manualshive.com logo in svg

Nomadix AG 5000, User Manual, Page: 27 / 286

Share
Download
Nomadix AG 5000 User Manual Download Page 27

AG 5000

Introduction

23

RADIUS Proxy

The RADIUS Proxy feature relays authentication and accounting packets between the 

parties performing the authentication process. Different realms can be set up to 
directly channel RADIUS messages to the various RADIUS servers. This 
functionality can be effectively deployed to:

‹

Support a wholesale WISP model directly from the edge without the need 
for any centralized AAA proxy infrastructure.

‹

Support EAP authenticators (for example, WLAN APs) on the subscriber-
side of the NSE to transparently proxy all EAP types (TLS, SIM, etc.) and to 
allow for the distribution of per-session keys to EAP authenticators and 
supplicants.

Complementing the RADIUS Proxy functionality is the ability to route RADIUS 
messages depending on the Network Access Identifier (NAI). Both prefix-based (for 
example, 

ISP/[email protected]

) and suffix-based (

[email protected]

) NAI routing 

mechanisms are supported. Together, the RADIUS Proxy and NAI Routing further 
support the deployment of the Wholesale Wi-Fi™ model allowing multiple providers 
to service one location. See also, 

“RADIUS Client” on page 22

.

Remember Me and RADIUS Re-Authentication

The NSE’s Internal Web Server (IWS) stores encrypted login cookies in the browser 

to remember logins, using Usernames and Passwords between Access Points. This 
“Remember Me” functionality creates a more efficient and better user experience in 
wireless networks.

The RADIUS Re-Authentication buffer has been expanded to 720 hours, allowing an 
even more seamless and transparent connection experience for repeat users.

Secure Management

There are many different ways to configure, manage and monitor the performance 
and up-time of network devices. SNMP, Telnet, HTTP and ICMP are all common 

protocols to accomplish network management objectives. And within those objectives 
is the requirement to provide the highest level of security possible.

While several network protocols have evolved that offer some level of security and 
data encryption, the preferred method for attaining maximum security across all 
network devices is to establish an IPSec tunnel between the NOC (Network 
Operations Center) and the edge device (early VPN protocols such as PPTP have 

been widely discredited as a secure tunneling method).

ag5000_userguide.book  Page 23  Friday, March 4, 2005  3:05 PM

Summary of Contents for AG 5000

Page 1: ...Nomadix AG 5000 User s Guide...

Page 2: ...e Mellon University All Rights Reserved Go Ahead Software Inc Copyright 1999 Go Ahead Software Inc All Rights Reserved Livingston Enterprises Inc Copyright 1992 Livingston Enterprises Inc All Rights R...

Page 3: ...trademarks and brand names are marks of their respective holders Product Information Telephone 1 818 597 1500 Fax 1 818 597 1502 For technical support information see the Appendix in this User s Guide...

Page 4: ...adiate radio frequency energy and if not installed and used in accordance with the instructions may cause harmful interference to radio communica tions However there is no guarantee that interference...

Page 5: ...A head office WARNING Risk of electric shock do not open no user serviceable parts inside Risque de choc electrique ne pas ouvrir ne pas tenter de d monter l appareil CAUTION Read the instruction manu...

Page 6: ...This page intentionally blank...

Page 7: ...Access Control 15 Bandwidth Management 15 Bridge Mode 16 Command Line Interface 16 Dynamic Address Translation 16 Dynamic Transparent Proxy 16 End User Licensee Count 16 External Web Server Mode 17 H...

Page 8: ...AG 5000 36 Installation Workflow 37 Powering Up the System 38 Logging In to the Command Line Interface 39 The Management Interfaces CLI and Web 40 Making Menu Selections and Inputting Data with the CL...

Page 9: ...Log Options Logging 85 Enabling the Meeting Room Scheduler Meeting Room Scheduler 86 Assigning Passthrough Addresses Passthrough Addresses 87 Assigning a PMS Service PMS 88 Setting Up Port Locations P...

Page 10: ...Currently Allocated DHCP Leases DHCP Leases 145 Deleting All Expired Subscriber Profiles Expired 145 Finding Subscriber Profiles by MAC Address Find by MAC 146 Finding Subscriber Profiles by User Nam...

Page 11: ...ling 204 The AAA Structure 205 Process Flow AAA 207 Internal and External Web Servers 208 Language Support 208 Home Page Redirection 208 Subscriber Management 208 Subscriber Management Models 209 Conf...

Page 12: ...e cakey pem 237 Installing Cygwin and OpenSSL on a PC 237 Private Key Generation 241 Create a Certificate Signing Request CSR File 244 Create a Public Key File server pem 245 Setting Up AG 5000 for SS...

Page 13: ...e It also includes an outline of the authorization and billing processes utilized by the system and the Nomadix Information and Control Console Chapter 4 Quick Reference Guide This chapter contains pr...

Page 14: ...segments Product Configuration and Licensing All Nomadix Access Gateway products including the AG 5000 are powered by our patented and patent pending suite of embedded software called the Nomadix Ser...

Page 15: ...investment to create new revenue streams Enables you to provide Wi Fi access as a billable service or as an amenity to augment the main line of business for your venue The AG 5000 contains an advance...

Page 16: ...d Dynamic Address Translation DAT functionality offers a true plug and play solution by enabling a seamless and transparent experience and the tools to acquire new customers on site DAT greatly reduce...

Page 17: ...management of DoS Denial of Service attacks through its Session Rate Limiting SRL feature and MAC filtering for improved network reliability 5 Step Service Branding A network enabled with the Nomadix...

Page 18: ...Translation Dynamic Transparent Proxy End User Licensee Count External Web Server Mode Home Page Redirect iNAT Information and Control Console Internal Web Server International Language Support IP Ups...

Page 19: ...s from Telnet Web Management and FTP sources Bandwidth Management The NSE optimizes bandwidth by limiting bandwidth usage symmetrically or asymmetrically on a per device MAC address User basis and man...

Page 20: ...ent Interfaces CLI and Web on page 40 Dynamic Address Translation Dynamic Address Translation DAT enables transparent broadband network connectivity covering all types of IP configurations static IP D...

Page 21: ...ix XML API to implement more complex billing plans Recycle existing Web page content for the centrally hosted portal page If you choose to use the EWS interface Nomadix Technical Support can provide y...

Page 22: ...definable pool of publicly routable IP addresses The same public IP address can be used as a source IP to support concurrent tunnels to different termination devices offering unmatched efficiency in t...

Page 23: ...cribers See also 5 Step Service Branding on page 13 Logout Pop Up Window on page 20 Information and Control Console ICC on page 211 Internal Web Server The NSE offers an embedded Internal Web Server I...

Page 24: ...address the NSE associates their MAC address with their public IP address for the duration of the service level agreement The opposite is true if they select a plan with a private pool address This f...

