quick reference guide 200304 01
TRANSCRIPT
Quick Reference Guide for the PacketShaper Specialist
Version 8.x, Rev C
P/N 20-0304-01
Quick Reference Guide for the PacketShaper Specialist
Version 8.x, Rev C
P/N 20-0304-01
DISCLAIMER THIS TRAINING MANUAL IS PROVIDED "AS IS" WITHOUT ANY EXPRESS OR IMPLIED WARRANTY OF ANY KIND INCLUDING WARRANTIES OF MERCHANTABILITY, NONINFRINGEMENT OF INTELLECTUAL PROPERTY, OR FITNESS FOR ANY PARTICULAR PURPOSE. IN NO EVENT SHALL PACKETEER, INC. OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER (INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS OF PROFITS, BUSINESS INTERRUPTION, LOSS OF INFORMATION) ARISING OUT OF THE USE OF OR INABILITY TO USE THIS TRAINING MANUAL, THE PRODUCT OR SOFTWARE, EVEN IF PACKETEER, INC. HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. BECAUSE SOME JURISDICTIONS PROHIBIT THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES, THE ABOVE LIMITATION MAY NOT APPLY TO YOU. Packeteer, Inc. and its suppliers further do not warrant the accuracy or completeness of the information, text, graphics, links or other items contained within this training manual or for incidental, indirect, special or consequential damages in connection with the furnishing, performance or use of this training manual. Packeteer, Inc. may make changes to this training manual, or to the products or software described herein, at any time without notice. Packeteer, Inc. makes no commitment to update this training manual.
COPYRIGHT/TRADEMARKS Packeteer, the Packeteer logo, combinations of Packeteer and the Packeteer logo as well as SkyX, PacketWise, PacketShaper, PacketShaper Xpress, PacketSeeker, and ReportCenter are trademarks or registered trademarks of Packeteer, Inc. in the United States and other countries. Other product and company names used in this software are used for identification purposes only and may be trademarks of other companies and are the property of their respective owners. Copyright© 2000-2007 Packeteer, Inc. All rights reserved. No part of this training manual may be reproduced, photocopied, stored on a retrieval system, transmitted in any form or any means electronic or mechanical, including photocopying and recording for any purpose, or translated into another language without the express written consent of Packeteer, Inc.
U.S. GOVERNMENT RESTRICTED RIGHTS The product and software are comprised of "commercial computer software" and "commercial computer software documentation" as such terms are used in 48 C.F.R. 12.212 (SEPT 1995) and is provided to the U.S. Government (i) for acquisition by or on behalf of civilian agencies, consistent with the policy set forth in 48 C.F.R. 12.212; or (ii) for acquisition by or on behalf of units of the U.S. Department of Defense, consistent with the policies set forth in 48 C.F.R. 227-7202-1 (JUN 1995) and 227.7202-3 (JUN 1995). The product and software are provided with "RESTRICTED RIGHTS." Use, duplication, or disclosure by the U.S. Government is subject to restrictions as set forth in FAR 52.227-14 and DFAR 252.227-7013 et seq. or its successor. Use of the product or software by the U.S. Government constitutes acknowledgment of Packeteer Inc.'s proprietary rights in them and to the maximum extent possible under federal law, the U.S. Government shall be bound by the terms and conditions set for in Packeteer, Inc.'s end user agreement.
RESTRICTED LICENSE RIGHTS THE PRODUCT AND SOFTWARE DESCRIBED HEREIN ARE SUBJECT TO A RESTRICTED USE LICENSE AND MAY BE USED ONLY IN ACCORDANCE WITH THE END USER AGREEMENT WHICH ACCOMPANIES THE PRODUCT OR SOFTWARE.
