Black Box WRT4000-ANT User Manual Download Page 99 | Manualshive

Page: 99 / 144

background image

724-746-5500 | blackbox.com

Page 99

Chapter 8: Virtual Private Networks

Extensible Authentication Protocol

The Extensible Authentication Protocol (EAP) defines message formats used in IKEv2. EAP for IKEv2 is described in IETF RFC 5106.

NOTE: EAP is a format protocol; it is not a transmission protocol. IKEv2 defines the way that it transmits the EAP format.

EAP Authentication

IKEv2 uses EAP in providing authentication and establishing keys. EAP supports authentication for the following:

• Password: A simple character string, shared by both sides of the connection. Passwords are usually generated by humans, some-

times via algorithms, sometimes not.

• Symmetric key: A complex character string, shared by both sides of the connection. Symmetric keys are usually generated by

computer-driven algorithms.

• Asymmetric key pair: A complex set of keys. The public key is available to anyone; the private key is known only to the key

owner (generally the recipient in any single exchange). An asymmetric key pair is generated by the key owner, using a
hash-encryption technique.

EAP Exchanges

An exchange pair may use a different authentication mechanism in each direction. Table 5-10 lists the expected combinations for
IKEv2 EAP key exchanges.

Table 8-10. Standard EAP Combinations for IKEv2 Authentication.

IKEv2 Initiator Sends:

IKEv2 Responder Sends:

one part of asymmetric key pair counterpart in asymmetric key pair, or password, or symmetric key
symmetric key

symmetric key

MOBIKE

The WRT4000 Series Cellular Wireless Router includes support for the IKEv2 Mobility and Multihoming Protocol (MOBIKE,
described in IETF RFC 4555). MOBIKE permits IP addresses to change dynamically—for example, as a mobile client moves during
an IKEv2 VPN connection.

When one side of the VPN connection moves, the endpoints use INFORMATIONAL exchange pairs to indicate a change in that
side’s IP address, without interrupting the connection. MOBIKE supports this by updating the information for the tunnel headers,
and leaves the information inside the tunnel unchanged.

The parties in the connection usually do not experience any interruption in service—and, if there is an interruption, the connec-
tion is re-established quickly; the call is not dropped.

CAUTION: MOBIKE does not currently support simultaneous movement of both parties in the connection. It is advised that only

one party in the VPN connection be mobile, and that the other party remain in a fixed location (such as an office).

The WRT4000 Series Cellular Wireless Router does not travel, so MOBIKE is used only for the remote device in the connection.

Sample IKEv2 Exchanges

This section provides examples of basic exchanges in IKEv2.

NOTE: Each request requires a response; so exchanges are always in pairs.

See the following:

• Overview of IKEv2 Exchanges

• Detail of IKEv2 Exchanges

«
...
97
98
99
100
101
...
»

Summary of Contents for WRT4000-ANT

Page 1: ...4001A WRT4011A WRT4001A DC WRT4000 DIN WRT4002A WRT4012A WRT4002A DC WRT4000 PM WRT4003A WRT4013A WRT4003A DC WRT4000 ANT WRT4004A WRT4014A WRT4004A DC WRT4000 ANT KIT Order toll free in the U S Call...

Page 2: ...Box You ll be live with one of our technical experts in less than 60 seconds Trademarks Used in this Manual Black Box and the Double Diamond logo are registered trademarks of BB Technologies Inc AT T...

Page 3: ...wn expense will be required to take whatever measures may be necessary to correct the interference Changes or modifications not expressly approved by the party responsible for compliance could void th...

Page 4: ...n el flujo de aire por los orificios de ventilaci n 10 El equipo el ctrico deber ser situado fuera del alcance de fuentes de calor como radiadores registros de calor estufas u otros aparatos incluyend...

Page 5: ...Wireless Router 33 4 1 2 Logging In 33 4 1 3 Managing the Browser Display 36 4 2 Navigating the WRT4000 Series Cellular Wireless Router s Management System 37 4 2 1 Saving or Discarding Changes 37 4...

