manualshive.com logo in svg

Quadro QUADRO4LI, Administrator'S Manual

Share
Download
Quadro QUADRO4LI Administrator'S Manual Download Page 101

Quadro4Li Manual II: Administrator's Guide  

Administrator’s Menus 

 

Quadro4Li; (SW Version 5.2.x) 

 

100

 

The 

Firewall Security

 radio buttons are the following:  

 

Low Security

 - Everything that is not explicitly forbidden 

will be allowed. This security level doesn't block anything 
by default. It is recommended if the device is already 
located behind another firewall or if every filter has been 
configured correctly.

  

 

Medium Security

 - Traffic originating from the LAN side 

may pass and traffic from the WAN side will be blocked by 
default. This is the recommended security level. 

 

 

High Security

 - Everything that is not explicitly allowed will 

be blocked, including traffic from the LAN side.

  

The 

Advanced Firewall Settings

 

link refers to the page where 

Quadro’s privacy can be configured. 

The 

View Filter Rules 

link opens the 

Filtering Rules

 

page. 

Fig. II-174: Firewall and NAT Settings page 

 

Advanced Firewall Settings 

Advanced Firewall Settings

 are used to deny Ping and Portscanning operations addressed towards the device. With these features enabled, 

Quadro will answer with inscrutable messages to the Ping and Portscanning operations.  

Please Note:

 Operations are available only when the firewall is 

enabled from the 

 

Firewall and 

NAT page. 

This  page offers the following components: 

The 

Ping Stealth

 checkbox selection prohibits a Ping operation 

toward Quadro from its WAN.  

The 

Fool Portscanner

 checkbox selection prohibits Quadro 

portscanning from its WAN. As a reply to a Portscanning 
operation, "network   unreachable" or "host unreachable" 
feedback messages will be sent. 

 

Fig. II-175: Advanced Firewall Settings page 

 

Filtering Rules 

The 

Filtering Rules 

page allows you to configure the filters for incoming and outgoing traffic.  

To prevent inaccurate configuration, only one rule per service is allowed. The user may use IP groups to include several IP addresses for this rule. 
Since the filtering rules specify the operation mode of the firewall, they only take effect if the firewall has been enabled (additionally NAT should be 
enabled to use the 

Port Forwarding

 function in the 

Incoming Traffic / Port Forwarding

 filtering rules). The filtering rules are independent from the 

security level, so they will work if enabled, no matter what security level has been selected. 

Please Note:

 Applying firewall rules will prevent the establishment of new connections that violate the rules. Applying rules does not kill existing 

connections that violate the rule. 

View All

 displays all configured filters specified by their 

State

 

(enabled or disabled), the selected 

Service

, the set 

Action

 

(allowed or blocked), the IP addresses the filters apply to (if 

Restricted

) and the destination of port forwarding (

Redirect to

in case of 

Incoming Traffic/Port Forwarding

). Since it is read-

only, no modifications are allowed and no functional buttons are 
available.  

The 

Incoming Traffic/Port Forwarding

 filter is for incoming 

traffic. The rules here allow or deny systems on the Internet to 
reach the services of Quadro’s LAN. The NAT service should be 
enabled on the Quadro to provide the possibility of 

Port 

Forwarding

 in the

 Incoming Traffic/Port Forwarding

 filtering 

rules. The 

Port Forwarding

 function will be unavailable if NAT is 

disabled on the Quadro. 

 

The 

Outgoing Traffic

 filter is for outgoing traffic. The rules here 

allow or deny Quadro’s LAN users to reach external services. 

Management Access

 is used to enable management access to 

the Quadro from the Internet. A host on the Internet can be 
allowed to reach the Quadro. 

Call Control Access

 is used to enable the access from the call 

controlling application from the Internet to the Quadro. The call 
controlling applications can be used to remotely initiate and 
handle calls on the Quadro and to subscribe for certain event 

Summary of Contents for QUADRO4LI

Page 1: ...Quadro4Li Manual II Administrator s Guide Edition 1 Jan 2011 SW Release 5 2 25 and higher...

Page 2: ...15 Memory Status 17 Hardware Status 17 SIP Registration Status 17 IP Lines Registration Status 18 License Status 18 IP Routing Configuration 19 Configuration Management 21 Automatic Firmware Update 22...

