jp igmp page 10 204 jp igmp proxy page 10 191 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide ip igmp verify ip router alert option Syntax ip igmp version Syntax ip broadcast echo Syntax Release 4 3 Standard no ip igmp verify ip router alert option Enables or disables checking of the IP Router Alert option in IGMP v2 reports and leaves ip igmp version val The version of IGMP running on the sub interface The value of va must be 2 Scope Cable sub interface only k NOTE The ip igmp proxy must already be specified on a fastethernet interface and this fastethernet interface must be either e A layer 3 fastethernet sub interface or e A fastethernet sub interface in the same bridge group as at least one other sub interface having an IP address See also jp igmp proxy page 10 191 no ip broadcast echo Controls whether IP broadcasts received on the cable interface are broadcast back downstream This may be specified per cable sub interface ARRIS PROPRIETARY All Rights Reserved 10 207 10 Command Line Interface Reference ip multicast echo Syntax ip throttle Syntax 12 broadcast echo Syntax 10 208 no ip multicast echo Controls whether multicasts received on the cable interface are broadcast back downstream This may be specified per cable sub interface K NOTE The no form of t
319. erface Reference YwxXrwxrwx YwxXrwxrwx YwxXrwxrwx YwxXrwxrwx YwxXrwxrwx YwxXrwxrwx YwxXrwxrwx C3 show cable actions show cable filter Syntax 10 56 PRPPRPRPP PR O O OO OO DO GO O O O OGO 19194 19194 19094 19100 19097 19107 19099 Jan 2 1980 Jan 1 1980 Jan 4 1980 Jan 1 1980 Jan 5 1980 Jan 7 1980 Jan 5 1980 PP PP PP BD WWW WWW WwW O GOG GOG GO GOG G 22_config 23 config 27 config 26 config 29 config 31 config 32 config bk bk bk bk bk bk bk to tg tg ft fOr g Displays the currently configured spectral management actions in tabular format show cable filter group gid verbose Lists filters configured on the selected cable modems If you do not specify a group the C3 shows all configured groups See also cable filter page 10 106 and related commands ARRIS PROPRIETARY All Rights Reserved Keyword Description group Specifies the group ID Valid range is 1 to 30 verbose Prints a more detailed listing 11 14 05 C3 CMTS User Guide show cable flap list Syntax show cable flap list cable x y settings sort flap sort interface sort mac sort time summary Displays the current contents of the flap list The following options restrict or sort output Keyword Description sort flap Sorts by flap count default Lists the current flap list data accumulation settings the columns in the
320. erface Reference modes Interface Configuration Commands Use Interface configuration mode to configure the cable and Ethernet inter faces When in this mode the prompt changes to C3 config if or C3 config subif interface Syntax no interface type number Enter Interface configuration mode To remove a specified sub interface use the no version of the command Keyword Description type Either cable or fastethernet Common Interface Subcommands for Cable and number fastEthernet Interfaces Either X Y or X Y Z defines a sub interface The following subcommands may be used on both cable and fastEthernet interfaces 10 180 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Syntax Syntax Syntax Release 4 3 Standard C3 CMTS User Guide bridge group no bridge group n Assign this interface to the specified bridge group See also bridge page 10 104 bridge group page 10 181 show bridge page 10 50 description no description text Sets the textual description of the interface Scope Not applicable to a cable sub interface end Ctr1l Z Exit interface configuration mode to privileged mode exit Exit interface configuration mode to configuration mode interface interface cable fastethernet X Y Changes to a different interface configuration mode without having to exit the current configuration mode first See also Common Inte
321. erface fa 0 1 0 bridge group 0 this is the C3 management ip address 10 6 0 1 255 255 management access need this to allow CP back to bg 1 ip 12 bg to bg routing exit F py DHCP interface cable 1 0 0 all modems are her enter RF config here cable upstream 0 frequency 1 cable u cable upstream 0 ingress can no cable upstream 0 shutdown cable upstream 1 frequency 1 cable u by def B 16 ARRIS PROPRIETARY All Rights Reserved le 1 0 0 cess ble 1 0 1 bridging only bridging only bridging only IP address 255 0 renew ack from DHCP server ault 0000000 pstream 0 channel width 3200000 cellation 5000000 pstream 1 channel width 3200000 11 14 05 C3 CMTS User Guide cable upstream 1 ingress cancellation no cable upstream 1 shutdown no shutdown j Note can be the same as the management address ip address 10 6 0 1 255 255 255 0 ip DHCP relay cable helper address 10 6 0 2 cable modem cable DHCP giaddr primary exit interface cable 1 0 1 for ISP CPE bridge group 1 use this ip address to give giaddr to CPE DHCP discovers CPE should be given 205 2 3 254 as their gateway address and 205 2 3 254 should be the internet edge router ip address 205 2 3 253 255 255 255 0 ip DHCP relay cable helper address 10 6 0 2 cable dhcp giaddr primary VSE tag of 1 is required here encapsulation dotlgq 1 native turn on downstream privacy BPI is on encapsul
322. ernet 0 0 0 and the FE0 1 port as fastethernet 0 1 0 If the CMTS has been booting from one interface and you change this interface using the above commands for the changed factory default configuration to take effect you need to erase the old configuration using the CLI command write erase before entering the boot options Then power cycle the CMTS to re create the startup configuration based on the new boot options Enter bootShow to view the current boot options Note that the CMTS does not show the TFTP server IP address unless BootCfg is selected as following A listing similar to the following displays C3 gt bootShow xxx Current Boot Parameters Boot from Compact Flash Boot file C 2 0 3 12 bin CMTS IP Address LO T2127 227 CMTS subnet mask ffff7 00 Gateway Address TOs 20 3 CMTS Name CMTS Network port WAN Vlan Tagging Disabled If the C3 is to be managed over an 802 1Q VLAN make the VLAN assignment so that remote management systems can communicate with the C3 during the boot process This is also required if the C3 is configured to boot using TFTP since the TFTP transfer might use the VLAN Use the vianEnable and setVlanId commands to set up the VLAN C3 gt vlanEnable C3 gt setVlaniId 1 C3 gt bootShow xxx Current Boot Parameters Boot from Compact Flash Boot file C 4 3 0 32 bin CMTS IP Address 210 1 22 T22L CMTS subnet mask ff7f 00 Gateway Address 2 10d 0 3 CMTS Name
323. ernet 0 1 2 C3 config ip igmp proxy Layer 3 Multicast Operation 6 12 This section describes interactions between routing and multicasting If a C3 is configured with Layer 3 sub interfaces then the downstream IGMP sub interface must be running in IGMP active mode for IP multicast forwarding to work correctly The same C3 can also have layer 2 bridge groups these bridge groups downstream IGMP sub interfaces can use either IGMP active or IGMP passive mode The databases that are used for the Layer 2 and the Layer 3 sub interfaces are mutually exclusive so the Layer 2 database does not adversely affect the IP multicast forwarding of the Layer 3 sub interfaces and vice versa ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Routing Command Overview RIP Overview OSPF Overview Release 4 3 Standard The only routing commands required to start RIP routing are C3 config ip routing C3 config router rip C3 config router network subnet wildcard Where subnet is a standard subnet address and wildcard is an inverted mask for example if the mask is 255 255 255 0 the wildcard is 0 0 0 255 Tip to enable RIP on all sub interfaces use the command network 0 0 0 0 255 255 255 255 Other routing parameters have reasonable defaults for most network configurations for example RIP version 2 is run by default RIP related routing commands fall into two categories e general described in RJP sp
324. erved 10 127 10 Command Line Interface Reference cli logging Syntax no cli logging password path dir size maxsize Controls CLI logging Use no cli logging to turn logging off The options are Keyword Description password Turns password logging on or off The path in which the default log file will be stored The path filename will be console log vty0 log vty1 log vty2 log or vty3 log dze Specifies the logging file size in Kbytes Valid range 1 to 50000 10 128 ARRIS PROPRIETARY All Rights Reserved 11 14 05 cli account Syntax Release 4 3 Standard C3 CMTS User Guide no cli account account name password pw enable password privpw secret password enpw Sets the login name and passwords for access to the C3 command line Use no cli account to delete a password The parameters are Keyword Description account name Login name pw Login password for this account Password to move into privilege mode for this account privpw This password is shown in clear text in the C3 configuration Sets the encrypted password to move to privilege mode enpw after login This password is visible in the configuration file in encrypted format If you set an encrypted password you must set a normal password as well Accounts without normal passwords cannot access privileged commands ARRIS PROPRIETARY All Rights R
325. es include Outgoing Outgoing 78 None Set N A Outgoing Not Set None Set N A Outgoing 171 1 0 Outgoing 171 2 0 Outgoing TAL 3 40 Outgoing 171 4 0 Outgoing 171 5 0 Outgoing 171 6 1529 Outgoing TI 7 1482 Outgoing 171 8 186184 Excluding Matching Lines Use the exclude command to suppress output lines matching the specified string Example C3 show access lists interface matches exclude FastEthernet Direction Acl ID Entry No Matches Outgoing 171 1 0 Outgoing T71 2 0 Outgoing 171 3 0 Outgoing 171 4 0 Outgoing i Bee al 5 0 Outgoing 171 6 1529 Outgoing TLI 7 1482 Outgoing 171 8 186184 Inbound 2601 None Set N A ARRIS PROPRIETARY All Rights Reserved 10 5 10 Command Line Interface Reference modet User Mode Commands User mode is in effect when you log into the CMTS Commands in this mode are limited to inquiry commands The prompt in user mode is the hostname followed by a greater than sign e g C3 gt The following is a summary of user mode commands C3 gt enable exit Exit Mode CLI help Display help about help system llc ping Ping a specific MAC address using 802 2 LLC TEST frames logout Exit the CLI ping Ping a specific ip address show Show system info systat Display users logged into CLI terminal Change terminal settings C3 gt debug Enters debug mode enable Enters privileged mode See Privileged Mode Commands page
326. es default CLI parameters for the current user When a new user logs into the CLI the default CLI parameters come from the running configuration line specifications You can use the terminal commands to change your settings for the current session but the settings revert to the defaults on the next login The options are Keyword Description console Configures the serial console vty lt start gt lt end gt Configures a range of telnet sessions 10 178 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard C3 CMTS User Guide Upon entering the line command the prompt changes to C3 config line Commands available are Command Description end Exits configuration mode exit Exits configuration mode help Displays this list of subcommands length Changes the number of lines in the terminal window line Configures console or telnet login Changes login user name or password no monitor Turns on debug output Use the no option to turn off debug output show Shows system info timeout Set the inactivity timeout vt100 colors Enables ANSI colors width Changes the number of columns in the terminal window Example C3 config line vty 0 3 Configuring telnet lines 0 to 3 C3 config line timeout 0 C3 config line exit C3 config ARRIS PROPRIETARY All Rights Reserved 10 179 10 Command Line Int
327. eserved 10 129 10 Command Line Interface Reference crypto key generate Syntax crypto key generate type modulus len Generates the host public and private keys for the C3 SSH server The param eters are Keyword Description type Specifies the key type one of dsa rsa or both l The key length one of 768 1024 or 2048 Default Sn 1024 The C3 stores RSA and DSA public keys in c ssh cmts_dsa_ pubkey pem and c ssh cmts_rsa_pubkey pem respectively See also Configuring SSH page 8 38 10 130 ARRIS PROPRIETARY All Rights Reserved 11 14 05 crypto key import Syntax crypto key zeroize Syntax Release 4 3 Standard C3 CMTS User Guide crypto key import rsa userid pem terminal url name Installs a public RSA or DSA key in PEM format for the specified user The parameters are Keyword Description userid The C3 user ID that the keys apply to terminal Specifies that the keys are entered from the current terminal session ASCII upload ac Either the URL of a file on a TFTP server or the name of a file on the C3 Compact Flash disk Once a user s public key is installed in the C3 user database password authen tication for that user is no longer available Use the crypto key zeroize command to remove a user s public keys See also Configuring SSH page 8 38 crypto key zeroize type userid Deletes the specified host public and private key types Th
328. ess ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide By adding the management IP address to fastethernet 0 1 0 and using the management access specification CMTS management can be isolated from the CPE and CM traffic in bridge group 0 as follows default cm sub interface cable 1 0 0 default CPE sub interface cable 1 0 0 fastethernet 0 0 0 bridge group 0 no management access cable 1 0 0 bridge group 0 no management access fastethernet 0 1 0 bridge group 1 ip address 10 0 0 1 255 255 255 0 management access cable 1 0 1 bridge group 1 no management access encapsulation dotlq 1 native If required CM traffic can be isolated from CPE traffic by reassigning the default interface for CM traffic as follows Both modem and CMTS manage ment traffic now use fastethernet 0 1 0 default cm subinterface cable 1 0 1 default cpe subinterface cable 1 0 0 fastethernet 0 0 0 bridge group 0 no management access cable 1 0 0 bridge group 0 no management access fastethernet 0 1 0 bridge group 1 ip address 10 0 0 1 255 255 255 0 management access cable 1 0 1 bridge group 1 no management access encapsulation dotlq 1 native Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 8 5 8 Configuring Security 8 6 The modem and CMTS traffic can be separated at this fastethernet inter face by using the VLAN sub interface capability of the C3 e Once a fastethernet sub interface is removed f
329. ess Topics Page Open Access 1 Cable VPN Implementation 3 Using the Modem IP Address to allocate CPE to a VPN 5 Using a Modem Configuration File to Allocate CPEstoaVPN 11 Open access is an operating concept that allows a subscriber to choose from a number of ISPs On a practical networking side open access requires that a subscriber CPE device attached to a cable modem be given a default route that is not associated with any of the cable modem plant Typically this default route would be the gateway IP address of the chosen ISP s edge router Open access support is limited in the C3 to bridging mode only In IP routing mode the C3 requires that the CPE device have a default route of the nearest router in IP routing mode the nearest router is the C3 cable interface The C3 as a whole has only has one default route and all CPE traffic would have to use this route thus not allowing an ISP edge router to be selected as the subscriber CPE device default ARRIS PROPRIETARY All Rights Reserved 5 1 5 Providing Multiple ISP Access The following example shows an open access system implemented with a C3 in bridging mode with three ISPs Two of the ISPs issue their own IP address one ISP requires the cable operator to issue CPE IP addresses In each case the router option passed to the CPE device is that of the ISP gateway routers and is independent of the cable modem plant m
330. esses in each of these fields and the option 82 agent remote id sub option field sub option number 2 is the MAC address of the attached primary device When a DHCP Discover arrives from a primary device all primary scopes are searched as per normal DHCP server operation and either a reserved address issued from a scope matching the giaddr or the next available address is issued from the primary scope matching the giaddr When a DHCP Discover arrives from a secondary device the primary leases are searched for the attached primary MAC address The lease then defines the primary scope used to issue the primary device IP address Then the scopes secondary to this primary scope are searched for a reserved address If no reserved address is found the next available lease from the secondary scope is issued k NOTE A giaddr match is not performed to the secondary scope It is possible to have many secondary scopes to the one primary scope If no reserved lease is found then the next available lease from any one of the secondary scopes can be issued on a round robin basis Thus once the primary device is allocated an IP address the secondary device is automatically allocated an IP address from a secondary scope with no need to reserve the address of the secondary device or no need to have a matching giaddr scope for the secondary device A side benefit of option 82 processing in a DHCP server is that if no option 82 information is presen
331. et ARRIS Cadant C3 CMTS Cable Modem Termination System C3 CMTS User Documentation Release 4 3 Standard November 2005 ARRIS PROPRIETARY This document contains proprietary information of ARRIS Inc and is not to be disclosed or used except in accordance with applicable agreements 2005 ARRIS Inc All Rights Reserved 11 14 05 Copyright and Trademark Information Cadant c3 Cadant c4 Keystone D5 ARRIS and Arris Interactive are trademarks of ARRIS International Inc Cadant C3 CMTS is a registered trademark of ARRIS Licensing Company All other trademarks and registered trademarks are the property of their respective holders Every attempt has been made to capitalize and spell correctly the trademarked and service marked terms used in this manual ARRIS does not attest to the accuracy of these terms and their usage Any misspelling or misuse of a term should not be construed as affecting the validity of its trademark or service mark All information contained in this document is subject to change without notice ARRIS reserves the right to make changes to equipment design or program components as progress in engineering manufacturing methods or other circumstances may warrant The ARRIS Cadant C3 Cable Modem Termination System CMTS has been qualified by CableLabs for DOCSIS 1 1 and 2 0 and by tComLabs for Euro DOCSIS 1 1 2005 ARRIS Inc All rights reserved Table of Contents
332. etBios datagram service 138 netbios ns NetBios name service 137 netbios ss NetBios session service 139 ARRIS PROPRIETARY All Rights Reserved 11 14 05 All Other Protocols Fragment Support Release 4 3 Standard C3 CMTS User Guide Port Keyword Name number ntp Network Time Protocol 123 pim auto rp PIM Auto RP 496 rip aa Protocol router 520 snmp Simple Network Management Protocol 161 snmptrap SNMP Traps 162 sunrpc Sun Remote Procedure Call 111 syslog System Logger 514 tacacs TAC Access Control System 49 talk Talk 517 tftp Trivial File Transfer Protocol 69 time Time 37 who Who Service rwho 513 xdmcp X Display Manager Control Protocol Syntax no access list ACL number permit deny protocol host source source source wildcard any oper port host dest dest dest wildcard any oper port icmp type icmp code fragment precedence precedence tos tos dscp dscp Creates an ACL with the specified filter entry or adds the specified filter entry to an existing ACL The no Option Use the no option to remove an ACE from a ACL without having to re enter the complete ACL Full support of the fragment option is provided Use this option to prevent attacks on hosts as detailed by RFC 1858 However using this option restricts access to resources by non fragment flows only The first packet of a TCP segment contains the IP header
333. ets are known and are static Use ACLs to drop all packets from the CPE subnets destined for modem subnets One ACL could be used on all CPE sub interfaces Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 8 19 8 Configuring Security 8 20 K NOTE If some CPEs must have access to modems MSO technicians working from home then the use of ACLs is still appropriate as these modems and hence attached CPE can be allocated to a known sub interface by the provisioning system a sub interface that does not have so restrictive an ACL specification Blocking a manually set CPE static IP address allocation providing access to illegal CPE subnets is not a static situation suitable for ACL application The assigned subnet may be one of many subnets defined for a cable sub interface An ACL can protect against attempts to spoof an address outside the defined subnets for this sub interface but cannot be used to isolate a CPE to one subnet of the many in this situation The valid subnet for this CPE is not known in advance by the CMTS All the possible CPE subnets are known but which one is used by this CPE An ACL cannot be specified and is thus not appropriate in this case It is not until the modem is provisioned and allocated to an IP address space that attached CPE are allocated to an IP address space The use of submgmt filters in this case allows one of many predefined filters in the CMTS to now be applied based on the
334. etting Exceed Max US Bit 73011502 SYSLOG_WARNING Bad Guaranteed Min US CH Bit Rate Configuration setting Out of range 73011600 SYSLOG_WARNING Bad Max US CH Transmit Burst configuration setting Invalid format 73011601 SYSLOG_WARNING Bad Max US CH Transmit Burst configuration setting Out of range 73011700 SYSLOG_WARNING Invalid modem capabilities configuration setting 73011800 SYSLOG_WARNING Configuration file contains parameter with the value outside of the range 73020100 SYSLOG_WARNING REG REQ rejected Unspecified reason 73020101 SYSLOG_WARNING REG REQ rejected Unrecognized configuration setting 73020102 SYSLOG_WARNING REG REQ rejected Temporary no resource 73020103 SYSLOG_WARNING REG REQ rejected Permanent administrative 73020104 SYSLOG_WARNING REG REQ rejected Required parameter not present s 73020105 SYSLOG_WARNING REG REQ rejected Header suppression setting not supported 73020106 SYSLOG_WARNING REG REQ rejected Multiple errors 73020107 SYSLOG_WARNING REG REQ rejected Duplicate reference ID or index in message 73020108 SYSLOG_WARNING REG REQ rejected Parameter invalid for context Y os 73020109 SYSLOG_WARNING REG REQ rejected Authorization failure 73020110 SYSLOG_WARNING REG REQ rejected Major service flow error 73020111 SYSLOG_WARNING REG REQ rejected Major classifier error 73020112 SYSLOG_WARNING REG REQ rejected Major PHS rule error 73020113 SYSLOG_WARNING REG REQ rejected Multiple major errors 7302
335. example If the fastethernet sub interface is layer 2 bridge group member and has no IP address then at least one sub interface in the same bridge group must have an IP address for proxy to be enabled on that sub interface All cable sub inter faces in that bridge group then operate in active mode If the fastethernet sub interface is layer 3 routed then all routed cable sub interfaces operate in active mode In other words if a fastethernet sub interface is configured with an IP address and is within a bridge group then all cable sub interfaces within that bridge group operate in active mode instead Specifying the ip igmp proxy command automatically enables active IGMP routing mode on connected cable sub interfaces Use the ip igmp enable command on a per cable sub interface basis to enable IGMP processing ARRIS PROPRIETARY All Rights Reserved 10 191 10 Command Line Interface Reference Syntax 10 192 In passive mode cable group membership information is passed to the next upstream IGMP router using the connected fastethernet sub interfaces within the same bridge group When processing IGMP messages the cable interface tracks multicast group membership in a local IGMP database If a multicast stream has no subscribing hosts CPE or modem the C3 does not pass the multicast stream to the cable downstream Proxy aware cable sub interfaces also generate regular query messages down stream interrogating multicast
336. face Current IGMP version is 2 Interface IGMP joins 0 Packets dropped Bad checksum or length 0 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 gt show ip interface brief Syntax Interface bridge group 0 Cable 1 0 1 FastEthernet 0 0 Cable 1 0 FastEthernet 0 1 FastEthernet 0 1 4 Loopback 1 Loopback 5 C3 gt show ip rip Syntax Release 4 3 Standard C3 CMTS User Guide IGMP not enabled on subinterface 0 show ip interface brief Shows a summary of the current status of all IP interfaces including any configured bridge groups Sub interfaces within a bridge group are displayed after the bridge group number These are indented in the summary display to distinguish them from the routable sub interface Example C3 gt show ip interface brief IP Address OK YES Qe EDD YES 10 250 0 42 YES 10 250 150 2 YES 10425013032 YES 11 250 136 2 14 14 14 14 YES unassigned YES 3 295 3259 YES Method NVRAM NVRAM NVRAM NVRAM manual unset NVRAM Status Pro administratively down up up up administratively down up show ip rip database Displays routing parameters See also Router Configuration Mode page 10 248 ARRIS PROPRIETARY All Rights Reserved 10 19 10 Command Line Interface Reference show ip route Syntax show ip route connected ospf rip static summary Shows IP related information If no parameter is given this command w
337. face via the management interface to allow CM DHCP to be routed back here ip dhcp relay cable helper address 10 1 1 1 cable dhcp giaddr interface cable 1 0 1 all CPE traffic will default here bridge group 1 must have some form of vlan tagging use native format encapsulation dotlq 99 native ip address 192 168 253 2 255 255 255 0 IMPORTANT DHCP server must have static route to this interface via the management interface to allow CPE DHCP to be routed back here ip dhcp relay cable helper address 10 1 1 1 cable dhcp giaddr exit j exit exit write The following figure shows the same example as used above but in this case an ISP based DHCP server manages CPE IP addresses This example shows complete separation between CPE traffic and modem plus CMTS traffic ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 Configuration Release 4 3 Standard C3 CMTS User Guide Variations from the previous example now a separate ip route specification is used to tell the C3 how to find the ISP s 176 16 5 0 network Fastethernet 0 1 0 no longer needs ip bg to bg routing The CPE DHCP Renew does not use this interface For example ip route 176 16 5 0 255 255 255 0 192 168 253 1 K NOTE The fastethernet 0 0 0 sub interface still does not need an IP address Cable 1 0 1 has a 192 168 253 0 network address so bridge group 1 is known to be attached to this IP network thus the C3 can fin
338. factory default configuration as the fastethernet 0 0 IP address and also applies this IP address to the cable 1 0 0 sub interface this default configuration can be overwritten from the CLI BACKBONE fastethernet 0 0 no shutdown boot IP address bridge group 0 bridge 0 cable 1 0 Modem bridge group 0 default cpe subinterface cable 1 0 0 default cm subinterface cable 1 0 0 bridge 1 cable 1 0 1 Figure 4 5 Illustration of the factory default configuration i NOTE All the above settings may be changed at the CLI For example you can override the management IP address by a running configuration 4 8 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard C3 CMTS User Guide specification and subsequently save it to the startup configuration You could also assign that IP address to the FastEthernet 0 1 0 sub interface The following is an example network configuration and the CLI commands required to set it up a DEFAULT ROUTE L 10 99 99 1 Goreme 10 99 98 1 INTERNET F route add 10 99 98 0 via DHCP SERVER 10 99 99 1 OPERATOR 10 99 99 253 o 600000 oo DHCP ROUTER 10 99 98 1 1999 99 0 network PG SWITCH fastethernet 0 0 0 bridge group 0 ip address 10 99 99 253 i one DEFAULT ROUTE BadaeiO cable 1 0 0 10 99 99 1 ridge
339. fault cpe subinterface cable X Y Z is present in the Cadant C3 global configuration the C3 maps all CPE traffic from any modem that cannot be mapped to any sub interface to the this nominated default cable sub interface and hence to a default cable VPN Note this is a default mapping and is overridden by any VSE or map cpes based mapping If no other form of mapping is used then the default mapping is cable 1 0 0 the default cable sub interface The standard modem configuration file VSE mechanism to map a modem s CPEs to a particular subinterface has been augmented by the addition of command line facilities the cable modem VPN command When cable modem X X X registers traffic to and from all devices behind modem X X X will be mapped to the cable subinterface which has VLAN TAG configured This command is very useful when modem configuration file modifications are not possible or the number of cable modems is small If the cable modem in online when this command is issued no changes will take place until the cable modem is rebooted The C3 uses 802 1Q tags for verification and binding purposes If a mapped incoming frame has an 802 1Q tag the C3 verifies that the tag is correct for the mapped sub interface if the tag does not match the C3 drops the frame If the incoming frame has an 802 1Q header but this frame is mapped to a cable sub interface by a map cpes specification the mapped sub inter face must have a matching 802 1Q
340. febe0 896ee9a0 89ef4180 89521c40 89908200 89efc3b0 89620040 89613120 896f11f0 8956bcd0 89524ae0 8955c300 89571b40 8956eb50 8955ea00 895bd750 89568eb0 896dc220 8957 160 89575240 89557e60 895b54c0 89510eb0 895e48a0 895b9cd0 896c2 70 89606200 89603fb0 895e1ldf0 895d 340 895da430 89578280 8953e470 8957a8b0 895b26c0 8950c870 896becc0 89ed10e0 89efb0b0 Example memory option ARRIS PROPRIETARY All Rights Reserved 96 100 100 100 107 108 109 109 110 110 115 120 120 120 125 128 129 129 130 130 130 130 130 130 130 130 131 140 150 161 250 255 HAA ma a ea O ma O a eee ma a ea O ma a ea O ma a ea A ma a ea na O ea na O a O ea A ma ea O ma eee eee Ce eee Z D y ral x Gl A te te Oi te A AA A ee te ee A AA zZ ye te ry ty ee TA ey ee A Z END ag En ES D TO TO O Onor O K K K ES D K 813f9320 813f9320 813f9320 8132beb0 813 9320 8132beb0 8132beb0 813d88 0 8132beb0 8132beb0 8132beb0 813 9320 8132beb0 813 9320 813 9320 813 9320 813 9320 813d88 0 813 9320 813 9320 813 9320 813 9320 813 9320 8132beb0 813 9320 813d88 0 813 9320 813 9320 8132beb0 8132beb0 8132beb0 813d88 0 813d9430 813 9320 813 9320 8132beb0 813 9320 813 9320 813 9320 813d88 0 8103 224 89ef8400 89ef5848 89efe3e8 896ee3d8 89ef3fb0 89521a00 899080f0 89efc2c0 8961ff08 89612fe8 896f0f40 8956b
341. fically designed to protect the equipment from damage Save all shipping materials in case the product needs to be returned to the manufacturer for repair or upgrade Unpack the equipment carefully to ensure that no damage is done and none of the contents is lost The Cadant C3 package should contain the following items e Cadant C3 CMTS e Rack mounting ears and mounting screws e Power cord e Serial console cable e Safety and Quick Start guides If any of these items are missing please contact your ARRIS service repre sentative After unpacking the equipment but before powering it up the first time read this manual in its entirety then perform a visual inspection of the equipment as follows ARRIS PROPRIETARY All Rights Reserved 11 14 05 Mounting the CMTS Environmental requirements Procedure 3 1 Release 4 3 Standard C3 CMTS User Guide Look for the following potential problems e Physical damage to the chassis or components e Loose connectors e Loose or missing hardware e Loose wires and power connections If any of the above are found do not attempt to power on the CMTS Contact your local service representative for instructions The C3 CMTS is 1 75 in 4 4 cm high and is suitable for mounting in a standard 19 in 48 3 cm relay rack k NOTE Install the CMTS in a restricted access location Installation of the equipment in a rack should not restrict airflow where marked
342. fied cable modem Specify the TFTP server and dsc configuration file containing the dynamic service to change and one or two Service Flow IDs that this change applies to address dsa Initiate a Dynamic Service Deletion DSD for the dsd specified cable modem Specify one or two Service Flow IDs to delete Sets the maximum number of CPE devices allowed to communicate through the cable modem Use the max hosts keyword default to specify the default number of devices Adds the specified static IP address to the list of valid subscriber subscribers Use the keyword auto to automatically learn the subscriber s IP address ARRIS PROPRIETARY All Rights Reserved 11 14 05 calendar set Syntax cd Syntax Release 4 3 Standard C3 CMTS User Guide Keyword Description Sets the maximum number of consecutive failed ucc max failed Upstream Channel Change UCC attempts that a attempts modem is allowed before stopping further attempts Use a value of 0 for unlimited retries Maps all CPE behind a cable modem to a specific cable subinterface which has the specified native vian tag configured If the cable modem is online the mapping takes effect the next time the cable modem registers ACPE behind cable modem can only be mapped to one subinterface at a time Valid range of the VLAN TAG is 1 4094 Debug this command using the debug cable registration command vpn calendar se
343. flash disk a configuration problem may be preventing the C3 from accessing the new load or the load file itself may be corrupt Configuring the C3 to Boot from a TFTP Server Follow these steps to configure the C3 for network booting This procedure uses the IP address 10 1 12 5 and the file name C3_v04 03 00 32 as examples replace them with the IP address of your TFTP server and the actual software load file name Use the following commands to configure the C3 to boot from the image on the TFTP server C3 configure terminal C3 config boot system tftp C3_v04 03 00 32 bin 10 1 2 3 J C3 exit J A CAUTION Service affecting Perform the following step only during a scheduled maintenance window to minimize service disruptions During the maintenance window reboot the C3 using the reload command C3 reload Save configuration when rebooting Y N Y Are you sure you want to reboot the CMTS Y N Y Reload in progress CadantC3 shutting down 3 After the C3 finishes rebooting log in and use the show version command to verify that it is running the correct software image C3 gt show version ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide ARRIS CLI version 02 Application image 4 3 0 32 Sep 20 2005 15 26 37 BootRom version 1 26 VxWorks5 4 2 The Application image shows the software image version currently running If this does not correspond to the image on the TFTP server a network or
344. for information on their multicast memberships If the multicast group is not directly connected to the server then a proxy interface is needed One of the ethernet ports on the Ethernet interface must be designated as an IGMP proxy interface Membership groups must be assigned a Class D address The range is specified in RFC 1112 In Internet standard dotted decimal notation host group addresses range from 224 0 0 0 to 239 255 255 255 The address 224 0 0 0 is guar anteed not to be assigned to any group and 224 0 0 1 is assigned to the permanent group of all IP hosts including gateways This is used to address all multicast hosts on the directly connected network There is no multicast address or any other IP address for all hosts on the total Internet The addresses of other well known permanent groups are to be published in Assigned Numbers Addresses in the range from 224 0 0 0 to 224 0 0 255 are reserved for protocol use and can not be joined by hosts nor can traffic be forwarded between interfaces Any fastethernet sub interface on the C3 CMTS can be designated to proxy IGMP traffic for one or more interfaces For a fastethernet sub interface to be proxy enabled the sub interface must e have an IP address configured or e bea member of a bridge group with an IP address configured on at least one sub interface of the group The proxy interface must also have IGMP enabled Once an interface becomes a proxy interf
345. formation on external routes is not sent Instead there is a default external route generated by the area border router ABR into the stub area for destinations outside the area Specify the no summary option to prevent an area border router ABR from sending summary LSAs into the stub area i e creating a totally stubby area If the no form of this command is used without the no summary qualifier being specified the C3 reconfigures the specified stub area as a standard area Otherwise the generation of summary LSAs is enabled on the stub ABR ARRIS PROPRIETARY All Rights Reserved 10 257 10 Command Line Interface Reference default information Syntax no default information originate metric metric value metric type val always Allows an autonomous system boundary system ASBR to generate a default route into the OSPF routing domain Note that whenever you specifically configure redistribution of routes into an OSPF routing domain the router automatically becomes an ASBR However an ASBR does not by default generate a default route into the OSPF routing domain To force the generation of a default route into OSPF use default informa tion originate always If a static default route is configured this command behaves as before otherwise a LSA type 5 specifying the default route will be automatically generated In all cases to disable this feature use the no form of this command default metric
346. g cTapStreamIpStatus is included in this notification If the configured data stream is an IEEE 802 one the value of the corresponding cTapStream802Status is included in this notification This notification may be generated in conjunction with the intercept application which is designed to expect the notification to be sent as reliably as possible e g through the use of a finite number of retransmissions until acknowledged as and when such mechanisms are available For example with SNMPv3 this would be an InformRequest Filter installation can take a long period of time during which call progress may be delayed cTapMediationTimedOut 2 Release 4 3 Standard When an intercept is autonomously removed by an intercepting device due to the time specified in cTapMediationTimeout arriving the device notifies the manager of the action ARRIS PROPRIETARY All Rights Reserved H 9 H C3 CMTS Syslog Events and SNMP Traps Table H 5 iso 1 org 3 dod 6 internet 1 mgmt 2 mib 2 1 ifMIB 31 ifConformance 2 ifGroups 1 SNMP Trap OID SNMP Trap Description linkUpDownNotificationsGroup 14 The notifications which indicate specific changes in the value of ifOperStatus Table H 6 iso 1 org 3 dod 6 internet 1 snmpV2 6 snmpModules 3 snmpMIBObjects 1 snmpTraps 5 SNMP Trap OID SNMP Trap Description A cold start trap signifies that the SNMP entity supporting a notification originator application i
347. g domain It can be one of two values e 1 Type 1 external route e 2 Type 2 external route The default metric type is 2 route map Route map that should be interrogated to filter the importation of routes from this source routing protocol to the OSPF routing domain If not specified all routes are redistributed If this keyword is specified and an undefined route map is specified no routes will be imported tag A 32 bit field attached to each external route This is not used by the OSPF protocol itself It may be used to communicate information between AS boundary routers The default tag is 0 0 0 0 6 22 ARRIS PROPRIETARY All Rights Reserved 11 14 05 What CPE is attached to a modem Topics Changing the Upstream Channel Type DHCP Data Errors Upgrading Modem Firmware Provisioning Upstream Load Balancing Managing Cable Modems Page 23 24 27 This chapter discusses various aspects of cable modem management Proper management can result in a more efficient and secure network Use the show interface cable 1 0 modem 0 or show cable host commands Example C3 show interfaces cable 1 0 modem 0 SID Priv bits Type 1 0 modem 1 0 cpe State IP address method up 1017 208230 dhcp unknown 10 17 209 19 dhcp Examples c3 show cable host lt N N N N or H H H gt c3 show cable host MAC Address IP Release 4 3 Standard IP MAC address 10 17 208 230 Address of
348. g packets transmitted from that sub inter face but the tag number is still associated with the sub interface for internal processing purposes routing sub interface A sub interface that supports layer 3 routing The default sub interface behavior is layer 2 bridging sub interface A logical subdivision of a physical interface The C3 supports up to 64 sub interfaces per physical interface VLAN tag The VLAN ID used to associate a cable modem or CPE with a sub interface The tag can be specified either in 802 1Q VLAN encapsu lated packets or in native mode in the cable modem s VSE VSE Abbreviation for Vendor Specific Encoding The VSE is a TLV stored in the cable modem configuration file that specifies the VLAN ID used to associate the cable modem s CPE with a sub interface During modem registration this information is passed to the CMTS allowing the CMTS to map traffic through the modem to a nominated cable subinterface with a matching native VLAN tag 4 2 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Bridging Features The factory default operating mode of the C3 is bridging mode In general normal bridging operation should not be assumed e In no configuration does bridging occur between the two Fast Ethernet interfaces e Bridging between the FastEthernet interfaces and the cable interfaces is controlled by the selection of the boot option network interface when no s
