manualshive.com logo in svg

Hughes HX System, Обзор системы

Система Hughes HX представляет собой комплексное программное обеспечение с подробным руководством, которое позволяет пользователям получить полный обзор функций и возможностей продукта. Скачайте бесплатное руководство на manualshive.com и максимально эффективно используйте систему Hughes HX.

Поделиться
Скачать
background image

Chapter 4 • Network security

 

1037852-0001  Revision A

35

Chapter 4

Network security

This chapter describes the data security features in the HX 
System. These features guarantee data integrity and 
confidentiality, and protect the network from intrusion and 
external exploits. The following topics are presented:

Data encryption

 on page 35

Network security features

 on page 36

Data encryption

The HX System can employ several information assurance 
techniques to safeguard the integrity and confidentiality of data 
transported through the system. These techniques include:

DES-encrypted outbound channel

Two-way IPSec encryption

DES-encrypted outbound 

channel

The outbound channel is encrypted using the data encryption 
standard (DES) by the HX CAS (conditional access system) 
feature. This CAS feature:

Is hardware-based

Ensures that traffic is received by satellite routers legally

Prevents unauthorized eavesdropping

The HX CAS feature assigns a unique key to each satellite router. 
It is responsible for key management and for encrypting 
outbound data to satellite routers to ensure that satellite routers 
can only decrypt the data intended for them.

When a satellite router is commissioned, it requests its encrypted 
effective master key (EEMK) from the HX gateway. This key is 
sent to the satellite router, and then:

Used at the HX gateway to encrypt all data sent to the 
satellite router 

Used by the satellite router to decrypt all data received from 
the HX gateway

Because all data transmissions to satellite routers are uniquely 
keyed, a satellite router can decrypt only the data sent to it. The 
EEMK is also used by satellite routers to authenticate themselves 
to the HX gateway.

Two-way IPSec encryption

IPSec in the HX System is NIST for FIPS 140-2 level 1 certified 
and has these characteristics:

Содержание HX System

Страница 1: ...1037852 0001 Revision A September 4 2008 HX System System Overview Release 1 2 7 ...

Страница 2: ...teness of the material in this document Hughes Network Systems LLC shall not be liable for errors contained herein The information in this document is subject to change without notice Hughes Network Systems LLC makes no warranty of any kind with regard to this material including but not limited to the implied warranties of merchantability and fitness for a particular purpose Trademarks Hughes and ...

Страница 3: ...System 4 Innovative features 6 Broadband applications 7 HX System architecture 8 HX System star topology 8 HX gateway 8 Fixed gateway GW 8 Transportable gateway TGW 8 HX satellite routers 9 Network segments 9 Gateway segment 9 Satellite router segment 9 Space segment 9 Wide area network segment 9 System management 10 Information flow 11 Chapter 2 Subsystems 13 Interface subsystem 15 IP gateways 15...

Страница 4: ... Systems with CDS 22 Systems with IFSS TC 22 Network Management Support Services NMSS subsystem 22 Vision 23 Conditional access controller 23 Management file server 23 Web based auto commissioning 23 Satellite based commissioning 24 UEM database 24 Special services gateway 24 Quality monitor PC 24 CACTI Network Manager 25 Local area networks 25 Gateway LAN 25 Management VLAN 25 Satellite VLAN 25 R...

Страница 5: ...34 Remote site control 34 Chapter 4 Network security 35 Data encryption 35 DES encrypted outbound channel 35 Two way IPSec encryption 35 Network security features 36 Firewalling 36 Fenced Internet 37 Chapter 5 Bandwidth management 39 Bandwidth management overview 39 Bandwidth assignments 40 Inroute bandwidth pooling 40 Dynamic stream services 42 Advanced bandwidth management techniques 43 Preassig...

Страница 6: ...d VLAN tagging 55 Application layer network services 55 DHCP server 55 DHCP relay 55 DNS caching 56 Access Control List 56 PBR 56 VRRP 57 Chapter 7 Multicast features 59 Multicast applications 59 Broadcast applications 59 Streaming media applications 60 Remote Site Originated Multicast 60 HX gateway multicast management 60 Satellite router multicast support 60 Chapter 8 Transmission features 61 Ou...

Страница 7: ...vice support 72 Chapter 10 HX options 73 Enterprise package delivery 73 IPSec 74 ACP 75 Appendix A Technical specifications 77 HX gateway specifications 77 HX50 100 satellite router mechanical and environmental specifications 78 HX150 satellite router specifications 79 Appendix B Transportable Gateway TGW 81 TGW Overview 81 Features 81 Services Supported 82 DVB S2 IPoS with ACM Advantages 82 HX Tr...

Страница 8: ... Contents viii 1037852 0001 Revision A ...