Page 6: ...s 94 8 3 2 1 Tunnel Initiation 94 8 3 2 2 Tunnel Termination 94 8 3 2 3 Tunnel Passthrough 95 8 3 3 Tunnel Support 96 8 3 3 1 Tunnel Sharing 96 8 3 3 2 Tunnel Switching 96 8 3 3 3 Split Tunneling 97 8...

Page 7: ...P Synchronous PPP MLPPP PPPoE Selective Layer Encryption SLE for VPN optimization patented IP IP versions 4 and 6 IP routiing RIP v1 v2 OSPF BGP or static routing DHCP client server BootP Relay IP QoS...

Page 8: ...ure Tolerance Operating Industrial Hardened 40 to 185 F 40 to 85 C Extended Temperature Commercial 4 to 149 F 20 to 65 C Humidity 5 to 95 noncondensing Power DC models 24 VDC 13 watts maximum AC model...

Page 9: ...sion module installed in one of the expansion slots Up to two antennas handle 3G 4G LTE cellular and advanced Wi Fi There is no cooling fan or other moving parts All models are built on the same hardw...

Page 10: ...ndustrial versions with redundant power sources include 120 VAC or 24 VDC Provides service over any port any network at any time including cellular 3G 4G LTE and Ethernet Automatic failover with traff...

Page 11: ...y 1 to 2 antennas Quick Start Guide The full user manual installation guide can be downloaded from the Black Box Web site To download from the Web site 1 Go to www blackbox com 2 Enter the part number...

Page 12: ...ustrial routers part numbers WRT4001A WRT4004A and WRT4001A DC WRT4004A DC have one dual port serial module pre installed in one of the empty expansion slots The commerical models WRT4011A WRT4014A do...

Page 13: ...rt eth 0 Ethernet LAN ports eth 1 Figure 2 3 WRT4000 Series Router back panel AC power versions WRT4001A WRT4004A WRT4011A WRT4014A Auxiliary antenna port for internal wireless module DC power connect...

Page 14: ...ators on the Router Each group of 4 LEDs indicates the status of a connection to a cellular wireless network and the strength of signals from that network The number of LEDs that light up 1 to 4 light...

Page 15: ...wireless port has not been configured Off Not activated The device has not been authenticated for a wireless carrier and is not receiving a signal 2 4 4 Dual Serial Port Module The industrial routers...

Page 16: ...t Figure 2 7 shows the pin locations on an RJ 45 Ethernet port Table 2 6 lists the pin configuration for the WRT4000 Series Router s 10 100BASE T Ethernet ports NOTE These ports are present on both in...

Page 17: ...use 2 JavaScript must be enabled in the Web browser 3 The embedded cellular module must have a cellular wireless network account and a Subscriber Identity Module SIM for that account Order each SIM fr...

Page 18: ...m the selected GSM or LTE carrier The carrier provides a SIM with the carrier s chip NOTE The WRT4000 Series Router is not a traveling device so you will not need SIMs for different countries However...

Page 19: ...t for embedded GSM or LTE module SIM socket not used Edge of board against back of chassis Figure 3 4 SIM on Bottom of WRT4000 Series Router Motherboard 6 A SIM socket might have a latch to unlock or...

Page 20: ...he SIM holder s door is locked the flanges of the lock clear the cutouts Figure 3 7 Unlocked SIM Socket b Swing the hinged door up Figure 3 8 so that the SIM socket is open Figure 3 9 and Figure 3 10...

Page 21: ...pty SIM socket side view Figure 3 12 Fully opened empty SIM socket top view c If a SIM from a former provider is in the door slide it out Figure 3 13 Be careful not to touch the contact pad Put the ol...

Page 22: ...one way that allows the SIM door to close Figure 3 14 Front of SIM Sample Logo CAUTION Be careful not to touch the contact pad on the back of the SIM see Figure 3 15 Figure 3 15 Contact pad on back o...

Page 23: ...re 3 17 SIM Partially Inserted into the SIM Socket s Door Figure 3 18 SIM Fully Inserted into the SIM Socket s Door f Gently swing the door shut Figure 3 19 through Figure 3 21 Figure 3 19 Closing the...

Page 24: ...ll not match the beveled corner in the SIM socket and the door will not close Figure 3 22 and Figure 3 23 If the SIM is positioned incorrectly the SIM socket s door will not close Figure 3 22 SIM in I...