349. ger32 0 65535 MAX ACCESS read create STATUS current DESCRIPTION The value of the Ethernet Protocol Identifier which may be found on Ethernet traffic or IEEE 802 2 SNAP traffic cTapStream802Entry 6 cTapStream802DestinationLlcSap OBJECT TYPE SYNTAX Integer32 0 65535 MAX ACCESS read create STATUS current DESCRIPTION The value of the IEEE 802 2 Destination SAP cTapStream802Entry 7 cTapStream802SourceLlcSap OBJECT TYPE SYNTAX Integer32 0 65535 MAX ACCESS read create STATUS current DESCRIPTION The value of the IEEE 802 2 Source SAP cTapStream802Entry 8 cTapStream802InterceptEnable OBJECT TYPE SYNTAX TruthValue MAX ACCESS read create STATUS current DESCRIPTION If true the tap enables interception of matching traffic If cTapStreamCapabilities flag tapEnable is zero this may not be set to false DEFVAL true cTapStream802Entry 9 cTapStream802InterceptedPackets OBJECT TYPE SYNTAX Counter32 MAX ACCESS read only STATUS current DESCRIPTION The number of packets matching this data stream specification that have been intercepted cTapStream802Entry 10 cTapStream802InterceptDrops OBJECT TYPE SYNTAX Counter32 MAX ACCESS read only STATUS current DESCRIPTION The number of packets matching this data stream specification that having been intercepted were dropped in the lawful intercept process cTapStream802Entry 11 cTapStream802Status OBJEC
350. ghts Reserved 11 14 05 C3 CMTS User Guide validate update source Perform sanity checks against source address of routing version C3 config router network RIP Syntax auto summary Syntax Release 4 3 Standard updates Set routing protocol version no network ipaddr wildcard disable Enables RIP routing on a network This is the only required router configura tion command to start routing Use network 0 0 0 0 255 255 255 255 to enable routing on all interfaces Note that jpaddr should be a network address of one of the fastethernet inter faces Use the no form of this command to disable routing on a network The wildcard is the inverse of a subnet mask for example if the subnet mask is 255 255 255 0 use 0 0 0 255 for the wildcard Use the disable keyword to turn off RIP on a subnet You can use this to turn off routing for a portion of a subnet noting that this specification may affect more than one sub interface network 10 1 0 0 0 0 255 255 L turn off RIP for this scope noting that more than one interface may match this scope network 10 1 36 0 0 0 0 255 disable this scope no auto summary Enables automatic network number summarization This can reduce the number of networks advertised by the C3 ARRIS PROPRIETARY All Rights Reserved 10 249 10 Command Line Interface Reference default information originate Syntax no default information originate Controls whether th
351. group membership from downstream IGMP hosts and possibly other downstream IGMP routers See also jp igmp page 10 204 mac address read only Not an actual command but shown in the system configuration as a comment for information purposes only speed speed 10 100 1000 Sets the speed of the interface in Mbps The duplex auto command auto matically sets the interface speed as well as the duplex mode Scope Not applicable to a fastethernet sub interface ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Common Interface Subcommands for Cable Interfaces only interface cable Syntax Release 4 3 Standard interface cable 1 0 s Enters configuration mode for the cable interface The only valid entry for a cable interface is cable 1 0 Example C3 gt enable Password C3 configure terminal C3 config interface cable 1 0 C3 config if For cable interfaces the following commands are available Some commands are not applicable to a sub interface where noted ARRIS PROPRIETARY All Rights Reserved 10 193 10 Command Line Interface Reference Cable Commands General Cable interface commands are grouped as follows Cable Commands General page 10 194 Cable commands DHCP page 10 215 Cable Downstream page 10 219 Cable Upstream page 10 226 arp broadcast echo Syntax no arp broadcast echo Controls whether ARP broadcasts received on the cable inte
352. guration User Interface SNMP DS1 Applications Provisioning Summary ARRIS PROPRIETARY All Rights Reserved C3 CMTS 10 6 10 12 10 27 10 46 10 98 10 176 10 178 10 180 10 248 A 1 B 2 B 13 B 14 B 18 C 1 C 2 C 2 C 3 C 4 11 14 05 C3 CMTS Table of Contents Example Modulation Profile D 2 Example Cable Modem Configuration File D 3 E SLEM MIB F Factory Defaults Default Configuration Listing F 2 Default Modulation Profiles F 18 G Configuration Forms Fastethernet 0 0 Configuration G 3 Fastethernet 0 1 Configuration G 4 Cable Configuration G 6 H C3 CMTS Syslog Events and SNMP Traps Syslog Events H 1 SNMP Traps H 7 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved vii Table of Contents C3 CMTS viii ARRIS PROPRIETARY All Rights Reserved 11 14 05 List of Figures Figure 2 1 Figure 2 2 Figure 2 3 Figure 3 1 Figure 3 2 Figure 3 3 Figure 3 4 Figure 3 5 Figure 3 6 Figure 3 7 Figure 3 8 Figure 4 1 Figure 4 2 Figure 4 3 Figure 4 4 Figure 4 5 Figure 4 6 Figure 4 7 Figure 4 8 Figure 4 9 Figure 4 10 Release 4 3 Standard Major components of the C3 CMTS Front panel of C3 Rear panel port identification Earthing using only DC power Example positioning of the M4 nut and lock washers Connector and pin locations Example of CATV System Connections CMTS rear view LCD location Rear panel connectors Rear cable connections Example of a bridge gr
353. h VSE information If no VSE messages are received from a modem during registration traffic from any attached CPE devices will be allocated using any cable modem vpn specification map cpes specification or default cpe subinterface specification If no default is specified the C3 automatically assigns cable 1 0 0 as the default sub interface Example Let us first review quickly how standard non DOCSIS aware DHCP servers allocate IP addresses DHCP servers use the giaddr IP address the relaying IP address to indi cate from which address pool an IP address should be allocated from It is thus important that the relaying address or the giaddr address be a mean ingful address on the relaying device Defining cable sub interfaces for CPE devices allows this to happen Each cable sub interface can have a different IP address specification with the IP address being used to populate the giaddr field as determined by the DHCP specifications of this sub interface configure terminal bridge 13 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 4 23 4 Bridge Operation map cpes 4 24 cable 1 0 0 for modem only bridge group 0 ip address 10 99 99 1 255 255 255 0 ip DHCP relay cable helper address 10 0 0 1 cable modem cable dhcp giaddr primary cable 1 0 11 for cpe with IP address bridge group 1 define ip address ip address 10 11 0 1 255 255 255 0 ip DHCP relay cable helper address 10 0 0 1 host c
354. hange with it This is primarily intended for use on subscriber interfaces and other places where routing is guaranteed to be symmetrical In both of these cases it is possible to have the same packet selected for intersection on both its ingress and egress interface Nonetheless only one instance of the packet is sent to the Mediation Device This value must be set when creating a stream entry either to select an interface to select all interfaces or to select the interface that routing chooses Some platforms may not implement the entire range of options 11 14 05 C3 CMTS User Guide REFERENCE RFC 1213 RFC 2096 cTapStreamIpEntry 2 cTapStreamIpAddrType OBJECT TYPE SYNTAX InetAddressType MAX ACCESS read create STATUS current DESCRIPTION The type of address used in packet selection DEFVAL ipv4 cTapStreamIpEntry 3 cTapStreamIpDestinationAddress OBJECT TYPE SYNTAX InetAddress MAX ACCESS read create STATUS current DESCRIPTION The Destination address or prefix used in packet selection This address will be of the type specified in cTapStreamIpAddrType DEFVAL t 00000000 H 0 0 0 0 pra cTapStreamIpEntry 4 cTapStreamIpDestinationLength OBJECT TYPE SYNTAX InetAddressPrefixLength MAX ACCESS read create STATUS current DESCRIPTION The length of the Destination Prefix A value of zero causes all addresses to match This prefix length will be consistent with the ty
355. hannels SCDMA up to 2 logical channels per upstream ATDMA up to 4 logical channels per upstream All TDMA types up to 4 logical channels per upstream Layer 2 bridging with static routing up to 128 static routes and DHCP relay Layer 3 IP routing with RIPv2 and OSPFv2 Hybrid Layer 2 Layer 3 operation 802 1Q VLAN support on cable and fastethernet sub interfaces each sub interface can have e one configured VLAN specification e up to 4 additional tags specified in a bridge bind e DHCP relay in layer 2 bridging and layer 3 IP routing mode e up to 3 types of DHCP helper address per sub interface and up to 5 addresses per type e support for DHCP relay address update based on cable modem or host DHCP request e support for DOCSIS option 82 update e IGMPv2 proxy ARRIS PROPRIETARY All Rights Reserved 11 14 05 Regulatory and Compliance Electrical Specifications Physical Specifications Environmental Specifications RF Specifications Upstream Release 4 3 Standard C3 CMTS User Guide EMC FCC Part 15 Class A CE DOCSIS 2 0 qualified Euro DOCSIS 1 1 qualified AC Power 100 to 240 VAC 10 2A 47 63 Hz DC Power 40 to 60 V 4A Power consumption 80 watts maximum DOCSIS 1 1 hardware 87 watts maximum DOCSIS 2 0 hardware Redundant powering available the C3 requires only one power supply to operate but can be configured with two power supplies DC and or AC for load sharing and
356. have VSE 3 This needs to be done per modem that is provisioned If a modem MAC address is not reserved in an address pool it gets the default modem policy defined above using basic DHCP processing rules matching giaddr to the available address pools If the default for an un provisioned modem is for Internet CPE then this default policy should specify the configuration file that has a VSE 1 DHCP for CPE devices attached to modems assigned to ISP RED or ISP BLUE are bridged and VLAN d directly to the ISP backbones for processing make sure in priv mode and in factory default before trying to paste the following j CONE E ARRIS PROPRIETARY All Rights Reserved B 15 B CMTS Configuration Examples Bridge Bridge Bridge Bridge j WNHRO no ip routing ip default gateway 10 6 0 2 j ISP RED requires DHCP rela how to find the ISP RED dh y so tell the C3 cp server network 55 0 204 3 4 5 ip route 204 6 6 0 255 255 2 l default cm sub interface cab set CPE default for ISP ac default cpe sub interface ca F py interface fa 0 0 0 bridge group 1 no ip address required as encapsulation dotlq 11 no management access exit j interface fa 0 0 1 bridge group 2 no ip address required as encapsulation dotlq 22 no management access exit j interface fa 0 0 2 bridge group 3 no ip address required as encapsulation dotlq 33 no management access exit int
357. hielded cable may be used For 1000BaseT use shielded category 5E wire The RF cable plant should be designed so that all RF ports connect to SELV circuits meeting the requirements of SELV as defined in UL60950 You must provide suitable protection between these ports and the CATV outside plant Table 3 2 Downstream RF cable plant requirements Parameter Value 88 to 858 MHz DOCSIS JDOCSIS 112 to 858 MHz EuroDOCSIS Frequency Range Carrier to Nose ratio at the RF input to the cable modem 30 dB 6 MHz DOCSIS JDOCSIS Channel bandwidth 8 MHz EuroDOCSIS Table 3 3 Upstream RF cable plant requirements Parameter Value 5 to 42 MHz DOCSIS 5 to 65 MHz EuroDOCSIS JDOCSIS Frequency Range Carrier to noise ratio at the RF input to the C3 At least 10 dB 200 KHz 400 KHz 800 KHz 1600 KHz Channel Bandwidth 3200 KHz 6400 KHz ARRIS PROPRIETARY All Rights Reserved 3 5 3 CMTS Installation CATV System Connections Unpacking the CMTS Package Contents Action 3 6 The C3 transmitter output is the downstream RF connection head end to subscriber The receiver inputs subscriber to head end are the upstream RF connections There are 2 upstream connections per upstream receiver module with a maximum of 6 upstream connections per CMTS Figure 3 4 Example of CATV System Connections The carton in which the Cadant C3 CMTS is shipped is speci
358. his command has implications in IGMP message processing as IGMP messages from hosts are not sent back downstream no ip throttle acl Enables IP throttling on the sub interface Use the no form of this command to disable IP throttling When a host on this sub interface sends IP packets at a rate exceeding the per second running credits the C3 applies the specified ACL to transmitted packets and drops those packets matching ACL criteria with an allow action See also 2 broadcast throttle page 10 209 throttle credits page 10 214 Packet Throttling page 8 34 no 12 broadcast echo Enables echoing of layer 2 broadcast packets to the downstream Use the no form of this command to disable broadcast echo ARRIS PROPRIETARY All Rights Reserved 11 14 05 12 broadcast throttle Syntax 12 multicast echo Syntax map cpes Syntax Release 4 3 Standard C3 CMTS User Guide no 12 broadcast throttle acl Enables Layer 2 broadcast throttling on the sub interface Use the no form of this command to disable broadcast throttling When a host on this sub interface sends broadcast packets at a rate exceeding the per second running credits the C3 applies the specified ACL to transmitted packets and drops those packets matching ACL criteria with an allow action See also jp throttle page 10 208 throttle credits page 10 214 and Packet Throttling page 8 34 no 12 multicast echo Enables echoing of layer 2 mult
359. his procedure to configure and connect the cable upstreams and downstream Appendix B shows some example configurations Appendix F shows the factory default configuration The factory default configuration has the downstream in a shutdown condition so the C3 is in a passive state by default Connect the downstream and any upstreams in use before performing this procedure The following diagram shows the locations of the cable connections on the rear panel of the C3 CMTS Cable 1 0 FE0 0 Fa Downstream Cable 1 0 Upstreams 0 5 Figure 3 8 Rear cable connections Perform the following tasks in the order shown e Configuring Downstream Parameters page 3 21 e Configuring Upstream Parameters page 3 22 e Enabling the Interfaces page 3 24 Configuring Downstream Parameters Follow these steps to configure the downstream cable interface Connect a PC to the CMTS using either the serial port or the Ethernet interface telnet connection Log into the CMTS Type enable to get into privileged mode and then type the enable password ARRIS PROPRIETARY All Rights Reserved 3 21 3 CMTS Installation gt Procedure 3 12 3 22 Use the following commands to begin cable interface configuration C3 conf t C3 config interface cable 1 0 Set the downstream frequency in Hz using the following command C3 config if cable downstream frequency freq Example cable downstream freque
360. his upstream or logical channel to string cable upstream differential encoding Syntax no cable upstream n c differential encoding Enable differential encoding Use the no form to turn off 10 230 ARRIS PROPRIETARY All Rights Reserved 11 14 05 cable upstream docsis Syntax C3 CMTS User Guide cable upstream n c docsis Sets this upstream or logical channel to standard DOCSIS 5 to 42 MHz oper ation See also cable upstream euro docsis page 10 232 cable upstream dominant interval Syntax Release 4 3 Standard cable upstream n c dominant interval default interval jitter Specifies the grant interval and jitter for the dominant UGS flow on the logical channel The parameters are Keyword Description Specifies the grant interval The default is the first grant interval interval admitted Specifies the allowable jitter for the dominant UGS flow type jitter on the logical channel The jitter value has a significant effect on the maximum grant size and minimum jitter supported for other grant intervals Default 2000 For aligned physical channels the interval and jitter should be the same for all channels in the group ARRIS PROPRIETARY All Rights Reserved 10 231 10 Command Line Interface Reference cable upstream euro docsis Syntax cable upstream n c euro docsis Sets this upstream or logical channel to EuroDOCSIS 5 to 65 MHz operation See also c
361. hods With multiple methods AAA capabilities can continue to operate even if some methods become unavailable due to network failures or configuration errors The order of methods in an AAA method list will dictate the order in which the methods must be applied nue server n 1 Local local authentication methods list server n password TACACS Authentication gt Group ae v gt TACACS ane A console vty 0 3 enable authentication methods list enable password Pe ee server 1 Figure 8 5 Method list example 8 44 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Line Operation CLI Infrastructure Release 4 3 Standard C3 CMTS User Guide Method 7 may be applied only if method 7 Z is unavailable For example the authentication method list tacacs local none implies that authen tication must first be attempted via a TACACS server group then via the local password file if the server group is unreachable and finally bypassed altogether if a local password file does not exist All AAA methods return either a reject service is denied or an accept service is allowed indication For example a TACACS query will return a positive or negative response while a local password file search yields either a match on user password or no match In a method list method n may be a
362. hts Reserved B 21 B CMTS Configuration Examples no ip 12 bg to bg routing no cmts management allowed no management access if required that VPN members get ip address from operator provisioning system add the following ip 12 bg to bg routing ip DHCP relay cable helper address 10 6 0 2 host cable DHCP giaddr primary exit Simple IP Routing This example is the equivalent of the bridging example given earlier in this Network chapter but in this case bridge groups are not used a pure routing model is used DEFAULT ROUTE O 10 1 1 1 a 10 55 1 2 z route p add 10 5 1 0 DHCP SERVER CABLE 255 255 255 0 10 1 1 2 10 1 1 1 l OPERATOR route p add 10 55 1 0 o os8085 86 5 DHCP ROUTER 255 255 255 0 10 1 1 2 40 55 1 0 l 0 99 98 1 l l network Pe o 000000 o0 SWITCH RE ar ae E Ree eee fastethernet 0 0 0 ip routing ip address 10 1 1 2 ip address 10 99 98 2 secondary ee l l l DEFAULT ROUTE cable 1 0 0 Qe 10 5 1 2 i l ip address 10 5 1 2 i KETA ip address 10 55 1 2 secondary iMod DHCP SERVER default cpe ocem 10 11 14 default cm Leen N IREE E ENEN E NEEE E AA CMTS bridge group 1 fastethernet 0 1 0 shutdown bridge group 1 shutdown Figure B 7 Example of a pure routing model make sure in privilege mode before running this script conf t
363. hyU hyU request request request initial initial initial station station station advP advP advP advP advP advP advP advP advP hys hys hys hyL hyL hyL hyU hyU hyU request request request initial initial initial station station station advPhys advPhysS advPhys advPhyL advPhyL advPhyL Ad Ad 5 Ad Ad 12 Ad Ad 0 Ad Ad 5 Ad Ad 5 Ad Ad 12 Ad Ad 16 Ad Ad 12 Ad Ad 0 Ad Ad 5 Ad Ad 5 Ad Ad 12 Ad Ad 5 Ad Ad 12 Ad Ad 0 Ad Ad 5 Ad Ad 5 Ad Ad 12 Ad Ad 16 vP vP 22 vP vP 7 16 vP vP vP vP 16 vP vP 34 vP vP 34 vP vP 7 vP vP 22 vP vP 7 vP vP 16 vP vP 34 vP vP 34 vP vP vP vP hy preambl hy ATDMA hy preambl hy ATDMA hy preamb 0 8 qpsk hy ATDMA hy preamb hy ATDMA hy preambl hy ATDMA hy preambl hy preambl hy ATDMA hy preamb hy ATDMA hy preamb 0 8 qpsk hy ATDMA hy preamb hy ATDMA hy preambl hy ATDMA hy preambl hy preambl hy ATDMA hy preambl hy ATDMA hy preamb 0 8 qpsk hy ATDMA hy preamb hy ATDMA hy preambl hy ATDMA hy preambl C3 CMTS User Guide hy ATDMA 5 1500 le type qpsk 0 0 8 qpsk scrambler 338 no diff 104 shortened 536 le type qpsk 8 0 8 qpsk scrambler 338 no diff 104 shortened 536 le type qpsk scrambler 338 no diff 64 fixed 536 le type qpsk 0 48 qpsk scrambler 338 no diff 640 fixed 536
364. icast packets to the downstream Use the no form of this command to disable multicast echo no map cpes cable 1 0 s Maps all CPE attached to a modem to the specified cable sub interface This command provides a static CMTS configured means to allocate incoming CPE packets to a defined sub interface based on modem IP address Use of this command implies modems are allocated to multiple subnets if more than ARRIS PROPRIETARY All Rights Reserved 10 209 10 Command Line Interface Reference 10 210 one CPE subnet is required as there needs to be a one to one match of modem to CPE sub interfaces The specified cable sub interface may or may not have an assigned IP address If the specified cable sub interface has an IP address and dhcp relay parame ters are configured for this cable sub interface this IP address will be the giaddr address for any relayed CPE DHCP Thus a simple non DOCSIS aware or standard DHCP server can be used that allocates IP address based on the incoming DHCP giaddr value If the specified sub interface does not have an IP address it is assumed that layer 2 traffic is being bridged and that the sub interface is a member of a bridge group You must specify encapsulation dotiq lt n gt native on such a sub inter face even though VSE encoding is not being used for the sub interface The VLAN specification is used internally by the C3 and also allows the use of the bridge bind command to bind this
365. id Displays the network settings for the cable modem with the specified SID Use SID O to list all SIDs Example C3 config if show interfaces cable 1 0 modem 0 SID Priv bits Type State IP address method MAC address 1038 0 modem up 10 16 246 225 dhcp 0000 ca24 482b 10 80 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide 1192 0 modem up 10 16 246 126 dhcp 0000 ca24 4a83 1124 0 modem up 10 16 246 189 dhcp 0000 ca24 43e7 1064 0 modem up 10 16 246 188 dhcp 0000 ca24 4670 1042 0 modem up 10 16 246 120 dhcp 0000 ca24 456d 8238 00 multicast unknown 230 1 2 3 static 0000 0000 0000 show interface cable 1 0 privacy Syntax show interface cable 1 0 privacy kek tek Displays privacy parameters Example C3 show interfaces cable 1 0 privacy Configured KEK lifetime value 604800 Configured TEK lifetime value 43200 Accept self signed certificates yes Check certificate validity periods no Auth Info messages received 0 Auth Requests received 0 Auth Replies sent 0 Auth Rejects sent 0 Auth Invalids sent 0 SA Map Requests received 0 SA Map Replies sent 0 SA Map Rejects sent 0 Example C3 show interface cable 1 0 privacy kek Configured KEK lifetime value 604800 Example C3 show interface cable 1 0 privacy tek Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 81 10 Command Line Interface Reference show interface cable 1 0 qos para
366. id for context 67021700 SYSLOG_WARNING DCC rejected message syntax error H 6 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Event Msg Num Severity Message Text 67021800 SYSLOG_WARNING DCC rejected message too big 67030100 SYSLOG_WARNING DCC RSP not received on old channel 67030200 SYSLOG_WARNING DCC RSP not received on new channel 67030300 SYSLOG_WARNING DCC RSP rejected unspecified reason 67030400 SYSLOG_WARNING DCC RSP rejected unknown transaction ID 67030500 SYSLOG_WARNING DCC RSP rejected authentication failure 67030600 SYSLOG_WARNING DCC RSP rejected message syntax error 67040100 SYSLOG_WARNING DCC ACK not received 67040200 SYSLOG_WARNING DCC ACK rejected unspecified reason 67040300 SYSLOG_WARNING DCC ACK rejected unknown transaction ID 67040400 SYSLOG_WARNING DCC ACK rejected authentication failure 67040500 SYSLOG_WARNING DCC ACK rejected message syntax error 0x90130100 SYSLOG_ERROR Source Verify Failure Spoofing CM Mac Count s 0x90130101 SYSLOG_ERROR Source Verify Failure Spoofing CPE Mac Count s 0x90130102 SYSLOG_ERROR Source Verify Failure IP Spoofing Count s 0x90130103 SYSLOG_ERROR Source Verify Failure Duplicate IP Count s 0x90130104 SYSLOG_ERROR Source Verify Failure Static IP Spoofing Count s 0x90130105 SYSLOG_ERROR Source Verify Failure Duplicate Static IP Count s 0x90130106 SYSLOG_ERROR
367. if you specify cable helper address You activate DHCP Relay on specific cable sub interfaces using the ip dhcp relay command in interface configuration mode there are also several options that can be activated individually on each sub interface The sections following describe these options and their uses The C3 knows the difference between a cable modem and a CPE device and can direct DHCP as a unicast to specific DHCP servers based on whether the DHCP message is coming from a cable modem or an attached host using the cable interface configuration command cable helper address ipaddr cable modem host assist the DHCP server to allocate different IP address spaces to cable modems and CPE devices using the cable interface configuration command cable dhcp giaddr policy primary round robin where policy Use secondary giaddr for CPE devices primary Use primary giaddr for all devices round robin Round robin on subinterface addresses for use as CM DHCP giaddr assist the subscriber management systems by telling the DHCP server what cable modem a host CPE is attached to and identifying a CPE device attached to a cable modem by using the cable interface config uration command ip dhcp relay information option DHCP unicast renew is intercepted and forwarded not bridged to the required destination address regardless of the CPE or CM default route settings Where the destination address or the gateway to
368. ile in global configuration mode use the following command to create or remove the global TACACS server timeout ARRIS PROPRIETARY All Rights Reserved 8 47 8 Configuring Security Specifying the TACACS Source Interface TACACS Server Groups Defining TACACS Server Group Membership Defining TACACS Server Hosts 8 48 Enter the command no tacacs server timeout lt timeout gt where Keyword Description timeout Set the default TACACS server timeout While in global configuration mode use the following command to create or remove the TACACS source interface Enter the command no ip tacacs source interface lt subinter face name gt where Keyword Description Name of the interface that TACACS uses for all of its outgoing packets subinterface name While in global configuration mode use the following command to create or delete a TACACS server group Enter the command no aaa group server tacacs lt group name gt where Keyword Description tacacs Uses only the TACACS server hosts Character string used to name the group of roup name g p servers While in TACACS group server configuration mode use the following command to assign or remove a server to a server group Enter the command no server lt ip address gt where Keyword Description ip address IP address of the selected servers While in global configuration mod
369. ill show all known routes The optional parameters are Keyword Description connected Shows connected networks ospf Shows routes learned through OSPF rip Shows routes learned through RIP static Shows static routes summary Shows a count of all known networks and subnets Example C3 gt show ip route Codes C connected S static I IGRP R RIP M ICMP B BGP FE EGP G GGP O OSPF ES ES IS IS IS IS Gateway of last resort is 192 168 253 70 to network 0 0 0 0 192 168 253 0 24 is subnetted 1 subnet C 192 168 253 0 24 is directly connected FastEthernet 0 0 C3 gt See also jp route page 10 143 show ip ssh Displays currently active connections to the SSH server See also show ssh page 10 24 10 20 ARRIS PROPRIETARY All Rights Reserved 11 14 05 show ipc show key chain show memory show ntp Release 4 3 Standard C3 CMTS User Guide Displays inter process communications information This command is intended only for CMTS debugging use Displays the configured key chains See also key chain page 10 176 Displays current and cumulative memory usage Example C3 gt show memory status bytes blocks avg block max block current free 98231520 5 19646304 98230848 alloc 2946192 1367 2155 cumulative alloc 3707728 6254 592 C3 gt Displays NTP server details Example C3 gt show ntp ARRIS PROPRIETARY
370. in RSA or DSA format from c ssh cmts_dsa_pubkey pem or c ssh cmts_rsa_pubkey pem respectively The second form of this command displays the installed RSA public key for the specified C3 user ID See also clock timezone page 10 34 Identical to show context ARRIS PROPRIETARY All Rights Reserved 10 15 10 Command Line Interface Reference show hardware 10 16 Displays a list of hardware installed in the CMTS with revision information and serial numbers where appropriate Example C3 gt show hardware Arris C3 CMTS Serial 312 Component Serial HW Rev SW Rev WAN CPU 000312 unavailable N A Cable N A A N A Upconverter N A 6 N A Extender N A 2 7 FPGA S W N A N A 5 Processor Module BCM1250 CPU 1250 A8 A10 Nb core 2 L2 Cache OK Wafer ID 0x2C6C4019 Lot 2843 Wafer 2 Manuf Test Bin A 2CPU_FI FD F2 OK Cpu speed 600 Mhz SysCfg 000000000CDB0600 PLL DIV 12 IOBO DIV CPUCLK 4 IOB1 DIV CPUCLK 3 Module Description Serial PCB Assy PCB Assy Number Revision Number MAC BCM3214 Rev A3 N A N A N A Downstream BCM3040 Rev AO N A N A N A Upstream Slot 0 BCM3140 Rev A3 212013 2 ARCT00842 Upstream Slot 1 BCM3140 Rev A3 211054 A ARCT00480 Upstream Slot 2 BCM3140 Rev A3 211154 A ARCT00480C3 gt ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide show history Displays a list of recently entered commands Example C3 gt show history sho
371. ing Amber CMTS is booting STATUS Green Normal operation Flashing Red CMTS fault detected Downstream output with signal level Bei attenuated by 30 dB Traffic LED flash rates The Traffic LED flashes at variable rates to indicate the relative amount of data flowing through the CMTS The following table interprets the LED flash rate Table 2 3 LED flash rates Traffic Rate Flash Rate gt 2000 packets per second 50 milliseconds gt 1000 packets per second 100 milliseconds gt 500 packets per second 150 milliseconds 2 6 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Table 2 3 LED flash rates Traffic Rate Flash Rate gt 300 packets per second 200 milliseconds gt 100 packets per second 250 milliseconds gt 10 packets per second 300 milliseconds less than 10 packets per second 500 milliseconds 0 packets per second not flashing Rear Panel Cable 1 0 Downstream Serial oJ oe lI The following diagram shows the locations of ports on the rear panel Debug LEDs DC power Compact FE1 FEO AC power Flash TT Cable 1 0 Upstreams 0 5 IF Fuses Figure 2 3 Rear panel port identification The following table describes the ports on the rear panel Table 2 4 Rear panel ports Port FE1 Interface 10 100 1000Base T interface FEO
372. ing commands configure ACLs to provide the functionality described above Requirement Block any CPE from accessing the cable modem address space Block CPE access to the DHCP server address space j j except for DHCP Block CPE from access to CMTS 192 168 0 2 port configure terminal deny cpe on on cable 1 0 1 access to any modem subnets access list 101 deny ip 10 1 0 0 0 0 255 255 10 0 0 0 0 0 255 255 access list 101 deny ip 10 1 0 0 0 0 255 255 10 2 0 0 0 0 255 255 deny cpe on cable 1 0 1 ip access to 10 99 99 0 network access list 101 deny ip 10 1 0 0 0 0 255 255 10 99 99 0 0 0 0 255 deny cpe on cable 1 0 1 ip access to 192 168 0 2 access list 101 deny ip 10 1 0 0 0 0 255 255 192 168 0 2 0 0 0 0 permit cpe on cable 1 0 1 dhcp access to 10 99 99 0 network access list 101 permit udp 10 1 0 0 0 0 255 255 10 99 99 150 0 0 0 0 eq bootpe permit all remaining ip remember that the last ACE is always an implicit deny all access list 101 permit ip any any j deny cpe on cable 1 0 3 access to any modem subnets access list 103 deny ip 10 3 0 1 0 0 255 255 10 0 0 0 0 0 255 255 access list 103 deny ip 10 3 0 1 0 0 255 255 10 2 0 0 0 0 255 255 access list 103 deny ip 10 4 0 1 0 0 255 255 10 0 0 0 0 0 255 255 access list 103 deny ip 10 4 0 1 0 0 255 255 10 2 0 0 0 0 255 255 deny cpe on cable 1 0 3 access to 10 99 99 0 network access list 103 deny ip 10 1 0 0 0 0 255 255 10 99 99 0 0 0 0 255 Release 4 3 Standar
373. ing configuration Displays the running configuration on the console CLI This command may be abbreviated to show run show snmp server Displays the SNMP configuration as it is specified in the running configuration 10 96 ARRIS PROPRIETARY All Rights Reserved 11 14 05 show startup configuration C3 CMTS User Guide Displays the startup configuration on the console CLI Note that this is not necessarily the same as the running configuration Appendix C contains an example showing the factory default configuration show tech support Prints a very detailed listing of C3 status for technical support purposes This is a compilation of the following reports show version show running config show interfaces show controllers show cable modem show cable modulation profile show interfaces cable 1 0 downstream show interfaces cable 1 0 upstream show processes show processes memory show memory show bridge show environment show snmp show users show terminal show IPC show file systems show file descriptors Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 97 10 Command Line Interface Reference Mode 5 10 98 Global Configuration Commands To access this mode enter the configure terminal command from privileged mode In Global Configuration mode the prompt is C3 config In this mode many normal user and privileged mode commands are available Return to privileged mode by
374. initial initial station station station advPhysS advPhys advPhysS 220 0 8 16qam scrambler 338 no diff 192 shortened AdvPhy TDMA amp ATDMA 1 1536 AdvPhy preamble type qpskl 12 78 6 8 64qam scrambler 338 no diff 104 shortened AdvPhy TDMA amp ATDMA 1 1536 AdvPhy preamble type qpskl 16 220 0 8 64qam scrambler 338 no diff 104 shortened AdvPhy TDMA amp ATDMA 1 1536 AdvPhy preamble type qpskl 12 78 0 8 64qam scrambler 338 no diff 104 shortened AdvPhy ATDMA 536 AdvPhy preamble type qpsk0 0 16 0 8 qpsk scrambler 338 no diff 64 fixed AdvPhy ATDMA 536 AdvPhy preamble type qpsk0 5 34 0 48 qpsk scrambler 338 no diff 640 fixed AdvPhy ATDMA 536 AdvPhy preamble type qpsk0 5 34 0 48 qpsk scrambler 338 no diff 384 fixed AdvPhy ATDMA 536 AdvPhy preamble type qpskl 12 78 6 8 64qam scrambler 338 no diff 104 shortened ARRIS PROPRIETARY All Rights Reserved 11 14 05 ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca CTOOTVDO DD TO ODA DO FTO ODDO TO XOXO DOO ODO TODO DO TOHVODXVD OOOO ODODOOOO ooo o moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa m
375. interface fa 0 1 0 description MANAGEMENT bridge group 0 ip 12 bg to bg routing ip address should be in subnet of DHCP server ip address 10 99 99 2 255 255 255 0 management access exit interface cable 1 0 0 Get basic rf running no cable upstream 0 shutdown no shutdown no management access description ISP1_CPE for CPE devices for ISP1 ip address 10 1 0 1 255 255 0 0 no management access set up dhcp relay for CPE devices ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no ip dhcp relay information option all cm with VSE tag of 11 will cause all attached CPE to be mapped to this interface encapsulation dotlq 11 native add to bridge group to get bridged eth access bridge group 1 exit interface cable 1 0 2 description ISP2_CPE for CPE devices for ISP2 ip address 10 2 0 1 255 255 0 0 no management access ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no ip dhcp relay information option encapsulation dotlq 22 native bridge group 1 exit interface cable 1 0 3 description ISP3_CPE for CPE devices for ISP3 ip address 10 3 0 1 255 255 0 0 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 5 19 5 Providing Multiple ISP Access 5 20 no management access ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no ip dhcp relay information option encapsulation dotlq 33 native bridge group 1 exit
376. ion Thus native tagging is a means to identify traffic that has arrived at a particular cable sub interface This native tagging can also be used to map CPE traffic to a cable sub interface During registration with the CMTS all modems send a Vendor ID TLV identifying the modem vendor to the CMTS in addition to any information received by the modem in the configuration file sent to the modem A cable modem configuration file may have added to it Vendor Specific Encoding VSE that can be used to send proprietary information to a vendor s modems If a modem receives such information and this informa tion has a vendor_id that does not match that of the modem vendor the modem ignores this information Thus a single configuration file may contain vendor specific information for multiple vendors without any impact on modems without a matching vendor_id This is the original purpose of this DOCSIS feature Regardless of whether the modem has a matching vendor_id to the config uration file specified vendor specific information or not the modem must under DOCSIS specifications send all such received information to the CMTS during registration This means that the C3 receives all vendor specific information that the modem received in its configuration file K NOTE The C3 ignores all other vendor specific information for example the C3 ignores a Thomson vendor_id This mechanism thus provides a method to transfer information from a mo
377. ion measures should be taken with this supply The equipment rack the ARRIS Cadant C3 CMTS is mounted in should have a separate safety ground connection This ground should be wired in accordance with National Electric Code NEC requirements for domestic applications and paragraph 2 6 of EN60950 IE950 for international appli cations The safety ground wire must be 6 AWG or larger and it must connect the equipment rack directly to the single point ground in the service panel The single point ground can be an isolated ground or the AC equipment ground in the service panel or transformer Depending on the distances between the cabinets and the location of the service panel the wiring can be either daisy chained through the cabinets or run independently from each cabinet to the service panel ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide The remaining non RF and non AC supply connections of the ARRIS Cadant C3 CMTS should be made by SELV rated circuits Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 1 5 1 About this Manual 1 6 ARRIS PROPRIETARY All Rights Reserved 11 14 05 2 About the C3 CMTS Release 4 3 Standard Getting Started Topics Page About the C3 CMTS 1 Fast Start 2 Introducing the ARRIS Cadant C3 CMTS 2 Major Components of the Cadant C3 CMTS 8 This chapter introduces the ARRIS Cadant C3 Cable Modem Termination System CMTS and provides background information abou
378. ional Constants Release 4 3 Standard C3 CMTS User Guide To configure a sub interface to operate in PTMP non broadcast mode the ip ospf network point to multipoint non broadcast sub interface configura tion command is used Applying this command on an OSPF sub interface operating in OSPF broadcast mode will have the following operational effects e All existing adjacencies with neighboring OSPF routers on the sub interface will be broken e The network LSAs associated with the sub interface primary and secondary addressed configured in OSPF will be deleted e The router LSA will be updated to include host entries for the OSPF enabled IP addresses configured on the sub interface e OSPF adjacencies will only be formed with neighboring OSPF routers which are configured using the neighbor OSPF configuration command With this implementation of OSPF no distinction is made on interface types All interfaces automatically default to operate in OSPF broadcast mode However in the normal operation of OSPF over broadcast networks the following multicast addresses are used 224 0 0 5 AllSpfRouters 224 0 0 6 AllDrRouters This means that unless a cable modem is capable of bridging these multi cast addresses it is not possible to successfully run OSPF broadcast mode on cable sub interfaces In these circumstances it is possible to run OSPF over cable sub interfaces by configuring them to operate in point to multi point non broa
379. iple ISP Access for information about using bridge groups to separate traffic and provide cable modem access to multiple ISPs Chapter 6 IP Routing for information about the C3 s optional IP routing mode Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 4 1 4 Bridge Operation Terms and Abbreviations The following are terms and abbreviations used in this chapter booting interface The Fast Ethernet interface specified in the boot options Use the wan command to specify fastethernet 0 0 or mgmt to specify fastethernet 0 1 bridge binding Bridge binding maps a sub interface A with VLAN tag ato a sub interface Bwith VLAN tag b packets with tag a arriving on sub interface A are immediately bridged to sub interface Bwith tag 4 and vice versa No other layer 2 bridging rules are followed bridge group A group of sub interfaces that may forward bridge packets to other sub interfaces in the group There is no interaction between bridge groups at the MAC level default cm subinterface A designated sub interface used for cable modem traffic until the cable modem receives an IP address from a DHCP server default cpe sub interface A designated sub interface used as a source sub interface for CPE traffic when it has no VLAN tag or other explicit mapping using the map cpes command or VSE method native tagging Cisco routing nomenclature sub interfaces using native tagging do not actually ta
380. ir dir Removes the specified directory The C3 does not remove a non empty directory script start file Starts recording a command script to the specified file script execute file Executes a recorded script in the specified file ARRIS PROPRIETARY All Rights Reserved 10 43 10 Command Line Interface Reference script stop send Syntax test cable ucc cable Syntax 10 44 Finishes recording a command script send all console vty0 vtyl vty2 vty3 message Sends a text message to the specified CLI users Example C3 send all testing KK KK xxx Message from vty0 to all terminals K K testing C3 test cable ucc cable x y z Tests the specified cable interface ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide undebug Syntax undebug Turns off debugging facility write Syntax write memory terminal network file erase Writes the running configuration or erases the startup configuration based on the argument If no argument is used this command saves the running config uration to the startup configuration to disk The options are Keyword Description memory Saves the running configuration to the startup configuration to disk terminal Displays the running configuration on the terminal network Saves the running configuration to the specified file The file may be a path on the Compact Flash disk or
