Home | Skip to Content | Skip to Search | Skip to Navigation | Skip to Footer |
Worldwide [change] |Register |About Cisco
Guest

Hierarchical Navigation

Support

Troubleshooting Dialup Connections

Downloads

Table Of Contents

Troubleshooting Dialup Connections

Modem Operations

Using the modem autoconfigure Command

Establishing a Reverse Telnet Session to a Modem

Using Rotary Groups

Interpreting show line Output

Gathering Modem Performance Information

show modem/show modem summary

show modem call-stats

show modem connect-speeds

modem call-record terse (11.3AA/12.0T)

show modem operational-status

Gathering Client-Side Performance Data

Analyze the Performance Data

Problems with Particular Server Modems

Problems with Particular DS0s

A Few of the More Common Trends Seen by Cisco's TAC

ISDN Operations

ISDN Components

ISDN Services

Layer 1

Layer 2

Layer 3

Interpreting show isdn status Output

Dial-on-Demand Routing: Dialer Interface Operations

Triggering a Dial

Interesting Packets

Routing

Dialer Maps

Command Syntax

Dialer Profiles

PPP Operations

Phases of PPP Negotiation

Link Control Protocol

Authentication

Network Control Protocol

Alternate PPP Methodologies

Multilink PPP

Multichassis Multilink PPP

Virtual Profiles

Annotated Example of PPP Negotiation

Before Calling Cisco Systems's TAC Team

Additional Sources


Troubleshooting Dialup Connections

This chapter introduces and explains some of the technologies used in dialup networks. Configuration tips and interpretations of some of the show commands, which are useful for verifying correct operation of the network, are found in this chapter as well. Actual troubleshooting will be found in Chapter 17, "Troubleshooting ISDN Connections."

This chapter focuses on four principal areas:

1. Modem Operations

Using the modem autoconfigure Command

Establishing a Reverse Telnet Session to a Modem

Using Rotary Groups

Interpreting show line Output

Gathering Modem Performance Information for Trend Analysis

2. ISDN Operations

Components

Services

Interpreting show isdn status Output

3. Dialer Operations

Dialer Maps

Dialer Profiles

4. PPP Operations

LCP

Authentication/AAA

NCP

Modem Operations

This section discusses issues related specifically to the setup, verification, and use of modems with Cisco routers.

Using the modem autoconfigure Command

If you are using Cisco Internetwork Operating System (Cisco IOS) Release 11.1 or later, you can configure your Cisco router to communicate with and configure your modem automatically.

Use the following procedure to configure a Cisco router to automatically attempt to discover what kind of modem is connected to the line and then to configure the modem:

1. To discover the type of modem attached to your router, use the modem autoconfigure discovery line configuration command.

2. When the modem is successfully discovered, configure the modem automatically using the modem autoconfigure type modem-name line configuration command.

If you want to display the list of modems for which the router has entries, use the show modemcap modem-name. If you want to change a modem value that was returned from the show modemcap command, use the modemcap edit modem-name attribute value line configuration command.

For complete information on the use of these commands, refer to the Cisco IOS documentation Dial Solutions Configuration Guide and Dial Solutions Command Reference.

Note Do not put &W in the modemcap entry used for the autoconfigure. Having the NVRAM rewritten every time a modem autoconfigure is done will destroy the modem.

Establishing a Reverse Telnet Session to a Modem

For diagnostic purposes, or to initially configure the modem if you are running Cisco IOS Release 11.0 or earlier, you must establish a reverse Telnet session to configure a modem to communicate with a Cisco device. As long as you lock the speed of the data terminal equipment (DTE) of the modem (see Table 16-5 for information on locking the modem speed), the modem will always communicate with the access server or router at the desired speed. Be certain that the speed of the Cisco device is configured before issuing commands to the modem via a reverse Telnet session. (See Table 16-5 for information on configuring the speed of the access server or router.)

To configure the modem for a reverse Telnet session, use the line configuration command transport input telnet. To set up a rotary group (in this case on port 1), enter the line configuration command rotary 1. Placing these commands under the line configuration causes the IOS to allocate IP listeners for incoming connections at port ranges starting with the following base numbers:

2000 Telnet protocol

3000 Telnet protocol with rotary

4000 Raw TCP protocol

5000 Raw TCP protocol with rotary

6000 Telnet protocol, Binary Mode

7000 Telnet protocol, Binary Mode with rotary

9000 XRemote Protocol

10000 XRemote Protocol with rotary

To initiate a reverse Telnet session to your modem, perform the following steps:

Step 1 From your terminal, use the command telnet ip-address 20yy, where ip-address is the IP address of any active, connected interface on the Cisco device, and yy is the line number to which the modem is connected. For example, the following command would connect you to the auxiliary port on a Cisco 2501 router with IP address 192.169.53.52: telnet 192.169.53.52 2001. Generally, a Telnet command of this kind can be issued from anywhere on the network that can ping the IP address in question.

Note On most Cisco routers, port 01 is the auxiliary port. On a Cisco access server, the auxiliary port is the last TTY plus 1. As an example, the auxiliary port on a 2511 is port 17 (16 TTY ports plus 1). Always use the show line exec command to find the auxiliary port number— particularly on the 2600 and 3600 series, which use noncontiguous port numbers to accommodate varying async module sizes.

