SpeedTouch: Basic Training

1
(No Transcript)
2
SpeedTouch Basic Training

• mathieu.vanwynsberghe_at_thomson.net
• frederick.scraeyen_at_thomson.net

3
Agenda DAY1

• Company profile
• Product portfolio
• Software releases
• Software structure
• Access
• Architecture
• Hands-on

4
Company Profile
5
Thomson along the value chain
CREATION
Content creators
End consumers
DISTRIBUTION
ACCESS
Theatre
Traditional / Digital cinema
Production / Post-production Media asset
management
Electronic / physicaldistribution
Film print
DVD distribution
DVDreplication

• Home
• Convergence
• PC, TV , phone
• Content management

Capture
Broadcast Network services

• Out of home
• Mobility

• Office
• Professional solutions

6
Global Organisation.
Paris France
Hanover Germany
Beijing China
Princeton/NY USA
Indianapolis USA
Rennes France
Burbank USA
London UK
with a local presence. 23 000 employees world
wide.
7
DSL Product portfolio
8
DSL Portfolio 2007
Price
TG628s
ST620 620s
TG787 VDSL
TG797n
High end products
ST608 608 Wireless
TG787n
TG587n
TG780 Business
TG707n
TG790
ST605 605s
TG546 Fiber
ST780
TG585n
ST706
TG546 VDSL
ST546
Low end products
ST536
ST516
ST530
ST510
ST330
ST122g
TG151
Wired
Wireless
Triple Play
Business
9
Software releases
10
Release Timeline
Dev. Feature A
Dev. Feature Y
.
Dev. Feature X
Dev. Feature Z
Demo build XYZA
Demo build X
Concept
.1
.2
.
.1
.2

.1
.2

.1
.2

Early Adopter
Main
8.2.2
7.4.1
7.4.2
8.4.1
8.4.2
8.4.3
9.2.1
9.2.2
7.4.3
8.2.0
8.2.1
wk738
wk746
wk830
wk838
wk846
wk812
wk820
wk904
wk912
wk920
wk804
2008
2007
11
Software / Firmware / Build Structure
Software
archive (customization) .ini .tpl .def
physical layer
security.cfg
boot loader
.bin file ? local upgrade

• .www file
• local upgrade
• remote upgrade

rescue bootp mode
12
File types

• user.ini
• saved config
• ltfilegt.tpl
• templates (Set-Up Wizard)
• ltfilegt.def
• factory defaults
• ltfilegt.cfg
• configuration files physical layer, dial tones,
  security files
• ltfilegt.sts
• SpeedTouch Script

ltfilegt.bin Software container, including
bootloader ltfilegt.www Software container, without
bootloader
13
user.ini

• saved configuration
• saved in passive directory /dl
• backup via FTP
• ftp//192.168.1.254
• cd dl
• get user.ini
• backup via GUI
• SpeedTouch Configuration task Save and
  restore configuration
• backup-configuration
• save user.ini

14
user.ini content

• cac.ini
• config portdsl0 stateenabled
• config portdsl1 stateenabled
• config portatm2 stateenabled
• config portaal5 statedisabled
• config portatm5 statedisabled
• overbooking rt0 nrt0
• language.ini
• config languagefr completeno
• script.ini
• fwlevel.ini
• add nameStandard index1 readonlyenabled
  udptrackmodeloose serviceenabled proxyenabled
  text"Ce réglage autorise le trafic sortant mais
  bloque le trafic entrant susceptible de nuire."
• add nameOff index2 readonlyenabled
  udptrackmodeloose serviceenabled proxyenabled
  text"Le firewall est désactivé, tout trafic
  entrant et sortant est autorisé."
• set nameStandard

15
e.g. cwmp.def

• config statedisabled modefull
  periodicInformenabled periodicInfInt43200
  sessionTimeout60 noIpTimeout10 maxEnvelopes2
  connectionRequestdisabled connectionReqPath""
  connectionReqUserNameCWMPUSER
  connectionReqPsswd_WEPKEY_SERIAL
  connectionReqAuthdigest qos-class12
  bootdelayrange0
• server config urlhttp//acs-server.com
  usernameCWMPUSER password""
• debug traceconfig level0
• runtimevar softwareVersionUnknown
  bootstrapdisabled
• changed factory defaults
• ltnamegt is referring to local variable
• _ltnamegt is referring to local dynamic variable

