peplink Pepwave MAX Series User Manual Download Page 86

Page: 86 / 218

https://www.peplink.com

Pre-shared Key

This defines the peer authentication pre-shared key used to authenticate this VPN

connection. The connection will be up only if the pre-shared keys on each side

match.

Remote

Certificate (pem

encoded)

Available only when

X.509 Certificat

e is chosen as the

Authentication

method,

this field allows you to paste a valid X.509 certificate.

Local ID

Main Mode

, this field can be left blank. In

Aggressive Mode

, if

Remote

Gateway IP Address

is filled on this end and the peer end, this field can be left

blank. Otherwise, this field is typically a U-FQDN.

Remote ID

Main Mode

, this field can be left blank. In

Aggressive Mode

, if

Remote

Gateway IP Address

is filled on this end and the peer end, this field can be left

blank. Otherwise, this field is typically a U-FQDN.

Phase 1 (IKE)

Proposal

Main Mode

, this allows setting up to six encryption standards, in descending

order of priority, to be used in initial connection key negotiations. In

Aggressive

Mode

, only one selection is permitted.

Phase 1 DH

Group

This is the Diffie-Hellman group used within IKE. This allows two parties to

establish a shared secret over an insecure communications channel. The larger

the group number, the higher the security.

Group 2

1024-bit

is the default value.

Group 5

1536-bit

is the alternative option.

Phase 1 SA

Lifetime

This setting specifies the lifetime limit of this Phase 1 Security Association. By

default, it is set at

3600

seconds.

Phase 2 (ESP)

Proposal

Main Mode

, this allows setting up to six encryption standards, in descending

order of priority, to be used for the IP data that is being transferred. In

Aggressive

Mode

, only one selection is permitted.

Phase 2 PFS

Group

Perfect forward secrecy (PFS) ensures that if a key was compromised, the

attacker will be able to access only the data protected by that key.

None

- Do not request for PFS when initiating connection. However, since there

is no valid reason to refuse PFS, the system will allow the connection to use PFS

if requested by the remote peer. This is the default value.

Group 2

: 1024-bit Diffie-Hellman group. The larger the group number, the higher

the security.

Group 5

1536-bit

is the third option.

Phase 2 SA

Lifetime

This setting specifies the lifetime limit of this Phase 2 Security Association. By

default, it is set at

28800

seconds.

Summary of Contents for Pepwave MAX Series

Page 1: ...0 Pepwave Ltd All Rights Reserved Pepwave and the Pepwave logo are trademarks of Pepwave Ltd Other brands or products mentioned may be trademarks or registered trademarks of their respective owners Pe...

Page 2: ...Mini Core 13 Advanced Feature Summary 14 Drop in Mode and LAN Bypass Transparent Deployment 14 QoS Clearer VoIP 15 Per User Bandwidth Control 15 High Availability via VRRP 16 USB Modem and Android Tet...

Page 3: ...igure a website to be published from the ContentHub 67 Configure an application to be published from the ContentHub 68 MediaFast Configuration 70 Setting Up MediaFast Content Caching 70 Scheduling Con...

Page 4: ...ns 100 DSL Cable Optimization 101 Firewall 101 Outbound and Inbound Firewall Rules 102 Access Rules 102 Apply Firewall Rules to PepVpn Traffic 105 Intrusion Detection and DoS Prevention 105 Content Bl...

Page 5: ...rks 131 SIM Toolkit 131 AP access point 134 AP Controller 134 Wireless SSID 134 Settings 138 AP Controller Status 143 Info 143 Access Point Usage 144 Wireless SSID 147 Wireless Client 147 Nearby Devic...

Page 6: ...167 CLI Command Line Interface Support 168 Status 169 Device 169 GPS Data 170 Active Sessions 171 Client List 172 WINS Client 173 UPnP NAT PMP 173 OSPF RIPv2 174 BGP 174 SpeedFusion Status 174 Event L...

Page 7: ...less SD WAN router series has a wide range of products suitable for many different deployments and markets Entry level SD WAN models such as the MAX BR1 are suitable for SMEs or branch offices High ca...

Page 8: ...Optimized FQDN Fully Qualified Domain Name HSDPA High Speed Downlink Packet Access HTTP Hyper Text Transfer Protocol ICMP Internet Control Message Protocol IP Internet Protocol LAN Local Area Network...

Page 9: ...Internet connections can be bonded together using our SpeedFusion technology This allows better reliability larger bandwidth and increased wireless coverage are comparing to use only one 4G LTE modem...

Page 10: ...to a remote VPN peer Optional pre shared key setting SpeedFusionTM throughput ping and traceroute tests PPTP server PPTP and IPsec passthrough 2 1 4 Firewall Outbound LAN to WAN firewall rules Inboun...

Page 11: ...ation 2 2 Other Supported Features User friendly web based administration interface HTTP and HTTPS support for web admin interface default redirection to HTTPS Configurable web administration port and...