Страница 9: ...42 7 CBR services 45 8 CIR services with best effort 46 9 HX System traffic prioritization 48 10 Multiple service plans 49 Chapter 8 11 Multiplexing DVB Streams 62 12 Using ACM to optimize the link budget 63 13 Using ACM to dynamically change coding modulation 64 14 Multiple FECs within one TDMA frame 64 15 HX System closed loop power control 65 Chapter 9 16 Typical HX100 site configuration 69 Cha...

Страница 10: ... Figures x 1037852 0001 Revision A ...

Страница 11: ... Tables 1037852 0001 Revision A xi Tables Chapter 2 1 CP support for systems with CDS 22 Chapter 9 2 Features list for HX50 HX100 and HX150 satellite routers 70 ...

Страница 12: ... Tables xii 1037852 0001 Revision A ...

Страница 13: ...ts features and components Audience The primary audience for this document is enterprise customers who are responsible for operating and managing their own HX System gateway The secondary audience is customers at any level who need to understand the operation of the HX System This manual assumes that the reader understands Telecommunications and computer networking technology Transmission Control ...

Страница 14: ...rview and Hardware Installation 1037853 0001 Gateway Installation Manual Volume 2 Component Configuration 1037854 0001 Gateway Operations and Troubleshooting Manual Volume 1 Satellite Router Operations 1037855 0001 Gateway Operations and Troubleshooting Manual Volume 2 Gateway Operations 1037856 0001 Gateway Reference Manual Volume 1 Vision Interface 1037857 0001 Gateway Reference Manual Volume 2 ...

Страница 15: ...ided by the NMSS Capacity validation checks are performed when the logical inroute resources are modified including changes to Downconverters Inroute Groups IQoS Plans and Inroutes Hub views are now organized by outroute number instead of outroute group Inroute CIR with Min Guaranteed and Max bandwidth CIR is the rate that has been committed to a particular remote Satellite routers are allocated b...

Страница 16: ...new features that support high bandwidth real time applications such as telephony trunking video conferencing and much more The most significant upgrade with the HX 1 2 7 over previous models is the inclusion of the mobility feature While mobile satellite services at lower satellite frequencies L band in particular have been available for some time these services tend to provide lower rates of spe...

Страница 17: ...pology As shown in Figure 1 the system can provide high speed Internet protocol satellite connectivity between the corporate headquarters and multiple remote sites The HX System operates in the Ku Ka and C frequency bands Note Although the term satellite router technically refers to all of the equipment at the remote site it is often used to refer only to the VSAT Figure 1 HX System ...

Страница 18: ...P regions can be assigned robust coding and modulation combinations QPSK Rate while satellite routers in beam center can be assigned bandwidth efficient coding and modulation combinations 8PSK Rate 9 10 The application of ACM produces up to 30 more bandwidth than DVB S2 for a total improvement of up to 60 over DVB S Most efficient TDMA return channel Because HX System TDMA return channels use Aloh...

Страница 19: ...ymbol and coding rate for its inroute transmission as a function of a configured trajectory table and through information it learns about its transmission from a closed loop power control algorithm See the bulleted description above for Robust rain fade mitigation techniques Cost effective gateway The HX gateway is optimized to support small networks It occupies a small physical space and provides...

Страница 20: ... 2 Mbps the HX system provides the high throughput needed for high QoS networking HX System star topology The HX system star topology network has the following major elements the HX gateway and the HX satellite routers HX gateway The HX gateway is the central processing center of the network The gateway provides connectivity between HX satellite routers and customer data centers and or the Interne...

Страница 21: ...terminal RFT consisting of RF equipment and a large antenna and network management subsystems and infrastructure The gateway segment manages the entire HX System and any backend systems used for handling tasks such as billing customer care and provisioning See Chapter 2 Subsystems for more information Satellite router segment Satellite routers provide broadband TCP IP communications to remote site...

Страница 22: ...Vision UEM contains the set of management tools for HX gateway primary components and interface equipment including IP gateway s Satellite gateway s DVB S2 modulator Timing subsystem Inroute components DNCC CDS Aurora CP Minor components and equipment are managed through their own interfaces These components within the NMSS are Element management server Graphical user interface Backend database CA...

Страница 23: ...equipment Note the difference between the arrows used to represent inroutes and those used to represent outroutes The differing widths of these arrows signify the different bandwidths for data traveling from the HX gateway to outroutes or uplinks and from inroutes or downlinks the satellite modems Figure 2 HX System equipment data flow ...

Страница 24: ...Chapter 1 Overview 12 1037852 0001 Revision A ...