Page 25: ...d protocol that assures accurate synchronization to the millisecond of computer clock times in a network of computers NTP synchronizes the client s clock to the U S Naval Observatory master clocks Run...

Page 26: ...of the individual configuration files and their download frequency status are downloaded from an FTP server into the flash of the Nomadix device 2 Defines the automated login into the centralized FTP...

Page 27: ...ing multiple providers to service one location See also RADIUS Client on page 22 Remember Me and RADIUS Re Authentication The NSE s Internal Web Server IWS stores encrypted login cookies in the browse...

Page 28: ...es etc 2 The exchange of management traffic either originating at the NOC or from the edge device through the IPSec tunnel Alternatively AAA data such as RADIUS Authentication and Accounting traffic c...

Page 29: ...SRL significantly reduces the risk of Denial of Service attacks by allowing administrators to limit the number sessions any one user can take over a given time period and if necessary then block mali...

Page 30: ...on the back end For example in addition to supporting the secure browser based Universal Access Method UAM via SSL Nomadix is the only company to simultaneously support port based authentication using...

Page 31: ...rden within the Internet where unauthenticated users can be granted or denied access to sites of your choosing Web Management Interface Nomadix Access Gateways can be managed remotely via the built in...

Page 32: ...ipped with a dedicated PMS port to facilitate connectivity with a customer s Property Management System Billing Records Mirroring NSE powered devices can send copies of credit card and optionally PMS...

Page 33: ...rs to share a HotSpot location further supporting a Wi Fi wholesale model This functionality allows users to interact only with their chosen provider in a seamless and transparent manner High Availabi...

Page 34: ...d the NSE s optional Hospitality Module our Meeting Room Scheduler MRS application can further enhance your product s integration into the hospitality environment The MRS allows hotel desk clerks to s...

Page 35: ...oyed effectively in a variety of wireless and wired broadband environments where there are many users usually mobile who need high speed access to the Internet The following example shows a potential...

Page 36: ...VAC 47 63Hz Auto Sensing POWER CONSUMPTION 44 watts ENVIRONMENTAL Operating temperature 5 C to 40 C Storage temperature 0 C to 70 C Operating humidity 20 90 RH non condensing Storage humidity 5 95 RH...

Page 37: ...Power NETWORK MANAGEMENT Multi Level Administration Controls Integrated VPN Client IPSec for secure connection to an NOC Access Control Lists Web Administration UI CLI via Telnet and Serial Port SNMP...

Page 38: ...5000 and you want to access information quickly and efficiently It contains all the information you will find in this User s Guide For more information about WebHelp and other online documentation re...

Page 39: ...e Establishing the AG 5000 s start up configuration Logging out and powering down the system Connecting the AG 5000 to the customer s network Establishing the basic configuration for subscribers Archi...

Page 40: ...odem NM 1 Cable CATS5 standard 7 ft length 1 Cable CATS5 crossover 7 ft length 1 Screw 10 32 X 1 2 PH with internal washer 4 Screw 4 40 5 16 flathead 100 deg 8 Plastic bumper feet 4 Universal mounting...

Page 41: ...pt you to reboot the system Connect the AG 5000 to the customer s network Power up the AG 5000 and log in via a Telnet session or the Web Management Interface Set the basic configuration parameters fo...

Page 42: ...he AG 5000 and your laptop computer and to power up the system 1 Place the AG 5000 on a flat and stable work surface 2 Connect the power cord 3 Connect the DB9 serial cable between the AG 5000 s seria...

Page 43: ...a login prompt appears on your screen The default login user name is admin The password is admin Login names and passwords are case sensitive 3 Enter admin when prompted for a user name and password T...

Page 44: ...sy to access the System menu because they both start with the letter s You may also do any of the following Enter b back or press Esc escape to return to a previous menu Press Esc to abort an action...

Page 45: ...ncludes some items not found in the CLI You can use either interface depending on your preference The following composite screen shows how the AG 5000 s WMI menus folders are organized shown here side...

Page 46: ...subscriber other messages 72 Description of Service billing options Plan 140 Home Page URL 237 Host Name and Domain Name DNS settings 64 IP DNS Name passthrough addresses 237 Label billing options pl...

Page 47: ...iness cases The PDF version of this User s Guide and associated README files are also available on the Accessories CD ROM supplied with your AG 5000 Quick Reference Guide This manual contains a Quick...

Page 48: ...rators and subscribers to see the AG 5000 on the network Use this address when you need to make a network connection with the AG 5000 Assigning the Subscriber Interface IP Address This is the IP addre...

Page 49: ...eature is disabled 1 Enter sy system at the AG 5000 Menu The System menu appears 2 Enter lo login The system prompts you for the current login If this is the first time you are changing the login para...

Page 50: ...tifiers The SNMP parameters include your contact information the get set communities and the IP address of the trap recipient Your SNMP manager needs this information to enable network management over...

Page 51: ...dresses to identify the location of the system and AAA SYSLOG servers on the network the default for both is 0 0 0 0 When logging is enabled log files and error messages are sent to these servers for...

Page 52: ...trators to see the AG 5000 on the network Use this address when you need to make a network connection with the AG 5000 5 When prompted enter a valid network interface IP address After assigning the ne...

Page 53: ...e enter your address Line 1 line1address newline1 Line 2 line2address newline2 City city newcity State state newstate Zip zip newzip Country country newcountry Please enter your email address em em co...

Page 54: ...ge 50 Logging Out and Powering Down the System Use this procedure to log out and power down the AG 5000 1 Enter l logout at the AG 5000 Menu Your serial session closes automatically SAMPLE SCREEN RESP...

Page 55: ...e been established 1 Choose an appropriate physical location that allows a minimum clearance of 4cm either side of the unit for adequate airflow 2 Connect the AG 5000 to the router then connect the AG...

Page 56: ...ation of the session Most users have DHCP capability on their computer To enable this service on the AG 5000 you can either enable the DHCP relay routed to an external DHCP server IP address or you ca...

Page 57: ...0 7 20 PRIV NO 10 0 0 4 255 255 255 0 10 0 0 5 10 0 0 250 30 PRIV NO Default IP Pool DHCP IP Pools Configuration 0 Show IP Pools 1 Add a new IP Pool 2 Modify an IP Pool 3 Remove an IP Pool 4 Exit this...

Page 58: ...em displays the current domain the default is nomadix 3 Enter a valid domain name the Internet domain that DNS requests will utilize 4 Enter the host name the DNS name of the AG 5000 The host name mus...

Page 59: ...newhostname Primary DNS 20 21 22 23 Secondary DNS 21 22 23 24 Tertiary DNS 22 23 24 25 Rebooting The DNS options have been established DNS will now convert subscriber browser URLs into the correct IP...

