Cradlepoint MBR1400 Product Manual

Mbr1400 series mission-critical broadband router

Hide thumbs Also See for MBR1400:

Product manual (272 pages)

User manual (84 pages)

Setup manual (29 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

page of 211

/ 211
Contents
Table of Contents
Bookmarks

Table of Contents

Quick Links

Download this manual See also: User Manual, Product Manual

Table of Contents

Summary of Contents for Cradlepoint MBR1400

Page 2: Manual Revisions
All other company or product names mentioned herein are trademarks or registered trademarks of their respective companies. Copyright © 2013 by CradlePoint, Inc. All rights reserved. This publication may not be reproduced, in whole or in part, without prior expressed written consent by CradlePoint, Inc.
Page 3: Table Of Contents
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Table of Contents 1 INTRODUCTION .............. 3 5.4 GRE .............. 4 3 UNNELS 5.5 H .............. 4 4 ...
Page 4 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.6 VPN .............. 1 47 UNNELS 7.7 W W AN ........... 1 59 I A S RIDGE 7.8 ...
Page 5: Introduction
MBR1400E-SP – 3G EVDO for Sprint 1.2 System Requirements • At least one Internet source: a CradlePoint 3G/4G business-grade modem, an Ethernet-based modem, a broadband data modem with active subscription (USB, ExpressCard), or WiFi as WAN. • Windows 2000/XP/7, Mac OS X, or Linux computer (with WiFi adapter—802.11n recommended—for WiFi functionality).
Page 6: Mbr1400 Overview
Internet. In addition to connection options for traditional wired networking solutions like cable, DSL, satellite, or T1, the most powerful feature of the MBR1400 is its ability to use CradlePoint business-grade modems or USB or ExpressCard data modems to create instant networks anywhere you receive a broadband signal.
Page 7 1.3.2 Captive Portal The Captive Portal solution provided by CradlePoint routers enables businesses to provide their customers with a public WiFi hotspot with access controls. The controls can be as simple as requiring acceptance of a terms of service agreement, while advanced features allow administrators to control and monitor usage, require login, direct users to specific web pages, provide revenue through services fees or paid advertising, and more.
Page 8: Radle Ointa Rcm Br1400 Eries
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 1.4 CradlePoint ARC MBR1400 Series Includes a CradlePoint 3G/4G business-grade modem with the MBR1400 and creates an effortless instant network from high-speed wireless broadband. CradlePoint integrated business-grade modems are specifically designed to provide the highest level of performance, reliability, and security for 24x7 business-critical applications.
Page 9 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT MBR1400LE-VZ 4G LTE/EVDO for Verizon Technology: LTE 3GPP Rel. 8 , EVDO RevA, A/O; CDMA 1x Downlink Rates: LTE 100 Mbps, EVDO 3.1 Mbps (theoretical) Uplink Rates: LTE 50 Mbps, EVDO 1.8 Mbps (theoretical)
Page 10 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT MBR1400LP-AT 4G LTE/HSPA+ for AT&T Technology: LTE/HSPA+ modem backwards compatible to GSM/GPRS/EDGE Downlink Rates: LTE 100 Mbps, HSPA+ 21.1 Mbps (theoretical) Uplink Rates: LTE 50 Mbps, HSPA+ 5.76 Mbps (theoretical) Frequency Band: LTE Band 17 (700MHz), Band 4 (AWS)
Page 11 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT MBR1400W 4G WiMAX for Sprint or CLEAR Technology: WiMAX 802.16e Wave 2 Downlink Rates: 10Mbps peak, 6Mbps average Uplink Rates: 5 Mbps peak, 1.2 Mbps average Frequency Band: 2,500 MHz band Power: 23.5 +/- 0.5 dBm (RSU/CPE)
Page 12 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT MBR1400E-VZ 3G EVDO for Verizon Technology: EVDO RevA, A/O; CDMA 1x Downlink Rates: 3.1 Mbps (theoretical) Uplink Rates: 1.8 Mbps (theoretical) Frequency Band: Cellular/PCS (800MHz/1,900 MHz) Power: 24 +/- 0.5dBm (typical conducted)
Page 13 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT MBR1400E-SP 3G EVDO for Sprint Technology: EVDO RevA, A/O; CDMA 1x Downlink Rates: 3.1 Mbps (theoretical) Uplink Rates: 1.8 Mbps (theoretical) Frequency Band: Cellular/PCS (800MHz/1,900 MHz) Power: 24 +/- 0.5dBm (typical conducted)
Page 14: Hardware Overview
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 2 HARDWARE OVERVIEW © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.COM/ FOR MORE HELP AND RESOURCES PAGE 12...
Page 15: Switches
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 2.1 Ports, Buttons, and Switches © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.COM/ FOR MORE HELP AND RESOURCES PAGE 13...
Page 16 • I = On • O = Off 3G/4G Modem Signal Strength Button: When pressed the bar LEDs indicate signal strength from the CradlePoint business-grade modem or USB or ExpressCard modem. The signal strength is shown for 10 seconds if the modem does not support concurrent data connection and signal strength measurement.
Page 17: Leds
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 2.2 LEDs LAN and WAN LEDs: The default settings are shown. LAN ports can be reconfigured to function as WAN ports and vice versa; the LEDs will function accordingly. © 2013 CRADLEPOINT, INC.