Страница 25: ...er includes Interface subsystem on page 15 Radio frequency RF subsystem on page 16 Uplink subsystem on page 16 Timing subsystem on page 18 Downlink subsystem on page 19 Network Management Support Services NMSS subsystem on page 22 Local area networks on page 25 The subsystems and the network connection are illustrated in Figure 3 on page 14 See Chapter 3 Network management on page 27 for a more de...

Страница 26: ...Chapter 2 Subsystems 14 1037852 0001 Revision A Figure 3 HX Subsystems and LAN Connections ...

Страница 27: ...es and sends the appropriate unicast data and keys information to the satellite gateway where the traffic stream is encrypted IP gateways forward the encapsulated unicast and multicast IP traffic from the customer network to the satellite gateway over the satellite LAN for further outroute processing Unicast traffic is addressed to a specific satellite router multicast traffic is sent to satellite...

Страница 28: ...tput of the system IF distribution module upconverts it to radio frequency RF and transmits it to the satellite The RFT also receives from the satellite the RF echo of the transmitted signal along with the RF input for the inroutes downconverts the signals to IF and forwards the downconverted signals to the system IF distribution module and then to the downlink subsystem The RFT is made up of comm...

Страница 29: ...multiple transponders All traffic to the satellite gateway is sent via multicast The satellite gateway can receive traffic on multiple a maximum of 8 multicast addresses DVB and DVB S2 modulators Each satellite gateway connects to a DVB or DVB S2 modulator The modulators are paired to satellite gateways and are designed to switch together as a chain in the event of a failure The DVB modulators pro...

Страница 30: ... synchronization between the NOC and the satellite routers This subsystem consists of the timing generator the timing unit and the closed loop timing CLT feature Timing generator The timing generator provides the reference clock frequencies to several NOC components including both outroute modulators the timing unit the optional automatic cross polarization ACP spectrum analyzers and the DNCCs It ...

Страница 31: ...or more carriers performs error corrections and forwards the resultant bursts to a NOC component A CDS consists of a single cardset configurable demodulation decoder module CDDM and configurable demodulation interface module CDIM The CDS is hosted on a CompactPCI cPCI chassis along with a host control processor CP that is connected to the dynamic network control cluster DNCC through a LAN interfac...

Страница 32: ...s and decodes inroute signals received from remote user modems via the satellite A typical redundant configuration includes Up to two compact peripheral component interconnect cPCI chassis that contain storage media power supplies control processors CPs CP transition boards and RCDs that contain software radio modules SRMs and receive control modules RCMs One optional frequency distribution unit F...

Страница 33: ...ntion If the DNCC requests that the satellite router enter ranging mode the satellite router uses its assigned ranging burst Based upon these measurements the site chooses the proper settings to transmit traffic to the DNCC The DNCC processes each type of burst and constructs IP packets which are forwarded to the IP gateways Different bandwidth allocation algorithms are implemented on the DNCC Add...

Страница 34: ...ype combination of symbol rate FEC rate and coding type Network Management Support Services NMSS subsystem The NMSS is the name given to the functional elements running in the NMSS network management and support services server These elements are Vision provides configuration and control interface for many of the NOC components Conditional Access Controller provides access control for information ...

Страница 35: ...e for large networks Management file server The management file server MFS is both a repository and a component controller It is a repository for software downloads and parameter files for managed NOC components It also controls the enable disable functions of NOC components and notifies those components of the file and version information and updates MFS relies on the management gateway client MG...

Страница 36: ...W is the major NOC component of the SBC process SBC is not available with the TGW 100 UEM database The unified element management UEM database contains configuration information for these services maintained under a separate schema for each The NOC Forms application provides a configuration interface for CAC WebACS while Vision contains its own interface The MFS is configured using an ASCII text f...

Страница 37: ...communications and consists of four VLANs Management VLAN The management LAN connects the network management subsystem to other subsystems The management LAN carries all NOC administrative messages including managed NOC component software and configuration information Satellite VLAN The satellite LAN connects the multicast broadcasters to the multiplex MUX subsystem The satellite LAN carries outro...

Страница 38: ... or the IFSS TC to the DNCC Enterprise LAN VLAN The enterprise LAN carries user and management traffic from the IP gateways to the customer s enterprise router or the internet The enterprise LANs connect an uplink subsystem to the independent IP network accessible by terminals receiving the subsystem s uplink in such a way that the traffic from one independent IP network is accessible only by a te...

Страница 39: ... management on page 32 Component control on page 34 Overview Network management provides management tools for HX System gateway components and interface equipment including IP gateway Timing unit s Satellite gateway DVB modulator DNCC CP CDS or IFSS TC in older systems All other network components and equipment are managed through their own interfaces Figure 4 illustrates the network management sy...