Page 60: ...le via the AG 5000 s network port Internet LAN etc Be sure to enable the SNMP daemon on the AG 5000 available on the AG 5000 s CLI or Web Management Interface under the Configuration menu snmp 3 All v...

Page 61: ...roviding a powerful and flexible Web interface for network administrators SNMP Manager allowing remote Windows management using an SNMP client manager for example HP OpenView However before you can us...

Page 62: ...ically the same The only difference between the two interfaces is in the method used for making selections and applying your changes selections are checkable boxes and applying your changes is achieve...

Page 63: ...serial interface As with any remote connection the network interface IP address for the AG 5000 must be established you did this during the installation process Logging In To access the AG 5000 s Web...

Page 64: ...ns AAA Services are used by the AG 5000 to authenticate authorize and subsequently bill subscribers for their use of the customer s network The AG 5000 currently supports several AAA models which are...

Page 65: ...equired XML eXtensible Markup Language is used by the AG 5000 s subscriber management module for port location and user administration Enabling the XML interface allows the AG 5000 to accept and proce...

Page 66: ...e the Origin Server OS parameter encoding for Portal Page and EWS feature as required 10 Select the authorization mode you want to use Internal Web Server External Web Server 11 Depending on which aut...

Page 67: ...s These features work in conjunction with each other to determine how new subscribers are handled Refer to the following table 1 Select the Internal Web Server 2 Enable or disable the SSL Support feat...

Page 68: ...y move between port locations In this case a subscriber can define a unique user name and password which they can use from any machine or location without being re charged Subscribers who choose this...

Page 69: ...information for the following fields Credit Card Server URL Credit Card Server IP Merchant ID a valid ID issued by the credit card reconciliation service provider Authorize net or Chainfusion 11 Enabl...

Page 70: ...the External Web Server After enabling the External Web Server you must enter a Secret Key The Secret Key ensures that the response the AG 5000 gets from the EWS is valid 2 Enter the Secret Key The AG...

Page 71: ...match is not made with the Source IP list the login is denied even if a correct login name and password are supplied The access control list for source IPs supports up to 50 fifty entries in the form...

Page 72: ...addresses from the access control list you must now enter the ending IP address in the Access Control End IP field If you are removing a single IP address enter None in the Access Control End IP field...

Page 73: ...uto Configuration The Autoconfiguration Settings screen appears 2 Enable or disable Autoconfiguration as required 3 If you enabled Autoconfiguration you must enter the following information into the c...

Page 74: ...he automated login into the centralized FTP server and the actual download process into the flash The Auto Configuration setup requires a few basic steps to be completed by both the field engineer and...

Page 75: ...ver with the configuration files 5 The following diagram shows a sample RADIUS configuration file meta file and illustration of the FTP server setup The Nomadix device will automatically initiate one...

Page 76: ...then Bandwidth Management The Bandwidth Management screen appears 2 If required click the check box for Bandwidth Management Enabled 3 If you enabled Bandwidth Management enter the uplink and downlin...

Page 77: ...ionally if the primary and secondary servers are down the AG 5000 can store up to 2 000 credit card transaction records When a connection is re established with either server the AG 5000 sends the sto...

Page 78: ...ary IP URL Secret Key 5 Repeat Step 4 for the secondary server if any and all carbon copy servers 6 Define the fail safe provisions including Retransmit Method Alternate or do not alternate Number of...

Page 79: ...ility on their computer To enable this service on the AG 5000 you can either enable the DHCP relay routed to an external DHCP server IP address or you can enable the AG 5000 to act as its own DHCP ser...

Page 80: ...erver feature Subnet based by checking the appropriate box 7 If required enable the IP Upsell feature Nomadix patented Dynamic Address Translation DAT functionality is automatically configured to faci...

Page 81: ...opposite is true if they select a plan with a private pool address This feature enables a competitive solution and is an instant revenue generator for ISPs The IP Upsell functionality solves a number...

Page 82: ...st now reboot the system for the new settings to take effect Click the check box for Reboot after changes are saved then click on the Submit button to save your changes and reboot the system or click...

Page 83: ...imary secondary or tertiary third DNS server The AG 5000 utilizes whichever server is currently available Use the following procedure to set the DNS configuration options 1 From the Web Management Int...

Page 84: ...n finished you must reboot the system for the new settings to take effect Click on the check box for Reboot after changes are saved to reboot the system after saving your changes 6 Click on the Submit...

Page 85: ...ected home page in the Home Page URL field 4 If required click on the check box for Parameter Passing Parameter passing allows the AG 5000 to track a subscriber s initial Web request usually their hom...

Page 86: ...nd protocol for example GRE IKE etc 1 From the Web Management Interface click on Configuration then iNAT The iNAT screen appears 2 Enable of disable the iNAT feature as required 3 If you enabled iNAT...

Page 87: ...interface subscriber interface subnet and default gateway You must provide your full location information 1 From the Web Management Interface click on Configuration then Location The Location Settings...

Page 88: ...The default gateway is the IP address of the router that the AG 5000 uses to transmit data to the Internet You must reboot the system if you make changes to any of the following IP settings You may lo...

Page 89: ...entication and Accounting functions You can enable either of these options 1 From the Web Management Interface click on Configuration then Logging The Log Settings screen appears 2 If required click o...

Page 90: ...ry invoices in advance Hotel desk clerks can now effectively schedule meetings and collect payments directly 1 From the Web Management Interface click on Configuration then Meeting Room Scheduler The...

Page 91: ...olution provider s discretion even though they may not have subscribed to the broadband Internet service This is useful if solution providers want to openly promote selected services to all users even...

Page 92: ...omer s Property Management System Before you can change the PMS settings a PMS must be connected to the AG 5000 via the serial port on the rear panel See also Connecting the AG 5000 to the Customer s...

Page 93: ...interfaces include Lodging Link PTI Holodex AutoClerk HOBIC OSPS TSPS 1BT2 TEST RSI Galaxy Post Only Marriot NH post paid only Micros Fidelio Query Post Post Only and Post Only with TCP IP Micros 1700...

Page 94: ...AG 5000 90 System Administration 1 From the Web Management Interface click on Configuration then PMS The Property Management System Settings screen appears...

Page 95: ...nQ Compliant Enable this option if you want to use Nomadix Micros POS emulation to query post to Hilton Corporation s OnQ PMS system The pre paid option requires hotel guests to pre pay for services T...

Page 96: ...1 Because some Property Management Systems do not allow you to enter characters you must enter these service descriptions as a numeric value only no characters or delimiters The numbers must be entere...

Page 97: ...Setting Up Port Locations Port Location Port Location allows you to establish the mode of operation for devices 1 From the Web Management Interface click on Configuration then Port Location The Port...