Step 2 If the connection is refused, it could indicate either that there is no listener at the specified address and port, or that someone is already connected to that port. Verify the address being connected to and the port number. Also make sure that the command modem inout or modem DTR-active, as well as transport input all, appears under the line configuration for the lines being reached. If using the rotary function, make sure that the command rotary n also appears in the line configuration (here, n is the number of the rotary group). To check whether someone is connected already, Telnet to the router and use the command show line n. Look for an asterisk to indicate that the line is in use. Make sure that CTS is high and that DSR is not. The command clear line n would be used to disconnect the current session on port number n. If the connection is still refused, the modem might be asserting carrier detect (CD) all the time. Disconnect the modem from the line, establish a reverse Telnet session, and then connect the modem.

Step 3 After successfully making the Telnet connection, enter AT and make sure that the modem replies with OK.

Step 4 If the modem is not responsive, refer to Table 16-1.

Table 16-1 outlines the problems that might cause a modem to router connectivity problem symptom and describes solutions to those problems.

Table 16-1 Dialing: No Connectivity Between Modem and Router 

Possible Causes
Suggested Actions

Modem control not enabled on the access server or router

1. Use the show line exec command on the access server or router. The output for the auxiliary port should show inout or RIisCD in the Modem column. This indicates that modem control is enabled on the line of the access server or router.

2. Configure the line for modem control using the modem inout line configuration command. Modem control is now enabled on the access server.

Example:

The following example illustrates how to configure a line for both incoming and outgoing calls:

line 5

modem inout

Note: Be certain to use the modem inout command and not the modem ri-is-cd command while the connectivity of the modem is in question. The latter command allows the line to accept incoming calls only. Outgoing calls will be refused, making it impossible to establish a Telnet session with the modem to configure it. If you want to enable the modem ri-is-cd command, do so only after you are certain that the modem is functioning correctly.

Modem that could be misconfigured or have a hung session

1. Enter AT&FE1Q0 to return the modem to factory defaults, and make sure that the modem is set to echo characters and return output. The modem may have a hung session. Use ^U to clear the line and ^Q to open up the flow control (XON). Verify parity settings.

Incorrect cabling

1. Check the cabling between the modem and the access server or router. Confirm that the modem is connected to the auxiliary port on the access server or router with a rolled RJ-45 cable and an MMOD DB-25 adapter. This cabling configuration is recommended and supported by Cisco for RJ-45 ports. (These connectors are typically labeled "Modem.")

2. Use the show line exec command to verify that the cabling is correct. See the explanation of the show line command output in the section "Using debug Commands" in Chapter 15, "Troubleshooting Serial Lines."

Hardware problem

1. Verify that you are using the correct cabling and that all connections are good.

2. Check all hardware for damage, including cabling (broken wires), adapters (loose pins), access server ports, and modem.

3. See Chapter 3, "Troubleshooting Hardware and Booting Problems," for more information on hardware troubleshooting.


Using Rotary Groups

For some applications, the modems on a given router need to be shared by a group of users. The Cisco Dialout Utility would be a good example of this application. The general idea is to have one port for users to connect into that will connect them to whichever modem happens to be available. To add an async line to a rotary group, simply enter rotary n, where n is the number of the rotary group in the configuration for the async line. For example, the following line configuration would allow users to connect to the rotary group by (referencing the previous example) telnet 192.169.53.52 3001 for normal Telnet: 

line 1 16

 modem InOut

 transport input all

 rotary 1

 speed 115200

 flowcontrol hardware

Alternatives include ports 5001 for Raw TCP, 7001 for binary Telnet (which Cisco Dialout Utility uses), and 10001 for Xremote connections.

Note To verify the configuration of the Cisco Dialout Utility, double-click the Dialout Utility icon at the bottom right of the screen and press the More button. Next, press the Configure Ports button. Make sure that the port is in the 7000 range if using rotary groups and the 6000 range if the Dialout Utility is targeting an individual modem. Enabling modem logging on the PC is also suggested for troubleshooting. This is done by selecting the following sequence: Start, Control Panel, Modems (choose your Cisco Dialout modem), Properties, Connection, Advanced, Record a Log File.

Interpreting show line Output

The output from the show line line-number exec command is useful when troubleshooting a modem-to-access server or router connection. Figure 16-1 shows the output from the show line command.

Figure 16-1 show line Command Output

When connectivity problems occur, important output appears in the Modem State and the Modem Hardware State fields.

Note The Modem Hardware State field does not appear in the show line output for every platform. In certain cases, the indications for signal states will be shown in the Modem State Field instead.

Table 16-2 shows typical Modem State and Modem Hardware State strings from the output of the show line command, and explains the meaning of each state.

Table 16-2 Modem and Modem Hardware States in show line Output 

Modem State
Modem Hardware State
Meaning

Idle

CTS noDSR DTR RTS

These are the proper modem states for connections between an access server or router and a modem (when there is no incoming call). Output of any other kind generally indicates a problem.

Ready

If the modem state is ready instead of idle, there are three possibilities:

Modem control is not configured on the access server or router. Configure the access server or router with the modem inout line configuration command.

A session exists on the line. Use the show users exec command and use the clear line privileged exec command to stop the session, if desired.

DSR is high. There are two possible reasons for this:

Cabling problems—If your connector uses DB-25 pin 6 and has no pin 8, you must move the pin from 6 to 8 or get the appropriate connector.

Modem configured for DCD always high—The modem should be reconfigured to have DCD high only on CD1 . This is usually done with the &C1 modem command, but check your modem documentation for the exact syntax for your modem.