Page 25: ...can close Figure 3 25 Locking the SIM Socket s Door Top View When the SIM socket s door is locked you will not see the flanges of the lock because they are under the socket s catches Figure 3 26 Locke...

Page 26: ...tion of an WRT4000 Series Router chassis Two cellular wireless antennas are on magnetic mounts Two 10 foot long cables connect the antennas to the WRT4000 Series Router s MAIN 1 and AUX 1antenna ports...

Page 27: ...AC power it is important to follow these steps to connect the chassis to its power sources in the proper order If you received a chassis that uses DC input power part numbers WRT4001A DC WRT4004A DC t...

Page 28: ...9 to prepare the chassis for its DC power connection NOTE The DC power source must supply 24 VDC 6 Make sure the WRT4000 Series Router chassis is disconnected from all power sources 7 Do the followin...

Page 29: ...les and through the other hole in the shell bottom d Put the end of the cable tie through its lock and pull the cable tie snug around the cables NOTE The lock is designed so that the cable may move in...

Page 30: ...e 3 38 Closed Shell Assembly h If you need to take the case apart grasp each flange of the top section and gently pull them away from the latches on the bottom section Then pull the top section off th...

Page 31: ...her end of the DC power cable to a 48 volt DC power source NOTE The power source must supply 24 VDC CAUTION The DC power source must match the DC input power rating indicated on the WRT4000 Series Rou...

Page 32: ...you installed a new SIM GSM or LTE card use the initialization stream provided by the GSM or LTE carrier to activate the SIM in the carrier network This activation can be set up in the WRT4000 Series...

Page 33: ...anagement system connect the management terminal to one of the Ethernet LAN ports on the WRT4000 Series Cellular Wireless Router s rear panel Figure 4 1 1 We recommend using the Web interface to manag...

Page 34: ...or something similar CAUTION Do not block cookies for the WRT4000 Series Cellular Wireless Router Otherwise you might not be able to manage the router The browser navigates to the specified IP address...

Page 35: ...n is displayed Figure 4 5 This screen provides an overview of the router s status NOTE If the WRT4000 Series Cellular Wireless Router s WAN port is connected to a network you may see the WAN port s as...

Page 36: ...ction 4 2 Navigating the WR4000 Router s Management System b To review the WRT4000 Series Cellular Wireless Router s settings and performance see Chapter 6 Monitoring the WRT4000 Series Cellular Wirel...

Page 37: ...er is rebooted Select the Save Apply button to save changes that take effect immediately Select the Reset button to discard changes you have made but have not yet saved and to see the screen with its...

Page 38: ...assis has been restarted 4 2 2 Restarting Rebooting the WRT4000 Series Cellular Wireless Router There may be times when the WRT4000 Series Cellular Wireless Router needs to be restarted We recommend u...

Page 39: ...lar Wireless Router s Time of Day Configuring System Logging Overriding the MAC Information 4 3 1 Revising Lists in the WRT4000 Series Cellular Wireless Router s Management System For lists in the WR4...

Page 40: ...igure the WRT4000 Series Cellular Wireless Router s identity within the network and to configure time zone and time of day synchronization source for the WRT4000 Series Cellular Wireless Router do the...

Page 41: ...and IP addresses from your network administrator CAUTION If you type a non permitted character the entire name displays in red If you try to save a name with non permitted characters Figure 4 15 is d...

Page 42: ...To get the time of day for the WRT4000 Series Cellular Wireless Router at regular intervals see Section 4 3 4 Synchronizing the WRT4000 Series Cellular Wireless Router s Time of Day 4 3 4 Configuring...

Page 43: ...uter s Time of Day 4 3 5 Synchronizing the WRT4000 Series Cellular Wireless Router s Time of Day Do both of the following in the order listed here Configure the time of day options by Configuring Time...

Page 44: ...eries Cellular Wireless Router might follow to synchronize time of day do the following Under Hostname type a name for an NTP server NOTE This entry can be an IP address or a website URL Under Port ty...

Page 45: ...me of Day Synchronization 9 Do the following to navigate to any of the screens for system management a Select the System management area b Then select the System configuration area The System Screen f...

