Back
Home> Support> Technical Documents>

Ruijie RG-EG Implementation Cookbook (V1.0)

2020-02-15 View: 10043
Catalog
11.x项目配置指南模板

       Daily Maintenance

2.1       Device Login

2.1.1      WEB Login

1) Modify the IP address of PC.

         IP address: 192.168.1.x (except 192.168.1.1)

         Subnet mask: 255.255.255.0

         Default gateway: 192.168.1.1 (default LAN IP)

2) Connect the PC to any port (except WAN0) on the device.

3) Visit http://192.168.1.1 by Chrome browser.

 

4) Enter the username and password on the login page and click “Log In”.

Default Username: admin

Default Password: admin

5) Change the password at the first login.

 

 

2.1.2      Console Login

Ø  Tools NeededPUTTY (or others) software in your computer, console cable (as shown on the left), computer with COM port. If your computer doesn’t have COM port, please buy COM to USB cable (as shown on the right) by yourself.

Ø  Operation Steps

Step 1-Connect console cable to EG console port.

Step 2-Check your COM port number in your computer ‘Device manager’. You should install drivers first or you won’t see the COM port number.

Step 3-Open PUTTY and change the protocol to ‘Serial’.Choose your COM port number, set baud rate to 9600, uncheck RTS/CTS.Then click ‘Open’ button.

Step 4-Press ‘Enter’ to enter user mode.

 

 

2.2       Software Maintenance

2.2.1      Software Information Check

Main Process Software Version Check

You can see product model and software version information on web home page.

You can also use the command ‘show version’ in CLI.

 

2.2.2      Software Version Upgrade

Note

1. Upgrading needs to restart, please upgrade in the time section that allow to break network. Upgrading will last about 10 minutes.

2. Download corresponding software version according to product model. Ensure software version and device model are matching. Please read version issue statement carefully before upgrading.

NoteDownload software on our official website (http://www.ruijienetworks.com/), click ‘Support’ then choose ‘Software Download’. Then you should input your product model or key words to search the latest software version and other versions. Take RG-N18000 as an example.

3. Shut down EG attack defense function, or add the PC IP address for upgrading into management IP address.

 

A.      Use WEB to upgrade

1. You can shut down attack defense function or add management IP address as below. If you have shut down ‘Flow Attack Defense’, you don’t need to add management IP.

2. Then click ‘Advanced’, choose ‘Upgrade’, click ‘Browse’ to choose the upgrading file you downloaded then click ‘Upgrade’.

NoteBefore choosing the upgrading file, you should change the file name as ‘rgos.bin’.

After finishing upgrading, it prompt you to restart device, you should click ‘OK’. After restarting, upgrading is successful. 

 

B.      Use console to upgrade

1. Change the file name as ‘rgos.bin. Because of 11.X version is large, so using CLI to upgrade should download ‘3CDaemon’ tftp tool. If you don’t use this tool, it will lead to upgrading failure.

NotePlease check windows firewall, anti-virus software setting, system security and so on before upgrading. You can only open 1 TFTP server to prevent port conflicts.

 

 

 

 

2. Open 3CDaemon to run TFTP server and choose file location.

3. Using console login device. Input command ‘copy tftp://192.168.1.100/rgos.bin sata0:rgos.bin’ and press ‘Enter’.

Note192.168.1.100 is your computer IP address.

4. After importing main process, don’t restart. Input command ‘upgrade sata0:rgos.bin force’ to update main process.

5. You can input command ‘show version’ to check version information.

 

2.3       Password Recovery

Note

1. Please prepare console cable ahead of time.

2. Password recovery will lead to device restart and break network. Please choose the time section allowing network broken.

Ø  Operation Steps

Step 1-Open your PUTTY or other control softwares, press ‘Enter’ to enter user mode. (Ruijie>)

Step 2-Turn off the power then turn on, input ‘ctrl+c’ in PUTTY consecutively until following menu appear.

Step 3-Press ‘ctrl+q’ to enter uboot CLI, input command ‘main_config_password_clear’ then press ‘Enter’. After that device will restart, and don’t need password to enter system this time.

Step 4-Change your password in privileged mode. For example, in the following picture 1, we set new web management and CLI privileged mode password as ‘ruijie’ then input ‘write’ to save your configuration.

Step 5-You could access web page to confirm if it is successful.

 

2.4       Configuration Backups

Ø  Use WEB to backups

Click ‘Advanced’, choose ‘System’, choose ‘Backup’, click ‘Export Config’ and choose save location for configuration export. Click ‘Scan…’ and choose configuration file then click ‘Import’ for import.