Page 13: ...ors The statuses indicated by the front panel LEDs are as follows Status Indicators Status OFF System initializing Red Booting up or busy Blinking red Boot up error Green Ready Cellular Indicators Cel...

Page 14: ...ation grows it needs more bandwidth But modifying your network would require effort better spent elsewhere In Drop in Mode you can conveniently install your Peplink router without making any changes t...

Page 15: ...rs can detect VoIP traffic and assign it the highest priority giving you crystal clear calls 4 3 Per User Bandwidth Control With per user bandwidth control you can define bandwidth control policies fo...

Page 16: ...ability mode With High Availability mode the second device will take over when needed Compatible with MAX 700 MAX HD2 All variants HD4 All Variants 4 5 USB Modem and Android Tethering For increased WA...

Page 17: ...d by most devices but legacy devices can also connect using PPTP Click here for the full instructions on setting up L2TP with IPsec Click here for the full instructions on setting up OpenVPN connectio...

Page 18: ...ing card slot A computer installed with the TCP IP network protocol and a supported web browser Supported browsers include Microsoft Internet Explorer 11 or above Mozilla Firefox 24 or above Apple Saf...

Page 19: ...t and can access the Internet via WAN connections please refer to the following setup procedures LAN configuration For basic configuration refer to Section 8 Connecting to the Web Admin Interface For...

Page 20: ...k com Copyright 2021 Pepwave 6 Mounting the Unit 6 1 Wall Mount The Pepwave MAX BR1 Mini Core requires four screws for wall mounting Recommended screw specification M3 5 x 20mm head diameter 6mm head...

Page 21: ...ld of the web browser http 192 168 50 1 This is the default LAN IP address for Pepwave routers 3 Enter the following to access the web admin interface Username admin Password admin This is the default...

Page 22: ...For further information on setting up these connections please refer to Sections 8 and 9 Device Information displays details about the device including model name firmware version and uptime For furt...

Page 23: ...your router including VLAN A grey X means that the VLAN is used in other settings and cannot be deleted You can find which settings are using the VLAN by hovering over the grey X Alternatively a red...

Page 24: ...operate like a single LAN and any broadcast or multicast packets will be sent over the VPN Remote Network Isolation Enable this option if you want to block network traffic between the remote networks...

Page 25: ...checkbox IP Range Subnet Mask These settings allocate a range of IP addresses that will be assigned to LAN computers by the Pepwave router s DHCP server Lease Time This setting specifies the length o...

Page 26: ...ned once only DHCP Reservation This setting reserves the assignment of fixed IP addresses for a list of computers on the LAN The computers to be assigned fixed IP addresses on the LAN are identified b...

Page 27: ...e address and subnet mask values are in w x y z format The local LAN subnet and subnets behind the LAN will be advertised to the VPN Remote routes sent over the VPN will also be accepted Any VPN membe...

Page 28: ...Servers When this option is enabled the DNS proxy server will also forward DNS requests to Google s Public DNS Servers in addition to the DNS servers defined in each WAN This could increase the DNS se...

Page 29: ...ng protocol Once VLAN configuration is complete click Save to store your changes Bonjour Forwarding Settings Enable Check this box to turn on Bonjour forwarding Bonjour Service Choose Service and Clie...

Page 30: ...x to enable routing between virtual LANs Captive Portal Check this box to turn on captive portals DHCP Server Settings DHCP Server When this setting is enabled the Pepwave router s DHCP server automat...

Page 31: ...this box to enable BOOTP on older networks that still require it Extended DHCP Option In addition to standard DHCP options e g DNS server address gateway address subnet mask you can specify the value...

Page 32: ...rding DHCP requests from client to server This option also embeds the device s MAC address and network name in circuit and remote IDs Check this box to enable DHCP Option 82 Once DHCP is set up config...

Page 33: ...Mode Click Open Access to allow clients to freely access your router Click User Authentication to force your clients to authenticate before accessing your router RADIUS Server This authenticates your...

Page 34: ...e captive Portal in this field To whitelist a network enter the domain name IP address here and click To delete an existing network from the list of allowed networks click the button next to the listi...

Page 35: ...please enter them here If left empty the built in portal will display the default terms and conditions Custom Landing Page Fill in this field to redirect clients to an external URL 9 Configuring the W...

Page 36: ...k the Details button in the corresponding row to modify the connection setting Important Note Connection details will be changed and become effective immediately after clicking the Save and Apply butt...

Page 37: ...vers will be the ping targets for checking the connection healthiness If the box is not checked the field Host 1 must be filled and the field Host 2 is optional The connection is considered to be up i...

Page 38: ...l not resume unless this option has been turned off or the usage has been reset when a new billing cycle starts Start Day This option allows you to select which day of the month a billing cycle starts...