381. is Management Traffic Release 4 3 Standard Figure 4 7 Data flow when FastEthernet 0 1 is the boot interface In this example DHCP relay must be turned on in the cable 1 0 1 sub interface specification if CPE DHCP is to be served by a DHCP server on the fastethernet 0 1 sub interface MGMT port In addition ip 12 bg to bg routing must be enabled on the fastethernet 0 1 0 sub interface for the CPE DHCP Renew to succeed The DHCP Relay function relays the Renew from cable 1 0 1 to the fastethernet 0 1 0 sub interface The DHCP Renew ACK received at the fastethernet 0 1 0 sub interface must be routed across bridge groups to cable 1 0 1 and the ACK function is not destined for cable 1 0 1 but it is destined for the CPE Since the ACK is not relayed by the DHCP Relay function and must be routed by the C3 the fastethernet 0 1 0 must have ip I2 bg to bg routing acti vated For more information see the network examples in Appendix B Software releases prior to v3 0 locked the user into accepting cable modem traffic as management traffic This software release allows the user to decide what is management traffic e CMTS traffic only or e CMTS and cable modem traffic ARRIS PROPRIETARY All Rights Reserved 4 11 4 Bridge Operation By defining the default cable sub interface for modem traffic to be different than the default for CPE traffic modem traffic can be removed from the bridge group that contains the CPE traffi
382. isioning 2 The docsDevSwAdminStatus MIB object automatically resets itself to ignoreProvisioningUpgrade 3 If desired set the docsDevSwAdminStatus MIB object to allowProvisioningUpgrade 2 to allow software updates via the configuration file End of procedure Provisioning Upstream Load Balancing Load Balancing Methods How Load Balancing Works Release 4 3 Standard Load balancing offers the ability to distribute modems in different ways across grouped upstream channels Use this procedure to provision upstream load balancing The C3 offers the following load balancing methods none The C3 assigns cable modems to the upstream specified in the CM provisioning file or the first available upstream if none is provisioned Once the cable modem has registered the C3 does not attempt to move it until rebooted starts initial ranging initial The C3 assigns cable modems to the upstream with the fewest number of cable modems currently assigned Once the cable modem has registered the C3 does not attempt to move it until rebooted starts initial ranging periodic The C3 initially assigns cable modems to the upstream with the lowest traffic levels then periodically reassigns cable modems based on current traffic levels Before load balancing takes place the C3 detects whether the modem is DOCSIS 2 0 compliant if it is the C3 assigns those modems to DOCSIS 2 0 channels Periodic load balancing requires an u
383. ist Defines what ranges of IP addresses can perform gets sets or receive notifications from SNMP A user must be part of a group which defines what type of transactions that user may perform Use snmp server group to create groups The snmp access list option applies only to notifications and defines which notifications receivers can receive notifications from that user This argument is optional and if it is left out then all notification listeners are notified from the user Valid notifications receivers are defined by a list of rows in iso dot org dod internet snampV2 snmpModules snmpNotification ARRIS PROPRIETARY All Rights Reserved 10 165 10 Command Line Interface Reference snmpNotifyObjects snmpNotifyTable Each row in this table is identified by a tag and defines the notification trans port model This table is not editable from the C3 CLI but the C3 predefines two rows whose tags are Trap and Inform the name implies the notification model See snmp server host page 10 168 for more information Users are unique and are stored in the SNMP table iso dot org dod internet snmpV2 snmpModules snmpUsmMIB usmMI BObjects usmUser usmUserTable SNMPv3 uses a user security model for transactions A user is defined by a security name and a security model SNMPv1 SNMPv2 SNMPv3 etc SNMPv1i and SNMPv2 use a community string instead of a user Thus the C3 automatically converts a user name to a co
384. istributed static routes Valid range is 1 to 16777215 This metric overrides the configured default metric value Use the no redistribute static metric command to revert to the default metric value without disabling the redistribution of the static routes A metric type can be specified for these redistributed OSPF routes The uses of this option are explained in the section Route redistribution Use the no redistribute static metric type command to revert to the default metric type i e 2 without disabling the redistribution of the static routes Disable redistribution of static routes by using the no redistribute static command ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS List of CLI Commands Oo ON AU hWN WWNHNNNNNNNNNBP KP PP SP BE EF Be RFP OoOuoMmMAnN aU RPWNRFRFOUVUAN OU PWN FS CO aaa authentication enable aaa authentication login aaa new model access list alias area authentication area default cost area nssa area stub arp arp timeout arp broadcast echo auto summary banner boot system flash boot system tftp bridge bridge aging time bridge find bridge mode bridge group cable dci upstream disable cable dhcp giaddr cable docsisi0 max traffic burst cable downstream admission control cable downstream admission limit cable downstream annex cable downstream channel width cable downstream frequency cable downstream if frequency cable downstream interleave depth Rele
385. it j interface fastethernet 0 1 0 management ip address of cmts ip address 10 99 99 69 255 255 255 0 make a routed sub interface no bridge group no shutdown management access exit j interface cable 1 0 0 for modems make a routed sub interface no bridge group no cable upstream 0 shutdown no cable upstream 1 shutdown no shutdown ip address 10 1 0 1 255 255 0 0 no management access ip dhcp relay ip dhcp relay information option cable dhcp giaddr primary cable helper address 10 99 99 150 exit j interface cable 1 0 1 for PPPOE based CPE devices no ip address required no management access bridge group 1 encapsulation dotlq 11 native exit j interface cable 1 0 2 for IP based CPE devices no bridge group ip address 10 13 0 1 255 255 0 0 encapsulation dotlq 22 native no management access ip dhcp relay cable helper address 10 99 99 150 cable dhcp giaddr primary exit j exit Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved B 27 B CMTS Configuration Examples B 28 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C Wireless Cable Applications Topics Page Overview 1 Feature Summary 2 Configuration 2 User Interface 3 This appendix describes features related to wireless cable support in the C3 Overview The C3 includes extensions to DOCSIS 1 1 to support deployments in a wireless environment The extensions are primarily to the downstream PHY
386. ith the DOCSIS 2 0 RF card The C3 CMTS works on any cable system with any DOCSIS or EuroDOCSIS compliant modems The basics of commissioning the Cadant C3 CMTS are covered in Chapter 3 and a complete example of a bench top installation is also provided in Appendix B Introducing the ARRIS Cadant C3 CMTS 2 2 The C3 is a flexible powerful and easy to use Cable Modem Termination System CMTS It is DOCSIS 1 1 DOCSIS 2 0 and EuroDOCSIS 1 1 qual ified and compliant with EuroDOCSIS 2 0 standards which includes spec ifications for features such as security enhancements telephony QoS and tiered services The C3 has dual 10 100 1000 Mbps Ethernet interfaces and supports a 64 or 256 Quadrature Amplitude Modulation QAM cable TV downstream channel and up to six variable rate Quadrature Phase Shift Keying QPSK or 8 16 32 or 64 QAM upstream channels Easy to use system manage ment tools include an industry standard command line interface ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard C3 CMTS User Guide Table 2 1 C3 Features and Benefits Features Advanced TDMA support 8QAM 32QAM and 64QAM 200 KHz to 6 4 MHz channel width Benefits Designed from the ground up to support advanced symmetrical data rate applications based on the DOCSIS 1 0 1 1 and 2 0 specifications while maintaining compatibility with existing modems Delivers superior performance in real world cable plants th
387. l Example of the equivalent routing version of simple bridging Example of a hybrid operation ARRIS PROPRIETARY All Rights Reserved 9 8 9 9 9 10 9 14 9 19 9 20 9 21 9 22 B 2 B 7 B 9 B 11 B 13 B 19 B 22 B 24 B 26 xi List of Figures C3 CMTS xii ARRIS PROPRIETARY All Rights Reserved 11 14 05 4 About this Manual Topics Page Scope In this Document Conventions Used in This Manual For More Information FCC Statement bh fbf U N fF Safety Scope This document provides necessary procedures to install operate and troubleshoot the ARRIS Cadant C3 CMTS in a DOCSIS or EuroDOCSIS compatible environment It is intended for cable operators and system administrators who configure and operate the CMTS It is assumed the reader is familiar with day to day operation and maintenance functions in networks that rely on TCP IP protocols and hybrid fiber coax HFC cable networks This document applies to version 4 3 of the CMTS software including minor revisions and point releases Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 1 1 1 About this Manual In this Document This manual provides the following content Chapter 2 Getting Started provides a brief overview of the Cadant C3 CMTS and its components Chapter 3 CMTS Installation describes how to unpack and install the CMTS including how to bring up the CMTS from an out of box condition to full ope
388. l logging severity 4 no local trap sys vol logging severity 5 no local trap sys vol logging severity 6 no local no trap no sys no vol logging severity 7 no local no trap no sys no vol See also e og page 10 38 ogging severity page 10 149 logging thresh page 10 151 ogging trap page 10 152 logging syslog page 10 150 logging syslog Syntax no logging syslog host ipaddr level Enables syslog logging to the specified IP address or set the syslog logging severity level 0 to 7 Use the no form of this command to clear the syslog IP address If no IP addresses are specified the C3 sends no syslog messages 10 150 ARRIS PROPRIETARY All Rights Reserved 11 14 05 logging thresh Syntax Release 4 3 Standard C3 CMTS User Guide logging thresh all at eventsl below events2 interval sec none Limits the number of event messages generated The parameters are Keyword Description all Blocks logging of all events at Sets the number of events to allow Valid range O to 2147483647 events below Maintains logging below this number of events per interval Valid range O to 2147483647 events interval Sets the event logging event interval used with below Valid range 1 to 2147483647 seconds none Sets the logging threshold to be unconstrained Factory default settings are e logging thresh none e logging thresh interval 1 e logging severity 0 local no trap no sys no v
389. l Displays information on all method lists authentication Optional Displays information on authentication lists Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 8 49 8 Configuring Security 8 50 ARRIS PROPRIETARY All Rights Reserved 11 14 05 9 Service Procedures Topics Page Removing Power for Servicing 2 Resetting the Power Supplies 3 Replacing a Power Supply 4 Fan Tray Replacement 5 Replacing the Battery 5 Replacing the RF Card 8 Replacing Fuses 9 Resetting the CMTS after Thermal Overload 10 Upgrading the CMTS Software 11 Enabling Licensing Features 17 The procedures in this chapter cover basic maintenance and upgrade tasks Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 9 1 9 Service Procedures Removing Power for Servicing Front Panel Removal and Replacement Action 9 2 To disconnect power from the C3 for servicing remove both power leads AC and DC from the rear of the chassis Removing the face plate can be done during normal system operation without any adverse impact Locate the indentation on the right side of the CMTS front panel Latch Figure 9 1 Front panel latch Press the indentation to release the latch and then pull the right side of the faceplate away from the CMTS To reinstall the faceplate place the left edge of the faceplate against the front of the fan tray so that the faceplate is at a 45 degree angle to the front of
390. laton datg 99 00 IT aR RR a O fastethernet 0 0 1 10 33 0 1 posS peas sea aay CPE and MODEM encapsulation dotiq 88 cable 1 0 0 10 1 0 0 network DHCP TFTP es i DEFAULT ROUTE TOD no bridge group I 10 101 m cable 10 1 fastethernet 0 1 0 CMTS 5 l Modem DHCP SERVER ip address 10 99 99 69 bridge group 1 a 10 99 99 150 no bridge group ip routing encapsulation dot1q 11 native 4 cable 1 0 2 10 3 0 1 16 Legend encapsulation dotiq 22 native ip route 0 0 0 0 0 0 0 0 10 33 0 253 p 3 Modem DHCP traffic configuration PPPoE traffic configuration IP based CPE traffic configuration Figure B 9 Example of a hybrid operation configure terminal turn on simple snmp access snmp server community public ro snmp server community private rw I cli account arris password arris cli account arris enable password arris line vty timeout 0 line console timeout 0 exit ip routing set default route for CPE ip traffic gateway ip route 0 0 0 0 0 0 0 0 10 33 0 253 I factory defaults bridge 0 bridge 1 I interface fastethernet 0 0 bridge group 1 no IP address required no shutdown no management access encapsulation dotiq 99 exit I interface fastethernet 0 0 1 ip address 10 33 0 1 255 255 0 0 no shutdown B 26 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide no management access encapsulation dotlgq 88 ex
391. le VPN sub interfaces are bridged using bridge groups or IP routed to FastEthernet sub interfaces The C3 FastEthernet sub interfaces use 802 1Q to propagate the bridged cable VPN traffic into the operator backbone by maintaining privacy using 802 1Q tagging For Open Access purposes we only consider bridged cable sub interfaces as discussed above 5 4 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Using the Modem IP Address to allocate CPE to a VPN Release 4 3 Standard This example uses the C3 map cpes command Modems are issued IP addresses in different subnets Modems are mapped to cable sub interfaces by matching the assigned modem IP address to a matching cable sub interface subnet Modem cable sub interfaces in turn have a map cpes specification that maps all CPE traffic for CPE attached to these modems to the cable sub interface specified by the map cpes command Items to note in the following example Select the no ip routing mode of operation This allows the CPE default route or gateway to be specified by the cable operator in the DHCP options given to the CPE and to be different to any IP addressing on the C3 Normally the CPE default route should be directed to the gateway router of the ISP the CPE is to be provisioned to use All CPE traffic is bridged thus layer 2 protocols are supported A default cable VPN has been created for un provisioned subscribers This cable VPN maps to an Ethe
392. ler 338 no diff 640 fixed cable modulation profile 40 station AdvPhy SCDMA no trell 5 no spr 2 cable modulation profile 40 station AdvPhy preamble type qpsk0 cable modulation profile 40 station 5 34 0 0 qpsk scrambler 338 no diff 384 fixed cable modulation profile 40 advPhyS AdvPhy SCDMA no trell 5 spr 2 cable modulation profile 40 advPhyS AdvPhy preamble type qpskl cable modulation profile 40 advPhyS 12 78 10 0 64qam scrambler 338 no diff 64 shortened cable modulation profile 40 advPhyL AdvPhy SCDMA no trell 5 spr 2 cable modulation profile 40 advPhyL AdvPhy preamble type qpskl cable modulation profile 40 advPhyL 16 220 0 0 64qam scrambler 338 no diff 64 shortened cable modulation profile 40 advPhyU AdvPhy SCDMA no trell 5 spr 2 cable modulation profile 40 advPhyU AdvPhy preamble type qpskl cable modulation profile 40 advPhyU 12 78 0 0 64qam scrambler 338 no diff 64 shortened cable frequency band cable frequency band cable frequency band cable frequency band cable frequency band cable frequency band j start 1800000 stop 68200000 start 1800000 stop 68200000 start 1800000 stop 68200000 start 1800000 stop 68200000 start 1800000 stop 68200000 start 1800000 stop 68200000 Nuk WNP PRPrPRPP PR no cable group 1 load balancing Ino cable group 1 description no cable group 2 load balancing Ino cable group 2 description F 16 ARRIS PROPRIETARY All Rights Reserved 11 14 05 no cable group 3 load balancing Ino ca
393. lients and one private not distributed that the C3 uses to decrypt incoming traffic Server key or session key A key that the C3 creates for each SSH session to encrypt outgoing traffic This key is regenerated periodically for added security The following shows the default values of the SSH server Use the config uration level command show ssh to see current settings SSH daemon disabled Version configured 1 99 SSH1 and SSH2 Authentication timeout 0 secs Authentication retries 3 TCP port in use 22 Secure CLI access _ disable Secure FTP access disable The C3 supports both RSA and DSA key formats 11 14 05 Procedure 8 1 Procedure 8 2 Release 4 3 Standard C3 CMTS User Guide The default key size is 1024 bits which provides commercial grade encryption Larger key sizes require a great deal of time and C3 processing resources to generate and DSA keys require more time to generate than RSA Worst case a 2048 bit DSA key requires nearly 12 minutes 950 seconds with no connected cable modems or IP traffic Perform the following procedures as necessary Generating SSH Keys The C3 is not shipped with generated keys Follow these steps to generate keys to enable SSH usage If you have not done so already type the following commands to enter configuration mode C3 gt enable Password your password C3 config t The prompt changes to config Enter the comm
394. ling type one of Type Definition UGS Unsolicited grant UGS AD Unsolicited grant with Activity Detection best effort Best effort ARRIS PROPRIETARY All Rights Reserved 11 14 05 cable submgmt Syntax Release 4 3 Standard C3 CMTS User Guide Type Definition non real time polling Non real time polling real time polling Real time polling status option Set the operating status of this entry one of activate deactivate or destroy tos overwrite mask AND this mask with the ToS field Valid range 0x1 to Oxff upstream Specifies that this is an upstream service class no cable submgmt option Enables or disables subscriber management The cable modem may receive subscriber management TLVs in its configura tion file The cable modem passes that information to the CMTS during the registration process The default options specify the default behavior of the C3 if it receives no subscriber management information during modem registration Where such information is received during registration that information overrides the defaults In this manner a provisioning system retains control over CMTS behavior with respect to enforcing Cable modem and CPE IP filters Maximum number of CPE per cable modem Fixing the CPE IP addresses allowed to be attached to the cable modem or allowing learnable IP addresses See also cable submgmt default filter group page 10 125 and Ch
395. ll upstream channels including logical channels and the downstream channel on the cable interface The parameters are Keyword Description 1 65535 seconds The maximum value is 65535 seconds default Default value is 30 seconds Use the no cable max qos terminal command to disable this feature The display the current value check the running config of the CMTS using the filter show running configuration include qos active cable modem offline aging time Syntax Release 4 3 Standard cable modem offline aging time tt Changes the offline aging time The C3 removes cable modems from its data base once they have been offline for the specified amount of time Specify the time in seconds 3600 to 864000 10 days The default is 86400 24 hours A value of zero is not supported If the aging time is changed the C3 restarts the aging timer for all modems currently offline ARRIS PROPRIETARY All Rights Reserved 10 115 10 Command Line Interface Reference cable modulation profile Syntax 10 116 One of cable modulation profile p default prof cable modulation profile p IUC advphy feclen maxburst guard time modulation scram seed diff prelen lastcw cable modulation profile p IUC fec_t feclen maxburst guard time modulation scram seed diff prelen lastcw cable modulation profile p IUC advphy atdma depth blksize cable modulation
396. lt active Syntax no cable submgmt default active Specifies that all modems and CPE devices are managed at the headend with the defined defaults This command establishes defaults for subscriber management If the C3 receives subscriber management information during registration that informa tion overrides the defaults for this modem and attached CPE cable submgmt default cpe ip aging interval Syntax cable submgmt default cpe ip aging interval time Sets the CPE IP aging time in seconds Aging must be enabled using the cable submgmt default qpe ip aging interval page 10 125 command for this command to have any effect Default 14400 seconds 4 hours cable submgmt default filter group Syntax Release 4 3 Standard cable submgmt default filter group cm cpe upstream downstream groupid Assigns default filters The filter groups themselves can be created via SNMP or using the cable filter group command See also Filtering Traffic page 8 7 cable filter group page 10 107 show cable filter page 10 56 ARRIS PROPRIETARY All Rights Reserved 10 125 10 Command Line Interface Reference cable submgmt default learnable Syntax no cable submgmt default learntable Enables automatic subscriber address learning use no cable submgmt learntable to disable This command establishes defaults for subscriber management This informa tion can also be received from a modem during the modem regi
397. lue use the no form of this command Route Maps This section will not describe how the Route Map is used instead it will only focus on the features which pertain to Route Map and route map entries These features are the creation deletion and modification of a route map entry and the creation and deletion of a Route Map It is important to note that the Route Map is completely independent from any entity on the C3 Defined Route Maps are saved at C3 shutdown and restored from the startup configuration at C3 initialization If a Route Map is deleted any references made by it to other system features such as ACLs will not be affected If there are features enabled which use the Route Map these features will still be enabled but the application will now reference an Inactive Route Map In this way if the Route Map is ever defined again it will immediately be made available for use by the applications which previously used it Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 6 17 6 IP Routing Route Map Entry Actions Creating deleting route maps and route map entries Route map Sequence Numbers 6 18 Route Maps and their entries are defined in the config route map mode of the CLI Any changes made to a route map entry from this CLI configuration is only applied after the user exits from this mode Route Maps and their entries can only be deleted from the config mode of the CLI and are applie
398. m n c Enters configuration mode for the selected upstream The parameters are Keyword Description n The physical upstream Valid range 0 to 5 The logical upstream channel applies only to certain upstream commands Specifying a logical channel in a cable upstream command automatically creates the channel Valid range 0 to 3 To delete a logical channel use the no form of this command for example no cable upstream 0 2 deletes logical upstream channel 2 on upstream 0 cable upstream admission control Syntax no cable upstream n admission control pct Specifies the level of oversubscription allowed on the physical upstream For example a value of 300 means that the C3 allocates 33 100 300 of the configured minimum bit rate worst case to each modem Valid range 100 to 10000 Omit the percentage to disable oversubscription Use the no form of this command to allow unlimited oversubscription 10 226 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable upstream admission limit Syntax no cable upstream n admission limit pct Limits the bandwidth usage by services using reserved bandwidth on the phys ical upstream such as UGS flows for telephony to the specified percentage Valid range O to 99 percent Use the no form of this command to allow unlim ited usage cable upstream channel type Syntax Release 4 3 Standard cable upstream n c channel
399. m guard 2 no cable upstream 1 0 ingress cancellation no cable upstream 1 0 impulse mitigation cable upstream 1 0 safe config cable upstream 1 0 extended frequency detect all ranging cable upstream 1 0 concatenation cable upstream 1 0 fragmentation cable upstream 1 0 data backoff automatic cable upstream 1 0 range backoff automatic cable upstream 1 0 contention opp latency 10000 cable upstream 1 0 contention opps with data required cable upstream 1 0 rate limit cable upstream 1 0 status activate no cable upstream 1 1 description cable upstream 1 1 shutdown no cable upstream 1 1 snmp trap link status cable upstream 1 1 channel type SCDMA cable upstream 1 1 scdma active codes 126 cable upstream 1 1 scdma codes per slot 2 cable upstream 1 1 scdma frame size 16 cable upstream 1 1 scdma hopping seed 0 cable upstream 1 1 modulation profile 6 no cable upstream 1 1 pre equalization cable upstream 1 1 trigger index 0 cable upstream 1 1 snr timeconstant 4 cable upstream 1 1 mer timeconstant 8 cable upstream 1 1 rng prm guard 1 cable upstream 1 1 nrng prm guard 0 no cable upstream 1 1 ingress cancellation no cable upstream 1 1 impulse mitigation cable upstream 1 1 safe config cable upstream 1 1 extended frequency detect all ranging cable upstream 1 1 concatenation cable upstream 1 1 fragmentation cable upstream 1 1 data backoff automatic cable upstream 1 1 range backoff automatic cable upstream
400. m the rest of the OSPF domain To do this enable OSPF on the necessary RF subnets in passive mode using the network command ARRIS PROPRIETARY All Rights Reserved 6 7 6 IP Routing Limitations Loopback Interfaces 6 8 There are two ways to set up OSPF route redistribution depending on the number of subnets to advertise e If the number of RF subnets to be advertised are small like single 10 5 6 0 24 secondary subnet on the cable 1 0 10 sub interface put the subnet under OSPF using the network 10 5 6 7 0 0 0 0 area 100 command declare the cable 1 0 10 sub interface and other sub interfaces if needed as passive using the passive interface cable 1 0 10 command e If the number of RF subnets to be advertised is large make all subnets passive by default using the passive inter face default command cover all necessary subnets by appropriate network commands declare all necessary subnets which expect to have OSPF neigh bors as active using no passive interfaces X commands K NOTE If the redistribute connected command is used to advertise RF subnets the following problems are created e The C3 floods the subnets throughout the OSPF domain using Type 5 LSAs This flooding greatly increases the LinkState DB and Route Table sizes e The C3 propagates every subnet flap over the entire OSPF domain OSPF limitations are e 5000 router network LSAs e 7000 external LSAs A loopback interface is a s
401. m802DestinationAddress and cTapStream802SourceAddress must be specified Matching traffic on the interface pointed to by the dotldTpFdbPort values associated with those values is intercepted whichever is specified If dotldTpFdbPort changes either by operator action or by protocol events the interface will change with it This is primarily intended for use on subscriber interfaces and other places where routing is guaranteed to be symmetrical In both of these cases it is possible to have the same packet selected for intersection on both its ingress and egress interface Nonetheless only one instance of the packet is sent to the Mediation Device This value must be set when creating a stream entry either to select an interface to select all interfaces or to select the interface that bridging learns Some platforms may not implement the entire range of options REFERENCE RFC 1493 cTapStream802Entry 3 cTapStream802DestinationAddress OBJECT TYPE SYNTAX MacAddress MAX ACCESS read create STATUS current Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved E 13 E SLEM MIB E 14 DESCRIPTION The Destination address used in packet selection cTapStream802Entry 4 cTapStream802SourceAddress OBJECT TYPE SYNTAX MacAddress MAX ACCESS read create STATUS current DESCRIPTION The Source Address used in packet selection cTapStream802Entry 5 cTapStream802EthernetPid OBJECT TYPE SYNTAX Inte
402. mble type qpskl advPhyL 16 150 0 0 64qam scrambler 338 no diff 128 shortened advPhyU AdvPhy SCDMA no trell 5 spr 2 advPhyU AdvPhy preamble type qpskl cable modulation profile cable modulation profile cable modulation profile cable modulation profile cable modulation profile cable modulation profile cable modulation profile cable modulation profil cable modulation profil cable modulation profil cable modulation profil cable modulation profil cable modulation profil cable modulation profile cable modulation profile cable modulation profile cable modulation profile cable modulation profile cable modulation profile cable modulation profile cable modulation profile cable modulation profile cable modulation profile cable modulation profile cable modulation profile BPWWWWWWWWWWWWwWwWwwnwnwwwwwwwwww w O IO IO OOO IO IO IO IO IO IO IO IO IO IO IO O WO CO CO CO COC WO OO cable modulation profile advPhyU 12 78 0 0 64qam scrambler 338 no diff 128 shortened cable modulation profile request AdvPhy SCDMA no trell 5 spr 2 cable modulation profile 40 request AdvPhy preamble type qpsk0 cable modulation profile 40 request 0 16 0 0 qpsk scrambler 338 no diff 64 fixed cable modulation profile 40 initial AdvPhy SCDMA no trell 5 no spr 2 cable modulation profile 40 initial AdvPhy preamble type qpsk0 cable modulation profile 40 initial 5 34 0 0 qpsk scramb
403. me Sets the time in seconds to use as an interval for load averaging on this inter face Valid range 30 to 600 seconds management access no management access If specified for an interface this command blocks all telnet or SNMP access through this interface If specified in ip routing mode ARP ICMP replies and DHCP are still allowed so that modems can acquire to a cable interface even if no manage ment access is specified If specified on an interface including sub interfaces specifying management access blocks routing to this interface across bridge group boundaries that would otherwise be possible ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide A CAUTION Loss of access possible If you use the no form of this command on the interface being used for management the CMTS blocks subsequent management access The serial port always allows management access See also access ist page 10 100 gos trust cos Syntax no qos trust cos Allows 802 1ip fields to be passed unchanged through the interface Use the no form of this command default to zero 802 1p fields in IP packets exiting the interface snmp trap link status Enable link traps Common Interface Subcommands for fastEthernet Interfaces only interface fastethernet Syntax interface fastethernet 0 y s Enters configuration mode for the specified FastEthernet interface The valid interface numbers are
404. mented burst size for upstream data on the logical channel You may need to set this parameter on channels carrying a large amount of UGS traffic to allow cable modems to send DHCP requests and thus complete registration Use the DHCP request size for DOCSIS 1 1 or 2 0 cable modems or 1522 MAC overhead for DOCSIS 1 0 modems Default 600 Specifying a large value impacts UGS capacity ARRIS PROPRIETARY All Rights Reserved 10 237 10 Command Line Interface Reference cable upstream minislot size Syntax cable upstream n c minislot size m Specifies the minislot size for the logical channel in 6 25 microsecond inter vals Allowed values are 128 64 32 16 8 4 2 and 1 cable upstream modulation profile Syntax cable upstream n c modulation profile p channel type type Selects the modulation profile for this logical channel Valid range 1 to 10 The optional channel type parameter sets the modulation scheme one of atdma scdma tdma or tdma amp atdma See also cable modulation profile page 10 116 cable upstream nrng prm guard Syntax cable upstream n c nrng prm guard symbols Sets the number of guard symbols in the non ranging preamble 10 238 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable upstream periodic maintenance interval Syntax cable upstream n periodic maintenance interval p Sets the periodic ranging interval for the physical upstream Valid
405. ments received in an authentication reply override the associated line s provisioned parameters for the duration of the associated session This section identifies changes in CLI infrastructure as well as new or changed CLI commands By default no local user IDs exist Most customers view default user IDs and passwords as a security threat As such the C3 s skeleton database and its software executable will not contain user IDs or passwords ARRIS PROPRIETARY All Rights Reserved 8 45 8 Configuring Security Common CLI Commands for AAA Enabling AAA on a system Maintaining Login Authentication Method Lists 8 46 CLI commands are provided to e configure TACACS servers and TACACS server groups The command is a privileged command and will be available in global configuration mode It supports the creation and deletion of TACACS servers and groups For TACACS servers it supports the configura tion of IP addresses port numbers shared secrets and timeout values and must optionally allow assignment to a server group e display the status all configured TACACS servers and groups The command is a non privileged command The information displayed includes the operational parameters associated measurements and reachable unreachable status of each server e configure authentication method lists The command is a privileged command and is available in global configuration mode It supports the creation and deletio
406. meout period vt100 colours Enable ANSI colours width Set width of window ARRIS PROPRIETARY All Rights Reserved 11 14 05 Syntax Syntax Syntax Syntax Syntax Release 4 3 Standard C3 CMTS User Guide terminal length n Sets the number of lines that will be displayed before the user is prompted with MORE to continue terminal output Valid entries of 0 or 2 512 are acceptable terminal no monitor Directs debugging output to the terminal window the default is to send debug information only to the serial port Use the no form of this command to stop debugging information from being sent to the current terminal session terminal no timeout n Automatically disconnect terminal sessions if left idle for more than the speci fied number of seconds 0 to 65500 Setting the timeout value to 0 or using the no form of this command disables inactive session disconnection terminal no vt100 colours Enables or disables ANSI color output terminal width n Sets the width of displayed output on the terminal Valid entries of 1 512 are acceptable ARRIS PROPRIETARY All Rights Reserved 10 11 10 Command Line Interface Reference modez User Mode SHOW Commands show show aliases 10 12 Displays information about the system The following options are available C3 gt show aliases arp bootvar calendar clock context crypto exception hardware history ip Ipe key memory ntp
407. mmand line The C3 provides output filtering commands You can use them to reduce the amount of output sent to the screen by certain commands You specify output filtering by appending a vertical bar character to the end of a command followed by the filtering command and its arguments The output filtering commands are begin include and exclude The help command prints a brief summary of the commands Example C3 show run begin Begin with the line that matches include Include lines that match exclude Exclude lines that match Filtering Previous Lines 10 4 Use the begin command to suppress output until an output line matches the specified string Example C3 show run begin interface Cable interface Cable 1 0 cable insertion interval automatic cable sync interval 10 cable ucd interval 2000 cable max sids 8192 cable max ranging attempts 16 cable map advance static cable downstream annex B etc ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Including Matching Lines FastEthernet 0 0 FastEthernet 0 1 Cable 1 0 Cable 1 0 Cable 1 0 Cable 1 0 Cable 1 0 Cable 1 0 Cable 1 0 Cable 1 0 Interface Cable 1 0 Cable 1 0 Cable 1 0 Cable 1 0 Cable 1 0 Cable 1 0 Cable 1 0 Cable 1 0 Cable 1 0 Release 4 3 Standard Use the include command to display only output lines matching the specified string Example C3 show access lists interface match
408. mmary unregistered columns cols snr count verbose Displays information about the specified cable modem or all registered cable modems if no modem is specified The options are cable 1 0 View all modems on the cable interface options limited to registered and unregistered cable 1 0 upstream n View all modems on the specified upstream options limited to registered and unregistered Valid range 0 to 5 ARRIS PROPRIETARY All Rights Reserved 10 59 10 Command Line Interface Reference 10 60 detail Displays information including the interface that the modem is acquired to the SID MAC concatenation status and the received signal to noise ratio ipaddr Optional IP address of modem to view macaddr Optional MAC address of modem to view offenders Displays modems that have had spoofing attempts detected and dropped by the cable source verify feature the Offenders column and packets throttled by the throttling feature Broadcast throttled and IP throttled columns registered Displays registered modems online or online pt and does not display the earlier states All states are displayed by show cable modem without any modifiers summary Displays the total number of modems the number of active modems and the number of modems that have completed registration unregistered Displays modems which have ranged but not yet regis tered including offline modems count Specify a maximum number of cable modems
409. mmunity string when a SNMPv3 message is converted to SNMPv2 and vice versa Example C3 config snmp server user MyCommunity MyGroup v2c access list Trap snmp server notif sec model Syntax no snmp server notif sec model security identifier user name string vl v2c v3 security model vl v2 usm auth priv Defines a notification security model entry with identifier security identifier and assigns this model to user name string A notification security model entry is used to define the parameters for the creation of traps and inform packets for a security model SNMPv1 SNMPv2 10 166 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide SNMPv2c SNMPv3 etc Those required parameters are a security model user and one of the following authentication and privacy combinations e no authentication no privacy e need authentication no privacy e no authentication need privacy e need authentication need privacy The authentication and privacy schemes are selected in the user definition SHA1 MD5 etc for authentication and DES etc for privacy Only an SNMPv3 notification security model supports authentication and privacy schemes hence no combination needs be specified for SNMPv1 SNMPv2 or SNMPv2c models whose schemes defaults to no authentication no privacy However for these models a community string is required which is specified by the security name in the user definiti
410. moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa ud ud ud ud ud ul ul ul ul ul ul ud ud ud ud ud ud ul ul ul ul ul ul ud ud ud ud ud ud ul ul ul ul ul ul ud ud ud lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil Le Le Le Le Le lation profil DDNDDADAAAAAVAARAANANUUKUHTH HHH SP SFP SHH A NONDNNNNNNNNNNNNN DN NY NONNHNNNNNNNNN DN DN NONNNNNNNNN DN NH initial 5 34 0 48 qpsk scrambler 338 no diff 640 fixed station AdvPhy TDMA station 5 34 0 48 qpsk scrambler 338 no diff 384 fixed short AdvPhy TDMA short 8 78 10 8 16
411. moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa ud ud ud ud ud ul ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil Lation lation profil lation profil lation lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil profil profil Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le lation profil Release 4 3 Standard 35 35 35 35 35 35 35 35 35 35 35 35 36 36 36 36 36 36 36 36 36 36 36 36 36 36 36 36 36 3
412. modem Type ARRIS PROPRIETARY All Rights Reserved MAC address 0000 ca30 326c 0000 ca30 326d 7 1 7 Managing Cable Modems 10 17 209 19 learned c3 show cable host 0000 ca30 326c MAC Address IP Address Type 10 1720919 learned Using DOCSIS 2 0 Upstreams Setting the Configuration File Configuring a Modulation Profile Limitations The C3 supports up to 4 classifiers per service flow Several steps must be taken to use a DOCSIS 2 0 modem in ATDMA or SCDMA mode on a C3 upstream e Configure an ATDMA or SCDMA capable modulation profile in the C3 e Configure the upstream with a modulation profile containing ATDMA or SCDMA burst descriptors e Configure the Upstream channel type for ATDMA or SCDMA operation The cable modem configuration file should either omit TLV 39 D2 0 Enable or specify a value of 1 to enable the cable modem to use DOCSIS 2 0 upstreams Table 7 1 Cable modem configuration file parameters Parameter Value Type 39 Length 1 Value 1 for DOCSIS 2 0 To disable DOCSIS 2 0 mode for cable modems registering with the C3 set the value for TLV 39 to O in the cable modem configuration file The C3 has a short cut method for creating an ATDMA or SCDMA modula tion profile Create a new modulation profile using one of the following commands conf t cable modulation profile 3 atdma cable modulation profile 3 scdma Assign the new modulation profile to the required upst