Page 46: ...f additional NTP servers in the order the router will use Select the box to the right of each field for an NTP server to activate or inactivate that NTP server 11 When you have selected your preferenc...

Page 47: ...rk 4 4 1 DHCP and DNS You can configure the WRT4000 Series Cellular Wireless Router s use of Dynamic Host Configuration Protocol DHCP and the Domain Name System DNS Confer with your network administra...

Page 48: ...elect the Save button 5 Then select the tab for TFTP Settings The DHCP and DNSTFTP Settings Screen is displayed Figure 4 24 for configuration Figure 4 24 DHCP and DNS TFTP settings screen 6 When you h...

Page 49: ...the WRT4000 Series Router is restarted select Save c If you wish to discard the configuration select Reset 4 4 2 Network Hosts 1 To configure names for host devices in the private network and in the p...

Page 50: ...on but not to use it until the router is restarted select Save If you wish to save the configuration and use it immediately select Save and Apply If you wish to discard the configuration select Reset...

Page 51: ...e 4 28 4 On that screen do one of the following a If you wish to save the configuration and use it immediately select Save and Apply b If you wish to save the configuration but not to use it until the...

Page 52: ...000 Series Cellular Wireless Router Firewall General Settings Add Record 3 After configuring the fields on the screen select the Save Apply button Then select the tab for Port Forwards The Firewall Po...

Page 53: ...Custom Rules The Firewall Custom Rules screen is displayed Figure 4 34 Figure 4 34 Firewall Custom Rules 6 After listing custom rules for the firewall do one of the following a If you wish to save the...

Page 54: ...your network administrator for the settings to use Figure 4 35 Quality of Service Configuration Screen After configuring the fields on the screen do one of the following a If you wish to save the con...

Page 55: ...ort 1 On the WRT4000 Series Cellular Wireless Router Management System select the Network tab The Network Interfaces Screen is displayed Figure 5 1 Figure 5 1 Network Interfaces Screen 2 Then select t...

Page 56: ...n in the row for ttyACM10 The Serial Port Configuration Detail Screen is displayed Figure 5 3 Figure 5 3 Serial Port Configuration Detail 4 On the Serial Port Configuration Detail Screen configure the...

Page 57: ...rt Port number for remote device Local Address IP address for WRT4000 Series Cellular Wireless Router Local Port Port number for WRT4000 Series Cellular Wireless Router Data Bits 8 7 or 6 Confer with...

Page 58: ...nt Protocol Consult with your network administrator to select one of several available protocols Synchronous Speed Select a speed for the transmission Trace Level Low Medium High Critical Value N1 For...

Page 59: ...able protocols Trace Level Low Medium High Critical Local Address The WRT4000 Series Cellular Wireless Router s IP address Remote Address The remote device s IP address Value N1 For Frame Relay pollin...

Page 60: ...inistrator Priority Immediate High Medium or Low b Go to step 10 10 When you have finished configuring the serial port protocol do one of the following a Select the Save Apply button in the lower righ...

Page 61: ...otocol b In the new row select the Edit button The Serial Port Configuration Detail Screen for a New Protocol Figure 5 9 is displayed The protocol does not yet have a name Figure 5 9 Serial Port Confi...

Page 62: ...m Page 62 Chapter 5 Configuring the Serial Ports d In the Protocol field select the protocol that the virtual protocol will support The remaining fields on the screen change to support the selected pr...

Page 63: ...llular Wireless Router Interface Overview Screen is displayed Figure 6 1 Figure 6 1 WRT4000 Series Cellular Wireless Router Interface Overview Screen 3 To define a new interface select Add New Interfa...

Page 64: ...Cellular Wireless Router Interface Overview Screen 3 Select the Edit button in the LAN interface row 4 If necessary select the General Setup tab The LAN Interface General Setup Screen is displayed Fi...

Page 65: ...ced Settings tab under the Common Configuration heading in the top portion of the screen The LAN Interface Common Configuration Advanced Settings Screen is displayed Figure 6 6 Figure 6 6 LAN Interfac...