Page 39: ...ame Optional If your service provider s DHCP server requires you to supply a hostname value upon acquiring an IP address you may enter the value here If your service provider does not provide you with...

Page 40: ...information is typically determined by and can be obtained from the ISP DNS Servers Each ISP may provide a set of DNS servers for DNS lookups This setting specifies the DNS Domain Name System servers...

Page 41: ...Name Optional Service name is provided by the ISP Note Leave this field blank unless it is provided by your ISP IP Address Optional If your ISP provides a PPPoE IP address enter it here Note Leave thi...

Page 42: ...arameter which is provided by your ISP Note Leave this field blank unless it is provided by your ISP Address Type Your ISP will also indicate whether the server IP address is Dynamic or Static Please...

Page 43: ...y which uniquely identifies the SIM card This is applicable to 3G modems only MEID Some Pepwave routers support both HSPA and EV DO For Sprint or Verizon Wireless EV DO users a unique MEID identifier...

Page 44: ...scenario Click the button to enable IP Forwarding Subnet Selection Choose between Auto The subnet mask will be set automatically Force 31 Subnet The subnet mask will be set as 255 255 255 254 31 and...

Page 45: ...s option is disabled by default DNS Servers Each ISP may provide a set of DNS servers for DNS lookups This setting specifies the DNS Domain Name System servers to be used when a DNS lookup is routed t...

Page 46: ...down menu allows restricting cellular to particular band Click the button to enable the selection of specific bands Optimal Network Discovery Cellular WAsN by default will only handover from 3G to LTE...

Page 47: ...etting is Auto APN Login Password SIM PIN When Auto is selected the information in these fields will be filled automatically Select Custom to customize these parameters The parameter values are determ...

Page 48: ...ction and will be used when none of the other higher priority connections are available Standby State This option allows you to choose whether to remain connected or disconnected when this WAN connect...

Page 49: ...he number of consecutive check failures before treating a connection as down Recovery Retries This is the number of responses required after a health check failure before treating a connection as up a...

Page 50: ...none of the other higher priority connections are available Standby State This setting specifies the state of the WAN connection while in standby The available options are Remain Connected hot standb...

Page 51: ...determine the best data rate while manually selecting a rate will force devices to connect using the fixed rate Output Power If you are setting up a network with many Wi Fi devices in close proximity...

Page 52: ...s option has been turned off or the usage has been reset when a new billing cycle starts Start Day This option allows you to define which day of the month each billing cycle begins Monthly Allowance T...

Page 53: ...nnectivity with target DNS servers The connection will be treated as up if DNS responses are received from one or both of the servers regardless of whether the result was positive or negative Health C...

Page 54: ...t in seconds for ping DNS lookup requests The default timeout is 5 seconds Health Check Interval This setting specifies the time interval in seconds between ping or DNS lookup requests The default hea...

Page 55: ...hosts Hosts Domain This setting specifies a list of hostnames or domains to be associated with the public Internet IP address of the WAN connection Important Note In order to use dynamic DNS services...

Page 56: ...to get started This will open a window similar to the one shown below Wi Fi Connection Profile Settings Type Select whether the network will connect automatically or manually Network Name SSID Enter a...

Page 57: ...ted as down in the event of IP routing errors Health Check Method PING ICMP ping packets will be issued to test the connectivity with a configurable target IP address or hostname A WAN connection is c...

Page 58: ...d as up if DNS responses are received from any one of the health check DNS servers regardless of a positive or negative result By default the first two DNS servers of the WAN connection are used as th...

Page 59: ...ponses Automatic Public DNS Server Check on DNS Test Failure When the health check method is set to DNS Lookup and health checks fail the Pepwave router will automatically perform DNS lookups on publi...

Page 60: ...NS service Password TZO Key This setting specifies the password for the dynamic DNS service Hosts Domain This field allows you to specify a list of host names or domains to be associated with the publ...

Page 61: ...Wi Fi radio should follow If a North American region is selected RF channels 1 to 11 will be available and the maximum transmission power will be 26 dBm 400 mW If European region is selected RF channe...

Page 62: ...te automatic channel selection Output Power This option is for specifying the transmission output power for the Wi Fi AP There are 4 relative power levels available Max High Mid and Low The actual out...

Page 63: ...ate for sending a beacon By default 1Mbps is selected Beacon Interval A This option is for setting the time interval between each beacon By default 100ms is selected DTIM A This field allows you to se...

Page 64: ...to 9 s ACK Timeout A This field is for setting the wait time to receive an acknowledgement packet before performing a retransmission By default this field is set to 48 s Frame Aggregation A This opti...

Page 65: ...n be configured at Advanced Wi Fi Settings or Advanced Wi Fi WAN or some models Wi Fi WAN Settings Channel Width Available options are 20 40 MHz and 20 MHz Default is 20 40 MHz which allows both width...