Страница 40: ...Chapter 3 Network management 28 1037852 0001 Revision A Figure 4 Network management system and LAN connections ...

Страница 41: ...ent as needed and sends them to the MFS component of the NMSS server The MFS acts as a central repository for all configuration and software files for Vision managed gateway components Each gateway component managed by Vision contains a management gateway client MGC MGC is in constant communication with MFS using a proprietary protocol the MGC downloads configuration files from MFS Remote site com...

Страница 42: ...site component can be associated with one core profile group which is assigned by a network administrator and optional customer profile groups which can contain profiles that are not restricted Software configuration management NMSS supports the ability to remotely install and upgrade software images on both gateway and remote site components Software profiles are used to manage software versions ...

Страница 43: ...ically for key status information although this capability can be disabled to conserve network resources Vision can use an alternate mechanism the VSAT information protocol VIP when available to get status information from remote sites more efficiently Current status information is displayed on the Vision UEM GUI through color coded icons The GUI also provides fault isolation capabilities that ope...

Страница 44: ... in a comma separated variables CSV formatted file This facility can be used for long term trend analysis Security management NMSS provides mechanisms for operator security network component security and encryption key management Operator security NMSS controls all access to network management features by user level authentication All interfaces whether interactive batch mode or programmatic are p...

Страница 45: ...MD in the NMSS To allow each individual VAR to monitor and control its own satellite routers yet prevent them from accessing other VAR s satellite routers NMSS provides a management NMD that may be assigned to each satellite router Operators can then be assigned to a management NMD Management NMDs differ from configuration NMDs in three important aspects A management NMD is optional for a satellit...

Страница 46: ...MP for actions such as resets reboots and forced reloads of software configuration HX gateway control You can send commands to the following HX gateway components IP gateway IPGW satellite gateway SATGW MFS resides on the NMSS server DNCC CP CDS Remote site control You can send commands to the satellite routers at remote sites ...

Страница 47: ...hardware based Ensures that traffic is received by satellite routers legally Prevents unauthorized eavesdropping The HX CAS feature assigns a unique key to each satellite router It is responsible for key management and for encrypting outbound data to satellite routers to ensure that satellite routers can only decrypt the data intended for them When a satellite router is commissioned it requests it...

Страница 48: ...d prioritization features The Hughes IPSec Kernel is NIST certified Network security features The HX System provides the following network safeguards to protect the HX gateway and the LANs connected to satellite routers Firewalling A packet filtering firewall to protect LANs connected to satellite routers Fenced Internet URL white lists can be defined to restrict web browsing from remote LANs to o...

Страница 49: ...ce is an option that requires a TurboPage server The FIA service provides a mechanism for enterprise customers to restrict remote site access to a limited number of specifically approved Internet sites Different lists of approved sites can also be supported for multiple subsets of a customer s remote sites ...

Страница 50: ...Chapter 4 Network security 38 1037852 0001 Revision A ...

Страница 51: ...rators to customize bandwidth assignments for each satellite router to meet individual QoS and SLA requirements as compared with the HN System that is designed to provide a fair distribution of bandwidth across a broad set of satellite routers within a collective system Additionally the HX System uses variable burst length transmissions for the inbound route This is an advantage over systems that ...

Страница 52: ...ample it can provide some sites nailed up bandwidth assignment while providing other sites with bandwidth based on activity In both cases there is the capability to dynamically adjust the assigned bandwidth based on real time traffic requirements Inroute bandwidth pooling To leverage the fact that all satellite routers within the HX System are fully frequency agile across all inbound channels the ...

Страница 53: ...e important element is the concept of inroute quality of service IQoS plans An IQoS plan is simply the logical partition of inroute bandwidth together with the satellite routers that can access the logical bandwidth The assigned logical inroute bandwidth is designated as Open and is typically used by satellite routers configured for dynamic stream otherwise known as best effort access Figure 6 ill...

Страница 54: ...m services When a satellite router is configured for dynamic stream services the amount of bandwidth it receives is based on a combination of the following factors Backlog amount This is the satellite router s estimation of how much bandwidth it needs at any given amount Available IQoS capacity This is the amount of available network capacity the system is using to allocate the dynamic stream capa...

Страница 55: ...nfigured with a 512 kbps inbound CIR and a 256 kbps outbound CBR Additionally the satellite router can be configured to deallocate the bandwidth if the channel has been idle for a configurable period of time CBR services operate similar to single channel per carrier SCPC links as the assigned bandwidth per channel is fixed based on the configuration of the link Outroute CBR Statically configured C...

Страница 56: ...ctated by step size The threshold level is defined as the following ratio For example if the threshold level is 80 when the utilization level exceeds 80 an additional step increment of bandwidth is allocated to the satellite router The utilization or load of the channel is evaluated every 500 ms Step increment The fixed amount of bandwidth in kbps that will be allocated to a satellite router as it...

