Hitron CGNVM Скачать руководство пользователя | Manualshive

Страница: 77 / 128

background image

WIRELESS

Version 1.0, 02/2015. Copyright 2012 Hitron Technologies

77

Version 1.0, 02/2015. Copyright 2014 Hitron Technologies

77

Hitron CGNVM User’s Guide

4.1.5

Wireless Security

Radio is inherently an insecure medium, since it can be intercepted by anybody in the
coverage area with a radio receiver. Therefore, a variety of techniques exist to control
authentication (identifying who should be allowed to join the network) and encryption
(signal scrambling so that only authenticated users can decode the transmitted data).
The sophistication of each security method varies, as does its effectiveness. The
CGNVM supports the following wireless security protocols (in order of effectiveness):



WEP

(the Wired Equivalency Protocol): this protocol uses a series of “keys” or

data strings to authenticate the wireless client with the AP, and to encrypt data
sent over the wireless link. WEP is a deprecated protocol, and should only be
used when it is the only security standard supported by the wireless clients.
WEP provides only a nominal level of security, since widely-available software
exists that can break it in a matter of minutes. Additionally, use of WEP limits the
wireless network speed to a speed of 54MBps (802.11g speed).



WPA-PSK

(WiFi Protected Access - Pre-Shared Key): WPA was created to

solve the inadequacies of WEP. There are two types of WPA: the “enterprise”
version (known simply as WPA) requires the use of a central authentication
database server, whereas the “personal” version (supported by the CGNVM)
allows users to authenticate using a “pre-shared key” or password instead.
While WPA provides good security, it is still vulnerable to “brute force”
password-guessing attempts (in which an attacker simply barrages the AP with
join requests using different passwords), so for optimal security it is advised that
you use a random password of thirteen characters or more, containing no
“dictionary” words.



WPA2-PSK

: WPA2 is an improvement on WPA. The primary difference is that

WPA uses the Temporal Key Integrity Protocol (TKIP) encryption standard
(which has been shown to have certain possible weaknesses), whereas WPA2
uses the stronger Advanced Encryption Standard (AES) in the Counter mode
with Cipher block chaining Message authentication code Protocol (CCMP),
which has received the US government’s seal of approval for communications
up to the Top Secret security level. Since WPA2-PSK uses the same pre-shared
key mechanism as WPA-PSK, the same caveat against using insecure or
simple passwords applies.

NOTE:

The CGNVM can be configured to use the TKIP encryption standard;

however, this limits the wireless network speed to 54Mbps (802.11g speed).

«
...
75
76
77
78
79
...
»

Содержание CGNVM

Страница 1: ...CGNVM DOCSIS 3 0 eMTA WiFi Gateway User s Guide Version 1 0 02 2015 SW Version CGNVM_4 5 10 10T3 MGCP 150429 ...

Страница 2: ...duction on page 14 to see an overview of the topics covered in this manual Use the Table of Contents page 6 List of Figures page 10 and List of Tables page 12 to quickly find information about a particular GUI screen or topic Use the Index page 124 to find information on a specific keyword Use the rest of this User s Guide to see in depth descriptions of the CGNVM s features Related Documentation ...

Страница 3: ...ragraphs are used to list items and to indicate options 1 Numbered paragraphs indicate procedural steps NOTE Notes provide additional information on a subject Warnings provide information about actions that could harm you or your device Product labels field labels field choices etc are in bold type For example A mouse click in the Graphical User Interface GUI is denoted by a right angle bracket Fo...

Страница 4: ... s Guide Customer Support For technical assistance or other customer support issues please consult your Hitron representative Default Login Details The CGNVM s default IP address and login credentials are as follows For more information see Login to the CGNVM on page 25 Table 1 Default Credentials IP Address 192 168 0 1 Username cusadmin Password password ...

Страница 5: ...emarks and registered trademarks used are the properties of their respective owners DISCLAIMER The information in this User s Guide is accurate at the time of writing This User s Guide is provided as is without express or implied warranty of any kind Neither Hitron Technologies nor its agents assume any liability for inaccuracies in this User s Guide or losses incurred by use or misuse of the info...

Страница 6: ...res 15 1 2 Hardware Connections 15 1 3 Battery Installation optional 19 1 4 LEDs 20 1 5 IP Address Setup 24 1 5 1 Manual IP Address Setup 24 1 6 Login to the CGNVM 25 1 7 GUI Overview 26 1 8 Resetting the CGNVM 28 Status 29 2 1 Status Overview 29 2 1 1 DOCSIS 29 2 1 2 IP Addresses and Subnets 30 2 1 2 1 IP Address Format 30 2 1 2 2 IP Address Assignment 30 2 1 2 3 Subnets 31 2 1 3 DHCP 32 2 1 4 DH...

Страница 7: ...reen 41 2 4 The Status DOCSIS Provisioning Screen 43 2 5 The Status DOCSIS WAN Screen 44 2 6 The Status DOCSIS Event Screen 47 2 7 The Status Wireless Screen 49 2 8 The Status MoCA Screen 52 Basic 54 3 1 Basic Overview 54 3 1 1 The Domain Name System 54 3 1 2 Port Forwarding 55 3 1 3 Port Triggering 55 3 1 4 DMZ 55 3 1 5 Routing Mode 55 3 2 The Basic LAN Setup Screen 56 3 3 The Basic Gateway Funct...

Страница 8: ...sic Settings Guest Screen 90 4 3 The Wireless Access Control Screen 91 Admin 94 5 1 Admin Overview 94 5 1 1 Debugging Ping and Traceroute 94 5 2 The Admin Management Screen 95 5 3 The Admin Remote Management Screen 96 5 4 The Admin Diagnostics Screen 97 5 5 The Admin Backup Screen 98 5 6 The USB Storage Screen 99 5 7 The Admin Device Reset Screen 100 Security 102 6 1 Security Overview 102 6 1 1 Fi...

Страница 9: ...2 2015 Copyright 2014 Hitron Technologies 9 Hitron CGNVM User s Guide 6 4 1 Adding or Editing a Managed Device 113 6 5 The Security Keyword Filter Screen 115 6 5 1 Adding or Editing a Keyword Filter Trusted Device Rule 117 MTA 119 7 1 The MTA Status Screen 119 Troubleshooting 121 Index 124 ...