Page 66: ...need for internet access The ContentHub can be used to provide infotainment to connected users on transport 11 2 Configuring the ContentHub ContentHub Storage needs to be configured before content ca...

Page 67: ...pe of ContentHub content The content should be uploaded to an FTP server before Click New Website and the following configuration options will appear The Active checkbox toggles the activation of the...

Page 68: ...igured before If you want to trigger the sync manually you can click The Status column shows the sync progress When the sync complete there is a summary as shown in the screenshot below To access the...

Page 69: ...tps www peplink com Copyright 2021 Pepwave First install the desired framework in Package Manager as below After installing the framework you can select the type to Application and configure the websi...

Page 70: ...to start and stop your application the Mediafast router will only execute start sh and stop sh when the corresponding website is enabled and disabled respectively 2 Compress your application files an...

Page 71: ...r Blacklist do not cache the specified domains Source IP Subnet This setting allows caching to be enabled on custom subnets only If Any is selected then caching will apply to all subnets The Secure Co...

Page 72: ...Enter a file extension such as JPG or DOC Then enter a lifetime in days to specify how long files with that extension will be cached Add or delete entries using the controls on the right 12 2 Scheduli...

Page 73: ...o ensure that the most recent download file size is within the expected range A value that is too low might indicate an incomplete download or incorrectly specified download target while a value that...

Page 75: ...or more WANs other WANs can be used to continue carrying the network traffic Different models of our SD WAN routers have different numbers of site to site connections allowed End users who need to hav...

Page 76: ...to Advanced SpeedFusion or Advanced PepVPN and click the New Profile button to create a new VPN profile you may have to first save the displayed default profile in order to access the New Profile but...

Page 77: ...ate peers When selecting By Remote ID Only be sure to enter a unique peer ID number in the Remote ID field Remote ID Pre shared Key This optional field becomes available when Remote ID Pre shared Key...

Page 78: ...from the remote peer Therefore at least one of the two VPN peers must specify this value Otherwise VPN connections cannot be established Cost Define path cost for this profile OSPF will determine the...

Page 79: ...th the highest priority will be used To enable asymmetric connections connection mapping to remote WANs cut off latency and packet loss suspension time click the button Send All Traffic To This featur...

Page 80: ...gnate Backward Compatibility Determine the level of backward compatibility needed for PepVPN tunnels The use of the Latest setting is recommended as it will improve the performance and resilience of S...

Page 81: ...r Visit our YouTube Channel for a video tutorial http youtu be TLQgdpPSY88 13 2 The Pepwave Router Behind a NAT Router Pepwave routers support establishing SpeedFusionTM over WAN connections which are...

Page 82: ...be utilized in establishing the VPN 13 3 SpeedFusionTM Status SpeedFusionTM status is shown in the Dashboard The connection status of each connection profile is shown as below After clicking the Statu...

Page 83: ...wave products can make multiple IPsec VPN connections with Peplink Pepwave Cisco and Juniper routers Note that all LAN subnets and the subnets behind them must be unique Otherwise VPN members will not...

Page 85: ...k and NAT Network has the same size for example policy 192 168 50 0 24 172 16 1 0 24 will translate the local IP address 192 168 50 10 to 172 16 1 10 and 192 168 50 20 to 172 16 1 20 This is a bidirec...

Page 86: ...he Diffie Hellman group used within IKE This allows two parties to establish a shared secret over an insecure communications channel The larger the group number the higher the security Group 2 1024 bi...

Page 87: ...bound traffic among WAN connections Important Note Outbound policy is applied only when more than one WAN connection is active The settings for managing and load balancing outbound traffic are located...

Page 88: ...st application compatibility Normal Application Compatibility Outbound traffic from a source LAN device to the same destination Internet IP address will be routed through the same WAN connection persi...

Page 89: ...d Policy Click in the Outbound Policy form Choose Custom and press the Save button 15 2 1 Algorithm Weighted Balance This setting specifies the ratio of WAN connection usage to be applied on the speci...

Page 90: ...hernet WAN2 is 16 7 10 60 x 100 Matching traffic distributed to Wi Fi WAN is 16 7 10 60 x 100 Matching traffic distributed to Cellular 1 is 16 7 10 60 x 100 Matching traffic distributed to Cellular 2...

Page 91: ...s eliminating the issues mentioned above There are two persistent modes By Source and By Destination By Source The same WAN connection will be used for traffic matching the rule and originating from t...

Page 92: ...uting the specified type of traffic A lower priority WAN connection will be used only when all higher priority connections have become unavailable Starting from Firmware 5 2 outbound traffic can be pr...

Page 93: ...dth and WAN selection is determined every time an IP session is made 15 2 7 Algorithm Lowest Latency The traffic matching this rule will be routed through the healthy WAN connection that is selected i...

Page 94: ...te VPN peers By default this bar is on the top of all custom rules This position means that traffic for remote VPN subnets will be routed to the corresponding VPN peer You can create custom Priority o...