Page 3: ...6 Key System Advanced Configuration 89 RTP Streaming Channels 90 Internet Uplink Menu 91 PPP PPTP Settings 91 Advanced PPP Settings 91 VPN Configuration 92 Dynamic DNS Settings 98 Firewall and NAT 99...

Page 4: ...Quadro4Li Manual II Administrator s Guide Manual III see Extension User s Guide Describes detailed the menus available for extension users and includes further all call codes at a glance...

Page 5: ...y of features and functionality the example screens shown may not appear exactly the same for your particular Quadro IP PBX as they appear in this manual The example screens are for illustrative and e...

Page 6: ...P PPTP Settings VPN Configuration Dynamic DNS Settings Firewall and NAT Filtering Rules IDS Log Users Menu Extensions Management Receptionist Management Extensions Directory Authorized Phones Database...

Page 7: ...age will be displayed to enter the modified settings Delete Deletes the selected entry s of a table A warning message will ask for confirmation before deleting an existing entry Select All Selects all...

Page 8: ...ro s first startup to make sure that it works properly in its network environment The Wizard allows navigating through the following basic configuration parameters and settings System Configuration se...

Page 9: ...ack has been uploaded and it is used to enable custom language for system voice messages or returning back to the default language English GUI Theme selection used to select the GUI theme style of the...

Page 10: ...you to select the Quadro s WAN interface connection type and its bandwidth settings These settings will make Quadro available to the external network Depending on the Uplink Interface Protocol select...

Page 11: ...server at the ISP uplink Please Note DHCP referred to here is the one that runs on the provider s side and not the Quadro s personal DHCP server The Assign Manually radio button switches to the manua...

Page 12: ...rt Medium The minimum strength of the IP Line passwords should be good The Security Report will generate warnings on all unsecured Call Routing rules IP Line passwords Firewall level if it is set to l...

Page 13: ...audit report This page also contains the following useful links to adjust the system security User Rights Management IP Line Settings Firewall NAT Please note Refer to the Quadro admin guide regarding...

Page 14: ...P and IPSec peer IP address if an active VPN IPSec or PPP interface exists Monitor includes links to survey LAN WAN IPSec and PPP traffic correspondingly The VPN traffic link will be displayed only if...

Page 15: ...Errors number of received overrun errors that occur when the receive buffer is not large enough to hold all incoming packets This error usually appears due to a slow receiving system Receive MultiCas...

Page 16: ...ppears when a call is received and indicates the caller extension and the IP address or a phone number depending on type of call Fig II 17 Lines Status Lines Status page upon established call Called P...

Page 17: ...only present when there is more than one ISDN trunks present on the Quadro These checkboxes are used to select the ISDN trunk number s over which the ISDN traffic chart will be built At least one Tru...

Page 18: ...al comments about its state are indicated here Fig II 22 Hardware Status page SIP Registration Status The SIP Registration Status table includes the following information that may be sorted in ascendi...

Page 19: ...ists the IP lines and remote extensions registered on the Quadro as well as all SLA lines registered from each IP phone The table indicates the actual IP addresses of the remote devices the usernames...

Page 20: ...new static route can be established Enable Disable is used to activate and deactivate a selected route s At least one route should be selected in order to use these functions otherwise the following e...

Page 21: ...range of the possible peers behind the PPTP L2TP tunnel whereto the IP packets should be routed Fig II 31 Add VPN Route page The Enable and Disable functional buttons are used to activate or to deact...

Page 22: ...ver Name requires the IP address or the host name of the remote server The Server Port requires the port number of the remote server The Path on Server requires the path on the server to store the bac...

Page 23: ...adro Attention When the older firmware is installed on the Quadro the system configuration will be lost and the device will be factory reset The first manipulation buttons group on this page allows yo...

Page 24: ...nerate a legible configuration file button start parsing the configuration structure of the device for the defined parameters The progress will be displayed in the area below Fig II 35 Configuration S...

Page 25: ...the event was caused by the IDS service the Check IDS link appears in the reference row that will lead to the IDS Log page or if the event has occurred due to incorrect mail sending or SIP registratio...

Page 26: ...shown here if more than one event has been selected for the action assignment Action offers radio buttons to choose one of the actions to notify the Quadro administrator when an event s takes place T...