Страница 10: ...on Screen 42 Figure 14 The Status DOCSIS Provisioning Screen 44 Figure 15 The Status DOCSIS WAN Screen 45 Figure 16 The Status DOCSIS Event Screen 48 Figure 17 The Status Wireless Screen 50 Figure 18 The Status MoCA Screen 53 Figure 19 The Basic LAN Setup Screen 57 Figure 20 The Basic Gateway Function Screen 59 Figure 21 The Basic Port Forwarding Screen 60 Figure 22 The Basic Port Forwarding Add E...

Страница 11: ...0 The Admin Backup Screen 99 Figure 41 The Admin USB Storage Screen 100 Figure 42 The Admin Device Reset Screen 101 Figure 43 The Security Firewall Screen 104 Figure 44 The Security Service Filter Screen 106 Figure 45 The Security Service Filter Add Edit Screen 108 Figure 46 Additional Service Filtering Options 109 Figure 47 The Security Service Filter Trusted Device Add Edit Screen 110 Figure 48 ...

Страница 12: ...creen 57 Table 15 The Basic Gateway Function Screen 59 Table 16 The Basic Port Forwarding Screen 60 Table 17 The Basic Port Forwarding Add Edit Screen 62 Table 18 The Basic Port Triggering Screen 64 Table 19 The Basic Port Triggering Add Edit Screen 66 Table 20 The Basic DMZ Screen 68 Table 21 The Basic DNS Screen 69 Table 22 The Basic MoCA Screen 72 Table 23 The Wireless Basic Settings 2 4G Scree...

Страница 13: ... 104 Table 35 The Security Service Filter Screen 106 Table 36 The Security Service Filter Add Edit Screen 108 Table 37 The Security Service Filter Trusted Device Add Edit Screen 110 Table 38 The Security Device Filter Screen 111 Table 39 The Security Device Filter Add Edit Screen 114 Table 40 The Security Keyword Filter Screen 116 Table 41 The Security Keyword Filter Trusted Device Add Edit Screen...

Страница 14: ...pter introduces the CGNVM and its GUI Graphical User Interface 1 1 CGNVM Overview Your CGNVM is a DOCSIS cable modem router embedded Multimedia Terminal Adapter eMTA and wireless access point that allows you to connect your cabled Ethernet wireless devices and analog telephones to one another and to the Internet via your building s cable connection Figure 1 Application Overview ...

Страница 15: ...fiers SSIDS 8 SSIDs per radio Individual configuration for each SSID including security bridging routing firewall and WiFi parameters Integrated DLNA media server with support for video audio and image serving Well defined LEDs that clearly display device and network status Enhanced management and stability for low total cost of ownership 2 FXS ports for telephony using SIP or MGCP MoCA 2 0 connec...

Страница 16: ...INTRODUCTION Version 1 0 02 2015 Copyright 2012 Hitron Technologies 16 Version 1 0 02 2015 Copyright 2014 Hitron Technologies 16 Hitron CGNVM User s Guide Figure 2 Hardware Connections ...

Страница 17: ... connection status as follows Bi color blinking the WPS connection is processing Green steady the WPS connection has been successful Red steady the WPS connection has failed or an error has occurred Off WPS is not active See WPS on page 78 for more information USB The CGNVM provides two USB 2 0 host ports allowing you to plug in USB flash disks for mounting and sharing through the LAN interfaces v...

Страница 18: ...the CGNVM restarts using its factory default settings LINE 1 Use these ports to connect your analog phones for VoIP services using cables with RJ11 connectors LINE 2 LAN1 Use these ports to connect your computers and other network devices using Category 5 or 6 Ethernet cables with RJ45 connectors LAN2 LAN3 LAN4 CABLE Use this to connect to the Internet via an F type RF cable POWER Use the POWER po...

Страница 19: ...CGNVM s battery without disconnecting the power cable NOTE The CGNVM battery is intended for use as a backup to the main power source not as a replacement for it For optimal power performance you should use the battery in conjunction with the main power source For safety and regulatory reasons batteries are shipped separately to the CGNVM and must be manually installed To install the battery 1 The...

Страница 20: ...User s Guide Figure 5 Battery optional NOTE Your battery may look somewhat different from the battery depicted depending on the number of cells it contains 3 Insert the battery into the battery compartment 4 Replace the battery compartment door and return the CGNVM to an upright position 1 4 LEDs This section describes the CGNVM s LEDs lights ...

Страница 21: ...NTRODUCTION Version 1 0 02 2015 Copyright 2012 Hitron Technologies 21 Version 1 0 02 2015 Copyright 2014 Hitron Technologies 21 Hitron CGNVM User s Guide Figure 6 LEDs Table 3 LEDs LED STATUS DESCRIPTION ...

Страница 22: ...S Green blinking The CGNVM is searching for an upstream frequency on the CABLE connection Green steady The CGNVM has successfully located and locked onto a single upstream frequency on the CABLE connection Blue steady The CGNVM is successfully engaged in channel bonding on the upstream connection Off There is no upstream activity on the CABLE connection Online Green blinking The CGNVM s cable mode...

Страница 23: ...less network Green blinking The 5GHz wireless network is enabled and data is being transmitted or received over the 5GHz wireless network Line 1 Line 2 Off No telephone is connected to the relevant Line port Green blinking A telephone is connected to the relevant Line port and is off hook Green steady A telephone is connected to the relevant Line port and is on hook BATTERY optional Off The CGNVM ...

Страница 24: ...your CGNVM s IP settings may have been changed from their defaults If you do not know the CGNVM s new address you should return it to its factory defaults See Resetting the CGNVM on page 28 Bear in mind that ALL user configured settings are lost 1 5 1 Manual IP Address Setup By default your CGNVM s local IP address is 192 168 0 1 If your CGNVM is using the default IP address you should set your co...