Page 66: ...s Screen 8 After configuring the fields on the screen select the Save Apply button Then select the Firewall Settings tab The LAN Interface Firewall Settings Screen is displayed Figure 6 8 Figure 6 8 L...

Page 67: ...Wireless Router Interface Overview Screen is displayed Figure 6 9 Figure 6 9 WRT4000 Series Cellular Wireless Router Interface Overview Screen 3 Select the Edit button in the WAN interface row The WA...

Page 68: ...select the Save Apply button Then select the Physical Settings tab The WAN Interface Physical Settings Screen is displayed Figure 6 12 Figure 6 12 WAN Interface Physical Settings Screen 6 After config...

Page 69: ...724 746 5500 blackbox com Page 69 Chapter 6 Configuring Chassis Ports Figure 6 13 WAN Interface Firewall Settings Screen 7 After configuring the fields on the screen select the Save Apply button...

Page 70: ...y individual packet Any WAN port in the WRT4000 Series Cellular Wireless Router including the physical WAN port on the back of the chassis can be part of a multiWAN A multiWAN connects the network to...

Page 71: ...Each level of the hierarchy builds on a lower level working up to the top of the hierarchy To develop the rules for the multiWAN work across the lowest row of tabs left to right First configure the In...

Page 72: ...n Detail Screen b On the MultiWAN Interface Configuration Detail Screen enter values that will determine whether this interface is active Enter values for the following fields Enabled required field a...

Page 73: ...ve again Reroute enabling of failover If you set this parameter to 1 one this interface will use failover When this interface is inactive its traffic will be rerouted according to the multiWAN s rules...

Page 74: ...o one of the following on the MultiWAN Member Configuration Summary Screen i Select the Edit button to revise the loadsharing order and priorities ii Type a member name in the box to the left of the A...

Page 75: ...ose WANs using load balancing based on the relative weights assigned to those WANs c When you have finished configuring this multiWAN member select the Save button then select the Back to Overview but...

Page 76: ...nother member to the policy click the button to the right of the field Another field will be displayed add another member in that field Continue until you have included all the members for this policy...

Page 77: ...If you try to add a rule that uses a name already listed the screen will blank the entry and will wait for a new name In that case repeat substep ii In either case the MultiWAN Rule Configuration Deta...

Page 78: ...to default The policy name must be listed under Available Policies If you select default the rule uses the standard routing table Equalize how to apply loadsharing If you want load balancing to cycle...

Page 79: ...ation g When you have finished configuring the rules for multiWAN configuration do one of the following on the MultiWAN Rule Configuration Summary Screen recall Figure 7 12 i Select the Save Apply but...

Page 80: ...nd version 2 IKEv2 Any WRT4000 Series Cellular Wireless Router device can use IKEv1 and IKEv2 at the same time but not on the same port at the same time See the following sections Section 8 1 VPN Conf...

Page 81: ...connection 3 You may need to add or revise some VPN tunnels to reflect changes in your network configuration If so do the following for as many VPN tunnels as needed for your WRT4000 Series Cellular...

Page 82: ...IP address Right Subnet m n p 0 24 where m n p indicates the remote private network Right ID i j k l where this ID reflects the public IP address IPsec Start Up Operations ROUTE Pre Shared Key 24xn42...

Page 83: ...tual Private Networks Figure 8 3 List of Configured IPsec VPN Tunnels Including the Tunnel Named Tunnel 01 6 To configure IPsec for the WRT4000 Series Cellular Wireless Router select the Edit button a...

Page 84: ...you select options that are compatible with the version of the Internet Key Exchange IKEv1 or IKEv2 that you want to use The following are sample values CAUTION Do not use these values They are shown...

Page 85: ...f the following a If this is the first IPsec VPN activity since system start up select the IPSEC Start button at the lower left of the management window b If IPsec VPN tunnels are already running sele...

Page 86: ...on the left of the screen Figure 8 10 under the heading Network Utilities blackbox com Figure 8 6 Ping Set Up Area Detail of Diagnostics Screen 5 In the top field enter the ping destination NOTE The d...

Page 87: ...unsuccessful check the connections and IP address and repeat step 5 Figure 8 8 Message Showing Unsuccessful Ping 8 2 2 Tracking VPN Connections There are two ways to track VPN connections on the WRT4...