Page 27: ...e international time and date servers Time is used to set the local time hour minute Date is used to set the date month day year Timezone provides a selection of world time zones and is used to select...

Page 28: ...ld Send Test Mail is used to initiate a test e mail transmission This button will be enabled if correct values have been submitted and saved on this page To configure the System Mail 1 Enable the syst...

Page 29: ...he access the SMS gateway POST or GET Send Test SMS is used to send a test SMS to the defined SMS Recipient Address This button will be enabled if correct values have been submitted and saved on this...

Page 30: ...onnect Quadro again and login Attention After the firmware update all IP phones attached to the Quadro should be restarted Fig II 48 Firmware Update page Networking Tools The Networking Tools page pro...

Page 31: ...protocol version for communication with the administrating application and to define the community for administrating application to connect the Quadro Enable SNMP checkbox is used to enable SNMP age...

Page 32: ...ible problems recovery The Start detecting WAN Protocol button is used to initiate WAN diagnostics that will detect the WAN IP configurations static or through DHCP and PPP servers For static WAN IP c...

Page 33: ...ing logs and may be useful for the Technical Support The Download all Logs button is used to download all logs to the local PC as a tar archive file These logs can then be used by the Epygi Technical...

Page 34: ...a corresponding request to Epygi s Technical Support This request must include the Unique ID that is displayed in the Features page above the features list Fig II 57 Features page Fig II 58 Features A...

Page 35: ...to the users The Users page contains a table where the Administrator and Local Administrator users are listed This page allows them to modify the passwords of available users in the table and to mana...

Page 36: ...o the Change Access Rights page where a list of user specific GUI pages is displayed Select the user in the table and press Edit to manage the permission for the corresponding user Fig II 62 Roles pag...

Page 37: ...ich all existing extensions on the Quadro as well as to any newly created extensions should start The prefix cannot start with the digits 0 or 9 otherwise an error message appears Please Note By savin...

Page 38: ...d modified by clicking on the link of the corresponding extension s Codecs The link leads to the Extension Codecs page Clicking on each user extension in the Extensions table will open the extension s...

Page 39: ...User Settings table on the Main Page of the Extension s Quadro Web Management accessed by the extension s login see Manual III Extension User s Guide Besides this the details of the extension will be...

Page 40: ...ccessibility to the verification mechanism Timeout indicates the timeout between two attempts for the SIP registration server accessibility verification If no reply is received from the primary SIP se...

Page 41: ...pearance text field requires the maximum number of active calls on the line For example if 1 is configured in this field and the extension is in use the next incoming call will go to the call queue If...

Page 42: ...ly enabled from this page by pressing the Activate button When the Voice Mail Configuration Wizard is activated the extension s user is prompted to insert personal settings as he she enters his her Vo...

Page 43: ...llowed or forbidden to intercept calls ringing on extensions in the Pickup Group If a user dials the pickup extension when several extensions of the pickup group are ringing the first oldest in time c...

Page 44: ...ed in the Access List table The value in this field is strictly dependent on the Call Type defined in the same named drop down list If the PBX call type is selected the Quadro extension number should...

Page 45: ...the called extensions will automatically go off hook the phone speaker automatically becomes activated and the caller will be able to make his announcement Since the paging call opens one way communi...

Page 46: ...for Paging Group The Address text field is used to define the address to be included in the Access List table The value in this field is strictly dependent on the Call Type defined in the same named...

Page 47: ...ction Recurring Attendant Prompt Repetition Count text field indicates the number of Recurring Attendant Prompts to be consecutively played to the caller with no action from his her side When the Recu...

Page 48: ...m also prevents uploading if there is not enough memory available for the corresponding extension This will cause the You do not have enough space warning message to appear Browse opens the file choos...

Page 49: ...on on the Extensions Management page 3 Confirm the deletion by clicking on Yes The extension s will be deleted To abort the deletion and keep the extension in the list click No Extension Codecs To est...

Page 50: ...time to answer the call The user can use Call Park to place the call at a specific number and then retrieve when they reach the conference room To use the Call Park feature the call parking service s...

Page 51: ...call queue appearance value is greater than 1 If the call ringing in the background isn t answered it will be transferred to the user s voice mailbox or if no answer forwarding is enabled it will be f...

Page 52: ...watched extensions Fig II 91 Receptionist Management page Add opens the Receptionist Phone Configuration Wizard where the new receptionist phone can be created and configured The wizard consists of se...

Page 53: ...next page of the wizard is available for Snom and Aastra phones This page is skipped for QCM Phone Model selection The content of this page depends on the configuration made on the first page of the...

Page 54: ...he configured settings for the receptionist should be verified Additionally this page contains a Reboot IP Phone now checkbox which should be selected if you wish to have your IP phone rebooted once t...

Page 55: ...hones Database The Authorized Phones Database page is used to create a list of trusted external phones If they are part of the Quadro Authorized Phones database external SIP or PSTN then users are fre...

Page 56: ...scription text field allows entering an optional comment Callback Settings The Enable Callback checkbox selection gives the possibility for a specified trusted caller to use the Instant Call Back serv...

Page 57: ...o create a new trusted PSTN Caller as well as to modify the Call Back destination for the already registered Caller in the Authorized Phones Database Entering the Permanent Call Back reconfiguration m...

Page 58: ...stics old format link is used to download whole displayed statistics in an old formatted file This file can also be viewed with a simple text editor but contains more intricately aligned content The C...

Page 59: ...mm yyyy hh mm ss or dd Mon yyyy hh mm ss The time criteria are optional From requires an earlier date and time than the To field If the entered data does not meet this condition the error message Mini...

Page 60: ...composing an overall SIP session Normally one leg describes the RTP stream from caller to the Quadro and the other leg describes the RTP stream from Quadro to the destination Quality estimated call qu...

Page 61: ...re System Events link leads to the Events page where the methods of notification for each system event can be configured FAX Statistics The FAX statistics page is accessed from the Call Statistics pag...

Page 62: ...smission in case of no voice activity This feature helps to avoid extra traffic if the RTP stream contains no voice activity It is activated after two seconds of silence and restarted immediately if a...

Page 63: ...on table may be filled The General Settings page consists of a manipulation radio buttons group to select the mode of the NAT Traversal usage for the SIP traffic any incoming and outgoing SIP messages...

Page 64: ...ary STUN server The Polling Interval drop down list contains the possible time intervals between referrals to the STUN server The Keep alive interval text field provides the options to select the time...

Page 65: ...will upload it to the SIP phone The SIP phone will be then configured on the first available IP line of the Quadro and will become completely functional Please Note The Plug and Play service is only a...

Page 66: ...Note For automatic configuration some SIP phones may require additional actions to follow the restart For example by default the IP Dialog SIP Tone II is in a non auto provisioning mode so it should b...

Page 67: ...the extension on the Quadro and a possibility to pickup the call addressed to that extension Call Park Ext watch the calls parked to the corresponding extensions and a possibility to retrieve the cal...

Page 68: ...signaling settings of the selected ISDN trunk s Fig II 121 ISDN Settings page Clicking on the corresponding ISDN trunk will lead to the ISDN wizard where trunk s ISDN signaling settings can be configu...

Page 69: ...ion number selection will automatically use the initially dialed number to connect the destination without any additional dialing If MSN is disabled on the ISDN Wizard MSN Settings page the ISDN Wizar...

Page 70: ...1000 to 120000 It is responsible for the outgoing call steadiness when CALL PROCEEDING is already received from the destination but call confirmation ALERT CONNECT DISC or PROGRESS has not yet arrive...

Page 71: ...kbox is not selected Quadro will disconnect the call as soon as the disconnect message has been received from the peer When the checkbox is selected Quadro s user may hear a busy tone when peer has be...

Page 72: ...Active Calls shows the number of currently active calls in the selected trunk Outgoing Calls shows the number of all outgoing calls in the selected trunk Incoming Calls shows the number of all incomin...

Page 73: ...to Slave Devices checkbox enables the Quadro as a master device and allows you to configure the SIP tunnels to the slave Quadros When this checkbox is enabled the Tunnels to Slave Devices table needs...

Page 74: ...e master device The Master device port text field requires the SIP port number of the master device The Registration State field displays information whether the slave device is registered on the mast...

Page 75: ...the following consequences The pattern matching best to the Best Matching Algorithm will have the higher position in the rearranged list If multiple patterns equally match to the Best Matching Algorit...