Страница 25: ...lt IP address enter an IP address and subnet mask that places your computer in the same subnet as the CGNVM 6 Click OK The Internet Protocol TCP IP window closes In the Local Area Connection Properties window click OK Your computer now obtains an IP address from the CGNVM or uses the IP address that you specified and can communicate with the CGNVM 1 6 Login to the CGNVM Take the following steps to...

Страница 26: ...ide Figure 7 Login 3 Enter the Username and Password The default login username is cusadmin and the default password is password NOTE The Username and Password are case sensitive Password is not the same as password 4 Click Login The Status Overview screen displays see Status Overview on page 29 1 7 GUI Overview This section describes the CGNVM s GUI ...

Страница 27: ... CGNVM User s Guide Figure 8 GUI Overview Table 4 GUI Overview Primary Navigation Use this section to move from one part of the GUI to another Secondary Navigation Use this section to move from one related screen to another Main Window Use this section to read information about your CGNVM s configuration and make configuration changes ...

Страница 28: ...defaults all user configured settings are lost and the CGNVM is returned to its initial configuration state To reset the CGNVM click Admin Device Reset In the screen that displays click the Factory Reset button The CGNVM turns off and on again using its factory default settings NOTE Depending on your CGNVM s previous configuration you may need to re configure your computer s IP settings see IP Add...

Страница 29: ...rmation Screen on page 41 The Status DOCSIS Provisioning Screen on page 43 The Status DOCSIS WAN Screen on page 44 The Status DOCSIS Event Screen on page 47 The Status Wireless Screen on page 49 The Status MoCA Screen on page 52 2 1 Status Overview This section describes some of the concepts related to the Status screens 2 1 1 DOCSIS The Data Over Cable Service Interface Specification DOCSIS is a ...

Страница 30: ...value of 255 An IP address carries two basic pieces of information the network number the address of the network as a whole analogous to a street name and the host ID analogous to a house number which identifies the specific computer or other network device 2 1 2 2 IP Address Assignment IP addresses can come from three places The Internet Assigned Numbers Agency IANA Your Internet Service Provider...

Страница 31: ...orporate local office for example while the main network includes several offices In order to define the extent of a subnet and to differentiate it from the main network a subnet mask is used This masks the part of the IP address that refers to the main network leaving the part of the IP address that refers to the sub network Each subnet mask has 32 bits binary digits as does each IP address A bin...

Страница 32: ...guration Protocol or DHCP defines the process by which IP addresses can be assigned to computers and other networking devices automatically from another device on the network This device is known as a DHCP server and provides addresses to all the DHCP client devices In order to receive an IP address via DHCP a computer must first request one from the DHCP server this is a broadcast request meaning...

Страница 33: ...nnot be changed although some devices are capable of MAC spoofing where they impersonate another device s MAC address MAC addresses are the most reliable way of identifying network devices since IP addresses tend to change over time whether manually altered or updated via DHCP Each MAC address displays as six groups of two hexadecimal digits separated by colons or occasionally dashes for example 0...

Страница 34: ...he service provider Routing mode is not user configurable it is specified by the service provider in the CGNVM s configuration file 2 1 7 Configuration Files The CGNVM s configuration or config file is a document that the CGNVM obtains automatically over the Internet from the service provider s server which specifies the settings that the CGNVM should use It contains a variety of settings that are...

Страница 35: ...drature Amplitude Modulation In many cases a number precedes the modulation type for example 16 QAM This number refers to the complexity of modulation The higher the number the more data can be encoded in each symbol NOTE In modulated signals each distinct modulated character for example each audible tone produced by a modem for transmission over telephone lines is known as a symbol Since more inf...

Страница 36: ...from a TV antenna satellite or cable box to individual televisions around the building MoCA devices allow you use the coax cable network as an extension of your building s existing IP network which includes both wired Ethernet and wireless WiFi traffic Because they bridge the two networks they are known as Ethernet to Coax Bridges or ECBs Figure 9 Bridging the Gap Between IP and Coaxial Networks M...

Страница 37: ... to outlet Each MoCA network uses a Network Controller NC to manage the network s communications but any ECB on the network is capable of acting as the NC By default the NC is chosen by negotiation between all ECBs on the network based on factors such as signal strength Outlet to outlet communications are also known as splitter jumping Traditional cable networking commonly utilized splitters to sp...

Страница 38: ...ure 10 Traditional Vertical CATV vs Horizontal MoCA Networking 2 1 12 2 Example MoCA Mesh Network MoCA devices form a full mesh or peer to peer network where all devices communicate directly with one another In the following example four MoCA devices connect directly to and from one another via ECBs forming 12 unique MoCA links or 6 bidirectional links ...

Страница 39: ...on Technologies 39 Version 1 0 02 2015 Copyright 2014 Hitron Technologies 39 Hitron CGNVM User s Guide Figure 11 Example MoCA Peer to Peer Network 2 2 The Status Overview Screen Use this screen to Click Status Overview The following screen displays ...

Страница 40: ...STATUS Version 1 0 02 2015 Copyright 2012 Hitron Technologies 40 Version 1 0 02 2015 Copyright 2014 Hitron Technologies 40 Hitron CGNVM User s Guide Figure 12 The Status Overview Screen ...

Страница 41: ...screen to see general information about your CGNVM s hardware its software and its connection to the Internet Click Status System Information The following screen displays Table 8 The Status Overview Screen Save Changes Click this to save your changes to the fields in this screen Cancel Click this to return the fields in this screen to their last saved values without saving your changes Help Click...

Страница 42: ...lays a number that uniquely identifies the device HFC MAC Address This displays the Media Access Control MAC address of the CGNVM s Hybrid Fiber Coax HFC module This is the module that connects to the Internet through the CATV connection System Time This displays the current date and time Time Zone This displays the time zone in which the CGNVM is located LAN Up Time This displays the amount of ti...

Страница 43: ... Provisioning The following screen displays Click Status DOCSIS Provisioning The following screen displays WAN Sending This displays the amount of data transmitted over the WAN connection since the device was last started Private LAN IP Address This displays the CGNVM s LAN subnet s IP information LAN Receiving This displays the amount of data received over the LAN connection since the device was ...