Page 88: ...e up and active Figure 8 10 Figure 8 10 Status of IPsec VPN Tunnels 3 Select Network VPN Online Help to link to a site for more information about VPN tunnels Figure 8 11 Figure 8 11 Screen for Link to...

Page 89: ...lient alice behind gateway moon pings client bob located behind gateway sun eth0 10 1 0 10 eth1 10 1 0 1 eth0 192 168 0 1 eth0 192 168 0 2 eth1 10 2 0 1 eth1 10 2 0 10 client alice client bob gateway...

Page 90: ...8 13 Figure 8 13 Web Page for StrongSwan General Connection Parameters Partial Display 8 2 2 2 Tracking General VPN Activity 1 On the WRT4000 Router s management system select the Status tab 2 Under...

Page 91: ...y NOTE The System Log is live it shows activity up to the second the second that you open it Although the file continues recording information while it is open it will not shownew information until yo...

Page 92: ...FIPS PUB 180 4 1 Each Request for Comments RFC is from the Internet Engineering Task Force IETF Each Federal Information Processing Standard Publication FIPS PUB and each Special Publication SP is fr...

Page 93: ...ified example of the WRT4000 Series Cellular Wireless Router s encryption and encapsulation of data NOTE The transmission shown in Figure 8 16 originates from the laptop terminal IP address 1 1 1 2 sh...

Page 94: ...origin and destination must conform to a VPN policy Otherwise the request will be rejected 8 3 2 2 Tunnel Termination When a remote VPN gateway initiates a VPN tunnel the WRT4000 Series Cellular Wire...

Page 95: ...es after a wildcard Certificate NOTE The remote user s IP address does not need to be known in advance 8 3 2 3 Tunnel Passthrough Tunnel passthrough is used when a remote or local VPN user sends IPsec...

Page 96: ...m the initiating endpoint to the destination This is called tunnel switching In Figure 8 18 an expansion of Figure 8 17 a remote VPN user User x wishes to communicate with the network s VPN host but d...

Page 97: ...at the same time but not on the same port at the same time NOTE All IKEv2 VPN connections work well across a device that performs network address translation NAT However an IKEv1 VPN connection must u...

Page 98: ...the cookies do not change order when the transmission direction changes NOTE Each IKEv1 phase has a fixed lifetime The lifetime can be defined in units of time number of transmissions or total amount...

Page 99: ...Sends IKEv2 Responder Sends one part of asymmetric key pair counterpart in asymmetric key pair or password or symmetric key symmetric key symmetric key MOBIKE The WRT4000 Series Cellular Wireless Rou...

Page 100: ...ty Parameter Indexes version numbers and flags 2 Including supported cryptographic algorithms offered for the security association 3 Including the Initiator s Diffie Hellman value 4 A nonce provides a...

Page 101: ...rity Association4 Initiator s Traffic Selection Responder s Traffic Selection 1 Including Security Parameter Indexes version numbers and flags 2 If the Initiator requested certificates they must be pr...

Page 102: ...address above e g 255 255 255 0 Subnet mask for the address above e g 255 255 255 0 DHCP IP Address Pool Range from low to high If the router is to issue IP addresses via DHCP on the LAN side enter t...

Page 103: ...Table Table 8 3 shows a sample VPN profile table with the field VPN Profile Name cross referenced against profiles listed in the IP Policy Table Your VPN Profile Table may show additional fields Tabl...

Page 104: ...ure an IKE tunnel is set up for key exchange That IKE tunnel sets up keys for a subsequent data tunnel if a subsequent tunnel is needed The data tunnel is used for data exchange See Section 8 3 4 Inte...

Page 105: ...secrecy PFS none DH2 Diffie Hellman 2 Security protocol ESP AH Encryption 3DES DES Authentication HMAC MD5 HMAC SHA1 Lifetime1 1 100 units Lifetime unit1 number of seconds number of minutes number of...

Page 106: ...le Fields Values Profile Name profile 2 Authentication Mode aggressive Keying auto IKE Local User ID 1 1 1 1 Gateway 3 3 3 1 Preshared Key Phase 1 Proposal 1 PRE G2 DES MD5 Phase 1 Proposal 2 VSA G2 3...