Page 76: ...ymbols is two and the Prefix is 909 and Suffix is 0a the final phone number will be 9093450a Call Type gives you the option to select the call type The following call types are available PBX local cal...

Page 77: ...n a range from 2 to 20 If you leave this field empty no limitation will apply to the number of simultaneous logons The Use RTP Proxy checkbox is available for SIP and IP PSTN call types and is applica...

Page 78: ...only available for the SIP call type and allows you to select the security of the SIP route by means of hiding or replacing depending on the configuration of the SIP server the key headers of the SIP...

Page 79: ...he validity period s Use the following format to insert pattern date time rule s Month Month Month Day Day Day hh mm hh mm Fig II 139 Call Routing Wizard page 5 Please Note Established patterns based...

Page 80: ...all Routing page 3 Specify the Pattern in the corresponding field 4 Select the Number of Discarded Symbols and Prefix if required 5 Select the Call Type from the drop down list 6 Define the Metric or...

Page 81: ...obtained by increasing the previous element the element code by one Example The pattern is 2 11 15 a d 5 Numbers matching the pattern are 2115 2125 2135 2145 2155 2a5 2b5 2c5 2d5 Use an exclamation p...

Page 82: ...e presence of asterisks in a pattern The patterns without have a higher priority Criterion 2 The total number of matching digits symbols inside and outside the braces brackets The more matching digits...

Page 83: ...igits inside and outside the braces brackets in the descending order Criterion 2 The patterns that contain the same number of matching digits are grouped into sub lists Criterion 2 Step 3 The new sub...

Page 84: ...nsion automatically generated in Extensions Management will be registered on the defined VoIP Carrier s SIP server The settings of that extension will be used to make calls from Quadro s users towards...

Page 85: ...ty verification If a reply is not received from the primary SIP server within this timeout the secondary SIP server will be contacted When the primary SIP server recovers SIP packets will continue to...

Page 86: ...first The other RADIUS Client settings are divided into three groups 1 Registration Settings The Primary Server requires the IP address of the primary Radius Server The Secondary Server requires the...

Page 87: ...timeout in seconds during which the Quadro should receive a response to the request from the call controlling application If the response is not received during this timeout Quadro will perform a req...

Page 88: ...e is busy If a user of one IP phone holds an active call performed on the SLA line the programmable key is starting to blink on all IP phones The user who has held the call can then inform the other I...

Page 89: ...age The Forwarding for SLA links in the Advanced Settings column refer to the Advanced Settings for SLA page where the unconditional or no answer call forwarding can be configured for each SLA line Th...

Page 90: ...to text field Caller will connect to the available PSTN line get the dial tone and be free to dial the PSTN number Key System Advanced Configuration The Key System Emulation Advanced Configuration pa...

Page 91: ...played to the caller The RTP Streaming Channels page consists of a table where RTP channels are listed Add opens the Add Entry page where a new RTP channel can be added The Add Entry page includes the...

Page 92: ...ables the following selections Dial Manually if this radio button is activated a button will be displayed in the main management window that serves to switch the Internet connection on off When access...

Page 93: ...For example at this point they are able to reach their corporate network via authentication at the company s VPN gateway device This VPN gateway device must have a fixed IP address for Internet access...

Page 94: ...eer and vice versa depending on which connection established first Stop disconnects the selected IPSec connection The state of the IPSec connection will change into Stopped If no record is selected th...

Page 95: ...be selected to specify the desired communication relations The Stop Connection if not successful checkbox allows you to stop the IPSec connection attempts if the partner is still unreachable after th...

Page 96: ...any ed string that is used in the same way The Local ID and Remote ID text fields may have the values in one of the formats presented below IP address example 10 1 19 32 Host name example vpn epygi c...

Page 97: ...LNS at the corporate side Large carriers also may use L2TP to offer remote POPs to smaller ISPs Users at the remote locations dial into the modem pool of an L2TP access concentrator which forwards the...

Page 98: ...establishment Please Note These authentication settings should be identically configured on both peers for the successful connection establishment Fig II 169 PPTP L2TP Connection Wizard for PPTP conne...

Page 99: ...a name to the IPSec Connection Press Next to go to the next page of the IPSec Connection wizard 3 Enter the remote side IP parameters check subnets gateways for the connection select the NAT traversa...