Ready (continued)

If your software does not support modem control, you must configure the access server line to which the modem is connected with the no exec line configuration command. Clear the line with the clear line privileged exec command, initiate a reverse Telnet session with the modem, and reconfigure the modem so that DCD is high only on CD.

End the Telnet session by entering disconnect, and reconfigure the access server line with the exec line configuration command.

Ready

noCTS noDSR DTR RTS

There are four possibilities for the noCTS string appearing in the Modem Hardware State field:

The modem is turned off.

The modem is not properly connected to the access server. Check the cabling connections from the modem to the access server.

Cabling is incorrect (either rolled MDCE, or straight MDTE, but without the pins moved). See Table 16-1 for information on the recommended cabling configuration.

The modem is not configured for hardware flow control. Disable hardware flow control on the access server with the no flowcontrol hardware line configuration command, and then enable hardware flow control on the modem via a reverse Telnet session. (Consult your modem documentation, and see the section "Establishing a Reverse Telnet Session to a Modem," earlier in this chapter.)

Re-enable hardware flow control on the access server with the flowcontrol hardware line configuration command.

Ready

CTS DSR DTR RTS

There are two possibilities for the presence of the DSR string instead of the noDSR string in the Modem hardware state field:

Incorrect cabling (either rolled MDCE, or straight MDTE, but without the pins moved). See Table 16-1 for information on the recommended cabling configuration.

The modem is configured for DCD always high. Reconfigure the modem so that DCD is high only on CD. This is usually done with the &C1 modem command, but check your modem documentation for the exact syntax for your modem.

Configure the access server line to which the modem is connected with the no exec line configuration command. Clear the line with the clear line privileged exec command, initiate a reverse Telnet session with the modem, and reconfigure the modem so that DCD is high only on CD.

End the Telnet session by entering disconnect. Reconfigure the access server line with the exec line configuration command.

Ready

CTS* DSR* DTR RTS2

If this string appears in the Modem Hardware State field, modem control is probably not enabled on the access server. Use the modem inout line configuration command to enable modem control on the line.

See Table 16-1 for more information on configuring modem control on an access server or router line.

1 CD = carrier detect.

2 An * next to a signal indicates one of two things: The signal has changed within the past few seconds, or the signal is not being used by the modem control method selected.


Gathering Modem Performance Information

This section explains ways to gather performance data on MICA digital modems found in the Cisco AS5x00 family of access servers. The data can be used for trend analysis and is useful in troubleshooting performance problems that might be encountered. When looking at the numbers presented here, bear in mind that perfection is not possible in the real world. The modem call success rate (CSR) possible will be a function of the quality of the circuits, the client modem user base, and the set of modulations being used. A typical CSR percentage for V.34 calls is 95 percent. V.90 calls can be expected to connect successfully 92 percent of the time. Premature drops are likely to happen 10 percent of the time.

The tools used to gain an overall view of modem behavior on the access server are:

show modem

show modem summary

show modem connect-speeds

show modem call-stats

If troubleshooting an individual modem connection or gathering data for trend analysis, the following information will be useful: 

debug modem csm

modem call-record terse 

show modem op (MICA) / AT@E1 (Microcom) while connected 

show modem log  - for the session of interest after disconnect. 

ANI (caller's number) 

Time of day 

Client modem hardware / firmware revision 

Interesting info from client (after disconnect)-ATI6, ATI11, AT&V, AT&V1, etc. 

An audio record (.wav file) of the trainup attempt from the client modem

The commands will be explained further in the following sections, and some common trends will be discussed.

show modem/show modem summary

The show modem command gives a view of individual modems. From these numbers, the health of individual modems can be viewed. 

router# show modem 

  Codes: 

  * - Modem has an active call 

  C - Call in setup 

  T - Back-to-Back test in progress 

  R - Modem is being Reset 

  p - Download request is pending and modem cannot be used for taking calls 

  D - Download in progress 

  B - Modem is marked bad and cannot be used for taking calls 

  b - Modem is either busied out or shut-down 

  d - DSP software download is required for achieving K56flex connections 

  ! - Upgrade request is pending 

                Inc calls     Out calls     Busied   Failed  No       Succ 

  Mdm  Usage    Succ   Fail   Succ   Fail   Out      Dial    Answer   Pct. 

* 1/0    17%      74      3      0      0       0        0       0     96% 

* 1/1    15%      80      4      0      0       0        1       1     95% 

* 1/2    15%      82      0      0      0       0        0       0    100% 

  1/3    21%      62      1      0      0       0        0       0     98% 

  1/4    21%      49      5      0      0       0        0       0     90% 

* 1/5    18%      65      3      0      0       0        0       0     95%

To see the aggregate numbers for all the modems on the router, use the show modem summary command. 

router#show modem summary 

         Incoming calls       Outgoing calls      Busied   Failed   No    Succ 

Usage  Succ   Fail  Avail   Succ   Fail  Avail    Out      Dial     Ans   Pct. 

   0%  6297    185     64      0      0      0        0        0     0     97%

Table 16-3 provides descriptions of the various show modem fields.

Table 16-3 show modem Fields 

Fields
Descriptions

Incoming and Outgoing Calls

Calls dialing into and out of the modem.

Usage—Percentage of the total system uptime that all the modems are in use

Succ—Total calls successfully connected

Fail—Total calls that did not successfully connect

Avail—Total modems available for use in the system

Busied Out

Total number of times that the modems were taken out of service with the modem busy command or the modem shutdown command

Failed Dial

Total number of attempts that the modems did not hang up or that there was no dial tone

No Ans

Total number of times that call ringing was detected, but the calls were not answered by a modem

Succ Pct.