Page 98: ...subscriber side of the AG 5000 Go to In Room Port Mapping on page 96 to map rooms from the subscriber side of the AG 5000 4 Select No Port Location Mapping if you are not using Port based access or g...

Page 99: ...to and billed by the PMS You must enter the IP address not name and SNMP community of all access concentrators connected to the site For cascading Tut and RFC1493 compliant systems click on the associ...

Page 100: ...user name and password see previous section Steps 2 and 3 2 Enter the following URL target format http AG 5000 IP address 1111 usg roommapping For example http 219 57 108 103 1111 usg roommapping The...

Page 101: ...s mode you want to assign to this room Room Free Access Room For Charge Room Blocked 6 Click on the Submit button to save your changes 7 Repeat Steps 4 through 6 for each room see note If you leave yo...

Page 102: ...US client authenticates the customer with the RADIUS server applies associated attributes stored in that customer s profile and logs their activity including bytes transferred connect time etc The AG...

Page 103: ...IUS Client The RADIUS Client Settings screen appears 2 Under the Server Selection options choose the Routing Mode Disabled to disable RADIUS authentication Realm Based for Realm routing Fixed for rout...

Page 104: ...ount request click on the check box for Send Framed IP 11 If required check the box for Enable Session Terminate End Of Day When Authorized to allow business policies that want to terminate the sessio...

Page 105: ...l RADIUS information see also Defining the RADIUS Client Settings RADIUS Client on page 98 Defining the RADIUS Routing Settings RADIUS Routing on page 104 RADIUS Attributes on page 231 1 From the Web...

Page 106: ...eck box 7 Enter an IP Address for the Upstream NAS 8 Enter a secret key in the Authentication Secret Key field During the authentication process the server and client exchange secret keys The secret k...

Page 107: ...ust added appears in the list You can add up to 10 definitions 12 Repeat Steps 5 through 11 to add more Upstream RADIUS NAS definitions as required 13 To view your configured RADIUS Service Profiles a...

Page 108: ...d Realm based Routing Policies up to 50 For additional RADIUS information see also Defining the RADIUS Client Settings RADIUS Client on page 98 Defining the RADIUS Proxy Settings RADIUS Proxy on page...

Page 109: ...ion This category requires input for enabling RADIUS authentication and requires you to define IP addresses ports and secret keys for the primary and secondary RADIUS servers the secondary server is o...

Page 110: ...rning a response to the client indicating that it has received the request 9 To enable the accounting service for your RADIUS functionality click on the check box for Enable RADIUS Accounting Service...

Page 111: ...ile you can return to the previous screen RADIUS Routing Settings by clicking on the Back to Main RADIUS Routing Settings page link The RADIUS Service Profile you just created is added to the list Add...

Page 112: ...x match only Match either 22 Select the required RADIUS Service Profile from the pull down menu 23 Click on the Strip off routing information check box if you want to remove the routing information 24...

Page 113: ...00 System Administration 109 26 The Realm Routing Policy you just created is added to the list Your new RADIUS Service Profiles are added to this list Your new Realm Routing Policies are added to this...

Page 114: ...MTP Redirection Misconfigured to enable this feature for misconfigured subscribers 3 Click on the check box for SMTP Redirection Properly Configured to enable this feature for properly configured subs...

Page 115: ...and identifiers For more information about SNMP see Using an SNMP Manager on page 58 1 From the Web Management Interface click on Configuration then SNMP The SNMP Settings screen appears 2 Click on th...

Page 116: ...nage the AG 5000 via the Internet Enabling Dynamic Multiple Subnet Support Subnets Nomadix dynamic multiple subnet support allows you to create flexible and cost effective IP pool solutions to meet th...

Page 117: ...subnet mask for this subnet in the Subnet Mask field 5 Click on the Back to Main Subnet Configuration Page link to return to the previous screen Public Subnets Settings To edit the Current Public DHCP...

Page 118: ...y You can display a summary listing of all your current Configuration settings To view the summary listing go to the Web Management Interface click on Configuration then click on Summary The Summary o...

Page 119: ...mation into its BIOS then displays the new date and time The AG 5000 also allows you to enter a Time offset from UTC This parameter is the Universal Coordinated Time based on the ISO 8601 standard and...

Page 120: ...as finance yahoo com sports yahoo com etc The system administrator can dynamically add or remove specific IP addresses and domain names to be filtered for each property 1 From the Web Management Inter...

Page 121: ...to provide outstanding carrier class network management capabilities to its family of public access gateways we offer secure management through the NSE s standards driven peer to peer IPSec tunneling...

Page 122: ...of management traffic either originating at the NOC or from the edge device through the IPSec tunnel Alternatively AAA data such as RADIUS Authentication and Accounting traffic can be sent through th...

Page 123: ...o enable the Perfect Forward Secrecy configuration click on the appropriate check box 5 For the remote end of the tunnel enter the peer IP address in the Peer IP field 6 Enter the IP address of the Re...

Page 124: ...tion 10 If you made any changes to this screen click on the check box for Reboot after changes are saved 11 Click on the Submit button to save your changes or click on the Reset button to reset all va...

Page 125: ...appears Displaying DAT Sessions DAT The AG 5000 provides plug and play access to subscribers who are misconfigured with static permanent IP addresses or subscribers that do not have DHCP functionality...

Page 126: ...o the Web Management Interface click on Network Info then click on Hosts The Host Table screen appears Displaying ICMP Statistics ICMP You can display the current ICMP Internet Control Message Protoco...

Page 127: ...isplay the network interfaces which are presented as a detailed listing of all interface communication elements and their current status To view the Network Interfaces go to the Web Management Interfa...

Page 128: ...With IP transmissions data is broken up into packets which are then sent over the network By using IP addressing Internet Protocol ensures that the data reaches its destination even though different p...

Page 129: ...ing You can display the current Routing Tables including any dynamically generated routes unreachable routes or wildcard routes To view the Routing Tables go to the Web Management Interface click on N...

Page 130: ...gement Interface click on Network Info then click on Sockets The Socket Table screen appears Displaying the Static Port Mapping Table Static Port Mapping You can display a table which provides a detai...

Page 131: ...ocol statistics which are presented as a detailed listing of all TCP elements and their current status TCP is a standard protocol that manages data transmissions across networks To view the TCP Statis...

Page 132: ...d listing of all UDP elements and their current status UDP is an Internet standard transport layer protocol It is a connectionless protocol which adds a level of reliability and multiplexing to the In...

Page 133: ...ingle room or location The AG 5000 uses a port location authorization table to manage the assigned ports and ensure accurate billing for the services used by a particular port Adding a Port Location A...

Page 134: ...he Reset button if you want to reset all the values to their previous state Updating a Port Location Assignment The procedure for updating a port location assignment is similar to adding a port locati...