Page 18: Quick Start
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 3 QUICK START For full 3G/4G functionality, attach one (or more) of the 3.1 Basic Setup following: • Your router requires an Internet source. Attach a • USB/ExpressCard modem(s) CradlePoint business-grade modem, insert one or •...
Page 19: Device
MAC address, which can be found on the product box or product label). NOTE: If more than one MBR1400 wireless router is visible, find the correct unit by checking for its SSID (service set identifier; the unique name of the local network).
Page 20 For many users, the MBR1400 can be used immediately without any special configuration changes. If you would like to change your network name or password or configure any of the advanced features of the MBR1400, you will need to log into the administration pages: •...
Page 21 If you used the First Time Setup Wizard, you might have changed the “WiFi Network Name” or the “Security Mode” password. If so, you will need to reconnect to the MBR1400 network. • Find the network. Look for your new personalized network name (or the default SSID of the form “MBR1400-xxx”).
Page 22: Common Problems
(Status → Dashboard). If you have a weak signal in your location, contact your service provider. If you are still not online after activating the modem, contact CradlePoint Technical Support for further assistance. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.COM/...
Page 23 If your USB modem has not been updated recently, it is recommended that you do so if it is having trouble connecting to the MBR1400. Insert your USB data modem into your PC and access the Internet using the software provided by your cellular carrier.
Page 24 Go to System Settings → System Software and click on “Manual Firmware Upload”. If you are still unable to access the Internet after following these directions, contact CradlePoint Technical Support • for further assistance.
Page 25 If the data modem LEDs are not illuminated, your modem is not connected and online. You may need to update firmware. Refer to the previous section, “Your USB or ExpressCard modem does not work with the router.” If you are still not online after updating, contact CradlePoint Technical Support for further assistance. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.COM/...
Page 26: Web Interface -- Essentials
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 4 WEB INTERFACE -- ESSENTIALS The MBR1400 has a Web interface for configuration and administration of all features. The interface is organized with 5 tabs at the top of the screen: • Getting Started •...
Page 27: Administrator Login
The Administrator Login page will appear. Log in using your administrator password. Initially, this password can be found on the bottom of the MBR1400 unit as the Default Password. This password is also the last eight digits of the unit’s MAC address.
Page 28 If you have forgotten your personalized password, you can reset the MBR1400 to factory defaults. When you reset the router, the administrator password will revert back to the Default Password. Press and hold the reset button on the router unit until the lights flash (approximately 10-15 seconds).
Page 29: Etup Wizard
The First Time Setup Wizard will help you customize the name of your wireless network, change passwords to something you choose, and establish an optimal WiFi security mode. The MBR1400 comes out of the box with a unique password at WPA1/WPA2 WiFi security level.
Page 30 The router cannot use 802.11n modes if WEP is enabled; WiFi performance and range will be limited. • NONE (OPEN): Select this option if you do not want to activate any security features. CradlePoint recommends BEST (WPA2) WiFi security. Try this option first and switch only if you have a device that is incompatible with WPA2.
Page 31 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Choose a personalized WPA PASSWORD or WEP KEY. This password will be used to connect devices to the router’s WiFi broadcast once the security settings have been saved. • WPA Password: The WPA Password must be between 8 and 64 characters long. A combination of upper and lower case letters along with numbers and special characters is recommended to prevent hackers from gaining access to your network.
Page 32 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 8) Configuring Failure Check: It is possible for a WAN interface to go down without the router recognizing the failure. (For example: the carrier for a cellular modem goes dormant, or your...
Page 33 Please record these settings for future access. You may need this information to configure other wireless devices. NOTE: If you are currently using the MBR1400 WiFi network, reconnect your devices to the network using the new wireless network name and security password.
Page 34: Uick Links
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 4.3 Quick Links The CradlePoint logo in the upper left-hand corner of all the administration pages is a link to the Dashboard (Status → Dashboard), which displays fundamental information about the router.
Page 35: Configuration
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 4.4 Configuration Pages The following table shows the navigation layout of the administration pages. Click on the tabs along the top bar to reveal the following dropdown menus. Getting Started Status...
Page 36 LAN (Local Area Network) Examples: • If you want to change the content filtering settings for the network created by the MBR1400, go to the Network Settings tab. • If you have multiple Internet sources (such as a CradlePoint business-grade modem and an Ethernet connection) for which you would like to set priority levels, go to the Internet tab.
Page 37: Ip Passthrough Setup
You can quickly enable IP passthrough with the IP Passthrough Setup Wizard available under Getting Started → IP Passthrough Setup. IP passthrough takes a 3G/4G WAN data source (USB, ExpressCard, or CradlePoint business- grade modem) and passes the IP address through to Ethernet LAN.
Page 38: Status
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5 STATUS The Status tab displays information about many different aspects of the router. It provides access to 11 submenu options: • Client List • Dashboard • GPS • GRE Tunnels •...
Page 39: Lient List
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.1 Client List The Client List displays the specifications of each device connected to your router, including Wireless and Wired clients. Wireless Clients. For each device using a wireless connection to your MBR1400, the following information is displayed: Hostname, IP, MAC, Connection, and Time Online.
Page 40 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT -26 dBm: A relative measure of wireless signal quality (decibels relative to one milliwatt). This expresses • theoretical best quality. The value is given as a negative exponent: -20 is a very good value while -80 is relatively poor.
Page 41: Dashboard
After the initial setup of the router, every time you log in you will automatically be directed to this Dashboard. Also, you can click on the CradlePoint logo in the upper left-hand corner to return to the Dashboard from any page.