Successful connection percentage of total available modems


show modem call-stats

The show modem call-stats command offers a view of past performance for the modems. This is useful in trend analysis and can help the administrator to identify possible problems.

compress retrain lostCarr rmtLink trainup hostDrop wdogTimr inacTout

Mdm # % # % # % # % # % # % # % # %

Total 9 41 271 3277 7 2114 0 0

Table 16-4 provides descriptions of the most common show modem call-stats fields.

Table 16-4 show modem call-stats Fields 

rmtLink

This shows that error correction was in effect and that the call was hung up by the client system attached to the remote modem.

hostDrop

This shows that the call was hung up by the IOS host system. Some common reasons include: idle timeout, a circuit clear from the telco, or a PPP LCP termreq from the client. The best way to tell the reason for the hang up is by using show modem call-record terse or AAA accounting.

The other disconnect reasons should add up to less than 10 percent of the total.


show modem connect-speeds

As a way for an access server's administrator to maintain a watch on the user community's connection speeds, the show modem connect command allows the admin to see how many people are getting each rate of speed. This is useful in trend analysis. 

router>show modem connect 33600 0 

 Mdm   26400  28000  28800  29333  30667  31200  32000  33333  33600 TotCnt 

Tot      614      0   1053      0      0   1682      0      0    822   6304 


router>show modem connect 56000 0 

 Mdm   48000  49333  50000  50666  52000  53333  54000  54666  56000 TotCnt 

Tot      178    308     68     97     86     16      0      0      0   6304

Expect to see a healthy distribution of V.34 speeds. There should be a peak at 26.4 if the T1s use channel associated signaling (CAS). For ISDN (PRI) T1s, the peak should be at 31.2. Also, look for a smattering of K56Flex, V.90 speeds. If there are no V.90 connections, there may be a network topology problem.

modem call-record terse (11.3AA/12.0T)

Rather than an exec command, this is a configuration command placed at the system level of the access server in question. When a user disconnects, a message similar to the following will be displayed: 

*May 31 18:11:09.558: %CALLRECORD-3-MICA_TERSE_CALL_REC: DS0 slot/contr/chan=2/0/18, 
slot/port=1/29, call_id=378, userid=cisco, ip=0.0.0.0, calling=5205554099, 

called=4085553932, std=V.90, prot=LAP-M, comp=V.42bis both, init-rx/tx b-rate=26400/41333, 
finl-rx/tx brate=28800/41333, rbs=0, d-pad=6.0   dB, retr=1, sq=4, snr=29, rx/tx 
chars=93501/94046,

bad=5, rx/tx ec=1612/732, bad=0, time=337, finl-state=Steady, disc(radius)=Lost 
Carrier/Lost Carrier, disc(modem)=A220 Rx (line to host) data flushing - not OK/EC 
condition - locally detected/received

DISC frame -- normal LAPM termination

show modem operational-status

The exec command show modem operational-status shows the current (or last) parameters pertaining to the modem's connection.

The documentation entry for this command is found in the Cisco IOS Release 12.0 Dial Solutions Command Reference. show modem operational-status is only for MICA modems. The equivalent command for Microcom modems is modem at-mode / AT@E1. Use the modem at-mode <slot>/<port> command to connect to the modem, and issue the AT@E1 command. Complete documentation for the modem at-mode command can be found in the Cisco AS5300 Software Configuration Guide, and documentation for the AT@E1 command is in the AT Command Set and Register Summary for Microcom Modem Modules Command Reference.

Use these two steps to find out what modems a user is coming in on.

Step 1 Issue the command show user and look for the TTY that they are connected into.

Step 2 Use the command show line and look for the modem slot/port numbers.

Gathering Client-Side Performance Data

For trend analysis, it's very important to gather client-side performance data. Good information to get includes this:

Client hardware model/firmware version (attainable with the command ATI3I7 on the client's modem).

Client-reported disconnect reasons (use ATI6 or AT&V1).

Other information available on the client end, including the PC's modemlog.txt and ppplog.txt. The PC won't generate these files unless configured to do so.

Analyze the Performance Data

When you have collected and understood the performance data for your modem system, it's time to look at any remaining patterns/components that may have room for improvement.

Problems with Particular Server Modems

Use show modem or show modem call-stats, and look for any modems with abnormally high rates of trainup failure or bad disconnect rates. If adjacent pairs of modems are having problems, the problem is likely a hung or dead DSP. Use copy flash modem to the affected HMM to recover. Make sure that the modems are running the latest version of portware.

Verify that all modems are correctly configured. To make sure that the modems are correctly configured, use the configuration command modem autoconfigure type <mica/microcom_server> in the line configuration. To make sure that the modems are being autoconfigured whenever a call is hung up, use the exec command debug confmodem. In some cases, it may require a reverse Telnet to fix modems that are badly misconfigured.

Problems with Particular DS0s

Bad DS0s are rare but possible. To find out if one is present, use the command show controller t1 call-counters. Look for any DS0s with abnormally high TotalCalls and abnormally low TotalDuration. To target suspected DS0s, it is sometimes necessary to take out of service other DS0s with the configuration command isdn service dsl, ds0 busyout under the serial interface for the T1. The output from show controller t1 call-counters look like this: 

TimeSlot   Type   TotalCalls   TotalDuration 

    1       pri         873       1w6d 

    2       pri         753       2w2d 

    3       pri         4444      00:05:22

Obviously, time slot 3 is the suspect channel in this case.