Страница 57: ...llite router until the CIR session terminates Minimum CIR bandwidth is prioritized after configured CBR bandwidth Termination of the CIR session is based on idle period Guaranteed CIR rate The amount of bandwidth to be allocated to a satellite modem when the satellite modem s bandwidth utilization exceeds the configured threshold percentage of the minimum CIR value When this occurs bandwidth alloc...

Страница 58: ...up to the maximum rate defined for the satellite router Outroute CIR Statically configured CIR service requirements Hard QoS configuration per VSAT CIR traffic is assigned a lower priority than CBR traffic and a higher priority than best effort traffic The CIR configuration specifies a minimum CIR minCIR and maximum CIR maxCIR bit rates on a per remote basis The IP gateway supports remotes with di...

Страница 59: ...t effort services to different groups of customers Best effort utilizes the remaining bandwidth after meeting the requirements for guaranteed CBR and CIR bit rate services Bandwidth terminology Operators need to be familiar with the following bandwidth related terms Backlog the estimated amount of data queued in a satellite router that is awaiting to be sent to the hub Periodic bandwidth that is p...

Страница 60: ...ate terminal over a best effort terminal In the outroute direction traffic prioritization occurs in the soft QoS before the hard QoS The HX System can prioritize both inbound and outbound traffic Figure 9 based on IP parameters This prioritization can be based on either source or destination IP address and or IP port numbers and Diffserv code point bits This allows prioritization based on machine ...

Страница 61: ...f service plans This contrasts significantly with some vendor solutions in which all the satellite routers on an inroute must have essentially the same or similar service plans with regard to minimum committed information rate which is always consumed and maximum rate Figure 10 illustrates how an operator using the HX System can customize the service plan per satellite router based on customer req...

Страница 62: ...Chapter 5 Bandwidth management 50 1037852 0001 Revision A ...

Страница 63: ... in the HX system include Bandwidth conservation features IP header compression Payload compression PEP protocol implementation IP packet delivery prioritization NAT PAT Port Mapping VLAN tagging Each of these features is described in the following sections Bandwidth conservation features The HX System implements a variety of mechanisms for reducing the amount of data that must be transmitted acro...

Страница 64: ...cing proxy PEP feature improves the throughput and response time of Internet applications while minimizing required bandwidth The HX satellite routers implement the PEP feature which includes bidirectional TCP spoofing data and header compression IP prioritization acknowledgement reduction and message multiplexing The PEP feature can be disabled if required TCP spoofing TCP spoofing uses local dev...

Страница 65: ...nk The default behavior forwards embedded images embedded HTML frames cascading style sheets and JavaScript URLs of moderate size with the maximum prefetched size configurable for each kind of URL IP packet delivery prioritization Inroute prioritization uses five queues to which users can map traffic with special handling for constant bit rate CBR traffic such as real time transport protocol RTP a...

Страница 66: ...t size exceeds the NAT subnet size Port mapping If a satellite router is configured for port address translation it can also be configured for port mapping Port mapping or port forwarding is the mapping of traffic received by the satellite router on a given port to a particular IP address port number on the satellite router LAN Mappings can be specified as either TCP or UDP Port mapping can be con...

Страница 67: ...rver on the customer enterprise network Situations can dictate that existing terrestrial network infrastructure be configured to prioritize certain VLAN IDs over others which is why it is essential to pass the VLAN tags all the way from the satellite modem to the hub server Application layer network services Several HX System IP features relate to satellite routers These capabilities are configure...

Страница 68: ...oftware Access Control List The Access Control List feature controls access from both local and enterprise internet side via up to fifty rules if configured from UEM and twenty rules if configured locally The feature is configurable via Vision EMS and optionally from the local web based user interface PBR PBR is a feature that allows parameters to specify the next hop router to which a packet can ...

Страница 69: ... routers that share a MAC and IP address The physical routers elect and monitor a master router to service requests If the master router fails another group member assumes its responsibilities This implementation monitors the spacelink using SHM and optionally a remote host via pings This implementation also reports the VSAT as being in an up or operational state as long as both are functioning pr...

Страница 70: ...Chapter 6 IP features 58 1037852 0001 Revision A ...

Страница 71: ...ulticast support addressed in the following sections Multicast applications on page 59 HX gateway multicast management on page 60 Satellite router multicast support on page 60 Multicast applications The HX System uses multicasts for a number of purposes such as transmitting control information and configuration files generated by the Vision UEM system and for transmitting IGMP protocol traffic suc...

