Cisco Router and Security Device Manager 2.5 User Guide
Creating New Connections
Downloads: This chapterpdf (PDF - 399.0KB) The complete bookPDF (PDF - 7.45MB) | Feedback

Creating a New Connection

Table Of Contents

Creating a New Connection

Creating a New Connection

New Connection Reference

Create Connection

Additional Procedures

How Do I Configure a Static Route?

How Do I View Activity on My LAN Interface?

How Do I Enable or Disable an Interface?

How Do I View the IOS Commands I Am Sending to the Router?

How Do I Launch the Wireless Application from Cisco SDM?

How Do I Configure an Unsupported WAN Interface?

How Do I Enable or Disable an Interface?

How Do I View Activity on My WAN Interface?

How Do I Configure NAT on a WAN Interface?

How Do I Configure NAT on an Unsupported Interface?

How Do I Configure a Dynamic Routing Protocol?

How Do I Configure Dial-on-Demand Routing for My ISDN or Asynchronous Interface?

How Do I Edit a Radio Interface Configuration?


Creating a New Connection


The Cisco SDM connection wizards guide you LAN and WAN configurations, and check the information that you enter against the existing configuration, warning you of any problems.

This chapter contains the following sections:

Creating a New Connection

New Connection Reference

Additional Procedures

Creating a New Connection

Complete these steps to create a new connection:


Step 1 On the Cisco SDM toolbar, click Configure.

Step 2 On the Tasks bar, click Interfaces and Connections.

Step 3 In the Create New Connection box, choose the type of connection that you want to configure. Information about the type of connection you choose is displayed in the Information box, and the Use Case Scenario area displays a graphic showing the kind of connection that you chose.

Step 4 Click Create New Connection to get started.


New Connection Reference

The following topic describes the screen referred to in this chapter:

Create Connection

Create Connection

This window allows you to create new LAN and WAN connections.


Note You cannot use Cisco SDM to create WAN connections for Cisco 7000 series routers.


Field Reference

Table 2-1 describes the fields in this screen.

Table 2-1 Create Connection Fields

Element
Description

Create New Connection

Choose a connection type to configure on the physical interfaces available on your router. Only interfaces that have not been configured are available. If all interfaces have been configured, this area of the window is not displayed.

 

If the router has Asynchronous Transfer Mode (ATM) or serial interfaces, multiple connections can be configured from a single interface because Cisco Router and Security Device Manager II (Cisco SDM) configures subinterfaces for each interface of that type.

 

The Other (Unsupported by Cisco SDM) radio button appears if an unsupported logical or physical interface exists, or if a supported interface exists that has been given an unsupported configuration. When you click the Other (Unsupported by Cisco SDM) radio button, the Create New Connection button is disabled.

 

If the router has radio interfaces but you do not see a Wireless radio button, you are not logged on as an Cisco SDM Administrator. If you need to use the wireless application, go to the Cisco SDM Tools menu and choose Wireless Application.

Use Case Scenario

When you click the radio button for a connection type, a network diagram appears illustrating that type of connection.

Information

The information area displays more information about the connection type you choose. For example, if you choose Ethernet LAN, theinformation area may display the text "Configure Ethernet LAN interface for straight routing and 802.1q trunking."

Create New Connection button

Click Create New Connection to start the wizard for the type of connection you chose.


Additional Procedures

This section contains procedures for tasks that the wizard does not help you complete.

This section contains the following topics:

How Do I Configure a Static Route?

How Do I View Activity on My LAN Interface?

How Do I Enable or Disable an Interface?

How Do I View the IOS Commands I Am Sending to the Router?

How Do I Configure an Unsupported WAN Interface?

How Do I Enable or Disable an Interface?

How Do I View Activity on My WAN Interface?

How Do I Configure NAT on a WAN Interface?

How Do I Configure a Static Route?

How Do I Configure a Dynamic Routing Protocol?

How Do I Configure Dial-on-Demand Routing for My ISDN or Asynchronous Interface?

How Do I Configure a Static Route?

To configure a static route:


Step 1 From the task bar, click Routing.

Step 2 In the Static Routing group, click Add....

The Add IP Static Route dialog box appears.

Step 3 In the Prefix field, enter the IP address of the static route destination network.

Step 4 In the Prefix Mask field, enter the subnet mask of the destination network.

Step 5 If you want this static route to be the default route, check the Make this as the Default Route check box.

Step 6 In the Forwarding group, select whether to identify a router interface or the destination router IP address as the method to forward data, and then choose either the forwarding router interface or enter the destination router IP address.

Step 7 Optionally, in the Distance Metric field, enter the distance metric to be stored in the routing table.

Step 8 If you want to configure this static route to be a permanent route, which means that it will not be deleted even if the interface is shut down or the router is unable to communicate with the next router, check the Permanent Route check box.

