Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Announcement: Try the Ask AI chatbot for answers to your technical questions about Juniper products and solutions.

close
header-navigation

Solutions

Featured solutions AI Campus and branch Data center WAN Security Service provider Cloud operator Industries
Campus and Branch

Welcome to the NOW Way to Wi-Fi

Take your networking performance to new heights with a modern, cloud-native, AI-Native architecture. Only Juniper can help you unleash the full potential of Wi-Fi 7 with our AI-Native platform for innovation.
Prepare for liftoff
Business intelligence analyst dashboard on virtual screen. Big data Graphs Charts.

AI Data Center Networking

Juniper’s AI data center solution is a quick way to deploy high performing AI training and inference networks that are the most flexible to design and easiest to manage with limited IT resources.
Find out more
Enterprise AI-Native Networking

Enterprise AI‑Native Routing

Juniper's Ai-Native routing solution delivers robust 400GbE and 800GbE capabilities for unmatched performance, reliability, and sustainability at scale.
Explore enterprise routing
Zero trust security

Ops4AI Lab

Visit our lab in Sunnyvale, CA and see our AI data center solution for yourself. You can try out your own model’s functionality and performance, too.
Visit the lab
Enterprise AI-Native Networking

Enterprise AI‑Native Routing

Juniper's Ai-Native routing solution delivers robust 400GbE and 800GbE capabilities for unmatched performance, reliability, and sustainability at scale.
Explore enterprise routing
Higher Education

Shaping Student Experiences: The NOW Way to Build Higher Education Networks

Juniper Networks CIO Sharon Mandell and a virtual summit of C-level IT leaders from prestigious institutions discuss ongoing efforts to support digital transformation on campus.
Watch now
Hand on tablet with healthcare overlay of graphics

Security in healthcare

In this IDC Spotlight report, discover how AI networking can automate and strengthen a healthcare ecosystem to defeat criminals and prevent loss. 
Gain insights into ecosystem security
Retail

The Future of In-Store Technologies

Retail experts Kevin McCartan, Senior IT Service Delivery Engineer at Musgrave; Jack Stratten of Insider Trends; and Christian Gilby, Senior Director of Product Marketing at Juniper Networks, discuss customer experiences.
See the future

Products

Wireless access Wired access SD-WAN / SASE Routing and switching Security Mist AI™ Management software Network operating system Blueprint for AI-Native Acceleration Optics
  • Operations
ACX7020 router

Juniper ACX7020 Cloud Metro Access Router

Legacy networks simply cannot meet the demands of today’s rapidly evolving metro landscape. Unlock a new generation of highly scalable architectures and automated operations with the Juniper ACX7020. 
Learn more
EX4000 Ethernet Switch

Next-gen AI-Native EX4000 line of switches

Lack of AI innovation from your current networking vendor slowing you down? Embrace Juniper’s cloud-native, AI-Native access switches that support every level and layer, across nearly every deployment.
Discover how
The Q and AI text with an image of Bob Friday and Kedar Dhuru.

The Q&AI Podcast

Delivering practical solutions and enriching discussions, this podcast series is a vital resource for those seeking an in-depth exploration of AI's transformative potential.
Catch the latest episode

Services

Services
Services AI Care

Juniper AI Care Services Revolutionize Your Service Experience

Our industry-first AI-Native services couple AIOps with our deep expertise across the full network life cycle. You can move from reactive response to proactive insight and action.
Explore AI Care Services
Services AI Data Center

Juniper AI Data Center Deployment Services Optimize Your AI Model Runs

We use our expertise and validated designs to help design, deploy, validate and tune networks, including GPUs and storage, to get the most from your AI infrastructure operation.
Learn about AI Data Center Deployment Services

Partners

Partners

Support and Documentation

Support and Documentation

Learn

About Juniper Training Events The Feed Resources Technology learning topics Thought leadership and insights
Audience raising hands up while businessman is speaking in training at the office.

Juniper certification and training news

See the latest
Ringing of the bell

All global events

See the latest
AI-native-now

AI-Native NOW event series

Explore events
AINN AI Innovation Impact Virtual Event

AI-Native NOW: AI Innovation and Impact

Register NOW
Juniper's Christina Hendrix at the head of a conference table. With the text "The NOW Way to Network" overlayed, with "NOW" emphasizing the "O" in green color.