Page 95: ...or this setting consist of only alphanumeric and underscore _ characters IP Protocol The IP Protocol setting along with the Port setting specifies the protocol of the service as TCP UDP ICMP or IP Tra...

Page 96: ...t to TCP and Port set to Port Range and Service Ports 80 88 TCP traffic received on ports 80 through 88 is forwarded to the configured servers via the respective ports Port Mapping traffic that is rec...

Page 97: ...to the LAN ports When the options are enabled a table listing all the forwarded ports under these two protocols can be found at Status UPnP NAT PMP 17 NAT Mappings NAT mappings allow IP address mappi...

Page 98: ...ied WAN connection s and IP address es will be forwarded to the LAN host This option is only available when IP Address is selected in the LAN Client s field Note that inbound mapping is not needed for...

Page 99: ...P Reservation table on the LAN settings page Everyone represents all clients that are not defined in any rule above Click on a rule to change its group Add Edit User Group Subnet IP Address From the d...

Page 100: ...ported application or by defining a custom application manually The priority preference of supported applications is placed at the top of the table Custom applications are at the bottom 18 3 2 Priorit...

Page 101: ...the upload traffic By default this feature is enabled 19 Firewall A firewall is a mechanism that selectively filters data traffic between the WAN side the Internet and the LAN side of the network It...

Page 102: ...ewall Rules 19 1 1 Access Rules The outbound firewall settings are located at Advanced Firewall Access Rules Outbound Firewall Rules Click Add Rule to display the following screen Inbound firewall set...

Page 103: ...her the firewall rule should take effect If the box is checked the firewall rule takes effect If the traffic matches the specified protocol IP port actions will be taken by the Pepwave router based on...

Page 104: ...a single port or a range of ports can be specified for the Destination IP Port settings Action This setting specifies the action to be taken by the router upon encountering traffic that matches the b...

Page 105: ...When this option is enabled Outbound Firewall Rules will be applied to PepVPN traffic To turn on this feature click check the Enable check box and press the Save button 19 1 3 Intrusion Detection and...

Page 106: ...o be blocked from LAN PPTP PepVPN peer clients access except for those on the Exempted User Groups or Exempted Subnets defined below 19 2 2 Web Blocking Defines website domain names to be blocked from...

Page 107: ...domain name to block any web site with a host name having the domain name in the middle For example If you enter foobar then www foobar com www foobar co jp or foobar co uk will be blocked Placing th...

Page 108: ...f the router By default this is specified as the LAN IP address If you want to specify your own ID enter it in the Custom field Area This is an overview of the OSPFv2 areas you have defined Click on t...

Page 109: ...hile unlinked machines will ignore it Link Type Choose the network type that this area will use Authentication Choose an authentication method if one is used from this drop down menu Available options...

Page 110: ...iver RIPv2 packets OSPF RIPv2 Route Advertisement PepVPN Route Isolation Isolate PepVPN peers from each other Received PepVPN routes will not be forwarded to other PepVPN peers to reduce bandwidth con...

Page 111: ...e When this box is checked this BGP profile will be enabled Otherwise it will be disabled Interface The interface where BGP neighbor is located Autonomous System The Autonomous System Number ASN of th...

Page 112: ...the BGP connection is staled This value must be either 0 infinite hold time or between 3 and 65535 inclusively Network Advertising Networks to be advertised to BGP neighbor Static Route Advertising En...

Page 113: ...s BGP profile will export to other BGP profiles Export to OSPF When this box is checked routes learnt from this BGP profile will export to the OSPF routing protocol 22 Remote User Access A remote acce...

Page 114: ...checked weak ciphers such as 3DES will be disabled Continue to configure the authentication method 22 2 OpenVPN Select OpenVPN and continue to configure the authentication method The OpenVPN Client pr...

Page 115: ...to Network Select the VLAN network for remote users to enable remote user access on Authentication Determine the method of authenticating remote users User accounts This setting allows you to define...

Page 116: ...P server details to allow for LDAP server authentication Radius Server Enter the matching Radius server details to allow for Radius server authentication Active Directory Enter the matching Active Dir...

Page 117: ...s a drop in connection configured on a LAN bypass port In the diagram the WAN ports of each Pepwave router connect to the router and to the modem Both Pepwave routers connect to the same LAN switch vi...

Page 118: ...e slave Resume Master Role Upon Recovery This option is displayed when Master mode is selected in Preferred Role If this option is enabled once the device has recovered from an outage it will take ove...

Page 119: ...LAN Subnet Mask This setting specifies the subnet mask of the LAN Important Note For Pepwave routers in NAT mode the virtual IP VIP should be set as the default gateway for all hosts on the LAN segmen...

Page 120: ...nnot be configured as a LAN bypass port while it is configured for high availability 23 2 Certificate Manager This section allows for certificates to be assigned to the local VPN Web Admin SSL Captive...