Page 42 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Router Information: “Detailed Info” links to System Settings → Administration. • Product: MBR1400 or MBR1400v2 • Firmware: Gives the number of the current firmware version • Build Date: Year-month-day-hours-minutes-seconds for the most recent firmware upgrade •...
Page 43 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Local Networks: “Detailed Info” links to Network Settings → WiFi / Local Networks. • Clients: The number of current clients For each network, the following information is displayed: • Network Name: IP Address/Netmask...
Page 44: Gps
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.3 GPS If GPS support is enabled and a modem capable of providing GPS coordinates is connected, this page shows a graphical view of your router's location. See the GPS section in System Settings →...
Page 45: Gre Tunnels
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.4 GRE Tunnels View the status of configured GRE Tunnels. To set up or edit a GRE tunnel, go to Internet → GRE Tunnels. Included information: • Name • Status • Transmit (packets/bytes) •...
Page 46: Hotspot Clients
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.5 Hotspot Clients View the status of the clients that have logged in through the Hotspot/Captive Portal. View: • Hostname • IP address • MAC address • Data Usage (both IN and OUT) •...
Page 47: Internet Connections
The Internet Connections submenu option provides a list of attached WAN devices used as the Internet source for the MBR1400. Select one of these devices to see detailed information about that particular device. For each type of device, different information will be included in the Device Information section. Possible devices...
Page 48 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.6.1 Ethernet General Information • Unique Identifier wan • Model • Type ethernet • Port IP Information • DNS Servers • IP Address • Gateway Statistics • Incoming Bytes • Outgoing Bytes •...
Page 49 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.6.2 LTE Modem (PANTECH UML290) Diagnostics • Home Address • MN-HA SPI • Modem Firmware Version • Battery Status • MN-HA SS • Network Address Identifier (NAI) • Signal Strength(dBm) • Rev Tun •...
Page 50 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT General Information • Product PANTECH UML290 • Protocol IP DHCP • Unique Identifier • ESN/IMEI • Model UML290VW • Type modem • Port • Manufacturer Pantech, Incorporated IP Information • Netmask •...
Page 51 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.6.3 HSPA+ Modem (Nokia Datacard) Diagnostics • Manufacturer Nokia • Product Nokia Datacard • Model Nokia Internet Stick CS-18 • ESN/IMEI • Modem Firmware Version • Mobile Directory Number • Carrier ID AT&T •...
Page 52 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT IP Information • DNS Servers • IP Address • Gateway Statistics • Incoming Bytes • Outgoing Bytes • Connection Uptime (secs) © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.COM/ FOR MORE HELP AND RESOURCES...
Page 53 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.6.4 WiMAX Modem (U300 – 4G) Diagnostics For a WiMAX modem, the CINR and Signal Strength values are important as they show how strong the signal is and that has significant effects on how much data the router can download or send.
Page 54 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT • Type WiMAX • Port • Manufacturer Franklin Wireless Corporation Statistics • Outgoing Bits/Second • Incoming Bits/Second • Incoming Bytes • Outgoing Bytes © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.COM/ FOR MORE HELP AND RESOURCES...
Page 55 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.6.5 GSM Modem (Nokia Datacard) Diagnostics • Signal Error Rate • Modem Firmware Version • Battery Status • Battery Level • Carrier Status • Signal Strength(dBm) • PIN Status • Connection State (connected, idle, etc.)
Page 56 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT • Incoming Bits/Second • Incoming Bytes • Outgoing Bytes © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.COM/ FOR MORE HELP AND RESOURCES PAGE 54...
Page 57 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.6.6 EVDO Modem: (MC760 Comcast) Diagnostics • Modem Firmware Version • PRL Version • Service Display EVDO • Carrier Status • Signal Strength(dBm) • Connection Type CDMA • Connection State (connected, idle, etc.) General Information •...
Page 58 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.6.7 WiFi as WAN Diagnostics • Connection State (connected, idle, etc.) General Information • Product Wireless As WAN • Unique Identifier • Type wwan IP Information • Netmask • IP Address •...
Page 59: Routing
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.7 Routing System Routes displays routes associated with networks connected to the router as well as routes learned from routing protocols (such as RIP or BGP). Static Routes displays user-specified routes configured in Network Settings → Routing, ©...
Page 60: Statistics
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.8 Statistics The Statistics submenu option displays basic traffic statistics. Wireless Statistics: View the signal strength and other wireless modem information. The wireless device’s signal strength will only be displayed as long as it supports “Live Diagnostics.” Sample rate and size can be adjusted from the dropdown boxes.
Page 61 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Data Usage: A measure of amount of information that is currently being sent or received through the network. Sample rate and size can be adjusted from the dropdown boxes. © 2013 CRADLEPOINT, INC.
Page 62 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Failover/Failback/Load Balance: An easy way to view current connective states of the devices plugged into the router as compared to the past. Sample rate and size can be adjusted from the dropdown boxes.
Page 63: System Logs
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.9 System Logs The router automatically logs (records) events of possible interest in its internal memory. If there is not enough internal memory for all events, logs of older events are deleted, but logs of the latest events are retained. The log options allow you to filter the router logs so you can easily find relevant messages.
Page 64: Vpn Tunnels
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.10 VPN Tunnels View the status of configured VPN tunnels. To set up or edit a VPN tunnel, go to Internet → VPN Tunnels. Included information: • Name • Connections • Status •...
