|
|
This chapter describes the function and displays the syntax of protocol translation commands. See the Access Services Command Reference publication for more information about defaults and usage guidelines.
To view translation sessions that have been configured, use the show translate EXEC command.
translate protocol incoming-address [in-options] protocol outgoing-address [out-options]
[global-options]
To automatically convert incoming LAT, TCP, or X.25 requests for connections to a specified destination address or host name to the specified outgoing connection type, use the translate global configuration command.
| protocol incoming-address protocol outgoing-address | Name of a protocol followed by a service name or address.These arguments can have the following values: |
| · lat service-name--LAT and a LAT service name. The application of service-name can differ, depending on whether it is being used on the incoming or the outgoing portion of the command. When used on the incoming portion, service-name is the name of the service that users specify when trying to make a translated connection. This name can match the name of final destination resource, but this is not required. This can be useful when making remote translated connections. | |
| · x25 X.121-address--X.25 and an X.121 address. The X.121 address must conform to specifications provided in the CCITT 1984 Red Book. This number generally consists of a portion that is administered by the PDN and a portion that is locally assigned. You must be sure that the numbers that you assign agree with the addresses assigned to you by the X.25 service provider. The X.121 addresses will generally be subaddresses of the X.121 address for the X.25 network interface. Typically, the interface address will be a 12-digit number. Any additional digits are interpreted as a subaddress. The PDN still routes these calls to the interface, and the Cisco IOS software itself is responsible for dealing with the extra digits appropriately. | |
| · tcp ip-address--TCP/IP Telnet and a standard IP address or host name. The argument ip-address is a standard, four-part dotted decimal IP address or the name of an IP host that can be resolved by the Domain Name System (DNS) or explicit specification in an ip host command. | |
| · slip ip-address--The argument ip-address is a standard, four-part dotted decimal IP address or the name of an IP host that can be resolved by the Domain Name System (DNS). The slip argument applies only to outgoing connections; SLIP is not supported on incoming protocol translation connections. | |
| · ppp ip-address--The argument ip-address is a standard, four-part dotted decimal IP address or the name of an IP host that can be resolved by the Domain Name System (DNS). The ppp argument applies only to outgoing connections; PPP is not supported for incoming protocol translation connections. | |
| · autocommand--Enables you to specify a string for an outgoing connection. The string executes upon connection to a host. If you want to enable ARA on an outgoing connection, you need to specify autocommand arap. The autocommand option is necessary for ARA, because ARA does not use addressing, and autocommand permits you to invoke the arap string. If the string following autocommand has one or more spaces as part of the string, you must place quotation marks (" ") around the string. For example, if you specify autocommand tn3270 abracadabra, you must enclose tn3270 abracadabra in quotes. The autocommand option applies only to outgoing connections. You can issue any EXEC command and any switch or host name as an argument to the autocommand option. | |
| in-options out-options | (Optional) Incoming and outgoing connection request options. These arguments can have the following values: |
| LAT translation options: | |
| · node node-name--Connects to the specified node (node-name) that offers a service. By default, the connection is made to the highest-rated node that offers the service. | |
| · port port-name--Destination LAT port name (port-name) in the format of the remote system. This parameter is usually ignored in most timesharing systems, but is used by terminal servers that offer reverse-LAT services. | |
| · unadvertised--Prevents service advertisements from being broadcast to the network. This can be useful, for example, when you define translations for many printers, and you do not want these services advertised to other LAT terminal servers. (VMS systems will be able to connect to the service even though it is not advertised.) | |
| X.25 translation options: | |
| · cud c-u-data--Sends the specified Call User Data (CUD) text (c-u-data) as part of an outgoing call request after the protocol identification bytes. | |
| · profile profile--Sets the X.3 PAD parameters as defined in the profile created by the x29 profile command. | |
| · reverse--Provides reverse charging for X.25 on a per-call rather than a per-interface basis. Requests reverse charges on a specified X.121 address, even if the serial interface is not configured to request reverse charge calls. This is an outgoing option only. | |
| · accept-reverse--Accepts reverse charged calls on an X.121 address even if the serial interface is not configured to accept reverse charged calls. This is an incoming option only. | |
| · printer--Supports LAT and TCP printing over an X.25 network among multiple sites. Provides an "interlock mechanism" between the acceptance of an incoming X.25 connection and the opening of an outgoing LAT or TCP connection. The option causes the Cisco IOS software to delay the call confirmation of an incoming X.25 call request until the outgoing protocol connection (to TCP or LAT) has been successfully established. An unsuccessful outgoing connection attempt results in the incoming X.25 connection to the router being refused, rather than being confirmed and then cleared, which is the default behavior. Note that using this option will force the global option quiet to be applied to the translation. | |
| · pvc number--Specifies that the incoming connection (identified by the argument number) is actually a permanent virtual circuit (PVC). | |
| Telnet TCP translation options: | |
| · port number--For incoming connections, number of the port to match. The default is port 0 (any port). For outgoing connections, number of the port to use. The default is port 23 (Telnet). | |
| · binary--Negotiates Telnet binary mode on the Telnet connection. (This was the default in previous versions of the protocol translation software and is set automatically when you enter at translate command in the old format.) | |
