Misc Tab

Note: If you have a Pipeline 25-Fx with the IPX Routing option (for connecting to NetWare networks), see the help file for IPX Routing.

Buttons in All Windows

? (Help)
Description: Displays online help for the Java-Based Pipeline Configurator.
Usage: Click the Help button at any time to get online help for the settings in the current tab.
This opens a World Wide Browser, such as Netscape Navigator or Internet Explorer, and displays information about the settings.
To close the help display, close the browser as you would any other program. For example, in Windows 95, click the X button at the upper right of the window or choose Exit from the File menu.
With some browsers, a new window will open each time you click the Help button. If this happens, simply close each window when you're done with it.
Finding setting descriptions: At the beginning of each help window is a table of contents for the window. To go information about a particular setting, click the hyperlink (the underlined text in most browsers) for that setting in the contents. To return to the contents, use the control in your browser for going back, such as the Back button in Netscape Navigator or Internet Explorer 3.0.

Update
Description: Sends configuration settings to the Pipeline.
Usage: Click this button to send the settings shown in the Java-Based Pipeline Configurator to the Pipeline.
These new settings replace the previous settings in the Pipeline. You can use this button at any time; you do not have to enter values for all settings before updating the Pipeline.

Save As
Description: Saves configuration settings in a file.
Usage: Click this to save the settings shown in the Java-Based Pipeline Configurator in a file on your computer.
You then use your operating system's facility for specifying a name and location for the file, such as the Save To dialog box in Windows 95.
You can later open a file in which you've saved settings by clicking the Open a Configuration File button in the first window that appears when you run the Java-Based Pipeline Configurator.
You can use this button at any time; you do not have to enter values for all settings before saving settings.

Open Monitor
Description: Opens the Pipeline Monitor, a program for monitoring the status of the Pipeline unit as well as making and disconnecting ISDN connections manually. You can also use it to view the current status of the ISDN line as well as events that occur during Pipeline operation. For more information about the Pipeline Monitor, see Using the Pipeline Monitor.
Usage: Click this to open the Pipeline Monitor.

Settings

Configure
Description: This setting determines the group of related settings that appears in this tab.
Usage: Choose one of the following:

General Settings
This displays several miscellaneous settings. These settings are described in the General settings section.

Security Card
This displays settings that control security card authentication. These settings are described in the Security Card settings section.

System Log
This displays settings that control what appears in the system log. These settings are described in the System Log settings section.

General settings

Advertise Dialout Routes
Description: This setting specifies whether the Pipeline should continue to advertise dialout routes for which it is currently unable to establish a WAN connection. The default behavior of the Pipeline is to advertise routes regardless of the condition of its lines.
This setting is intended for use when two or more Ascend units on the same network are configured with redundant profiles and routes. It is not necessary to use this feature if you have a single Pipeline unit.
This feature was developed in response to a problem that occurred when two or more Ascend units on the same network were configured with redundant profiles and routes. If one of the redundant Pipeline units lost its dialout lines temporarily, it continued to receive outbound packets that should have been forwarded to the redundant Pipeline.
Usage: Enter whatever.

Always
Causes the Pipeline to always advertise its IP routes. Use this setting unless you have redundant Ascend units or don't use dialout routes.
Always is the default.

Only When Trunks Are Up
Causes the Pipeline to stop advertising ("poison") its IP dialout routes if it temporarily loses the ability to dial out.

Logout on Device Disconnects
Description: This checkbox controls whether the Pipeline automatically logs out when a device disconnects from the its control port or when the Pipeline loses power. The disconnected device can be a terminal, a terminal emulator, or a modem..
Usage: Check the box to enable automatic logout.

By default, automatic logout is disabled.

General UDP Checksum
Description: This checkbox controls whether the Pipeline generates a UDP checksum whenever it sends out a UDP packet. The Pipeline uses UDP when generating queries and responses for the following protocols:

ATMP

SYSLOG

DNS

ECHOSERV

RADIUS

TACACS

RIP

SNTP

TFTP

Usage:

Check this box to cause the Pipeline to generate a UDP checksum when transmitting a UDP packet.
Specify this setting if data integrity is of the highest concern for your environment, and having redundant checks is important; this setting is also appropriate if your UDP-based servers are located on the remote side of a WAN link that is prone to errors.