Page 135: ...ears 2 Click on the Delete All button to delete all Port Location assignments Deleting Port Location Assignments by Location Delete by Location This procedure shows you how to delete a port location a...

Page 136: ...onfirm this action before deleting the requested port location 1 From the Web Management Interface click on Port Location then Delete by Port The Delete Port Location Assignments by Port screen appear...

Page 137: ...red in flash location txt resident in the AG 5000 s flash memory 1 From the Web Management Interface click on Port Location then Export The Export Port Location Assignments screen appears 2 Click on t...

Page 138: ...m the Web Management Interface click on Port Location then Find by Description The Find a Port Location Assignment by Description screen appears 2 In the Enter Description field enter the description...

Page 139: ...From the Web Management Interface click on Port Location then Find by Location The Find a Port Location Assignment by Location screen appears 2 In the Enter Location field enter the location of the a...

Page 140: ...eir description or location 1 From the Web Management Interface click on Port Location then Find by Port The Find a Port Location Assignment by Port screen appears 2 In the Enter Port field enter the...

Page 141: ...ocation Assignments screen appears 2 Click on the Import button to import port location assignments from the flash location txt file If you have never exported port location assignments since installi...

Page 142: ...ocation assignments location port modem MAC address for RiverDelta subnet state description Location Locations are assigned as an alpha numeric or alpha numeric value unless a PMS interface is used in...

Page 143: ...display a listing of all port locations assigned to this system To view the listing of port location assignments go to the Web Management Interface click on Network Info then click on List The List P...

Page 144: ...bout subscriber access and billing options see the following sections Authorization and Billing on page 204 Subscriber Management on page 208 Subscriber Management Models on page 209 Configuring the S...

Page 145: ...e the duration in hours and minutes for the subscriber s authorized access time When the assigned time expires the subscriber must re subscribe to the service 12 Enable or disable the Count down after...

Page 146: ...their connection to the Internet was not completed By reviewing the byte statistics you can clearly see if the subscriber made a successful connection To view the list of Current Subscriber Connection...

Page 147: ...ubscriber Administration then Delete by MAC The Delete a Subscriber Profile by MAC screen appears 2 In the Enter MAC Address field enter the MAC address of the profile you want to delete 3 Click on th...

Page 148: ...k on Subscriber Administration then Delete by User The Delete a Subscriber Profile by User screen appears 2 In the Username field enter the user name of the profile you want to delete 3 Click on the D...

Page 149: ...riber Administration then click on DHCP Leases The Currently Allocated DHCP Leases screen appears Deleting All Expired Subscriber Profiles Expired This procedure shows you how to delete all expired su...

Page 150: ...sponding to the MAC address Statistics include user name and password if any and the access time remaining for this subscriber 1 From the Web Management Interface click on Subscriber Administration th...

Page 151: ...responding to the user name Statistics include the subscriber s MAC address and the access time remaining for this subscriber 1 From the Web Management Interface click on Subscriber Administration the...

Page 152: ...on MAC addresses To view the list of Authorized Subscriber Profiles go to the Web Management Interface click on Subscriber Administration then click on List by MAC The Authorized Subscriber Profiles s...

Page 153: ...e database of authorized subscribers based on their user names To view the list of Authorized Subscriber Profiles go to the Web Management Interface click on Subscriber Administration then click on Li...

Page 154: ...es the number of subscribers currently in the database Current Table and a numerical breakdown of how the subscribers can utilize the system for example free access credit card etc The total number of...

Page 155: ...cards This means that an operator can set the AG 5000 s Internal Web Server IWS to allow users online on a time X over period Y basis Standard billing plans where time X period Y can be used concurre...

Page 156: ...AG 5000 152 System Administration 1 From the Web Management Interface click on Subscriber Interface then Billing Options The Internal Billing Options Setup screen appears...

Page 157: ...active To view or edit a billing plan simply click on the View Edit Delete button opposite the corresponding plan The Internal Billing Options Plan Setup or Internal Billing Options XoverY Plan Setup...

Page 158: ...AG 5000 154 System Administration Sample of Internal Billing Options XoverY Plan Setup Screen...

Page 159: ...Down to subscribers bandwidth range for this billing plan 7 Define the DHCP Pool public or private see following note 8 Click on the Submit this Plan button to save your changes and establish this bil...

Page 160: ...p to 5 Promotional Code Options 15 Click on the Submit button to save your changes or click on the Reset button if you want to reset all the values to their previous state Setting Up an X over Y Billi...

Page 161: ...ollowing note 11 Click on the Submit this Plan button to save your changes and establish this billing plan Alternatively you can click on the Delete this Plan button if you want to delete this plan or...

Page 162: ...rs an opportunity to display advertising banners and provide a choice of redirection options The AG 5000 also lets System Administrators define a simple HTML based pop up window for explicit Logout th...

Page 163: ...AG 5000 System Administration 159 1 From the Web Management Interface click on Subscriber Interface then ICC Setup The ICC Setup screen appears...

Page 164: ...le field 5 Define the physical location where you want the Nomadix Logout Console to appear on the subscriber s screen Choose one of the following options Upper Left Corner Upper Right Corner Lower Le...

Page 165: ...mage Target URL Where subscribers are sent when they click on the button Image Name The representative image file you want to use for the button When assigning images for buttons refer to Pixel Sizes...

Page 166: ...rs that buttons use see Assigning Buttons on page 161 with the addition of 3 three more These are Duration Defines how long the banner is displayed in the ICC Start Time This is an optional parameter...

Page 167: ...nitions click on the check box for Reboot after changes are saved to reboot the AG 5000 14 When finished click on the Submit button to save your changes or click on the Reset button if you want to res...

Page 168: ...xels height ISP Button 98 pixels width x 26 pixels height Small buttons 45 pixels width x 26 pixels height Time Formats Use the following formats when defining times Duration for Banners 1 through 999...

Page 169: ...edge The language you select here will determine the language encoding that the AG 5000 s Internal Web Server instructs the browser to use The available language options are English Chinese Big 5 Fren...

Page 170: ...nd display Japanese characters on the Web Management Interface and the subscriber s portal page choose the Japanese Shift_JIS option If you want to have the ICC displayed in English but enter and disp...

Page 171: ...in UI Login UI This procedure allows you to set up the presentation and content of the subscriber s login User Interface UI 1 From the Web Management Interface click on Subscriber Interface then Login...

Page 172: ...enables the AG 5000 to remember logins for a predetermined duration see next step 5 If you enabled the Remember Me option define the duration in days in the Remember for how many days field 6 If requi...

Page 173: ...ile Name field 12 If you made changes to the Image File Name or Partner Image File Name fields you must reboot the AG 5000 for your changes to take effect In this case click on the check box for Reboo...