Page 121: ...pted These connections will be redirected to a specified web proxy server and port number Web proxy interception settings and proxy server settings for each WAN can be specified after selecting Enable...

Page 122: ...ercept SMTP connections Choose a WAN port according to the outbound policy and then forward the connection to the SMTP server if the chosen WAN has enabled forwarding If the forwarding is disabled for...

Page 123: ...rver 23 3 4 Custom Service Forwarding After clicking the enable checkbox enter your TCP port for traffic heading to the router and then specify the IP Address and Port of the server you wish to forwar...

Page 124: ...trol and one for data In a multi WAN situation they must be routed to the same WAN connection Otherwise problems will arise in transferring files By default the Pepwave router monitors TCP control con...

Page 125: ...ce on the built in terminal block The RS 232 serial interface can be used to connect to a serial device and make it accessible over an TCP IP network The serial interface can be enabled and parameters...

Page 126: ...5 Pin 6 Pin 7 RTS Pin 8 CTS Pin 9 The RS232 serial interface is not an isolated RS232 External galvanic isolation may be added if required Be sure to check whether your serial cable is a null modem c...

Page 127: ...Sentence Type If you ve chosen to send GPS reports in NMEA format select one or more sentence types for sending the data GPRMC GPGGA GPVTG GPGSA and GPGSV Vehicle ID The vehicle ID will be appended in...

Page 128: ...ay on for a period of time after the engine of a vehicle is turned off Ignition Sensing installation Functoin Colour Wire I O optional Brown IGN I P connected to positive feed on the ignition Orange D...

Page 130: ...nected to I O pin on 4 pin connector can be configured as a digital input digital output or analog input Digital Input the connection supports input sensing it reads the external input and determine i...

Page 131: ...from different VLANs The created network groups can be used in outbound policies firewall rules 23 9 SIM Toolkit The SIM Toolkit accessible via Advanced Misc Settings SIM Toolkit supports two functio...

Page 132: ...nder the USSD Code text field and click Submit You will receive a confirmation To check the SMS response click Get After a few minutes you will receive a response to your USSD code SMS The SMS option...

Page 134: ...on TCP port 443 An extended DHCP option CAPWAP Access Controller addresses field 138 will be added to the DHCP server A local DNS record AP Controller will be added to the local DNS proxy Sync Method...

Page 135: ...apply a time schedule to this interface VLAN This setting specifies the VLAN ID to be tagged on all outgoing packets generated from this wireless network i e packets that travel from the Wi Fi segmen...

Page 136: ...y environment you can enable this option to provide additional information on the manner in which clients are physically connected to the network Layer 2 Isolation A Layer 2 refers to the second layer...

Page 137: ...istrator to control access using MAC address filtering Available options are None Deny all except listed and Accept all except listed MAC Address List Connection coming from the MAC addresses in this...

Page 138: ...enter the UDP accounting port s used by your RADIUS server s or click the Default button to enter 1813 NAS Identifier Choose between Device Name LAN MAC address Device Serial Number and Custom Value...

Page 139: ...cols your APs are using Channel Width There are three options 20 MHz 20 40 MHz and 40 MHz With this feature enabled the Wi Fi system can use two channels at once Using two channels improves the perfor...

Page 140: ...ime between each beacon send Available options are 100ms 250ms and 500ms DTIMA This field provides the option to set the frequency for beacon to include delivery traffic indication message DTIM The in...

Page 141: ...essing the device HTTP to HTTPS Redirection This option will be available if you have chosen HTTPS as the Web Access Protocol With this enabled any HTTP access to the web admin will redirect to HTTPS...

Page 142: ...e Wi Fi AP There are 4 relative power levels available Max High Mid and Low The actual output power will be bound by the regulatory limits of the selected country Beacon RateA This option is for setti...

Page 143: ...box will toggle the display of information for that frequency By default the graphs display the number of clients and data usage for both 2 4GHz and 5 GHz frequencies SSID The colored boxes indicate...

Page 144: ...in time Use the buttons next to Zoom to select the time scale you wish to view In addition you could use the sliders at the bottom to further refine your timescale Events This event log displays all...

Page 145: ...ireless Devices This table shows the detailed information on each AP including channel number of clients upload traffic and download traffic Click the blue arrows at the left of the table to expand an...

Page 146: ...broadcast Click the icon to see a graph displaying usage Click any point in the graphs to display detailed usage and client information for that device using that SSID at that point in time On the Dat...

Page 147: ...any SSID to obtain more detailed usage information on each SSID 26 4 Wireless Client You can search for specific Wi Fi users by navigating to AP Controller Status Wireless Client Here you will be able...

Page 149: ...e device MAC address will result in a popup with information on how this device was detected Click the icons and the device will be moved to the bottom table of identified devices 26 6 Event Log You c...

Page 150: ...s and click the More link for additional records 27 Toolbox Tools for managing firmware packs can be found at AP Toolbox Firmware Packs Here you can manage the firmware of your AP Clicking on will res...

Page 151: ...the Web Session Timeout Before the session expires you may click the Logout button in the web admin to exit the session 0 hours 0 minutes signifies an unlimited session time This setting should be use...

Page 152: ...fore the Pepwave router terminates its access to the web admin interface By default it is set to 4 hours Authentication by RADIUS With this box is checked the web admin will authenticate using an exte...

Page 153: ...to choose between granting access to LAN and WAN clients or to LAN clients only Security This option is for specifying the protocol s through which the web admin interface can be accessed HTTP HTTPS...

Page 154: ...rm of w x y z m where w x y z is an IP address e g 192 168 0 0 and m is the subnet mask in CIDR format which is between 0 and 32 inclusively For example 192 168 0 0 24 To define multiple subnets separ...

Page 155: ...y the firmware The time that this process takes will depend on your internet connection s speed The firmware will now be applied to the router The amount of time it takes for the firmware to upgrade w...

Page 156: ...ck the Choose File button under the Manual Firmware Upgrade section Navigate to the location that the firmware was downloaded to select the img file and click the Open button Click on the Manual Upgra...

Page 157: ...s the time stamps in the Pepwave router s event log and e mail notifications Check Show all to show all time zone options Time Server This setting specifies the NTP network time server to be utilized...

Page 158: ...ick the drop down menu to choose pre defined schedules as your starting point Please note that upon selection previous changes on the schedule map will be deleted Schedule Map Click on the desired tim...

Page 159: ...tically SMTP Port This field is for specifying the SMTP port number By default this is set to 25 when SSL Encryption is checked the default port number will be set to 465 You may customize the port nu...

Page 160: ...saving After Test Email Notification is clicked you will see this screen to confirm the settings Click Send Test Notification to confirm In a few seconds you will see a message with detailed test res...

Page 161: ...the box to activate this feature For more information on the Router Utility go to www peplink com products router utility 28 7 SNMP SNMP or simple network management protocol is an open standard that...

Page 162: ...ght 2021 Pepwave SNMPv3 This option allows you to enable SNMP version 3 To add a community for either SNMPv1 or SNMPv2 click the Add SNMP Community button in the Community Name table upon which the fo...

Page 163: ...P User in the SNMPv3 User Name table upon which the following screen is displayed SNMPv3 User Settings User Name This setting specifies a user name to be used in SNMPv3 Authentication Protocol This se...

Page 164: ...com You can register your devices under the account monitor their status see their usage reports and receive offline notifications 28 9 Configuration Backing up Pepwave router settings immediately af...

Page 165: ...ons Some Pepwave routers have features that can be activated upon purchase Once the purchase is complete you will receive an activation key Enter the key in the Activation Key field click Activate an...

Page 166: ...ing utility is located at System Tools Ping illustrated below Tip A system administrator can use the ping utility to manually check the connectivity of a particular LAN WAN connection 29 2 Traceroute...

Page 167: ...to test the throughput between different VPN peers You can define the Test Type Direction and Duration of the test and press Go to perform the throughput test The VPN test utility is located at System...

Page 168: ...CLI Command Line Interface Support The CLI command line interface can be accessed via SSH This field enables CLI support The below settings specify which TCP port and which interface s should accept...

Page 169: ...s Device System Information Router Name This is the name specified in the Router Name field located at System Admin Security Model This shows the model name and number of this device Product Code If y...

Page 170: ...ptime This shows the length of time since the device has been rebooted System Time This shows the current system time OpenVPN Client Profile Link to download OpenVpn Client profile when this is enable...

Page 171: ...aq id 294 to download the driver 30 3 Active Sessions Information on active sessions can be found at Status Active Sessions Overview This screen displays the number of sessions initiated by each appli...

Page 172: ...table is located at Status Client List It lists DHCP and online client IP addresses names retrieved from the DHCP reservation table or defined by users current download and upload rate and MAC addres...

Page 173: ...s of clients retrieved will be automatically matched into the Client List see previous section Click Flush All to flush all WINS client records 30 6 UPnP NAT PMP The table that shows the forwarded por...

Page 174: ...ck Save or Confirm 30 7 OSPF RIPv2 Shows status of OSPF and RIPv2 30 8 BGP Shows status of BGP 30 9 SpeedFusion Status Current SpeedFusionTM status information is located at Status SpeedFusionTM Detai...

Page 175: ...peplink com Copyright 2021 Pepwave Click the button for a chart displaying real time throughput latency and drop rate information for each WAN connection When pressing the button the following menu wi...

Page 176: ...Pepwave The Speedfusion status page shows all related information about the PepVPN connection This screen also allows you to run PepVPN Tests allowing throughput tests 30 10 Event Log Event log inform...