The NOW Way to Network

Watch the video series
AI Native Now

Executive insights

Dive deep with leading experts and thought leaders on all the topics that matter most to your business, from AI to network security to driving rapid, relevant transformation for your business.
Learn more
A keynote speaker giving a presentation at a conference. There are dozens of people sitting around them. The presentation is displayed via projector on all the walls in the room.

Leadership voices

Juniper Networks’ leaders operate on the front lines of creating the network of the future. Take a look around to see what’s on their minds.
Watch now
Bob Friday and Jessica Garrison speaking

Bob Friday Talks

Join Bob as he ventures into all the knowns -- and -- unknowns -- of AI.
Catch the latest episode
Documentation
Menu
License Guide
Quick Starts
Validated Designs
Explore Pathfinder Apps
CLI Explorer
Feature Explorer
Hardware Compatibility Tool
Port Checker
Browse All
Collapse

Pathfinder Apps

All

By Software

By Hardware

Learn More
Pathfinder HomeCLI ExplorerCompliance AdvisorFeature ExplorerHardware Compatibility ToolJunos XML API ExplorerJunos YANG Data Model ExplorerPort CheckerPower CalculatorSNMP MIB ExplorerSystem Log Explorer
CLI ExplorerFeature ExplorerJunos XML API ExplorerJunos YANG Data Model ExplorerSNMP MIB ExplorerSystem Log Explorer
Compliance AdvisorFeature ExplorerHardware Compatibility ToolPort CheckerPower Calculator
Home Documentation Junos OS User Access and Authentication Administration Guide for Junos OS Remote Access Management

User Access and Authentication Administration Guide for Junos OS

Junos OS Junos OS Evolved
keyboard_arrow_up
close
keyboard_arrow_left
User Access and Authentication Administration Guide for Junos OS
Table of Contents Expand all
list Table of Contents
file_download PDF
{ "lLangCode": "en", "lName": "English", "lCountryCode": "us", "transcode": "en_US" }
English
ON THIS PAGE
keyboard_arrow_right

USB Modems for Remote Management of Security Devices

date_range 30-Nov-23
arrow_backward
arrow_forward

Junos OS allows the use of USB modems for remote management on SRX Series Firewall. You can use Telnet or SSH to connect to the device from a remote location through two modems over a telephone network. For more information, read this topic.

USB Modem Interface Overview

Juniper Networks SRX Series Firewalls support the use of USB modems for remote management. You can use Telnet or SSH to connect to the device from a remote location through two modems over a telephone network. The USB modem is connected to the USB port on the device, and a second modem is connected to a remote management device such as a PC or laptop computer.

Note:

USB modems are no longer supported for dial backup on SRX300, SRX320, SRX340, SRX345, SRX380, and SRX550HM devices.

You can configure your device to fail over to a USB modem connection when the primary Internet connection experiences interruption.

A USB modem connects to a device through modem interfaces that you configure. The device applies its own modem AT commands to initialize the attached modem. Modem setup requires that you connect and configure the USB modem at the device and the modem at the user end of the network.

You use either the J-Web configuration editor or CLI configuration editor to configure the USB modem and its supporting dialer interfaces.

Note:

Low-latency traffic such as VoIP traffic is not supported over USB modem connections.

Note:

We recommend using a US Robotics USB 56k V.92 Modem, model number USR Model 5637.

USB Modem Interfaces

You configure two types of interfaces for USB modem connectivity:

  • A physical interface which uses the naming convention umd0. The device creates this interface when a USB modem is connected to the USB port.

  • A logical interface called the dialer interface. You use the dialer interface, dln, to configure dialing properties for USB modem connections. The dialer interface can be configured using Point-to-Point Protocol (PPP) encapsulation. You can also configure the dialer interface to support authentication protocols—PPP Challenge Handshake (CHAP) or Password Authentication Protocol (PAP). You can configure multiple dialer interfaces for different functions on the device. After configuring the dialer interface, you must configure a backup method such as a dialer backup, a dialer filter, or a dialer watch.