Страница 44: ...mplete a connection step Success displays when the CGNVM has completed a connection step Disable displays when the relevant feature has been turned off 2 5 The Status DOCSIS WAN Screen Use this screen to discover information about The nature of the upstream and downstream connection between the CGNVM and the device to which it is connected through the CABLE interface IP details of the CGNVM s WAN ...

Страница 45: ...STATUS Version 1 0 02 2015 Copyright 2012 Hitron Technologies 45 Version 1 0 02 2015 Copyright 2014 Hitron Technologies 45 Hitron CGNVM User s Guide Figure 15 The Status DOCSIS WAN Screen ...

Страница 46: ...n the WAN DHCP Lease Time This displays the time that elapses before your device s IP address lease expires and a new IP address is assigned to it by the DHCP server Downstream Overview NOTE The downstream signal is the signal transmitted to the CGNVM Port ID This displays the ID number of the downstream connection s port Frequency Hz This displays the actual frequency in Hertz Hz of each downstre...

Страница 47: ...ds and Uncorrectables Upstream Overview NOTE The upstream signal is the signal transmitted from the CGNVM Port ID This displays the ID number of the upstream connection s port Frequency Hz This displays the actual frequency in Hertz Hz of each upstream data channel to which the CGNVM is connected Modulation This displays the type of modulation that each upstream channel uses SNR dB This displays t...

Страница 48: ...STATUS Version 1 0 02 2015 Copyright 2012 Hitron Technologies 48 Version 1 0 02 2015 Copyright 2014 Hitron Technologies 48 Hitron CGNVM User s Guide Figure 16 The Status DOCSIS Event Screen ...

Страница 49: ...about the CGNVM s wireless network Click Status Wireless The following screen displays Table 11 The Status DOCSIS Event Screen No This displays the arbitrary incremental index number assigned to the event Time This displays the date and time at which the event occurred Type This displays the nature of the event Priority This displays the severity of the event Event This displays a description of t...

Страница 50: ...STATUS Version 1 0 02 2015 Copyright 2012 Hitron Technologies 50 Version 1 0 02 2015 Copyright 2014 Hitron Technologies 50 Hitron CGNVM User s Guide Figure 17 The Status Wireless Screen ...

Страница 51: ...eless network that the CGNVM s 5GHz network is using Wireless Channel 5GHz This displays the wireless channel on which the CGNVM s 5GHz wireless network is transmitting and receiving SSID Overview 2 4GHz SSID This displays the SSID Service Set IDentifier of the CGNVM s 2 4GHz wireless network and whether or not it is currently active Broadcast SSID This displays whether the CGNVM s 2 4GHz wireless...

Страница 52: ...ork SSID is visible to client devices Enabled or not Disabled WMM This displays whether Wi Fi Multimedia is active Enabled or inactive Disabled on the CGNVM s 5GHz wireless network Security Mode This displays the type of security and encryption method currently enabled on the CGNVM s 5GHz wireless network Security Key This displays the wireless security password for the CGNVM s 5GHz wireless netwo...

Страница 53: ... the strength of the signal that the CGNVM is receiving RX on the cable network from 0 extremely weak to 10 extremely strong Channel This displays the radio frequency RF channel on which the CGNVM is transmitting and receiving over the cable network Current Channel Frequency This displays the frequency in megahertz of the the radio frequency RF channel on which the CGNVM is transmitting and receiv...

Страница 54: ... on page 60 The Basic Port Triggering Screen on page 64 The Basic DMZ Screen on page 67 The Basic DNS Screen on page 68 The Basic MoCA Screen on page 70 3 1 Basic Overview This section describes some of the concepts related to the Basic screens 3 1 1 The Domain Name System A domain is a location on a network for instance example com On the Internet domain names are mapped to the IP addresses to wh...

Страница 55: ... automating port forwarding The CGNVM scans outgoing traffic from the LAN to the WAN to see if any of the traffic s destination ports match those specified in the port triggering rules you configure If any of the ports match the CGNVM automatically opens the incoming ports specified in the rule in anticipation of incoming traffic 3 1 4 DMZ In networking the De Militarized Zone DMZ is a part of you...

Страница 56: ...e CGNVM directly The CGNVM does not perform any routing operations and traffic flows between the computers and the service provider 3 2 The Basic LAN Setup Screen Use this screen to View information about the CGNVM s connection to the WAN Configure the CGNVM s internal DHCP server Define how the CGNVM assigns IP addresses on the LAN See information about the network devices connected to the CGNVM ...

Страница 57: ...ide Figure 19 The Basic LAN Setup Screen The following table describes the labels in this screen Table 14 The Basic LAN Setup Screen Private LAN Setting Private LAN IP Address Use this field to define the IP address of the CGNVM on the LAN Subnet Mask Use this field to define the LAN subnet Use dotted decimal notation for example 255 255 255 0 ...

Страница 58: ... LAN when DHCP is enabled NOTE Devices requesting IP addresses once the DHCP pool is exhausted are not assigned an IP address Save Changes Click this to save your changes to the fields in this screen Cancel Click this to return the fields in this screen to their last saved values without saving your changes Help Click this to see information about the fields in this screen Connected Computers Host...

Страница 59: ... Gateway Function The following screen displays Figure 20 The Basic Gateway Function Screen The following table describes the labels in this screen Status This displays Active when the connected computer is online and Inactive when the connected computer is offline Renew Click this to refresh the information in this section Table 15 The Basic Gateway Function Screen Residential Gateway function Se...

Страница 60: ...en displays Figure 21 The Basic Port Forwarding Screen The following table describes the labels in this screen Save Changes Click this to save your changes to the fields in this screen Help Click this to see information about the fields in this screen Table 16 The Basic Port Forwarding Screen All Port Forwarding Rules Use this field to turn port forwarding on or off Select Enabled to turn port for...

Страница 61: ...SP Local IP Address This displays the IP address of the computer on the LAN to which traffic conforming to the Public Port Range and Protocol conditions is forwarded Remote IP Address This displays the IP address of the computer on the WAN from which traffic conforming to the Public Port Range and Protocol conditions is forwarded to the Local IP Address Status Use this to turn the port forwarding ...