 

Ø  Use CLI to backups

1. Open TFTP software in your computer.

2. Input command ‘copy flash:config.text tftp://192.168.1.100/config.text’, 192.16.1.100 is your computer IP address.

3. If you see the prompt ‘Transmission success,file length 50281 bytes’, it means successful.

 

2.5       Main Process Recovery (Layer Ctrl Upgrade)

NoteIf the main process of device is lost because of some reasons, please try to recover it through ctrl layer. Main process lost will lead to PWR and SYS light always on, but other port lights not on.

Ø  Operation Steps


Step 1-Download the main process from our official website. Detailed steps please refer to 4.2.2.

Step 2-Change file name as ‘rgos.bin’.

Step 3-Open 3CDaemon to run TFTP server and choose file location.

Step 4-Open PUTTY, turn off power then turn on. Input ‘ctrl+c’ in PUTTY consecutively until following menu appear.

Step 5-Input ‘0’ behind the prompt ‘Press a key to run the command’.

Step 6-Then input ‘1’ behind the prompt ‘Press a key to run the command’. Input ‘y’ behind the prompt ‘Determined to upgrade?’ .

Step 7-Press ‘ctrl+z‘back to upper menu. Input ‘2’ behind the prompt ‘Press a key to run the command’ to restart and load main process.

Step 8-You could access web page to confirm if it is successful.

 

2.6       Factory Reset

Note

1. After factory reset, existing configuration will be deleted.

2. Factory reset needs to restart.

3. If you can not login web page, please use CLI for factory reset.

 

Ø  Use WEB to factory reset

Click ‘Advanced’, choose ‘System’, choose ‘Factory Reset’, and then click ‘Reset’.

 

Ø  Use CLI to factory reset

Open PUTTY or other softwares (telnet is also OK). Input the command ‘delete flash:config.text’, and then press ‘Enter’. Input ‘y’ behind the prompt ‘Do you want to delete [Flash:/config.text]?’, and then press ‘Enter’.

After that input the command ‘reload’ to restart device. Input ‘y’ behind the prompt ‘Reload system?’ and press ‘Enter’. Device reloading will spend about 5 minutes.

 

2.7       View Alarm Log

Ø  Alarm Functions

1. Flow Attack AlarmIf there are large number of flow alarm information existing and lasting long. We suggest turning on ‘Attack Defense’ funcition. If attacks are from intranet, you should check up if there is a virus in a host in your intranet. If attacks are from extranet, you should contact carrier to help you solve the problem.

2. Signature Database AlarmThere some applications lost in the new signature database, and you configured some strategies about these applications before, there will be an alarm here.

3. SATA Disk AlarmThere will not be an alarm appear here in normal status, if not please contact us.

4. Config File AlarmPrompt you for the size of current configuration file.

5. Default Route AlarmIf you have no default route, it will have an alarm here.

 

Ø  Opreation Steps

Step 1-If you find the ‘Alarm’ turn to be red or twinkle, please click it to check. (Normal status is black)

Step 2-You can see which kinds of alarm appear; the alarm item will turn to be red either. Green means all are normal, just like the following picture.

 

2.8       System Log View and Export

Click ‘Advanced’, choose ‘System Log’, choose ‘System Log’. If you want to view syslog, you should click ‘Update’ and then start scanning it.

You can export syslog by click ‘Export Log’, it will packet the log information and download in your computer.

Note

1. Sever LogYou can associate EG to your log sever by configuring this function. In that case, your log server will record designated log by you.

2. Local LogYou can save flow-log or NAT-log in the disk of device.

 

 

2.9       Change Password

NoteDevice only has web management password when leaving factory. Default user and password are ‘admin’ for web management.

Ø  Use WEB to change password

Click ‘Advanced’, choose ‘System’, and choose ‘Change Password’. You can change your web management and telnet password here. CLI privileged mode password is the same as telnet password, if you don’t set other configurations by CLI.

 

Ø  Use CLI to change password

Ruijie#configure

Ruijie(config)#webmaster level 0  username admin password ruijie     //change admin password as ruijie

Ruijie(config)#enable secret ruijie                                //change privileged mode password as ruijie

 

Ruijie(config)#line vty 0  4

Ruijie(config-line)#password  ruijie                                    //change telnet password as ruijie

Ruijie(config-line)#end

Ruijie#write        

 

2.10   Administrator Authority Setting

Note

1. If your company has many administrators, in charge of different functions. You can use this function to configure.

2. These administrators can use web to login, but can not login by telnet.

3. These administrators can change their own passwords, but can not change admin’s password. If these new administrators foreget their passwords, you can login admin to reset.

You can click ‘edit to reset password. Only inputting a new password and then confirming is ok.

Ruijie Networks