Page 65 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 5.11 WiPipe QoS View the breakdown of packets and bytes sent and received associated with each WiPipe QoS rule. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.COM/ FOR MORE HELP AND RESOURCES...
Page 66: Network Settings
6 NETWORK SETTINGS The Network Settings tab provides access to 9 submenu options for administering the following functions/tasks. These functions are all related to controlling the LAN (Local Area Networks), the networks you set up with the MBR1400. • Content Filtering •...
Page 67: Content Filtering
CRADLEPOINT 6.1 Content Filtering You have two main options for filtering content in a network created by your MBR1400. 1) WebFilter Rules: Create a list of websites that will be either disallowed or allowed. Customize the filter settings for each network and/or each MAC address. (These rules will not block HTTPS websites.) 2) OpenDNS Content Filtering: Allows several options for filtering rules using OpenDNS, a third party service.
Page 68 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Click Add or Edit to open the Filter Rule Editor. • Assigned Network: Select either “All Networks” or one of your LAN networks from the dropdown list. • Domain/URL/IP: Enter the Domain Name or URL (address) of the website you wish to control access for, e.g.
Page 69 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.1.2 Default Filter Settings Use Default Network Filter Settings together with Network WebFilter Rules to control website access. All of your networks are set to allow website access by default. Select a network and click Edit to change the default filter settings.
Page 70 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.1.3 MAC Address WebFilter Rules MAC Address WebFilter Rules allow you to control access from a specific MAC address to external domains or websites. The settings for the MAC Address WebFilter Rules section match those for the Network WebFilter Rules, except that you must assign a MAC address instead of a network to each rule.
Page 71 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.1.4 MAC Address WebFilter Defaults Use MAC Address WebFilter Defaults together with MAC Address WebFilter Rules to control website access for specific MAC addresses. By default, each MAC address is allowed website access. Click Add/Edit to change this setting for a MAC address.
Page 72 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.1.5 OpenDNS OpenDNS is a service that protects you online by filtering websites. OpenDNS protects you from phishing websites and URL typos. Enter your OpenDNS account information in order to use your OpenDNS Content Filtering settings.
Page 73: Dhcp Server
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.2 DHCP Server DHCP stands for Dynamic Host Configuration Protocol. The built-in DHCP server automatically assigns IP addresses to the computers and other devices on each local area network (LAN). In this section you can view a list of assigned IP addresses and reserve IP addresses for particular devices.
Page 74: Dns
DNS, or Domain Name System, is a naming system that translates between domain names (www.cradlepoint.com, for example) and Internet IP addresses (206.207.82.197). A DNS server acts as an Internet phone book, translating between names that make sense to people and the more complex numerical identifiers. The DNS page for the MBR1400 has these distinct functions: •...
Page 75 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Force All DNS Requests To Router: Enabling this will redirect all DNS requests from LAN clients to the router's DNS server. This will allow the router even more control over IP addresses even when clients have their own DNS servers statically set.
Page 76 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT supplies only a key, enter that key for both the User name and Password fields. Password: Enter the password or key provided by the dynamic DNS service provider. 6.3.3 Advanced Dynamic DNS Settings Update period (hours).
Page 77: Firewall
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.4 Firewall The router automatically provides a firewall. Unless you configure the router to the contrary, the router does not respond to unsolicited incoming requests on any port, thereby making your LAN invisible to cyber attackers.
Page 78 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT • Local Port(s): The port number(s) that corresponds to the service (Web server, FTP, etc) on a local computer or device. For example, you might input “80” in the Local Port(s) field to open a port for a Web server on a computer within your network.
Page 79 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.4.2 IP Filter Rules (Advanced) An "Incoming" IP filter rule restricts remote access to computers on your local network. "Outgoing" filter rules prevent computers on your local network from initiating communication to the address range specified in the rule.
Page 80 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT that is NOT in the specified port range. • Port(s): Use for a single port or a range of ports. Fill in the left side for a single port. Use Network IP, Netmask, and Port(s) to specify the ports and addresses for which the rule applies. You can specify a range of ports or a single port.
Page 81 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.4.3 DMZ: DeMilitarized Zone (Advanced) A DMZ host is effectively not firewalled in the sense that any computer on the Internet may attempt to remotely access network services at the DMZ IP address. Typical uses involve running a public Web server or sharing files.
Page 82 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT • FTP: To allow normal mode when using File Transfer Protocol. This is not needed for passive mode. This is enabled by default. • IRC: For Direct Client to Client (DCC) transfer when using Internet Relay Chat. You may wish to forward TCP port 113 for incoming identd (RFC 1413) requests.
Page 83 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Add/Edit Allowed Remote Access Addresses IP Address: The IP address that will be allowed to access administrative services through the WAN. Netmask (Optional): The netmask allows you to specify what IP address sets will be allowed access. If this field is left empty a netmask of 255.255.255.255 will be used,...
Page 84: Mac
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.5 MAC Filter / Logging A MAC (Media Access Control) address is a unique identifier for a computer or other device. This page allows you to manage clients by MAC address. You can filter clients by MAC addresses and/or keep a log of devices connected to your router.
Page 85 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.5.2 MAC Logging Configuration Enable MAC Logging: Enabling MAC Logging will cause the router to log MAC addresses that are connected to the router. MAC addresses that you do not want to have logged (addresses that you expect to be connected) should be added to the “Ignored MAC Addresses”...