Страница 62: ...it button NOTE Ensure that Enabled is selected in the Basic Port Forwarding screen in order to add or edit port forwarding rules The following screen displays Figure 22 The Basic Port Forwarding Add Edit Screen The following table describes the labels in this screen Table 17 The Basic Port Forwarding Add Edit Screen Common Application Use this field to select the application for which you want to ...

Страница 63: ...r in the first field and the end port number in the second field To specify only a single port enter its number in both fields Private Port Range Use these fields to specify the ports to which the received traffic should be forwarded Enter the start port number in the first field The number of ports must match that specified in the Public Port Range so the CGNVM completes the second field automati...

Страница 64: ... this screen Table 18 The Basic Port Triggering Screen All Port Triggering Rules Use this field to turn port triggering on or off Select Enabled to turn port triggering on Select Disabled to turn port triggering off Port Triggering Rules Application Name This displays the name you assigned to the rule when you created it Trigger This displays the range of outgoing ports When the CGNVM detects acti...

Страница 65: ... of the port triggering rule TCP UDP or Both Timeout ms This displays the time in milliseconds after the CGNVM opens the Target ports that it should close them Twoway Status Usually a port triggering rule works for two IP addresses when a rule is enabled other IPs will also be allowed to use the rule as a trigger Status Use this field to turn the rule On or Off Manage Click this to make changes to...

Страница 66: ... the CGNVM detects activity on any of these ports originating from a computer on the LAN it automatically opens the Target ports in expectation of incoming traffic Enter the start port number in the first field and the end port number in the second field To specify only a single port enter its number in both fields Target Port Range Use these fields to specify the target ports The CGNVM opens thes...

Страница 67: ...e CGNVM should activate this trigger when it detects activity via Transmission Control Protocol TCP User Datagram Protocol UDP Transmission Control Protocol and User Datagram Protocol Both NOTE If in doubt leave this field at its default Both Timeout ms Enter the time in milliseconds after the CGNVM opens the Target ports that it should close them Apply Click this to save your changes to the field...

Страница 68: ...reen Enable DMZ Use this field to turn the DMZ on or off Select Enabled to turn the DMZ on Select Disabled to turn the DMZ off Computers that were previously in the DMZ are now on the LAN DMZ Host Enter the IP address of the computer that you want to add to the DMZ Connected Devices Click this to see a list of the computers currently connected to the CGNVM on the LAN Save Changes Click this to sav...

Страница 69: ...Use this to select whether to obtain DNS information automatically over the network or to define it manually Select Auto to obtain DNS information automatically Select Manual to obtain DNS information manually LAN DNS Proxy Status Use this to turn DNS proxy on or off on the LAN When DNS proxy is turned on default the DHCP server provides the CGNVM s LAN IP address as the DNS server for name resolu...

Страница 70: ...uggested that you make a note of your device s Domain Suffix in case you ever need to access the CGNVM s GUI without knowledge of its IP address Proxy Hostname 1 When LAN DNS Obtain is set to Manual enter the IP addresses of up to two computers for which you want to manually add to the DNS Proxy Hostname 2 Save Changes Click this to save your changes to the fields in this screen Cancel Click this ...

Страница 71: ...BASIC Version 1 0 02 2015 Copyright 2012 Hitron Technologies 71 Version 1 0 02 2015 Copyright 2014 Hitron Technologies 71 Hitron CGNVM User s Guide Figure 27 The Basic MoCA Screen ...

Страница 72: ...for communication on the cable network see The Multimedia over Coax Alliance on page 36 This field allows you to select the channel plan that you want the CGNVM to use Select the channel plan that you wish to use from the dropdown list Figure 28 Channel Plan Options Channel Use this field to define the channel on which you want the CGNVM to communicate on the cable network dependent on the Channel...

Страница 73: ...an Range Start Scan Range End If you selected SCAN in the Channel field use this field to select a channel at which the CGNVM should stop scanning for a connection on the cable network Figure 31 Scan Range End TxPower Use this field to set the power at which the CGNVM transmits TX over the cable network from 0 to 10 Beacon Pwr Level Use this field to set the CGNVM s beacon power on the cable netwo...

Страница 74: ...ferred NC it will be the NC whenever it is available on the network if multiple devices are preferred the most suitable one will be chosen Select Preferred to add the CGNVM to the preferred group Security Select Enabled to turn MoCA security on Only MoCA devices configured to use the Password you define can access the network Select Disabled to turn MoCA security off Any MoCA device can access the...

Страница 75: ...w This section describes some of the concepts related to the Wireless screens 4 1 1 Wireless Networking Basics Your CGNVM s wireless network is part of the Local Area Network LAN known as the Wireless LAN WLAN The WLAN is a network of radio links between the CGNVM and the other computers and devices that connect to it 4 1 2 Architecture The wireless network consists of two types of device access p...

Страница 76: ...a transfer speeds low to high IEEE 802 11a IEEE 802 11b IEEE 802 11g IEEE 802 11n IEEE 802 11ac 4 1 4 Service Sets and SSIDs Each wireless network including all the devices that comprise it is known as a Service Set NOTE Depending on its capabilities and configuration a single wireless access point may control multiple Service Sets this is often done to provide different service or security levels...

Страница 77: ...ed WPA PSK WiFi Protected Access Pre Shared Key WPA was created to solve the inadequacies of WEP There are two types of WPA the enterprise version known simply as WPA requires the use of a central authentication database server whereas the personal version supported by the CGNVM allows users to authenticate using a pre shared key or password instead While WPA provides good security it is still vul...

Страница 78: ... printed on a sticker on the device s housing When you configure another device to use the same PIN the two devices authenticate with one another Once authenticated devices that have joined a network via WPS use the WPA2 security standard 4 1 6 WMM WiFi MultiMedia WMM is a Quality of Service QoS enhancement that allows prioritization of certain types of data over the wireless network WMM provides ...

Страница 79: ...M See The Wireless Basic Settings 5G Screen on page 84 Use the WPS screen to enable WPS capable wireless clients to connect to the CGNVM via a simple push button or by entering a password See The Wireless Basic Settings WPS Screen on page 88 Use the Guest Network screen to enable wireless clients to connect to the CGNVM with reduced privileges See The Wireless Basic Settings Guest Screen on page 9...