16
The command line interfaceand system/software
management
17
CLI access

• Through TELNET
• To any IP_at_ allocated to the CPE
• TELNET system service should allow the access
• UserID should also have TELNET in its allowed
  zones

18
CLI Navigation

• Main login page
• Any userID which is allowed to use the CLI

19
CLI Navigation

• TAB key will auto-complete any incomplete command
  
• When unique
• Show a list of possible completions
• Help command (or ?)
• Works in every menu
• Shows the possible sub-menus
• Shows the possible commands
• Shows the us of a command when used in
  conjunction with that command

20
CLI Navigation

• Moving forward and back in the menu-structure
• Use .. To move back
• Use ltmenu namegt to move forward
• Use in front of a command to execute it from
  the root menu
• Menu items and commands within these items can be
  used in one phrase. Using the in front will
  execute the sequence from the root menu.
• without a command or menu will move back to the
  root menu
• Exit to exit the CLI

21
CLI basic tracing

• By default some traces are available from many
  modules
• Press CTRLQ to start showing tracings
• Press CTRLS to stop showing tracings
• Press CTRLT to interrupt showing historical
  tracings (all tracings since startup).

22
System management

• System menu
• System debug stats to show system
  performance/resource parameters
• Reboot
• Other
• Settime, locale
• RA Remote assistance configuration (WWW GUI)

23
System management

• System config
• Set UPnP, MDAP and other
• Reset
• With or without ISP defaults

24
Upgrade wizard Upgrade

• Upgrade wizard is a Thomson tool
• Allows binary flash upgrades for significant
  firmware changes (including filesystem)
  bootp/tftp based
• Does not require perfect IP connectivity
• Multicast (MDAP) based
• Provided for free on every product CD
• Easy to use
• Only for products with bootloader

25
Configuration upgrade

• Configuration files can be uploaded through
• FTP
• In /dl dir
• When file is called user.ini it will be loaded
• TFTP up/download
• Web GUI
• Through speedtouch tab, configuration, backup or
  restore configuration
• Through expert, speedtouch tab, system update,
  upload files section
• Files need to be called user.ini in /dl to be
  taken into account by the bootloader

26
Configuration upgrade/backup WWW based
27
More on access
28
FTP access
29
MDAP

• MDAP ( IP Multicast Discovery and Access
  Protocol) is a Thomson proprietary protocol
• Main function allowing discovery and
  communication between the modem and the host
• Communication between two hosts is possible as
  long as IP connectivity is present
• any valid IP address is OK for modem host ( no
  subnet issue)
• Auto IP
• modem and host should be directly connected
  without router or firewall in between
• MDAP
• can (but shouldnt) be disabled on the modem
• allows upload and download of ASCII files
• Supports authentication (login password)

30
Reset to factory defaults

• system reset factoryyes proceedyes
• This will reset the device to factory defaults
• When device running, push pinhole until reboot
• This will reset the device to factory defaults
• When device is booting, push pinhole until LED
  goes orange
• This will put the device in BOOTP

31
BOOTP

• BOOTP is the state where the hardware is booted,
  but the software is not initiated yet.
• In this state, you are able to upgrade the router
• In this state, no authentication is required
  since authentication is part of the software
  (which is not loaded yet)

32
Hierarchical module overview
33
Interface Architecture Modules

• Layer 1 Physical
• ATM Phonebook menu
• ATM menu gt ATM interface
• - ATM interface with destination a phonebook
  entry
• Layer 2 Datalink
• IP menu gtIPoA interface
• - IPoA with destination an ATM interface
• Eth menu gt ETHoA interface
• - Ethoa with destination an ATM interface
• Eth bridge menu gt bridge interfaces
• - Bridge with destination an ATM interface
• - Part of the bridge (also eth1, eth2, eth3 and
  eth4 and OBC)
• PPPoA and PPPoE
• Layer 3 Network
• IP menu gt IP interface
• - IP with destination IPoA, EthoA or LAN
  interface

34
Applicable encapsulations
35
Default configuration
ip iplist
ip iflist
eth iflist
eth bridge iflist
36
Bridging general Concept
End node
End node
Bridge
MAC address

• A Bridge acts at the MAC layer (L2)
• Flooding and Forwarding
• Not aware of higher layers (IP packets)
• Self learning
• Traffic reduction

37
Bridged Ethernet Protocol Stack
38
Bridged Ethernet Interface mapping
LoopBack
IP Forwarding
IP Interface(s)
ARP
iARP
IPoA
PPPoE
IPoE /
PPPoE RELAY
Multilink PPP
IPoEoA
Ethernet Interface(s)
PPPoA
(Physical Ports, OBC Bridge Port, VLAN)
VLAN
Bridge
EthoA
ATM Bundle
39
Bridged Ethernet CLI Commands

• Create an ATM phonebook entry
• atm phonebook add nameBrEthoa_ph addr8.35 type
  any
• Create and configure an ATM interface
• atm ifadd intfBrEthoa_atm
• atm ifconfig intfBrEthoa_atm dest BrEthoa_ph
  ulpmac
• atm ifattach intfBrEthoa_atm
• Create and configure an ETH interface
• eth bridge ifadd intfBrEthoa_br
• eth bridge ifconfig intfBrEthoa_br dest BrEthoa_
  atm
• eth bridge ifattach intfBrEthoa_br
• saveall

40
The Bridge
eth bridge iflist
41
Bridged PPPoE Protocol stack
42
Bridged PPPoE Interface mapping
LoopBack
IP Forwarding
IP Interface(s)
ARP
iARP
IPoA
PPPoE
IPoE /
PPPoE RELAY
Multilink PPP
IPoEoA
Ethernet Interface(s)
PPPoA
(Physical Ports, OBC Bridge Port, VLAN)
VLAN
Bridge
EthoA
ATM Bundle
43
Bridged PPPoE CLI Commands

• Create an ATM phonebook entry
• atm phonebook add nameBrEthoa_ph addr8.35 type
  any
• Create and configure an ATM interface
• atm ifadd intfBrEthoa_atm
• atm ifconfig intfBrEthoa_atm dest BrEthoa_ph
  ulpmac
• atm ifattach intfBrEthoa_atm
• Create and configure an ETH interface
• eth bridge ifadd intfBrEthoa_br
• eth bridge ifconfig intfBrEthoa_br dest BrEthoa_
  atm
• eth bridge ifattach intfBrEthoa_br

44
Routing general Concept

• A Router acts at the Internet layer (L3)
• Routing based upon IP address
• Not aware of higher layers (TCP segments,
  applications)
• Self learning based upon routing protocols
• Traffic reduction

45
Routed IPoA Protocol stack
46
Routed IPoA Interface mapping
LoopBack
IP Forwarding
IP Interface(s)
ARP
iARP
IPoA
PPPoE
IPoE /
PPPoE RELAY
Multilink PPP
IPoEoA
Ethernet Interface(s)
PPPoA
(Physical Ports, OBC Bridge Port, VLAN)
VLAN
Bridge
EthoA
ATM Bundle
47
Routed IPoA CLI Commands

• Create and configure an ATM interface
• atm phonebook add nameRtIPoA_ph addr8.35 type
  any
• atm ifadd intfRtIPoA_atm
• atm ifconfig intfRtIPoA_atm destRtIPoA_ph
  ulpip
• atm ifattach intfRtIPoA_atm
• Create and configure an IP interface
• ip ifadd intfRtIPoA_ip
• ip ifconfig intfRtIPoA_ip destRtIPoA_atm
• ip ifattach intfRtIPoA_ip
• Configure the IP address
• ip ipadd addr192.6.11.67/24 intfRtIPoA_ip addro
  uteyes
• saveall

48
Routed IPoEoA Protocol stack
49
Routed IPoEoA Interface mapping
LoopBack
IP Forwarding
IP Interface(s)
ARP
iARP
IPoA
PPPoE
IPoE /
PPPoE RELAY
Multilink PPP
IPoEoA
Ethernet Interface(s)
PPPoA
(Physical Ports, OBC Bridge Port, VLAN)
VLAN
Bridge
EthoA
ATM Bundle
50
Routed IPoEoA CLI Commands

• Create and configure an ATM interface
• atm phonebook add nameRtEthoa_ph addr8.35 type
  any
• atm ifadd intfRtEthoa_atm
• atm ifconfig intfRtEthoa_atm dest RtEthoa_ph
  ulpmac
• atm ifattach intfRtEthoa_atm
• Create and configure an ETH interface
• eth ifadd intfRtEthoa_eth
• eth ifconfig intfRtEthoa_eth dest RtEthoa_atm
• eth ifattach intfRtEthoa_eth
• Create and configure an IP interface
• ip ifadd intfRtEthoa_ip
• ip ifconfig intfRtEthoa_ip dest RtEthoa_eth
• ip ifattach intfRtEthoa_ip
• In Case of DHCP client
• dhcp client ifadd intfRtEthoa_ip
• dhcp client ifattach intfRtEthoa_ip
• In Case of static IP
• ip ipadd addr192.6.11.67/24 intfRtEthoa_ip addr
  outeyes