Table of Contents
i
Network configuration ......................................................................................................................................................................................... 1
setup link inbound 1.5M......................................................................................................................................................................... 1 setup link outbound 1.5M....................................................................................................................................................................... 1 set nic inside autonegotiate ................................................................................................................................................................... 1 setup nic outside 100bt full .................................................................................................................................................................... 1 setup dns 209.53.4.150 207.102.99.66 ................................................................................................................................................. 1
Security configuration ......................................................................................................................................................................................... 3 setup access disable telnet.................................................................................................................................................................... 3
Classify traffic...................................................................................................................................................................................................... 4 Analyze Network performance............................................................................................................................................................................ 6 Analyze Application performance ....................................................................................................................................................................... 8 Control application traffic .................................................................................................................................................................................. 10 Control application traffic with static partitions.................................................................................................................................................. 11
partition apply /Inbound/Core/Critical/VideoConference 400000 500000 ........................................................................................... 11 Control application traffic with policies.............................................................................................................................................................. 12 Provide guaranteed per-session bandwidth ..................................................................................................................................................... 15 Provide per user bandwidth allocation.............................................................................................................................................................. 16 Maintain PacketShaper..................................................................................................................................................................................... 17 Troubleshoot ..................................................................................................................................................................................................... 21
tunnel discovery off .............................................................................................................................................................................. 22 tunnel delete all .................................................................................................................................................................................... 22
Get help............................................................................................................................................................................................................. 24
ii
Quick Reference Guide for the PacketShaper Specialist 1
Network configuration Desired Result Sample WUI Settings Result Sample CLI Command Setup IP address & network mask
setup ipaddress 10.0.1.10 255.255.0.0
Setup default gateway setup gateway 10.0.0.1
Setup inbound and outbound link rates
setup link inbound 1.5M setup link outbound 1.5M
Set NIC LAN settings
set nic inside autonegotiate setup nic outside 100bt full
Set DNS server setup dns 209.53.4.150 207.102.99.66
Set timezone and time synchronization with sntp server
setup timezone LosAngeles setup sntp servers time.nist.gov time-a.nist.gov setup sntp on
2
Desired Result Sample WUI Settings Result Sample CLI Command Configure Xpress IP and network settings
tunnel ip configure main 10.0.1.20 255.255.0.0 10.0.0.1
Quick Reference Guide for the PacketShaper Specialist 3
Security configuration Desired Result Sample WUI Settings Result Sample CLI Command Set look and touch passwords
setup password touch setup password look
Limit access to PacketShaper management IP
setup secure inside list 10.0.1.100 10.0.1.50 setup secure outside on
Disable access to services for compliance with security requirements
setup access disable telnet
4
Classify traffic Desired Result Sample WUI Settings Result Sample CLI Command Automatically discover applications and build the traffic tree
setup discover on
Add a class to match traffic from an external location by matching its network address
class new /Inbound Core nodefault inside host:any outside net:10.0.0.0/24
Quick Reference Guide for the PacketShaper Specialist 5
Desired Result Sample WUI Settings Result Sample CLI Command Enable discovery within a class
class discover /Inbound/Core both