Страница 80: ...gies 80 Hitron CGNVM User s Guide Figure 32 The Wireless Basic Settings 2 4G Screen The following table describes the labels in this screen Table 23 The Wireless Basic Settings 2 4G Screen Basic Settings Wireless Enabled Select On to enable the 2 4GHz wireless network Select Off to disable the 2 4GHz wireless network ...

Страница 81: ...ess Channel Select the 2 4GHz wireless channel that you want to use or select Auto to have the CGNVM select the optimum channel to use NOTE Use the Auto setting unless you have a specific reason to do otherwise WPS Enabled Use this field to turn Wifi Protected Setup WPS on or off on the 2 4GHz network Select ON to enable WPS Select OFF to disable WPS Multiple SSID Settings Network Name SSID Enter ...

Страница 82: ...SSID WMM QoS This field displays whether Wifi MultiMedia WMM Quality of Service QoS settings are Enabled or Disabled on this SSID Security Mode Select the mode of security that you want to use on the 2 4GHz network Select None to use no security Anyone in the coverage area can enter your network Select WEP to use the Wired Equivalent Privacy security protocol Select WPA Personal to use the WiFi Pr...

Страница 83: ...The options that display depend on the options you selected in the other fields in this screen WEP Select WEP64 to use a ten digit security key Select WEP128 to use a twenty six digit security key WPA PSK WPA2 PSK and Auto Select TKIP to use the Temporal Key Integrity Protocol Select AES to use the Advanced Encryption Standard Select TKIP AES to allow clients using either encryption type to connec...

Страница 84: ...work screen to enable 5GHz wireless clients to connect to the CGNVM Click Wireless Basic Settings 5G The following screen displays Figure 33 The Wireless Basic Settings 5G Screen Cancel Click this to return the fields in this screen to their last saved values without saving your changes Help Click this to see information about the fields in this screen Table 23 The Wireless Basic Settings 2 4G Scr...

Страница 85: ...ow clients using both IEEE 802 11a and IEEE 802 11n to access the network 802 11ac use IEEE 802 11ac 802 11n ac Mixed default allow clients using both IEEE 802 11n and IEEE 802 11ac to access the network NOTE Only wireless clients that support the network protocol you select can connect to the wireless network If in doubt use 802 11n ac Mixed default Wireless Channel Select the 5GHz wireless chann...

Страница 86: ... SSID Select OFF to disable the SSID Broadcast SSID Use this field to make this SSID visible or invisible to other wireless devices Select ON if you want your network name SSID to be public Anyone with a wireless device in the coverage area can discover the SSID and attempt to connect to the network Select OFF if you do not want the CGNVM to broadcast the network name SSID to all wireless devices ...

Страница 87: ...uggested that you use WEP only if it is the only security protocol your wireless clients support Under almost all circumstances you should use the WPA option Additionally use of WEP limits the wireless network speed to 54Mbps 802 11a speed Auth Mode Select the mode of authentication that you want to use Select WPA PSK to use the WiFi Protected Access Personal security protocol Select WPA2 PSK to u...

Страница 88: ...t WEP128 to use a twenty six digit security key WPA PSK WPA2 PSK and Auto Select TKIP to use the Temporal Key Integrity Protocol Select AES to use the Advanced Encryption Standard Select TKIP AES to allow clients using either encryption type to connect to the CGNVM NOTE Use of the TKIP encryption standard limits the wireless network speed to 54Mbps 802 11a speed Passphrase Enter the security key o...

Страница 89: ... begin the Push Button Configuration process You must then press the PBC button on your client wireless devices within two minutes in order to register them on your wireless network Click the PIN button to begin the PIN configuration process In the screen that displays enter the WPS PIN that you want to use for the CGNVM or the WPS PIN of the client device you want to add to the network WPS Status...

Страница 90: ...en on page 90 Click Wireless Basic Settings Guest The following screen displays Figure 35 The Wireless Basic Settings Guest Screen The following table describes the labels in this screen Table 26 The Wireless Basic Settings Guest Screen Enable Guest Network Use this field to enable or disable the guest network Select ON to enable the guest network Select OFF to disable the guest network Guest Netw...

Страница 91: ...ess Access Control Screen Guest Network Password Enter the password that wireless clients must be configured to use to connect to either the 2 4GHz or the 5GHz wireless guest network Max Guest Allowed Select the maximum number of wireless clients that may concurrently connect to the wireless guest network Save Changes Click this to save your changes to the fields in this screen Cancel Click this t...

Страница 92: ... relevant device is connected Status This displays whether or not the connected device is active Action Click Manage to make changes to the device s filtering status see Adding or Editing a Managed Device on page 113 for information on the screen that displays Managed Devices Block Rules Use these buttons to control the action to be taken for the devices listed Select Allow All to ignore the Manag...

Страница 93: ...aged Device on page 113 Add Managed Device Click this to add a new managed device rule see Adding or Editing a Managed Device on page 113 Save Changes Click this to save your changes to the fields in this screen Cancel Click this to return the fields in this screen to their last saved values without saving your changes Help Click this to see information about the fields in this screen Table 27 The...

Страница 94: ...98 The Admin Device Reset Screen on page 100 5 1 Admin Overview This section describes some of the concepts related to the Admin screens 5 1 1 Debugging Ping and Traceroute The CGNVM provides a couple of tools to allow you to perform network diagnostics on the LAN Ping this tool allows you to enter an IP address and see if a computer or other network device responds with that address on the networ...

Страница 95: ...Admin Management Screen Use this screen to make changes to the CGNVM s login credentials username and password and inactivity idle time NOTE If you forget your password you will need to reset the CGNVM to its factory defaults Click Admin Management The following screen displays Figure 37 The Admin Management Screen The following table describes the labels in this screen Table 28 The Admin Manageme...

Страница 96: ...te Management Screen New Password Enter and re enter the password you want to use to log into the CGNVM for this account Confirm New Password Idle Time Select the time interval after which an inactive user should be logged out of the CGNVM s admin interface Save Changes Click this to save your changes to the fields in this screen Cancel Click this to return the fields in this screen to their last ...