Page 107: ...ess Router Status Overview Screen The WRT4000 Series Cellular Wireless Router Status Overview Screen is the first screen you see after you log into the router This screen provides an overview of the W...

Page 108: ...tor to determine settings for collection of statistics Enter those values into the statistics collection screens NOTE To view displays of the statistics collected here see Graphs 1 To collect Router s...

Page 109: ...4 select Network Plugins then select Interfaces The Statistics Interface Plug In Configuration screen Figure 9 5 is displayed Figure 9 5 Statistics Interface Plug In Configuration screen 2 On the Sta...

Page 110: ...then if necessary select RRDTool The Statistics Collectd Output Plug In RRDTool Screen Figure 9 7 is displayed Figure 9 7 Statistics Collectd Output Plug In RRDTool Screen 4 On the Statistics Collect...

Page 111: ...t the Statistics management area The Initial Statistics Screen is displayed Figure 9 9 Figure 9 9 Initial Statistics Screen b Select the Graphs configuration area The Initial Screen for Graphs of WRT4...

Page 112: ...een shows the traffic load through all the ports of the WRT4000 Series Cellular Wireless Router Below the graph labels with colors corresponding to areas in the graph provide a key for information a T...

Page 113: ...n for the current Load the mean Average and the Peak traffic for The past one minute sometimes displayed as pink sometimes displayed as dark orange The past five minutes usually displayed as medium or...

Page 114: ...reless Router realtime performance graph of LAN Bridge Traffic b On this same screen select the eth0 detail area The WRT4000 Series Cellular Wireless Router Realtime Performance Graph of WAN Port Traf...

Page 115: ...uter Realtime Performance Graph of Traffic over a Single LAN Port 5 Select the Connections detail tab The WRT4000 Series Cellular Wireless Router Realtime Performance Graph of Network Connections is d...

Page 116: ...her Network Diagnostics Use the WRT4000 Series Cellular Wireless Router Diagnostics Screen Figure 9 20 to use a ping route tracing or nslookup to test or resolve the WRT4000 Series Cellular Wireless R...

Page 117: ...dress in Step 4 the IP version you select here must match that IP address s format 6 In the action box below the field select the Ping button If the ping is successful the screen displays ping statist...

Page 118: ...Cellular Wireless Router s firewall configuration NOTE The WRT4000 Series Cellular Wireless Router Firewall Status Screen Figure 9 24 through Figure 9 25 is a single screen that you can scroll through...

Page 119: ...e 119 Chapter 9 Monitoring the WRT4000 Router 9 1 6 System Processes Select Status Processes to see the operating system processes that are running Figure 9 26 Figure 9 26 WRT4000 Series Cellular Wire...

Page 120: ...7 Logs You can review information logged by the system See Figure 9 27 Kernel Log Part 1 of 3 through Figure 9 29 Kernel Log Part 3 of 3 and Figure 9 30 System Log Part 1 of 2 through Figure 9 31 Sys...

Page 121: ...724 746 5500 blackbox com Page 121 Chapter 9 Monitoring the WRT4000 Router Figure 9 28 Kernel Log Part 2 of 3 Sample Partial Listing Figure 9 29 Kernel Log Part 3 of 3 Sample Partial Listing...

Page 122: ...724 746 5500 blackbox com Page 122 Chapter 9 Monitoring the WRT4000 Router Figure 9 30 System Log Part 1 of 2 Sample Partial Listing...

Page 123: ...724 746 5500 blackbox com Page 123 Chapter 9 Monitoring the WRT4000 Router Figure 9 31 System Log Part 2 of 2 Sample Partial Listing...

Page 124: ...the process id on the row that contains the word endefaultsdnew c At the prompt type kill processid and press the Enter key where processid represents the number identified in step 4 b 1 NOTE On many...

Page 125: ...724 746 5500 blackbox com Page 125 Appendix A Setting the WRT4000 Cellular Wireless Router s APN c Then at the prompt type the following command at cgdcont The Access Point Name is displayed...

Page 126: ...lay An IPsec routine that uses authentication and sequence numbers to thwart replay attacks AP See access point asymmetric encryption Also called public key cryptography Use of a paired private key an...