Change class order in tree
class set /Inbound/FTP exception
6
Analyze Network performance Desired Result Sample WUI Settings Result Sample CLI Command Link utilization
me dump link inbound by time 1h 1m avg-bps
Top 10 applications (pie chart)
me dump class leaf inbound by var 1h sort avg-bps
Application utilization trend (stacked graph)
(click on graph icon next to Average Rate)
me dump class leaf inbound by time 1h 1m avg-bps
Quick Reference Guide for the PacketShaper Specialist 7
Desired Result Sample WUI Settings Result Sample CLI Command Compression savings
me dump link inbound by time 1h 1m tunneled-postcompression-avg-bps tunneled-precompression-avg-bps
8
Analyze Application performance Desired Result Sample WUI Settings Result Sample CLI Command Application utilization – real-time snapshot
traffic tree
Application utilization detailed report (line graph)
me dump class inbound/core/critical/crm by time 1h 1m avg-bps peak-bps
Top users of an application
hostdb topusers start /Inbound/HTTP talk
Quick Reference Guide for the PacketShaper Specialist 9
Desired Result Sample WUI Settings Result Sample CLI Command Application response time
rtm show
10
Control application traffic Desired Result Sample WUI Settings Result Sample CLI Command Set link size to match WAN capacity
set link inbound 1.5M set link outbound 1.5M
Turn on shaping set shaping on
Turn off shaping set shaping off
Quick Reference Guide for the PacketShaper Specialist 11
Control application traffic with static partitions Desired Result Sample WUI Settings Result Sample CLI Command Business critical application: Provide a guaranteed minimum amount of bandwidth
partition apply /Inbound/Core/Critical/CRM 400000 none
Unimportant application: Limit aggregate bandwidth
partition apply /Inbound/P2P 0 5%
Important application: Provide guarantee with a limit
partition apply /Inbound/Core/Critical/VideoConference 400000 500000
12
Control application traffic with policies Desired Result Sample WUI Settings Result Sample CLI Command Important traffic: small, time sensitive
policy apply priority /Inbound/Core/DNS 6
Important traffic: large, bandwidth hungry
policy apply rate /Inbound/Core/Critical/CRM 0 0 4 automatic
Quick Reference Guide for the PacketShaper Specialist 13
Desired Result Sample WUI Settings Result Sample CLI Command Unimportant traffic: large, bandwidth hungry
policy apply rate /Inbound/Core/HTTP 0 0 2 automatic
Prohibited or unsanctioned TCP traffic - refuse connection or web-redirect
policy apply never /Inbound/HTTP/banned_sites policy admit /Inbound/HTTP/banned_sites "http://www.packeteer.com/redirected/"
Prohibited or unsanctioned non-TCP traffic - drop
policy apply discard /Inbound/Quake
14
Desired Result Sample WUI Settings Result Sample CLI Command Traffic Going Through PacketShaper not to or from WAN link
policy apply ignore /Inbound/Router
Quick Reference Guide for the PacketShaper Specialist 15
Provide guaranteed per-session bandwidth Desired Result Sample WUI Settings Result Sample CLI Command Guaranteed minimum total bandwidth for all sessions
partition apply /Outbound/Core/Critical/RTP-I 100000 none
Guaranteed minimum bandwidth for each session (Each session gets 16k minimum guarantee. Since the minimum partition size is 100k, only 6 sessions will be given the guaranteed. Additional sessions will generate guaranteed rate failures).
policy apply rate /Outbound/Core/Critical/RTP-I/RTP-I-GSM 16000 16000 3 automatic
16
Provide per user bandwidth allocation Desired Result Sample WUI Settings Result Sample CLI Command Dynamically allocate bandwidth on a per user basis (Dynamic sub-partition) – up to 100K total partition size – first 5 users get 20K each – remaining users share overflow partition
partition apply /Outbound/Core/FTP 100000 200000 partition dynamic apply /Outbound/Core/FTP per-address inside 20000 none
Quick Reference Guide for the PacketShaper Specialist 17
Maintain PacketShaper Desired Result Sample WUI Settings Result Sample CLI Command Delete discovered ports classes
class delete inbound/discoveredports children
Check product, IP address, serial number, software version
version verbose
Check settings
setup show
18
Desired Result Sample WUI Settings Result Sample CLI Command Find files on the flash drive
cd 9.256/ ls -l
Find files on the hard drive
cd 9.258/ ls -l
Quick Reference Guide for the PacketShaper Specialist 19
Desired Result Sample WUI Settings Result Sample CLI Command Reset the class tree
class reset
Restart (shutdown & cycle power)
reset
Reset to factory defaults
set reset all
Upgrade software image
image load 801g1std.zoo
20
Desired Result Sample WUI Settings Result Sample CLI Command Manage plug-ins
cd 9.256/plg <ftp download ar801v1.plg> ls –l reset
Reset lost password Done from console connection immediately after reset when prompted for password.
touchpwd=
Quick Reference Guide for the PacketShaper Specialist 21
Troubleshoot Desired Result Sample WUI Settings Result Sample CLI Command Check NIC settings
setup show
Test traffic classification
class test inbound tcp 0.0.0.0:0 10.0.0.200:80
Check link and partition settings
partition show
Check xPress settings
tunnel summary
22
Desired Result Sample WUI Settings Result Sample CLI Command Turn off xPress tunnel discovery
tunnel discovery off
Delete all xPress tunnels
tunnel delete all
Setup a static tunnel
tunnel new main 10.0.0.20 Core
Limit xPress tunnel to specific hosts only
CLI only tunnel remote add 10.0.0.20:Main 10.0.0.200 tunnel local add Main 10.0.1.100
Quick Reference Guide for the PacketShaper Specialist 23
Desired Result Sample WUI Settings Result Sample CLI Command View list of hosts eligible for Xpress tunnel traffic
CLI only tunnel remote show 10.0.0.20:Main tunnel local show Main
Enable adaptive response
24
Get help Desired Result Sample WUI Settings Result Sample CLI Command Get help for current WUI screen
help
Access online help (PacketGuide)
Search Packeteer’s Knowledgbase (Technical Info Library)
Quick Reference Guide for the PacketShaper Specialist 25
Desired Result Sample WUI Settings Result Sample CLI Command Get help from Packeteer’s online community