Page 177: ...nk com Copyright 2021 Pepwave The log section displays a list of events that has taken place on the Pepwave router Check Auto Refresh to refresh log entries automatically Click the Clear Log button to...

Page 178: ...out each connected WAN connection For cellular connections it shows signal strength quality throughput and latency for the past hour 32 Usage Reports This section shows bandwidth usage statistics and...

Page 180: ...he device since the first bootup The Data transferred since last reboot table indicates how much network traffic has been processed by the device since the last bootup 32 2 Hourly This page shows the...

Page 181: ...m the drop down menu If you have enabled the Bandwidth Monitoring feature the Current Billing Cycle table for that WAN connection will be displayed Click on a date to view the client bandwidth usage o...

Page 182: ...itoring feature you can check the usage of each particular connection and view the information by Billing Cycle or by Calendar Month Click the first two rows to view the client bandwidth usage in the...

Page 185: ...LED status light blinks in RED 2 times and release the button green status light starts blinking Hold for approximately 20 seconds for factory reset Note The LED status light blinks in RED 3 times and...

Page 186: ...required to correct the interference at his own expense FCC Caution Any changes or modifications not expressly approved by the party responsible for compliance could void the user s authority to oper...

Page 189: ...72 MHz 17 31dBm This equipment complies with CE radiation exposure limits set forth for an uncontrolled environment This equipment should be installed and operated with a minimum distance of 20cm betw...

Page 190: ...es 1 l appareil ne doit pas produire de brouillage et 2 l utilisateur de l appareil doit accepter tout brouillage radio lectrique subi m me si le brouillage est susceptible d en compromettre le foncti...

Page 191: ...r will be required to correct the interference at his own expense Caution Any changes or modifications not expressly approved by the party responsible for compliance could void the user s authority to...

Page 192: ...io le jouet doit treplac au moins 30_cm des personnes proximit The device could automatically discontinue transmission in case of absence of information to transmit or operational failure Note that th...

Page 193: ...int to point and non point to point operation as appropriate and iii Users should also be advised that high power radars are allocated as primary users i e priority users of the bands 5650 5850 MHz an...

Page 196: ...m 5GHz 5150 5250 MHz 22 73 dBm This equipment complies with CE radiation exposure limits set forth for an uncontrolled environment This equipment should be installed and operated with a minimum distan...

Page 197: ...radio communications Operation of this equipment in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his own expense Ca...

Page 198: ...acing to any person at all times D claration d exposition aux radiations Cet quipement est conforme aux limites d exposition aux rayonnements IC tablies pour un environnement non contr l Cet quipement...

Page 201: ...2 MHz 19 78 dBm This equipment complies with CE radiation exposure limits set forth for an uncontrolled environment This equipment should be installed and operated with a minimum distance of 20cm betw...

Page 202: ...et forth for an uncontrolled environment This equipment should be installed and operated with minimum distance 20cm between the radiator your body Any Changes or modifications not expressly approved b...

Page 203: ...dans les bandes 5250 5350 MHz et 5470 5725 MHz doit tre conforme la norme e r p limite et Le gain d antenne maximal autoris pour les appareils de la bande 5725 5825 MHz doit tre conforme la norme e i...

Page 206: ...e radiator your body contact as https www peplink com FCC Requirements for Operation in the United States Federal Communications Commission FCC Compliance Notice For Balance 30 Pro Federal Communicati...

Page 207: ...ns not expressly approved by the party responsible for compliance could void the user s authority to operate this equipment Operations in the 5 15 5 25GHz band are restricted to indoor usage only Radi...

Page 210: ...m 5GHz 5150 5250 MHz 22 88 dBm This equipment complies with CE radiation exposure limits set forth for an uncontrolled environment This equipment should be installed and operated with a minimum distan...

Page 211: ...d can radiate radio frequency energy and if not installed and used in accordance with the instruction manual may cause harmful interference to radio communications Operation of this equipment in a res...

Page 214: ...devices in the band 5725 5850 MHz shall be such that the equipment still complies with the e i r p limits specified for point to point and non point to point operation as appropriate and iii Users sh...

Page 215: ...the product is operated with a plug in 3G USB device which has maximum of 7W ERP output power D claration d exposition aux radiations for MAX HD2 LTE LTEA Cet quipement est conforme aux limites d expo...

Page 218: ...m 5GHz 5150 5250 MHz 22 88 dBm This equipment complies with CE radiation exposure limits set forth for an uncontrolled environment This equipment should be installed and operated with a minimum distan...

Search results

Summary of Contents for Pepwave MAX Series

Reviews:

Related manuals for Pepwave MAX Series

Brands by name

Popular brands

peplink Pepwave MAX Series, User Manual

Search results

Summary of Contents for Pepwave MAX Series

Reviews:

Related manuals for Pepwave MAX Series

Brands by name

Popular brands