Leave this box unchecked if you do not want the Pipeline to generate a UDP checksum when transmitting a UDP packet.
This is the default. Use the default if you plan to use the data integrity guarantee of the Ethernet or PPP checksum only.

Ethernet Interface
Description: This setting specifies which of the two Ethernet connectors on the Pipeline you use to connect to the local-area network.
If you connect an Ethernet transceiver to either connector (such as a transceiver that converts Thick Ethernet to Thin Ethernet), choose the connector to which the transceiver is attached.
Usage: Choose one of the following:

UTP
Specifies the 10Base-T (unshielded twisted pair) connector

AUI
Specifies the Thick Ethernet (10Base-5) connector

Security Card settings

APP Server settings

Use APP Server
Description: The checkbox controls whether an APP Server utility for is used for authentication of outgoing security card calls.
Usage: Check the box to enable security card authentication using an APP Server utility.
If the box is not checked, calls are authenticated by the terminal server. This is the default.
Dependencies: Keep this additional information in mind:

You must set Authentication for outgoing calls (in the Dial Out settings for a connection profile in the Connections tab) to PAP-Token for the Use APP Server setting to have any effect.

The APP Server utility must be running on a UNIX or Windows workstation on the network to which you're connecting.

APP Host Address
Description: This setting specifies the IP address of the host that runs the APP Server utility.
Enigma Logic SafeWord AS and Security Dynamics ACE authentication servers are examples of APP servers.
Usage: Enter the IP address of the authentication server.

The address consists of four numbers between 0 and 255, separated by periods.
Example: `111.65.212.100`
Dependencies: Keep this additional information in mind:

This setting applies only to outgoing calls using security card authentication.

For this setting to have any effect, you must

Set Authentication for outgoing calls (in the Dial Out settings for a connection profile in the Connections tab) to PAP-Token

Check the Use APP Server checkbox

The APP Server utility must be running on a UNIX or Windows workstation on the network to which you're connecting.

Subnet Mask
Description: This specifies the subnet containing the IP address for APP host.
Usage: Click the up arrow to add bits to the subnet mask. Click the down arrow to take away bits from the subnet mask. The mask and the number of bits in the mask are shown to the right of the arrows.
Dependencies: Keep this additional information in mind:

The value of the Subnet Mask setting must match the Subnet Mask setting expected by the device to which the Pipeline connects.

If you do not know the right subnet mask to enter, you must obtain it from the network administrator. Do not attempt to configure the subnet mask by guesswork!

APP Host Port
Description: This setting specifies the UDP port number monitored by the APP Server utility identified by the APP Host Address setting.
Usage: Enter the UDP port number monitored by the APP server.

Valid port numbers range from 0 to 65535. The default value is 0, which indicates that no UDP port is being monitored by the APP server.
Example: `35`
Dependencies: Keep this additional information in mind:

This setting applies only to outgoing calls using security card authentication.

For this setting to have any effect, you must

Set Authentication for outgoing calls (in the Dial Out settings for a connection profile in the Connections tab) to PAP-Token

Check the Use APP Server checkbox

The APP Server utility must be running on a UNIX or Windows workstation on the network to which you're connecting.

DHCP Spoofing settings

Enable
Description: This checkbox enables Dynamic Host Configuration Protocol (DHCP) spoofing.
When DHCP spoofing is enabled, the Pipeline can act as a DHCP server for one IP address. When card-based security is used, the user must interact with the Pipeline to provide the card-based password. This interaction must occur over IP. However, the user doesn't have an IP address yet at the time when the password must be supplied.
To solve this "which came first" problem, the Pipeline supports DHCP spoofing. DHCP spoofing works like this:

If there is no authenticated dial-up session and the Pipeline receives a DHCP Discover packet, it responds with a DHCP Offer packet containing the configured IP address, netmask, and renewal time. This is quickly verified by an exchange between the client and the Pipeline.