Page 86: Routing
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.6 Routing Add a new static route to the IP routing table or edit/remove an existing route. Static routes are unnecessary for most users. They are typically only used in networks with more than one layer, such as when there is a network within a network so that packet destinations are hidden behind an additional router.
Page 87: Routing Protocols
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.7 Routing Protocols A routing protocol is a protocol that specifies how routers communicate with each other, disseminating information that enables them to select routes between any two nodes on a computer network. Routing algorithms choose the route. Each router has a prior knowledge only of networks attached to it directly.
Page 88 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT entire BGP domain to the BGP speaker - bad things will happen if multiple BGP speakers are configured with the same router-ID. • Enabled: Click to enable/disable the policy. (Default: enabled.) Networks Associated with ASN: Use the IP address and netmask to assign networks to this ASN.
Page 89 • Enabled: Click to enable/disable the policy. (Default: enabled.) Network Areas: Areas are identified by an ID number. As of 4.1.1, CradlePoint only supports area 0. Use the IP address and netmask fields to associate a network with this policy. Also, choose whether to select Passive (active by default).
Page 90 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Redistribute Routes: Redistribute routes of the specified protocol or kind into BGP, with the metric type and metric set (if specified), filtering the routes using the given route map (if specified). Redistributed routes may also be filtered with distribute lists.
Page 91 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT version for REQUESTS / triggered updates). • Password: RIPv2 allows packets to be authenticated via either an insecure plain text password, included with the packet, or a more secure MD5 based HMAC (keyed-Hashing for Message AuthentiCation). RIPv1 cannot be authenticated at all, so when authentication is configured RIP will discard routing updates received via RIPv1 packets.
Page 92 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.7.4 Route Maps and Filters Access Lists This option provides for basic filtering based on IP addresses and netmasks. Click Add to create a filtering rule. Name: Choose a unique name.
Page 93 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Match and Set: Both of these have the following configuration options: • IP address: Input an IP address with this policy. • Metric: Numerical priority of the route. • Community: The BGP community list is a user- defined BGP communities attribute list.
Page 94 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.8 WiFi / Local Networks This section is used to configure the settings for networks created by your router (LAN). Note that changes made in this section may also need to be duplicated on wireless devices that you want to connect to your wireless network.
Page 95 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.8.1 Local IP Networks Local IP Networks displays the following information for each network: • Network Name and IP address/Netmask (along the top bar) • Enabled: Yes/No • DHCP Server: Enabled/Disabled •...
Page 96 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.8.2 Local Network Editor The Local Network Editor contains the following tabs: IP Settings, Interfaces, Access Control, DHCP Server and Schedule. IP Settings: Enabled: Push to manually disable a network. Also, some settings could cause a network to be automatically disabled: click here to re-enable the network.
Page 97: Ocal Networks
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Routing Mode: (Default: NAT.) Each network can use a unique routing mode to connect to the Internet and other local networks. NAT is desirable for most configurations. Select from the following options in the dropdown list: •...
Page 98 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Access Control: Tune the access control settings of this network to match the intended use. Simply select or deselect any of the following: • LAN Isolation: When checked, this network will NOT be allowed to communicate with other local networks.
Page 99 (default: 72 to 200, as in 192.168.0.72 to 192.168.0.200). Example: The MBR1400 uses an IP address of 192.168.0.1 for its primary network by default. A computer designated as a Web server has a static IP address of 192.168.0.3. Another computer is designated as an FTP server with a static IP address of 192.168.0.4.
Page 100 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT DHCP Options: Input a custom DHCP option by first clicking “Add”. There are close to 200 possible DHCP options available. One of the more common uses is to assign a VoIP phone server using option 66 (Server name).
Page 101 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Schedule: Set up a schedule for this network interface. This allows an interface to be enabled or disabled during specific hours of a day. For example, use this to limit a Hotspot network to business hours.
Page 102 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT VRRP: (requires hardware version 2.0) VRRP (Virtual Router Redundancy Protocol) allows you to associate multiple routers with one LAN so that if the primary physical router fails, the LAN will keep the same settings via the virtual router.
Page 103 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT STP: (requires hardware version 2.0) Spanning Tree Protocol (STP) allows a network design to include redundant paths while preventing broadcast radiation from bridge loops. Enable STP: Enable Spanning Tree Protocol loop detection.
Page 104 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.8.3 Local Network Interfaces Each LAN type—WiFi, Ethernet, and VLAN—has a separate section with configuration options. Unless the default configuration is sufficient, YOU MUST CONFIGURE EACH INTERFACE SEPARATELY in order to create the desired interface options for a network.
Page 105 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Wireless Network Editor WiFi Name (SSID): When users browse for available wireless networks, this is the name that they will see. This name is referred to as the SSID (service set identifier).
Page 106 NOTE: If you don’t know whether you should choose Personal or Enterprise, assume Personal since you need to know RADIUS authentication for Enterprise. In order to protect your network from hackers and unauthorized users, CradlePoint highly recommends WPA2/AES for security if your attached devices can support it. WEP and WPA/TKIP are obsolete and have been replaced by WPA/AES.
Page 107 The WAN connection is used as a possible source of Internet for the MBR1400. • Local Network (LAN) is for connecting a computer or similar device directly to the router with an Ethernet cable.
Page 108 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Ethernet Port Group Editor A Port Group represents a logical grouping of Ethernet ports. Any computers physically connected to ports in a group will be allowed to freely communicate with each other.
