ESR series service routers.ESR-Series. User manual
•
•
•
•
•
•
•
•
•
•
•
•
•
1.
•
•
•
•
•
•
•
•
•
•
•
2.
•
•
•
•
•
5 Initial router configuration
ESR router factory configuration
Description of factory settings
Router connection and configuration
Connection to the router
Ethernet LAN connection
RS-232 console port connection
Applying the configuration change
Basic router configuration
Changing password for 'admin' user
Creation of new users
Assigning device name
Configuration of public network parameters
Configuring remote connection to router
5.1 ESR router factory configuration
The device is shipped to the consumer with the factory configuration installed that includes essential basic
settings. Factory configuration allows using the router as a gateway with SNAT without applying any additional
settings. Also, factory configuration contains settings that allow you to obtain network access to the device for
advanced configuration.
5.1.1 Description of factory settings
To establish network connection, the configuration features 2 security zones named 'Trusted' for local area
network and 'Untrusted' for public network. All interfaces are divided between two security zones:
'Untrusted' zone is meant for a public network (WAN) connection. In this zone, DHCP ports are open in
order to obtain dynamic IP address from the provider. All incoming connections from this zone to the
router are blocked.
This security zone includes the following interfaces:
for ESR-10/12V: GigabitEthernet 1/0/1;
for ESR-12VF/ESR-14VF: GigabitEthernet 1/0/1; GigabitEthernet 1/0/9;
for ESR-15: GigabitEthernet 1/0/1;GigabitEthernet 1/0/6;
for ESR-20: GigabitEthernet 1/0/1;
for ESR-21: GigabitEthernet 1/0/1;
for ESR-30: GigabitEthernet 1/0/1;GigabitEthernet 1/0/1-2;
for ESR-100/200: GigabitEthernet 1/0/1;
for ESR-1000/1500/3100: GigabitEthernet 1/0/1, TengigabitEthernet 1/0/1-2;
for ESR-1200/1700: GigabitEthernet 1/0/1, TengigabitEthernet 1/0/1, TengigabitEthernet 1/0/2;
for ESR-1511: GigabitEthernet 1/0/1, FortygigabitEthernet 1/0/1-2;
for ESR-3200: GigabitEthernet 1/0/1-2.
Zone interfaces are grouped into a single L2 segment via Bridge2 network bridge.
'Trusted' zone is meant for a local area network (LAN) connection. Telnet and SSH ports for remote
access, ICMP ports for router availability test, DHCP ports for clients obtaining IP addresses from the
router. Outgoing connections from this zone into the Untrusted zone are allowed.
This security zone includes the following interfaces:
forESR-10: GigabitEthernet 1/0/2-6;
for ESR-12V(F)/ESR-14VF: GigabitEthernet 1/0/2-8;
for ESR-15: GigabitEthernet 1/0/2-5;
for ESR-20: GigabitEthernet 1/0/2-4;
for ESR-21: GigabitEthernet 1/0/2-12;
To Next Page
Loading...
Need help?
General