Page 174: ...AG 5000 170 System Administration Subscriber Login Screen Sample The following sample shows a subscriber login screen...

Page 175: ...option means that this functionality is available for other post paid billing mechanisms for example post paid PMS if your product license supports PMS The IWS page displays the details of the user s...

Page 176: ...AG 5000 172 System Administration 1 From the Web Management Interface click on Subscriber Interface then Post Session UI The Subscriber Post Session User Interface Settings screen appears...

Page 177: ...If you enabled the Hypertext Link URL feature enter the URL for the link in the Hyper Text Link URL field 5 Define the following Field Label Definitions for your Goodbye Page Session Summary IP Addre...

Page 178: ...he Subscriber Page Control Button Definitions screen appears 2 Enter the definitions you want for each control button in the corresponding fields 3 Click on the Submit button to save your changes or c...

Page 179: ...scriber Labels This procedure allows you to define how the user interface UI field labels are displayed to subscribers 1 From the Web Management Interface click on Subscriber Interface then Subscriber...

Page 180: ...or each label in the corresponding fields 3 Click on the Submit button to save your changes or click on the Reset button if you want to reset all the values to their previous state If you want to rese...

Page 181: ...procedure allows you to define how error messages are displayed to subscribers 1 From the Web Management Interface click on Subscriber Interface then Subscriber Errors 1 of 2 The Subscriber Page Error...

Page 182: ...responding fields 3 Click on the Submit button to save your changes or click on the Reset button if you want to reset all the values to their previous state If you want to reset all field values to th...

Page 183: ...dure allows you to define how other subscriber messages are displayed 1 From the Web Management Interface click on Subscriber Interface then Subscriber Messages 1 of 3 The Subscriber Page Other Messag...

Page 184: ...orresponding fields 3 Click on the Submit button to save your changes or click on the Reset button if you want to reset all the values to their previous state If you want to reset all field values to...

Page 185: ...AG 5000 System Administration 181 5 Repeat Steps 1 3 for page 3 of 3 see following screen...

Page 186: ...hat supports hardware broadcasting This procedure shows you how to add an ARP table entry 1 From the Web Management Interface click on System then ARP Add The Add ARP Table Entries screen appears 1 En...

Page 187: ...ingle physical network that supports hardware broadcasting This procedure shows you how to delete an ARP table entry 1 From the Web Management Interface click on System then ARP Delete The Delete ARP...

Page 188: ...rators to effectively remove the AG 5000 from the network without physically disconnecting the unit You can still manage the AG 5000 when Bridge Mode is enabled but you have no other functionality If...

Page 189: ...the configuration settings and you are unsure of the effect that the changes will have You can restore the archived system configuration settings at any time with the import function 1 From the Web Ma...

Page 190: ...e factory default configuration settings you will no longer be able to access the AG 5000 remotely However you always have the option of using the import function to restore system configuration setti...

Page 191: ...ly 1 From the Web Management Interface click on System then FailOver The Fail Over screen appears 2 Enable or disable the Fail Over feature as required 3 If you enabled Fail Over define the Sibling St...

Page 192: ...to the Web Management Interface and click on System then History The Uptime and Access Reboot History screen appears The Uptime field displays the time in days hours minutes and seconds that the syst...

Page 193: ...ul end user troubleshooting feature and also required by certain smart clients for example GRIC 1 From the Web Management Interface click on System then ICMP The ICMP screen appears 2 Click on the che...

Page 194: ...the current system configuration settings with the settings contained in the archive txt file see notes above The archived configuration settings you want to restore may not contain valid IP addresses...

Page 195: ...ned managers have the ability to perform all write commands Submit Reset Reboot Add Delete etc but operators cannot change any system settings When this feature is enabled one manager and three operat...

Page 196: ...and instruct the AG 5000 to send a RADIUS access request to the RADIUS server following the same basic rules as if the request was from a user The URL for the test page is http AG 5000_IP radtest tes...

Page 197: ...ss Up to 50 MAC addresses can be blocked at any one time see caution 1 From the Web Management Interface click on System then MAC Filtering The MAC Filtering screen appears 2 Click on the check box fo...

Page 198: ...ment Interface click on System then Reboot The Reboot Device screen appears 2 Click on OK to reboot the operating system The reboot procedure outlined on this page allows you to decide when to reboot...

Page 199: ...outer IP address by which the route s destination can be reached 1 From the Web Management Interface click on System then Route Add The Add Static Routes screen appears 2 Enter the Destination IP addr...

Page 200: ...b Management Interface click on System then Route Delete The Delete Static Routes screen appears 2 Enter the Destination IP address of the route you want to delete from the routing table 3 Click on th...

Page 201: ...ssary then block malicious users 1 From the Web Management Interface click on System then Session Limit The Session Rate Limiting screen appears 2 Click on the check box for Session Rate Limiting to e...

Page 202: ...00 The advantage for the network administrator is that free private IP addresses can be used to manage devices such as Access Points on the subscriber side of the AG 5000 without setting them up with...

Page 203: ...e this field set to zero if you want to connect to the device from any TCP UDP port of a network side workstation 9 Select the protocol TCP or UDP from the pull down menu 10 Click on the Add button to...

Page 204: ...subscriber side of the AG 5000 without setting them up with public IP addresses This procedure shows you how to add static ports 1 From the Web Management Interface click on System then Static Port M...

Page 205: ...or disable the following items by clicking on the corresponding check box Block Subscriber Interface 1 Block Subscriber Interface 2 3 Click on the Submit button to save your changes or click on the R...

Page 206: ...AG 5000 202 System Administration Notes Use this page for your notes...

Page 207: ...ure billing Like a router the AG 5000 continuously tracks subscriber IP and MAC settings eliminating the need for further sign ins and ensuring that subscriber usage and billing is recorded accurately...

Page 208: ...ironment billing is a complex process It requires accurate data collection and reconciliation a means to validate and protect the data and an efficient method for collecting payments The AG 5000 offer...

Page 209: ...to bill subscribers for services rendered either directly on their hotel bill in the hotel scenario via a mailed invoice or directly to the subscriber s credit card account The following illustration...

Page 210: ...age for redirection User name and MAC based logins simultaneous or stand alone User selectable options and parameters for example defining the time purchased Interaction with a Property Management Sys...

Page 211: ...s Portal Page Internal or External Web Server AG 5000 detects connection and verifies user against authorization table Lease time has expired Purchase more time Yes No Internet and local online servic...

Page 212: ...criber interface supports many Asian and European languages including English Chinese French German Japanese and Spanish Home Page Redirection The AG 5000 can be configured to redirect all valid subsc...

Page 213: ...table If the MAC address is verified the AG 5000 authorizes access to the Internet A possible scenario for using this model is to allow Internet access to administrative personnel in all locations Us...