Страница 97: ... permit or forbid remote management via the relevant protocol ON OFF Select On to permit remote management via the Select Off to forbid remote management via the relevant protocol Remote IP Range Select Enabled to permit remote management for all protocols from computers with IP addresses in the range specified Select Disabled to allow computers with any IP address to manage the CGNVM remotely Sav...

Страница 98: ...en to back up your CGNVM s settings to your computer or load settings from a backup you created earlier Click Admin Backup The following screen displays Table 30 The Admin Diagnostics Screen Destination IP or Domain Enter the IP address or URL that you want to test Ping Select the type of test that you want to run on the Destination that you specified Traceroute Result This field displays a report...

Страница 99: ...nfigure your CGNVM s USB settings Click Admin USB Storage The following screen displays Table 31 The Admin Backup Screen Back Up Your Settings Locally Click this to create a backup of all your CGNVM s settings on your computer Restore Settings From a Local File Use these fields to return your CGNVM s settings to those specified in a backup that you created earlier Click Choose File to select a bac...

Страница 100: ...min USB Storage Screen Shared Status Use this field to select whether the shared status of USB be active or not Select Enabled to activate the shared status Select Disabled to deactivate the shared status No This displays the arbitrary identification number assigned to the shared disk Disk This displays the network path of the shared disk Action Click Eject to remove the shared disk Save Changes C...

Страница 101: ...e 42 The Admin Device Reset Screen The following table describes the labels in this screen Table 33 The Admin Device Reset Screen Reboot Device Click this to restart your CGNVM Restore Factory Default Settings Click this to return your CGNVM to its factory default settings When you do this all your user configured settings are lost and cannot be retrieved ...

Страница 102: ...ter Screen on page 111 The Security Keyword Filter Screen on page 115 6 1 Security Overview This section describes some of the concepts related to the Security screens 6 1 1 Firewall The term firewall comes from a construction technique designed to prevent the spread of fire from one room to another Similarly your CGNVM s firewall prevents intrusion attempts and other undesirable activity originat...

Страница 103: ... devices on the list access to the CGNVM and the network in which case all other devices can access the network or Allow the devices on the list to access the network in which case no other devices can access the network 6 1 4 Service Filtering Service filtering is a way of preventing users on the LAN from connecting with devices on the WAN via specific services protocols or applications It achiev...

Страница 104: ...level of firewall protection that you want to apply to your LAN Details about the protection level display beneath the buttons Security Level These fields describe the specific protocols and applications that are permitted or denied by the firewall security level you select When you select Custom in the Firewall Level field additional fields display that allow you to toggle specific features on or...

Страница 105: ...e not applied Click Security Service Filter The following screen displays Ping from WAN Use this field to permit or prohibit Internet Control Message Protocol ICMP echo requests from the WAN to the LAN Select Allow to permit pinging from the WAN Select Deny to prohibit pinging from the WAN Echo requests from the WAN to the LAN are silently ignored Save Changes Click this to save your changes to th...

Страница 106: ...s field to turn service filtering on or off Select Enabled to turn service filtering on Select Disabled to turn service filtering off App Name This displays the name you assigned to the filtering rule when you created it Protocol This field displays the protocol or protocols to which this filtering rule applies Transmission Control Protocol TCP User Datagram Protocol UDP Port Range This displays t...

Страница 107: ...s displays the arbitrary name of each trusted PC you configured MAC Address This displays the Media Access Control MAC address of each trusted PC Every network device has a MAC address that uniquely identifies it Status This displays whether the device is currently trusted Enabled or untrusted Disabled Manage Click Manage to make changes to the trusted device rule See Adding or Editing a Service F...

Страница 108: ...it Screen Application Name Enter a name for the application for which you want to create the rule NOTE This name is arbitrary and does not affect functionality in any way Protocol Use this field to specify whether the CGNVM should filter via Transmission Control Protocol TCP User Datagram Protocol UDP NOTE If in doubt leave this field at its default TCP Port Range Use these fields to specify the s...

Страница 109: ... display allowing you to specify the times at which the rule should be applied Figure 46 Additional Service Filtering Options Use the Managed Weekdays fields to specify the days on which the rule should be applied A red background indicates that the rule will be applied traffic will be blocked and a green background indicates that the rule will not be applied traffic will not be blocked Click a da...

Страница 110: ...re 47 The Security Service Filter Trusted Device Add Edit Screen The following table describes the labels in this screen Table 37 The Security Service Filter Trusted Device Add Edit Screen Host Name Enter a name to identify the device MAC Address Enter the Media Access Control MAC address of the device Rule Status Use this field to define whether the trusted device rule should be active or not Sel...

Страница 111: ...ireless network see The Wireless Access Control Screen on page 91 Click Security Device Filter The following screen displays Figure 48 The Security Device Filter Screen The following table describes the labels in this screen Table 38 The Security Device Filter Screen Connected Devices Host Name This displays the name of each network device connected on the LAN IP Address This displays the IP addre...

Страница 112: ... to the CGNVM Select Allow Listed to permit only devices you added to the Managed Devices list to access the CGNVM and the network All other devices are denied access Select Deny to permit all devices except those you added to the Managed Devices list to access the CGNVM and the network The specified devices are denied access Host Name This displays the name of each network device in the list MAC ...

Страница 113: ...d click its Manage button To add a new managed wireless network device click Add Managed Device in the Wireless Access Control screen To edit an existing managed wireless network device locate the device in the Wireless Access Control screen and click its Manage button The following screen displays Figure 49 The Security Device Filter Add Edit Screen Add Managed Device Click this to add a new mana...

Страница 114: ...ted via the LAN you can enter its name here if you know it MAC Address If you are managing a device that already connected via the LAN this field displays the device s MAC Media Access Control address Alternatively if you are managing a device that is not connected via the LAN you can enter its MAC address here if you know it Device Managed Use this field to define whether the device should have i...

Страница 115: ...at all times Select NO to managed the device only at certain times Additional fields display allowing you to specify the times at which the device should be managed Figure 50 Additional Service Filtering Options Use the Managed Weekdays fields to specify the days on which the device should be managed A red background indicates that the device will be managed access will be blocked and a green back...