413. modem provisioning This filter group would act on CPE packets and accept any packet with a source IP address in a subnet and drop all other packets The CMTS can have pre defined in it all such possible filters one per CPE subnet The correct filter group number for the desired valid CPE subnet is then referenced in the modem configuration file and passed to the CMTS during modem registration i e after the modem registers with the CMTS this filter group number will be assigned to any CPE attached to this modem The result being even if a static IP address is given to a CPE it will not provide any network access unless within the correct subnet ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide r Ter q DEFAULT ROUTE DEFAULT ROUTE L 10 1 0 1 11 10 3 0 1 DHCP SERVER i i DHCP SERVER e 10 99 99 150 l 10 99 99 150 DHCP TFTP TOD Gateway J l 192 168 0 1 Vl 10 99 99 150 11 CPE1 I CPE2 10 1 0 0 ni 10 3 0 0 cable 1 0 0 10 0 0 1 16 network Vl network cable 1 0 1 10 1 0 1 16 cable 1 0 2 10 2 0 1 16 T 1 i 1 fastethernet 0 0 cable 1 0 3 10 3 0 1 16 10 0 0 0 iI 10 2 0 0 192 168 0 2 network lI networl l Il fastethernet 0 1 10 99 99 2 CMTS l Modem1 I Modem2 DEFAULT ROUTE DEFAULT ROUTE 10 0 0 1 1l 10 2 0 1 L Jl l Figure 8 1 Simplified network diagram Sample ACL definition The follow
414. modulation profile 32 station AdvPhy preamble type qpsk0 cable modulation profile 32 station 5 34 0 0 qpsk scrambler 338 no diff 384 fixed cable modulation profile 32 advPhyS AdvPhy SCDMA no trell 5 spr 2 cable modulation profile 32 advPhyS AdvPhy preamble type qpskl cable modulation profile 32 advPhyS 12 100 10 0 qpsk scrambler 338 no diff 64 shortened 32 advPhyL AdvPhy SCDMA no trell 5 spr 2 32 advPhyL AdvPhy preamble type qpsk1l 32 advPhyL 5 220 0 0 qpsk scrambler 338 no diff 64 shortened 32 advPhyU AdvPhy SCDMA no trell 5 spr 2 cable modulation profile 32 advPhyU AdvPhy preamble type qpskl cable modulation profile 32 advPhyU 12 78 0 0 qpsk scrambler 338 no diff 64 shortened cable modulation profile 33 request AdvPhy SCDMA no trell 5 spr 2 cable modulation profile 33 request AdvPhy preamble type qpsk0 cable modulation profile 33 request 0 16 0 0 qpsk scrambler 338 no diff 64 fixed cable modulation profile 33 initial AdvPhy SCDMA no trell 5 no spr 2 cable modulation profile 33 initial AdvPhy preamble type qpsk0 cable modulation profile 33 initial 5 34 0 0 qpsk scrambler 338 no diff 640 fixed cable modulation profile 33 station AdvPhy SCDMA no trell 5 no spr 2 cable modulation profile 33 station AdvPhy preamble type qpsk0 cable modulation profile 33 station 5 34 0 0 qpsk scrambler 338 no diff 384 fixed cable modulation profile 33 advPhyS AdvPhy SCDMA no trell 5 spr 2 cable modulation profile 33 advPhyS AdvPhy preamble type qpskl cable mod
415. mset Syntax C3 show interface cable 1 0 qos paramset Sched Prio MaxSusRate MaxBurst Sfid 1 1 1 32769 32769 32769 C3 10 82 Type Name Act Adm Prov Act Adm Prov Configured TI show interface cable 1 0 qos paramset sfid verbose EK lifetime valu 43200 Displays QoS parameters for the cable interface or the specified service flow ID The verbose option provides a more detailed listing Example Dir US US US DS DS DS T HG zZ A GaquwWww Zz A zZ A 1 Or Oe Or eS 1000000 1000000 1000000 5000000 5000000 5000000 3044 3044 3044 3044 3044 3044 ARRIS PROPRIETARY All Rights Reserved MinRsvRate OO OOOO 11 14 05 show interface cable 1 0 service flow C3 CMTS User Guide Syntax show interface cable 1 0 service flow sfid classifiers counters qos verbose Displays service flow statistics for the cable interface The options are Keyword Description sfid Displays statistics for the specified Service Flow ID or all Service Flows if none is specified classifiers Displays information about CfrId Sfid cable modem MAC address Direction State Priority Matches counters Displays service flow counters Counters are Packets Bytes PacketDrops Bits Sec Packets Sec The verbose option is not available for counters qos Displays statistics for all Service FLow IDs Sfid Dir Cur
416. mtsDynServRspFailTrap Dynamic Service response fail 5 cmtsDynServAckFailTrap Dynamic Service ACK fail 6 cmtsBpilnitTrap BPI initialization 7 cmtsBPKMTrap Baseline Privacy Key Management 8 cmtsDynamicSATrap Dynamic Service Addition 9 cmtsDCCRedqFailTrap Dynamic Channel Change request fail 10 cmtsDCCRspFailTrap Dynamic Channel Change response fail 11 cmtsDCCAckFailTrap Dynamic Channel Change ACK fail ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide mac address table Syntax mac address table static lt n n n gt Creates a static FDB entry to the specified MAC address mib ifTable Syntax mib ifTable index down_ifAdmin test_ifAdmin up_ifAdmin disable ifLinkTrap enable ifLinkTrap alias Sets or overrides the administrative state of an interface The parameters are Keyword Description The ifIndex of the interface to change 1 The FEO Ethernet port fastethernet 0 0 index 2 The FE1 Ethernet port fastethernet 0 1 3 The MAC layer cable interface 4 The downstream cable interface 5to 10 Thee upstream cable interfaces 11 to 35 The upstream cable logical channels down_ifAdmin Sets the interface state to administratively down up_ifAdmin Sets the interface state to administratively up test_ifAdmin Sets the interface state to administratively test Will not generate traps if this interface changes state disable_ifLinkTrap This is the default
417. munity using the docsDevNmAccess group MIBs from either a MIB Browser in an SNMP manager or by specifying the MIB in the configuration file The following table describes CM states and descriptions reported by the C3 CMTS State Meaning Offline The cable modem is inactive The C3 has successfully received a ranging request from the niet modem in a contention interval eg initial ranging The CMTS has responded to an initial ranging request from init r2 the modem but has not yet completed ranging eg the modem s transmit parameters are still outside of the acceptable range as defined by the CMTS The cable modem has successfully adjusted its transmit init rc power and timing so that initial ranging has completed successfully ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard C3 CMTS User Guide State Meaning init d The cable modem has sent a DHCP request The CMTS has relayed a DHCP response to the modem but init i the modem has not yet acknowledged the new address to the DHCP server The modem is ready to or is currently TFTP ing the init o i aes configuration file init t Modem read for ToD Online The modem has successfully completed registration Online d Online network access disabled Online pt The modem is online and BPI is enabled THe modem has a p valid traffic encryption key TEK The modem is online BP
418. n Configuring IP Networking Configuration Options Default Bridge Groups Action Procedure 3 9 3 18 The C3 applies the CMTS IP address configured in the boot parameters to the fastethernet interface selected as the boot interface and to the cable interface when booting from the default configuration or when no startup configuration file is available If these settings are not suitable use this procedure to specify the IP address information required for normal C3 operation You should also specify at least one fastethernet sub interface to be avail able for system management see management access page 10 188 for details The C3 CMTS supports two configuration options e bridging no IP routing mode see Chapter 4 Bridge Operation e IP routing mode see Chapter 6 IP Routing Depending on the boot interface you chose in Setting Boot Parameters page 3 13 the C3 pre configures two bridge groups Perform one of the following tasks Configuring Bridging Mode page 3 18 Configuring IP Routing Mode page 3 19 Configuring Bridging Mode Follow these steps to configure a different default route Log into the CMTS Enter one of the following groups of commands a To assign the management IP address to the fastethernet 0 0 0 FEO 0 primary sub interface enter the following commands C3 config terminal C3 config interface fastethernet 0 0 C3 config if ip address mgmt ip addr mask
419. n of authentication method lists e display the status of all configured lines The command is a non priv ileged command The information displayed includes the operational parameters and measurements for each configured line For each configured line with an active session the information displayed will also include total connection time session time remaining idle time remaining user ID if available and authentication method If you have not done so already type the following commands to enter configuration mode C3 gt enable Password your password C3 config The prompt changes to config While in global configuration mode follow these steps to create a default configuration for AAA To create a default configuration for AAA type aaa new model at the config prompt To remove the existing configuration for AAA and revert to the default behavior type no aaa new model at the config prompt While in global configuration mode use the following command to main tain or remove a login authentication methods list Enter the command no aaa authentication login default list name method1 method 2 where Keyword Description default When default is specified then the default authentication method list is configured ARRIS PROPRIETARY All Rights Reserved 11 14 05 Maintaining the Enable Authentication Methods List Assigning Authentication Methods Lists TACACS Commands TAC
420. n profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le lation profil Release 4 3 Standard 22 22 22 22 22 22 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 24 25 25 25 25 25 25 25 25 25 25 25 25 25 29 25 advPhyL advPhyL advPhyL advPhyU advPhyU advPhyU request request request initial initial initial station station station advP advP advP advP advP advP advP advP advP hys hys hys hyL hyL hyL hyU
421. nable No supervisor level password set yet Use setpwd command to set password Supervisor level enabled gt boot bootShow bootCfg er tftp wan mgmt enable disable sysShow setTime setDate timeShow dir setpwd vlevel setVlaniId vlanEnable vlanDisable reboot help 2 gt Release 4 3 Standard Boot the CMTS using current boot parameters Display current boot parameters Configure the boot parameters Select Compact Flash for booting Select TFTP for booting Select FA0 0 WAN port for network access Select FA0 1 MGMT port for network access Enable Supervisor Factory Level Disable Supervisor Factory Level Show system configuration Set time in RTC Set Date in RTC Displays current Date and Time from RTC Show direcory of Compact Flash Set password Set Verbosity Level Set the VLAN tag to be used Enable VLAN tagging stripping as set by setVlanId Disable VLAN tagging stripping Reboot Display general help or help about a command Display general help or help about a command Boot the CMTS using current boot parameters ARRIS PROPRIETARY All Rights Reserved 3 13 3 CMTS Installation 3 14 2 Decide what Ethernet interface to use for network access using the commands wan to select FE0 0 or mgmt to select FEO 1 The bootShow command displays the selected interface as the Network port as shown in the next step Most CLI commands refer to the FEO 0 port as fasteth
422. nce in bridging mode e Appendix B for sample bridging network configurations The above bridge group configurations may be changed e from the boot options using the wan or mgmt command to select the network interfaces labeled FEO 0 and FEO 1 respectively before a startup configuration file is created on first power up This can occur by deleting the existing startup configuration file using the write erase command then power cycling or the first time the C3 is powered up In either case a default startup configuration will be created based on the selected boot options network interface e by specification from the CLI after the Cadant C3 has been booted with this configuration subsequently saved to the startup configura tion ARRIS PROPRIETARY All Rights Reserved 4 7 4 Bridge Operation Fast Ethernet 0 0 as the This is the factory default mode of operation of the C3 Boot Options Network Interface fastethernet 0 1 bridge group 1 shutdown bridge group 1 shutdown In this mode the C3 pre assigns interface fastethernet 0 0 0 to bridge group 0 pre assigns interface cable 1 0 0 to bridge group 0 pre assigns interface fastethernet 0 1 0 to bridge group 1 and shuts down the interface pre assigns cable 1 0 1 to bridge group 1 and shuts down the inter face sets default cm subinterface cable 1 0 0 sets default cpe subinterface cable 1 0 0 carries the boot option specified IP address forward into a
423. nce window During the upgrade process avoid using the write erase command to erase the startup configuration While the C3 would create a new default startup configuration the default does not include CLI accounts and pass words Therefore telnet access is disabled and you would need to use the serial console to restore the CLI accounts Upgrading the CMTS Software Perform the following tasks as needed e Copying the Image Over the Network page 9 12 e Using a Compact Flash Reader page 9 13 e Configuring the C3 to Boot from the Flash Disk page 9 15 e Configuring the C3 to Boot from a TFTP Server page 9 16 ARRIS PROPRIETARY All Rights Reserved 9 11 9 Service Procedures Copying the Image Over the Network Procedure 9 9 Copying the Image Over the Network Follow these steps to upgrade the C3 This procedure uses the IP address 10 1 12 5 and the file name C3_v03 00 01 27 as examples replace them with the IP address of your TFTP server and the actual software load file name 1 Log into the C3 console and enter privileged mode if you have not already done so Login xxxxxxx Password XXXXXX C3 gt enable Password XXXXXX C3 2 Enter the following commands to copy the new software image onto the C3 C3 copy tftp flash IP Address of remote host 10 1 12 5 Source filename C3_v04 03 00 32 bin Destination filename C C3_v04 03 00 32 bin lt enter gt Accessing tftp 10 1 12
424. ncy 501000000 Set the power level in dBmV using the following command C3 config if cable downstream power level pwr Set the power level to match the parameters assigned by the plant designer Example cable downstream power level 51 optional Set the DOCSIS mode using one of the following commands C3 config if cable mac mode docsis C3 config if cable mac mode euro docsis optional Set the downstream modulation type using one of the following commands C3 config if cable downstream modulation 64qam C3 config if cable downstream modulation 256qam Proceed to Configuring Upstream Parameters page 3 22 End of procedure Configuring Upstream Parameters Follow these steps to configure each upstream cable interface The param eter us refers to the upstream interface ID O to 5 corresponding to upstreams RXO through RX5 on the back of the C3 CMTS Set the upstream mac mode using one of the following commands C3 config if cable mac mode docsis C3 config if cable mac mode euro docsis Set the upstream channel type using the following command C3 config if cable upstream us channel type type Where type is one of tdma atdma tdma amp atdma or scdma ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide v NOTE All channel types for a particular channel must match the modulation profile selected for that channel If any channel type does not match the modula
425. net Backbone Page 13 14 18 This appendix provides the bare necessities to get an ARRIS Cadant C3 up and running with modems and computers attached to modems and a working DHCP server It concentrates on the absolute minimal steps required to get a DOCSIS modem up and running after installing the C3 Refer to Chapters 3 through 8 while following the examples in this appendix Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved B CMTS Configuration Examples C3 Install B 2 The most simple configuration is a cable modem C3 and DHCP TFTP server 192 168 253 1 24 Switch 192 168 253 2 to 252 24 fastethernet 0 0 0 bridge group 0 10 1 1 2 24 192 168 253 253 secondary 10 1 1 10 to 19 24 DHOP server 10 1 1 1 24 CMTS 30aB 192 168 253 1 24 secondary cable 1 0 0 bridge group 0 10 1 1 2 24 192 168 253 253 24 secondary ip dhcp relay cable helper address 10 1 1 1 cable dhcp giaddr policy Figure B 1 Simple configuration Modems CPE and the DHCP server are all in the same subnet and management traffic co exists with user traffic Use the information in Getting Started Chapter 1 and use the following information that is correct for the above network Set the C3 boot options as follows The firmware filename you are using may be different from the file shown in this example gt bootCfg Options x 1 Boot from TFTP
426. nfigure terminal C3 config interface loopback instance To assign an IP address and subnet mask to the virtual loopback interface using the ip address configuration command C3 config ip address ip addr subnet mask To save the configuration changes C3 config end To display the configuration of the loopback interface C3 config show interfaces type instance End of procedure This section describes the C3 CMTS implementation of multicasting as it relates to the handling and forwarding of IP multicast traffic IP Multicast is an Internet technology that permits a sender to send data either clear or encrypted simultaneously to many hosts Unlike unicasting multicasting does not send the same data as many times as there are recipients And unlike broadcasting it does not flood a network by sending packets to all the hosts when they are meant only for some Multicasting sends the data only to those interfaces on which there are hosts that have requested it ARRIS PROPRIETARY All Rights Reserved 6 9 6 IP Routing Application Scenarios Multicast in the Cable Data Industry 6 10 In order to receive a multicast service hosts must join a multicast group This multicast group has an associated group address The source of this multicast traffic sends data to this group address Any host belonging to the group processes the multicast data Hosts that do not belong to the group do not process this data The sende
427. ng bridge 1 I 10 2 1 253 i 10 2 1 0 able 1 0 1 I Oooo DHCP l bridge group 1 l SERVER i ip address 192 168 253 2 A 10 1 11 ip dhcp relay TE O E E eran cable helper address 10 1 1 1 cable dhcp giaddr bridge 0 fastethernet 0 1 0 pase 0 ipaddress 10 1 1 2 ip address 10 2 1 1 ip dhcp relay cable helper address 10 1 1 1 cable dhcp giaddr no ip routing default cm subinterface cable 1 0 0 default cpe subinterface cable 1 0 1 Figure B 3 Example of bridge group capabilities configure terminal turn on simple snmp access snmp server community public ro snmp server community private rw no ip routing default cm subinterface cable 1 0 0 default cpe subinterface cable 1 0 1 ARRIS PROPRIETARY All Rights Reserved B 9 B CMTS Configuration Examples Bridging Separate Management Traffic CM and CPE DHCP Servers B 10 j bridges already defined as factory default bridge 0 j j bridge 1 interface fastethernet 0 0 0 bridge group 1 no ip address no shutdown no management access exit j interface fastethernet 0 1 0 bridge group 0 define management ip address ip address 10 1 1 2 295 22553 295 0 need to allow bg to bg routing so cpe DHCP renew ack can be forwarded back to bg 1 ip 12 bg to bg routing no shutdown j interface cable 1 0 0 bridge group 0 ip address 10 2 1 1 255 255 255 0 all modem traffic will default here IMPORTANT DHCP server must have static route to this inter
428. ng directory Example C3 pwd Ci C3 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 41 10 Command Line Interface Reference reload Syntax reload at time reason cancel in time reason Restarts the CMTS same behavior as setting docsDevResetNow to true The parameters are Keyword Description Specifies the clock time in hh mm notation to reboot at the C3 You can add an optional reason string describing why the reboot was necessary Specifies the amount of time in hh mm notation to wait before rebooting the C3 You can add an optional m reason string describing why the reboot was necessary cancel Cancels a scheduled reboot The CMTS prompts you to save the running configuration to the startup config uration if changes to the configuration have been made If you choose not to save the running configuration to the startup configuration the CMTS appends a copy of the running configuration to the shutdowndebug log file on the Compact Flash disk Example entering N for the confirmation C3 reload Proceed with reload Y N N Operation Cancelled C3 10 42 ARRIS PROPRIETARY All Rights Reserved 11 14 05 rename Syntax rmdir Syntax script start Syntax script execute Syntax Release 4 3 Standard C3 CMTS User Guide rename oldfile newfile Changes the name of the file called o dfi le to newfile on the Compact Flash module rmd
429. ng info i e CPE IP address is already in use by someone else This is interpreted as having an unauthorized user on the network e if more than one DHCP server claims the lease is active but report different lease times the C3 will use the server which has handled that client most recently if the C3 can tell this If not then the C3 uses the shortest lease time e any claims that the lease is not active are ignored in favor of a lease active report The C3 uses a Cisco network registrar specific CLIENT LAST TRANSACION TIME option option 163 to help with the voting in the multi DHCP server case The option code can be changed from 163 to another value using dhcp 1q params See dhcp q params page 10 217 Packet Throttling Packet throttling consists of e Broadcast throttling for reducing the amount of broadcast traffic in Layer 2 switched networks e IP throttling for reducing the effect of Denial of Service DoS attacks in Layer 2 and Layer 3 networks Both broadcast throttling and IP throttling operate on a sub interface basis The following sections describe each throttling type Interactions between When both broadcast throttling and IP throttling are active on a sub inter Broadcast and IP Throttling face the broadcast throttle ignores all IP broadcast packets allowing the IP throttle to handle them 8 34 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Throttle Credits Broadcast Throttling IP Throttling
430. ngle entry mode can be further configured to limit relearning using one of the following keywords no relearning In single entry mode the bridge table does not relearn MAC addresses This is the default for single entry mode relearn from ethernet In single entry mode the bridge can relearn MAC addresses on an Ethernet port over the RF port relearning In single entry mode the bridge can relearn MAC addresses on all ports This is identical to C3 version 2 0 operation Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 105 10 Command Line Interface Reference cable filter Syntax no cable filter Enables or disables filtering at the cable interface See also cable filter group page 10 107 cable submgmt default filter group page 10 125 10 106 ARRIS PROPRIETARY All Rights Reserved 11 14 05 cable filter group Syntax Release 4 3 Standard C3 CMTS User Guide no cable filter group group id index index id dest ip ipaddr dest mask ipmask dest port dest port ip proto protocol ip tos tos mask tos value match action accept drop src ip ipaddr src mask ipmask src port src port status activate deactivate tcp status activate deactivate tcp flags flag mask flag value Creates a filter specification for registered cable modems and hosts attached to registered cable modems The parameters are
431. no trap no sys no vol priority 0 sched type best effort downstream activity timeout 0 admission timeout 0 grant interval 0 grant jitter 0 grant size 0 grants per interval 0 max burst 0 max concat burst 0 max latency 0 max rate 0 min packet size 0 min rate 0 poll interval 0 poll jitter 0 req trans policy 0x0 tos overwrite 0x0 0x0 status activate cable submgmt cable submgmt cpe ip filtering no cable submgmt default active cable submgmt default learnable cable submgmt default max cpe 16 cable submgmt default filter group cm upstream 0 cable submgmt default filter group cm downstream 0 cable submgmt default filter group cpe upstream 0 cable submgmt default filter group cpe downstream 0 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved C3 CMTS User Guide F 17 F Factory Defaults no cable submgmt cpe ip aging cable submgmt default cpe ip aging interval 14400 line console length 24 width 80 timeout 900 monitor no vt1l00 colours line ssh length 24 width 80 timeout 900 no monitor no vt1l00 colours line vty 0 3 length 24 width 90 timeout 900 no monitor no vt1l00 colours j j tftp server setdir tftpboot tftp server stop exception auto reboot 0 exception 3212 monitor reset j ip ssh port 22 ip ssh timeout 300 ip ssh authentication retries 3 phs enable j C3 Default Modulation Profiles The following are the default modulation profiles created with
432. nsiderations Also consider using power strips instead of direct connections to branch circuits When using only DC power earth the C3 chassis using the supplied M4 stud AC 110V M4 Stud Figure 3 1 Earthing using only DC power Use an M4 nut and M4 lock washers with the parts stacked as shown in the example figure below If using DC power then the Earthing conductor on the DC power cable may be secured under either the top nut or the bottom nut ARRIS PROPRIETARY All Rights Reserved 11 14 05 AC powering DC powering Release 4 3 Standard C3 CMTS User Guide Lockwasher ___ _ DC Feed a lt Ground Chassis Lockwasher lt 7 g lt Ground q J Metal Figure 3 2 Example positioning of the M4 nut and lock washers The AC power modules require 100 to 240 volt 2A 47 to 63 Hz AC power The socket outlet must be properly earthed The DC power modules requires 40 to 60 V DC 4A power from a SELV rated source The DC power source must have an over current protection device rated at 10 Amp The external DC cable assembly must not be modified in the field route any excess length to avoid snags Connect both Feed 1 and Feed 2 to the DC power source even if only one DC power supply is to be installed This allows placing a single DC power supply in either of the two possible locations or placing two DC power supplies in the chassis ARRIS PROPRIETARY All Rights Reserved
433. nsing feature each of the two factory defined bridge groups can support a maximum of 2 sub interfaces only one may be a cable sub interface Without the bridge group license up to the maximum of 64 subinterfaces may be created and used in static ip routing mode but they cannot be connected to a bridge group if the limit of two subinterfaces per bind group is exceeded Once the bridge group license is purchased up to 10 sub interfaces per bridge group and up to 64 bridge groups is allowed The Additional VLAN Bridge Group License Product ID 713869 extends the limits to 64 bridge groups each of which supports up to 10 sub inter faces with no restriction on the number of cable sub interfaces Contact ARRIS PROPRIETARY All Rights Reserved 11 14 05 Selecting the Bridge Group Configuration Release 4 3 Standard C3 CMTS User Guide your ARRIS representative for ordering information and other details See the next chapter for more details about advanced bridging even if you are not purchasing this license BACKBONE fastethernet 0 0 bridge group 0 cable 1 0 Modem bridge group 0 default cpe subinterface cable 1 0 0 default cm subinterface cable 1 0 0 fastethernet 0 1 bridge 1 bridge group 1 cable 1 0 1 shutdown bridge group 1 shutdown Figure 4 4 Illustration of the default bridge configuration For more information see e the CLI commands ip default gateway and ip route for their rele va
434. nsport type to UDP hence the host address must be specified using an IP address and an optional UDP port defaults to 162 Notification tags are specified by the traps or informs argument which imply the Trap or Inform notification transport model tag Hosts are stored in the SNMP table iso dot org dod internet snmpV2 snmpModules snmpTargetMIB ARRIS PROPRIETARY All Rights Reserved 11 14 05 snmp server enable Syntax Release 4 3 Standard C3 CMTS User Guide ssnmpTargetObjects snmpTargetAddrTable Example C3 config snmp server host MyTrapReceiver MySecurity 192 168 250 107 traps More examples set up an IP address to receive traps informs snmp server host lt notification identifier gt lt security indentification gt lt N N N N gt traps snmp server host lt gt lt gt lt N N N N gt traps udp port lt 0 65535 gt snmp server host lt gt lt gt lt N N N N gt traps udp port lt gt timeout lt 0 2147483647 gt snmp server host lt gt lt gt lt N N N N gt traps udp port lt gt timeout lt gt retries lt 0 255 gt snmp server host lt Notification Identifier string gt lt Notification Security Identifier string gt lt N N N N gt informs snmp server host lt gt lt gt lt N N N N gt informs udp port lt 0 65535 gt snmp server host lt gt lt gt lt N N N N gt informs udp port lt gt timeout lt 0 2147483647 gt snmp server host lt gt lt gt lt N
435. nt to Point broadcast amp non broadcast e Point to Multipoint broadcast amp non broadcast Any OSPF enabled interface can be configured to operate in point to multipoint PTMP mode After that all adjacencies over this interface are treated as point to point No Designated Router DR or Backup Desig nated Router BDR is elected and no network LSA is originated Topolog ical information is abstracted as if every adjacency were a point to point link that is every router reports connectivity to every adjacent router in its router LSA To distribute IP routing information every router announces its own IP addresses including secondary ones as host routes in its router LSA OSPF point to multipoint network types can operate in one of two modes broadcast and non broadcast In PTMP broadcast mode OSPF hello packets are multicast to AllSPFRouters e g IP address 224 0 0 5 thus allowing the OSPF protocol to dynamically discover neighboring OSPF routers In contrast PTMP non broadcast mode must unicast all OSPF protocol messages to neighboring routers including OSPF hello packets There fore it is necessary to explicitly configure the OSPF protocol with the list of neighbors with which it should form adjacencies In order to configure this list of permitted OSPF neighbors the neighbor ip address OSPF router command is used ARRIS PROPRIETARY All Rights Reserved 11 14 05 OSPF Over Cable Sub interfaces OSPF Operat
436. nterface how this is done is described following it is possible to further restrict this traffic to 802 1Q encoded traffic by specifying an encapsulation command on the cable sub interface This would allow a number of 802 1Q VLANs to terminate on the cable sub interface Implementation of the multiple encapsulation commands under the cable and fastethernet interfaces are illegal and will be rejected by the CLI ARRIS PROPRIETARY All Rights Reserved 4 15 4 Bridge Operation This problem is shown in the following figure The following example shows the legal use of the bridge bind command to implement the same configuration as that defined as the problem in the following figure PROBLEM SOLUTION INTERFACE 0 0 encapsulation dot1q 11 encapsualtion dot1q 22 INTERFACE 0 0 CABLE CABLE _ PROBLEM DOWNSTREAM DOWNSTREAM Which VLANS to map the cable bridge 1 bind cable 1 0 1 fa 0 0 11 interface VLANS to bridge 1 bind cable 1 0 2 fa 0 0 22 117 Solves this issue i CABLE UPSTREAM encapsulation dot1q 100 native encapsulation dot1q 1 CABLE UPSTREAM encapsualtion dot1q 2 encapsulation dot1q 100 native 4 802 1q encoded data 802 1q encoded data PROBLEM Illegal multiple encapsulation INTERFACE 0 1 specifications INTERFACE 0 1 Note Traffic allocated to cable interface using VSE encoding with tag 100 eg the native option is used Figure 4 13 Example of legal use of the bridge bind command IP Addressing A bridge does
437. nterface cable 1 0 j ip address 10 1 0 1 255 255 0 0 ip dhcp relay cable helper address 10 2 0 1 cable dhcp giaddr primary option 82 not really required for standard DHCP server no ip dhcp relay information option map PPPoE CPE to another interface map cpes cable 1 0 1 j interface cable 1 0 1 for CPE devices running layer 2 e g PPPOE bridge group 2 add vlan spec for internal use encapsulation dotlq 9 native l exit exit Example Multiple modem subnets with mapped CPE subnets ip routing l interface cable 1 0 used for modem DHCP ip address 10 1 0 1 255 255 0 0 ip dhcp relay cable helper address 10 2 0 1 cable dhcp giaddr primary option 82 not really required for standard DHCP server no ip dhcp relay information option j interface cable 1 0 1 used for modem ip address 10 10 0 1 255 255 0 0 dhcp renews will be routed so no relay required ARRIS PROPRIETARY All Rights Reserved 10 211 10 Command Line Interface Reference 10 212 no ip dhcp relay map cpes cable 1 0 11 i interface cable 1 0 2 used for modem ip address 10 20 0 1 255 255 0 0 dhcp renews will be routed so no relay required no ip dhcp relay map cpes cable 1 0 12 j interface cable 1 0 11 for CPE devices ip address 10 11 0 1 255 255 0 0 dhcp spec required for cpe dhcp ip dhcp relay cable helper address 10 2 0 1 cable dhcp giaddr primary option 82 not requir
438. ntire arp cache clear ip cache ipaddr Clears the route cache for the specified IP address or the entire cache if no address is specified clear ip igmp group Deletes all the IGMP group s from multicast cache clear ip ospf process Restarts the OSPF routing process ARRIS PROPRIETARY All Rights Reserved 10 31 10 Command Line Interface Reference clear ip route Syntax clear ip route all rip static Resets the specified routing table entries clear logging Clears the local event log clear mac address Deletes the learned MAC address entry from the MAC address table clear mac address table Deletes all learned entries from the MAC address table clear screen Clears the terminal window 10 32 ARRIS PROPRIETARY All Rights Reserved 11 14 05 clock summer time date C3 CMTS User Guide Syntax clock summer time timezone date start end Creates a specific period of summer time daylight savings time for the spec ified time zone Use clock summer time recurring to set recurring time changes The parameters are Keyword Description timezone The time zone name Use clock timezone to create the timezone start The starting date and time The format is day month year hh mm end Example The ending date and time C3 clock summer time EDT date 1 4 2003 02 00 1 10 2003 02 00 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10
439. o S pport arrisi com 3871 Lakefield Drive Suite 300 Suwanee GA 30024 1 t iso included t snmpResearch excluded t snmpTargetMIB excluded t snmpNotificationMIB excluded t snmpUsmMIB excluded t snmpVacmMIB excluded lt snmpCommunityMIB excluded PRPPRPPP group public vl read default group public v2c read default user public public vl user public public v2c e3 C3 config C3 config show snmp server snmp server contact s snmp server location snmp server engineboot snmp server view defa snmp server view defa snmp server view defa snmp server view defa snmp server view defa snmp server view defa snmp server view defa snmp server snmp server snmp server snmp server 10 162 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide snmp server community entry Communityl public public C3 config snmp server group Syntax no snmp server group group name v3 auth noauth priv v2c vl notify view read view write view Defines one or more transaction types a user can perform read transaction write transaction or notify transaction Each enabled transaction type must reference a view defined using snmp server view page 10 160 A group is identified by a group name group name a security model and the referenced view In a group you can set a read view a write view
440. o no length enco T FEC CW BYTES SIZE 0x0 0x10 0x5 0x22 0x5 0x22 0x6 Ox4b 0x8 Oxdc Oxc Ox4b 0x10 Oxdc 0x10 Oxdc Scrambl Max B size Seed 0x152 0x152 0x152 0x152 0x152 0x152 0x152 0x152 f ae BEK 0e BEE y E E BE E Guard Last Scrambl time size 8 48 48 8 ARRIS PROPRIETARY All Rights Reserved CW short no no no no no no no no yes yes yes yes yes yes yes yes 11 14 05 G Configuration Forms Topics Page Fastethernet 0 0 Configuration Fastethernet 0 1 Configuration 4 Cable Configuration Use the following forms to record information about how the CMTS should be configured Booting Configuration Boot device O Compact Flash disk O TFTP server Image file name Booting interface O fastethernet 0 0 O fastethernet 0 1 TFTP Server Boot required only if you are network booting Parameters CMTS IP Address Subnet mask Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved G 1 G Configuration Forms Gateway IP address VLAN ID if necessary Running Configuration IP Networking Ethernet interfaces in use O fastethernet 0 0 O fastethernet 0 1 Management interface and O fastethernet 0 0 options O fastethernet 0 1 Management IP address Management Subnet mask Gateway IP address VLAN ID if necessary TFTP Server Parameters IP Address
441. o Suite 66060509 SYSLOG_ERROR Map Reject Not Authorized for Requested Downstream Traffic Flow EC 7 66060510 SYSLOG_ERROR Map Reject Downstream Traffic Flow Not Mapped to BPI SAID EC 8 66060600 SYSLOG_ERROR Mapped to Existing SAID 66060700 SYSLOG_ERROR Mapped to New SAID 67000100 SYSLOG_WARNING UCC REQ received with invalid or out of range US channel ID 67000200 SYSLOG_WARNING UCC REQ received unable to send UCC RSP 67010100 SYSLOG_WARNING UCC RSP not received on previous channel ID 67010200 SYSLOG_WARNING UCC RSP received with invalid channel ID 67010300 SYSLOG_WARNING UCC RSP received with invalid channel ID on new channel 67020100 SYSLOG_WARNING DCC rejected already there 67020200 SYSLOG_NOTICE DCC depart old 67020300 SYSLOG_NOTICE DCC arrive new 67020400 SYSLOG_WARNING DCC aborted unable to acquire new downstream channel 67020500 SYSLOG_WARNING DCC aborted no UCD for new upstream channel 67020600 SYSLOG_WARNING DCC aborted unable to communicate on new upstream channel 67020700 SYSLOG_WARNING DCC rejected unspecified reason 67020800 SYSLOG_WARNING DCC rejected permanent DCC not supported 67020900 SYSLOG_WARNING DCC rejected service flow not found 67021000 SYSLOG_WARNING DCC rejected required parameter not present 67021100 SYSLOG_WARNING DCC rejected authentication failure 67021200 SYSLOG_WARNING DCC rejected multiple errors 67021500 SYSLOG_WARNING DCC rejected duplicate SF reference s 67021600 SYSLOG_WARNING DCC rejected parameter inval
442. o cable upstream 1 shutdown no shutdown no management access no ip address as sub interface is not used exit exit Using a Modem Configuration File to Allocate CPEs to a VPN This example uses the Cadant C3 Vendor Specific Encoding in the modem configuration files to map CPE attached to modems to specific cable sub interfaces and hence to specific cable VPNs and backbone 802 1Q VLANs Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 5 11 5 Providing Multiple ISP Access 5 12 CJ The following example Uses fewer one only cable sub interfaces for modems than the map cpes method Uses VSE encoding to map CPE traffic to cable sub interfaces with native VLAN specifications cable VPN and hence to bridge groups and hence to Ethernet sub interfaces and hence to Ethernet backbone 802 1Q VLANS Items to note in the following example A default cable VPN has been created for un provisioned subscribers Modems given a configuration file with a VSE encoding of 44 will force attached CPE devices to the backbone 802 1Q VLAN with a tag of 888 This Ethernet VLAN connects to the provisioning web server A default modem cable sub interface has been created All modem traffic before an IP address is allocated to the modem is mapped to this cable sub interface This cable sub interface is a member of bridge group 9 A sub interface of the MGMT port is configured as a member of this bridge group an
443. oa moa moa moa moa moa moa moa moa moa moa moa moa ud ud ud ud ud ul ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud ud lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil Lation lation profil lation profil lation lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil lation profil profil profil Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Le Tation profil Release 4 3 Standard DNDNDADADAAAAAAAAGAGAIAGARARAAARAHRHAUNIHU A AA AeA WWWWWWWWWwWwonndNDNY NNN DN DN LDH C3 CMTS User Guide advPhyL AdvPhy ATDMA 1536 advPhyL AdvPhy pr
444. odems page 7 26 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Procedure 7 1 Procedure 7 2 Release 4 3 Standard C3 CMTS User Guide Upgrading from the Configuration File 1 Using a configuration editor modify the following fields in the cable modem configuration file a In the Software Upgrade Filename field enter the path and filename of the firmware that you want to download b Inthe SNMP MIB Object field enter the following hex string 30 OF 06 OA 2B 06 01 02 01 45 01 03 03 00 02 01 This hex string sets the docsDevSwAdminStatus variable MIB object ID 1 3 6 1 2 1 69 1 3 3 0 to the integer value 2 which allows the modems to perform the upgrade c Inthe Software Upgrade TFTP Server type the IP address of the TFTP server where the upgrade file is located 2 Save your changes to the configuration file 3 Reboot the modems End of procedure Upgrade a Single Modem Using an SNMP Manager 1 Type the IP address of the cable modem in the Name or IP Address field 2 Type private or the proper Set Community name in the Community field 3 Highlight the docsDevMIBObjects MIB MIB Object ID 1 3 6 1 2 1 69 1 then click Down Tree 4 Highlight the docsDevSoftware MIB then click Down Tree 5 From the MIB Values field highlight docsDevSwServer 6 From the SNMP Set Value field type the IP address of the TFTP server then click Set 7 Click Close on the pop up information screen 8 From the MIB Value
445. of both half duplex and full duplex operation and automatically negotiate to the appropriate setting One port may be dedicated to data while the other port may be used for out of band management of the C3 and optionally cable modems The CMTS management mode determines how traffic is assigned to the Ethernet ports and may be selected through the C3 configuration For example e C3 management traffic can be restricted to one Ethernet port and all subscriber traffic restricted to the other Ethernet port e Cable modem traffic can be directed to either Ethernet port as required The CMTS is built around dual state of the art reduced instruction set RISC processors One processor is dedicated to data handling while the other processor performs control functions including SNMP The C3 uses a 128MB Compact Flash card to store operating software and configuration files The disk may be removed without affecting normal operation however the C3 disables all configuration related CLI and SNMP functions until you replace the disk ARRIS PROPRIETARY All Rights Reserved 2 9 2 Getting Started 2 10 ARRIS PROPRIETARY All Rights Reserved 11 14 05 3 CMTS Installation Topics Page Planning the Installation Network Requirements Power Requirements Earthing Cable Requirements Cable Plant Requirements Unpacking the CMTS nv GO UU FN N fF fF Mounting the CMTS Initial Configuration Use this chapter to install