The USB modem provides a dial-in remote management interface, and supports dialer interface features by sharing the same dial pool as a dialer interface. The dial pool allows the logical dialer interface and the physical interface to be bound together dynamically on a per-call basis. You can configure the USB modem to operate either as a dial-in console for management or as a dial-in WAN backup interface. Dialer pool priority has a range from 1 to 255, with 1 designating the lowest priority interfaces and 255 designating the highest priority interfaces.

Dialer Interface Rules

The following rules apply when you configure dialer interfaces for USB modem connections:

  • The dialer interface must be configured to use PPP encapsulation. You cannot configure Cisco High-Level Data Link Control (HDLC) or Multilink PPP (MLPPP) encapsulation on dialer interfaces.

  • The dialer interface cannot be configured as a constituent link in a multilink bundle.

  • The dialer interface can perform backup, dialer filter, and dialer watch functions, but these operations are mutually exclusive. You can configure a single dialer interface to operate in only one of the following ways:

    • As a backup interface—for one primary interface

    • As a dialer filter

    • As a dialer watch interface

The backup dialer interfaces are activated only when the primary interface fails. USB modem backup connectivity is supported on all interfaces except lsq-0/0/0.

The dial-on-demand routing backup method allows a USB modem connection to be activated only when network traffic configured as an “interesting packet” arrives on the network. Once the network traffic is sent, an inactivity timer is triggered and the connection is closed. You define an interesting packet using the dialer filter feature of the device. To configure dial-on-demand routing backup using a dialer filter, you first configure the dialer filter and then apply the filter to the dialer interface.

Dialer watch is a backup method that integrates backup dialing with routing capabilities and provides reliable connectivity without relying on a dialer filter to trigger outgoing USB modem connections. With dialer watch, the device monitors the existence of a specified route. If the route disappears, the dialer interface initiates the USB modem connection as a backup connection.

How the Device Initializes USB Modems

When you connect the USB modem to the USB port on the device, the device applies the modem AT commands configured in the init-command-string command to the initialization commands on the modem.

If you do not configure modem AT commands for the init-command-string command, the device applies the following default sequence of initialization commands to the modem: AT S7=45 S0=0 V1 X4 &C1 E0 Q0 &Q8 %C0. Table 1 describes the commands. For more information about these commands, see the documentation for your modem.

Table 1: Default Modem Initialization Commands

Modem Command

Description

AT

Attention. Informs the modem that a command follows.

S7=45

Instructs the modem to wait 45 seconds for a telecommunications service provider (carrier) signal before terminating the call.

S0=0

Disables the auto answer feature, whereby the modem automatically answers calls.

V1

Displays result codes as words.

&C1

Disables reset of the modem when it loses the carrier signal.

E0

Disables the display on the local terminal of commands issued to the modem from the local terminal.

Q0

Enables the display of result codes.

&Q8

Enables Microcom Networking Protocol (MNP) error control mode.

%C0

Disables data compression.

When the device applies the modem AT commands in the init-command-string command or the default sequence of initialization commands to the modem, it compares them to the initialization commands already configured on the modem and makes the following changes:

  • If the commands are the same, the device overrides existing modem values that do not match. For example, if the initialization commands on the modem include S0=0 and the device’s init-command-string command includes S0=2, the device applies S0=2.

  • If the initialization commands on the modem do not include a command in the device’s init-command-string command, the device adds it. For example, if the init-command-string command includes the command L2, but the modem commands do not include it, the device adds L2 to the initialization commands configured on the modem.

Note:

On SRX210 devices, the USB modem interface can handle bidirectional traffic of up to 19 Kbps. On oversubscription of this amount (that is, bidirectional traffic of 20 Kbps or above), keepalives do not get exchanged, and the interface goes down. (Platform support depends on the Junos OS release in your installation.)

USB Modem Configuration Overview

Note:

USB modems are no longer supported for dial backup on SRX300, SRX320, SRX340, and SRX345 devices.