51
Routed PPPoA Protocol stack
52
Routed PPPoA Interface mapping
LoopBack
IP Forwarding
IP Interface(s)
ARP
iARP
IPoA
PPPoE
IPoE /
PPPoE RELAY
Multilink PPP
IPoEoA
Ethernet Interface(s)
PPPoA
(Physical Ports, OBC Bridge Port, VLAN)
VLAN
Bridge
EthoA
ATM Bundle
53
Routed PPPoA CLI Commands

• Create and configure an ATM interface
• atm phonebook add nameRtPPPoA addr8.35
  typeany
• atm ifadd intfRtPPPoa_atm
• atm ifconfig intfRtPPPoa_atm destRtPPPoA
  ulpppp
• atm ifattach intfRtPPPoa_atm
• Create and configure a PPP interface
• ppp ifadd intfRt_PPPoA
• ppp rtadd intfRt_PPPoA dst0/0 src10.0.0.0
  srcmsk1
• ppp ifconfig intfRt_PPPoA destRtPPPoA_atm
  userjohndoe_at_ISP passwordjohndoe
• nat ifconfig intfRt_PPPoA translation enabled
• ppp ifattach intfRt_PPPoA
• saveall

54
Routed PPPoE Protocol stack
55
Routed PPPoE Interface mapping
LoopBack
IP Forwarding
IP Interface(s)
ARP
iARP
IPoA
PPPoE
IPoE /
PPPoE RELAY
Multilink PPP
IPoEoA
Ethernet Interface(s)
PPPoA
(Physical Ports, OBC Bridge Port, VLAN)
VLAN
Bridge
EthoA
ATM Bundle
56
Routed PPPoE CLI Commands

• Create and configure an ATM interface
• atm phonebook add nameRtPPPoE_ph addr8.35 type
  any
• atm ifadd intfRtPPPoE_atm
• atm ifconfig intfRtPPPoE_atm destRtPPPoE_ph ulp
  mac
• atm ifattach intfRtPPPoE_atm
• Create and configure an ETH interface
• eth ifadd intfRtPPPoE_eth
• eth ifconfig intfRtPPPoE_atm destRtPPPoE_atm
• eth ifattach intfRtPPPoE_eth
• Create and configure a PPP interface
• ppp ifadd intfRtPPPoE0
• ppp rtadd intfRtPPPoE0 dst0/0 src10.0.0.0 src
  msk1
• ppp ifconfig intfRtPPPoE0 destRtPPPoE_eth user
  johndoe_at_ISP passwordjohndoe
• nat ifconfig intfRtPPPoE0 translationenabled
• ppp ifattach intfRtPPPoE0
• saveall

57
PPPoE Relay Protocol stack

• Feature to allow the combination of Bridged and
  Routed PPPoE

58
PPPoE Relay Interface mapping
LoopBack
IP Forwarding
IP Interface(s)
ARP
iARP
IPoA
PPPoE
IPoE /
PPPoE RELAY
Multilink PPP
IPoEoA
Ethernet Interface(s)
PPPoA
(Physical Ports, OBC Bridge Port, VLAN)
VLAN
Bridge
EthoA
ATM Bundle
59
PPPoE relay Overview

• With CLI first create an ETHoA interface
  WITHOUT IP address and add then an PPPoE
  interface
• To enable PPPoE RELAY, configure destRELAY in
  PPPoE configuration
• Add the the desired ports to the RELAY ALLOW
  filter
• ppp relay ifadd

60
PPPoE relay overview

• Setting up pppoe sessions can happen in 2 ways
• By binding an ethernet encapsulated destination
  port (eth0 or ethoa) to a pppoe session without
  relay
• By binding the pppoe session to the RELAY
• RELAY is a filter which contains a list of
  allowed ports
• Any ethernet encapsulated ports can be added (eth
  and ethoa ports)
• Consequences
• Pppoe sessions can be setup over a real ethernet
  port (eth0) e.g. to another DSL gateway
• Multiple pppoe sessions can be setup through the
  same PVC (RELAY)
• Multiple pppoe sessions can be mixed with ethoa
  connections having static or dynamic ip addresses
  or bridges
• Embedded pppoe sessions can be mixed with pppoe
  sessions coming from the LAN

