Hi Mantas,
thank you for the description of the xot configuration parameters.? With?that, I have been able to set up my virtual C7206 successfully and make an outbound connection to your router.? Back from your router to mine, I currently see
*Apr 10 09:55:42.353: [193.219.181.240,56402/,1998]: XOT I P/Inactive Call (21) 128 lci 1
*Apr 10 09:55:42.353: ? From (6): 603041 To (6): 230001
*Apr 10 09:55:42.353: ? Facilities: (6)
*Apr 10 09:55:42.353: ? ? Packet sizes: 1024 1024
*Apr 10 09:55:42.353: ? ? Window sizes: 15 15
*Apr 10 09:55:42.353: ? Call User Data (4): 0x01000000 (pad)
*Apr 10 09:55:42.357: [193.219.181.240,56402/,1998]: XOT O P3 Call Confirm (11) 128 lci 1
*Apr 10 09:55:42.357: ? From (0): ?To (0):
*Apr 10 09:55:42.357: ? Facilities: (6)
*Apr 10 09:55:42.357: ? ? Packet sizes: 1024 1024
*Apr 10 09:55:42.357: ? ? Window sizes: 15 15
*Apr 10 09:55:42.421: [193.219.181.240,56402/,1998]: XOT I P4 Clear (5) 128 lci 1
*Apr 10 09:55:42.425: ? Cause 3, Diag 66 (Invalid facility request/Facility parameter not allowed)
When I try calling 230001 from 147041 / 603041 (with the TELEBAHN XOT profile), I get the same – regarding window size specifically:
Apr 10 07:59:03.050: X.25 host name sent for DNS lookup is ""
Apr 10 07:59:03.062: DNS got X.25 host mapping for "" via network
Apr 10 07:59:03.146: [62.156.3.51,1998/,18420]: XOT O P2 Call (21) 128 lci 1024
Apr 10 07:59:03.146: ? From (6): 603041 To (6): 230001
Apr 10 07:59:03.146: ? Facilities: (6)
Apr 10 07:59:03.146: ? ? Packet sizes: 1024 1024
Apr 10 07:59:03.146: ? ? Window sizes: 15 15
Apr 10 07:59:03.150: ? Call User Data (4): 0x01000000 (pad)
Apr 10 07:59:03.222: [62.156.3.51,1998/,18420]: XOT I P2 Call Confirm (11) 128 lci 1024
Apr 10 07:59:03.222: ? From (0): ?To (0):
Apr 10 07:59:03.222: ? Facilities: (6)
Apr 10 07:59:03.222: ? ? Packet sizes: 1024 1024
Apr 10 07:59:03.222: ? ? Window sizes: 15 15
Apr 10 07:59:03.226: XOT Call Confirm packet, Bad value for facility, Window size is not within permitted range
Apr 10 07:59:03.226: [62.156.3.51,1998/,18420]: XOT O P2 Clear (5) 128 lci 1024
Apr 10 07:59:03.226: ? Cause 3, Diag 66 (Invalid facility request/Facility parameter not allowed)
Apr 10 07:59:03.230: [62.156.3.51,1998/,18420]: XOT I P6 Data (5) Q 128 lci 1024 PS 0 PR 0
Apr 10 07:59:03.234: [62.156.3.51,1998/,18420]: XOT I P6 Data (46) 128 lci 1024 PS 1 PR 0
Apr 10 07:59:03.298: [62.156.3.51,1998/,18420]: XOT I P6 Clear Confirm (3) 128 lci 1024
From 147043 / 603043 (which has an outbound XOT route but without the profile), I could successfully dial 230001 and get at the IOS password prompt.
Don't forget to actually define "access-list 10 permit any", as having an "xot access-group" set will implicitly reject XOT connections that don't match any of the access groups. ?
This is probably because I have not managed to apply the TELEBAHN profile to my inbound listener yet.? Still testing.
-Hans
Am So., 9. Apr. 2023 um 21:31?Uhr schrieb Mantas Mikul?nas < grawity@...>: On Sun, Apr 09, 2023 at 01:00:23PM +0300, Mantas Mikul?nas wrote:
> On Sun, Apr 09, 2023 at 10:17:48AM +0200, Hans Hübner wrote:
> > Am Fr., 7. Apr. 2023 um 07:36?Uhr schrieb Mantas Mikul?nas <grawity@...>:
> >
> >? ? ?I finally decided to add mine, just a pile of old Cisco routers to poke
> >? ? ?around (though at the moment I'm not sure if the telebahn x.25 profile is
> >? ? ?set up right, as so far I've been only playing with serial links between
> >? ? ?identical systems)
> >
> >
> > Thank you for setting that up!? I could successfully connect to?14704100 after
> > I had tweaked my configuration.? ?Would you be willing to share your
> > configuration?? I could not quite figure out how to enable inbound X.29
> > connections to the router itself.
>
> As far as I could figure out (IOS documentation is *really* scattered):
>
>? - "x25 routing" implicitly enables inbound XOT connections in general
>? ? (starts listening on TCP port 1998). However, if you define a profile
>? ? and associate it with "xot access-group...", then only connections
>? ? matching one of the access-lists will be allowed, so make sure the
>? ? access-list in question has "permit any".
>
>? - "service pad from-xot" is required to allow the router itself to
>? ? accept PAD calls via XOT (the default is only to route calls onward),
>? ? but the router still needs to be told what its X.121 address is.
>? ? (Without an address it won't know what calls are "local".)
>
>? - For physical X.25 interfaces, like Serial0/0, "x25 address" can be
>? ? set per-interface to define the router's own X.121 address, though of
>? ? course not for XOT since there's no interface.
>
>? ? ? interface Serial0/0
>? ? ? ? x25 address 147041
>
>? ? (It's enough to dial "pad 147041", not necessarily 14704100.)
>
>? - If you have an "x25 profile TELEBAHN dxe" associated to XOT, you can
>? ? define the local X.121 address as "x25 address" under that profile:
>
>? ? ? x25 profile TELEBAHN dxe
>? ? ? ? x25 address 147041
>? ? ? access-list 10 permit any
>? ? ? xot access-group 10 profile TELEBAHN
>
>? ? So instead of e.g. incoming calls via Serial0/0 being matched against
>? ? that interface's address, you have incoming calls from 'any' IP being
>? ? matched against the profile's address.
Oh right, and if you have an "x25 profile" associated with Serial0/0,
then you can probably define the "x25 address" under that profile as
well, just like for XOT.
The "lab" has a stack of three Cisco1760's connected via serial, I have
not done anything special to make PAD calls between them -- just define
the routers' local addresses as above, and add "x25 route" entries via
Serial0/0 or whatever is appropriate. (From what I remember, things
*stopped* working once I tried to apply the TELEBAHN profile...)
? interface Serial0/0
? ?description "Connected to Cisco1760-mid Serial0/0"
? ?encapsulation x25 dce
? ?clockrate 64000
? ?no ip address
? ?x25 address 147041
? x25 route ^147042 interface Serial0/0
? x25 route ^147043 interface Serial0/1
? x25 route ^(...)(...) xot dns \2.\
? ! local host entry
? x25 host Cisco1760-top 147041
? ! address book for 'pad' command
? x25 host mid 147042
? x25 host btm 147043
--
Mantas Mikul?nas
|