Page 109 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT VLAN Interfaces A virtual local area network, or VLAN, functions as any other physical LAN, but it enables computers and other devices to be grouped together even if they are not physically attached to the same network switch.
Page 110 LANs under the WiFi Settings heading. WiFi band: Select the range of frequencies the router will use. The MBR1400 can operate in either the 2.4 GHz or the 5.0 GHz ranges. (Default: 2.4 GHz. The included WiFi antennas are 2.4 GHz.
Page 111 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Channel: (Shows if User Selection is selected.) The WiFi channel corresponds to a frequency the router uses to communicate with other devices. For 2.4 GHz, the range is 1 to 11, and 1, 6, and 11 do not overlap each other. If a WiMAX modem is attached, a higher number channel will increase the chance the router's WiFi and modem's WiMAX radios will conflict with each other, which may result in lower throughput.
Page 112 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT TX Power: Normally the wireless transmitter operates at 100% power. In some circumstances, however, there might be a need to isolate specific frequencies to a smaller area. By reducing the power of the radio, you can prevent transmissions from reaching beyond your corporate/home office or designated wireless area.
Page 113 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Wireless Mode: Select the WiFi clients the router will be compatible with. Greater compatibility is a tradeoff with better performance. For greatest compatibility with all WiFi devices, select "802.11 a/b/g/n". For best performance, connect with only other 802.11n-compatible devices and select "802.11 n."...
Page 114 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.9 WiPipe QoS When WiPipe QoS (Quality of Service, also known as “Traffic Shaping”) is enabled, the router will control the flow of Internet traffic according to the user-defined rules. In other words, Traffic Shaping improves performance by allowing the user to prioritize applications.
Page 115 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.9.1 Queues Queues and rules work in conjunction to prioritize bandwidth for the most critical operations. Multiple rules can be associated with one queue. Use rules to associate your more critical operations with queues that have higher bandwidth settings.
Page 116 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Upload Priority: The priority value has two different effects on traffic. Higher priority traffic is handled before lower priority traffic, which can lead to shorter response times. Also, when spare bandwidth is available it is offered to higher priority queues first.
Page 117 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Download Priority: The priority value has two different effects on traffic. Higher priority traffic is handled before lower priority traffic, which can lead to shorter response times. Also, when spare bandwidth is available it is offered to higher priority queues first.
Page 118 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 6.9.2 Rules A traffic shaping rule identifies a specific message flow and assigns that flow to one of the queues created above. Click Add to create a new Traffic Shaping rule.
Page 119 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Traffic Shaping / QoS Rule Editor The first page of the Traffic Shaping / QoS Rule Editor allows you enable/disable the rule, name the rule, specify a protocol for the rule, and select a queue to associate the rule with.
Page 120 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Use ports and/or IP addresses to define the type(s) of traffic attached to this rule. Leaving any field blank will match all values; all fields are optional. Source Port(s) and/or Destination Port(s): Enter a port number between 1 and 65535.
Page 121: Internet
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7 INTERNET The Internet tab provides access to 8 submenu items for managing a variety of Internet connection options. • Connection Manager • Client Data Usage • Data Usage • GRE Tunnels •...
Page 122: Connection Manager
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.1 Connection Manager The router can establish an uplink via the Ethernet WAN port, WiFi as WAN, or modems plugged into a modem port. If the primary WAN connection fails the router will automatically attempt to bring up a new link on another device. This feature is called failover.
Page 123 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.1.2 Device Configuration Clicking on a device reveals the following information: • State (Connected, Available, etc.) • Port • UID (Unique identifier. This could be a name or number/letter combination.) • IP Address •...
Page 124 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.1.3 General Settings • Enabled: Select/deselect to enable/disable. • Force NAT: Normally the LAN Route Mode controls the use of NAT (network address translation). When this option is selected the router will always perform NAT when traffic is sent out from this device.
Page 125 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Failure Check (Advanced) If this is enabled, the router will check that the highest priority active WAN interface can get to the Internet even if the WAN connection is not actively being used.
Page 126 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Failback Configuration (Advanced) This is used to configure failback, which is the ability to go back to a higher priority WAN interface if it regains connection to its network. Usage: Fail back based on the amount of data passed over time.
Page 127 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.1.4 Ethernet Settings While default settings for each WAN Ethernet port will be sufficient in most circumstances, you have the ability to control: • Connect Method: DHCP (Automatic), Static (Manual), or PPPoE (Point-to-Point Protocol over Ethernet).
Page 128 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Static (Manual): • IP Address • Subnet Mask • Gateway IP • Primary DNS Server • Secondary DNS Server PPPoE: • Username • Password • Password Confirm • Service • Auth Type: None, PAP, CHAP ©...
Page 129 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.1.5 Modem Settings On Demand: Typically modem connections are not always on. When this mode is selected a connection to the Internet is made as needed. When this mode is not selected a connection to the Internet is always maintained.
Page 130 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT AT Dial Script: This is included for legacy devices only. Most users will not use this option. Go to SIM/APN Settings instead if you need to select a specific Access Point Name.
Page 131 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT CDMA Settings These settings are usually specific to your wireless carrier’s private networks. You should not set these unless directed to by a carrier representative. If a field below is left blank, that particular setting will not be changed in the modem. You should only fill in fields that are required by your carrier.
Page 132 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT SIM/APN Settings SIM PIN: PIN number for a GSM modem with a locked SIM. Access Point Name (APN): Some wireless carriers provide multiple Access Point Names that a modem can connect to. Some APN examples are ‘isp.cingular”...
Page 133 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT WiMAX Settings WiMAX Realm: Select from the following dropdown options: • Clear – clearwire-wmx.net • Rover – rover-wmx.net • Sprint 3G/4G – sprintpcs.com • Xohm –xohm.com • BridgeMAXX – bridgeMAXX.com • Time Warner Cable – mobile.rr.com •...
Page 134 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT IP Settings IP overrides allow you to override IP settings after a device’s IP settings have been configured. Only the fields that are filled out will be overridden. Override any of the following fields: •...
Page 135 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.1.6 Update/Activate a Modem Some 3G modems can be updated and activated while plugged into the router. Updates and activation methods vary by modem model and service provider. Possible methods are: PRL Update, Activation, and FUMO. All supported methods will be displayed when you select your modem and click “Control”.
Page 136 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Process Timeout: If the process fails an error message will display. Activation has a 3-minute timeout, PRL update has a 4-minute timeout, and FUMO has a 10-minute timeout. Configuration Rules (Advanced) 7.1.7...
Page 137 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT WAN Configuration Rule This section allows you to create simple or complex rules that affect how individual Internet sources or classes of sources (perhaps all WiMAX modems or all modems from Sierra Wireless) behave in the router.
Page 138: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Value: If the correct values are available, select from the dropdown list. You may need to manually input the value. The condition will be of the following form: “ (When) is/is not (value) ”...
Page 139: Lient Ata Sage
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.2 Client Data Usage Client Data Usage displays upload and download traffic for each LAN client. Click Enable Client Data Usage Monitoring Service to begin tracking this information. This data is not retained between router reboots.
Page 140: Ata Usage
Data Usage Agreement shown to the right. The purpose of this agreement is to ensure that you understand that the data numbers for the MBR1400 may not perfectly match those of your carrier: CradlePoint cannot be held responsible. You must accept the agreement by clicking Yes in order to begin creating data usage rules.
Page 141: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.3.1 Data Usage Rules The Date Usage Rule display shows basic information for each rule you have created (including rules created with a template). The following information is displayed: • Rule Name •...
Page 142: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT keep all interfaces with these rules at a similar percentage utilization of data (e.g. 10%, 50%, 90%) as the cycle progresses, rather than quickly using 100% of a fast 1GB capped interface while using only a fraction of a slow 10GB capped interface, thus leaving the rest of the cycle with only the slow interface.
Page 143: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Template Configuration 7.3.2 Templates allow you to control multiple WAN devices with the same rule. Each WAN device that matches a template will automatically have its own rule created. For example, you can set a template rule for all mobile data modems that causes your router to send an alert after 1000 MB of usage in a month.
Page 144: Gre Tunnels
Generic Routing Encapsulation (GRE) tunnels can be used to create a connection between two private networks. The MBR1400 is enabled for either GRE or VPN tunnels. GRE tunnels are simpler to configure and more flexible for different kinds of packet exchanges, but VPN tunnels are much more secure.
Page 145: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Page 1: General Tunnel Name: Give the tunnel a name that uniquely identifies it. Tunnel Key: Enables an ID key for a GRE tunnel, which can be used as an identifier for mGRE (Multipoint GRE).
Page 146: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Keep Alive: This feature monitors the status of a tunnel. This will more accurately determine if the tunnel is alive or not. Choose the length of time in seconds of the Rate for each check (Default: 10 seconds. Range: 2 – 3600 seconds) and the number of Retry attempts (Default: 3.
Page 147: Nhrp Configuration
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.5 NHRP Configuration Next Hop Resolution Protocol is a protocol used to discover addresses of clients on Non-Broadcast Multiple Access (NBMA) networks. It is used to create next-generation VPN technologies that allow shortcutting between spokes. With NHRP, systems attached to an NBMA network dynamically learn the NBMA address of the other systems that are part of that network, allowing these systems to directly communicate without requiring an intermediate hop.
Page 148: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT • Holding Time: Specifies the holding time for NHRP registration requests and resolution replies. • Shortcut-Destination: Reply with authoritative answers on NHRP resolution requests destined to addresses in this interface (instead of forwarding the packets).
Page 149: 2013 Cradlepoint, Inc
The MBR1400 uses IPsec (Internet Protocol security) to authenticate and encrypt packets exchanged across the tunnel. To set up a VPN tunnel with the MBR1400 on one end, there must be another device (usually a router) that also supports IPsec on the other end.
Page 150: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.6.1 Page 1: General Tunnel Name: Give the tunnel a name that uniquely identifies it. Anonymous Mode: Select to allow remote connections from any IP address. Responder Mode: When enabled, the router will not initiate negotiation with peers, otherwise start negotiations as soon as possible.
Page 151: 2013 Cradlepoint, Inc
Tunnel Enabled: Enabled or Disabled. MBR1200 Quick Connect: VPN tunnels in the MBR1400 have more choices than they do in the MBR1200, so it is more complex to configure. Check this box to simplify setup by streamlining your options.
Page 152: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT The condition will be of the following form: “ (When) is/is not (value) ” For example: “Type is not WiMAX” “Port is USB Port 1” If you intend to have multiple WAN devices connected simultaneously, with either Load Balancing or more likely WAN Affinity, then you may consider using the Invert WAN Binding option which will invert the expression to only establish the VPN tunnel when the specified WAN Binding devices are NOT connected.
