Cradlepoint mbr1200 User Manual
  1. Manuals
  2. Brands
  3. Cradlepoint Manuals
  4. Wireless Router
  5. MBR1200
  6. User manual

Cradlepoint mbr1200 User Manual

Hide thumbs Also See for mbr1200:
Table of Contents

Advertisement

Quick Links

User Manual
/
MBR1200B
5/3/16
ARC Series
Router
MBR1200B
User Manual
©2016 Cradlepoint. All Rights Reserved.
|
+1.855.813.3385
|
cradlepoint.com
1

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the mbr1200 and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Cradlepoint mbr1200

Summary of Contents for Cradlepoint mbr1200

  • Page 1 User Manual MBR1200B 5/3/16 ARC Series Router MBR1200B User Manual ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 2: Table Of Contents

    ACCESSING THE ADMINISTRATION PAGES FIRST TIME SETUP WIZARD USING ENTERPRISE CLOUD MANAGER ADMINISTRATION PAGES QUICK LINKS DASHBOARD CONNECTION MANAGER WAN INTERFACE PROFILES & PRIORITY STATUS INTERNET CLIENT LIST FIREWALL TUNNELS ROUTING ETHERNET SYSTEM LOGS ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 3 CLIENT DATA USAGE SECURITY IDENTITIES ZONE FIREWALL CONTENT FILTERING CERTIFICATE MANAGEMENT SYSTEM ADMINISTRATION ENTERPRISE CLOUD MANAGER DEVICE ALERTS SNMP CONFIGURATION SYSTEM CONTROL DIAGNOSTICS SETUP WIZARDS APPENDIX SAFETY, REGULATORY, AND WARRANTY GUIDE ROUTER COMMUNICATION/DATA USAGE ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 4: Introduction

    MBR1200B 5/3/16 INTRODUCTION WHAT’S IN THE BOX • Cradlepoint Mission-Critical Broadband Router (MBR1200B) • AC power adapter (12V, 1.5A) WARNING: using a power adapter other than the one provided may damage the MBR1200B and will void the warranty • CAT5 Ethernet Cable •...

  • Page 5: Specifications

    One-year limited hardware warranty available in the US and Canada; two-year limited hardware warranty for integrated EU products when purchased from an authorized EU distributor – extend warranty to 2, 3, or 5 years. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385...
  • Page 6 User Manual MBR1200B 5/3/16 HARDWARE ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 7: Quick Start

    2. When prompted for your password, type the eight character DEFAULT PASSWORD found on the product label. NOTE: The product label below is an example only: your DEFAULT PASSWORD and SSID will be unique. It’s possible – and more efficient – to do all your configuration changes through Cradlepoint Enterprise Cloud Manager (ECM) without logging into the local administration pages.

  • Page 8: First Time Setup Wizard

    When you log in for the first time, you will be automatically directed to the FIRST TIME SETUP WIZARD, which will walk you through the steps to customize your Cradlepoint MBR1200B. You have the ability to configure any of the following: •...

  • Page 9: Quick Links

    You may return to the Dashboard at any time by clicking on DASHBOARD from the left menu or by clicking on the Cradlepoint logo at the top-left of the screen. ©2016 Cradlepoint. All Rights Reserved.

  • Page 10: Connection Manager

    WAN interfaces to use for data transfer. Turning off Load Balance for an active WAN interface may require the user to restart any current browsing session. From WAN Management, select the Load Balance Algorithm from the following dropdown options: ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 11 (The first two requests will be directed at the Primary DNS server and the second two requests will be directed at the Secondary DNS server.) If still no data is received, the ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385...
  • Page 12 For Monthly and Weekly you are able to specify the day to start each cycle (e.g. the 1st or Tuesday, respectively). Usage Cap: Enter a Cap amount in Megabytes. 1024 Megabyte is equal to 1 Gigabyte. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385...
  • Page 13 Custom Alert Percentages: Example: “50,80,90,110” (values can exceed 100%) (Triggers alerts when 50, 80, 90, 110% of usage cap is used) NOTE: To enable data usage, check Data Usage Enabled from WAN Management. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 14: Status