Страница 72: ...way can be configured with minimum and maximum committed information rate CIR thresholds for each application as well as CIR for the entire gateway based on the contracted grade of service Vision UEM provides a number of features for managing the multicast capability These include a multicast gateway statistics screen in Vision UEM and SNMP MIBs that provide multicast statistics including Received...

Страница 73: ...ation ACM These features are described in the following sections DVB scaling DVB channels are designed to scale effectively to large carriers the HX System can support carriers as large as 45 Msps on the outbound channel This contrasts sharply with non DVB systems in which the maximum outbound channel capacity in some instances is limited to 10 Msps Uplinking multiple outbound channels incurs an e...

Страница 74: ...tom line for operators is that the DVB S2 can provide up to 2 25 bits per Hz or more depending on the link budget resulting in better bandwidth economics DVB S2 outbound adaptive coding and modulation A powerful feature of DVB S2 is adaptive coding and modulation ACM an addition specifically for interactive services such as broadband IP over satellite ACM allows an operator to vary the modulation ...

Страница 75: ...mically change the coding modulation combination based on changing received signal conditions which occurs in the event of a rain fade In this mode there is a closed loop control feedback mechanism between the HX gateway and the satellite router whereby the satellite router can instruct the HX gateway to change the coding modulation combination to overcome rain fade The benefit for an operator is ...

Страница 76: ...turn channel demodulators RCD at the HX gateway to demodulate decode and process bursts of varying coding rates within the same TDMA frame The gateway demodulator does not need to know the coding of each burst in advance The coding rate is determined spontaneously allowing the satellite router to dynamically change it based on link conditions as affected by rain fade Figure 13 Using ACM to dynamic...

Страница 77: ...e at the satellite router the forward error correction FEC coding can be varied dynamically to improve link availability If the satellite router needs a more robust link performance for the inbound transmissions it has the ability to shift to a different inroute group supporting a lower symbol rate Note that the latter capability does not exist when operating with CBR IQoS plans Additionally the s...

Страница 78: ...called superframes Each superframe is divided into frames and each frame is divided into slots The slot is the basic unit of inroute capacity The slot size and number of slots are determined by the inroute data rate The satellite router transmits a burst at the assigned time slots This burst enables the burst channel demodulator to lock onto the incoming signal Inroute types and burst types Inrout...

Страница 79: ...th Inroute groups An inroute group is a configured collection of inroutes with the following characteristics Defined as a set of inroutes with the same symbol rate Operate at the same information rate Includes at lease one aloha BURST Bandwidth is assigned as a unit The maximum number of inroutes in a group depends on the inroute information rate 256 ksps 32 inroutes 512 ksps 32 inroutes 1024 ksps...

Страница 80: ...Chapter 8 Transmission features 68 1037852 0001 Revision A ...

Страница 81: ...e routers are designed to support high bandwidth links with QoS features such as Min Max CIR together with dynamic allocation of bandwidth With integrated IP features including NAT PAT DHCP RIPv1 RIPv2 BGP and DNS server relay functionality combined with TCP acceleration Hughes satellite routers are the ideal platform to enable high performance IP connectivity for a variety of applications includi...

Страница 82: ... Indoor unit The indoor unit or satellite router is a standalone platform that communicates with customer devices using Ethernet ports to provide access to HX outroutes and inroutes HX indoor units include two Ethernet ports Features The HX50 HX100 and HX150 satellite routers route IP traffic from the outroute onto site LANs and transmit data back on the inroute Table 2 lists the satellite router ...

Страница 83: ...itoring and commissioning via the gateway X X X Incorporates satellite router management via UEM and SNMP X X X Quality of service features Minimum CIR with fixed steps to maximum rate rate limiting X X X Minimum CIR with best effort to maximum rate rate limiting X X X Best effort services weighed fair queueing X X X Class based weighted prioritization X X X Multicast data delivery X X X Four leve...

Страница 84: ...tellite routers to be automatically uploaded to satellite routers from the WebACS Web based auto commissioning server in the HX gateway Installers use an embedded web based wizard served by the satellite router to configure positional and other basic parameters remaining data is provided by the WebACS system WebACS is an optional component and not shipped with a standard rack IP device support IP ...

Страница 85: ...destination start stop times description and so forth Packages for delivery are posted to a customer supplied server which can be a simple Windows XP workstation located at the HX gateway and running the EPD server software The server then broadcasts these packages to the satellite routers The Enterprise Package Delivery software includes a client application that runs on target computers on the r...

Страница 86: ...ustomer premises The Vision UEM software provides the configuration and management features used to manage the IPSec feature on both the VPN IP gateway and IPGW SATGW servers No additional software is required Communication between the HX gateway and the VPN IP gateway is over a secure link provided by the customer Figure 17 Enterprise package delivery ...