Page 214: ...user name and password are optional the MAC address will be substituted but in this event the service is not transferable between computers Credit card Enable the AAA services You have the choice of...

Page 215: ...tion options For information about configuring the ICC refer to Setting Up the Information and Control Console ICC Setup on page 158 ICC Pop Up Window The ICC displays a HTML based applet in the form...

Page 216: ...m Administrators to define a simple HTML based pop up window for explicit logout that can be used as an alternative to the more fully featured ICC The pop up Logout Console can display the elapsed cou...

Page 217: ...parameters Network Info Displays the Network Info menu The items in this menu are used to monitor and review network connections routings protocols and network session statistics Port Location Displa...

Page 218: ...access from Telnet Web Management and FTP sources Auto Configuration Provides an effortless and rapid method for configuring devices for fast network roll outs Bandwidth Management Manages the bandwid...

Page 219: ...rts Remote Authentication Dial In User Service RADIUS This procedure sets up the RADIUS client RADIUS Proxy Establishes RADIUS proxies where different realms can be set up to directly channel RADIUS m...

Page 220: ...s and any assigned aliases ICMP Displays the ICMP Internet Control Message Protocol performance statistics Interfaces Displays statistics for the interfaces IP Displays the IP performance statistics R...

Page 221: ...ation assignments based on a specified port VLAN tag Export Exports specified port location assignments to the location txt file Find by Description Finds a port location assignment based on a unique...

Page 222: ...name DHCP Leases Sets up the current subscriber DHCP leases Expired Removes expired profiles Find by MAC Finds a subscriber profile based on a specified MAC address Find by User Finds a subscriber pro...

Page 223: ...Post Session UI Defines the post session Goodbye page Subscriber Buttons Defines how each of the subscriber s user interface control buttons are displayed Subscriber Labels Defines how the subscriber...

Page 224: ...ime ICMP Sets up ICMP blocking for traffic from pending or non authenticated users that are destined to addresses other than those defined in the pass through walled garden list Import Imports previou...

Page 225: ...uide 221 Static Port Mapping Delete Deletes static port mapping schemes Subscriber Interfaces Blocks subscriber interfaces Upgrade Obtain the latest Firmware Upgrade Procedure from Nomadix Technical S...

Page 226: ...port Port Location Delete by User Delete subscriber profiles by user Subscriber Admin DHCP Set the DHCP service options Configuration DHCP Leases Set the current subscriber DHCP leases Subscriber Admi...

Page 227: ...routing policies Configuration Reboot Reboot the operating system System Route Add Add a route to the routing table System Route Delete Delete a route from the routing table System Routing Display rou...

Page 228: ...oduct Network Interface IP Subscriber IP Subnet Mask Default Gateway IP DHCP Client Admin IP 10 0 0 10 10 0 0 11 255 255 255 0 10 0 0 1 Enabled 172 30 30 172 Domain Host Name Primary DNS Secondary DNS...

Page 229: ...s XML Disabled Enabled Enabled Enabled Disabled Enabled Disabled DNS Redirection SMTP Redirection SMTP Server IP Enabled Disabled 0 0 0 0 SNMP SNMP Get Community SNMP Set Community SNMP Trap IP Disabl...

Page 230: ...00 250 VAC 47 63Hz Auto Sensing POWER CONSUMPTION 44 watts ENVIRONMENTAL Operating temperature 5 C to 40 C Storage temperature 0 C to 70 C Operating humidity 20 90 RH non condensing Storage humidity 5...

Page 231: ...port Power NETWORK MANAGEMENT Multi Level Administration Controls Integrated VPN Client IPSec for secure connection to an NOC Access Control Lists Web Administration UI CLI via Telnet and Serial Port...

Page 232: ...AA_Interface Added_by_administrator 00 00 0 12 34 56 20 hrs 34 min Mar 31 21 35 15 nomad237 nomadix com INFO AAA 4009 AAA Interface Updated_by_administrator 00 00 0 12 34 56 2 hrs 34 min Mar 31 21 36...

Page 233: ...system s activity Access Reboot and Uptime 2003 02 10 11 25 53 Local2 Info 1 2 3 4 INFO AG 5000 v5 4 03 DHCP ndxDHCPInit 0021 DHCP initialized 2003 02 10 11 25 53 Local2 Info 1 2 3 4 INFO AG 5000 v5...

Page 234: ...and place it on the clipboard Ctrl X Copy selected data to the clipboard Ctrl C Paste data from the clipboard into a document at the insertion point Ctrl V Copy the active window to the clipboard Alt...

Page 235: ...access the service provider s network the AG 5000 delivers a Web page to the subscriber asking for a login name and password This information password is encrypted and sent across the network to the I...

Page 236: ...tested for 802 1x Called Station ID Calling Station ID Authentication Reply Accept Reply Message Reject Message State used tested for 802 1x Class Session Timeout Idle Timeout EAP Packet used for 802...

Page 237: ...Acct Output Octets Acct Input Octets Acct Output Packets Acct Input Packets Class Nomadix VSAs Nomadix Subnet Nomadix URL Redirection Nomadix IP Upsell Acct Session Time Stop Terminate Cause Stop NAS...

Page 238: ...G 5000 will immediately detect a Session Timeout However in the case of an Idle Timeout or an inactive subscriber Session Timeout the AG 5000 detects it via a clean up function that is currently calle...

Page 239: ...attribute allows the administrator to redirect the user to a page of the administrators choice each time the user logs in Nomadix IP Upsell This attribute allows the user to receive a public address f...

Page 240: ...from different Certificate Authorities CAs such as VeriSign The Certificate Authority sets this qualification criterion 3 You will need to generate your own Private Key and Certificate Signing Reques...

Page 241: ...arge compressed log files recommended by VeriSign These files are put in as file1 file2 file3 file4 file5 in the key generation command Downloading Cygwin There are several sources for obtaining Cygwi...

Page 242: ...AG 5000 238 Quick Reference Guide The following screen appears Click on the Next button to display the next setup screen Click on the Next button to display the next setup screen...

Page 243: ...9 Click on the Next button to display the next setup screen Click on the Next button to display the next setup screen Select a location and click on the Next button For the purposes of this document N...

Page 244: ...screens please skip all packages except cygwin and openssl then click on the Next when you are done At the time of this writing there are more than 70 packages to install Please ensure that you skip a...

Page 245: ...rm you that the installation process is completed At the pop up dialog click on the OK button Private Key Generation Create a directory from Root and put 5 random files a dat b dat c dat d dat and e d...

Page 246: ...penssl openssl command genrsa A parameter for openssl to generate an RSA key Rand A parameter for openssl to generate a random number from the files list file1 file2 file5 These five large random file...

Page 247: ...characters If you are creating multiple keys please output them into different directories and save them as different names However if you are saving them as different names you must change the names...