    Routing Ethernet System Logs INTERNET CONNECTIONS Select your device to reveal detailed information about the following device properties: • Summary • Modem • Cellular Network • General Information • IPv4 Information • Statistics ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 15 User Manual MBR1200B 5/3/16 ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 16 Last Traffic To reset information, click Reset Statistics. STATISTICS Statistics can be gathered at variable Sample Rate and Sample Size for the following areas: • Wireless Device • Data Usage • Failover/Failback/Load Balance ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 17: Client List

    User Manual MBR1200B 5/3/16 CLIENT LIST Displays information about your Wireless and Wired Clients, and allows you to Kick Wireless Clients and block MAC addresses of both Wireless and Wired Clients. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 18: Firewall

    Displays status of your GRE Tunnels. To add and configure GRE Tunnels, go to NETWORKING > Tunnels > GRE. FIREWALL Displays information about your Firewall Connection Tracking States. To configure your firewall, select SECURITY from the left navigation. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 19: Routing

    Displays information about your Ethernet ports. To configure Ethernet ports, go to NETWORKING > Local Networks > Ethernet Ports. Displays GPS location and status. To enable and configure GPS, go to SYSTEM > Administration > GPS. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 20: System Logs

    User Manual MBR1200B 5/3/16 SYSTEM LOGS Displays System Log information. To configure System Logging, go to SYSTEM > Administration > System Logging. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 21: Networking

    This name is referred to as the SSID (service set identifier). For security purposes, Cradlepoint highly recommends that you change this from the pre-configured name. Hidden: This shows whether the router broadcasts its SSID. It is somewhat harder for hackers to find and attack a router that is not broadcasting its SSID, which adds to the wireless security, but it is also more difficult for friendly users to attach to a WiFi network with a hidden SSID.
  • Page 22 NOTE: If you don’t know whether you should choose Personal or Enterprise, assume Personal since you need to know RADIUS authentication for Enterprise. In order to protect your network from hackers and unauthorized users, Cradlepoint highly recommends WPA2/ AES for security if your attached devices can support it. WEP and WPA/TKIP are obsolete and have been replaced by WPA/AES.
  • Page 23 Since clients can dynamically change rates depending on environment, selecting Auto is generally best. Short GI: Short GI is an optimization for shortening the interval between transmissions. May be incompatible with older clients. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 24 Reservations: This is a list of devices with reserved IP addresses. This reservation is almost the same as when a device has a static IP address except that the device must still request an IP address from the router. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385...
  • Page 25 Standard: Without NAT exposes the subnet addresses which requires them to be externally routable. IPv6 Settings IPv6 Address Source: The Address source has three settings. The default of Delegated is desirable in most configurations. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 26 DHCP Range End: The ending IP address in the DHCP Server range is the end of the reserved pool of IP addresses which will be given to any DHCP enabled computers on your network. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385...
  • Page 27 The time/date that is logged is the time of the first connection. The page may need to be refreshed to show the most recent log entries. Double-clicking on entries from this list will add them to the Ignored MAC Addresses list. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 28: Vlan Interfaces

    Click Add to create a new VLAN interface. To edit an interface, select the check box next to the desired interface. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 29: Tunnels

    IPsec (Internet Protocol security) to authenticate and encrypt packets exchanged across the tunnels. To set up a VPN tunnel with a Cradlepoint router on one end, there must be another device (usually a router) that also supports IPsec on the other end.
  • Page 30 Port – Select by the physical port on the router that you are plugging the modem into (e.g., “USB Port 2”). • Manufacturer – Select by the modem manufacturer (e.g., “Cradlepoint Inc.”). • Model – Set your rule according to the specific model of modem.
  • Page 31 DH group options, you improve your chances for a successful tunnel negotiation. For greatest compatibility, select all options; for greatest security, select only the most secure options that your devices support. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 32 Perfect Forward Secrecy (PFS): Enabling this feature will require IKE to generate a new set of keys in phase 2 rather than using the same key generated in phase 1. Additionally, with this option enabled the new keys ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385...
  • Page 33 DH Group. Phase 2 and phase 1 selections do not have to match. For the Hash selection an added value of SHA 256_128 (128-bit truncation) is avaliable. The original specification and the Cradlepoint default is 96-bit truncation, but RFC4868 requires 128-bit. A VPN to newer Cisco or Juniper devices will typically require 128-bit.
  • Page 34 Generic Routing Encapsulation (GRE) tunnels can be used to create a connection between two private networks. Most Cradlepoint routers are enabled for both GRE and VPN tunnels. GRE tunnels are simpler to configure and more flexible for different kinds of packet exchanges, but VPN tunnels are much more secure.
  • Page 35 Port – Select by the physical port on the router into which you are plugging the modem (e.g., “USB Port 2”). • Manufacturer – Select by the modem manufacturer (e.g., “Cradlepoint Inc.”) • Model – Set your rule according to the specific model of modem •...
  • Page 36 Then go to the Keep Alive page. Under Failover Tunnel select the other tunnel you have created. 3. Open the editor for the failover tunnel. Make sure Tunnel Enabled is not selected. On the Keep Alive page, set the Failback Tunnel to your primary tunnel. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 37: Dns Servers

    DNS SERVERS DNS, or Domain Name System, is a naming system that translates between domain names (www.cradlepoint. com, for example) and Internet IP addresses (206.207.82.197). A DNS server acts as an Internet phone book, translating between names that make sense to people and the more complex numerical identifiers. The DNS page for the device has these distinct functions: •...
  • Page 38 Enable Dynamic DNS: Enable this option only if you have purchased your own domain name and registered with a Dynamic DNS service provider. • Server Type. Select a dynamic DNS service provider from the dropdown list: • DynDNS • DNS-O-Matic • ChangeIP ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 39 IP address, go to NETWORKING > Local Networks > DHCP Server and reserve the IP address for the device by selecting the device in the Active Leases list and clicking Reserve. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385...

  • Page 40: Wifi As Wan

    To enable WiFi as WAN, first select the WiFi radio: • WiFi Radio #1 (2.4 GHz) All Cradlepoint routers and some other routers use the same default IP address for the primary network: 192.168.0.1. If you attempt to set up WiFi as WAN and there is an “IP conflict,”...

  • Page 41: Client Data Usage

    The names that are shown are received during a DHCP exchange. If a client disconnects and reconnects with a new IP address there will be an additional entry in this list. Pressing Reset Statistics will restart all counters at 0. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 42: Security

    IP addresses are entered using CIDR notation, e.g. 1.2.3.4/32 and 0123:4567::CDEF/128. FQDN addresses are entered with at least one dot separating a top-level domain from a root zone, e.g. cradlepoint.com. To add a Host Address Identity, click Add. PORTS A port identity member can be entered as a single Start port number or as a port range by entering both a Start and End port number.
  • Page 43 MAC address columns to match the destination of the traffic. See Source for the column definitions. • Protocols: Select protocols (such as TCP, UDP, GRE, etc) from the defined list or enter a numeric code for other protocols to match traffic of that protocol. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 44 DMZ IP address. Typical uses involve running a public web server, supporting older games, or sharing files. NOTE: As with port forwarding, caution should be used when enabling the DMZ feature as it can threaten the security of your network. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 45 The primary purpose for Cradlepoint’s NPT implementation is for failover/failback and load balancing setups. LAN clients can potentially retain the original IPv6 lease information and may experience a more seamless transition when WAN connectivity changes than if not utilizing NPT.
  • Page 46 One-to-One NAT can be accomplished by specifying a host address or a /32 cidr address. Click Add to create a NAT. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 47: Content Filtering

    HTTPS Port (Optional): The port for the proxy to forward HTTPS traffic to. HTTPS is not transparently intercepted and must have the LAN clients configured to use the Cradlepoint router as a proxy for HTTPS to work properly. MAC WEB FILTER RULES...
  • Page 48 The settings can be changed by selecting a network and clicking the Edit button. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 49: Certificate Management

    • Organization Information: The organization to which the certificate issuer belongs • Common Name: Name used to match authentication credentials To add a local certificate, click Add. Remove a local certificate by selecting the certificate and clicking the Remove button. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 50 PEM or PKCS #12 format. When you export the CSR, select a Digest, or cryptographic hash function. These are listed in order of increasing security. More security requires more router resources. • • SHA-128 • SHA-256 ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 51 PKCS #12 format. When you export this file, you must create a passphrase to protect it. This key is required for future use of the file. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 52: System

    Require HTTPS Connection – Requiring a secure (https) connection is recommended • HTTP Port: Default – 8080. This option is disabled if you select “Require Secure Connection” • Secure HTTPS Port – Default: 8443. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 53 Asset Identifier – This is a customizable string that will be used in router reporting and alerting. • Require HTTPS Connection – Check this box if you want to encrypt all router administration communication. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 54 • Specify Time Interval - Restricts the GPS sentence reporting to a remote server to a specific time interval. • Start Time - Reporting start time. • End Time - Reporting end time. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...
  • Page 55 If this occurs, disable this option. Log to attached USB stick: Only enable this option if instructed by a Cradlepoint support agent. This will write a very verbose log file to the root level of an attached USB stick. Please disable the feature before removing the USB stick, or you may lose some logging data.

  • Page 56: Enterprise Cloud Manager

    ENTERPRISE CLOUD MANAGER Cradlepoint Enterprise Cloud Manager (ECM) is a cloud-based management service for configuring, monitoring, and organizing your Cradlepoint routers. Key features include the following: • Group based configuration management • Health monitoring of router connectivity and data usage •...
  • Page 57 Retry Attempts: The number of attempts made to send an alert to the mail server. After the attempts are exhausted, the alert is discarded. Retry Delay: The delay between retry attempts. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 58: Snmp Configuration

    SNMP, or Simple Network Management Protocol, is an Internet standard protocol for remote management. You might use this instead of Enterprise Cloud Manager if you want to remotely manage a set of routers that include both Cradlepoint and non-Cradlepoint products. SNMP Configuration •...
  • Page 59 System Contact: Input the email address of the system administrator. • System Name: Input the router’s hostname. • System Location: Input the physical location of the router. This is simply a string for your own information. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 60: System Control

    If you are happy with the operation of the router, you may not want to upgrade just because a new version is available. Check the firmware release notes (cradlepoint.com/firmware) for information to decide if you should upgrade.

  • Page 61: Diagnostics

    • Custom Server - Type the Hostname or IP address of the server to which you wish to perform a test. If left empty the test will be done to a Cradlepoint server. • Custom Port (Optional) - The port to which the test is directed.

  • Page 62: Setup Wizards

    MBR1200B 5/3/16 SETUP WIZARDS ECM REGISTRATION To register the router with Cradlepoint ECM you must first have an account. If you need to create an account you can signup at cradlepoint.com. Once you’ve created an account, or if you already have one, you can enter your ECM username and password to register the router.
  • Page 63 Configuring Your APN and Modem Authentication If you are using a SIM-based modem (LTE/GSM/HSPA) with your Cradlepoint router you may need to configure the APN before it will properly connect to your carrier. Wireless carriers offer several APNs so check with your carrier to confirm the appropriate one to use.

  • Page 64: Appendix

    This device complies with RSS-210 of the Industry Canada Rules. Operation is subject to the following two conditions: (1) This device may not cause harmful interference, and (2) this device must accept any interference received, including interference that may cause undesired operation. ©2016 Cradlepoint. All Rights Reserved. +1.855.813.3385 cradlepoint.com...

  • Page 65: Industry Canada Radiation Exposure Statement

    RECYCLING AND ENVIRONMENTAL INFORMATION To find information on Cradlepoint’s commitment to our environment and how to responsibly recycle or recover Cradlepoint products at the end of their useful life, please visit cradlepoint.com.

  • Page 66: Router Communication/Data Usage

    (i.e., contain errors), or totally lost. The device is not intended for (and Cradlepoint recommends the device not be used in any) critical applications where failure to transmit or receive data could result in property damage or loss or personal injury of any kind (including death) to the user or to any other party.

This manual is also suitable for:

Arc series

Table of Contents