Страница 87: ...sent by the remote through an unacknowledged ranging burst passed by the DNCC to the ACP server and via multicast broadcasting through the MUX LAN Crosspol measurements are then conducted in ACP server and the result is sent back to remote through broadcasting from the satellite gateway Figure 18 NOC Overview with ACP and DNCC ...

Страница 88: ...Chapter 10 HX options 76 1037852 0001 Revision A ...

Страница 89: ...HX gateway technical specifications Outbound channel DVB S2 compliant Frequency C Extended C Ku Extended Ku Ka band Modulation QPSK 8PSK Symbol Rates 1 45 Msps in steps of 1 Msps Encoding DVB S2 Convolutional with concatenated Reed Solomon Viterbi 7 8 5 6 3 4 2 3 or 1 2 Encoding DVB S2 BCH with LDPC 3 5 2 3 3 4 5 6 8 9 or 9 10 8PSK 1 2 3 5 2 3 3 4 4 5 5 6 8 9 9 10 QPSK Bit Error Rate 10 10 or bett...

Страница 90: ...00BaseT Ethernet LAN RJ45 ports One RS 232 RS 422 compatible serial port Satellite Antenna Specifications Outbound transmission format DVB S2 DVB S2 supports adaptive coding and modulation Information Rate Receive or HX System Outbound Channel up to 121 Mbps Information Rate Transmit or HX Inbound Channel up to 3 2 Mbps Symbol Rate Receive 1 45 Msps in 1 Msps steps Symbol Rate Transmit 256 512 102...

Страница 91: ...W x 1 75 H x 18 D 48 26 cm W x 4 45 cm H x 45 72 cm D Operating temperature IDU 0 C to 50 C ODU 30 C to 60 C Input power 90 264 VAC 50 60 Hz DC power supply optional 12 24 VDC Input power 90 264 VAC 50 60 Hz Satellite router s technical specifications Continued HX150 Technical Specifications Physical Interfaces Two 10 100BaseT Ethernet LAN RJ45 ports Two RS 232 RS 422 compatible serial ports Satel...

Страница 92: ...ve 10 10 or better Bit Error Rate Transmit 10 7 or better Radio TX IF Type TNC Female 50 ohms 950 to 1700 MHz composite power 5 dBm 35 dBm RX IF Type F 50 ohms 950 to 2150 MHz 68 dBm per carrier at 1 Mbps 8 dBm composite Available LNB Power IFC 19 5 V nominal 10 Mhz reference available Mechanical and Environmental Specifications 1U enclosure for 19 rack Weight IDU 5 5 lbs 2 5 kg Dimensions IDU 19 ...

Страница 93: ...uity of operations tactical military and remote news gathering At only two feet in height the system is a size and cost efficient solution to support the rapid deployment of smaller satellite networks in difficult operating conditions Features As with the larger fully redundant HX system the TGW supports the following HX features Star and star mesh configurations AES encryption option for both out...

Страница 94: ... optimized link performance particularly during high rain conditions through dynamic adjustment of error correcting codes and modulation based on signal quality feedback from satellite modems Truly dynamic bandwidth assignment satellite modems with no traffic are assigned no resources Multiple inroute quality of service options Committed Information Rates CIRs per active satellite modem or group o...

Страница 95: ... encoding Rate 1 2 2 3 4 5 TurboCode Rate 1 2 Convolutional Transmit bit rates 128 kbps to 3 6 Mbps Size and Scalability Base Configuration Single 8 RU transit case Supports up to 100 terminals Supports up to 4 inbound channels Security Access and DES encryption of outbound channels Optional AES bidirectional encryption Network Management System Hughes Vision NMS Remote Terminals and Appliances Su...

Страница 96: ...Appendix B Transportable Gateway TGW 84 1037852 0001 Revision A ...

Страница 97: ...ated values CSV comma separated variables D DES Data encryption standard DFCP Differentiated services code point DHCP Dynamic host control protocol DNCC Dynamic network control cluster DNS Domain name server E EiRP Effective Isotropic Radiated Power F FDU Frequency distribution unit FEC Forward error correction FIA Fenced Internet access F TDMA Frequency time division multiple access G GSM Global ...

Страница 98: ... keying R RCD Return channel demodulator RCM Receive control module RF Radio frequency RFT Radio frequency terminal RIP Routing information protocol RSOM Remote Site Originated Multicast RTP Real time transport protocol S SATGW Satellite Gateway SBC Satellite based commissioning SCPC Single channel per carrier SDL Software download SFNP Superframe numbering packet SLA Service level agreement SNMP ...

Страница 99: ... Acronyms and abbreviations 1037852 0001 Revision A 87 W WAN Wide area network WebACS Web based auto commissioning X XML Extensible markup language ...