Before you begin:

  1. Install device hardware. For more information, see the Getting Started Guide for your device.
  2. Establish basic connectivity. For more information, see the Getting Started Guide for your device.
  3. Order a US Robotics USB 56k V.92 Modem, model number USR Model 5637 (http://www.usr.com/).
  4. Order a public switched telephone network (PSTN) line from your telecommunications service provider. Contact your service provider for more information.
  5. Connect the USB modem to the device's USB port.
    Note:

    When you connect the USB modem to the USB port on the device, the USB modem is initialized with the modem initialization string configured for the USB modem interface on the device.

    1. Plug the modem into the USB port.
    2. Connect the modem to your telephone network.

Suppose you have a branch office router and a head office router each with a USB modem interface and a dialer interface. This example shows you how to establish a backup connection between the branch office and head office routers. See Table 2 for a summarized description of the procedure.

Table 2: Configuring Branch Office and Head Office Routers for USB Modem Backup Connectivity

Router Location

Configuration Requirement

Procedure

Branch Office

Configure the logical dialer interface on the branch office router for USB modem dial backup.

To configure the logical dialer interface, see Example: Configuring a USB Modem Interface.

Configure the dialer interface dl0 on the branch office router using one of the following backup methods:

  • Configure the dialer interface dl0 as the backup interface on the branch office router's primary T1 interface t1-1/0/0.

  • Configure a dialer filter on the branch office router's dialer interface.

  • Configure a dialer watch on the branch office router's dialer interface.

Configure the dialer interface using one of the following backup methods:

Head Office

Configure dial-in on the dialer interface dl0 on the head office router.

To configure dial-in on the head office router, see Example: Configuring a Dialer Interface for USB Modem Dial-In.

If the dialer interface is configured to accept only calls from a specific caller ID, the device matches the incoming call's caller ID against the caller IDs configured on its dialer interfaces. If an exact match is not found and the incoming call's caller ID has more digits than the configured caller IDs, the device performs a right-to-left match of the incoming call's caller ID with the configured caller IDs and accepts the incoming call if a match is found. For example, if the incoming call's caller ID is 4085321091 and the caller ID configured on a dialer interface is 5321091, the incoming call is accepted. Each dialer interface accepts calls from only callers whose caller IDs are configured on it.

See Table 3 for a list of available incoming map options.

Table 3: Incoming Map Options

Option

Description

accept-all

Dialer interface accepts all incoming calls.

You can configure the accept-all option for only one of the dialer interfaces associated with a USB modem physical interface. The dialer interface with the accept-all option configured is used only if the incoming call's caller ID does not match the caller IDs configured on other dialer interfaces.

caller

Dialer interface accepts calls from a specific caller ID. You can configure a maximum of 15 caller IDs per dialer interface.

The same caller ID must not be configured on different dialer interfaces. However, you can configure caller IDs with more or fewer digits on different dialer interfaces. For example, you can configure the caller IDs 14085551515, 4085551515, and 5551515 on different dialer interfaces.

You configure dialer interfaces to support PAP. PAP allows a simple method for a peer to establish its identity using a two-way handshake during initial link establishment. After the link is established, an ID and password pair are repeatedly sent by the peer to the authenticator until authentication is acknowledged or the connection is terminated.

Example: Configuring a USB Modem Interface

This example shows how to configure a USB modem interface for dial backup.

Note:

USB modems are no longer supported for dial backup on SRX300, SRX320, SRX340, and SRX345 devices.

Requirements

No special configuration beyond device initialization is required before configuring this feature.

Overview

In this example, you create an interface called as umd0 for USB modem connectivity and set the dialer pool priority to 25. You also configure a modem initialization string to autoanswer after a specified number of rings. The default modem initialization string is AT S7=45 S0=0 V1 X4 &C1 E0 Q0 &Q8 %C0. The modem command S0=0 disables the modem from autoanswering the calls. Finally, you set the modem to act as a dial-in WAN backup interface.

Configuration

Procedure

CLI Quick Configuration

To quickly configure this example, copy the following command, paste it into a text file, remove any line breaks, change any details necessary to match your network configuration, copy and paste the command into the CLI at the [edit] hierarchy level, and then enter commit from configuration mode.

content_copy zoom_out_map
set interfaces umd0 dialer-options pool usb-modem-dialer-pool priority 25
set modem-options init-command-string "ATS0=2 \n" dialin routable
Step-by-Step Procedure

The following example requires you to navigate various levels in the configuration hierarchy. For instructions on how to do that, see Using the CLI Editor in Configuration Mode in the CLI User Guide.