Страница 116: ...eld to turn keyword filtering on or off Select Enabled to turn keyword filtering on Select Disabled to turn keyword filtering off Keyword Enter the keyword that you want to block The CGNVM examines both the page s URL Internet address and its page content text Blocked Weekdays Use these fields to specify the times at which the keyword should be blocked A red background indicates that the rule will...

Страница 117: ...ry name of each trusted PC you configured MAC Address This displays the Media Access Control MAC address of each trusted PC Every network device has a MAC address that uniquely identifies it Status This displays whether the device is currently trusted Enabled or untrusted Disabled Manage Click Manage to make changes to the trusted device rule See Adding or Editing a Keyword Filter Trusted Device R...

Страница 118: ...lter Trusted Device Add Edit Screen Host Name Enter a name to identify the device MAC Address Enter the Media Access Control MAC address of the device Rule Status Use this field to define whether the trusted device rule should be active or not Select Enabled to activate the trusted device rule Select Disabled to deactivate the trusted device rule Apply Click this to save your changes to the fields...

Страница 119: ... chapter describes the screens that display when you click MTA in the toolbar It contains the following sections The MTA Status Screen on page 119 7 1 The MTA Status Screen Use this screen to see general information about the CVE 30360 s embedded Multimedia Terminal Adapter module Click MTA Status The following screen displays Figure 53 The MTA Status Screen ...

Страница 120: ...ioning Procedure DHCP This field displays the status of the remote telephony DHCP server Provisioning Flow Type This displays the type of security used for voice calls through the CGNV4 TFTP Configuration This field displays the status of the remote telephony TFTP server Registration This field displays the overall status of voice call registration Line Status Line 1 These fields display the curre...

Страница 121: ... page 122 I Cannot Access the CGNVM or the Internet on page 122 I Cannot Connect My Wireless Device on page 123 Problem None of the LEDs Turn On The CGNVM is not receiving power or there is a fault with the device 1 Ensure that you are using the correct power cable battery Using a power source other than the one that came with your CGNVM can damage the CGNVM 2 If using the power cable ensure that ...

Страница 122: ... operating system and your network you may be able to find the CGNVM s IP address by looking up your computer s default gateway To do this on most Windows machines click Start Run enter cmd and then enter ipconfig Get the IP address of the Default Gateway and enter it in your browser s address bar Problem I Forgot the CGNVM s Admin Username or Password The default username is admin and the default...

Страница 123: ... client device is functioning properly and is configured correctly See the wireless client s documentation if unsure 2 Ensure that the wireless client is within the CGNVM s radio coverage area Bear in mind that physical obstructions walls floors trees etc and electrical interference other radio transmitters microwave ovens etc reduce your CGNVM s signal quality and coverage area 3 Ensure that the ...

Страница 124: ...ection 14 cable connection status 43 cable modem 14 CATV 29 30 channel 72 channel plan 72 clients wireless 75 configuration file 34 connection status cable 43 conventions document 3 customer support 4 D debugging 94 97 default 98 default IP address 24 default username and password 26 defaults 98 De Militarized Zone 55 DHCP 24 32 DHCP lease 33 diagnostics 94 97 Digital Video Recording 36 DMZ 55 DNS...

Страница 125: ...user 14 Internet video 36 intrusion detection 103 IP address 24 30 122 IP address lease 33 IP address renewal 33 IP address setup 24 IP address default 24 IP address format 30 IP address local 24 ISP 30 L LAN 29 54 75 94 102 LAN 1 4 18 LAN gaming 36 LAN setup 56 LEDs 20 121 123 lights 20 Line 1 2 23 local IP address 24 logging in 25 login accounts 26 login screen 24 M MAC address 33 MAC filtering ...

Страница 126: ... PIN configuration 15 78 ping 94 97 port forwarding 55 60 64 port Ethernet 24 ports 15 private IP address 31 push button configuration 15 Q QAM 35 QAM TCM 35 QoS 78 QPSK 35 R radio links 75 reboot 98 reset 28 RJ45 connectors 18 routing mode 31 34 55 rule port forwarding 62 S scan range 73 SCDMA 35 security wireless 15 service filter 105 service set 76 splitter 37 splitter jumping 37 SSID 76 Status...

Страница 127: ...2 username and password 26 V video 36 Video on Demand 36 videoconferencing 36 VoD 36 W WAN 30 WAN connection 44 WEP 15 77 Wifi MultiMedia 78 Wifi Protected Setup 15 78 window main 27 Windows XP 24 wireless access point 14 wireless clients 75 wireless connection 123 wireless networking standards 76 wireless security 15 77 wireless status 49 WLAN 75 WMM 78 WPA2 78 WPA2 PSK 15 77 WPA PSK 15 77 WPS 15...

Страница 128: ...INDEX Version 1 0 02 2015 Copyright 2012 Hitron Technologies 128 Version 1 0 02 2015 Copyright 2014 Hitron Technologies 128 Hitron CGNVM User s Guide X XP Windows 24 ...

Отзывы:

Нет отзывов

Похожие инструкции для CGNVM

Ubiquity QD2040b

Бренд: TCS Страницы: 8

IGW1111-3IN1-DB

Бренд: 3onedata Страницы: 3

Бренд: RTA Страницы: 73

MultiVOIP MVPFX2-8

Бренд: Multitech Страницы: 8

Бренд: Edimax Страницы: 27

Бренд: DAUDIN Страницы: 24

Бренд: Planet Страницы: 140

Бренд: Adman Technologies Страницы: 26

Бренд: Zte Страницы: 22

AS Series ASM200

Бренд: Quintum Страницы: 3

DX Series DX2008

Бренд: Quintum Страницы: 15

Бренд: FireAngel Страницы: 8

Бренд: Zhone Страницы: 226

Бренд: ioLIVING Страницы: 13

PROFIBUS DP GATEWAY

Бренд: Omron Страницы: 95

Бренд: Weiser Страницы: 2

Бренд: ActionTec Страницы: 1

Бренд: RTA Страницы: 58

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды