Network Access Server Configuration for Cisco DialOut Utility

Table Of Contents

Sample NAS Configurations for the Cisco DialOut Utility

Sample Configuration File for Cisco AS2509-2512 Series Access Servers

Sample Configuration File for a Cisco AS2509 Access Server with Local AAA Security

Sample Configuration File for Cisco 5200 Series Access Servers

Sample Configuration File for an AS5200 (PRI) Access Server with AAA Local Security

Sample NAS Configurations for the Cisco DialOut Utility

This appendix contains sample configurations for the NAS you will be using with the Cisco DialOut Utility. The Cisco DialOut Utility can be used with any NAS that supports Class 2 faxing.

For more information on setting up and configuring your NAS, see the section Telnet Extensions for Dialout in your Cisco IOS documentation.

Sample Configuration File for Cisco AS2509-2512 Series Access Servers

Following is a sample configuration file for a Cisco AS2509, Cisco AS2510, Cisco AS2511, or Cisco AS2512 access server that you can use with Cisco DialOut Utility. Of course, you need to edit the example to reflect your own configuration.
!version 11.3service timestamps debug datetime msec localtimeno service udp-small-serversservice tcp-small-servers!hostname 2500-DialOut!enable secret 5 $1$WG3K$8ZhlhHUG6hx4U3U2KFPyW0enable password abc!ip domain-name cisco.comip name-server 10.0.0.0ip address-pool local!interface Ethernet0ip address 10.0.0.1 255.255.255.0no ip mroute-cacheno ip route-cacheno lat enabledno mop enabled!interface Serial0no ip addressno ip mroute-cacheno ip route-cacheshutdown!interface Serial1no ip addressno ip mroute-cacheno ip route-cacheshutdown!interface Group-Async1ip unnumbered Ethernet0no ip mroute-cacheencapsulation pppno ip route-cacheasync default routingasync dynamic addressasync mode interactivepeer default ip address pool localdialer in-bandno cdp enableppp authentication chapgroup-range 1 8!interface Dialer0no ip addressno ip mroute-cacheno ip route-cacheno cdp enable!router eigrp 109network 10.2.0.0no auto-summary!ip local pool local 10.1.1.1 10.1.1.5ip default-gateway 10.1.1.2no ip classlessip route 10.2.2.2 255.255.255.224 10.1.1.1ip route 10.3.3.3 255.255.255.224 10.4.4.4!line con 0exec-timeout 0 0line 1 8no execrefuse-messageWelcome to Rotary 1 - Pool of modems...No modems available, please try again.modem InOutrotary 1transport preferred telnettransport input allstopbits 1rxspeed 115200txspeed 115200flowcontrol softwareline aux 0line vty 0 4password abclogin!end
Sample Configuration File for a Cisco AS2509 Access Server with Local AAA Security

Following is a sample configuration file for a Cisco AS2509 access server using authorization, authentication, and accounting that you can use with Cisco DialOut Utility. Of course, you need to edit the example to reflect your own configuration.
version 11.3service timestamps debug datetime msec localtime; Helpful for accurate debug based on timestampsno service udp-small-serversservice tcp-small-servers!hostname 2500-DialOut!aaa new-modelaaa authentication local-overrideaaa authentication login dialout localaaa authentication enable default enableaaa authentication ppp dialup localenable password cisco!username admin password 7 02050D480809username dialout password 7 110A1016141D4B4C44ip address-pool localpool!interface Ethernet0ip address 200.200.200.40 255.255.255.0no ip mroute-cacheno ip route-cacheno lat enabledno mop enabled!interface Serial0no ip addressno ip mroute-cacheshutdown!interface Serial1no ip addressshutdown!interface Group-Async1; Defines group for all asynchronous callsip unnumbered Ethernet0; Interface IP address definitionno ip mroute-cache; Disables high speed route cachingencapsulation ppp; Specifies type of WAN Encapsulation of IPno ip route-cache; Enables RIP, OSPF, and IGRP routingasync default routing; Enables SLIP and PPP interactive modeasync dynamic address; Allows the IP address to be assigned when the protocol is initiatedasync mode interactive; Returns the line to interactive modepeer default ip address pool localpool; Specifies pool for dynamic IP allocationdialer in-band; Enables dial-on-demand routing on the interfacedialer idle-timeout 15; Specifies the idle time before line is disconnectedno cdp enable; Disables CDP (Cisco Discovery Protocol)ppp authentication chap dialup; Specifies type of ppp authentication protocol listgroup-range 1 8; Specifies modems for above properties!interface Dialer0no ip addressno ip mroute-cacheno ip route-cacheno cdp enable!router ripnetwork 200.200.200.0!ip local pool localpool 200.200.200.50 200.200.200.60; Specifies an IP range for dynamic allocationno ip classless!line con 0login authentication dialoutexec-timeout 0 0line 1 4; Defines properties for modem lines 1 to 4no exec; Disable EXEC processeslogin authentication dialout; Enable AAA login authentication (local)refuse-message ^C No modems available^C; Enable banner message for tty busy conditionmodem InOut; Enable both incoming and outgoing callsrotary 1; Adds lines 1 4 to the specified rotary group 1transport preferred telnet; Specifies telnet as the preferred (default) protocoltransport input all; Defines all protocols for linestopbits 1; Sets stopbits to 1rxspeed 38400; Sets receive baud ratetxspeed 38400; Sets transmit baud rateflowcontrol hardware; Sets flowcontrol to hardwareline 5 8no execrefuse-message ^CCC No modems available^Cmodem InOutrotary 1transport preferred telnettransport input allstopbits 1rxspeed 38400txspeed 38400flowcontrol hardwareline aux 0line vty 0 4password ciscologin authentication dialout!end
Sample Configuration File for Cisco 5200 Series Access Servers