To configure a USB modem interface for dial backup:

  1. Create an interface.

    content_copy zoom_out_map
    [edit]
user@host# edit interfaces umd0

  2. Set the dialer options and priority.

    content_copy zoom_out_map
    [edit interfaces umd0]
user@host# set dialer-options pool usb-modem-dialer-pool priority 25

  3. Specify the modem options.

    content_copy zoom_out_map
    [edit interfaces umd0]
user@host# set modem-options init-command-string "ATS0=2 \n"

  4. Set the modem to act as a dial-in WAN backup interface.

    content_copy zoom_out_map
    [edit interfaces umd0]
user@host# set modem-options dialin routable
Results

From configuration mode, confirm your configuration by entering the show interface umd0 command. If the output does not display the intended configuration, repeat the configuration instructions in this example to correct it.

content_copy zoom_out_map
[edit]
    user@host# show interface umd0
modem-options {
init-command-string "ATS0=2 \n";
    dialin routable;
}
dialer-options {
    pool usb-modem-dialer-pool priority 25;
}

If you are done configuring the device, enter commit from configuration mode.

Verification

Confirm that the configuration is working properly.

Verifying the Configuration

Purpose

Verify a USB modem interface for dial backup.

Action

From configuration mode, enter the show interfaces umd0 extensive command. The output shows a summary of interface information and displays the modem status.

content_copy zoom_out_map
Physical interface:   umd0, Enabled, Physical link is Up
Interface index:      64, SNMP ifIndex: 33, Generation: 1
  Type: Async-Serial, Link-level type: PPP-Subordinate, MTU: 1504, 
Clocking: Unspecified, Speed: MODEM
  Device flags   : Present Running
  Interface flags: Point-To-Point SNMP-Traps Internal: 0x4000
  Link flags     : None
  Hold-times     : Up 0 ms, Down 0 ms
  Last flapped   : Never
  Statistics last cleared: Never
 Traffic statistics:
   Input  bytes  :                21672
   Output bytes  :                22558
   Input  packets:                 1782
   Output packets:                 1832
  Input errors:
    Errors: 0, Drops: 0, Framing errors: 0, Runts: 0, Giants: 0, Policed discards: 0, 
Resource errors: 0
  Output errors:
    Carrier transitions: 63, Errors: 0, Drops: 0, MTU errors: 0, Resource errors: 0
  MODEM status:
    Modem type                    : LT V.92 1.0 MT5634ZBA-USB-V92 Data/Fax Modem 
(Dual Config) Version 2.27m
    Initialization command string : ATS0=2
    Initialization status         : Ok
    Call status                   : Connected to 4085551515
    Call duration                 : 13429 seconds
    Call direction                : Dialin
    Baud rate                     : 33600 bps
    Most recent error code        : NO CARRIER

  Logical interface umd0.0 (Index 2) (SNMP ifIndex 34) (Generation 1)
    Flags: Point-To-Point SNMP-Traps Encapsulation: PPP-Subordinate

Example: Configuring a Dialer Interface

This example shows how to configure a logical dialer interface for an SRX300, SRX320, SRX340, or SRX345 device.

Requirements

Before you begin:

  • Install device hardware and establish basic connectivity. See the Getting Started Guide for your device.

  • Order a US Robotics USB 56k V.92 Modem, model number USR Model 5637, from US Robotics (http://www.usr.com/).

  • Order a dial-up modem for the PC or laptop computer at the remote location from where you want to connect to the device.

  • Order a PSTN line from your telecommunications service provider. Contact your service provider.

Overview

In this example, you configure a logical dialer interface called dl0 to establish USB connectivity. You can configure multiple dialer interfaces for different functions on the device. You add a description to differentiate among different dialer interfaces. For example, this modem is called USB-modem-remote-management. Configure PPP encapsulation and set the logical unit as 0. You then specify the name of the dialer pool as usb-modem-dialer-pool and set the source and destination IP addresses as 172.20.10.2, and 172.20.10.1, respectively.