A Few of the More Common Trends Seen by Cisco's TAC

The following are some of the more commonly seen problems. Each problem's telltale signs are listed.

1. Bad Circuit Paths

If . . .

Long-distance calls have problems, but local ones do not (or vice versa)

Calls at certain times of day have problems

Calls from specific remote exchanges have problems

Then . . .

You might be getting bad circuit paths through the Public Switched Telephone Network.

2. Long distance doesn't work well or at all, but local calls work fine.

If . . .

Long distance calls are bad but local calls are good.

Then . . .

Double-check to make sure that the digital line connects into a digital switch, not a channel bank

Check with telcos to examine the circuit paths used for long distance

3. Some calling areas have problems

If . . .

Calls from specific geographical regions/exchanges tend to have problems

Then . . .

Learn the network topology from the telco. If multiple analog-to-digital conversions (caused by nonintegrated SLCs or analog switches) are used to serve an area, V.90/K56flex modem connects will be impossible, and V.34 may be somewhat degraded.

ISDN Operations

Integrated Services Digital Network (ISDN) refers to a set of digital services that is available to end users. ISDN involves the digitization of the telephone network so that voice, data, text, graphics, music, video, and other source material can be provided to end users from a single end-user terminal over existing telephone wiring. Proponents of ISDN imagine a worldwide network much like the present telephone network, but with digital transmission and a variety of new services.

ISDN is an effort to standardize subscriber services, user/network interfaces, and network and internetwork capabilities. Standardizing subscriber services attempts to ensure a level of international compatibility. Standardizing the user/network interface stimulates development and marketing of these interfaces by third-party manufacturers. Standardizing network and internetwork capabilities helps achieve the goal of worldwide connectivity by ensuring that ISDN networks easily communicate with one another.

ISDN applications include high-speed image applications (such as Group IV facsimile), additional telephone lines in homes to serve the telecommuting industry, high-speed file transfer, and videoconferencing. Voice, of course, will also be a popular application for ISDN.

Many carriers are beginning to offer ISDN under tariff. In North America, large local exchange carriers (LECs) are beginning to provide ISDN service as an alternative to the T1 connections (digital carrier facilities provided by telephone companies) that currently carry bulk wide-area telephone service (WATS) services.

ISDN Components

ISDN components include terminals, terminal adapters (TAs), network-termination devices, line-termination equipment, and exchange-termination equipment. ISDN terminals come in two types. Specialized ISDN terminals are referred to as terminal equipment type 1 (TE1). Non-ISDN terminals such as DTE that predate the ISDN standards are referred to as terminal equipment type 2 (TE2). TE1s connect to the ISDN network through a four-wire, twisted-pair digital link. TE2s connect to the ISDN network through a terminal adapter. The ISDN TA can be either a standalone device or a board inside the TE2. If the TE2 is implemented as a standalone device, it connects to the TA via a standard physical layer interface. Examples include EIA/TIA-232-C (formerly RS-232-C), V.24, and V.35.

Beyond the TE1 and TE2 devices, the next connection point in the ISDN network is the network termination type 1 (NT1) or network termination type 2 (NT2) device. These are network-termination devices that connect the four-wire subscriber wiring to the conventional two-wire local loop. In North America, the NT1 is a customer premises equipment (CPE) device. In most other parts of the world, the NT1 is part of the network provided by the carrier. The NT2 is a more complicated device, typically found in digital private branch exchanges (PBXs), that performs Layer 2 and 3 protocol functions and concentration services. An NT1/2 device also exists; it is a single device that combines the functions of an NT1 and an NT2.

A number of reference points are specified in ISDN. These reference points define logical interfaces between functional groupings such as TAs and NT1s. ISDN reference points include the following:

R—The reference point between non-ISDN equipment and a TA.

S—The reference point between user terminals and the NT2.

T—The reference point between NT1 and NT2 devices.

U—The reference point between NT1 devices and line-termination equipment in the carrier network. The U reference point is relevant only in North America, where the NT1 function is not provided by the carrier network U.

A sample ISDN configuration is shown in Example 16-1. This example shows three devices attached to an ISDN switch at the central office. Two of these devices are ISDN-compatible, so they can be attached through an S reference point to NT2 devices. The third device (a standard, non-ISDN telephone) attaches through the R reference point to a TA. Any of these devices could also attach to an NT1/2 device, which would replace both the NT1 and the NT2. And, although they are not shown, similar user stations are attached to the far-right ISDN switch.

Example 16-1 A Sample ISDN Configuration  

2503B#show running-config

Building configuration...


Current configuration:

!

version 11.1

service timestamps debug datetime msec

service udp-small-servers

service tcp-small-servers

!

hostname 2503B

!

!

username 2503A password 7 0822455D0A16

ip subnet-zero

isdn switch-type basic-5ess

!

interface Ethernet0

 ip address 172.16.141.11 255.255.255.192

!         

interface Serial0

 no ip address 

 shutdown 

!         

interface Serial1

 no ip address

 shutdown 

!         

interface BRI0

 description phone#5553754

 ip address 172.16.20.2 255.255.255.0

 encapsulation ppp

 dialer idle-timeout 300

 dialer map ip 172.16.20.1 name 2503A broadcast 5553759

 dialer-group 1

 ppp authentication chap

!         

no ip classless

!         

dialer-list 1 protocol ip permit

!         

line con 0

line aux 0

line vty 0 4

!         

end       

2503B#

ISDN Services

The ISDN Basic Rate Interface (BRI) service offers two B channels and one D channel (2B+D). BRI B-channel service operates at 64 kbps and is meant to carry user data; BRI D-channel service operates at 16 kbps and is meant to carry control and signaling information, although it can support user data transmission under certain circumstances. The D-channel signaling protocol comprises Layers 1 through 3 of the OSI reference model. BRI also provides for framing control and other overhead, bringing its total bit rate to 192 kbps. The BRI physical layer specification is International Telecommunication Union-Telecommunications Standards Sector (ITU-T; formerly the Consultative Committee for International Telegraph and Telephone [CCITT]) I.430.