Page 100: ...ield requires the complete request to be sent to the DynDNS server Normally it has the following format http www server domain port scriptpath scriptname param1 value1 param2 value2 The request modifi...

Page 101: ...ce is allowed The user may use IP groups to include several IP addresses for this rule Since the filtering rules specify the operation mode of the firewall they only take effect if the firewall has be...

Page 102: ...records are selected the error message No record s selected will appear Disable is used to disable the rule If no records are selected the error message No record s selected will appear Add opens a f...

Page 103: ...the appropriate settings protocol type and port range New services can be used to add a restriction or permission by defining a new filtering rule with the following Add opens the Add New Service page...

Page 104: ...to this group including groups where this group is a member of and all affected filter rules enabled and disabled ones in all chains Deleting a group will also delete any reference to the correspondin...

Page 105: ...ct the Manage IP Pool Groups link The IP Pool Configuration page appears with the table of groups if any 2 Check the one or more checkboxes of the corresponding groups that should be deleted from the...

Page 106: ...ns the correct IP address to the requested domain name so that any device in the LAN can be accessed by its hostname or alternative alias name The DNS Server Settings page is used to configure DNS ser...

Page 107: ...ettings will keep their IP addresses received from the DHCP server of the Quadro The IP phones that are configured manually should be added to the Special Devices table to keep their IP addressed Fig...

Page 108: ...hones only The Ping Check checkbox enables checking the availability of an IP address on the network before providing it to a client If this checkbox is selected the Quadro will first ping an IP addre...

Page 109: ...be accepted Otherwise if the ID does not match the packets will be dropped In the same way if the Quadro is integrated into the network that uses VLAN technology outgoing packets should have the ID nu...

Page 110: ...leads to the Epygi Technical Support System Registration page and requires customer s information to submit the Quadro registration form Remind me later hides the registration notification in the Quad...

Page 111: ...ce mail profile can be saved as ForPSTN and its name should be defined in the routing rule responsible for incoming PSTN calls distribution In parallel to this voice mail profile there can be another...

Page 112: ...e mails If the voice mail is longer than 3 minutes it will be truncated and only the first 3 minutes of it will be sent to the indicated e mail address However in the e mail body the recipient will re...

Page 113: ...dow where the saving location can be specified The ZeroOut voice mail feature allows a caller that has reached the called extension s voice mailbox to accelerate the automatic redirection feature inst...

Page 114: ...l be applied to any of the routing record s even to those which have no authorization enabled Administrator Login menu has the following sub menus and the management keys Administrator s Login Univers...

Page 115: ...following information is helpful PHONES Your extension number is extension number and your password is password optional Remember to type the Auto Attendant number when you pick up your phone receive...

Page 116: ...ion Assign manually Server Name ftp epygi com Server Port 21 Update Method ftp Username and Password empty Check and notify Every day at 0 00 Event Settings Display notification for all except Login a...

Page 117: ...oice Mailbox Internal Voice Mail Configuration Wizard Status activated Extension Settings Licensing QCM License inactive Extension Settings Codecs Codecs G711u preferred G711a G729a enabled G726 16 G7...

Page 118: ...on control enabled Connect IP phones from WAN side enabled 1 18 IP Lines attached to 11 28 extensions IP Lines 1 10 enabled others enabled for a trial period All IP lines are in inactive mode ISDN Set...

Page 119: ...hange MX undefined No aliases defined DHCP Advanced Settings DHCP Options Gateways 172 30 0 1 Subnet mask 255 255 0 0 Domain name servers 172 30 0 1 NBT name servers 0 0 0 0 NTP servers 172 30 0 1 Dom...

Page 120: ...tries Account Settings Display Name undefined User Password Protection disabled both for incoming and outgoing calls User s Name for Extensions Directory default Custom Voice Messages default Caller I...

Page 121: ...not transfer the Licensed Materials to a third party 6 Protection And Security Except as permitted under Section 5 of this Agreement you agree not to deliver or otherwise make available the Licensed M...

Page 122: ...ment is found to be illegal or unenforceable this Agreement shall not be rendered inoperative but the remaining provisions shall continue in full force and effect 12 No Waiver Failure by either you or...

Reviews:

No comments

Brands by name

Popular brands

Load more brands