The renewal time is limited to a few seconds to ensure that the computer gets its real address from the remote DHCP server as soon as possible.

The APP Server utility runs using only broadcast addresses (see the discussion on the APP Server Utility and DHCP Spoofing in the Pipeline 75 User's Guide), so that the Pipeline does not need a real IP address and the temporary "spoofed" address is not relied upon.

As soon as an authenticated dial-up link exists, the Pipeline refused to renew the spoofed address, forcing the computer to get its real address from the remote DHCP server.

Usage: Check the box to enable DHCP spoofing.
Dependencies: For DHCP spoofing to work, you must also provide values for the Spoof Address, Subnet Mask, and Renewal Time settings.

Spoof Address
Description: This setting specifies the IP address that will be assigned to a DHCP client when DHCP spoofing occurs.
The address must be a valid address on the local network.
Usage: Enter the IP address.

The address consists of four numbers between 0 and 255, separated by periods.
Example: `222.65.212.99`
Dependencies: For DHCP spoofing to work, you must also provide values for the Enable, Subnet Mask, and Renewal Time settings.

Subnet Mask
Description: This specifies the subnet containing the IP address that will be assigned to a DHCP client when DHCP spoofing occurs.
Usage: Click the up arrow to add bits to the subnet mask. Click the down arrow to take away bits from the subnet mask. The mask and the number of bits in the mask are shown to the right of the arrows.
Dependencies: Keep this additional information in mind:

The value of the Subnet Mask setting must match the Subnet Mask setting expected by the device to which the Pipeline connects.

If you do not know the right subnet mask to enter, you must obtain it from the network administrator. Do not attempt to configure the subnet mask by guesswork!

Renewal Time
Description: This setting specifies the lease time, in seconds, for the IP address specified by the the Spoof Address setting.
This value represents the amount of time the address will be assigned to the requesting client. After the specified number of seconds, the client must attempt to secure the IP address again. If an authenticated dial-up session is active, the Pipeline refuses the request, forcing the client to obtain its real IP address from the DHCP server on the remote network.
Usage: Enter a number between 3 and 65535.

The default is 10.
Example: `60`
Dependencies: For DHCP spoofing to work, you must also provide values for the Enable, Spoof Address, and Subnet Mask settings.

System Log settings

Log to Host
Description: This checkbox controls whether the Pipeline sends warning, notice, and Call Detail Reporting (CDR) records from system logs to the host specified by the Syslog Host Address setting.
CDR is a feature that provides a database of information about each call, including date, time, duration, called number, calling number, call direction, service type, and associated inverse multiplexing session and port. Because the network carrier bills for bandwidth on an as-used basis, and bills each connection in an inverse multiplexed call independently, you can use CDR to understand and manage bandwidth usage and the cost of each inverse multiplexed session.
Usage: Check the box to send warning, notice, and CDR records to the host specified by the Syslog Host Address setting.
Dependencies: For logging to a host to work, you must also provide values for the Syslog Host Address and Facility Group settings.

Syslog Host Address
Description: This setting specifies the IP address of the host to which the Pipeline sends system logs.
Usage: Enter the IP address of the host to receive system logs.

An IP address consists of four numbers between 0 and 255, separated by periods.
Example: `200.207.23.1`
Dependencies: Keep this additional information in mind:

The Syslog host must be running UNIX.

For logging to a host to work, you must also provide values for the Log to Host and Facility Group settings

Facility Group
Description: This setting controls where the host that receives system logs stores them.
System logs sent while the value of Facility Group is the same are grouped together in the host's file system. That is, all system logs sent while Facility Group is Local0 are grouped together, all system logs sent while Facility Group is Local1 are grouped together, and so on.
Usage: Choose one of the following:

Local0

Local1

Local2

Local3

Local4

Local5

Local6

Local7
Local0 is the default.

Dependencies: For logging to a host to work, you must also provide values for the Log to Host and Syslog Host Address settings.