Page 127: ...nal t l phonique et t l graphique CCITT A former French name for the International Telecommunication Union Telecommunication Standardization Sector The equivalent former English name was the Internati...

Page 128: ...Use of a checksum to ensure that data have been transmitted from endpoint to endpoint without error In IPsec the checksum uses encryption data terminal equipment DTE An endpoint device in a transmissi...

Page 129: ...thin IP It can also encapsulate some protocols within Frame Relay Also see tunneling generic route encapsulation encryption Conversion of a message into a coded form so that its content cannot be read...

Page 130: ...s satellites are geosynchronous However communications satellites at high latitudes for example in latitudes beyond the arctic circle or beyond the antarctic circle may have orbits that are not geosyn...

Page 131: ...ve Committee CCITT Comit consultatif international t l phonique et t l graphique International Telegraph and Telephone Consultative Committee CCITT A former name for the International Telecommunicatio...

Page 132: ...Agency that supports but does not regulate measurement evaluation and standards for technology Also see FIPS NAT traversal See network address translation traversal NERC See North American Electric Re...

Page 133: ...bit bus that runs at 33 MHz or 66 MHz Developed by Intel Corporation but not specific to any line of microprocessors PCI is a widely used standard for expansion cards NOTE Using 32 bits at 33 MHz PCI...

Page 134: ...ervice NOTE The RADIUS shared secret is not a generated shared secret used in a key agreement protocol Compare shared secret generated re keying An IKE feature that sets the interval between encryptio...

Page 135: ...sh algorithm shared key See secret key NOTE A shared key is not a generated shared secret shared secret generated A secret that the Diffie Hellman exchange algorithm develops from endpoints public key...

Page 136: ...a message or data transfer Symmetric encryption is not used for authentication Compare asymmetric encryption Also see combined cryptography TCP See Transmission Control Protocol TDEA See Triple Data E...

Page 137: ...real time A GPS satellite includes its clock time with each set of spatial coordinates it broadcasts The signal delay caused by travel through the atmosphere must be resolved in terms of real time Dat...

Page 138: ...ducts The VPN Consortium tests products for VPN compliance and interoperability The VPNC supports development of standards for VPNs but the VPNC itself does not develop standards For a list of RFCs ap...

Page 139: ...some data in order to make properties or relationships more apparent For example a criterion under study can be given priority by weighting it This allows the effect of the criterion to be better anal...

Page 140: ...For safety it is recommended that you leave a ground cable attached to the router even when the device is no longer connected to a power source If you need to disconnect the ground connection disconn...

Page 141: ...724 746 5500 blackbox com Page 141 NOTES...

Page 142: ...724 746 5500 blackbox com Page 142 NOTES...

Page 143: ...724 746 5500 blackbox com Page 143 NOTES...

Page 144: ...ort available in 60 seconds or less Copyright 2014 Black Box Corporation All rights reserved Black Box and the Double Diamond logo are registered trademarks of BB Technologies Inc Any third party trad...

Reviews:

No comments

Related manuals for WRT4000-ANT

QSR-3920 Series

Brand: QTech Pages: 120

Brand: TC Electronic Pages: 174

DHI-NVR2104-P-4KS2

Brand: Dahua Pages: 23

Brand: Lancom Pages: 102

PowerBeam AC Gen2

Brand: Ubiquiti Pages: 22

Brand: ZyXEL Communications Pages: 485

Seven Solutions WR-ZEN Series

Brand: Orolia Pages: 167

Brand: UfiSpace Pages: 34

Brand: Hunter Pages: 2

Ethernet MCA 10/100 Adapter

Brand: Olicom Pages: 88

DTS 4020.timebridge

Brand: Mobatime Pages: 94

Compressor DW-CP04

Brand: Digital Watchdog Pages: 73

Brand: Comtrend Corporation Pages: 69

GigaVUE H Series

Brand: Gigamon Pages: 55

Database Appliance X6-2-HA

Brand: Oracle Pages: 473

Brand: AvaLAN Pages: 13

Brand: Sharp Pages: 114

Brand: IntesisHome Pages: 24

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands