4IPNET WHG201 User Manual
  1. Manuals
  2. Brands
  3. 4IPNET Manuals
  4. Gateway
  5. WHG201
  6. User manual

4IPNET WHG201 User Manual

Whg series wlan gateway-controller/hsg series wireless hotspot gateway
Hide thumbs
Table of Contents

Advertisement

Quick Links

User Manual

WHG-Series WLAN Gateway-Controller
HSG-Series Wireless Hotspot Gateway
Verion 3.43.00
Copyright Notification
4IPNET, INC.
This document contains proprietary information which is the property of 4IPNET, INC. and is strictly confidential. No part may be reproduced except as
authorized by written permission of the contributing companies.

Advertisement

Table of Contents
loading

Related Manuals for 4IPNET WHG201

Summary of Contents for 4IPNET WHG201

  • Page 1: User Manual

    HSG-Series Wireless Hotspot Gateway Verion 3.43.00 Copyright Notification 4IPNET, INC. This document contains proprietary information which is the property of 4IPNET, INC. and is strictly confidential. No part may be reproduced except as authorized by written permission of the contributing companies.

  • Page 2: Table Of Contents

    PPP Authentication ............................... 62 4.5.8 WISPr for ISP Roaming ............................62 HOW TO CONFIGURE USER POLICIES ........................... 64 USER POLICY................................64 Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 3 LOOR HOW TO ENABLE VPN FEATURE ..........................110 11.1 VPN PPTP ..............................110 EMOTE 11.2 VPN IKE 2 ..............................110 EMOTE Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 4 Session List ..............................143 17.4 ..............................144 OGS AND EPORTS 17.4.1 System Related Logs and Reports ........................144 17.4.2 User Events ..............................144 Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 5 17.5.2 SYSLOG Settings ............................. 146 17.5.3 FTP Settings ..............................147 17.5.4 Notification Settings ............................147 APPENDIX A. HARDWARE OVERVIEW ..........................149 Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 6: 4Ipnet Wlan Quick Deployment

    WLAN controller is capable of servicing multiple hotspot franchises with a single device. Administrators are able to check the Service Zone status from “Main › System › Service Zone” and click the Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 7: How To Add An User Accounts

    (”session 8.3.3 CAPWAP with complete tunnel”), while WAPM with split tunnel is for L3 network topology with authentication and traffic flow optimization(”session 8.3.4 CAPWAP with split tunnel”). Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 8: How To Configure System Setup

    User Log Access IP Address: Once configured, user logs can only be accessed via the administrator Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 9: Wmi Management Access

    Telnet Service: The non-encrypted remote console interface in port 23. For security purposes, Telnet Service is disabled by default to prevent malicious users from accessing the system. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 10: Wan Configuration

    - Ether Port: Deploy the copper Ethernet WAN port for service. - Fiber Port: Deploy the SFP fiber port for service. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 11 A field of warning message text may be customized which will be displayed on the user’s web browser when all three detecting targets fail to respond. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 12: Lan Configuration

    PMS Interface, refer to “chapter 14 PMS Integration”  Utilities for WLAN Controller, refer to “chapter 15 Utilities for WLAN Controller” Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 13 User Manual ENGLISH WHG-Series Wireless WLAN Controller  Advanced Settings for Network Environment, refer to “chapter 16 Advanced Settings for Network Environment” Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 14: How To Configure Service Zone

    This mode not only protects users on the LAN from being ‘seen’ by external devices but also solves the problem of limited public IP’s. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 15: Dhcp Server Option

    Service Zone can select the authentication option preferred to downstream clients for login. Note that Authentication is always enabled by default. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 16: Page Customization

    URL parameter utilization that works together with the Message Pages and should be organized carefully. For more details on External Login Page customization, please refer to the Technical Guide. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 17 For a Preview of the custom page, click “Apply” followed by the “Preview” button. Similarly, the four options are available for Message Pages. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 18: How To Enable User Authentication Databases

    - Edit Account Information: For existing user accounts, further modification is possible simply by clicking the username hyperlink on the page to reconfigure account attributes. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 19: On-Demand User Database

    - Unit Price is the unit price of this plan. - Group will be the applied Group to users created from this plan. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 20 - Group will be the applied Group to users created from this plan. - Reference field allows administrator to input additional information. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 21 Wireless Key, Receipt header and Receipt footer. Simply click the “Preview” button to check the layout and then press “Printout” button for laptop printout setting. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 22 Instant Payment Notification (IPN) field in order for the paying end user to receive transaction outcome. Select the enabled billing plans that are allowed for end users to self-purchase through the payment gateway. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 23 SMS gateway with the payment gateway. Upon successful set up, the Number of SMS Quota field will be available. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 24 An example of what will be displayed when External Payment Gateway is used with SMS Gateway is shown below: Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 25 API URL: The link for sending an SMS request to an API server. Registration before Accounts Expired: Allow will allow the same mobile number to request a 2nd Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 26 Taking the SMS Global as example, the WLAN controller is able to follow the SMS API indication from SMSGlobal website (HTTP API) https://www.smsglobal.com/http-api/?_ga=2.178049571.763118347.1504837619-1430890374.1504837 619. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 27 Send Test Message: this help verify the integration with current configuration With the SMS Gateway enabled, the Billing Plan selection page will appear as such Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 28 - Remark: a custom field for identity of each walled garden entry SMTP Server Settings: to assign SMTP server for sending the mail for redeem clients. This SMTP is shared Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 29: On-Demand Accounts Creation And List

    POS printer for generating physical ticket printout for sale. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 30 = Valid + Out-of-Quota + Expired Besides, the valid and total numbers of On-Demand accounts are informed in the end of this list. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 31: Guest User Database

    Access Limit (1 Day Access only): to define how many times a device can request for a free account in a Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 32 The Sender Name, Email Subject, and Email Content (max. 2000 characters) are all customizable as soon as the SMTP server is ready. SMTP server configuration is done by clicking the “Assign SMTP Server” button. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 33: One Time Password

    SMS Gateway setting in “session 4.1.2 On-Demand User Database” Web Page Customization: different customized types are selectable, but now only support 4ipnet Default and Customize with Template Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 34: How To Integrate 4Ipnet Wtg Series Printer (Wtg-Series)

    To print out the information of SDS200W, including (1) its IP address (2) the firmware version and the build number (3) the current listening Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 35 (not necessarily connected. It just means that the RF card is ready to serve). WLAN blinks when the Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 36 4. Antenna Connector Assemble the dipole antenna within the package here. Including SDS200W into Your Network The following diagram illustrates a deployment example that shows how the SDS200W can be connected Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 37 Remember to set the TCP/IP settings of the computer you use with a static IP address that is under the same subnet as SDS200W. For example: 192.168.1.20. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 38 That is, the given quota is multiplied by two. Note that the keys can only print out tickets one at a Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 39 When wired connection is established, the wireless connectivity will be turned off by the system automatically, meaning wireless and wired connection will not co-exist at any time. Wired connection has a higher priority. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 40 For deployment flexibility on your hotspot, customization of POS tickets using templates is supported on the WLAN controller. Up to 5 ticket templates can be saved on the system. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 41 Once this is done, you may start assigning Billing Plans and Ticket Templates for your Terminal Servers. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 42 The ticket needs to be customized in order to support the printing of QR Code. Under Main Menu > Users > Authentications, click On-Demand User and Configure for Ticket Template Customization. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 43 Code scanning App (such as QuickMark, QR Reader, Barcode Scanner), the login process is simple now. Note: Switch off Auto-Join and Auto-Login to prevent the mobile device from jumping back to the remembered network. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 44: External Authentication

    It is also the most commonly used external authentication mechanism today. How to deploy WLAN controller to different scenarios is described in session 4.5 RADIUS Authentication Application Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 45 RADIUS settings. Attributes of the Primary RADIUS Server and Secondary RADIUS Server can be configured depending on service deployment. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 46: Nt Domain

    Please note that the corresponding Group profile should have its QoS settings appropriately configured to support voice applications. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 47: Social Media

    Social Media Account Information: Some information of the accounts is available for administrators’ further analysis or marketing purposes. Account names, account emails, gender, birthdays, and location Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 48 Main › System › General. The step-by-step application procedures could be referred to Technical Giude. Site URI: http://gateway.example.com/ Redirect URI: http://gateway.example.com/loginpages/line_login.shtml Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 49: How To Apply Social Media Login

    All administrators have to do is to copy and paste for a corresponding ID and secret. Facebook developer website WLAN controller configuration Step 2. Define the free Wi-Fi service, including Quota in Unlimited/Limited Access Time Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 50 Group profile. MAC address will be checked to avoid malicious use of free access. Note: When Social Media Login is enabled, the controller collects information from the clients. Please Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 51 Consequently, after going through configurations from STEP 1 to STEP 3, end users will see that the an additional “Sign-in with Social button(s)” will show on the Service Zone’s login page. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 52: Radius Authentication Application

    For the clients associated to the managed APs, they should provide the VAP with the WPA2-Enterprise security which should direct to the Service Zone of the target WLAN controller. Therefore, the clients can Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 53 WHG-Series Wireless WLAN Controller start the RADIUS authentication request and follow the AAA settings from the WLAN controller and the RADIUS server. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 54: Local/ On-Demand Account Roaming Out

    To use On-Demand user database as the RADIUS database of another controller, configuration at the page “Main Menu > Users > Internal Authentication > On-Demand” Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 55 Note: Please make sure that the user database postfixes are configured without conflicting with one another over the two Controllers. Branch Office Gateway Configuration It is recommended to select “Leave Unmodified” for Username Format Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 56 POP3 pop3 POP3 pop3 Note: If both the Local and On-Demand databases are configured as roaming out server, please set the Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 57 User Manual ENGLISH WHG-Series Wireless WLAN Controller Postfix in the remote controller as “.” (dot). Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 58: Wlan Controller As An Internal Radius Server

    Thanks to the built-in Local and On-Demand database, the WLAN controller is able to act as the RADIUS server and the gateway in the same box. The 4ipnet AP can act as the authenticator for clients with 802.1x authentication. Please check below topology and configuration.
  • Page 59 User Manual ENGLISH WHG-Series Wireless WLAN Controller RADIUS Server. In this case, enabling accounting service is not mandatory. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 60: Dm And Coa

    Disconnect Messages from the External Web Server. The following illustrates the authentication flow via CoA The following illustrates the authentication flow via CoA Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 61 2. Calling-Station-IdorUser-Name or Acct-Session-Id Supported Vendor Specific Attributes include: Idle-Timeout Session-Timeout Acct-Interim-Interval Class WISPr-Bandwidth-Min-Up WISPr-Bandwidth-Max-Up WISPr-Bandwidth-Min-Down WISPr-Bandwidth-Max-Down WISPr-Session-Terminate-Time WISPr-Session-Terminate-End-Of-Day WISPr-Billing-Class-Of-Service ZVendor-Byte-Amount-4GB ZVendor-Byte-Amount ZVendor-MaxByteIn-4GB Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 62: Mac Acl In The Wlan Controller

    MAC address entered in the configured RADIUS Server, the Controller will automatically authenticate and grant access immediately if authentication succeeds. Users will experience transparent login. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 63: Ppp Authentication

    ISP subscribers to generate more sources of profit. WISPr or Wireless Internet Service Provider roaming - Pronounced "whisper," is a draft protocol submitted Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 64 RADIUS vendor-specific attributes (VSAs). WISPr Billing Time: to set RADIUS account billing time. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 65: How To Configure User Policies

    Firewall Rule Schedule can be set to specify when the firewall rule is enforced; it can be set to Always, Recurring or One Time. Privilege Profile: to configure the flexibility and privilege for each user. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 66 Policy 1 has the highest priority, and Policies with the higher number shall be the first applied Policy. Note: If a user is not applied by any User Policy, at least, the Global Policy will take effect. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 67: Global Policy

    Policy in the hierarchy of configurations for a particular user, the system will govern them by Global Policy. Group-Service Zone Mapping > Service Zone default Policy > Global Policy Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 68: How To Generate Your Scenarios

    3. While an on-demand account user from group 3 may be imposed by policy 3 in service zone 3, and he/she cannot access the service zone 1. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 69 Groups that distinguish these three categories of Internet service users apart by giving these Group different permissions of Internet accessibility. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 70 Defined Schedules are then applied in Group Configuration. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 71: Blacklists And Privilege Lists

    6.2.3 IPv6 Privilege List The Privilege function supports three types of privilege list based on IP address, MAC address and IPv6 Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 72: Mac Privilege List

    Idle time configure above, will induce an idle timeout action where the user will be logged out. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 73 10/15/20 minutes to show the updated remaining quota. MAC Access Control List Please refer to “session 6.2.5 MAC Access Control List” Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 74: How To Configure Access Point In Lapm

    AP Adding and Configuration  Template  AP Firmware Management  WDS Management  Rogue AP Detection  AP Load Balancing Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 75: Ap List And Overview

    Admin Settings Used to Discover: the recommended discovery method is Factory Default due to AP’s default setting. Just click Scan Now without changing any of the configurations on their AP’s. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 76: Template

    General Settings such as the Default Gateway of the AP and etc. are configured here. Wireless Settings and applicable Service Zones/SSIDs are also configurable here. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 77 APs of this Service Zone Allowed Disabled AP does not allow devices with these addresses to associate with the APs of this Service Zone Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 78: Ap Firmware Management

    Tree can be set up in your network. This list can be set to refresh automatically at fixed intervals (10s, 20s, Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 79: Rogue Ap Detection

    APs' transmit power and increase other available APs' transmit power; this will let other available APs have more chance to be associated. The system can divide the managed APs into groups; Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 80 Device List: The grouping of AP devices can be done on the Device List page. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 81: How To Configure Access Point In Wapm

    This section goes on to explain how to centrally manage the access points on the WAN from a WLAN controller.  AP List  Graphical Monitoring  AP Adding and Configuration Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 82: Ap List

    Once the administrator has added APs to the managed list, these APs can be tagged or marked on the Google Map API to show its’ geographical location, as shown below: Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 83 Map/Satellite: to switch the view of graphical view or real satellite images Search: to find locations or places from Google Map, instead of searching the managed APs Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 84 “Google Maps Registration Key” under Map Configuration page. Click on “Sign up for a Google Maps API key”. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 85 Longitude and Latitude, remember to also fill in the Key issued by Google. Finally choose the Zoom Level and Map Type and click the Save button. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 86 Fill in the coordinates where you wish to mark this particular AP. Link 1 ~ Link 3 is for configuring a http Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 87 APs and click OK button. The selected APs will show up as marker images on the map at the physical coordinates configured, as shown below. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 88 AP Statistic, AP Status, Client List, WDS List and Links related to this AP, which are collected from the remote AP via SNMP. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 89: Ap Grouping

    4ipnet controller supports adding AP’s on Google Map. The process is shown below: Create your own map by clicking Add under Map List at the bottom page and then fill in the necessary Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 90 After an AP group is created, you may assign access permission to each AP group by adding an Administrator Group to the Administrator Group List. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 91: Ap Adding And Configuration

    SNMP Write Community: default is “private” for SNMP Map: to specify the managed device in certain Map for tier administration or graphical view Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 92: How To Prepare Capwap Application

    CAPWAP is a standard interoperable protocol that enables a WLAN controller to manage a collection of wireless access points. Two tunneling options are available: complete tunnel and split tunnel. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 93 Through the DNS SRV record acquired, the AP will recognize the Controller to send CAPWAP join request. DHCP Option Discovery: Administrator should enable the CAPWAP feature and the DHCP server of the Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 94: Capwap With Complete Tunnel

    User Manual ENGLISH WHG-Series Wireless WLAN Controller controller in order for the AP to get an IP address that is in the same subnet of that of the 4ipnet WLAN controller it is trying to connect. Broadcast Discovery: The AP sends broadcast requests to all the IP addresses in a subnet. 4ipnet WLAN controllers, and other gateways mostly, do not allow broadcasts to go over subnets.
  • Page 95 4. On AP: to check the AP WMI showing Data Channel is “Active” with the VAP tunnel status in “Green” light on the System Overview page 5. On AP: to reconfirm the specific VAP Configuration is under Complete Tunnel Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 96: Capwap With Split Tunnel

    4. On AP: to check the AP WMI showing Data Channel is “Active” with the VAP tunnel status in “Green” light on the System Overview page Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 97: Template

    Short Preamble: The short preamble with a 56-bit synchronization field can improve WLAN transmission efficiency. Select Enable to use Short Preamble or Disable to use Long Preamble with a 128-bit Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 98 Contention Window Minimum, CW Max: Contention Window Maximum, AIFS: Arbitration Inter Frame Spacing, TXOP Limit: Transmission Opportunity Limit. VAP Configuration VAP: Enable or Disable this VAP. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 99 This option works with WMM-capable clients only. <To receive the benefits of WMM QoS> Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 100: Wds Management

    AP List page. The AP firmware listed under this page can be downloaded or deleted from WLAN controller memory if desired. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 101: Rogue Ap Detection

    Number of Packets as the measure of an AP’s system load. Administrator can specify the system threshold which will initiate the load balancing mechanism. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 102 Device List: The grouping of AP devices can be done on the Device List page. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 103: How To Configure Switch Management

    9.1 Switch List A 4ipnet SW1024 switch connected either to a WAN port or LAN port of the WLAN controller can be added manually or by discovery. In the Switch List, the Switch's name will be shown as a hyperlink in the Switch List.

  • Page 104: Backup Configuration

    The list gives an overview of the backed up configurations. Administrators may download the configuration file for restoration, or check the checkboxes to delete the selected configuration files. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 105: How To Realize Wi-Fi Monitor

    .jpg format is required, with partitions drawn in .xml format. Floor Plan Type: Determine if floor plan will be used for Local Area Managed APs or Wide Area Managed APs. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 106 Coverage: Different colors depict the different coverage area of each AP. Distribution: Use different colors to illustrate the strength of signals. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 107 The Signal Strength and Coverage of the managed APs would depend on factors such as the AP model, transmit power, AP Height, and etc. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 108: Simulation Ap

    Click “Simulate 2.4G” or “Simulate 5G” to see if the deployed APs are adequate for your requirement. When simulation is done successfully, the recommended channel allocation will be shown next to the Simulation AP. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 109 User Manual ENGLISH WHG-Series Wireless WLAN Controller Configurations can then be saved conveniently to a template to be used for AP Management. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 110: Ap Monitoring On Floor Plan

    AP statistic information, such as AP density and AP average traffic, and AP average traffic are also supported when APs are managed using Wide area AP Management. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 111: How To Enable Vpn Feature

    Note: the Remote VPN clients can be applied by different user policies at the page of Main › Users › Groups › Configuration Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 112: Site-To-Site Vpn

    Note: You can create more than one VPN tunnel, but the IP segment mapping cannot be overlap, because one IP segment cannot have two routing rules. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 113: High Availability

    All HA configuration are manually applied. This includes AC role as an Active or Standby as well as the HA pair restoration after an AC goes down. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 114 Shared Key: Enter a secret string on both of the controller. The Shared Key must be the same for a successful HA connection. Switch Support: when HA N+1, N=2 or 3, the 4ipnet SW1024 is required since the related LAN port and VLAN IDs can automatically be modified when HA is happening. If administrators would like to set port1, port 4 and port 2 on SW1024 for #1 Active AC with VLAN 101, 41, 42, respectively, please enter 1,4,2 on #1 Active Related Port(s) and type 101, 41, 42 on #1 Active LAN Port VLAN ID(s).

  • Page 115: Port Location Mapping

    Location ID: A numeric identification number (or typically the room number). Location ID Prefix: The prefix (of room number). Location ID Postfix: The postfix (of room number). Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 116 IP pool for service for each VAP of a Managed AP. This can be configured while establishing tunnels between the AP and Controller. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 117 Location Mapping), remote sites may also benefit from the PMS system or other centrally managed hotspot operations which require location attributes or information. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 118: Pms Integration

    API protocol between external web server and WLAN controller. Sample External Login Page: there is a downloadable example which administrator could easily realize how to integrate and modify Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 119 - Before testing, it is noted that the administrator’s password of WLAN controller which is used in the function send_req - For the corresponding Service Zone, please customize the login page with Use External Page Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 120: Utilities For Wlan Controller

    Status: When the administrator is executing any Network Utilities features, the status of the operation is displayed here. Result: The operation result is displayed here. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 121: Sniff

    IP address of the AP, forget the admin’s password, or configure the IP address of the AP. All they need to do is connect 4ipnet AP within the same Layer 2 from the ports of the WLAN controller, select the interface, WAN or LAN, and press the “Start”...

  • Page 122: System Certificate

    APs. To upload a Trusted CA, click browse to select the Certificate and click "Upload Files". To view details of the certificate, click the corresponding "View" button. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 123: Administrator Accounts

    - Permission-Read Only: the specific page can only be viewed only, instead of modified the configuration in each item or table Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 124: Backup/ Restore Configuration

    Main › Status › Reporting › FTP Settings. The backup file will be transmitted to FTP Server on the specific time of each day (Day), day of each week (Week), date of each month (Month) depending on the configuration. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 125: Restart

    Configuration Change Log. Note: The connection of all online users of the system will be disconnected when system is in the process Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 126: System Upgrades

    4ipnet Support Team regarding version compatibility. Note: The system must be rebooted before resetting to factory defaults after firmware upgrade. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 127: Advanced Settings For Network Environment

    The list of Tunnel Brokers is growing and administrators can choose to define a specific Tunnel Broker by enabling "Assign Broker Address" and entering the Broker Address. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 128: Nat

    In the Enable column, check the desired server to enable. These settings will become effective immediately after clicking the Apply button. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 129 Please enter the “IP Address” and “Port” of Destination, and the “IP Address” and “Port” of Translated to Destination. Select “TCP” or Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 130: Monitor Ip List

    For example, guests without the network access right in hotels can still visit these sites free of charge. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 131: Vpn

    WLAN controller. The system provides  (Using Internet Proxy Server) Built-in Proxy Server  (Using External Proxy Server) External Proxy Server Using Internet Proxy Server Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 132 Enable Proxy Server Settings in Internet Options on Client Stations. Step 8. By enabling the built-in Proxy Server, all traffic is forwarded to the local Proxy Server on the controller. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 133: Local Dns Records

    It is a routing protocol designed to move information efficiently within a computer network, a group of physically connected computers or similar devices. You can configure each interface Circuit Type to Level 1 Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 134 RIP Timer – Timeout Timer: Routes are only kept in the routing table for a limited amount of time. A Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 135: Ddns

    With Cross Gateway roaming enabled, the end user would experience without network interruption. The Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 136 Master mode: to input the Slave Nodes Settings (up to 15 slaves), Remote IP Address, Secret Key and Remark. Slave mode: to input Master Node Setting, including Remote IP Address, Secret Key and Remark. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 137: Status For Logs And Reports

    This is used for maintenance or troubleshooting purposes. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 138: System Related Status

    WAN optional settings, User log profile, system time and session control settings. For detailed status, please proceed to corresponding configuration pages. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 139: Network Interface

    Note: If statistics are required to be saved for long term keeping, See Report & Notification section for instructions to send and save network traffic on external servers. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 140: Process Monitor

    IPv6 are available for Global policy, and the rules configured there will also be shown in the IPv6 routing table page along with System interface settings for IPv6 traffic. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 141: Dhcp Server

    DHCP Lease Log: The DHCP Lease Log is displayed here and a search can be performed by IP Address, MAC Address or Service Zone. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 142: Client Related Status

    Users displayed on this page are the ones that are authenticated by this Controller under its managed network either LAN or remotely tunneled site. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 143: Associated Non Login Users

    The users listed here will have their traffic tunneled back to their home controller and forwarded into the internet. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 144: On-Demand Roaming Out User

    Each result displays the IP and Port values of the Source and Destination. You may define the filter conditions and display only the results you desire. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 145: Logs And Reports

    .csv extension to sort the downloaded data into cells. The "Clear" button deletes current User Events displayed on the User Interface. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 146: Reports And Notification

    WLAN controller can automatically send various kinds of user and/or system related reports by pre-configuration of E-mail addresses, SYSLOG Servers, or FTP Server. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 147: Smtp Settings

    Allows the configuration of two external SYSLOG servers where selected users logs as well as system logs will be sent to. SYSLOG Destinations: Up to two external SYSLOG servers may be configured. Please enter the IP Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 148: Ftp Settings

    WLAN Controller provides an overview of all the available users and system logs for selection. Selected logs can be sent to the chosen location (E-mail, SYSLOG, FTP) on customizable time intervals. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 149 User Manual ENGLISH WHG-Series Wireless WLAN Controller Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

  • Page 150: Appendix A. Hardware Overview

    Two Gigabit LAN ports for servicing LAN traffic (10/100/1000 Base-T RJ-45). LED Indicators There are two LED indicators, Power and Status, to indicate different status of the system. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 151 ADSL Router from Internet Service Provider. LAN1 ~ LAN4 Four Gigabit LAN ports for servicing LAN traffic (10/100/1000 Base-T RJ-45). Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 152 ADSL Router from Internet Service Provider. LAN1 ~ LAN4 Four Gigabit LAN ports for servicing LAN traffic (10/100/1000 Base-T RJ-45). Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 153 Allows network administrator to check important system settings such as network interface, SZ configurations, etc. The navigations buttons from left to right respectively are “Esc”, “Up”, “Down”, and “Enter”. Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.
  • Page 154 Client machines connect to WHG Controller via these LAN ports (SFP). (SFP) LED Indicators There are eight LED indicators to indicate the traffic status of the SFP ports. P/N: V34300171213 Copyright © 2017, 4ipnet, Inc. All rights reserved. All other trademarks mentioned are the property of their respective owners.

This manual is also suitable for:

Whg802Whg321

Table of Contents