| · stream--Performs stream processing, which enables a raw TCP stream with no Telnet control sequences. A stream connection does not process or generate any Telnet options, and prevents Telnet processing of the data stream as well. This option might be useful for connections to ports running UUCP or other non-Telnet protocols, or to ports connected to printers. For ports connected to printers using Telnet, the stream option prevents some of usual problems associated with using Telnet for printers, such as strange things happening to bare carriage returns or line feeds and echoing of data back to VMS systems. | |
| · printer--Supports LAT and X.25 printing over a TCP network among multiple sites. Causes the protocol translation software to delay the completion of an incoming Telnet connection until after the outgoing protocol connection (to LAT or X.25) has been successfully established. An unsuccessful outgoing connection attempt results in the TCP connection to the router being refused, rather than being accepted and then closed, which is the default behavior. Note that using this option will force the global option quiet to be applied to the translation. | |
| SLIP and PPP translation options: Note that these variables apply to out-options only; SLIP and PPP are not supported on incoming protocol translation connections | |
| · ip-pool--Obtain an IP address from a DHCP proxy client or a local pool. If the scope-name option is not specified, the address is obtained from a DHCP proxy client. If the scope-name option is specified, the IP address is obtained from the specified local pool. | |
| · scope-name--Specific local scope name from which to obtain an IP address. Can specify a range of IP addresses. | |
| · header-compression [passive]--Implements header compression on IP packets only. The option passive for SLIP connections permits compression on outgoing packets only if incoming TCP packets on the same virtual asynchronous interface are compressed. The default (without the passive option) permits compression on all traffic. | |
| · routing--Permits routing updates between connections. This option is required if the destination device is not on a subnet connected to one of the interfaces on the router. | |
| · keepalive number-of-seconds--Permits you to specify the interval at which keepalive packets are sent on SLIP and PPP virtual asynchronous interfaces. By default, keepalives are enabled and are sent every 10 seconds. To shut off keepalives, use a value of 0. The active keepalive interval is 1 through 32767 seconds. When you do not change from the default of 10, the keepalive interval does not appear in show running-config or show translate output. | |
| · mtu bytes--Permits you to change the maximum transmission unit (MTU) of packets that the virtual asynchronous interface supports. The default MTU is 1500 bytes on a virtual asynchronous interface. The acceptable range is 64 through 1,000,000 bytes. | |
| · ppp authentication {chap | pap}--Use CHAP or PAP authentication for PPP on virtual asynchronous interfaces. Refer to the "Terminal Lines and Modem Support" chapter in this publication for more information about enabling authentication on virtual asynchronous interfaces. | |
| · ppp use-tacacs--Enables TACACS authentication for CHAP or PAP on virtual asynchronous interfaces (for PPP only; TACACS authentication is not supported for SLIP). | |
| · ipx loopback number--Permits clients running IPX-PPP over X.25 to connect through virtual terminal (VTY) lines on the router. The loopback number option specifies the loopback interface to be created. A loopback interface must have been created and configured with a Novell IPX network number before IPX-PPP can work on the VTY line. The VTY line is assigned to the loopback interface. For more information about configuring IPX on VTY lines, refer to the section "Enable IPX-PPP on Virtual Asynchronous Interfaces" in the chapter "Configuring SLIP and PPP." | |
| global-options | (Optional) Translation options that can be used by any connection type. It can be one or more of the following: |
| · access-class number--Allows the incoming call to be used by source hosts that match the access list parameters. The argument number is the number (integer) previously assigned to an access list. This feature is supported only for incoming TCP and X.25 connections. | |
| · max-users number--Limits the number of simultaneous users of the translation to number (an integer you specify). | |
| · local--Allows Telnet protocol negotiations to not be translated. | |
| · login--Requires that the user log in before the outgoing connection is made. This type of login is specified on the VTY lines with the login command. | |
| · quiet--Suppresses printing of user-information messages. | |
| · swap--Allows X.3 parameters to be set on the router by the host originating the X.25 call, or by an X.29 profile. This allows incoming and outgoing X.25 connections to be swapped so that the device is treated like a PAD when it accepts a call. By default, the router behaves like a PAD for calls that it initiates, and behaves like an X.25 host for calls it accepts. The swap keyword allows connections from an X.25 host that wants to connect to the router, and then treats it like a PAD. For X.25-to-TCP translations only. |
x25 host name x121-address [cud call-user-data]
no x25 host name
To define a static host name-to-address mapping, use the x25 host global configuration command. Use the no form of this command to remove the host name.
| name | Host name. |
| x121-address | X.121 address. |
| cud call-user-data | (Optional) Specifies the Call User Data (CUD) field in the X.25 Call Request packet. |
x29 access-list access-list-number {permit | deny} regular-expression
no x29 access-list access-list-number
To limit access to the protocol translator from certain X.25 hosts, use the x29 access-list global configuration command. To delete an entire access list, use the no form of this command.
| access-list-number | Number of the access list. It can be a value between 1 and 199. |
| deny | Denies access and clears call requests immediately. |
| permit | Permits access to the protocol translator. |
| regular-expression | Usually the X.121 address, with or without regular expression pattern-matching characters, with which to compare for access. |
x29 profile name parameter:value [parameter:value]
To create a PAD profile script for use by the translate command, use the x29 profile global configuration command.
| name | Name of the PAD profile script. |
| parameter:value | X.3 PAD parameter number and value separated by a colon. You can specify multiple parameter-value pairs. |
|
|