Note:

You cannot configure Cisco High-Level Data Link Control (HDLC) or Multilink PPP (MLPPP) encapsulation on dialer interfaces used in USB modem connections.

Note:

If you configure multiple dialer interfaces, ensure that the same IP subnet address is not configured on different dialer interfaces. Configuring the same IP subnet address on multiple dialer interfaces can result in inconsistency in the route and packet loss. The device might route packets through another dialer interface with the IP subnet address instead of through the dialer interface to which the USB modem call is mapped.

Configuration

Procedure

CLI Quick Configuration

To quickly configure this example, copy the following commands, paste them into a text file, remove any line breaks, change any details necessary to match your network configuration, copy and paste the commands into the CLI at the [edit] hierarchy level, and then enter commit from configuration mode.

content_copy zoom_out_map
set interfaces dl0 description USB-modem-remote-management  encapsulation ppp
set interfaces dl0 unit 0 dialer-options pool usb-modem-dialer-pool 
set interfaces dl0 unit 0 family inet address 172.20.10.2 destination 172.20.10.1
Step-by-Step Procedure

The following example requires you to navigate various levels in the configuration hierarchy. For instructions on how to do that, see Using the CLI Editor in Configuration Mode in the CLI User Guide.

To configure a logical dialer interface for the device:

  1. Create an interface.

    content_copy zoom_out_map
    [edit]
user@host# set interfaces dl0

  2. Add a description and configure PPP encapsulation.

    content_copy zoom_out_map
    [edit interfaces dl0]
user@host# set description USB-modem-remote-management 
user@host# set encapsulation ppp

  3. Create the logical unit.

    Note:

    The logical unit number must be 0.

    content_copy zoom_out_map
    [edit interfaces dl0]
user@host# set unit 0

  4. Configure the name of the dialer pool to use for USB modem connectivity.

    content_copy zoom_out_map
    [edit interfaces dl0 unit 0]
user@host# set dialer-options pool usb-modem-dialer-pool

  5. Configure source and destination IP addresses for the dialer interface.

    content_copy zoom_out_map
    [edit interfaces dl0 unit 0]
user@host# set family inet address 172.20.10.2 destination 172.20.10.1
Results

From configuration mode, confirm your configuration by entering the show interfaces dl0 command. If the output does not display the intended configuration, repeat the configuration instructions in this example to correct it.

content_copy zoom_out_map
[edit]
user@host# show interfaces dl0
description USB-modem-remote-management;
    encapsulation ppp;
    unit 0 {
    family inet {
        address 172.20.10.2/32 {
        destination 172.20.10.1;
    }
    }
    dialer-options {
        pool usb-modem-dialer-pool;
    }
}

If you are done configuring the device, enter commit from configuration mode.

Verification

Confirm that the configuration is working properly.

Verifying a Dialer Interface

Purpose

Verify that the dialer interface has been configured.

Action

From configuration mode, enter the show interfaces dl0 extensive command. The output shows a summary of dialer interface information.

content_copy zoom_out_map
Physical interface: dl0, Enabled, Physical link is Up
  Interface index: 128, SNMP ifIndex: 24, Generation: 129
  Type: 27, Link-level type: PPP, MTU: 1504, Clocking: Unspecified, Speed: Unspecified
  Device flags   : Present Running
  Interface flags: SNMP-Traps
  Link type      : Full-Duplex
  Link flags     : Keepalives
  Physical info  : Unspecified
  Hold-times     : Up 0 ms, Down 0 ms
  Current address: Unspecified, Hardware address: Unspecified
  Alternate link address: Unspecified
  Last flapped   : Never
  Statistics last cleared: Never
  Traffic statistics:
   Input  bytes  :                13859                    0 bps
   Output bytes  :                    0                    0 bps
   Input  packets:                  317                    0 pps
   Output packets:                    0                    0 pps
  Input errors:
    Errors: 0, Drops: 0, Framing errors: 0, Runts: 0, Giants: 0, Policed discards: 0, 
Resource errors: 0
  Output errors:
    Carrier transitions: 0, Errors: 0, Drops: 0, MTU errors: 0, Resource errors: 0