Following is a sample configuration file for a Cisco AS5200 access server that you can use with Cisco DialOut Utility. Of course, you need to edit the example to reflect your own configuration.
version 11.3service timestamps debug datetime msec localtimeservice udp-small-serversservice tcp-small-servers!hostname 5200-DialOut!enable password cisco!username cisco password 7 123451234512username alice password 7 123456789F12username dogbert password 7 123456789A012345modem startup-testno ip domain-lookupip domain-name cisco.comip name-server 10.5.5.5ip address-pool localisdn switch-type primary-5ess!controller T1 0framing esfclock source line primarylinecode b8zspri-group timeslots 1-24!controller T1 1!interface Ethernet0ip address 10.6.6.6 255.255.255.0no ip mroute-cacheno ip route-cache!interface Serial0no ip addressno ip mroute-cacheno ip route-cacheshutdownno fair-queue!interface Serial1no ip addressno ip mroute-cacheno ip route-cacheshutdown!interface Serial0:23ip unnumbered Ethernet0no ip mroute-cacheencapsulation pppno ip route-cacheno keepaliveisdn incoming-voice modemdialer idle-timeout 400dialer map ip 10.10.10.1 name pme_c1004dialer-group 1no cdp enableppp authentication chap!interface Group-Async1ip unnumbered Ethernet0no ip mroute-cacheencapsulation pppno ip route-cacheasync default routingasync mode interactivepeer default ip address pool localno cdp enableppp authentication chapgroup-range 1 24!interface Dialer0no ip addressno ip mroute-cacheno ip route-cachedialer-group 1no cdp enable!ip local pool local 10.1.1.10 10.1.1.5ip local pool default 10.2.2.2 10.22.2.1ip default-gateway 10.1.1.1no ip classlessip route 10.2.1.2 255.255.255.224 10.1.1.1ip route 10.2.1.3 255.255.255.224 10.2.1.3!dialer-list 1 protocol ip permit!line con 0exec-timeout 0 0line 1 24no execmodem InOutrotary 1transport preferred telnettransport input allline aux 0line vty 0 4login!end
Sample Configuration File for an AS5200 (PRI) Access Server with AAA Local Security

Following is a sample configuration file for a Cisco AS5200 access server using authentication, authorization, and accounting security that you can use with Cisco DialOut Utility. Of course, you need to edit the example to reflect your own configuration.
version 11.3service timestamps debug datetime msec localtimeservice udp-small-serversservice tcp-small-servers!hostname 5200-DialOut! aaa new-modelaaa authentication local-overrideaaa authentication login dialout localaaa authentication enable default enableaaa authentication ppp dialup localenable password cisco!username dialout password 7 04480E051A3349username admin password 7 045802150C2Emodem startup-testno ip domain-lookupip address-pool localisdn switch-type primary-5ess!controller T1 0framing esfclock source line primarylinecode b8zspri-group timeslots 1-24!controller T1 1shutdownframing esfclock source line secondarylinecode b8zspri-group timeslots 1-24!interface Loopback0no ip addressno ip mroute-cacheno ip route-cache!interface Ethernet0ip address 200.200.200.10 255.255.255.0no ip mroute-cacheno ip route-cache!interface Serial0no ip addressno ip mroute-cacheno ip route-cacheshutdownno fair-queue!interface Serial1no ip addressno ip mroute-cacheno ip route-cacheshutdown!interface Serial0:23ip unnumbered Ethernet0no ip mroute-cacheencapsulation pppno ip route-cacheno keepaliveisdn incoming-voice modemno peer default ip addressdialer idle-timeout 400dialer map ip 200.200.200.23 name pc4dialer-group 1no fair-queueno cdp enableppp authentication chapppp multilink!interface Serial1:23no ip addressno ip mroute-cacheno ip route-cacheshutdownno cdp enable!interface Group-Async1ip unnumbered Ethernet0no ip mroute-cacheencapsulation pppno ip route-cacheasync default routingasync mode interactivepeer default ip address pool dialout1no cdp enableppp authentication chap dialoutgroup-range 1 24!interface Dialer0no ip addressno ip mroute-cacheno ip route-cacheno keepaliveno fair-queuedialer-group 1no cdp enable!router ripnetwork 200.200.200.0!ip local pool dialout1 200.200.200.30 200.200.200.40no ip classlessdialer-list 1 protocol ip permit!line con 0exec-timeout 0 0password ciscologin authentication dialoutline 1 13no execrotary 1exec-timeout 0 0refuse-message ^CC No modems available^Cmodem InOutmodem autoconfigure type microcom_hdmsrotary 1transport preferred telnettransport input allline 14 24exec-timeout 0 0modem InOutline aux 0line vty 0 4exec-timeout 0 0password ciscologin authentication dialout!end