ISDN Primary Rate Interface (PRI) service offers 23 B channels and one D channel in North America and Japan, yielding a total bit rate of 1.544 Mbps (the PRI D channel runs at 64 kbps). ISDN PRI in Europe, Australia, and other parts of the world provides 30 B plus one 64-kbps D channel and a total interface rate of 2.048 Mbps. The PRI physical layer specification is ITU-T I.431.

Layer 1

ISDN physical layer (Layer 1) frame formats differ depending on whether the frame is outbound (from terminal to network) or inbound (from network to terminal). Both physical layer interfaces are shown in Figure 16-2.

Figure 16-2 ISDN Physical Layer Frame Formats

The frames are 48 bits long, of which 36 bits represent data. The bits of an ISDN physical layer frame are used as follows:

F—Provides synchronization

L—Adjusts the average bit value

E—Is used for contention resolution when several terminals on a passive bus contend for a channel

A—Activates devices

S—Is unassigned

B1, B2, and D—Is used for user data

Multiple ISDN user devices can be physically attached to one circuit. In this configuration, collisions can result if two terminals transmit simultaneously. ISDN, therefore, provides features to determine link contention. When an NT receives a D bit from the TE, it echoes back the bit in the next E-bit position. The TE expects the next E bit to be the same as its last transmitted D bit.

Terminals cannot transmit into the D channel unless they first detect a specific number of ones (indicating "no signal") corresponding to a pre-established priority. If the TE detects a bit in the echo channel that is different from its D bits, it must stop transmitting immediately. This simple technique ensures that only one terminal can transmit its D message at one time. After successful D message transmission, the terminal has its priority reduced by being required to detect more continuous ones before transmitting. Terminals cannot raise their priority until all other devices on the same line have had an opportunity to send a D message. Telephone connections have higher priority than all other services, and signaling information has a higher priority than nonsignaling information.

Layer 2

Layer 2 of the ISDN signaling protocol is Link Access Procedure on the D channel, also known as LAPD. LAPD is similar to High-Level Data Link Control (HDLC) and Link Access Procedure, Balanced (LAPB). As the expansion of the LAPD abbreviation indicates, it is used across the D channel to ensure that control and signaling information flows and is received properly. The LAPD frame format (see Figure 16-3) is very similar to that of HDLC; like HDLC, LAPD uses supervisory, information, and unnumbered frames. The LAPD protocol is formally specified in ITU-T Q.920 and ITU-T Q.921.

Figure 16-3 LAPD Frame Format

The LAPD Flag and Control fields are identical to those of HDLC. The LAPD Address field can be either 1 or 2 bytes long. If the extended address bit of the first byte is set, the address is 1 byte; if it is not set, the address is 2 bytes. The first Address field byte contains the service access point identifier (SAPI), which identifies the portal at which LAPD services are provided to Layer 3. The C/R bit indicates whether the frame contains a command or a response. The Terminal Endpoint Identifier (TEI) field identifies either a single terminal or multiple terminals. A TEI of all ones indicates a broadcast.

Layer 3

Two Layer 3 specifications are used for ISDN signaling: ITU-T (formerly CCITT) I.450 (also known as ITU-T Q.930) and ITU-T I.451 (also known as ITU-T Q.931). Together, these protocols support user-to-user, circuit-switched, and packet-switched connections. A variety of call establishment, call termination, information, and miscellaneous messages are specified, including SETUP, CONNECT, RELEASE, USER INFORMATION, CANCEL, STATUS, and DISCONNECT. These messages are functionally similar to those provided by the X.25 protocol (see Chapter 19, "Troubleshooting X.25 Connections," for more information). Figure 16-4, from ITU-T I.451, shows the typical stages of an ISDN circuit-switched call.

Figure 16-4 ISDN Circuit-Switched Call Stages

Interpreting show isdn status Output

To find out what the current condition of the ISDN connection is between the router and the telco switch, use the command show isdn status. The two kinds of interfaces that are supported by this command are the Basic Rate Interface (BRI) and the Primary Rate Interface (PRI) (Tables 16-5 and 16-6). 

3620-2#show isdn status

Global ISDN Switchtype = basic-ni

ISDN BRI0/0 interface

        dsl 0, interface ISDN Switchtype = basic-ni

    Layer 1 Status:

        ACTIVE

    Layer 2 Status:

        TEI = 88, Ces = 1, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED

        TEI = 97, Ces = 2, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED

    Spid Status:

        TEI 88, ces = 1, state = 5(init)

            spid1 configured, no LDN, spid1 sent, spid1 valid

            Endpoint ID Info: epsf = 0, usid = 0, tid = 1

        TEI 97, ces = 2, state = 5(init)

            spid2 configured, no LDN, spid2 sent, spid2 valid

            Endpoint ID Info: epsf = 0, usid = 1, tid = 1

    Layer 3 Status:

        0 Active Layer 3 Call(s)

    Activated dsl 0 CCBs = 0

    The Free Channel Mask:  0x80000003

Table 16-5 show isdn status for BRI 

Field
Significance

Layer 1 Status:

DEACTIVATED

This indicates that the BRI interface is not seeing a signal on the line. There are five possibilities.