Step 9 Click OK.


How Do I View Activity on My LAN Interface?

You can view activity on a LAN interface by using the Monitor mode in Cisco SDM. Monitor mode can display statistics about the LAN interface, including the number of packets and bytes that have been sent or received by the interface, and the number of send or receive errors that have occurred. To display statistics about about a LAN interface:


Step 1 From the toolbar, click Monitor.

Step 2 From the left frame, click Interface Status.

Step 3 In the Select an Interface field, select the LAN interface for which you want to view statistics.

Step 4 Select the data item(s) you want to view by checking the associated check box(es). You can view up to four statistics at a time.

Step 5 Click Start Monitoring to see statistics for all selected data items.

The Interface Details screen appears, displaying the statistics you selected. The screen defaults to showing real-time data, for which it polls the router every 10 seconds. If the interface is up and there is data transmitting across it, you should see an increase in the number of packets and bytes transferred across the interface.


How Do I Enable or Disable an Interface?

You can disable an interface without removing its configuration, and you can reenable an interface that you have disabled.


Step 1 Click Interfaces and Connections in the task bar.

Step 2 Click the Edit Interfaces and Connections tab.

Step 3 Select the interface that you want to disable or enable.

Step 4 If the interface is enabled, the Disable button appears below the Interface List. Click that button to disable the interface. If the interface is currently disabled, the Enable button appears below the Interface List. Click that button to disable the interface.


How Do I View the IOS Commands I Am Sending to the Router?

If you are completing a Wizard to configure a feature, you can view the Cisco IOS commands that you are sending to the router when you click Finish.


Step 1 From the Cisco SDM Edit menu, select Preferences.

Step 2 Check Preview commands before delivering to router.

Step 3 Click OK.


The next time you use a wizard to configure the router and click Finish on the Summary window, the Deliver window will appear. In this window you can view the commands that you are delivering to the router's configuration. Click Deliver when you are finished reviewing the commands.

If you are editing a configuration, the Deliver window is displayed when you click OK in the dialog window. In this window you can view the Cisco IOS commands that you are sending to the router .

How Do I Launch the Wireless Application from Cisco SDM?

Use the following procedure to launch the wireless application from Cisco SDM.


Step 1 Go to the Cisco SDM Tools menu and select Wireless Application. The Wireless Application launches in a separate browser window.

Step 2 In the left panel, click the title of the configuration screen that you want to work in. To obtain help for any screen, click the help icon in the upper right corner. This icon looks like an open book with a question mark.


How Do I Configure an Unsupported WAN Interface?

Cisco SDM does not support configuration of every WAN interface that your router might support. If Cisco SDM discovers an interface in your router that it does not support, or a supported interface with an unsupported configuration, Cisco SDM displays a radio button labeled Other (Unsupported by Cisco SDM). The unsupported interface is displayed in the Interfaces and Connections window, but it cannot be configured using Cisco SDM.

To configure an unsupported interface, you must use the router command-line interface (CLI).

How Do I Enable or Disable an Interface?

You can disable an interface without removing its configuration, and you can reenable an interface that you have disabled.


Step 1 Click Configure on the Cisco SDM toolbar.

Step 2 Click Interfaces and Connections in the left frame.

Step 3 Click the interface that you want to disable or enable.

Step 4 If the interface is enabled, the Disable button appears below the Interface List. Click it to disable the interface. If the interface is currently disabled, the Enable button appears in that location. Click that button to disable the interface.


How Do I View Activity on My WAN Interface?

You can view activity on a WAN interface by using the Monitor feature in Cisco SDM. Monitor screens can display statistics about the WAN interface, including the number of packets and bytes that have been sent or received by the interface, and the number of send or receive errors that have occurred. To display statistics about a WAN interface:


Step 1 From the toolbar, click Monitor.

Step 2 From the left frame, click Interface Status.

Step 3 In the Select an Interface field, choose the WAN interface for which you want to view statistics.

Step 4 Choose the data item(s) you want to view by checking the associated check box(es). You can view up to four statistics at a time.

Step 5 Click Show Details to see statistics for all selected data items.

The Interface Details screen appears, displaying the statistics you selected. The screen defaults to showing real-time data, for which it polls the router every 10 seconds. If the interface is up and there is data transmitting across it, you should see an increase in the number of packets and bytes transferred across the interface.


How Do I Configure NAT on a WAN Interface?


Step 1 Click Configure on the Cisco SDM toolbar.

Step 2 Click NAT in the left frame.

Step 3 In the NAT window, click Designate NAT interfaces.

Step 4 Find the interface for which you want to configure NAT.