  Logical interface dl0.0 (Index 70) (SNMP ifIndex 75) (Generation 146)
    Description: USB-modem-remote-management
    Flags: Point-To-Point SNMP-Traps 0x4000 LinkAddress 23-0 Encapsulation: PPP
    Dialer:  
      State: Active, Dial pool: usb-modem-dialer-pool
      Dial strings: 220
      Subordinate interfaces: umd0 (Index 64)
      Activation delay: 0, Deactivation delay: 0
      Initial route check delay: 120
      Redial delay: 3
      Callback wait period: 5
      Load threshold: 0, Load interval: 60
    Bandwidth: 115200
    Traffic statistics:
     Input  bytes  :                24839
     Output bytes  :                17792
     Input  packets:                  489
     Output packets:                  340
    Local statistics:
     Input  bytes  :                10980
     Output bytes  :                17792
     Input  packets:                  172
     Output packets:                  340
    Transit statistics:
     Input  bytes  :                13859                    0 bps
     Output bytes  :                    0                    0 bps
     Input  packets:                  317                    0 pps
     Output packets:                    0                    0 pps
  LCP state: Opened 
  NCP state: inet: Opened, inet6: Not-configured, iso: Not-configured, 
mpls: Not-configured
  CHAP state: Success
    Protocol inet, MTU: 1500, Generation: 136, Route table: 0
      Flags: None   
      Addresses, Flags: Is-Preferred Is-Primary
        Destination: 172.20.10.1, Local: 172.20.10.2, Broadcast: Unspecified, 
Generation: 134

Example: Configuring a Dialer Interface for USB Modem Dial-In

This example shows how to configure a dialer interface for USB modem dial-in.

Note:

USB modems are no longer supported for dial-in to a dialer interface on SRX300, SRX320, SRX340, and SRX345 devices.

Requirements

No special configuration beyond device initialization is required before configuring this feature.

Overview

To enable connections to the USB modem from a remote location, you must configure the dialer interfaces set up for USB modem use to accept incoming calls. You can configure a dialer interface to accept all incoming calls or accept only calls from one or more caller IDs.

If the dialer interface is configured to accept only calls from a specific caller ID, the system matches the incoming call's caller ID against the caller IDs configured on its dialer interfaces. If an exact match is not found and the incoming call's caller ID has more digits than the configured caller IDs, the system performs a right-to-left match of the incoming call's caller ID with the configured caller IDs and accepts the incoming call if a match is found. For example, if the incoming call's caller ID is 4085550115 and the caller ID configured on a dialer interface is 5550115, the incoming call is accepted. Each dialer interface accepts calls from only callers whose caller IDs are configured on it.

You can configure the following incoming map options for the dialer interface:

  • accept-all—Dialer interface accepts all incoming calls.

    You can configure the accept-all option for only one of the dialer interfaces associated with a USB modem physical interface. The device uses the dialer interface with the accept-all option configured only if the incoming call's caller ID does not match the caller IDs configured on other dialer interfaces.

  • caller—Dialer interface accepts calls from a specific caller ID— for example, 4085550115. You can configure a maximum of 15 caller IDs per dialer interface.

    The same caller ID must not be configured on different dialer interfaces. However, you can configure caller IDs with more or fewer digits on different dialer interfaces. For example, you can configure the caller IDs 14085550115, 4085550115, and 5550115 on different dialer interfaces.

In this example, you configure the incoming map option as caller 4085550115 for dialer interface dl0.

Configuration

CLI Quick Configuration

To quickly configure this example, copy the following command, paste it into a text file, remove any line breaks, change any details necessary to match your network configuration, copy and paste the command into the CLI at the [edit] hierarchy level, and then enter commit from configuration mode.

content_copy zoom_out_map
set interfaces dl0 unit 0 dialer-options incoming-map caller 4085550115

Procedure

Step-by-Step Procedure

To configure a dialer interface for USB modem dial-in:

  1. Select a dialer interface.

    content_copy zoom_out_map
    [edit]
user@host# edit interfaces dl0

  2. Configure the incoming map options.

    content_copy zoom_out_map
    [edit]
user@host# edit unit 0 dialer-options incoming-map caller 4085551515

  3. If you are done configuring the device, commit the configuration.

    content_copy zoom_out_map
    [edit]
user@host# commit

Verification

To verify the configuration is working properly, enter the show interface dl0 command.