Страница 100: ... Acronyms and abbreviations 88 1037852 0001 Revision A ...

Страница 101: ...nments 39 best effort services 47 CIR 45 outroute CBR 43 outroute CIR 46 overview 39 preassigned CBR 43 service plans 49 techniques 39 terminology 47 traffic prioritization 47 variable burst length transmission 39 pooling guaranteed 42 Best effort services 47 Border Gateway Protocol 8 Broadband applications 7 GSM backhaul 7 IP connectivity 7 IP multicasts 8 IP connectivity 7 Burst types 66 C CDS c...

Страница 102: ...ontrolling 34 fixed 8 IP 15 satellite 16 special services 24 transportable TGW 8 Gateway common equipment GCE 18 GSM backhaul 7 GTWY gateway 8 Guaranteed bandwidth 42 H Header compression 52 HX System architecture 8 features 7 ACM 6 advanced bandwidth management 6 advanced IP 6 cost effective gateway 7 data acceleration 7 DVB S2 6 network security 7 overview 6 rain fade 6 TDMA return channel 6 gat...

Страница 103: ...ption key 33 LAN 25 Management file server MFS overview 23 Management NMDs 32 Managing bandwidth 39 encryption key 33 multicast 60 NMD 33 Modulators DVB DVB S2 17 Multicast applications 59 broadcast 59 streaming media 60 features 59 managing 60 satellite modem 60 Multi frequency inbound access diagram 41 Multiple Outroute 3 Multiple service plans diagram 49 MUX LAN 25 N NAT PAT 53 Network componen...

Страница 104: ...emote VLAN tagging 55 Return channel CP 21 IF distribution module 21 Return channel demodulator RCD 20 S Satellite gateway 16 LAN 25 modem 150 specifications 79 antenna 70 configuration and commissioning 72 features 70 HX50 100 specifications 78 IDU 70 IP device support 72 multicast support 60 ODU 70 segment 9 site configuration 29 Satellite modem features dynamic stream services 42 Security manag...

Страница 105: ...able burst length 39 Transportable Gateway 81 Transportable Gateway TGW technical specifications 82 TurboPage 53 U UEM database 24 Uplink subsystem DVB modulators 17 overview 16 QMPC 24 satellite gateway 16 satellite gateways 16 V Variable burst length transmissions 39 very small aperture terminal 3 Virtual local area networks VLANs enterprise 26 Vision overview 23 VLAN Tagging 54 W WAN 9 Web base...

Страница 106: ... Index 94 1037852 0001 Revision A ...

Отзывы:

Нет отзывов

Похожие инструкции для HX System

Galaxy DX 949 Owner'S Manual preview
DX 949
Бренд: Galaxy Страницы: 12
Galaxy DX 929 Owner'S Manual preview
DX 929
Бренд: Galaxy Страницы: 11
Teac EX-M1 Owner'S Manual preview
EX-M1
Бренд: Teac Страницы: 36
Target Blu Eye 2 Installation Manual preview
Blu Eye 2
Бренд: Target Страницы: 10
Hallicrafters S-72 Operating And Service Instructions preview
S-72
Бренд: Hallicrafters Страницы: 8
Jensen Audio DV-7780 Service Manual preview
DV-7780
Бренд: Jensen Audio Страницы: 44
Aquatic AQ-IP-3B Instruction Manual preview
AQ-IP-3B
Бренд: Aquatic Страницы: 22
Planet Audio PNV9620I Instructions Manual preview
PNV9620I
Бренд: Planet Audio Страницы: 8
HiTV Ture TV User Manual preview
Ture TV
Бренд: HiTV Страницы: 28
Triax ORB 923 Series User Manual preview
ORB 923 Series
Бренд: Triax Страницы: 8
Teac AG-V8520 Owner'S Manual preview
AG-V8520
Бренд: Teac Страницы: 47
AirTech ATS-400B User Manual preview
ATS-400B
Бренд: AirTech Страницы: 7
Sangean ProTravel PT10 Specification Sheet preview
ProTravel PT10
Бренд: Sangean Страницы: 1
Omega OM-CP-RFC1000 User Manual preview
OM-CP-RFC1000
Бренд: Omega Страницы: 6
Boss Audio Systems MR1465S User Manual preview
MR1465S
Бренд: Boss Audio Systems Страницы: 18
Lenz Digital plus Operating Manual preview
Digital plus
Бренд: Lenz Страницы: 56
Denon AVR-1612 Getting Started preview
AVR-1612
Бренд: Denon Страницы: 16
Asus CarLink User Manual preview
CarLink
Бренд: Asus Страницы: 54

Бренды по названию

Популярные бренды

Загрузить еще бренды