446. oftware only interface used to emulate a phys ical port Each loopback interface must be assigned a unique numerical ID and is subject to a limitation of 64 loopbacks This gives them a global scope and does not associate them to a physical interface A loopback interface is a virtual interface that is always up and allows sessions to stay up even if the outbound interface is down You can use the loopback interface as the termination address for an OSPF session In applications where other routers or access servers attempt to reach this loopback interface you should configure a routing protocol to distribute the subnet assigned to the loopback address ARRIS PROPRIETARY All Rights Reserved 11 14 05 Procedure 6 1 Multicast Operations What is IP Multicast Release 4 3 Standard C3 CMTS User Guide Packets routed to the loopback interface are rerouted back to the router or access server and processed locally IP packets routed out of the loop back interface but not destined to the loopback interface are dropped Under these two conditions the loopback interface can behave like a null interface Steps to configure a loopback interface The IP address for the loopback interface must be unique and not in use by another interface If you have not done so already type enable to enter privileged mode The prompt changes to a symbol To enter the interface config mode and name the new loopback interface C3 co
447. ol e logging severity 1 local no trap no sys no vol e logging severity 2 local trap sys no vol e logging severity 3 no local trap sys vol e logging severity 4 no local trap sys vol e logging severity 5 no local trap sys vol e logging severity 6 no local no trap no sys no vol e logging severity 7 no local no trap no sys no vol See also ogging severity page 10 149 logging thresh page 10 151 logging trap page 10 152 ogging syslog page 10 150 ogging buffered page 10 148 ARRIS PROPRIETARY All Rights Reserved 10 151 10 Command Line Interface Reference logging trap Syntax logging trap control Syntax 10 152 no logging trap level Enables or disables transmission of SNMP traps To disable use the no logging trap command The optional eve 0 to 7 logs all traps with a priority higher or equal to the level specified no logging trap control val Sets the value of the docsDevCmtsTrapControl MIB to enable or disable CMTS SNMP traps Use a hexadecimal value for val The MIB consists of 16 bits with bit 0 being the most significant bit Set a bit to 1 to enable the corresponding trap O to disable it The bits are Bit Name Description 0 cmtsInitRegReqFailTrap Registration request fail 1 cmtsInitRegRspFailTrap Registration response fail 2 cmtsInitRegAckFailTrap Registration ACK fail 3 cmtsDynServReqFailTrap Dynamic Service request fail 4 _ c
448. olume descriptor ptr pVolDesc Ox89ecf4f0 cache block I O descriptor ptr pCbio 0x89ecf7dc auto disk check on mount DOS _CHK_ REPAIR DOS CHK VERB SILENT max of simultaneously open files 22 file descriptors in use 2 of different files in use 2 of descriptors for deleted files 0 of obsolete descriptors 0 current volume configuration volume label NO NAME in boot sector NO NAME volume Id 0Ox163317 2 total number of sectors 250 592 bytes per sector 512 of sectors per cluster 4 of reserved sectors 1 FAT entry size FAT16 of sectors per FAT copy 245 of FAT table copies 2 of hidden sectors 32 first cluster is in sector 523 directory structure VFAT root dir start sector 491 of sectors per root 32 max of entries in root 512 10 74 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide FAT handler information allocation group size 7 clusters free space on volume 127 891 456 bytes C3 show interfaces Syntax C3 show interfaces FastEthernet0 0 is up Hardware is e Description Alias show interfaces cable X Y fastethernet X Y stats Displays statistics for the specified interface or all interfaces if none is speci fied Keyword Description cable x y Specify the cable interface fastethernet x y Specify the fast ethernet interface loopback Specify the loopback Displays interface packets and characte
449. om 00A0 7374 BE70 forwarded to 0 250 139 1 6 51 34 DHCPRELAY OFFER Removing information option from frame 6 51 34 DHCPRELAY Broadcasting OFFER to client 00A0 7374 BE70 6 51 37 DHCPRELAY REQUEST adding relay information option 6 51 37 DHCPRELAY REQUEST setting giaddr to 10 250 139 2 6 51 37 DHCPRELAY REQUEST from 00A0 7374 BE70 forwarded to server 0 250 139 4 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide 16 51 37 DHCPRELAY ACK Removing information option from frame 16 51 37 DHCPRELAY Broadcasting ACK to client Q0A0 7374 BE70 debug cable mac address 00A0 7374 BE70 verbose 16 54 29 DHCPRELAY DISCOVER adding relay information option 16 54 29 DHCPRELAY DISCOVER from 00A0 7374 BE70 forwarded to 10 250 13 9N1 16 54 29 DHCPRELAY Dumping outgoing UDP packet 01 01 06 01 73 74 BE 70 00 00 80 00 00 00 00 00 00 00 00 00 00 00 00 00 OA FA 8B 02 00 A0 73 74 BE 70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 O00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0
450. ome further clarification to the output C3 show ip route Codes C connected S static I IGRP R RIP M ICMP B BGP EGP G GGP O OSPF ES ES IS IS IS IS x candidate default gt primary route Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 6 3 6 IP Routing Gateway of last resort is 10 250 96 1 Sx 0 0 1 0 via 10 250 96 1 R lt lt lt lt lt rip learned default AD 120 000 4 0 0 0 24 is subnetted 1 subnet 4 4 4 0 120 2 via 10 250 96 102 00 00 03 FastEthernet 0 1 0 to network 0 0 0 0 FastEthernet 0 1 0 5 0 0 0 24 is subnetted 1 subnets s gt 5 5 5 0 130 0 via 10 250 96 7 FastEthernet 0 1 0 lt lt lt lt primary static with AD changed to 130 S 130 0 via 10 250 96 8 FastEthernet 0 1 0 lt lt lt lt backup static 7 0 0 0 8 is variably subnetted R 7 0 0 0 24 120 2 via 10 250 96 3 subnets 3 masks 102 00 00 03 Fas Ethernet 0 1 0 R 7 0 0 0 8 120 2 via 10 250 96 102 00 00 03 FastEthernet 0 1 0 102 00 00 03 FastEthernet 0 1 0 10 0 0 0 24 is subnetted 4 subnets R 7 7 0 0 16 120 2 via 10 250 96 C 10 7 8 0 is directly connected Cable 1 0 9 lt lt lt lt directly connected to c3 configured on sub int AD 0 C 10 250 96 0 is directly connected FastEthernet 0 1 0 G 10 250 99 0 is directly connected FastEthernet 0 0 0 C 10 250 103 0 is directly connected bridge group 0 15 0 0
451. on The SNMP table iso dot org dod internet snmpV2 snmpModules snmpCommunityMIB snmpCommunityObjects sampCommunityTable maps a security name to a community string and using this CLI command implicitly creates an entry in this table where the security name and community string are identical Network security models are stored in the SNMP table iso dot org dod internet snmpV2 snmpModules snmpTargetMIB snmpTargetObjects snmpTargetParamsTable Example C3 config snmp server notif sec model MySecurity MyCommunity v2c security model v2 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 167 10 Command Line Interface Reference snmp server host Syntax 10 168 no snmp server host notification identifier security identification ipaddr hostname traps informs udp port port timeout time retries retry Defines a host for each notification target or receivers A host definition requires a notification security model a transport type a host address and one or more notification transport model tags The parameters are Keyword Description notification identifier o identifying the notification device the security identification The community string or password ipaddr IP address of the host hostname Qualified name of the host udp port UDP prot number default 162 timeout 1 2147483647 seconds retries 1 255 retries The CLI command defaults the tra
452. on mode to set up broadcast throttling on a sub interface When the number of upstream packets per second from a modem reaches a specified threshold the C3 applies a specified ACL to excess packets To set up IP throttling use the following commands in any order access list to set up an ACL ip throttling acl throttle credits If you use the ip throttling command before you set up the ACL throttling has no effect until you define the ACL An ACL used for IP throttling must use the permit action for all entries not the deny action You can use the same ACL for multiple sub interfaces ARRIS PROPRIETARY All Rights Reserved 8 35 8 Configuring Security Simple Law Enforcement Monitoring SLEM Simple Law Enforcement Monitoring SLEM consists of Lawful Intercept LI Administration Function This function provides the typically manual provisioning interface for the intercept as a result of a court order or warrant delivered by the Law Enforcement Agency LEA It could involve separate provisioning interfaces for several components but more typically is a single interface to the mediation device MD which then takes care of provisioning of other components in the network Because of the requirement in some laws to limit accessibility to authorized personnel the provisioning interface has to be strictly controlled In many cases the identity of the subject received from the LEA has to be translated into an identity that
453. or each native VLAN e g ACL filters DHCP relay etc e Downstream privacy is still turned on for each native VLAN e Again one ISP uses the operator DHCP server for CPE DHCP the other two ISPs use their own DHCP servers for CPE DHCP e Again CPE should be given a default route of the respective ISP gateway router in the DHCP options e Upto 9 ISPs may be supported in this manner ISP oe ISP DHCP Server zZ ISP E 205 2 3 254 F Pa oe router Provisioning Lem eee orms Server See SWITCH ssn s a Em 10 6 0 2 2 Pa once ae RED t 204 3 4 5 10 6 0 1 24 I1 1 fa 0 1 0 H tag none Bridge 4 Group ISP RED DHCP Server aalo 1 ca 1 0 1 daii 204 6 6 6 tag none 1 or tag 2 tag 3 ip 12 bg bg 1 native A native native routing 1 all modems in 10 6 0 0 24 ISP RED a ISP BLUE router ISP BLUE router 204 3 4 5 router 3 56 7 9 3 56 7 9 ISP router ISP RED ISP 205 2 3 254 router router 204 3 4 5 205 2 3 254 Figure B 6 Example of open access without using 802 1Q backbone VLANs make sure in priv mode and in factory default before trying to paste the following Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved B 19 B CMTS Configuration Examples conf t bridge 0 bridge 1 j no ip routing ip default gateway 10 6 0 2 ip route 204 6 6 0 255 255 255 0 204 3 4 5 default cm sub interface cable 1 0 0 set CPE d
454. osByte If the values are equal the comparison is equal If the mask is zero and the TosByte value is zero the result is to always accept DEFVAL 0 by default any DSCP or other TOS byte value cTapStreamIpEntry 9 cTapStreamIpFlowId OBJECT TYPE SYNTAX Integer32 1 0 1048575 MAX ACCESS read create STATUS current DESCRIPTION The flow identifier in an IPv6 header 1 indicates that the Flow Id is unused DEFVAL 1 by default any flow identifier value cTapStreamIpEntry 10 cTapStreamIpProtocol OBJECT TYPE SYNTAX Integer32 1 04 255 MAX ACCESS read create STATUS current DESCRIPTION The IP protocol to match against the IPv4 protocol number or the IPv6 Next Header number in the packet 1 means any IP protocol DEFVAL 1 by default any IP protocol cTapStreamIpEntry 11 cTapStreamIpDestL4PortMin OBJECT TYPE SYNTAX Inet PortNumber MAX ACCESS read create STATUS current DESCRIPTION The minimum value that the layer 4 destination port number in the packet must have in order to match This value must be equal to or less than the value specified for this entry in cTapStreamIpDestL4PortMax If both cTapStreamIpDestL4PortMin and cTapStreamIpDestL4PortMax are at their default values the port number is effectively unused DEFVAL 0 by default any transport layer port number cTapStreamIpEntry 12 cTapStreamIpDestL4PortMax OBJECT TYPE SYN
455. ospf retransmit interval ip ospf transmit delay ip rip authentication ip rip cost ip rip default route metric ip rip receive ip rip send ip rip v2 broadcast ip route ip routing ip source verify ip ssh ip ssh authentication retries ip ssh port ip ssh server ip ssh timeout ip ssh version ip throttle ip verify ip address filter ip broadcast echo ip multicast echo key chain key id 2 broadcast echo 2 broadcast throttle 12 multicast echo license line Ilc ping load interval logging buffered logging on Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 183 10 184 10 184 10 184 10 183 10 184 10 185 10 186 10 186 10 186 10 187 10 187 10 143 10 146 10 187 10 146 10 146 10 147 10 147 10 147 10 147 10 208 10 188 10 207 10 208 10 176 10 177 10 208 10 209 10 209 10 40 10 178 10 7 10 188 10 148 10 149 CLI vii 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 CLI viii logging severity logging syslog logging thresh logging trap logging trap control login user logout mac address read only mac address table management access map cpes mib ifTable mkdir more multicast network OSPF network RIP no ntp passive interface phs enable ping pwd qos trust cos redistribute redistribute connected metric
456. ost IP address to be routed subnet In bridging mode a 0 0 0 0 address and 0 0 0 0 mask has no effect Use ip default gateway instead IP address that has routing knowledge of the destination gateway IP address The optional administrative distance for this route Valid a range 1 to 255 Default 1 In bridging mode this command can be used to provide routing information for the DHCP relay function and specifically when cable helper address lt N N N N gt is used The helper address specified may not be on a subnet known to the Cadant C3 or known to the Cadant C3 default route eg the DHCP server specified is behind an external router and this router is NOT connected to the management port Different gateways may be given for the same route with different administra tive distances The C3 uses the lowest administrative distance until the route fails then uses the next higher administrative distance and so on Up to 6 static routes may be configured in this manner The route to a connected subnet subnet of a sub interface always has an administrative distance of 0 this is the first route selected if there is any conflict with a static route In case of two static routes to the same subnet with equal administrative distances the C3 uses the first provisioned route If that route fails then the C3 uses the next route After a reboot the C3 uses the first static route defined in the startup configuration file
457. ost giaddr cable 1 0 0 subnet used for cable modem DHCP access only ip address 10 1 1 1 255 255 255 0 ip dhcp relay cable helper address 10 9 9 1 cable modem cable dhcp giaddr primary cable 1 0 2 modems given 10 2 2 0 address will come here ip address 10 2 2 1 255725542550 encapsulation dotlq 2 native map cpes cable 1 0 12 cable 1 0 3 modems given 10 3 3 0 address will come here ip address 10 3 3 1 255 255 25540 encapsulation dotlq 3 native map cpes cable 1 0 13 cable 1 0 12 CPE mapped to this sub interface ip address 10 12 12 1 255 255 255 0 encapsulation dotlq 12 native ip dhcp relay cable helper address 10 9 9 1 host use the primary sub interface address for host giaddr cable dhcp giaddr primary cable 1 0 13 CPE mapped to this sub interface ip address 10 13 13 1 255 255 255 0 encapsulation dotlq 13 native ip dhcp relay cable helper address 10 9 9 1 host use the primary sub interface address for host giaddr cable dhcp giaddr primary If the cable helper address is not being used e If the sub interface is Layer 3 then the DHCP message will be dropped a cable helper address is mandatory for Layer 3 Cable sub interfaces that have DHCP Relay activated e If the sub interface is Layer 2 then C3 broadcasts the DHCP message with updated giaddr from every active fastethernet sub interface in the same bridge group ARRIS PROPRIETARY All Rights Reserved 11 14 05 DHCP
458. ot options and the booting Fast Ethernet interface only if a TFTP server based boot is required the IP address provides enough IP information to allow a TFTP server based boot to occur This boot option specified address can be copied to a factory default startup configuration as detailed in previous sections of this document but can be changed from the CLI As the above diagram shows you can assign the management IP address to a cable sub interface This is not recommended If the cable interface is shutdown you cannot manage the C3 from the network Serial console access is not affected If the C3 is to be used in a system where only one IP address is allocated to the CMTS and C3 DHCP relay is also required the cable interface must have an IP address for DHCP relay to operate In this case in bridging mode the cable interface can be allocated the same IP address as the management Fast Ethernet interface in the same bridge group ARRIS PROPRIETARY All Rights Reserved 4 17 4 Bridge Operation Attaching Bridge Groups Since a bridge group operates at the MAC layer it can bridge IP protocols However the bridge group forms an isolated MAC domain and only has knowledge of devices connected to it The bridge group can recognize IP protocols when it is attached to the C3 s IP stack Attaching a bridge group to the IP stack requires at least one sub interface in the bridge group to have an IP address and for that sub interfa
459. oup Example of a sub interface to access different bridge groups Example of a Management Access Only interface Illustration of the default bridge configuration Illustration of the factory default configuration Example of a bridging network configuration Data flow when FastEthernet 0 1 is the boot interface Default V2 0 compatible operating mode Example of Bridge group 0 Example of Bridge group 1 ARRIS PROPRIETARY All Rights Reserved 3 11 3 21 4 4 4 5 4 6 4 7 4 8 4 9 4 11 4 12 4 13 4 13 List of Figures Figure 4 11 Figure 4 12 Figure 4 13 Figure 4 14 Figure 4 15 Figure 4 16 Figure 4 17 Figure 5 1 Figure 5 2 Figure 5 3 Figure 5 4 Figure 5 5 Figure 5 6 Figure 6 1 Figure 6 2 Figure 7 1 Figure 7 2 Figure 8 1 Figure 8 2 Figure 8 3 Figure 8 4 Figure 8 5 Figure 9 1 Figure 9 2 Figure 9 3 Figure 9 4 Figure 9 5 Figure 9 6 Figure 9 7 Example of CMTS management traffic Bridge binding on US Layer 2 broadcast Example of legal use of the bridge bind command Example of IP addressing Example of attaching bridge groups Example of ARRIS VSE with a VPN ID of 000Bh Example configuration file with VSE information Example of an Open Access system Example network diagram Bridging data flow through the C3 Diagram of network used in this example How the C3 bridges data in the example How the C3 bridges data in this configuration OSPF two level hierarchy Example of an OSPF
460. ow interface fastethernet 0 0 FastEthernet0 0 is up line protocol is up ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Hardware is ethernet address is 0000 ca3f 63cd Description ETH WAN Cadant C3 CMTS Broadcom 5421 Rev Al Alias Primary Internet Address 10 1 12 45 25 Outgoing access list is not set Inbound access list is not set MTU 1500 bytes BW 100000 Kbit Half duplex 100Mb s Output queue 0 drops input queue 0 drops 23138 packets input 6456298 bytes Received 10545 broadcasts 0 giants 10 input errors 10 CRC 9 frame 3395 packets output 296344 bytes 0 output errors 0 collisions 0 excessive collisions 0O late collision 0 deferred 0 lost no carrier C3 Example C3 show interface fastethernet0 0 stats Fastethernet0 0 Switching path Pkts In Chars In Pkts Out Chars Out Processor 9883 1251544 7991 337952 Total 9883 1251544 7991 537952 C3 show ip protocols ospf Displays the list of networks and the associated interfaces configured in the OSPF routing database Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 87 10 Command Line Interface Reference show ip ospf Displays a summary of the current OSPF configuration including the areas configured Example C3 show ip ospf Routing Process with ID 0 0 0 42 Supports only single TOS TOSO routes Supports opaque LSA It is an autonomous system boundary router Redistributing External Routes from sta
461. own the CMTS Vv NOTE If only one power supply is installed and active the CMTS shuts down once the power supply has been removed Refer to the following photo while performing this procedure Screws u oOo gt 0 zs ENa to are zs 4 Figure 9 4 Power supply Remove the front panel as described in Front Panel Removal and Replacement page 9 2 Loosen the four screws at the corners of the power supply Pull the supply towards the front of the CMTS using the silver handle The power supply slides out of the chassis Line up the replacement power supply with the slot then push the power supply firmly into the slot Use the four screws fitted to the new supply to secure the replacement power supply End of procedure 9 4 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Fan Tray Replacement Procedure 9 3 Replacing the Battery Requirements Release 4 3 Standard C3 CMTS User Guide You can replace the fan tray while the ARRIS Cadant C3 is running as long as you finish inserting the replacement tray within 60 seconds Beyond that time the C3 CMTS starts to shut down as the monitored internal temperature rises Refer to the following diagram for the location of the fan tray d ALLLLLLLRLR a ARRIS et y Locking ae Figure 9 5 Fan tray Fan Tray Replacement Follow these steps to replace the fan tray Loosen the Phillips screw located in the front of
462. p index 3 status activate modems to the management system modems on 10 160 0 0 16 network goso o ti 0 dD U0 d amp O S FONG OOO tC 4 network 3 index 1 3 index 1 src ip 10 160 0 0 3 index 1 src mask 255 252 0 0 3 index 1 dest ip 172 16 5 0 3 index 1 dest mask 255 255 255 0 3 index 1 ip proto UDP 3 index 1 ip tos 0x0 0x0 3 index 1 match action accept 3 index 1 status activate 3 index 3 3 index 3 src ip 0 0 0 0 3 index 3 src mask 0 0 0 0 3 index 3 dest ip 0 0 0 0 3 index 3 dest mask 0 0 0 0 3 index 3 ip proto ALL 3 index 3 ip tos 0x0 0x0 3 index 3 match action drop 3 index 3 status activate ARRIS PROPRIETARY All Rights Reserved 11 14 05 cable frequency band Syntax Release 4 3 Standard C3 CMTS User Guide no cable frequency band index band start start freq stop stop freq Configures a frequency band with the given start and stop edge frequencies in Hz The C3 assigns cable modems to a frequency group restricting their upstream frequencies to a band within that group The parameters are Keyword Description index Specifies a frequency group Valid range 1 to 10 Specifies a frequency band within the group Valid range band 1 to 10 Start frequency in Hz Valid range 1800000 to start freq 68200000 the start frequency must be lower than the stop frequency Stop frequency in Hz Valid range 1800000 to Stop ied 68200000 i You can create multiple frequ
463. panel are lit and the RF ports upstream and downstream are active If a modem is connected it finds the downstream ranges on an upstream but fails at the DHCP stage This is expected at this early stage The DHCP server receives DHCP Discovers and Requests with a relay address giaddr option of 10 1 1 2 for cable modems and 192 168 253 253 for CPEs hosts Any basic DHCP server with two defined scopes containing these subnets can issue an IP address for the modems and to the CPE The DHCP options provided to the modem should include the following Table B 1 DHCP options Option name Number Description Sets the file field which is the name of a file for filename lt name gt the client to request from the next server i e a modem configuration file Sets the siaddr field which defines the name of next server lt ip gt s the next server i e TFTP to be used in the configuration process Time offset in seconds from UTC positive going timeromset sinta 2 east negative going west routers lt ip gt 3 Router address for modem time servers lt ip gt 4 Time servers as specified in RFC868 log servers lt ip gt 7 MIT LCS log servers ARRIS PROPRIETARY All Rights Reserved 11 14 05 TFTP Server Configuration C3 CMTS User Guide Table B 1 DHCP options Option name Number Description beoadieactaedrass 28 Broadcast address for subnet to which clien
464. pe specified in cTapStreamIpAddrType DEFVAL 0 by default any destination address cTapStreamIpEntry 5 cTapStreamIpSourceAddress OBJECT TYPE SYNTAX InetAddress MAX ACCESS read create STATUS current DESCRIPTION The Source Address used in packet selection This address will be of the type specified in cTapStreamIpAddrType DEFVAL 00000000 H 0 0 0 0 i cTapStreamIpEntry 6 cTapStreamIpSourceLength OBJECT TYPE SYNTAX InetAddressPrefixLength MAX ACCESS read create STATUS current DESCRIPTION The length of the Source Prefix A value of zero causes all addresses to match This prefix length will be consistent with the type specified in cTapStreamIpAddrType DEFVAL 0 by default any source address cTapStreamIpEntry 7 cTapStreamIpTosByte OBJECT TYPE SYNTAX Integer32 0 255 MAX ACCESS read create STATUS current DESCRIPTION The value of the TOS byte when masked with cTapStreamIpTosByteMask of traffic to be intercepted If cTapStreamIpTosByte amp cTapStreamIpTosByteMask 0 configuration is rejected DEFVAL O cTapStreamIpEntry 8 cTapStreamIpTosByteMask OBJECT TYPE SYNTAX Integer32 0 255 MAX ACCESS read create STATUS current DESCRIPTION Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved E 9 E SLEM MIB E 10 The value of the TOS byte in an IPv4 or IPv6 header is ANDed with cTapStreamIpTosByteMask and compared with cTapStreamIpT
465. ple use of the access list command each using the same ACL number but with different parameters creates a new ACE for the ACL referred to by the ACL number Implicit Deny All One important point to note about ACLs is that there is an implicit deny all ACE at the end of each ACL e If an ACL consists of a series of ACEs and no match is made for any ACE the packet is denied e If an ACL number is referred to or is assigned to an interface but no ACEs have been defined for this ACL the implicit deny all ACE is not acted on An example of this command is as follows access list 102 permit 6 any eq 23 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Standard ACL Definition Extended IP Definitions Release 4 3 Standard C3 CMTS User Guide This ACL allows TCP protocol 6 based traffic from any source IP address with a TCP source port of 23 Telnet to pass through All other packets are denied since they match the implicit deny all ACE Another more complete example is as follows access list 102 permit 6 192 168 250 0 0 0 0 255 eq 23 10 0 0 0 0 0 0 255 gt 1023 This ACL passes all TCP based traffic from any host in the 192 168 250 0 24 network with a TCP source port of 23 Telnet to a host within the 10 0 0 0 16 network with a TCP destination port of greater than 1023 to pass through Syntax no access list ACL number permit deny host ipaddr ipaddr wildcard any Creates a standard A
466. pletely unknown to the CMTS A single command may enable many cable modems for debugging using the MAC address mask but would display only one entry in the table This table is displayed in a form resembling a debug command to allow a user to cut and paste from the table to disable debugging on a cable modem with the specified MAC address MAC address mask Primary SIDs enabled for Debug Lists the Primary SIDs and debug verbosity levels of all cable modems that were specified by Primary SID e g debug cable sid 123 verbose etc This table is displayed in a form resembling a debug command to allow a user to cut and paste from the table to disable debugging on a cable modem with the specified primary SID Debugging events message types which are enabled Lists all events or message types which are enabled for debug e g debug cable range etc This table is displayed in a form resembling a debug command to allow a user to cut and paste from the table to disable debugging for a particular event or message type Contents of Cable Modem Database debug level Lists the interface primary SID if assigned MAC address and debug verbosity level of all cable ARRIS PROPRIETARY All Rights Reserved 11 14 05 show environment Release 4 3 Standard C3 CMTS User Guide modems that the CMTS knows about The table shows which current cable modems i e cable modems known to the CMTS are selected for debugging Example
467. pplied only if method 7 7 does not produce a reject or accept indi cation If a TACACS server group returns an authentication failure no attempt may be made to authenticate via the local password file If the TACACS server group is unreachable and the local password file does not contain the user s ID authentication will fail If traversal of the entire method list does not produce a positive reject or accept then a positive reject will be assumed For example the following authentication method list tacacs local will yield a reject indication if no TACACS server is reachable and a local password file does not exist The none method always produces an accept indication and may be used to prevent this default behavior Each line interface supports a CLI session The CLI session s behavior is completely dependent on the configuration of the associated line However a session s authentication process can override a line s configu ration for the duration of a session e A session automatically terminates if its elapsed time exceeds the session time interval of the associated line Session timing begins at the completion of authentication e A session automatically terminates if the elapsed time since the last T O activity exceeds the idle time interval of the associated line T O activity includes input commands output due to input commands and unsolicited output e g logging information e idletime or timeout argu
468. profil profil profil lation profil Le Le Le Le Le Le Le Le Le lation profil 25 25 25 26 26 26 26 26 26 26 26 26 26 26 26 26 26 26 26 26 26 27 27 27 27 27 27 27 27 27 27 27 27 27 27 27 27 27 27 28 28 28 28 28 28 28 28 28 28 28 28 28 28 28 28 28 28 advPhyU advPhyU advPhyU request request request initial initial initial station station station vP vP vP vP vP vP vP vP vP aq aq aq aq aq aq aq aq aq hys hys hys hyL hyL hyL hyU hyU hyU request request request initial initial initial station station station vP vP vP vP vP vP vP vP vP aq aq aq aq aq aq aq aq aq hys hys hys hyL hyL hyL hyU hyU hyU request request request initial initial initial station station station vP vP vP vP vP vP vP vP vP aq aq aq aq aq aq aq aq aq ARRIS PROPRIETARY All Rights Reserved hys hys hys hyL hyL hyL hyU hyU hyU Ad Ad 12 Ad Ad 0 Ad Ad 5 Ad Ad 5 Ad Ad 12 Ad Ad 5 Ad Ad 12 Ad Ad 0 Ad Ad 5 Ad Ad 5 Ad Ad 12 Ad Ad 16 Ad Ad 12 Ad Ad 0 Ad Ad 5 Ad Ad 5 Ad Ad 12 Ad Ad 5 Ad Ad vP vP 7 vP vP 16 vP vP 34 vP vP 34 vP vP 7 vP vP 22 vP vP 7 vP vP 16 vP vP 34 vP vP 34 vP vP 7 vP vP Al vP vP 7 vP vP 16 vP vP 34 vP vP 34 vP vP 7 vP vP 22 vP vP
469. profile p IUC advphy scdma trell step spread subframe no cable modulation profile p Creates or changes a modulation profile Use the no cable modula tion profile command to remove the specified modulation profile If all modulation profiles are removed modems using this CMTS go offline and do not come online again until you recreate modulation profiles referenced in the upstream interface specification p Selects the modulation profile Valid range 1 to 100 default_prof Specifies a modulation profile with reasonable defaults Code Definition qam Create a default QAM16 modulation profile qpsk Create a default QPSK modulation profile mix Create a default QPSK QAM mixed modulation profile advanced phy Create a default 64QAM profile with advanced PHY ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard C3 CMTS User Guide IUC The interval usage code may be ae DOCSIS 1 0 and 1 1 Description 1 request Request burst 2 reqdata Request data burst 3 initial Initial ranging burst 4 station Station keeping grant burst 5 short Short grant burst 6 long long grant burst ATDMA operation 9 advPhyS Advanced PHY Short data 10 advPhyL Advanced PHY Long data 11 advPhyU Pa PHY Unsolicited Grant Service fec_t The number of bytes which can be corrected per FEC codeword Range 0 to 16 For TDMA burst profiles fec_t lt 10
470. provides a form listing essential configuration parameters Appendix H C3 Syslog Events and SNMP Traps provides a listing of supported traps and syslog events 1 2 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Conventions Used in This Manual Various fonts and symbols are used in this manual to differentiate text that is displayed by an interface and text that is selected or input by the user Highlight Use Examples Keyword Text to be typed Type exit at the bold literally at a CLI prompt prompt italics Indicates a required user ping jpadadr parameter A parameter in a CLI command ping jpadadr A parameter enclosed in bracketed square brackets is optional a parameter enclosed in curly brackets is mandatory terminal no monitor Display text Shows an monospaced interactive session of commands and resulting output IP address enter an IP address ipaddr in dotted quad format 10 1 105 128 MAC address enter a MAC macaddr address as three 4 digit 00a0 731e 3f84 hexadecimal numbers separated by periods v NOTE Notes are intended to highlight additional references or general information related to a procedure product or system A CAUTION Caution Indicates an action that may disrupt service if not performed properly WARNING Danger Indicates an action that may cause equipment damage physical injury or death if not perfo
471. pstream cable group a collection of upstream channels that can be assigned to one or more cable modems Each upstream channel has a group ID assigned to it which is used to associate that channel with other upstream channels on the same physical cable The C3 supports up to 6 cable groups Initial Ranging Requirements The cable modem must support the RNG RSP message all DOCSIS compliant modems should support this message ARRIS PROPRIETARY All Rights Reserved 7 27 7 Managing Cable Modems Procedure 7 4 7 28 Periodic Ranging Requirements The cable modem must support the RNG RSP UCC REQ and UCC RSP messages The cable modem provisioning file should not contain an upstream channel ID TLV type 2 Set up a Cable Group and Assign Load Balancing Follow these steps to set up a cable group and assign a load balancing method k NOTE Six cable groups are defined by default with each physical upstream assigned to a different cable group Assign desired US channels to a specified cable group using the following commands conf t interface cable 1 0 cable upstream us group id id where is ing the physical upstream channel 0 to 5 to be assigned to a cable group id the cable group ID 1 to 6 Enable load balancing and set desired method for the cable group using the following command cable group id load balancing type where is
472. qam 16qam qpsk Sets the downstream modulation type The 16qam and qpsk choices are available only when the downstream MAC mode has the wireless option enabled Changing the downstream modulation type when in wireless mode does not affect the downstream symbol rate cable downstream power level Syntax cable downstream power level dBmvV Sets the downstream power level to the specified value Valid range 45 to 65 dBmvV If an up converter is not installed the CMTS disables this command cable downstream rate limit Syntax Release 4 3 Standard no cable downstream rate limit token bucket Enables rate limiting on the downstream with optional token bucket limiting The parameter is ARRIS PROPRIETARY All Rights Reserved 10 223 10 Command Line Interface Reference token bucket Use token bucket limiting for DOCSIS 1 0 Class of Service CoS flows The C3 limits downstream traffic to a modem based on the Class of Service DOCSIS 1 0 or Service flow specification DOCSIS 1 1 The C3 enforces 1 0 CoS with a moving one second window algorithm and enforces 1 1 QoS with token bucket rate limiting according to the formula max T T R 8 B over any interval T If the token bucket option is specified then 1 0 CoS will use the 1 1 token bucket rate limiting algorithm with a burst size B specified in cable docsis10 Mmax traffic burst page 10 195 If the required bandwidth exceeds the enforced bandwidth
473. qam scrambler 338 no diff 168 shortened long AdvPhy TDMA long 10 150 0 8 16qam scrambler 338 no diff 304 shortened request AdvPhy TDMA request 0 16 0 8 qpsk scrambler 338 no diff 64 fixed initial AdvPhy TDMA initial 5 34 0 48 qpsk scrambler 338 no diff 640 fixed station AdvPhy TDMA station 5 34 0 48 qpsk scrambler 338 no diff 384 fixed short AdvPhy TDMA short 8 78 10 8 16qam scrambler 338 no diff 168 shortened long AdvPhy TDMA long 10 220 0 8 1l6qam scrambler 338 no diff 192 shortened request AdvPhy TDMA request 0 16 0 8 qpsk scrambler 338 no diff 64 fixed initial AdvPhy TDMA initial 5 34 0 48 qpsk scrambler 338 no diff 640 fixed station AdvPhy TDMA station 5 34 0 48 qpsk scrambler 338 no diff 384 fixed short AdvPhy TDMA short 8 78 10 8 16qam scrambler 338 no diff 168 shortened long AdvPhy TDMA long 5 240 0 8 16qam scrambler 338 no diff 192 shortened request AdvPhy ATDMA 536 request AdvPhy preamble type qpsk request 0 16 0 8 qpsk scrambler 338 no diff 64 fixed initial AdvPhy ATDMA 536 initial AdvPhy preamble type qpsk initial 5 34 0 48 qpsk scrambler 338 no diff 640 fixed station AdvPhy ATDMA 536 station AdvPhy preamble type qpsk station 5 34 0 48 qpsk scrambler 338 no diff 384 fixed advPhyS AdvPhy ATDMA 536 advPhyS AdvPhy preamble type qpsk advPhyS 12 78 12 8 qpsk scrambler 338 no diff 200 shortened advPhyL AdvPhy ATDMA 8 1504 advPhyL AdvPhy preamble type qpsk advPhyL 16 150 0 8 qpsk scrambler 338 no diff 304 shortened advPhyU
474. r hosts Helper Address 2 O for modems O for hosts Helper Address 3 O for modems O for hosts Helper Address 4 O for modems O for hosts Helper Address 5 O for modems O for hosts G 6 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Downstream RF Configuration Upstream 0 RF Configuration Release 4 3 Standard C3 CMTS User Guide dhcp giaddr O primary O policy Other DHCP options O ip dhcp relay O ip dhcp relay information option DOCSIS type O DOCSIS 6 MHz O EuroDOCSIS 8 MHz Center Frequency MHz Modulation O 64 QAM O 256 QAM Center Frequency MHz Channel Width MHz Modulation O QPSK O 8 QAM O 16 QAM O 32 QAM O 64 QAM ARRIS PROPRIETARY All Rights Reserved G 7 G Configuration Forms Upstream 1 RF Configuration Upstream 2 RF Configuration Upstream 3 RF Configuration Center Frequency MHz Channel Width MHz Modulation O QPSK O 8 QAM O 16 QAM O 32 QAM O 64 QAM Center Frequency MHz Channel Width MHz Modulation O QPSK O 8 QAM O 16 QAM O 32 QAM O 64 QAM Center Frequency MHz Channel Width MHz Modulation O QPSK O 8 QAM O 16 QAM O 32 QAM O 64 QAM ARRIS PROPRIETARY All Rights Reserved 11 14 05 Upstream 4 RF Configuration Upstream 5 RF Configuration Release 4 3 Stand
475. r in out stats a statistics Traffic statistics consists of total input and output packets and bytes and dropped packets The drops counters are taken directly from the iffable MIB row appropriate to the interface input drops from ifInDiscards and output drops from ifOutDiscards See also show cable modem page 10 59 Example line protocol is up thernet address is 0000 caab 5612 ETH WAN Cadant C3 CMTS BCM5421 Rev Al Primary Internet Address 10 41 36 2 25 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 75 10 Command Line Interface Reference Outgoing access list is not set Inbound access list is not set Direct Subnet Broadcast Propagation disabled Layer II Bridge To Bridge Routing subIf Routing disabled Src Ip Directly Connected NW filter disabled Src Ip SubIf Directly Connected NW filter disabled Valid Ip Address filter enabled Incoming non IP ARP packets allowed MTU 1500 bytes BW 100000 Kbit Full duplex 100Mb s Output queue 0 drops input queue 226 drops 5 minutes input rate 1114 bits sec 1 packets sec 5 minutes output rate 1839 bits sec 1 packets sec 1522 packets input 214371 bytes Received 0 broadcasts 226 multicasts 0 giants O input errors 0 CRC 0 frame 1735 packets output 351712 bytes 0 output errors 0 collisions 0 excessive collisions 0O late collision 0 deferred 0 lost no carrier FastEthernet0 1 is up line protocol is up Hardware is ethernet
476. r is not required to belong to the group a multicast server can transmit to the group without belonging to it For example a subscriber is web surfing and clicks on an on demand video that she wants to view Her PC becomes a member of the multicast group by sending an Internet Group Management Protocol IGMP join message to the C3 CMTS The join is then proxied on a proxy interface which sends an IGMP join message to the next hop router that is set up to be an IGMP querier The virtual path between the requesting subscriber and the sender is then set up by the next hop router Then the subscriber begins to receive the multicast video she clicked on Another example of this application would involve a cable broadband subscriber While using an Internet browser he might click on an icon or online advertisement to receive real time news updates or to listen to an online music concert In this case the icon or ad contains embedded data containing the correct group address and code to tell the C3 CMTS to add this host to the group Multicasting suits applications in which the same data must be communi cated to many hosts in a timely and efficient manner Some examples e Colleges use it for distance learning college courses or training delivered to anyone having a reliable Internet connection e Large companies with multiple campuses use it for employee training and corporate addresses e Groups can use it for teleconferencing if combined
477. rState Sid SchedType Prio MaxSusRate MaxBrst MinRsvRate Throughput verbose Example Displays selected statistics in more detail C3 show interface cable 1 0 service flow Sfid Sid 1 1 32769 N A C3 Mac Address Type Dir Curr Active State Time 0000 ca31 3ed0 prim US Active 1h53m 0000 ca31 3ed0 prim DS Active 1h53m Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 83 10 Command Line Interface Reference show interface cable 1 0 sid Syntax show interface cable 1 0 sid connectivity counters sid Displays Service Flow information for all SIDs or optionally for a single SID The options are Keyword Description sid Displays Service Flow information for the specified SID The default is to show all configured SIDs counters Displays information about Sid PacketsReceived FragComplete ConcatpktReceived connectivity Displays information about Sid Prim Mac Address IP Address Type Age AdminState SchedType Sfid show interface cable 1 0 signal quality Syntax show interface cable 1 0 signal quality port Displays signal quality for the specified upstream port range O to 5 or all ports if no port specified Example C3 show interface cablel 0 signal quality Cablel1 0 Upstream 0 is up includes contention intervals TRUE Cablel1 0 Upstream 1 is up includes contention intervals TRU C3 ES E 10 84 ARRIS PROPRIETARY All Rights Reserve
478. rates a state of the art up converter for the downstream signal The signal may be output in either the DOCSIS 6 MHz wide Annex B or EuroDOCSIS 8 MHz wide Annex A formats The inte grated up converter can generate the full DOCSIS EuroDOCSIS power range across the entire frequency The up converter is frequency agile Either the command line interface or SNMP can be used to tune the upcon verter and configure it for DOCSIS or EuroDOCSIS operation The CMTS is capable of using various frequency plans including North American Standard IRC HRC Japanese European PAL and European SECAM For more information on supported channel plans see Appendix B The C3 can operate at any frequency in 62 5 KHz steps within the band The CMTS incorporates a wideband digital receiver for each upstream channel The digital receiver section allows spectrum analysis as well as advanced digital signal processing to remove noise including ingress and deliver the highest possible performance The MAC chip implements media access control MAC protocol and handles MPEG frames It also supports Direct Memory Access DMA for high data transfer performance ARRIS PROPRIETARY All Rights Reserved 11 14 05 Ethernet Interfaces Management Schemes CPU Flash Disk Release 4 3 Standard C3 CMTS User Guide The CMTS has two Ethernet interfaces each which is capable of operating at 10 100 or 1000 megabits per second The ports are capable
479. ration Chapter 4 Bridge Operation describes basic bridge operation of the CMTS and issues in upgrading to L3 capable code to restore DHCP operation Chapter 5 Providing Multiple ISP Access describes the supported 802 1Q VLAN capabilities Chapter 6 IP Routing describes how to configure the C3 CMTS as a layer 3 router Chapter 7 Managing Cable Modems describes common procedures for operating and troubleshooting DOCSIS systems Chapter 8 Configuring Security describes methods that can be used to improve security of management and user traffic Chapter 9 Service Procedures describes basic service procedures Chapter 10 Command Line Interface Reference describes the command line interface for managing and configuring the CMTS Appendix A Specifications lists physical electrical and networking specifications Appendix B CMTS Configuration Examples provides a configuration for a bench top trial Includes both RF and CLI configuration Appendix C Wireless Cable Applications describes features related to wireless cable support Appendix D DSi Applications provides example configurations for providing circuit emulation services Appendix E SLEM MIB provides the Simple Law Enforcement Moni toring SLEM MIB Appendix F Factory Defaults contains default configuration infor mation Appendix G Configuration Forms
480. rd interface in the CMTS then it is actually the MAC address of the cable interface which connected to the CM cable card connected to the CM This part of the information is uniform across all CMTS traps docsDevCmtsInitRegAckFailTrap 3 An event to report the failure of a registration acknowledgement from CM happened during the CM initialization process and detected in the CMTS side docsDevCmtsDynServReqFailTrap 4 An event to report the failure of a dynamic service request that happened during the dynamic services process and detected in the CMTS side docsDevCmtsDynServRspFailTrap 5 An event to report the failure of a dynamic service response that happened during the dynamic services process and detected in the CMTS side docsDevCmtsDynServAckFailTrap 6 An event to report the failure of a dynamic service acknowledgement that happened during the dynamic services process and detected in the CMTS side docsDevCmtsBpilnitTrap 7 An event to report the failure of a BPI initialization attempt that happened during the CM registration process and detected in the CMTS side docsDevCmtsBPKMTrap 8 An event to report the failure of a BPKM operation which is detected in the CMTS side docsDevCmtsDynamicSATrap 9 An event to report the failure of a dynamic security association operation which is detected in the CMTS side docsDevCmtsDccReqFailTrap 10 An event to report the failure of a dynamic channel
481. ream logical channel using the command sequence conf t int cab 1 0 cable upstream 0 0 shutdown cable upstream 0 0 modulation profile 3 The following is an example ATDMA modulation profile created using the above commands cable modulation profile 3 request AdvPhy preamble type qpsk0 7 2 ARRIS PROPRIETARY All Rights Reserved 11 14 05 cable cable cable cable cable cable cable cable cable cable cable cable cable cable cable cable BSH3 BS 33533 353835353838 od od od od od od od od od od od od od od od od la la la la la la la la la la la la la la la la tion profile tion profile C3 CMTS User Guide uest 0 16 0 tial AdvPhy req ini 8 qpsk scrambler 338 no diff 64 fixed ATDMA 1 1536 initial AdvPhy preamble type qpsk0 tion profile tion profile initial 5 34 0 48 qpsk scrambler 338 no diff 640 fixed tion profile tion profile tion profile tion profile tion profile tion profile tion profile tion profile i1on profile tion profile tion profile tion profile BwwW ww WWW Ww WwW WwW Ww Ww Ww ATDMA 1 1536 preamble type gps 48 gqpsk scrambler advPhyS AdvPhy ATDMA 1 1536 advPhyS AdvPhy preamble type qpskl advPhyS 12 78 14 8 64qam scrambler 338 no diff 104 advPhyL AdvPhy ATDMA 1 1536 advPhyL AdvPhy preamble type advPhyL 16 220 0 8 64qam scram advPhyU AdvPhy ATDMA 1 1536 advPhyU AdvPhy preamble type advPhyU 16 220 0
482. recognized configuration setting 83010206 SYSLOG_WARNING Service Change Response rejected Required parameter not present 83010207 SYSLOG_WARNING Service Change Response rejected Multiple errors 83010208 SYSLOG_WARNING Service Change Response rejected Classifier exists 83010209 SYSLOG_WARNING Service Change Response rejected PHS rule exists 83010210 SYSLOG_WARNING Service Change Response rejected Duplicated reference ID or index in 83010211 SYSLOG_WARNING Service Change Response rejected Invalid parameter for context 83010212 SYSLOG_WARNING Service Change Response rejected Major classifier error 83010213 SYSLOG_WARNING Service Change Response rejected Major PHS rule error 83010214 SYSLOG_WARNING Service Change Response rejected Multiple Major errors 83010215 SYSLOG_WARNING Service Change Response rejected Message too big 83010203 SYSLOG_WARNING Service Change Response rejected Message syntax error 83010300 SYSLOG_WARNING Service Delete Response rejected Invalid transaction ID 83020100 SYSLOG_WARNING Service Add Response rejected Invalid transaction ID 83020101 SYSLOG_WARNING Service Add Aborted No ACK 83020102 SYSLOG_WARNING Service Add ACK rejected HMAC auth failure 83020103 SYSLOG_WARNING Service Add ACK rejected Message syntax error 83020200 SYSLOG_WARNING Service Change ACK rejected Invalid transaction ID 83020201 SYSLOG_WARNING Service Change Aborted No ACK 83020202 SYSLOG_WARNING Service Change ACK rejected
483. red are IPV4 l4Port dscp dstMacAddr srcMacAddr ethernetPid dstLlcSap and srcLicSap only IPV4 addresses TCP UDP ports TOS byte L2 source and destination MAC addresses etherType LLC DSAP SSAPs may be used in filters Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 8 37 8 Configuring Security Configuring SSH SSH Versions Supported Terms and Concepts Default Values Key Sizes and Formats 8 38 ARRIS PROPRIETARY All Rights Reserved SSH Secure Shell provides operators with encrypted access to the C3 This is important for remote access since potential attackers often monitor such links looking for passwords or other privileged information SSH does not provide extra account access security anyone with an SSH client and a valid C3 user account and password can access the C3 through SSH SSH only provides a encrypted link that prevents password sniffing The C3 currently supports both SSH v1 and v2 access The tasks in this procedure use the following terms and concepts Key A block of bits used to encrypt or decrypt data on the SSH link Keys can be from 512 to 2048 bits long in increments of 128 bits Longer keys are harder to decrypt by someone attempting to compromise your security but can seriously impact CMTS performance Client A system that a remote operator uses to connect to the C3 using SSH Host The C3 Host key Actually a pair of keys one public sent to c
484. redistribute connected metric metric type redistribute rip redistribute static metric redistribute static metric metric type reload rename rmdir route map router ospf router rip ARRIS PROPRIETARY All Rights Reserved C3 CMTS 10 149 10 150 10 151 10 152 10 152 10 148 10 8 10 192 10 153 10 188 10 209 10 153 10 40 10 41 10 250 10 255 10 249 10 41 10 157 10 248 10 157 10 8 10 41 10 189 10 255 10 251 10 259 10 259 10 251 10 260 10 42 10 43 10 43 10 254 10 158 10 158 11 14 05 C3 CMTS 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 script execute script start script stop send show show aaa show access lists show aliases show arp show bootvar show bridge show bridge group show c show cable actions show cable filter show cable flap list show cable frequency band show cable group show cable host show cable modem show cable modulation profile show cable service class show cable triggers show calendar show cli show cli accounts show cli logging show clock show clock timezone show configuration show context show controllers show crypto key show debug show environment show exception Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 43 10 43 10 44 10 44 10 12 10 46 10 47 10 12 10 13 10 13 10 50 1
485. redistribute connected metric m Controls whether the C3 advertises subnets belonging to sub interfaces and are not under configured network scopes Example Use this command to advertise cable sub interface subnets into an MSO RIP backbone without running RIP on the cable sub interface itself for security reasons do not want to receive or send RIP updates on the cable sub interface redistribute static metric Syntax no redistribute static metric m Controls whether the C3 advertises static routes Redistributed routes use the optionally specified metric or the default metric if none is specified Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 251 10 Command Line Interface Reference timers basic Syntax timers basic interval invalid flush Sets various router related timers The parameters are Keyword Description interval The time in seconds between basic routing updates that is the C3 generates RIP update packets at this interval Valid range 0 to 4294967295 sec Default 30 sec invalid The time in seconds that the C3 continues to use a route without receiving a RIP update packet for that route After the timer expires the C3 advertises the route with metric 16 no longer reachable Valid range 1 to 4294967295 sec the time must be at least 3 times longer than the interval timer Default 180 seconds flush validate update source Syntax
486. relay cable dhcp giaddr primary cable helper address 10 99 99 1 no ip dhcp relay information option map attached CPE to the provisioning server if a cm is stil lusing this subinterface then cm has not been provisioned yet map cpes cable 1 0 4 exit l interface cable 1 0 11 description modem_isp1 for cm devices for ISP 1 once cm has IP address 5 10 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide ip address 10 11 0 1 255 255 0 0 encapsulation dotlq 11 native bridge group 9 ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no management access map all cpe traffic map cpes cable 1 0 1 exit interface cable 1 0 12 description modem_isp2 for cm devices for ISP 2 once cm has IP address ip address 10 12 0 1 255 255 0 0 encapsulation dotlq 12 native bridge group 9 ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no management access map cpes cable 1 0 2 exit interface cable 1 0 13 description modem_isp3 for cm devices for ISP 3 once cm has IP address ip address 10 13 0 1 255 255 0 0 encapsulation dotlq 13 native bridge group 9 ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no management access map cpes cable 1 0 3 exit interface cable 1 0 0 Get rf running not no rf configuration here so check the factory defaults are ok no cable upstream 0 shutdown n
487. ress 10 6 0 2 host cable dhcp giaddr primary VSE tag of 1 is required here encapsulation dotlgq 1 native encapsualtion dotlq 1 encrypted multicast no cmts management allowed no management access exit j interface cable 1 0 2 for VPN RED bridge group 1 need to use dhcp relay so set up ip addressing for relay to work ip address 204 3 4 1 255 255 255 0 ip dhcp relay cable helper address 204 6 6 6 cable dhcp giaddr primary VSE tag of 2 is required here encapsulation dotlq 2 native encapsulation dotlq 2 encrypted multicast give VPN members downstream privacy allow 12 multicast and bcast echo 12 broadcast echo 12 multicast echo do not allow ip traffic to leave this bridge group no ip 12 bg to bg routing no cmts management allowed no management access if required that VPN members get ip address from operator provisioning system add the following ap address 10 2 0 254 255 255 255 0 ip DHCP relay cable helper address 10 6 0 2 host cable DHCP giaddr primary exit j interface cable 1 0 3 for VPN BLUE bridge group 1 VSE tag of 3 is required here encapsulation dotlq 3 native give VPN members downstream privacy encapsulation dotlq 3 encrypted multicast allow 12 multicast and bcast echo 12 broadcast echo 12 multicast echo do not allow ip traffic to leave this bridge group zr Release 4 3 Standard ARRIS PROPRIETARY All Rig
488. ress cancellation is disabled Minislot Size in number of Timebase Ticks is 4 Upstream channel ID 8 Dynamic Services Stats DSA 0 REQs 0 RSPs 0 ACKs 0 Successful DSAs 0 DSA Failures DSC 0 REQ 0 RSPs 0 ACKs 0 Successf DSCs 0 DSC Failures DSD 0 REQ 0 RSPs 0 Successful DSDs 0 DSD Failures E DCC 0 REQ 0 Successfu a jo RSPs 0 ACKs DCCs 0 DCC Failures C3 Example C3 show controllers fastethernet 0 0 Interface FastEthernet0 0 Hardware is ethernet tx carrier loss tx_no_carrier 0 tx late _collision 0 tx_excess_ coll 0 tx collision _cnt 0 tx _deferred 0 C3 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 69 10 Command Line Interface Reference show debug 10 70 Shows the current debug state The output of this command shows four tables Mac Addresses enabled for Debug Lists the MAC addresses MAC address masks and debug verbosity levels of all cable modems that were specified by MAC address e g debug cable mac address 00a0 7300 0000 ffff 0000 0000 verbose etc The table is sorted by MAC address and shows the latest verbosity level and MAC address mask associated with the MAC address Thus if two or more commands are entered with the same MAC address but differing MAC address masks or verbosity levels only the latest setting is displayed The list may include CM MAC addresses which are not yet online or are com
489. rface Subcommands for fastEthernet Interfaces only page 10 189 interface cable page 10 193 ARRIS PROPRIETARY All Rights Reserved 10 181 10 Command Line Interface Reference Syntax Syntax Syntax 10 182 ip access group no ip access group access list number in out Associates an ACL with a specific interface You must assign an ACL to an interface with a direction for the ACL to have any effect For example only when an ACL is assigned to a CMTS interface with an in direction does the source IP specification refer to a device external to the CMTS See also access list page 10 100 show access lists page 10 47 and Chapter 8 Configuring Security ip directed broadcast no ip directed broadcast Enable or disable directed subnet broadcast forwarding on this interface ip 12 bg to bg routing no ip 12 bg to bg routing Enables or disables IP routing of IP packets received at a sub interface where the sub interface must act as an IP gateway to other C3 sub interfaces or devices connected to other C3 sub interfaces You should allow management access on this sub interface to allow ARP to succeed If a layer 2 data frame containing an IP packet arrives at a sub interface with a layer 2 destination MAC address of the C3 sub interface the C3 drops the frame containing the IP packet if it is not a acceptable management IP ARRIS PROPRIETARY All Rights Reserved 11 14 05 Syntax Synta
490. rface are broadcast back downstream This may be specified per cable sub interface cable dci upstream disable Syntax cable dci upstream disable macaddr enable disable period n Instructs the addressed modem to immediately enable its upstream trans mitter or to disable it for the stated period The parameters are Keyword Description macaddr The MAC address of the modem Instructs the addressed modem to enable its upstream trans enable mitter 10 194 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Keyword Description Instructs the addressed modem to immediately disable its upstream transmitter no matter what state the modem is currently in girang This state is not cleared in the C3 if the modem is rebooted If the C3 is rebooted it loses memory of this state but the modem is still disabled The modem upstream must be re enabled from the C3 The length of time to disable the transmitter Valid range 1 to 4294967294 milliseconds Use 0 to disable the modem indefinitely and 42949672945 to enable the modem cable docsisi0 max traffic burst Syntax cable docsis10 max traffic burst size Sets the maximum DOCSIS 1 0 burst traffic size in bytes Valid range 1522 to 100000 bytes cable encrypt Syntax cable encrypt shared secret string Activates MD5 authentication on DOCSIS configuration files The expected shared secret is string To disable MD
491. rface fastethernet 0 1 0 bridge group 0 define management ip address ip address 10 1 1 2 255 255 255 0 no need now as CPE dhcp never reaches this sub interface but if dhcp server is not dual homed on cm subnet will still be needed for cm operation as will static route in dhcp server to this interface for the modem network no ip 12 bg to bg routing no shutdown j interface cable 1 0 0 bridge group 0 ip address 10 2 1 1 255 255 255 0 all modem traffic will default here ip dhcp relay cable helper address 10 1 1 1 cable dhcp giaddr interface cable 1 0 1 all CPE traffic will default here bridge group 1 encapsulation dotlq 99 native ip address 192 168 253 2 255 255 255 0 ip dhcp relay cable helper address 172 16 5 1 cable dhcp giaddr exit j exit exit write B 12 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Advanced Bridging 802 1Q VLAN Backbone Release 4 3 Standard C3 CMTS User Guide An additional software licence is required to support the following exam ples Please contact your account manager The advanced bridging and VLAN features of the Cadant C3 allow the use of more bridge groups more sub interfaces and more 802 1Q VLANs The following example shows an open access system implemented with a Cadant C3 in bridging mode with three ISPs This example is shown as all the advanced bridging and VLAN abilities of the C3 are used The C3 can support up to 63 ISPs
492. rk e A scope defined for the network 205 2 3 0 network e A method of providing specific DHCP options including configuration file for a specific modem MAC address The modem DHCP Discover arrives at the DHCP server with its giaddr set to 10 6 0 1 so there must be an address pool for modems defined in the cable operator DHCP server for this subnet For example from 10 6 0 10 to 10 6 0 254 Create a modem policy and assign to this address pool This modem policy should have the DHCP server as the default route for the modems and should reference a suitable default set of DHCP options This is the default modem policy for modems that have no other options specified reserved The ISP s DHCP Discover arrives at the operator DHCP server with a giaddr of 205 2 3 253 7 NOTE You must enable ip 12 bg to bg routing and management access on fastethernet 0 1 0 for CPE assigned to ISP to successfully renew the DHCP lease There should be a CPE address pool defined in the cable operator DHCP server for this subnet For example from 205 2 3 1 to 205 2 3 252 The operator DHCP options in the policy for this address pool must have a router option of 205 2 3 254 the internet gateway for ISP k NOTE The operator DHCP server needs a static route to the 205 2 3 0 24 network Without this route the DHCP server Offer and Ack responses to the CPE devices are not forwarded and DHCP Renew Ack to the CPE also fails For example route
493. rmed properly Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 1 3 1 About this Manual For More Information FCC Statement Safety 1 4 For more detailed information about DOCSIS refer to the following tech nical specifications available online at www cablelabs com e Radio Frequency Interface RFI Specification defines how data is passed over the cable e Operations Support System Interface OSSI Specification defines how DOCSIS components can be managed by the cable operator e Baseline Privacy Interface BPI Specification defines how data is encrypted while traveling on the cable to keep it private e Computer to Modem Communications Interface CMCI Specifica tion defines how PCs can communicate to cable modems For an overview of DOCSIS 2 0 features see the ARRIS white paper Getting to Know the New Kid on the Block at http www arrisi com products_solutions applica tions white_papers DOCSIS_20_Getting_To_Know_The_New_Kid pdf This device complies with part 15 of the FCC Rules Any changes or modi fications not expressly approved by the grantee of this device could void the user s authority to operate the equipment Normal lightning and surge protection measures are assumed to have been followed in the RF plant that the ARRIS Cadant C3 CMTS RF input and output is connected to If AC supply is used to power the ARRIS Cadant C3 CMTS suitable surge and lightning protect
494. rnet 0 1 1 VLAN tag 53 FastEthernet 0 1 1 VLAN tag 53 bound to Cable 1 0 1 VLAN tag 73 FastEthernet 0 0 1 VLAN tag 42 VLAN tag 44 bound to Cable 1 0 1 VLAN tag 28 VLAN tag 83 bound to Cable 1 0 1 VLAN tag 19 The following example shows a cable sub interface with an IP address but as this sub interface has no encapsulation specification is not attached C3 config ip routing C3 config int cable 1 0 4 INOTE sub interface config will not be applied and will not be displayed by the show commands until after interface configuration mode has been exited C3 config subif ip address 10 99 87 1 255 255 255 0 C3 config subif exit Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 51 10 Command Line Interface Reference C3 config show bridge gro up bridge group 4 NOT ATTACH Cable 1 0 4 10 C3 config ED F E 99 87 1 24 See also bridge group page 10 181 show bridge group page 10 51 encap sulation dot1q page 10 202 show c Syntax sho w c all filesys Displays a complete file listing or optional information about the filesystem on the Compact Flash disk Use the filesys keyword to view the filesystem infor mation use all to display both the file listing and the information information shown below is for illustrative purposes only Actual displays will vary C3 show c Listing Directory C rw
495. rnet VLAN directing un provisioned subscribers to a specific subnet and backbone VLAN allowing access only to the provisioning web server A default modem cable sub interface has been created All modem DHCP discover broadcasts are mapped to this cable sub interface This cable sub interface is a member of bridge group 9 A sub interface of the MGMT port is configured as a member of this bridge group and has a VLAN tag of 999 the same VLAN tag of the DHCP server Once modems have an IP address modem traffic is allocated to cable sub interfaces by modem source IP address match to sub interface subnet All modem sub interface are members of bridge group 9 and are thus connected to the DHCP server using tag 999 These sub inter faces contain the map cpes specifications re directing CPE traffic to other or the same cable sub interfaces and hence cable VPNs ARRIS PROPRIETARY All Rights Reserved 5 5 5 Providing Multiple ISP Access 5 6 The following shows the network diagram for this example VLAN 999 1 1 _ L E B L eiA 1806008 bad iT ry J cy E Edge Router m T n l i 2 s3025 a g 4 osooso jo ae im is i mme y ceca p ee OR A lt y m lt pey a 560000 oo VLAW Switch k VLAN Switch My 7 C L A me a e fe e e e e N Provisioning W
496. rom a bridge group this sub interface is then assumed by the C3 to be the management inter face for the C3 e Another sub interface is created and bridged to the modems on cable 1 0 1 e One of the fastethernet 0 1 X sub interfaces must have a VLAN tag the following example shows the tagging being assigned to fasteth ernet 0 1 1 default cm subinterface cable 1 0 1 default cpe subinterface cable 1 0 0 fastethernet 0 0 0 for CPE traffic bridge group 0 no management access cable 1 0 0 for CPE traffic bridge group 0 no management access fastethernet 0 1 0 for CMTS management no bridge group ip address 10 0 0 1 255 255 255 0 management access fastethernet 0 1 1 for modem traffic bridge group 1 encapsulation dotlq 11 cable 1 0 1 for modems bridge group 1 no management access encapsulation dotlq 1 native K NOTE This example still falls within the boundaries of the basic software license abilities namely up to 3 sub interfaces per bridge group up to 2 bridge groups one VLAN tag per sub interface and one management only sub interface allowed ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide As other examples in this chapter show access by CPE devices to the management network can also be restricted by e ACL e Subscriber management filters Filtering Traffic The C3 supports subscriber management filtering and access control list ACL based filtering You can al
497. ront is working dcxFPDFan5Fail 11 Fan 5th from the front failed dcxFPDFan5FailCir 12 Fan 5th from the front is working dcxFPDFan6Fail 13 Fan 6th from the front failed dcxFPDFan6FailCir 14 Fan 6th from the front is working dcxFPDPwr1Fail 15 Rightmost power supply has failed dcxFPDPwr1FailCir 16 Rightmost power supply is working dcxFPDPwr2Fail 17 Leftmost power supply has failed dcxFPDPwr2FailCir 18 Leftmost power supply is working dcxFPDTempOkay 19 System temperature is OK dcxFPDTempBad 20 System temperature is too hot dcxFPDTempCritical 21 System temperature is critical CMTS will shut itself down Table H 3 iso 1 org 3 dod 6 internet 1 private 4 enterprises 1 arris 4115 arrisProducts 1 arrisProdIdCMTS 4 cmtsC3 3 cmtsC3CMMIB 5 dcxCMMObjects 1 dcxCMMTrapGroup 4 SNMP Trap OID SNMP Trap Description dcxCMMTrap 2 General CMM trap The reason for the trap is described in the DcxCMMTrapReason Table H 4 iso 1 org 3 dod 6 internet 1 private 4 enterprises 1 cisco 9 ciscoMgmt 9 cTapBMIB 252 cTapMIBNotifications 0 SNMP Trap OID SNMP Trap Description cTapMIBActive 1 This notification is sent when an intercepting router or switch is first capable of intercepting a packet corresponding to a configured data stream If the configured data stream is an IP one the value of the correspondin
498. rotocol for exchanging routing information between routers and gateway devices The benefits of enabling RIP in the C3 are e You no longer need to specify a default gateway to let the C3 find distant destinations the C3 learns about the network topology around it using RIP e Other devices on the Internet backbone use information from the C3 through RIP to learn how to contact cable interface subnets behind the C3 About OSPF OSPF Open Shortest Path First is an internal routing protocol that addresses several limitations of RIP e OSPF provides faster network convergence that is the time required to propagate changes to routers is shorter e OSPF routers send only updated routing information as needed RIP routers send their entire routing table to other routers at regular inter vals thus using less bandwidth to keep networks updated e OSPF does not use the RIP assumption that a path of more than 15 hops is unreachable e OSPF s routing metrics account for bandwidth on each link RIP uses a hop count metric e OSPF introduces the idea of areas a method for limiting router updates to a specific group of routers In general OSPF is better suited for use in large internal networks that may have a variety of links and long paths to various destinations Routing Priority Use the show ip route command to display routing priority In the following example comments have been added using lt lt lt lt lt to add s
499. rough advanced noise cancellation technology Compact size Full DOCSIS 1 1 with ATDMA support or DOCSIS 2 0 with ATDMA and SCDMA support in a one rack unit high system Operator selectable Layer 2 and Layer 3 forwarding Allows operators to choose the routing method most appropriate to their needs ACL support Up to 30 ACLs with 30 entries per ACL may be applied to any interface Full upstream support Allows better utilization of upstream frequency space for DOCSIS in plants outside of North selectable in software 5 to 65 MHz f America DOCSIS and Provides flexibility for operators by supporting EuroDOCSIS support either protocol on the same unit with no additional hardware to purchase Efficient bandwidth management User configurable dynamic upstream channel bandwidth allocation allows the ARRIS Cadant C3 to respond to network conditions in real time Load balancing allows the cable operator to automatically or manually distribute upstream traffic evenly across available channels Integrated RF up converter Complete ready to use CMTS in only one rack unit 1 75 in of space ARRIS PROPRIETARY All Rights Reserved 2 3 2 Getting Started Table 2 1 C3 Features and Benefits Features Benefits DSx support Provides support for up to 200 simultaneous telephony connections DOCSIS DSx signalling occurs directly between the C3 and an MTA DSx message
500. routers or accepted from other routers the default is to both send and receive keys In addition each key can have a send or accept lifetime allowing for a rotation of valid keys over time See key chain page 10 176 for more details about configuring key chains You can configure OSPF authentication against an interface in interface configuration mode or against an area in OSPF router configuration mode If both are configured the interface configuration takes priority Use the ip rip authentication or ip ospf authentication command on a sub interface to specify a key chain text password or MD5 password to accept from other routers in the network Configure text and MD5 passwords in key chain configuration mode not interface configuration mode ARRIS PROPRIETARY All Rights Reserved 6 5 6 IP Routing See jp rip authentication page 10 185 or jp ospf authentication mode page 10 185 for details about the commands Areas in OSPF Figure 6 1 OSPF two level hierarchy In this diagram Area 0 the backbone area is the only area with a numbering require ment Other areas can be numbered as desired All other areas connect only to Area 0 The routers marked ABR Area Border Routers have one or more interfaces assigned to the backbone area and other interfaces assigned to the secondary area Non ABR routers have all their inter faces in a single area The router marked ASBR Autonomous System Border Ro
501. rst ACE the layer 3 filter matches the layer 4 filter port number matches but this packet is an initial or non fragment so the last filter the fragment option fails and the packet will be passed to the next ACE in the ACL Example access list 100 permit tcp any host 192 168 253 65 eq 80 access list 100 deny ip any any This filter applied to the C3 as an incoming filter is designed to permit only HTTP port 80 to the host 192 168 253 65 But is this true A non initial fragments HTTP packet a packet with an incomplete layer 4 header can also pass to the specified host opening the host to an overlapping fragment or a tiny fragment attack access list 102 deny ip any host 192 168 253 65 fragments access list 102 permit tcp any host 192 168 253 65 eq 80 access list 102 deny ip any any If filter 102 is applied all non initial fragments are denied and only non fragmented HTTP data flows are permitted through to the specified host Using an ACL Defining an ACL does not actually apply the ACL for use Use the ip access group command to associate an ACL with inbound or outbound traffic on a specific interface or sub interface 8 18 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide It is not necessary nor is it recommended to apply an ACL to block proto cols in a symmetrical manner For example to block PING access to an interface on the C3 it is only necessary to block either the ICMP echo or
502. rved C3 CMTS 10 243 10 243 10 243 10 244 10 244 10 244 10 245 10 245 10 246 10 246 10 247 10 247 10 247 10 247 10 202 10 127 10 29 10 29 10 30 10 30 10 31 10 31 10 31 10 31 10 32 10 32 10 32 10 32 10 32 10 129 10 128 10 33 10 34 10 34 10 35 10 36 11 14 05 C3 CMTS 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 crypto key generate crypto key import crypto key zeroize debug debug all debug cable dhcp relay debug cable interface debug cable load balancing debug cable mac address debug cable privacy debug cable range debug cable registration debug cable sid debug cable tlvs debug cable ucc debug envm debug ip debug snmp debug syslog debug telnet default cm subinterface default cpe subinterface default information default information originate default metric default metric metric delete description dhcp lq params dir disable disconnect docsis test duplex elog enable Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 130 10 131 10 131 10 132 10 133 10 133 10 134 10 134 10 135 10 135 10 136 10 136 10 136 10 137 10 137 10 137 10 137 10 138 10 138 10 139 10 139 10 139 10 258 10 250 10 250 10 258 10 37 10 181 10 217 10 37 10 37 10 37 10 140 10 190 10 38 10 6 CLI v 176 177 178 179 180
503. rver location 3871 Lakefield Drive Suite 300 snmp server engineboots 1 cable modem offline aging time 86400 cable modem ucc max failed attempts 2 bridge aging time 15000 bridge 0 bridge 1 file prompt quiet no cli logging no cli logging password cli logging path cli logging size 1024 alias scm show cable modem alias pacman debug slot 0 sniff no ip dhcp server enable no ip dhcp server allow bootp clock timezone UTC 0 0 no ip routing default cpe subinterface Cable 1 0 0 default cm subinterface Cable 1 0 0 attached sub interfaces interface FastEthernet 0 0 no description no shutdown mac address 00a0 7384 0408 duplex auto snmp trap link status load interval 300 bridge group 0 ip address 172 16 1 2 255 255 2550 no allow ip only management access Suwanee GA 30024 F 2 ARRIS PROPRIETARY All Rights Reserved 11 14 05 no ip directed broadcast no ip source verify no ip source verify subif no ip 12 bg to bg routing ip verify ip address filter j 1 interface FastEthernet 0 1 no description no shutdown mac address 00a0 7384 0409 duplex auto snmp trap link status load interval 300 bridge group 1 no allow ip only no management access no ip directed broadcast no ip source verify no ip source verify subif no ip 12 bg to bg routing ip verify ip address filter interface Cable 1 0 cable utilization interval 10 cable docsis10 max traffic burst
504. s Reserved 10 103 10 Command Line Interface Reference boot system tftp Syntax bridge Syntax bridge aging time Syntax 10 104 boot system tftp filename ipaddr Boots the system from an alternate image with name filename on the TFTP server at the specified IP address See also show bootvar page 10 13 reload page 10 42 no bridge n Creates or removes a bridge group With a basic license the two default bridge groups cannot be removed using the no form of this command Use the no bridge group command to remove sub interfaces from the default bridge groups See also bridge group page 10 181 show bridge group page 10 51 encap sulation dotiq page 10 202 no bridge aging time n Sets the aging time 7 0 to 1000000 seconds for the learned entries in the Ethernet bridge or all bridge groups Example C3 config bridge aging time 300 ARRIS PROPRIETARY All Rights Reserved 11 14 05 bridge find C3 CMTS User Guide Syntax bridge find cable modem macaddr Locates a cable modem in the bridge table by the source MAC address bridge mode Syntax bridge mode multiple entry bridge mode single entry no relearning relearn from ethernet relearning Sets the bridging table learning mode The parameters are Keyword Description multiple entry Allows the same MAC address to appear on all ports single entry Allows a MAC address to appear on only one port Si
505. s associated with that upstream Use the no form of this command to enable a physical upstream or logical channel The physical upstream must be enabled for this command to have any effect on a logical channel ARRIS PROPRIETARY All Rights Reserved 10 245 10 Command Line Interface Reference cable upstream snr timeconstant Syntax cable upstream n c snr timeconstant tc Sets the amount of averaging of the upstream signal to noise SNR over time on the logical channel The parameters are Keyword Description The amount of averaging desired Valid range 0 to 10 where O no averaging the value of the docsIfSigQSignal Noise MIB is the instantaneous value at the time of the request tc 9 the default which provides a long term average Smaller values provide more immediate averaging 10 maximum averaging provides an average over all time cable upstream status Syntax cable upstream n c status activate deactivate Activates or deactivates the upstream channel 10 246 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable upstream token bucket Syntax cable upstream n c token bucket Overrides the DOCSIS 1 0 with token bucket rate limiting cable upstream trigger index Syntax cable upstream n c trigger index index Sets the upstream spectral management trigger index Valid range O to 10 cable upstream voice allowed Syntax cable upstream n voice allowe
506. s basic undebug validate update source version write ARRIS PROPRIETARY All Rights Reserved C3 CMTS 10 174 10 174 10 175 10 175 10 10 10 44 10 214 10 252 10 45 10 252 10 253 10 45 11 14 05 A Specifications Topics Page Product Specifications 1 Physical Interfaces 1 Protocol Support 2 This appendix lists specifications for the ARRIS Cadant C3 CMTS Product Specifications Physical Interfaces Release 4 3 Standard 8 000 Unicast service identifiers SIDs Dual 10 100 1000BT Network Interfaces Management interface command line interface for system configuration and management tools telnet SNMP 10 100 1000 Base T Data 10 100 1000 Base T Out of band management 1 downstream 2 to 6 upstream RF F connector Serial console port F connector test on front panel ARRIS PROPRIETARY All Rights Reserved A 1 A Specifications Logical Interfaces Protocol Support Sub interfaces Capacity Sub interfaces Default Advanced Bridging Per physical interface 64 64 Entire CMTS 3 192 Per bridge group 3 10 Private cable VPNs up to 64 one per cable sub interface with CPE membership specified by CMTS configuration or by modem provisioning system IP addresses per sub interface up to 128 1 primary 127 secondary Bridge groups default operation 2 Bridge groups Advanced Bridging up to 64 Logical channels Modulation type Supported c
507. s can Add DSA Change DSC or Delete DSD service flows dynamically The C3 currently supports CPE initiated DSx transactions For voice traffic DSx is used to create UGS flows upstream on the fly Unlike BE flows data rates of UGS flows are guaranteed by the CMTS In the Downstream direction DSx is used to create flows with a Minimum reserved rate Once established these flows take priority over all others in the Downstream direction SIP Dynamic Polling SIP signalling can be used to provide voice services using legacy CPE that does not support DOCSIS DSx SIP Dynamic Polling dynamically creates upstream and downstream data flows for voice traffic as with DSx these flows have priority over DOCSIS BE data flows When the voice call terminates the bandwidth used by these flows is freed for use by other voice or data traffic To enable this feature configure the Cable Modem at the customer premises with a special configuration file When the C3 detects appropriate SIP messages coming from the Cable Modem the C3 activates prioritized flows to carry the voice traffic Contact your ARRIS Technical Support representative if you require more information on this feature 2 4 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide The following diagram shows the major components of the Cadant C3 CMTS MAC amp PHY Blade Aux WAN reserverd WAN amp CPU Blade
508. s field highlight docsDevSwFilename 9 From the SNMP Set Value field type the location and filename of the image then click Set 10 Click Close on the pop up information screen 11 From the MIB Values field highlight docsDevSwAdminStatus 12 From the SNMP Set Value field type 1 upgradeFromMgft then click Set ARRIS PROPRIETARY All Rights Reserved 7 25 7 Managing Cable Modems Procedure 7 3 7 26 13 14 15 16 17 18 19 20 From the MIB Values field highlight docsDevSwOperStatus Click Start Query to verify the status of the software download The MIB object docsDevSwAdminStatus defaults to ignoreProvisioningUp grade after a modem has been upgraded using SNMP This prevents a modem from upgrading via the configuration file the next time a bulk upgrade is performed To restore the original value of allowProvisionin gUpgrade perform the following steps in this procedure Type the IP address of the cable modem under the Name or IP Address field Type private or the proper Set Community name in the Community field Highlight docsDevMIBObjects then click Down Tree Highlight docsDevSoftware MIB then click Down Tree From the MIB Values field highlight docsDevSwAdminStatus From the SNMP Set Value field type 2 allowProvisioningUpgrade then click Set End of procedure Upgrading Software on All Cable Modems The simplest way to update the software on all cable modems is to forc
509. s reinitializing itself and that its configuration may have been altered coldStart 1 H 10 ARRIS PROPRIETARY All Rights Reserved 11 14 05
510. s to a fastethernet sub interface This command may be omitted from only one fastethernet sub interface per physical interface in which case un encoded ARRIS PROPRIETARY All Rights Reserved 11 14 05 Syntax Release 4 3 Standard C3 CMTS User Guide traffic will be allocated to this one sub interface This command must be used on all other fastethernet sub interfaces whether they are bridged or routed sub interfaces The native format of this command must be used on all cable sub interfaces made a member of a bridge group even if VSE encoding is not going to be used The 802 1Q VLAN IDs specified here do not have to match the VLAN IDs used on the cable side of the C3 802 1Q The C3 remaps VLAN IDs as required by either bridge grouping bridge binding or routing between sub interfaces See map cpes page 4 24 as all the implications for the map cpes command apply to the data mapped using VSE encoding and the native form of this command See also bridge page 10 104 bridge group page 10 181 show bridge group page 10 51 no encapsulation dotlq allow tag tag tag This command makes it possible to configure the subinterface so that other tag values will also map to the subinterface n addition to the encapsulation dotiq M command You can have multiple encapsulation dotiq allow commands to fully specify which VLAN tags terminate on the subinterface For example interface cable 1 0 9 bridge group 9
511. se debugging The CMTS defaults to terse mode Syntax no debug cable range Enables ranging debug messages for all cable modems debug cable registration Syntax no debug cable registration Enables modem registration request debug messages debug cable sid Syntax no debug cable sid NNN verbose Enables debugging on the cable modem with the specified primary SID 10 136 ARRIS PROPRIETARY All Rights Reserved 11 14 05 debug cable tivs Syntax debug cable ucc Syntax debug envm Syntax debug ip Syntax Release 4 3 Standard C3 CMTS User Guide no debug cable tlvs Enables Type Length Value TLV debugging messages no debug cable ucc Enables or disables Upstream Channel Change UCC debugging messages The cable modem to test must have debugging enabled no debug envm Enables environment debugging messages no debug ip rip Enables debugging messages The options are ARRIS PROPRIETARY All Rights Reserved 10 137 10 Command Line Interface Reference debug snmp Syntax debug syslog Syntax 10 138 rip Enables RIP debugging messages Example C3 debug ip RIP protocol debugging is on Note this debug message typde is non blocking and some messages may be lost if the system is busy Note debug messages of this type can only be displayed on teh console not on telnet sessions C3 debug ip rip RIP protocol debugging is on Note this deb
512. se notifications are used to present status from the intercepting device to the Mediation Device cTapMIBGroups 5 cTapMediationCpbComplianceGroup OBJECT GROUP OBJECTS cTapMediationCapabilities STATUS current DESCRIPTION These objects are necessary for a description of the mediation device to select for Lawful Intercept id cTapMIBGroups 6 cTapDebugComplianceGroup OBJECT GROUP OBJECTS cTapDebugMessage STATUS current DESCRIPTION These objects are necessary for debug information i cTapMIBGroups 7 END E 18 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard Factory Defaults Topics Page Default Configuration Listing 2 Default Modulation Profiles 18 If no configuration is performed the C3 uses the following default config uration K NOTE Under default conditions the downstream is turned off no user accounts are defined and telnet access will be disabled until they are defined While telnet access is disabled serial access will remain available IP addresses shown following are network dependent and are set from the boot configuration ARRIS PROPRIETARY All Rights Reserved F 1 F Factory Defaults Default Configuration Listing C3 show running config x Generated on TUE SEP 20 05 36 07 2005 kby S W version 4 3 0 33 hostname C3 boot system flash C 4 3 0 33 bin snmp server contact support arrisi com snmp se
513. seconds Valid range O to 65535 seconds admission timeout sec Admitted timeout in seconds Valid range 0 to 65535 seconds downstream Specifies that this is a downstream service class ARRIS PROPRIETARY All Rights Reserved 10 121 10 Command Line Interface Reference 10 122 grant interval usec Grant interval in microseconds Valid range 0 to 4294967295 usec grant jitter usec Grant jitter in microseconds Valid range 0 to 4294967295 usec grant size byte Grant size in bytes Valid range 0 to 65535 bytes grants per interval grants Grants per interval Valid range 0 to 127 grants max burst bytes Max burst in bytes Valid range 1522 to 4294967295 bytes max concat burst bytes Max concat burst in bytes Valid range O to 65535 bytes max latency usec Max latency in microseconds Valid range O to 4294967295 usec max rate bps Max rate in bits per second Valid range O to 4294967295 bps min packet size bytes Minimum packet size in bytes Valid range 0 to 65535 bytes min rate bps Minimum rate in bits per second Valid range O to 4294967295 bps poll interval usec Poll interval in microseconds Valid range O to 4294967295 usec poll jitter usec Poll jitter in microseconds Valid range O to 4294967295 usec priority Priority Valid range O to 7 req trans policy pattern Request transmission policy bit field Valid range 0x0 to Oxffffffff sched type type Schedu
514. sh disk or startup configuration as specified format c Completely erases a Compact Flash card and establishes a new file system on it Displays the host ID of the C3 Use this to find the proper host ID when ordering feature licenses See also license below ARRIS PROPRIETARY All Rights Reserved 10 39 10 Command Line Interface Reference license Syntax mkdir Syntax 10 40 license file name key n feature ARSVSnnnn remove n tftp ipaddr file Enables or removes licensed features on the C3 Contact your ARRIS represen tative for available features and keys Example C3 license key 0123ABCD456789EF feature ARSVS01163 RIP ARSVS01163 enabled See also show license page 10 92 mkdir dir Creates a new directory ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide more Syntax more file crlf binary Displays the contents of the specified file one page at a time If no option is given this command will ignore missing carriage returns in Unix files The options are Press C to display the entire file without pausing hit the enter key to view one line at a time space to page down or esc to quit viewing the file Keyword Description Properly displays a text file transferred from an MS DOS or Windows operating system crlf binary Displays a binary file no Reverses many commands pwd Displays the name of the current worki
515. sman Drive San Jose CA 95134 USA Tel 1 800 553 NETS E mail cs li cisco com DESCRIPTION This module is compatible with Cisco s intercept feature This module manages Cisco s intercept feature REVISION 2002072500002 DESCRIPTION Initial version of this MIB module ciscoMgmt 252 cTapMIBNotifications OBJECT IDENTIFIER cTapMIB 0 cTapMIBObjects OBJECT IDENTIFIER cTapMIB 1 cTapMIBConformance OBJECT IDENTIFIER cTapMIB 2 cTapMediationGroup OBJECT IDENTIFIER cTapMIBObjects 1 cTapStreamGroup OBJECT IDENTIFIER cTapMIBObjects 2 cTapDebugGroup OBJECT IDENTIFIER cTapMIBObjects 3 cTapMediationNewIndex is defined to allow a network manager to create a new Mediation Table entry and its corresponding Stream Table entries without necessarily knowing what other entries might exist cTapMediationNewIndex OBJECT TYPE SYNTAX Integer32 1 2147483647 MAX ACCESS read only STATUS current DESCRIPTION This object contains a value which may be used as an index value for a new cTapMediationEntry Whenever read the agent will change the value to a new non conflicting value This is to reduce the probability of errors during creation of new cTapMediationTable entries cTapMediationGroup 1 The Tap Mediation Table lists the applications by address and port number to which traffic may be intercepted These may be on the same or different Mediation Devices cT
516. snmpModules snmpVacmMIB vacmMIB Views vacmViewTreeFamilyTable In this SNMP table views are indexed by the view name and the MIB subtree OID ARRIS PROPRIETARY All Rights Reserved 10 161 10 Command Line Interface Reference The factory default views are Keyword Description A pre defined view that includes all OIDs under internet iso org dod internet If the C3 is rebooted with no startup configuration the default default configuration has no SNMP settings When a community is created with the snmp server commu nity command the view used is called default If the C3 is rebooted with no startup configuration the default configuration has no SNMP settings When a community is created with the snmp server community command the view used is called default The example shown following defines a view which includes all OIDs under iso org dod internet For a notification view it means that only notifications whose OIDs starts with iso org dod internet can be sent by a user the user being a member of a group a group defining actions that can be taken with this view Although the MIB subtree internet is used in the following example the sub tree can be specified using the SNMP interface to the C3 C3 config snmp server view MyTrapNotify internet included The following example shows SNMP parameters created for a default view config snmp server community public r
517. so configure filters in the modem itself this option although not part of a CMTS user manual should not be over looked For example if upstream multicast traffic is to be eliminated it is better to block this traffic at the modem modem configuration file speci fied before being propagated upstream than to block at the CMTS where the upstream bandwidth is already used At this point it is worth asking what you want to do with such filtering Subscriber management filters are upstream downstream and modem and CPE specific and e Are defined in the CMTS in groups of filters e The CMTS configuration can specify one of these filter groups as the default for all modems and attached CPE e The CMTS defaults can be overridden using the cable modem provi sioning system the defaults may be overridden using TLVs in a modem configuration file by the TLV referencing different filters filters still defined in the CMTS If Subscriber management filters are never going to be manipulated in this manner then you should consider using ACLs ACL filters are sub interface and direction specific form part of a sub interface specification and may be used on any sub interface in the CMTS In summary e ACL Sub interface specific and can be used for filtering fastethernet traffic as well as cable traffic Static configuration More flexible filtering e Subscriber management Cable modem and CPE specific CMTS default behavior c
518. sport Protocol 25 sunrpc Sun Remote Procedure Call 111 syslog Syslog 514 tacacs TAC Access Control System 49 talk Talk 517 telnet Telnet 23 time Time 37 uucp Unix to Unix Copy Program 540 whois Nicname 43 www World Wide Web HTTP 80 ARRIS PROPRIETARY All Rights Reserved 8 15 8 Configuring Security tcpflags Matches TCP header flags Value A six bit value 0 to 63 where Bit Name urgent ack push reset sin CO Re NI Ww BI oO fin UDP Definition Syntax no access list ACL number permit deny udp host source source source wildcard any oper port host dest dest dest wildcard any oper port icmp type icmp code fragment precedence precedence tos tos dscp dscp Creates an ACL with the specified UDP filter entry or adds the specified UDP filter entry to an existing ACL The parameters are oper See 7CP Definition page 8 14 port The port number to match using the defined operator O to 65535 or one of the following 8 16 Port Keyword Name number biff Biff mail notification comsat 512 bootpc Bootstrap Protocol BOOTP client 68 bootps Bootstrap Protocol BOOTP server 67 discard Discard 9 dnsix DNSIX security protocol auditing 195 domain Domain Name Service DNS 53 echo Echo 7 Sa e a mobile ip Mobile IP registration 434 nameserver IEN116 name service obsolete 42 netbios dgm N
519. ss not found in its database is both known to the DHCP server and that the cable modem is associated with the IP address To enable this mode use the command cable source verify dhcp This option requires that the DHCP server supports the DHCP Lease Query feature Any IP addresses found in the C3 database such as static IP addresses found in cable modem configuration files are assumed to be correct The C3 can optionally bypass its internal database and use the DHCP server as the authoritative source for IP address information To enable this mode use the command cable source verify dhcp authoritative This option requires that the DHCP server knows of a CPE IP addresses including static IP addresses provisioned in cable modem configuration files The Cable Source Verify feature effectively prevents MAC level spoofing but can also hamper valid on site support functions where an engineer takes a laptop to various subscriber sites to check connectivity to the headend In this situation the C3 may prevent the laptop from connecting through subscriber cable modems To allow mobile use enable DHCP Lease Query mode and use one of the following methods e After using the laptop with one cable modem send a DHCP Release before moving to the next cable modem This frees the laptop MAC address in the DHCP server and internal C3 anti spoofing database e Reset the cable modem to clear the internal C3 database e Set the lease time for the l
520. state for interfaces of type docs CableMaclayer and docsCableUpstream Generates traps if this interface changes state This is the default state for interfaces of type ethernetCs macd docsCableDownstream or docsCableUp streamChannel enable_ifLinkTrap alias Displays this interface name Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 153 10 Command Line Interface Reference 10 154 The command shutdown and no shutdown provides a CLI means to shut down or enable an interface but with the cable upstream and cable down stream interfaces the interface is really composed of a CABLEMAC part and PHY part the state of both interfaces in the MIB really define the state of the interface being referenced by the shutdown command If SNMP is used to change the state of one interface of such a pair and not the other interface the CLI state of shutdown or no shutdown no longer applies the user cannot know for sure from the CLI what is happening Thus the running configuration includes the current state of all interfaces and the CLI allows correction of such inconsistencies without using SNMP using the mib command if the state has been altered remotely by SNMP This possi bility can occur on the downstream and upstream interfaces Example what changes when an interface is shutdown in a 1x2 ARRIS Cadant C3 C3 conf t C3 config interface cable 1 0
521. stration process overriding this default setting The modem in turn receives this infor mation in its configuration file See also cable submgmt cpe ip filtering page 10 124 cable submgmt default max cpe Syntax cable submgmt default max cpe n Sets the maximum number of allowable CPE devices on any modem Valid range 1 to 1024 10 126 ARRIS PROPRIETARY All Rights Reserved 11 14 05 cable vpn Syntax Release 4 3 Standard C3 CMTS User Guide no cable vpn cm cmts vlan Enables or disables VLAN encoding for cable modem or CMTS traffic The valid range for Vianis 1 to 250 The C3 must be running in out of band mode for VLAN mode to have any effect You can define a single VLAN ID for cable modems and a separate VLAN ID for CMTS data In VLAN mode e All host traffic leaves the C3 un encoded from the WAN port e All cable modem and CMTS traffic leaves the C3 VLAN encoded from the MGMT port e VLAN encoding occurs only at the fastethernet 0 1 interface To delete a VLAN ID use the no version of the command If you define a VLAN using the cable vpn command the MGMT fastethernet port runs in trunk mode Example cable vpn cm 24 add vlan id 24 for CM traffic cable vpn cmts 24 add vlan id 24 for CMTS traffic both CM CMTS share vlan id no cable vpn cm 24 delete vlan id 24 for CM traffic cable vpn cm 25 add vlan id 25 for CM traffic ARRIS PROPRIETARY All Rights Res
522. t m m m verbose no debug cable sid lt NNNN gt verbose Use the show debug command to see what modems are in the debug list C3 show debug Mac Addresses enabled for Debug Primary Sids enabled for Debug Debugging events message types which are enabled ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Contents of Cable Modem Database debuglevel I F PrimSid MAC address Debug C3 debug all Syntax no debug all Provides all debugging information Use no debug all to turn off debug for all cable modems for all events Use debug all to turn on debug in terse mode for all cable modems previously being debugged debug cable dhcp relay Syntax no debug cable dhcp relay Enables or disables DHCP relay debugging Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 133 10 Command Line Interface Reference debug cable interface Syntax no debug cable interface cable 1 0 mac address macaddr macmask sid n verbose Enable or disable debugging on the selected cable modem or interface The options are Keyword Description Enables debugging on the cable modem with the specified macaddr MAC address If the optional mask is included the CMTS enables debugging Enables debugging on all cable modems whose MAC mask address AND ed with the mask matches the specified MAC address Enables debugging on the cable modem with the specified sid Servi
523. t hh mm ss dd mmm yyyy Sets the internal CMTS real time clock to the specified time The calendar keeps time even if the CMTS is powered off Example C3 calendar set 13 59 11 02 sep 2005 cd dir Changes the working directory on the Compact Flash disk ARRIS PROPRIETARY All Rights Reserved 10 29 10 Command Line Interface Reference chkdsk Syntax chkdsk flash filesys repair Verifies that the file system is correct The specified fi esys may be any of the file systems listed by show file systems If the repair keyword is specified the C3 attempts to repair file system errors Example C3 chkdsk flash Check flash lt STRING gt File system C3 chkdsk flash Are you sure you want to perform this command Y N Y C disk check in progress C Volume is OK total of clusters 62 519 of free clusters 58 117 of bad clusters 0 total free space 116 234 Kb max contiguous free space 119 023 616 bytes of files 14 of folders 11 total bytes in files 8 758 Ib of lost chains 0 total bytes in lost chains 0 clear access list counters Syntax 10 30 clear access list counters Resets counters for access list entries ARRIS PROPRIETARY All Rights Reserved 11 14 05 clear arp cache Syntax clear ip cache Syntax clear ip igmp group Syntax clear ip ospf process Syntax Release 4 3 Standard C3 CMTS User Guide clear arp cache Clears the e
524. t be changed cTapStreamIpStatus must be first set to notInService cTapStreamIpEntry 19 The access list for intercepting data at the IEEE 802 link layer Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved E 11 E SLEM MIB cTapStream802Table OBJECT TYPE SYNTAX SEQUENCE OF CTapStream802Entry MAX ACCESS not accessible STATUS current DESCRIPTION The Intercept Stream 802 Table lists the IEEE 802 data streams to be intercepted The same data stream may be required by multiple taps and one might assume that often the intercepted stream is a small subset of the traffic that could be intercepted This essentially provides options for packet selection only some of which might be used For example if all traffic to or from a given interface is to be intercepted one would configure an entry which lists the interface and wild card everything else If all traffic to or from a given MAC Address is to be intercepted one would configure two such entries listing the MAC Address as source and destination respectively and wild card everything else The first index indicates which Mediation Device the intercepted traffic will be diverted to The second index permits multiple classifiers to be used together such as having a MAC address as source or destination cTapStreamGroup 3 cTapStream802Entry OBJECT TYPE SYNTAX CTapStream802Entry MAX ACCESS not accessible STATUS current DESCRIPTION
525. t in the DHCP Discover or Request primary and secondary scope processing still occurs but slightly differently Now the giaddr is used to search all defined scopes If a matching scope is found but this scope has secondary scopes defined the secondary scopes are searched for an address reservation If no reservation is found an address is issued from the primary and secondary scopes on around robin basis This operation is very similar to the Windows 2000 server concept of super scopes Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 7 17 7 Managing Cable Modems Managing Modems Using SNMP 7 18 With particular reference to the C3 and when operating in VSE mode all modems exist in the one subnet and thus are assigned an address from the one scope The main requirement on the DHCP server is that modems are able to be given individual DHCP options that override the options normally associ ated with the scope In this case the different option of concern is the configuration file to be given to the modem Assuming the DHCP server supports this feature CPEs are mapped to sub interfaces by the modem configuration file VSE encoding CPEs subsequently perform DHCP using a giaddr of the mapped cable sub interface Where a single CPE scope is to be used the CPE is issued an IP address based on the giaddr an IP address of this cable sub interface Where multiple CPE subnets are to be used as in the case of an ISP h
526. t is attached min lease time max 58 Default minimum T1 renewal and maximum lease time 59 T2 rebinding lease times The options use may depend on the selected DHCP server One additional step is required in the route table of the DHCP server in this example The DHCP server must be given a gateway for the 192 168 253 0 network so that the DHCP Offer and Acks can be sent back to the CPE relay address For the modem to boot completely an accessible TFTP server as specified by the siaddr DHCP option and the boot file or filename specified in the DHCP options must be resident in the TFTP server root folder Debug What to Do if DHCP is Not Working Release 4 3 Standard If the DHCP server is located past a router on the operator backbone make sure that the DHCP server workstation can be pinged from the Cadant C3 CLI and that the Cadant C3 management address 10 1 1 2 in the above example can be pinged from the DHCP server If secondary subnets exist on the Cadant C3 makes sure that these IP addresses can be pinged from the DHCP server Note that management access will have to be specified on the relevant sub interfaces If the DHCP does not reach the DHCP server you should check the Cadant C3 configuration and specifically check in the above example cable helper address 10 1 1 1 On the C3 use the debug command to watch DHCP events on the cable modem and attached CPE get modem mac address x x x x that might
527. t the Data Over Cable Service Interface Specification DOCSIS standards with which the product complies ARRIS has designed the C3 specifically for DOCSIS and EuroDOCSIS spec ifications From its inception it has been designed to take advantage of already defined Advanced Physical Layer features as well as new noise suppression technologies to deliver the most efficient utilization of the upstream spec trum The hardware platform itself has been designed to scale to the most demanding needs of the operator from a packet classification and features perspective The processing power of the system is capable of accommo dating the emerging needs of cable operators worldwide ARRIS PROPRIETARY All Rights Reserved 2 1 2 Getting Started DOCSIS Compliance Fast Start With dual RISC processors in its architecture the C3 supplies the processing power needed to support high volumes of traffic with excellent latency control The CMTS has scalable transmit and receive capacity which can be configured to support one channel downstream and up to six channels upstream It supports multiple network protocols and multiple architectures such as PPPoE and NetBEUI making it easy to add to existing router or switch based cable networks Easy to use system management tools include an industry standard command line interface The C3 is DOCSIS 1 1 DOCSIS 2 0 and EuroDOCSIS 1 1 qualified The C3 is also compliant with EuroDOCSIS 2 0 when used w
528. tartup configuration file exists the selection of the boot option network interface when upgrading from release 2 0 to release 4 0 software an existing startup configuration file the configuration overrides the boot options e IP forwarding occurs even though the C3 is running in bridging mode e IP forwarding between bridge groups is turned off by default for secu rity reasons e IP forwarding between bridge groups IP traffic allowed to leave a bridge group may be turned on using the command ip 12 bg to bg routing in the interface specification of any interface attached to the bridge group e Static routes may be defined using the ip route command for C3 management traffic the DHCP relay agent IP forwarding between bridge groups using ip 12 bg to bg routing 7 NOTE In bridging mode other cable modem and CPE traffic should be bridged and static routes should not be used k NOTE Define a default gateway for the C3 using the command jp default gateway page 10 142 from the CLI A default gateway has the same purposes and restrictions as a static route Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 4 3 4 Bridge Operation Bridge Concepts Bridge Groups 4 4 Bridge groups provide the ability to operate self contained and separate MAC domains in one physical device A bridge group is defined as a group of interfaces attached to a layer 2 bridge or a common broadcast domain BACK
529. te is because an application has registered with that Route Map For a Route Map to become active it must have at least one route map entry defined against it No more than one CLI session can enter the config route map mode for an individual route map at any given time This means that if one user is currently modifying the Route Map my map1 and is in the config route map mode against that Route Map then if another user attempts to invoke the config route map my map1 command then an error message will be displayed indicating that another user is currently modi fying this Route Map No more than 32 Route Maps can be defined and no more than 4 route map entries can be created against any given Route Map This means that the maximum number of route map entries which can be created is 32 X 4 Use the following CLI command to show all route maps currently config ured on the CMTS This command may be evoked from either the global configuration or interface configuration modes of the CLI config show route map map name If the map name parameter is not supplied with this command then all currently defined Route Maps and their associated route map entries will be displayed If the map name is specified then just that Route Map and it s route map entries will be displayed The display of Route Maps will be in the format outlined below An example of a system response is route map my policy permit sequ
530. ted after the user exits from the route map configuration mode using the exit command no route map tag name permit deny seq num Defines which networks are to be installed in the routing table and which are to be filtered from the routing table To remove an entry use the no form of this command The parameters are Keyword Description Name given to the route map and can be from 3 to 12 char tag name g acters long The route map entry being created or modified This is a seq num numeric value between 1 and 65535 and must be a unique number for the route map it is associated ARRIS PROPRIETARY All Rights Reserved 11 14 05 redistribute Syntax C3 CMTS User Guide redistributed satic rip metric lt 1 16777215 gt metric type lt 1 2 gt route map lt word gt tag lt a b c d gt Redistributes routes from one routing domain into another routing domain OSPF specific Subcommands network OSPF Syntax Release 4 3 Standard Use the global command router ospf to enter OSPF configuration mode no network address wildcard mask area area id disable Enables OSPF routing on a network and assigns area IDs to be associated with that range of IP addresses This is the only required router configuration command to start routing The parameters are wildcard mask Specifies the size of the network to route in wildcard format The wildcard format is the inverse of
531. tedPackets Counter32 cTapStreamIpInterceptDrops Counter32 cTapStreamIpStatus RowStatus cTapStreamIpIndex OBJECT TYPE SYNTAX Integer32 1 2147483647 MAX ACCESS not accessible STATUS current DESCRIPTION The index of the stream itself r cTapStreamIpEntry 1 cTapStreamIpInterface OBJECT TYPE SYNTAX Integer32 1 0 1 2147483647 MAX ACCESS read create STATUS current DESCRIPTION ARRIS PROPRIETARY All Rights Reserved The ifIndex value of the interface over which traffic to be intercepted is received or transmitted The interface may be physical or virtual If this is the only parameter specified and it is other than 1 or 0 all traffic on the selected interface will be chosen f the value is zero matching traffic may be received or transmitted on any interface Additional selection parameters must be selected to limit the scope of traffic intercepted This is most useful on non routing platforms or on intercepts placed elsewhere than a subscriber interface f the value is 1 one or both of cTapStreamIpDestinationAddress and cTapStreamIpSourceAddress must be specified with prefix length greater than zero Matching traffic on the interface pointed to by ipRouteIfIndex or ipCidrRoutelIfIndex values associated with those values is intercepted whichever is specified to be more focused than a default route If routing changes either by operator action or by routing protocol events the interface will c
532. tentId cTapDebugIndex STATUS current DESCRIPTION When there is intervention needed due to some events related to entries configured in cTapMediationTable the device notifies the manager of the event This notification may be generated in conjunction with the intercept application which is designed to expect the notification to be sent as reliably as possible e g through the use of a finite number of retransmissions until acknowledged as and when such mechanisms are available for example with SNMPv3 this would be an InformRequest cTapMIBNotifications 3 cTapStreamIpDebug NOTIFICATION TYPE OBJECTS cTapMediationContentId cTapStreamIpIndex cTapDebugIndex STATUS current DESCRIPTION When there is intervention needed due to some events related to entries configured in cTapStreamIpTable the device notifies the manager of the event This notification may be generated in conjunction with the intercept application which is designed to expect the notification to be sent as reliably as possible e g through the use of a finite number of retransmissions until acknowledged as and when such mechanisms are available for example with SNMPv3 this would be an InformRequest cTapMIBNotifications 4 conformance information cTapMIBCompliances OBJECT IDENTIFIER cTapMIBConformance 1 cTapMIBGroups OBJECT IDENTIFIER cTapMIBConformance 2 compliance statement cTapMIBCompliance MODULE C
533. tes TACACS server The parameters are ip_addr IP address of the TACACS server in a b c d form no tacacs server key string Configures or deletes the TACACS encryption key The parameters are string Default TACACS key ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide tacacs server source address no tacacs server source address input Syntax Configures or deletes a source IP address of outbound TACACS packets The parameters are input Source IP address in a b c d form tacacs server timeout Syntax no tacacs server source address 0 1000 Configures or deletes the time to wait for a TACACS server to reply The parameters are 0 1000 Wait time in seconds default is no timeout Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 175 10 Command Line Interface Reference moes Configure keychain key Mode key chain Syntax no key chain name Enters keychain configuration mode for defining router authentication keychains The no form of this command removes a keychain In keychain configuration mode the prompt is C3 config keychain 10 176 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide key id Syntax no key id n Enters individual key configuration mode for the specified key valid range O to 255 Upon entering the command the prompt changes to C3 config keychain key Commands available are Command Description
534. that VPN members get ip address from operator provisioning system add the following ap address 10 3 0 254 255 255 255 0 ip DHCP relay cable helper address 10 6 0 2 host cable DHCP giaddr primary exit Standard Ethernet Backbone In the previous example separate bridge groups are used for each ISP This configuration however requires the use of an 802 1Q Ethernet back bone In following example 802 1Q VLANs are not used on the Ethernet backbone This configuration is thus suitable for an operator that wishes to provide open access or multi ISP without using 802 1Q backbone VLANs The limitations of this configuration are e the number of ISPs that can be supported in this manner is 9 e Since all CPE traffic shares the same bridge group some protection is required to maintain separation between ISP traffic The ability to add up to 10 sub interfaces to one bridge group is being used with this bridge group having one sub interface connection to the operator Ethernet backbone All cable sub interfaces are members of the same bridge group as fasteth ernet 0 0 B 18 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Other features to note in the following example e CPE traffic is still split into 3 native VLANs on 3 cable sub interfaces using configuration file VSE allowing different specifications f
535. the IF frequency may be changed if the internal upconverter is not used Valid range 10MHz to 60MHz Setting the Downstream Syntax cable downstream symbol rate sr Symbol Rate A tnd Sets the downstream symbol rate when the wireless MAC mode option is specified When the wireless option has not been specified this command returns an error Valid range 1250000 to 6952000 SNMP MIBs related to wireless support are part of the proprietary cmtsC3MACMib The affected sections are as follows DcxMACCmtsMacEntry SEQUENCE dcxMACCmtsMacMode INTEGER 2 dcxMACCmtsMacMode OBJECT TYPE SYNTAX INTEGER unknown 0 docsis 1 euroDocsis 2 mixed 3 custom 4 MAX ACCESS read write STATUS current DESCRIPTION Indicates the DOCSIS MAC mode that applies to this MAC domain where mixed mode consists of docsis downstream and euroDocsis upstream When set to custom mode the downstream symbol rate modulation and mnnex type may all be configured to non standard parameters If set to docsis euroDocsis or mixed the downstream symbol rate and annex type will be set automatically The IF frequency will also be set automatically to ensure proper operation with the internal upconverter but may be overridden by setting dcxMACDownChannelIfFrequency if the internal upconverter is not in use dcxMACCmtsMacEntry 1 DcxMACDownstreamChannelEntry SEQUENCE dcx
536. the C3 If you have not done so already type the following commands to enter configuration mode C3 gt enable Password your password C3 config t The prompt changes to config Type the command crypto key zeroize type to delete keys of the specified type rsa dsa or both End of procedure Starting and Stopping the SSH Server Follow these steps to start or stop the C3 SSH server ARRIS PROPRIETARY All Rights Reserved 11 14 05 Procedure 8 6 Release 4 3 Standard C3 CMTS User Guide If you have not done so already type the following commands to enter configuration mode C3 gt enable Password your password C3 config t The prompt changes to config To start the SSH server type ip ssh server enable at the config prompt To stop the SSH server type no ip ssh server enable at the config prompt End of procedure Setting SSH Server Parameters Follow these steps to set SSH server parameters To change the TCP port on which the SSH server listens for connections use the following command the default is 22 C3 ip ssh port number To change the number of authentication retries allowed for access to the SSH server use the following command the default is 3 C3 ip ssh authentication retries number To set the SSH session idle timeout use the following command the default is 0 which disables timeout C3 ip ssh timeout secs To enable or disable
537. the C3 either delays the packet or in extreme cases drops the packet k NOTE Using the no cable downstream rate limit command will disable downstream rate limiting and the downstream rate limit parameters in the cable modem configuration file will be ignored ARRIS strongly recommends that downstream rate limiting remain enabled at all times To disable token bucket rate limiting use either cable downstream rate limit or no cable downstream rate limit token bucket cable downstream symbol rate Syntax 10 224 cable downstream symbol rate sr Sets the downstream symbol rate when the wireless MAC mode option is specified When the wireless option has not been specified this command returns an error Valid range 1250000 to 6952000 See also cable downstream mac mode page 10 222 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable downstream upconverter Syntax cable downstream upconverter type Specifies the upconverter to use The type is one of the following Keyword Description f Use the internal upconverter RF appears at the standard internal downstream port edera Use an external upconverter IF appears at the Downstream IF Output port on the upstream card Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 225 10 Command Line Interface Reference Cable Upstream The following upstream commands are available Syntax no cable upstrea
538. the FastEthernet 0 1 physical interface fastethernet 0 0 0 bridge group 1 pide 4 cable 1 0 1 O bridge group 1 PC default cpe subinterface cable 1 0 0 fastethernet 0 1 0 bridge group 0 bridge 0 cable 1 0 0 Tananan bridge group 0 Modem Cable Operator default cm subinterface cable 1 0 0 DHCPY TFTP ToD Figure 4 2 Example of a sub interface to access different bridge groups ARRIS PROPRIETARY All Rights Reserved 4 5 4 Bridge Operation Default Bridge Operation 4 6 The C3 allows one sub interface to be defined that is not a member of any defined bridge group This interface is marked as Management Access Only in the show interface output and as the description suggests this interface can only be used to manage the CMTS BACKBONE fastethernet 0 0 0 bridge group 0 cable 1 0 0 bridge group 0 default cpe interface cable 1 0 0 default cm interface cable 1 0 0 Modem Management fastethernet 0 1 0 Figure 4 3 Example of a Management Access Only interface The big issue with sub interfaces is the decision making process of how traffic is mapped from the physical interface to a sub interface for these different specifications to have an effect This issue is discussed later in this chapter The factory default mode of operation of the C3 is bridging mode In this mode the C3 has two bridge groups Without the use of the keyed bridge group lice
539. the destination address is not directly connected to a bridge group the unicast renew was received in the unicast will be forwarded across bridge groups to the required interface but I2 bg to bg routing must be activated in all the involved bridge groups for any ACK to a DHCP RENEW to be forwarded back to the originating bridge group ARRIS PROPRIETARY All Rights Reserved 7 5 7 Managing Cable Modems Directing DHCP Broadcasts to Specific Servers 7 6 The most useful functions of the cable helper address command are e To change the broadcast DHCP message arriving at the cable sub interface to a unicast message leaving the C3 directed to a specific DHCP server e To allow the DHCP server to exist on a routed backbone The DHCP discover messages from cable modems or hosts are now unicast to the specified DHCP server Where routers are between the DHCP servers and the C3 the DHCP server IP subnet is not known to the C3 the use of static routes using the ip route command in the C3 may be required or router rip activated e In bridging mode DHCP can be forwarded across bridge groups Where the helper address or the gateway to the helper address is not directly connected to a bridge group the broadcast was received in the C3 forwards the unicast across bridge groups to the required interface but 12 bg to bg routing must be activated in all the involved bridge groups for any reply to this message to be forwarded b
540. the fan tray by turning the screw counter clockwise The screw rotates 90 degrees to unlock the fan tray it does not remove completely Insert your finger behind the ARRIS logo and pull the fan tray out towards the front of the C3 Insert the new fan tray into the opening and secure it with the locking screw End of procedure The expected lifetime of the C3 CMTS battery is 10 years This is an average expectancy and the actual battery lifetime may be shorter or longer Replacing the battery requires a complete shutdown of the C3 CMTS ARRIS PROPRIETARY All Rights Reserved 9 5 9 Service Procedures Procedure 9 4 9 6 WARNING Risk of injury from battery explosion The battery type is CR3020 lithium There is a risk of explosion if the battery is replaced by an incorrect type Dispose of used batteries according to the manufacturer s instructions Use anti static precautions such as a wrist grounding strap grounded to a grounded work area when handling the CMTS CPU card The following diagram shows the location of the battery on the CPU card Figure 9 6 Location of battery on CPU card Battery Replacing the Battery 1 Power down the CMTS by removing all power leads from the rear sockets 2 Remove the CPU card from the CMTS chassis as follows ARRIS PROPRIETARY All Rights Reserved 11 14
541. tic with metric mapped to 4 Number of areas in this router is 1 1 normal 0 stub 0 nssa Area BACKBONE 0 0 0 0 Number of interfaces in this area is 5 SPF algorithm executed 12 times Number of LSA 7 Checksum Sum 0x2d9ef show ip ospf interfaces Syntax 10 88 show ip ospf interfaces cable fastethernet X Y Z Lists the local interfaces on which OSPF is enabled and the current configura tion of those interfaces Example C3 show ip ospf interfaces FastEthernet 0 1 0 is up line protocol is up Network Type BROADCAST Cost 1 Transmit Delay is 50 sec State DROTHER Priority 0 Timer intervals configured Hello 10 Dead 40 Wait 40 Retransmit 8 Internet Address 10 250 0 42 24 Area 0 0 0 0 Designated Router ID 21 21 21 1 Interface address 10 250 0 17 ARRIS PROPRIETARY All Rights Reserved 11 14 05 show ip ospf neighbor C3 show ip ospf neighbor Neighbor ID Pri Zi 2d 241 od J TIs250 071 1 ospf routing table 1 St FU FU C3 CMTS User Guide Backup Designated Router ID 11 250 0 1 Interface address 10 250 0 45 Neighbor Count is 2 Adjacent neighbor count is 2 Adjacent with neighbor 21 21 21 1 Designated Router Adjacent with neighbor 11 250 0 1 Backup Designated Router Secondary Internet Address 10 250 1 1 24 Area 0 0 0 0 No Designated Router elected No Backup Designated Router elected Neighbor Count is 0 Adjacent neighbor count is 0 Loopback 1 is up line protocol is up PA
542. tion le modulation le modulation profil profil profil profil profil profil profil profil profil profil profil Release 4 3 Standard profil N request request initial initial station station AdvPhy 0 AdvPhy 5 AdvPhy 5 16 0 34 0 34 0 TDMA 8 qpsk scrambler 338 no diff 64 fixed TDMA 48 qpsk scrambler 338 no diff 640 fixed TDMA 48 qpsk scrambler 338 no diff 384 fixed short AdvPhy TDMA short 6 78 15 8 qpsk scrambler 338 no diff 84 shortened long AdvPhy TDMA long 8 220 0 8 qpsk scrambler 338 no diff 96 shortened request AdvPhy TDMA request 0 16 0 8 qpsk scrambler 338 no diff 64 fixed initial AdvPhy TDMA ARRIS PROPRIETARY All Rights Reserved F 7 F Factory Defaults ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ DJ ol moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa
543. tion profile the C3 disables that channel until you correct either the channel type or modulation profile 3 Set the physical upstream channel width in Hz using the following command C3 config if cable upstream us channel width width The channel width specified must be a DOCSIS standard upstream channel width ATDMA 6400000 6 4 MHz ATDMA and TDMA 3200000 3 2 MHz 1600000 1 6 MHz 800000 800 KHz 400000 400 KHz or 200000 200 KHz SCDMA 1600000 1 6 MHz 3200000 3 2 MHz or 6400000 6 4 MHz Example cable upstream 2 channel width 3200000 4 Set the physical upstream channel frequency in Hz using the following command C3 config if cable upstream us frequency freq The valid frequency range is 5000000 5 MHz to 42000000 42 MHz for North American DOCSIS and 5000000 5 MHz to 65000000 65 MHz for EuroDOCSIS Example cable upstream 2 frequency 25000000 5 Assign the modulation profile to an upstream using the following command C3 config if cable upstream us modulation profile n Where 7 is a modulation profile index O to 5 The factory default modulation profile for each upstream is profile 1 This profile uses QPSK and is the safest profile to use to get modems online 6 Set the input power level the target receive power set during the DOCSIS ranging process using the following command C3 config if cable upstream us power level power Release 4 3 Standar
544. to custom mode this value may written to set the downstream annex type dcxMACDownstreamChannelEntry 5 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved C 5 C Wireless Cable Applications C 6 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard DS1 Applications Topics Page Provisioning Summary 2 Example Modulation Profile 2 Example Cable Modem Configuration File 3 The C3 can be used to carry packetized TDM circuits such as DS1 E1 partial T1 Nx64 etc In this type of configuration the C3 provides the IP transport and a third party device is required to convert the TDM circuit to a packet stream for transport over the DOCSIS network This appendix provides example configurations for providing this circuit emulation service ARRIS PROPRIETARY All Rights Reserved D 1 D DS1 Applications Provisioning Summary The following steps are recommended to provision DS1 capability on the C3 Use ATDMA modulation and ingress cancellation Build a modulation profile with maximum FEC and custom codeword size Build a configuration file for the cable modem that provides reserved bandwidth UGS flows Example Modulation Profile ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca ca SSTT OTT 00 0O0 00000 D 2 moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa moa Fee e eee eee eee eee es a a
545. tors Lists file systems and information about them ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard OAarANAND oO FW A 11 12 13 14 15 16 17 18 19 20 21 22 C3 name tyCo 1 soc soc soc C a ke ke ket utopsy txt t t snmpd log soc soc pty cli0 pty clil pty cli2 pty cli3 pty cli4 pty clio pty clil pty cli2 pty cli3 pty cli4 ket ket NNNNHNEEREE socket socket Example C3 show file systems drv OO OO OW WOW WOW OAT OWE Q Ww name null tyCo 1 Cx Phoenixl vio pty cliod pty clio pty clil pty clil pty cli2 pty cli2 pty cli3 pty cli3 pty cli4 pty cli4 CNENENENEN drv PEP O O O O 0O O LO UO FR WWE BPR in out err ARRIS PROPRIETARY All Rights Reserved C3 CMTS User Guide 10 73 10 Command Line Interface Reference show flash Syntax show flash all filesys Displays detailed information about the Compact Flash disk depending on the option used If no option is specified this command will display files and direc tories only identical to the show c command Valid options are Keyword Description all Displays all files directories and filesystem detail filesys Displays only filesystem detail Example C3 show flash filesys File system information v
546. try or adds the specified ICMP filter entry to an existing ACL The parameters are Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 8 11 8 Configuring Security fragment See Fragment Support page 8 17 icmp code One of the following icmp icmp type code Equivalent CLI Keyword Query Error 0 echo reply X destination unreachable 0 net unreachable X 1 host unreachable X 2 protocol unreachable X 3 port unreachable X 4 fragment needed and dont X fragment was set 3 5 source route failed X 6 destination network unknown X 7 destination host unknown X 8 source host isolated obsolete X 9 communication with destination X network is admin prohibited 10 communication with destination X host is admin prohibited 11 destination network x unreachable for type of service destination host unreachable 12 X for type of service communication admin prohibited 13 eee X by filtering 14 host precedence violation X 15 precedence cutoff in effect X 4 Source quench X 8 12 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide icmp icmp type code Equivalent CLI Keyword Query Error redirect 0 redirect datagram for the X network or subnet 5 1 redirect datagram for the host X 2 redirect datagram for the
547. ts the IF frequency to either 43 75MHz docsis or 36 125MHz euro docsis to ensure proper output from the internal upconverter in the desired mode Once the new mode is set the IF frequency may be changed if the internal upconverter is not used Valid range 10MHz to 60MHz See also Appendix C ARRIS PROPRIETARY All Rights Reserved 10 221 10 Command Line Interface Reference cable downstream interleave depth Syntax cable downstream interleave depth I Sets the FEC interleaving Valid settings are Setting R S Interleave 128 I 128 J 1 64 I 64 J 2 32 I 32 J 4 16 I 16 J 8 8 I 8 J 16 12 I 12 J 17 EuroDOCSIS only cable downstream mac mode Syntax 10 222 cable downstream mac mode mode wireless Sets the MAC mode for the downstream The mode is one of the following Keyword Description docsis Standard DOCSIS euro docsis Standard Euro DOCSIS When specifying docsis or euro docsis modes the C3 normally performs parameter checking to ensure proper operation for that mode Specify the wireless option to allow setting the downstream symbol rate modulation and annex type to non standard values See also cable mac mode page 10 198 cable upstream mac mode page 10 236 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable downstream modulation Syntax cable downstream modulation 1024qam 51l2qam 256qam 64
548. ttings are e IP address is one of 10 1 127 120 10 1 127 121 10 1 127 122 10 1 127 123 e Subnet mask 255 255 128 0 e Gateway address 10 1 0 3 See Appendix F Factory Defaults for a complete list of factory default settings Refer to the following diagram when performing this procedure DC power Serial FEO AC power Figure 3 7 Rear panel connectors Perform the following tasks in the order shown e Preparing the Connections page 3 11 e Verifying Proper Startup page 3 12 e Setting Boot Parameters page 3 13 e Configuring an Initial CLI Account page 3 16 Preparing the Connections Connect the appropriate AC or DC power cables to the CMTS Do not power up yet Connect the RS232 serial cable to the serial port and connect the other end to a terminal or PC with a terminal emulation program ARRIS PROPRIETARY All Rights Reserved 3 11 3 CMTS Installation Procedure 3 5 3 12 Start the console application and set the console configuration to e Port Com1 Com2 depending on your connection e Baud rate 38400 e Data 8 bits e Parity None e Stop bit 1 e Flow control None End of procedure Verifying Proper Startup Follow these steps to start the C3 CMTS for the first time Power on the CMTS and verify that the following status LEDs on the front panel are illuminated green e FANS e PSU1 e PSU2 if second power supply is installed e Status
549. type atdma scdma tdma tdma amp atdma modulation profile n Selects the desired type of logical channel operation To ensure DOCSIS 1 X compatibility specify tdma The following channel types are valid for channel widths up to 3 2MHz on any logical channel tdma tdma amp atdma atdma is valid for all channel widths up to 6 4Mhz on any logical channel The scdma channel type is valid only for the first or second logical channel on a physical upstream and only for channel widths 1 6 3 2 and 6 4Mhz ARRIS PROPRIETARY All Rights Reserved 10 227 10 Command Line Interface Reference cable upstream channel width Syntax cable upstream n channel width w Sets the physical upstream channel width The channel width can be one of Value of W Definition 6400000 Width 6400 KHz Symbol rate 5120 ksym s 3200000 Width 3200 KHz Symbol rate 2560 ksym s 1600000 Width 1600 KHz Symbol rate 1280 ksym s 800000 Width 800 KHz Symbol rate 640 ksym s 400000 Width 400 KHz Symbol rate 320 ksym s 200000 Width 200 KHz Symbol rate 160 ksym s cable upstream concatenation Syntax no cable upstream n c concatenation Enables or disables concatenation on a logical channel concatenation support is on by default cable upstream contention opp latency Syntax cable upstream n c contention opp latency default latency Sets the contention based opportunity latency Set the value high as possible to m
550. ubnet from which access to be controlled mask Subnet mask for this subnet The snmp server commands are designed around the SNMPv3 framework Internally the C3 SNMP agent exclusively processes all SNMP transactions as SNMPv3 messages and communicates with external SNMP entities The SNMPv3 agent can translate incoming and outgoing SNMP messages to and from SNMPv1 SNMPv2 and SNMPv2c The following commands are provided in logical rather than alphabetical order to make understanding easier A view defines what part of a MIB can be accessed A group defines what operations can be performed on a view with a security model A user is assigned to a group but user must have same security model A notification security model is assigned to a user ARRIS PROPRIETARY All Rights Reserved 10 159 10 Command Line Interface Reference C3 config snmp server C3 config snmp server C3 config snmp server C3 config snmp server v2 C3 config snmp server C3 config snmp server snmp server view Syntax 10 160 A host is assigned to a security model to receive traps or informs Example shown step by step on the following command specifications view MyTrapNotify internet included group MyGroup v2c notify MyTrapNotify user MyCommunity MyGroup v2c access list Trap notif sec model MySecurity MyCommunity v2c security model host MyTrapReceiver MySecurity 192 168 250 107 traps enable traps The host no
551. udp format rtpNack RTP with Nack resilience tcp TCP with head of line blocking sctp SCTP with head of line blocking cTapMediationEntry 11 cTapMediationNotificationEnable OBJECT TYPE SYNTAX TruthValue MAX ACCESS read create STATUS current DESCRIPTION This variable controls the generation of any notifications or informs by the MIB agent for this table entry DEFVAL true cTapMediationEntry 12 cTapMediationStatus OBJECT TYPE SYNTAX RowStatus MAX ACCESS read create STATUS current DESCRIPTION The status of this conceptual row This object is used to manage creation modification and deletion of rows in this table cTapMediationTimeout may be modified at any time even while the row is active But when the row is active the other writable objects may not be modified without setting its value to notInService The entry may not be deleted or deactivated by setting its value to destroy or notInService if there is any associated entry in cTapStreamIpTable or other such tables when such are defined cTapMediationEntry 13 cTapMediationCapabilities cTapMediationCapabilities OBJECT TYPE SYNTAX BITS ipV4SrcInterface 0 ipV6SrcInterface 1 udp 2 rtpNack 3 tcp 4 sctp 5 MAX ACCESS read only STATUS current DESCRIPTION This object displays the device capabilities with respect to Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved E 5 E SLEM
552. uest can be assumed to have e come from a host and e the host is attached to the cable modem identified by the MAC address in the option 82 agent remote id sub option sub option 2 field A DHCP server searches its defined scopes for a match to the giaddr of the incoming DHCP Discover or Request If the DHCP Discover or Request arrives as a broadcast then the giaddr is assumed to be that of the received sub interface IP address If a matching scope is found a reserved address is looked for in this scope If no reserved address is found then the next available IP address in this scope will be leased that is the leased address is always within the same subnet as the giaddr Where one modem subnet is required this is not a problem Where modems are required to be in different subnets this is a problem The DHCP server must be forced to lease an address in a different scope to the scope that matches the giaddr DHCP servers allow this to occur in different ways e For example Windows 2000 server DHCP server allows a super scope to be defined containing a number of scopes In this case the super scope is searched for a matching scope to the giaddr if a matching scope is found the super scope is deemed to be a match Then a reserved address is looked for The reserved address can be in any scope in the super scope and does not have to be in the same subnet as the incoming giaddr If no reserved address is found then an address is l
553. ug snmpd_main activeTimeou cli _ptyOutpu cli main ethMgtMain fpd main idleRingMgrM LogEventTask MiscTimersMa 0x008103eb34 dcacheUpd 0x008103f1d8 Release 4 3 Standard BPIPKHTask 89ef85d0 89ef5al10 89efebe0 896ee9a0 89ef4180 89521c40 89908200 89efc3b0 89620040 89613120 896f11 0 8956bcd0 89524ae0 8955c300 89571b40 8956eb50 8955ea00 895bd750 89568eb0 896dc220 8957 160 89575240 89557e60 895b54c0 89510eb0 895e48a0 895b9cd0 896c2 70 89606200 89603fb0 895e1ldf0 895df 340 895da430 89578280 8953e470 8957a8b0 895b26c0 8950c870 896becc0 89ed10e0 89efb0b0 102080 16064 9920 102080 9920 16064 9920 16064 16064 7776 101408 9920 9920 102080 9920 102080 7872 16064 16064 7872 4688 688 5008 CUR HIGH MARGIN 100664 10392 8904 101008 8424 15048 8872 12992 11392 6752 97872 9512 6952 93360 5808 99896 6792 15056 15048 4184 3288 176 3296 ARRIS PROPRIETARY All Rights Reserved C3 CMTS User Guide 10 95 10 Command Line Interface Reference Example cpu option C3 show processes cpu Mgmt CPU clock speed 600Mhz Mgmt CPU running at 13 utilization Usage over last 20 periods 15 13 15 20 20 20 15 3 15 13 15 20 15 13 15 27 13 19 3 15 15 13 Avg usage over last 20 periods 16 Period 36 ticks unloaded C3 show reload Displays a list of scheduled reload times See also reload page 10 42 show runn
554. ug message ytpe is non blocking and some messages may be lost if the system is busy no debug snmp Enables debug messages for SNMP no debug syslog Enables debug messages for Syslog traffic ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide debug telnet Syntax no debug telnet Enables debug messages for incoming telnet sessions default cm subinterface Syntax default cm subinterface cable 1 0 s Defines the sub interface used for cable modem traffic until the cable modem receives an IP address from a DHCP server default cpe subinterface Syntax default cpe subinterface cable 1 0 s Defines the sub interface used as a source sub interface for CPE traffic when that traffic has no VLAN tag or explicit mapping using the map cpe command Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 139 10 Command Line Interface Reference docsis test Syntax enable password Syntax enable secret Syntax 10 140 no docsis test Enables or disables writing to DOCSIS test mode MIBs Use the command docsis test to make the MIBs read write allowing SNMP based testing Use the no form of this command to make the MIBs read only no enable password string This command sets the initial password to the specified string To clear the password use the no enable password command no enable secret string Sets the privileged mode encrypted password to string
555. ulation profile 33 advPhyS 12 100 10 0 8qam scrambler 338 no diff 128 shortened 33 advPhyL AdvPhy SCDMA no trell 5 spr 2 33 advPhyL AdvPhy preamble type qpsk1l 33 advPhyL 16 150 0 0 8qam scrambler 338 no diff 128 shortened 33 advPhyU AdvPhy SCDMA no trell 5 spr 2 cable modulation profile 33 advPhyU AdvPhy preamble type qpskl cable modulation profile 33 advPhyU 12 100 0 0 8qam scrambler 338 no diff 128 shortened cable modulation profile 34 request AdvPhy SCDMA no trell 5 spr 2 cable modulation profile 34 request AdvPhy preamble type qpsk0 cable modulation profile 34 request 0 16 0 0 qpsk scrambler 338 no diff 64 fixed cable modulation profile 34 initial AdvPhy SCDMA no trell 5 no spr 2 cable modulation profile 34 initial AdvPhy preamble type qpsk0 cable modulation profile 34 initial 5 34 0 0 qpsk scrambler 338 no diff 640 fixed cable modulation profile 34 station AdvPhy SCDMA no trell 5 no spr 2 cable modulation profile 34 station AdvPhy preamble type qpsk0 cable modulation profile 34 station 5 34 0 0 qpsk scrambler 338 no diff 384 fixed cable modulation profile 34 advPhyS AdvPhy SCDMA no trell 5 spr 2 cable modulation profile 34 advPhyS AdvPhy preamble type qpskl cable modulation profile 34 advPhyS 12 78 10 0 8qam scrambler 338 no diff 64 shortened 34 advPhyL AdvPhy SCDMA no trell 5 spr 2 34 advPhyL AdvPhy preamble type qpsk1l 34 advPhyL 5 220 0 0 8qam scrambler 338 no diff 64 shortened 34 advPhyU AdvPhy SCDMA no trell 5 spr 2 cable modul
556. um allowed input power on the physical upstream in dB below the nominal input power Cable modems whose input power is lower than this limit are forced to range The parameter is offset The minimum allowed offset in 1 10 dB increments Valid range 10 to 100 in steps of 10 10 20 and so forth See also cable upstream high power offset page 10 235 cable upstream mac mode Syntax 10 236 cable upstream n mac mode mode Sets the MAC mode for the specified upstream The mode is one of the following Keyword Description docsis Standard DOCSIS euro docsis Standard Euro DOCSIS See also cable mac mode page 10 198 cable downstream mac mode page 10 222 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide cable upstream mer timeconstant Syntax cable upstream n c mer timeconstant tc Sets the amount of averaging of the upstream Modulation Error Rate MER over time on the logical channel The parameter is tc The amount of averaging desired Valid range O to 10 0 no averaging the reported MER is the instantaneous value at the time of the request 10 maximum averaging provides an average over all time 9 is the default which provides a long term average Smaller values provide more immediate averaging cable upstream minimum unfrag burst Syntax Release 4 3 Standard cable upstream n c minimum unfrag burst size Specifies the minimum unfrag
557. up _ifAdmin Enable ifLinkTrap MIB ifTable 3 up _ifAdmin Disable ifLinkTrap 4 5 MIB ifTable up ifAdmin Enable ifLinkTrap MIB ifTable up _ifAdmin Disable ifLinkTrap MIB ifTable 6 down _ifAdmin Disable ifLinkTrap MIB ifTable 11 up _ifAdmin Enable ifLinkTrap MIB ifTable 12 down _ifAdmin Enable ifLinkTrap SNMP table part 7 index AdminStatus 1 up 2 up 3 up 4 up 5 up 6 down 11 up 12 down Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 155 10 Command Line Interface Reference 10 156 Standard IANAtypes Description docsCableMaclayer 127 CATV MAC Layer docsCableDownstream 128 CATV Downstream interface docsCableUpstream 129 CATV Upstream interface docsCableUpstream 129 CATV Upstream interface docsCableUpstreamChannel 205 CATV Upstream Channel docsCableUpstreamChannel 205 CATV Upstream Channel docsCableUpstreamChannel 205 CATV Upstream Channel docsCableUpstreamChannel 205 CATV Upstream Channel Corresponding SNMP MIB variables Parameter MIB variable lt index gt ifIndex downlfAdmin ifAdminStatus testIfAdmin ifAdminStatus upIfAdmin ifAdminStatus disable_ifLinkTrap ifLinkUpDownTrapEnable enable_ifLinkTrap ifLinkUpDownTrapEnable lt alias gt ifAlias Example The current state of all the interfaces is reported in the running configuration
558. urce source source wildcard any oper por host dest dest dest wildcard any oper port icmp type icmp code fragment precedence precedence tos tos dscp dscp Creates an ACL with the specified TCP filter entry or adds the specified TCP filter entry to an existing ACL The parameters are oper Optional port specifier one of eq equal neq not equal It less than or gt greater than port The port number to match using the defined operator O to 65535 or one of the following Port Keyword Name number bgp Border Gateway Protocol 179 chargen Character generator 19 cmd Remote commands rcmd 514 daytime Daytime 13 discard Discard 9 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Release 4 3 Standard Port Keyword Name number domain Domain Name Service 53 echo Echo 7 exec Exec rsh 512 finger Finger 79 ftp File Transfer Protocol 21 ftp data FTP data connections used infrequently 20 gopher Gopher 70 hostname NIC hostname server 101 ident Ident Protocol 113 irc Internet Relay Chat 194 klogin Kerberos login 543 kshell Kerberos shell 544 login Login rlogin 513 Ipd Printer service 515 nntp Network News Transport Protocol 119 pim auto rp PIM Auto RP 496 pop2 Post Office Protocol v2 109 pop3 Post Office Protocol v3 110 smtp Simple Mail Tran
559. using the mgmt boot option command this configuration is the resulting default The following example shows how the bridge group capability of the Cadant C3 can be used to completely isolate CPE traffic including CPE broadcast traffic from the management network ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 Configuration Release 4 3 Standard C3 CMTS User Guide The following example e makes use of the default cm subinterface and default cpe subinterface commands to map all CPE and modem traffic to sepa rate cable sub interfaces and hence to separate bridge groups and hence separate fastethernet sub interfaces e DHCP relay is being used for CPE and relies on the ability of the C3 to forward DHCP across bridge groups as long as ip dhcp relay is turned on in the bridge groups concerned e The specification ip 12 bg to bg routing on fastethernet 0 1 0 is required for DHCP Renew Acks to be returned to the CPE across the bridge groups No other sub interface requires this specification e Does not require VLAN tagging of data on the CPE network attached to the WAN port CABLE OPERATOR DHCP 10 1 1 1 DEFAULT ROUTE 192 168 253 1 DHCP SERVER 10 1 1 1 Gateway 192 168 253 1 10 2 1 253 route p add 192 168 253 0 192 168 253 0 via 10 1 1 2 fastethernet 0 0 0 PC bridge group 1 a a Sa ha to ed ct eg a ee ne eee T 1 DEFAULT ROUTE ip 12 bg to bg routi
560. using this model In this example two of the ISPs issue their own IP address one ISP requires the cable operator to issue CPE IP addresses In each case the router option passed to the CPE device is that of the ISP gateway router and is independent of the cable modem plant mi ISP BLUE ISP DHCP Server se y router ISP BLUE 205 2 3 254 7 1 router ISP I es 3 36 1 BLUE ee Fast Ethernet i Ss Jinks Proc won Be Ss 10 6 0 2124 aaar de fe ISP Reopen Isp ae r 1 router RED 1 1 1 lt teeoive 204 3 4 5 10 6 0 1 24 I 1 internet i d I fa 0 1 0 4 fa 010 0 1 faojo 1 fa0 0 2 i tag none 1 LA tag 11 Bridge Group 0 Bridge Bridge Group Group Group ISP RED DHCP Server tag 22 tag 33 E 3 oe g c2t 0 2 I ca 110 3 1 ca 1 0 1 l native I native I native ip 12 bg bg l routing I all modems in 10 6 0 0 24 ISP BLUE ISP BLUE router router 3 56 7 9 3 56 7 9 _ a ISP RED router 204 3 4 5 ISP RED 205 2 3 254 router router 204 3 4 5 Figure B 5 Example of all the C3v advanced bridging and VLAN abilities ARRIS PROPRIETARY All Rights Reserved B 13 B CMTS Configuration Examples DHCP Server Configuration To support this configuration the cable operator DHCP must have e A single scope defined for modems in the 10 6 0 0 netwo
561. utdown Disables the cable interface or when used in conjunction with the no param eter enables the cable interface This command will not take effect until the use exits out of the cable interface mode ARRIS PROPRIETARY All Rights Reserved 10 213 10 Command Line Interface Reference throttle credits Syntax 10 214 throttle credits initial init credit running run credit Sets the throttling credits on this sub interface The parameters are Keyword Description Sets the initial credits A host can send this many packets init credit initially without throttling being applied Initial credits allow the host to register and obtain a DHCP address Default 15 Sets the running credits in packets per second Hosts trans run credit mitting packets in excess of the running credit are subject to throttling using an ACL See also p throttle page 10 208 2 broadcast throttle page 10 209 Packet Throttling page 8 34 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Cable commands DHCP cable dhcp giaddr Syntax Release 4 3 Standard no cable dhcp giaddr policy primary round robin Replaces the giaddr field in DHCP packets The parameters are Keyword Description primary Replaces the giaddr with the relaying interface primary IP address for cable modems and hosts policy For cable modems replaces the giaddr with the
562. uter connects the network domains Autonomous Systems or AS Routers completely within an area exchange information about their networks only with other routers in the area Traffic between areas goes through the ABRs Route Redistribution Both RIP and OSPF support route redistribution which allows a router to advertise networks on static routes or from a router running a different protocol The following diagram is an example of how an OSPF based network might redistribute RIP routes 6 6 ARRIS PROPRIETARY All Rights Reserved 11 14 05 Redistributing Subnets in OSPF Release 4 3 Standard C3 CMTS User Guide RIP Area 0 backbone ABR Jam ei ABR Figure 6 2 Example of an OSPF based network redistributing RIP routes The router in Area 51 connected to the RIP network can use route redis tribution to advertise the RIP based networks as if those networks were connected directly to the router See also redistribute connected metric page 10 251 and similar commands on the following pages The C3 s static or learned routes can also be filtered before being redistrib uted into OSPF See OSPF Route Redistribution Filtering on page 21 to use the route map functionality to filter certain routes and prevent them from being propagated into OSPF RF subnets can be advertised in the C3 originate router LSAs within a single area only then summarization could be used at the area border to hide them fro
563. ve encapsulation dotlq 22 encrypted multicast bridge group 2 exit interface cable 1 0 3 description ISP3_CPE for CPE devices for ISP3 ip address 10 3 0 1 255 255 0 0 no management access ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no ip dhcp relay information option encapsulation dotlq 33 native encapsulation dotlq 33 encrypted multicast bridge group 3 exit interface cable 1 0 4 Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 5 15 5 Providing Multiple ISP Access 5 16 description UNPROVISIONED CPE for CPE devices for unprovisioned subscribers ip address 10 4 0 1 255 255 0 0 no management access ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no ip dhcp relay information option encapsulation dotlq 44 native encapsulation dotlq 44 encrypted multicast bridge group 4 exit interface cable 1 0 10 default for cm devices all cm will remain on this interface bridge group 9 ip address 10 77 77 1 255 255 255 0 no management access set up dhcp relay for cm note dhcp relay is not really required as DHCP bcast would be bridged to the DHCP server network via bridge group 9 ip dhcp relay cable dhcp giaddr primary cable helper address 10 99 99 1 no ip dhcp relay information option exit interface cable 1 0 Get rf running not no rf configuration here so please check the factory defaults are
564. verbose Displays defined service classes Use the verbose keyword to see a more detailed listing Example c3 show cable service class Name State Dir Sched Prio MaxSusRate MaxBurst MinRsvRate Multicast Act DS BE 0 0 0 0 show cable triggers Displays the currently configured spectral management triggers in tabular format show cli Displays CLI information 10 66 ARRIS PROPRIETARY All Rights Reserved 11 14 05 show cli accounts show cli logging Syntax show configuration Release 4 3 Standard C3 CMTS User Guide Shows login and password strings Example C3 show cli accounts Login name arris Login password arris Enable password Arris Enable secret show cli logging session n Shows global logging information Specify a user session 0 to 4 to display logging information for only one session no specification displays the global logging parameters Example C3 show cli logging CLI command logging is disabled logging of passwords is disabled File path for password logging Max file size 1024 Kilobytes C3 See show running configuration page 10 96 ARRIS PROPRIETARY All Rights Reserved 10 67 10 Command Line Interface Reference show controllers Syntax 10 68 one of show controllers cable x y upstream n c downstream show controllers fastethernet x y show controllers loopback number Displays information about the specified interface or
565. vers AAA capabilities for network services such as PPP and SLIP as well as for login and enable services k NOTE The TACACS feature cannot be used in conjunction with the SSH feature Any attempt to configure TACACS on a SSH line will result in an error presented to the user ARRIS PROPRIETARY All Rights Reserved 8 43 8 Configuring Security TACACS Server and Server The C3 will recognize server network failures during TACACS exchanges Group Operation and gracefully recover if multiple servers are defined A TACACS server will be declared unreachable on a per transaction basis Each new AAA transaction will attempt to use the server regardless of past failures However the server s reachable or unreachable state will be maintained for status display purposes For servers that maintain a single TCP connection any communications failure must be followed by a second communications attempt using a fresh socket The server may be declared unreachable only if the second attempt fails as well The intent is to avoid misinterpreting a closed or reset socket on the server side as an unreach able server The order in which TACACS servers are accessed will follow the order in which they were added to the group A given AAA transaction may be attempted using server only if the same transaction was attempted using server n 1 and server n was unreachable AAA Method List Operation An AAA method list may contain one or more AAA met
566. w Example C3 config snmp access list test permit host 1 2 3 4 C3 config snmp server community jim ro snmp access list test or C3 config snmp server community jim ro snmp access list test view docsisManagerView included ARRIS PROPRIETARY All Rights Reserved 10 171 10 Command Line Interface Reference snmp server contact Syntax no snmp server contact contact string Sets the contact string for the C3 Typically the contact string contains the name and number of the person or group that administer the C3 An SNMP manager can display this information snmp server location Syntax no snmp server location location string Sets the system location string Typically the location string contains the loca tion of the C3 snmp server notif entry Syntax no snmp server notif entry name tag value tag trap inform Configures or deletes a notification entry in the snmpNotifyTable The parameters are Keyword Description name The name of the notification entry Must be a unique string up to 32 characters long tag The tag value that selects an entry in the snmpTargetAddrTable created for example by the snmp server host command Use an empty string to select no entry 10 172 ARRIS PROPRIETARY All Rights Reserved 11 14 05 C3 CMTS User Guide Keyword Description trap Messages generated for this entry are sent as traps Messages g
567. w memory show tech show aliases show boot show calendar show class map show clock show context show exception show history C3 gt show ip arp Syntax show ip arp cable 1 0 s fastethernet 0 n s macaddr ipaddr Displays the associated MAC and IP addresses for interfaces or addresses learned through ARP Example C3 gt show ip arp Prot Address Age min Hardware Addr Vlan Type Interface IP 10 1 176 254 6 00e0 168b fc89 ARPA B 0 FastEthernet 0 0 0 C3 gt Release 4 3 Standard ARRIS PROPRIETARY All Rights Reserved 10 17 10 Command Line Interface Reference show ip igmp groups Syntax show ip igmp groups Shows all IGMP groups held in the C3 IGMP database Example C3 gt show ip igmp groups IGMP Connected Group Membership Group Address Interface 2392255259 2254 Ethernet3 1 224 0 1 40 Ethernet3 1 224 0 1 40 Ethernet3 3 224 0 1 1 Ethernet3 1 224 9 9 2 Ethernet3 1 2322152 pL Ethernet3 1 C3 gt show ip igmp interface Syntax 10 18 Uptime Expires Last Reporter 1w0d 00 02 19 172 21 200 159 1w0d 00 02 15 172 21 200 1 1w0d never 171 69 214 251 1w0d 00 02 11 172 21 200 11 1w0d 00 02 10 L722 2 ls 200R 5d21h stopped 172 21 200 206 show ip igmp interface cable 1 0 s fastethernet O n s Shows all IGMP attributes for all IGMP aware sub interfaces or for a specific sub interface Example C3 gt show ip igmp interface Cable 1 0 0 IGMP is disabled on subinter
568. w receives traps or informs from the defined subset internet of the C3 MIB using defined security no snmp server view view name mib family mask mask excluded included Creates or adds to an existing SNMP MIB view A view defines which MIB sub tree MIB families can be acted upon by an SNMP transaction A transaction is defined by the snmp server group command and may be read write or notify ARRIS PROPRIETARY All Rights Reserved 11 14 05 Release 4 3 Standard The parameters are C3 CMTS User Guide Keyword Description view Specifies the SNMP view by name The factory default configuration includes two predefined views docsis ManagerView and internet see below for details mib family Specifies a MIB sub tree by name and whether that sub tree is to be included or excluded in this view To add other MIB families in the same view repeat this command with the same view name and a different MIB family mask A bit mask used to create more complex rules The mask is a list of hexadecimal octets separated by colons such as aO ff The most significant bit of the first octet corresponds to the leftmost identifier in the OID Thus the command snmp server view test 1 3 5 mask AO excluded matches OIDs starting with 1 1 5 but not with 1 3 4 since the first and third bits of the mask are 1s Views are unique and are stored in the SNMP table iso dot org dod internet snmpV2
569. x Release 4 3 Standard C3 CMTS User Guide packet for the C3 That is the data frame is addressed to the C3 at layer 2 and is interpreted as C3 management traffic When the C3 sub interface is being used as an IP gateway to another sub interface the C3 does not forward the data frame containing the IP packet to the destination device unless ip 12 bg to bg routing is enabled Specify the ip 12 bg to bg routing on the sub interface that must act as an IP gateway to allow received IP packets to be passed to the C3 IP stack Once the IP packet has reached the IP stack the C3 routes it to the appropriate device If the C3 is being used as an IP gateway DHCP Renew arrives at the cable sub interface with an Ethernet MAC address of the C3 and is dropped before seen by the DHCP Relay function unless both management access and ip 12 bg to bg routing are enabled on the cable sub interface The manage ment access command allows accepting an IP packet addressed to the C3 from this sub interface and ip 12 bg to bg routing allows this IP packet to be passed to the C3 IP stack Where the C3 is not being used as the IP gateway DHCP Relay does not need this specification to route DHCP packets but it may be required to return an ACK to a DHCP Renew under some network conditions ip ospf cost ip ospf cost cost Explicitly specifies the cost of sending a packet on an OSPF interface ip ospf retransmit interval ip ospf retransmit interval
570. xrwx 1 rwxrwxrwx 1 rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration drwxrwxrwx 1 rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration 0 0 0 0 b 0 0 o OO OF OOOO GOGO OOT OO OO OS OTT OGO OO Oc OTT OG E GOOG 0O kup up Release 4 3 Standard Oue O 20440 12718456 12636587 12642315 23944 21507 21588 12533267 22897 12705720 23923 24557 19344 12529091 12716424 23886 24342 24530 24530 24342 22662 2048 25679 20467 22661 22661 22759 22759 Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan a1 oO w 15 1 3 13 12 10 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1999 1999 1980 1980 1980 1980 C3 CMTS User Guide 4 1 0 1 star 4 1 0 15 bin 4 1 0 2 bin 4 1 0 3 bin 4 1 4 1 0 3 star 41s Oi Star bin 4 1 0 8 star 11 bin 12 star 421 On Start
571. xrwxrwx 1 0 0 6077442 rwxrwxrwx 1 0 0 8326 rwxrwxrwx 1 0 0 19099 rwxrwxrwx 1 0 0 996 rwxrwxrwx 1 0 0 914 rwxrwxrwx 1 0 0 42750 rwxrwxrwx 1 0 0 38543 rwxrwxrwx 1 0 0 73591 rwxrwxrwx 1 0 0 73492 rwxrwxrwx 1 0 0 40 rwxrwxrwx 1 0 0 19213 rwxrwxrwx 1 0 0 5421 rwxrwxrwx 1 0 0 19099 drwxrwxrwx 1 0 0 2048 drwxrwxrwx 1 0 0 2048 drwxrwxrwx 1 0 0 2048 drwxrwxrwx 1 0 0 2048 drwxrwxrwx 1 0 0 2048 drwxrwxrwx 1 0 0 2048 drwxrwxrwx 1 0 0 2048 10 52 Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan PSP RPRPRPRPURRPRPREPRPEHEPRPRP UF Uw 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1980 1999 1980 ARRIS PROPRIETARY All Rights Reserved shutdownDebug log autopsy txt startup temp root der rootEuro der cppiImg3140 txt icfImg3138 txt icfImg3140 txt icfImg3140 old txt tzinfo txt fp_uload hex dfu_uload hex startup configuration security ssh CONFIG SOFTWARE licenses Syslog tftpboot 11 14 05 rwxrwxrwx 1 0 configuration bkup rwxrwxrwx 1 rwxrwxrwx 1 rwxrwxrwx 1 rwxrwxrwx 1 configuration rwxrwxrwx 1 onfiguration bk rwxrwxrwx 1 configuration rwxrwxrwx 1 rwxrwxrwx 1 configuration rwxrwxrwx 1 rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrwxrwx 1 configuration rwxrw
572. y id or disconnect ip ssh user Disconnects telnet or SSH sessions even if not fully logged in yet Valid range 0to3 Example C3 show user ARRIS PROPRIETARY All Rights Reserved 10 37 10 Command Line Interface Reference Line Disconnect Location User Timer zty 0 0214257 serial port arris vty 0 0 15 00 192 168 250 80 arris vty 1 0 15 00 192 168 250 80 arris vty 2 0 15 00 192 168 250 80 arris vty 3 0 15 00 192 168 250 80 arris C3 disconnect vty 2 elog Syntax elog ascii dump clear off on size rows Controls and displays the event log The parameters are Keyword Description ascii dump Dumps the log to the screen clear Empties the log on Turns on event logging off Turns off event logging Sets the size of the event log as the number of rows to a be stored Example C3 elog ascii dump Index Event Code Count First Time Last Time CM MAC Addr 82010100 16 JUL 08 18 33 33 JUL 08 18 33 48 82010200 1 JUL 08 18 33 48 JUL 08 18 33 48 0000 ca30 1288 82010400 1 JUL 08 18 33 48 JUL 08 18 33 48 82010100 7 JUL 15 16 43 16 JUL 15 16 54 26 82010100 16 JUN 26 15 25 54 JUN 26 15 26 09 Oe WN FP C3 10 38 ARRIS PROPRIETARY All Rights Reserved 11 14 05 erase Syntax format Syntax hostid Release 4 3 Standard C3 CMTS User Guide erase c startup configuration Erases the Fla
573. y information option cable dhcp giaddr primary cable helper address 10 1 1 1 exit j interface cable 1 0 1 ip address 10 55 1 1 255 255 255 0 ip dhcp relay ip dhcp relay information option cable dhcp giaddr primary cable helper address 10 1 1 1 no management access no shutdown exit ji exit exit The following example shows bridging being used to support CPE running at layer 2 PPPoE and IP routing being used to support CPE running at the IP level and Ethernet 802 1Q VLANS being used to separate traffic on the Ethernet backbone Note that bridging and routing is being performed by separate cable sub interfaces It is possible to both bridge and route using the one sub inter face Configuration file VSE is being used to map CPE traffic to sub interfaces and hence to the capabilities of that sub interface either bridging or IP routing ARRIS PROPRIETARY All Rights Reserved B 25 B CMTS Configuration Examples 10 33 0 0 16 TAG 88 TAGESR E S network R 2 eesgeel on aay 1 140 3 0 0 network edge router at VLAN AWARE re Bok eee I oy l 10 33 0 253 SWIPE default route 10 3 0 1 PPPOE F H i O R l PC I l Pc peor 1 0 0 24 vi p ana i route a 1 0 via T EE EE 1 10 99 99 69 fastethernet 0 0 0 10 99 99 150 route add 10 3 0 1 16 via no ip address l 10 99 99 69 bridge group 1 E l s oapsu
Download Pdf Manuals
Related Search