The BRI interface is shut down. Either check the configuration for the command shutdown under the BRI interface, or look for an administratively down indication from the show interface command. Use the configuration utility, and enter no shutdown under the BRI interface. Type the command clear interface bri at the exec prompt to make sure that the BRI interface is restarted.

Cabling is bad. Make sure that you use a straight-through RJ-45 cable. To check the cable, hold the RJ-45 cable ends side by side. If the pins are in the same order, the cable is straight-through. If the order of the pins is reversed, the cable is rolled. Verify that the correct cable is in place and is working.

Layer 1 Status:

DEACTIVATED (continued)

The ISDN BRI port of a router might require an NT1 device. In ISDN, NT1 is a device that provides the interface between the customer premises equipment and central office switching equipment. If the router does not have an internal NT1, obtain and connect an NT1 to the BRI port. Make sure that the BRI or terminal adapter is attached to the S/T port of the NT1. Refer to the manufacturer's documentation to verify correct operation of the external NT1.

The line might not be functioning. Contact the carrier to confirm operation of the connection and to verify the switch type settings.

Make sure that the router is functioning correctly. If there is faulty or malfunctioning hardware, replace as necessary.

Layer 2 Status:

State = TEI_ASSIGNED

Check the switchtype setting and SPIDS. The Interface Specific ISDN switch setting will override the Global switch setting. The SPID status will indicate whether the switch accepted the SPIDS with Valid or Invalid.

Contact your service provider to verify the setting configured on the router.

To change the SPID settings, use the isdn spidn interface configuration command, where n is either 1 or 2, depending on the channel in question. Use the no form of this command to remove the specified SPID.

isdn spidn spid-number [ldn]

no isdn spidn spid-number [ldn]

Syntax description:

spid-number—Number identifying the service to which you have subscribed. This value is assigned by the ISDN service provider and is usually a 10-digit telephone number with additional digits.

ldn—(Optional) Local directory number (LDN), which is a seven-digit number assigned by the service provider. The switch in the incoming setup message delivers this information. If you do not include the local directory, access to the switch is permitted, but the other B channels may not be capable of receiving incoming calls.

To see the Layer 2 negotiations between the switch and the router, use the privileged exec command debug isdn q921. The q921 debugs are documented in the Debug Command Reference. debug commands rely heavily on CPU resources, so caution should be used when employing them. 


5200-1# show isdn status

Global ISDN Switchtype = primary-5ess

ISDN Serial0:23 interface

        dsl 0, interface ISDN Switchtype = primary-5ess

    Layer 1 Status:

        ACTIVE

    Layer 2 Status:

        TEI = 0, Ces = 1, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED

    Layer 3 Status:

        0 Active Layer 3 Call(s)

    Activated dsl 0 CCBs = 0

    The Free Channel Mask:  0x807FFFFF

    Total Allocated ISDN CCBs = 0

5200-1#

If the show isdn status command does not work or does not show the PRI, try using the show isdn service command. Make sure that the pri-group command appears in the configuration under the T1/E1 controller in the configuration. If the command is not present, configure the controller with the pri-group command.

Following is an example of a configuration for a Cisco router with a channelized T1 card: 

controller t1 0

framing esf

line code b8zs

pri-group timeslots 1-24

Table 16-6 details the fields for the show isdn status command.

Table 16-6 show isdn status for PRI 

Field
Significance

Layer 1 Status:

DEACTIVATED

This indicates that the PRI interface is not seeing T1/E1 framing on the line. There are several possibilities.

The PRI interface is shut down. Either check the configuration for the command shutdown under the serial0:23 interface, or look for an administratively down indication from the show interface command. Use the configuration utility and enter no shutdown under the interface in question. Type the command clear controller T1/E1 n at the exec prompt to make sure that the PRI interface is restarted.

Cabling is bad. Make sure that you use a straight-through RJ-45 cable. To check the cable, hold the RJ-45 cable ends side by side. If the pins are in the same order, the cable is straight-through. If the order of the pins is reversed, the cable is rolled. Verify that the correct cable is in place and is working.

The line might not be functioning. Contact the carrier to confirm operation of the connection and to verify the switch type settings.

Make sure that the router is functioning correctly. If there is faulty or malfunctioning hardware, replace as necessary.

Layer 2 Status:

State = TEI_ASSIGNED

Check the switchtype setting and check. The Interface Specific ISDN switch setting will override the Global switch setting. Verify that the T1/E1 is configured to match the provider's switch. (T1/E1 problems are discussed in Chapter 15.)

To see the Layer 2 negotiations between the switch and the router, use the privileged exec command debug isdn q921. The q921 debugs are documented in the Debug Command Reference. debug commands rely heavily on CPU resources, so caution should be used when employing them.

Number of Calls/Call Control Blocks in Use/Total Allocated ISDN Call Control Blocks

These numbers indicate how many calls are in progress, and the number of resources that are allocated to support those calls. If the number of allocated CCBs is higher than the number of CCBs being used, it could indicate a problem in releasing CCBs. Make sure that there are available CCBs for incoming calls.