Page 248: ...ates or Province names do not exist in your country please repeat the Locality Name The Common Name is the name used in the AG 5000 AAA SSL Certificate Domain Name The Common Name in the Public Key mu...

Page 249: ...varies by Certificate Authority Generally you will need to send a Certificate Signing Request to the Certificate Authority CA and the CA will create a public key base on the certificate request This i...

Page 250: ...the existence of your business Please follow the instruction from VeriSign carefully In addition there is one section about generating a CSR however since you have already created the CSR in step 2 w...

Page 251: ...Select the purchase method and summit the required contact information When you receive an email from VeriSign with Secure Server ID Global Server ID if you create a 128 bit key that contains the Publ...

Page 252: ...Login FTP the cakey pem and server pem files into the AG 5000 platform s flash directory FTP to the AG 5000 by Netscape ftp username password AG 5000 Network IP flash Drag and drop the cakey pem and...

Page 253: ...been previously defined by system administrators The AG 5000 assumes control of billing transmissions and saving billing records By effectively mirroring the billing data the AG 5000 can send copies...

Page 254: ...XML commands according to specifications HTTP headers are added to the XML packets that are built as the billing mirroring information is sent to the external server in HTTP compliant XML format The X...

Page 255: ...r authentication RESULT_VALUE OK or ERROR IP Standard IP address format 123 123 123 123 The packet after the HTTP headers added looks like this XML to AG 5000 The AG 5000 accepts a single line of XML...

Page 256: ...a Negative Acknowledgement USG COMMAND RMTLOG_ACK ACK_VALUE ERROR ACK_VALUE IP_ADDR 11 22 33 44 IP_ADDR ERROR_CODE 5 ERROR_CODE AG 5000 Format for each Field RESULT_VALUE OK or ERROR IP Standard IP fo...

Page 257: ...It should be positioned in a dust free and temperature controlled environment Never block the unit s ventilation holes and do not stack with other equipment unless correctly mounted in a rack If you...

Page 258: ...settings or the message is generated by the system when it fails to locate the data it needs Error loading factory settings The system cannot find the default configuration file when attempting to res...

Page 259: ...re available to subscribers This message is displayed because you have disabled both the external DHCP relay and the system s DHCP service To make DHCP available to subscribers at least one of these f...

Page 260: ...server If necessary test the communication with the ping command The DHCP relay is enabled with the correct IP address for the external DHCP server but the DHCP server is misconfigured Check the exte...

Page 261: ...to the AG 5000 incorrectly Re enter the correct URL The server that hosts the home page is down or the service provider if different from the host is not able to route to your page Check that the serv...

Page 262: ...AG 5000 258 Troubleshooting Notes Use this page for your notes...

Page 263: ...rk documentation to verify that the network components are functioning correctly If you cannot resolve the problem with your documentation resources try connecting to our corporate Web site We may hav...

Page 264: ...AG 5000 260 Technical Support Notes Use this page for your notes...

Page 265: ...2 1Q An IEEE standard for providing a virtual LAN capability within a campus network 802 1Q establishes a standard format for frame tagging Layer 2 VLAN markings enabling the creation of VLANs that us...

Page 266: ...s limited to a single physical network that supports hardware broadcasting ATM Asynchronous Transfer Mode A network technology based on transferring data in cells or packets of a fixed size 53 bytes e...

Page 267: ...esses automatically to devices connected on a TCP IP network When a new device connects to the network the DHCP server assigns an IP address from a list of its available addresses The device retains t...

Page 268: ...th parties use online services to conduct business transactions Transactions may include generating orders invoices and payments and submitting inquiries Also known as Enterprise ESS Extended Service...

Page 269: ...ufacturer to support new protocols as they become standardized Forwarding Rate The maximum rate at which 64K packets can be delivered to their destination See also Packet Packet Switching Network pps...

Page 270: ...followed iNAT Intelligent Network Address Translation Nomadix iNAT feature creates an intelligent mapping of IP addresses and their associated VPN tunnels allowing multiple tunnels to be established...

Page 271: ...computer s network settings to provide them with seamless access to the broadband network Subscribers no longer need to alter their computer s settings See also Dynamic IP Address IP Address and Stati...

Page 272: ...dress translations NAT provides a type of firewall by hiding its internal IP addresses Additionally NAT enables companies to use more internal IP addresses because the addresses are only used internal...

Page 273: ...packets forming a message arrive at its destination they are recompiled into the original message Most modern Wide Area Network WAN protocols including TCP IP X 25 and Frame Relay are based on packet...

Page 274: ...ime and the speed of fault detection and correction Service providers may guarantee a particular level of QoS defined by a service level agreement to their subscribers QoS enabled hardware and softwar...

Page 275: ...considered to be solution providers when they provide products and or services that meet their customer s specific needs Normally a solution provider is offering a solution that isn t readily availab...

Page 276: ...the Internet Subnet Address The subnet portion of an IP address that is dedicated to the subnet In a subnetted network the host portion of an IP address is split into a subnet portion and a host port...

Page 277: ...oss a Virtual Private Network VPN It does this by embedding its own network protocol within the TCP IP packets carried by the Internet See also TCP IP and VPN ToS Type of Service A field within an IP...

Page 278: ...same level of security as that of a wired LAN LANs are inherently more secure than WLANs because LANs are somewhat protected by the physicalities of their structure having some or all of the network i...

Page 279: ...em to ensure that only authorized network users can access the network It should be noted that WPA is an interim standard that will be replaced with the IEEE s 802 11i standard upon its completion XML...

Page 280: ...AG 5000 276 Glossary of Terms Notes Use this page for your notes...

Page 281: ...scriber interfaces 201 branding 13 bridge mode 16 184 C cautions 34 character lengths 42 CLI 16 Command Line Interface 16 inputting data 40 logging in 39 common problems 256 concurrent login 191 Confi...

Page 282: ...nners 162 assigning buttons 161 pixel sizes 164 time formats 164 inputting data 42 in room port mapping 96 Installation 35 powering up the AG 5000 38 unpacking the AG 5000 36 workflow 37 interfaces 12...

Page 283: ...ing by port 132 exporting 133 finding by description 134 finding by location 135 finding by port 136 importing 137 mapping 139 updating 130 port locations 93 port mapping 22 96 126 in room port mappin...

Page 284: ...ing 201 Subscriber Management 208 configuration 210 models 209 subscriber messages 179 subscriber profiles adding 140 deleting all expired 145 deleting by MAC 143 deleting by user 144 displaying 150 f...

Page 285: ...AG 5000 Index 281 W warnings 34 Web Management Interface 58 menu organization 41 workflow 37 X XML API 25 XML interface 250...

Page 286: ...AG 5000 282 Index This page intentionally blank...

Reviews:

No comments