Step 5 Check inside(trusted) next to the interface to designate the interface as an inside, or trusted interface. An inside designation is typically used to designate an interface serving a LAN whose resources. must be protected. Check outside(untrusted) to designate it as an outside interface. Outside interfaces typically connect to an untrusted network. Click OK.

The interface is added to the pool of interfaces using NAT.

Step 6 Review the Network Address Translation Rules in the NAT window. If you need to add, delete, or modify a rule, click the appropriate button on the NAT window to perform the configuration you need.


For more information, click the following links:

Add or Edit Static Address Translation Rule: Inside to Outside

Add or Edit Static Address Translation Rule: Outside to Inside

Add or Edit Dynamic Address Translation Rule: Inside to Outside

Add or Edit Dynamic Address Translation Rule: Outside to Inside

How Do I Configure NAT on an Unsupported Interface?

Cisco SDM can configure Network Address Translation (NAT) on an interface type unsupported by Cisco SDM. Before you can configure the firewall, you must first use the router CLI to configure the interface. The interface must have, at a minimum, an IP address configured, and it must be working. To verify that the connection is working, verify that the interface status is "Up."

After you have configured the unsupported interface using the CLI, you can configure NAT using Cisco SDM. The unsupported interface will appear as "Other" on the router interface list.

How Do I Configure a Dynamic Routing Protocol?

To configure a dynamic routing protocol:


Step 1 From the toolbar, click Configure.

Step 2 From the left frame, click Routing.

Step 3 In the Dynamic Routing group, click the dynamic routing protocol that you want to configure.

Step 4 Click Edit.

The Dynamic Routing dialog box appears, displaying the tab for the dynamic routing protocol you selected.

Step 5 Using the fields in the Dynamic Routing dialog box, configure the dynamic routing protocol. If you need an explanation for any of the fields in the dialog box, click Help.

Step 6 When you have finished configuring the dynamic routing protocol, click OK.


How Do I Configure Dial-on-Demand Routing for My ISDN or Asynchronous Interface?

ISDN BRI and asynchronous connections are dial-up connections, meaning that in order to establish a connection, the router must dial a preconfigured phone number. Because the cost of these types of connections is usually determined by the amount of time that a connection was established, and in the case of an asynchronous connection, that a phone line will be tied up, it is often desirable to configure Dial-on-Demand Routing (DDR) for these connection types.

Cisco SDM can help you configure DDR by:

Letting you associate a rule (or ACL) with the connection, which causes the router to establish the connection only when it recognizes network traffic that you have identified as interesting with the associated rule.

Setting idle timeouts, which cause the router to end a connection after a specified amount of time when there is no activity on the connection.

Enabling multilink PPP, which causes an ISDN BRI connection to use only one of the two B channels unless a specified percentage of bandwidth is exceeded on the first B channel. This has the advantage of saving costs when network traffic is low and the second B channel is not needed, but letting you utilize the full bandwidth of your ISDN BRI connection when needed.

To configure DDR on an existing ISDN BRI or asynchronous connection:


Step 1 Click Configure on the Cisco SDM toolbar.

Step 2 Click Interfaces and Connections in the left frame.

Step 3 Click the ISDN or asynchronous interface on which you want to configure DDR.

Step 4 Click Edit.

The Connection tab appears.

Step 5 Click Options.

The Edit Dialer Option dialog box appears.

Step 6 If you want the router to establish the connection only when it recognizes specific IP traffic, click the Filter traffic based on selected ACL radio button, and either enter a rule (ACL) number that will identify which IP traffic should cause the router to dial out, or click the ... button to browse the list of rules and choose the rule that you want to use to identify IP traffic from that list.

Step 7 If you want to configure the router to end the connection when the connection is idle, i.e., no traffic passes across it, for a specified amount of time, in the Idle timeout field, enter the number of seconds the connection can remain idle before the router ends the connection.

Step 8 If you are editing an ISDN connection, and you would like to use your second B channel only when the traffic on the first B channel exceeds a certain threshold, check the Enable MultiLink PPP check box, then in the Load Threshold field, enter a number between 1 and 255, where 255 equals 100% of bandwidth, that will determine the threshold on the first B channel. When traffic on that channel exceeds that threshold, it will cause the router to connect the second B channel. In addition, in the Data direction field, you can choose whether this threshold should apply to outbound or inbound traffic.

Step 9 Click OK.


How Do I Edit a Radio Interface Configuration?

You must use the Wireless Application to edit an existing radio interface configuration.


Step 1 Click Configure on the Cisco SDM toolbar.

Step 2 Click Interfaces and Connections in the left frame, and then click the Edit Interface/Connection tab.

Step 3 Choose the radio interface and click Edit. In the Connections tab, you can change the IP address or bridging information. If you want to change other wireless parameters, click Launch Wireless Application.