Dial-on-Demand Routing: Dialer Interface Operations

Dial-on-demand routing (DDR) is a method of providing WAN connectivity on an economical as-needed basis, either as a primary link or as backup for a nondial serial link.

A dialer interface is defined as any router interface capable of placing or receiving a call. This generic term should be distinguished from the term Dialer interface (with a capital D), which refers to a logical interface configured to control one or more physical interfaces of a router and which is seen in a router configuration as interface Dialer X. From this point forward, unless otherwise stated, we will be using the term dialer in its generic sense.

Dialer interface configuration comes in two flavors: dialer map-based (sometimes referred to as legacy DDR) and dialer profiles. Which method you use depends on the circumstances under which you need dial connectivity. Dialer map-based DDR was first introduced in IOS version 9.0, and dialer profiles were introduced in IOS version 11.2.

Triggering a Dial

At its heart, DDR is just an extension of routing wherein interesting packets are routed to a dialer interface, triggering a dial attempt. We will attempt here to explain the concepts involved in defining interesting traffic, and to explain the routing used for DDR connections.

Interesting Packets

Interesting is the term used to describe packets or traffic that either will trigger a dial attempt or, if a dial link is already active, will reset the idle timer on the dialer interface. For a packet to be considered interesting, it must have these characteristics:

The packet must meet the "permit" criteria defined by an access list.

The access list must be referenced by a dialer list, or the packet must be of a protocol which is universally permitted by the dialer-list command.

The dialer list must be associated with a dialer interface by use of a dialer-group command.

By default, no packets are considered to be interesting. Interesting packet definitions must be explicitly declared in a router or access server configuration.

Dialer Group

In the configuration of each dialer interface on the router or access server, there must be a dialer-group command. If the dialer-group command is not present, there is no logical link between the interesting packet definitions and the interface. The command syntax is as follows:

dialer-group [group number]

The group-number is the number of the dialer access group to which the specific interface belongs. This access group is defined with the dialer-list command. Acceptable values are nonzero, positive integers between 1 and 10.

An interface can be associated with a single dialer access group only; multiple dialer-group assignment is not allowed. A second dialer access group assignment will override the first. A dialer access group is defined with the dialer-group command. The dialer-list command associates an access list with a dialer access group.

Packets that match the dialer group specified trigger a connection request.

The destination address of the packet is evaluated against the access list specified in the associated dialer-list command. If it passes, either a call is initiated (if no connection has already been established) or the idle timer is reset (if a call is currently connected).

Dialer List

The dialer-list global configuration command is used to define a DDR dialer list to control dialing by protocol, or by a combination of protocol and access list. Interesting packets are those that match the protocol level permit or which are permitted by the list in the dialer-list command:

dialer-list dialer-group protocol protocol-name {permit | deny | list access-list-number | access-group}

dialer-group is the number of a dialer access group identified in any dialer-group interface configuration command.

protocol-name is one of the following protocol keywords: appletalk, bridge, clns, clns_es, clns_is, decnet, decnet_router-L1, decnet_router-L2, decnet_node, ip, ipx, vines, or xns.

permit permits access to an entire protocol.

deny denies access to an entire protocol.

list specifies that an access list will be used for defining a granularity finer than an entire protocol.

access-list-number specifies the number of the access list the dialer-list is using to decide what is interesting traffic. Access list numbers can be specified for any standard or extended access lists, including DECnet, Banyan VINES, IP, Novell IPX, XNS, and bridging types. See Table 16-7 for the supported access list types and numbers.

access-group filters list name used in the clns filter-set and clns access-group commands.

Table 16-7 Access List Numbering by Protocol 

Access List Type
Access List Number Range (Decimal)

AppleTalk

600 to 699

Banyan VINES (standard)

1 to 100

Banyan VINES (extended)

101 to 200

DECnet

300 to 399

IP (standard)

1 to 99

IP (extended)

100 to 199

Novell IPX (standard)

800 to 899

Novell IPX (extended)

900 to 999

Transparent Bridging

200 to 299

XNS
500 to 599

Access List

For each networking protocol that is to be sent across the dial connection, an access list may be configured. For purposes of cost control, it is usually desirable to configure an access list to prevent certain traffic—such as routing updates—from bringing up or keeping up a connection. Note that when we create access lists for the purpose of defining interesting and uninteresting traffic, we are not declaring that uninteresting packets cannot cross the dial link—only that they will not reset the idle timer, nor will they bring up a connection on their own. As long as the dial connection is up, uninteresting packets will still be allowed to flow across the link.

For example, a router running EIGRP as its routing protocol can have an access list configured to declare EIGRP packets uninteresting and all other IP traffic interesting:

access-list 101 deny eigrp any any

access-list 101 permit ip any any

Access lists can be configured for all protocols that might cross the dial link. Remember that for any protocol, the default behavior in the absence of an access list permit statement is to deny all traffic. If there is no access list and if there is no dialer-list command permitting the protocol, then that protocol will be uninteresting. In actual practice, if there is no dialer list for a protocol, those packets will not flow across the link at all.

Example: Putting It All Together

With all the elements in place, it is possible to examine the complete process by which the "interesting" status of a packet is determined. In this example, IP and IPX are the protocols that may cross the dial link, but the user wants to prevent broadcasts and routing updates from initiating a call or keeping the link up. 

!

interface async 1

 dialer-group 7

!

access-list 121 deny eigrp any any

access-list 121 deny ip any host 255.255.255.255

access-list 121 permit ip any any

access-list 9