Configuring a Dial-Up Modem Connection Remotely

To remotely connect to the USB modem connected to the USB port on the device, you must configure a dial-up modem connection on the PC or laptop computer at your remote location. Configure the dial-up modem connection properties to disable IP header compression.

To configure a dial-up modem connection remotely:

  1. At your remote location, connect a modem to a management device such as a PC or laptop computer.
  2. Connect the modem to your telephone network.
  3. On the PC or laptop computer, select Start>Settings>Control Panel>Network Connections. The Network Connections page appearts.
  4. Click Create a new connection. The New Connection Wizard appears.
  5. Click Next. The New Connection Wizard: Network Connection Type page appears.
  6. Select Connect to the network at my workplace, and then click Next.

    The New Connection Wizard: Network Connection page appears.

  7. Select Dial-up connection, and then click Next. The New Connection Wizard: Connection Name page appears.
  8. In the Company Name box, type the dial-up connection name, for example USB-modem-connect. Then, click Next. The New Connection Wizard: Phone Number to Dial page appears.
  9. In the Phone number box, type the telephone number of the PSTN line connected to the USB modem at the device end.
  10. Click Next twice, and then click Finish. The Connect USB-modem-connect page appears.
  11. If CHAP is configured on the dialer interface used for the USB modem interface at the device end, type the username and password configured in the CHAP configuration in the User name and Password boxes.
  12. Click Properties. The USB-modem-connect Properties page appears.
  13. In the Networking tab, select Internet Protocol (TCP/IP), and then click Properties. The Internet Protocol (TCP/IP) Properties page appears.
  14. Click Advanced. The Advanced TCP/IP Settings page appears.
  15. Clear the Use IP header compression check box.

Connecting to the Device Remotely

To remotely connect to the device through a USB modem connected to the USB port on the device:

  1. On the PC or laptop computer at your remote location, select Start>Settings>Control Panel>Network Connections. The Network Connections page appears.
  2. Double-click the USB-modem-connect dial-up connection. The Connect USB-modem-connect page appears.
  3. Click Dial to connect to the Juniper Networks device.

    When the connection is complete, you can use Telnet or SSH to connect to the device.

Modifying USB Modem Initialization Commands

Note:

These instructions use Hayes-compatible modem commands to configure the modem. If your modem is not Hayes-compatible, see the documentation for your modem and enter equivalent modem commands. Applies to SRX300, SRX320, SRX340, SRX345 devices.

You can use the CLI configuration editor to override the value of an initialization command configured on the USB modem or configure additional commands for initializing USB modems.

Note:

If you modify modem initialization commands when a call is in progress, the new initialization sequence is applied on the modem only when the call ends.

You can configure the following modem AT commands to initialize the USB modem:

  • The command S0=2 configures the modem to automatically answer calls on the second ring.

  • The command L2 configures medium speaker volume on the modem.

You can insert spaces between commands.

When you configure modem commands in the CLI configuration editor, you must follow these conventions:

  • Use the newline character \n to indicate the end of a command sequence.

  • Enclose the command string in double quotation marks.

You can override the value of the S0=0 command in the initialization sequence configured on the modem and add the L2 command.

To modify the initialization commands on a USB modem:

  1. Configure the modem AT commands to initialize the USB modem.
    content_copy zoom_out_map
    [edit interfaces umd0]
user@host# set modem-options init-command-string "AT S0=2 L2 \n"
  2. If you are done configuring the device, enter commit from configuration mode.

Resetting USB Modems

For SRX300, SRX320, SRX340, and SRX345 devices, if the USB modem does not respond, you can reset the modem.

CAUTION:

If you reset the modem when a call is in progress, the call is terminated.

To reset the USB modem, in operational mode, enter the following command:

content_copy zoom_out_map
user@host> request interface modem reset umd0

Related Documentation

arrow_backward PREVIOUS Remote Access Overview
NEXT arrow_forward Secure Web Access for Remote Management
footer-navigation

© 1999 - 2025 Juniper Networks, Inc. All rights reserved.

Scroll to top