61
PPPoE Relay CLI Commands

• Create and configure an ATM interface
• atm phonebook add nameRtPPPoE_ph addr8.35 type
  any
• atm ifadd intfRtPPPoE_atm
• atm ifconfig intfRtPPPoE_atm destRtPPPoE_ph ulp
  mac
• atm ifattach intfRtPPPoE_atm
• Create and configure an ETH interface
• eth ifadd intfRtPPPoE_eth
• eth ifconfig intfRtPPPoE_atm destRtPPPoE_atm
• eth ifattach intfRtPPPoE_eth
• Add ETH to PPPoE Relay
• ppp relay ifadd intfRtPPPoE_eth
• ppp relay ifadd intfBridge
• Create and configure a PPP interface
• ppp ifadd intfRtPPPoE0
• ppp rtadd intfRtPPPoE0 dst0/0 src10.0.0.0 srcm
  sk1
• ppp ifconfig intfRtPPPoE0 destrelay userjohndo
  e_at_ISP passwordjohndoe
• nat ifconfig intfRtPPPoE0 translationenabled
• ppp ifattach intfRtPPPoE0

62
Hands-on!
63
Upgrade via upgrade-wizard to 7.4
64
Default configuration
ip iplist
ip iflist
eth iflist
eth bridge iflist
65
Ethernet without bridge
flush eth bridge ifdelete eth ifadd
eth ifconfig eth ifattach ip ifadd
ip ifconfig ip ifattach ip ipadd /
dhcp client ifadd (1,3,6,51,58,59) nat
interface
66
Debug-tools

• ip debug traceconfig
• ctrl-q / ctrl-s / ctrl-t
• Wireshark
• Set Capture port on switch
• eth switch mirror capture port3
• eth switch mirror ingress port4
• eth switch mirror egress port4

67
Mirroring from the WAN
eth switch mirror capture port3 eth switch
mirror ingress port4 eth switch mirror egress
port4
68
Capture HTTP/FTP request!
69
(No Transcript)
70
Troubleshooting

• ADSL
• ATM OAM
• IP trace
• NAPT trace
• Connections

71
CLI

• Press CTRLQ to start showing tracings
• Press CTRLS to stop showing tracings
• Press CTRLT to interrupt showing historical
  tracings (all tracings since startup).

72
Advanced debugging

• Debug menu
• Only for exceptional tracing
• Contains many low-level debugging possibilities
• exec command

73
ADSL

• To enable ADSL logging
• adsl config trace enabled
• Set ADSL training mode
• adsl config opermode
• multimode legacy ADSL
• multi_adsl2
• multi_readsl2 reach extended
• multi_adsl2plus
• adsl config

74
ADSL traces
75
ATM statistics

• ATM debug menu
• Portstats
• AAL5stats AAL5 errors

DSL0 fast channel DSL1 interleaved channel
76
ETH(oA) ports overview

• Eth bridge iflist

On Board CPU routing engine
77
ETH statistics

• Learned MAC addresses
• ARP list
• IP interface list

78
IP TRACING

• IP Debug menu
• Traceconfig to display routed packets
• Input/output/forward set filter none, -telnet
  or use a label
• Example
• Then press CTRLT to clear the log q
• Send traffic, e.g. ping

Exclude TELNET traffic
79
IP TRACING

• Ip debug traceconfig
• Mode options
• Default line
• Alternative dump

80
Special IP commands

• IP debug PING
• IP debug traceroute
• IP debug stats

81
Connections

• connection list
• To find active connections between 2 IP addresses.

82
Additional traces

• Many other menus have debug sections with trace
  commands
• Other menus have a config option to enable
  tracing
• NAT
• DHCP server

83
(No Transcript)
84
Multi level user and passwordMLP
85
Multi User Multi Role Management

• telnet
• ftp
• http
• Serial
• MDAP
• Upnp
• TR-69

Channels
Management Interactions
Origins
Roles

• LAN
• Local
• WAN

• Root
• Guest
• ASP
• NSP
• ISP

• All cli commands/options
• Web pages
• File access

Role Channel Origin Management Interaction
Template

• Authentication based on either
• Username/password (MRMU protected)
• Ip realm (via firewall)
• Triggered by end user (u/p)
• Certificates (ssl/(ssh))