Page 153: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.6.2 Page 2-3: Local and Remote Networks Local Network: The Network Address and the Netmask define what local devices have access to or can be accessed from the VPN tunnel. The MBR1400 will...
Page 154: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.6.3 Page 3: IKE Phase 1 IKE security has two phases, Phase 1 and Phase 2. You have the ability to distinctly configure each phase, but the default settings will be sufficient for most users.
Page 155: 2013 Cradlepoint, Inc
In Phase 1, only one DH group can be selected while using Aggressive exchange mode. By default, all the algorithms (encryption, hash, and DH groups) supported by the MBR1400 are checked, which means they are allowed for any given exchange. Deselect these options to limit which algorithms will be accepted. Be sure to check that the router (or similar device) at the other end of the tunnel has matching algorithms.
Page 156: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.6.4 Page 4: IKE Phase 2 Perfect Forward Secrecy (PFS): Enabling this feature will require IKE to generate a new set of keys in Phase 2 rather than using the same key generated in Phase 1.
Page 157: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.6.5 Page 5: Dead Peer Detection Dead Peer Detection (DPD) defines how the router will detect when one end of the IPsec session loses connection while a policy is in use.
Page 158: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.6.6 Page 6: Tunnel Summary The final page of the tunnel configuration interface is a summary of the tunnel specifications. This is especially helpful for matching this information with the router (or similar device) at the other end of the tunnel.
Page 159: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.6.7 Global VPN Settings These settings apply to all configured VPN tunnels. Enable Certificate Support: Enabling Certificate Support will allow you to load a certificate for VPN to the router. Click the “Upload Certificate”...
Page 160: 2013 Cradlepoint, Inc
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT NAT-T KeepAlive Interval: Default: 20 seconds. Range: 0-3600 seconds. 20 seconds will be sufficient in almost all cases. Tunnel Connect Retry: Default: 30 seconds. Range: 10-255 seconds. 30 seconds will be sufficient in almost all cases.
Page 161: W I F W An / Bridge
NAT. The WiFi as WAN and WiFi Bridge features cannot both be used at the same time. When either WiFi as WAN or WiFi Bridge is enabled, the MBR1400 will find other WiFi networks that you can select and connect to.
Page 162 When in WiFi Bridge mode with a configured profile, a WiFi Bridge device will be added to the local network interfaces, providing a way to bridge two LANs over a WiFi connection. For example, two separate CradlePoint routers linked through WiFi Bridge mode allows you to have one WiFi-connected network in two separated sections of a large office building.
Page 163 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.7.2 Saved Profiles This is a list of WiFi networks that have already been configured as WAN sources (or Bridge profiles). The router will attempt to connect to any of these access points using the password you have configured.
Page 164 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Click “Refresh” if a WiFi network to which you want to connect is invisible. Site Survey only operates on the band—2.4 GHz or 5.0 GHz—that is currently configured in the WiFi advanced settings.
Page 165 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.7.4 Wireless Scan Settings Scan Interval: How often WiFi as WAN scans the environment for updates. (Default: 60 seconds. Range: 5-3600 seconds.) Scan While Connected: Continue to scan for WiFi as WAN profile updates when connected. Each time a scan occurs the wireless communication of the router will be temporarily interrupted.
Page 166: Wan Affinity A Nd
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 7.8 WAN Affinity and Load Balancing Load Balance Select the Load Balance Algorithm from the following dropdown options: • Round-Robin: Evenly distribute each session to the available WAN connections. • Rate: Distribute load based on the current upload and download rates. A WAN device's upload and download bandwidth values can be set in Internet →...
Page 167 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT DSCP (DiffServ): Differentiated Services Code Point is the successor to TOS (Type of Service). Use this field to select traffic based on the DSCP header in each IP packet. This field is sometimes set by latency sensitive equipment such as VoIP phones.
Page 168 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Failover: (Default: Selected.) When this is selected and traffic from the chosen WAN device for this rule is interrupted, the router will fail over to another available WAN device. Deselect this option to restrict this traffic to only the selected WAN interface.
Page 169 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT • Spillover: This was the default algorithm in older (version 3) firmware. Load is always given to devices with the most available bandwidth. The estimated bandwidth rate is based on a combination of the upload and download configuration values and the observed capabilities of the device.
Page 170: System Settings
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 8 SYSTEM SETTINGS The System Settings tab has 7 submenu items that provide access to tools for broad administrative control of the MBR1400: • Administration • Device Alerts • Hotspot Services •...
Page 171: Administration
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 8.1 Administration Select the Administration submenu item in order to control any of the following functions: • Router Security • System Clock • Local Management • Remote Management • GPS • System Logging 8.1.1...
Page 172 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 8.1.2 System Clock Enabling NTP will tell the router to get its system time from a remote server on the Internet. If you do not enable NTP then the router time will be based on when the router firmware was built, which is guaranteed to be wrong. Whenever the Internet connection is re-established and once a week thereafter the router will ask the server for the current time so it can correct itself.
Page 173 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 8.1.3 Local Management Enable Internet Bounce Pages: Bounce pages show up in your web browser when the router is not connected to the Internet. They inform you that you are not connected and try to explain why. If you disable bounce pages then you will just get the usual browser timeout.
Page 174 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Secure HTTPS Port: Enter the port number you want to use. The default is 443. Enable SSH Server: When the router's SSH server is enabled you may access the router's command line interface (CLI) using the standards-based SSH protocol.
Page 175 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 8.1.4 Remote Management Allows a user to enable incoming WAN pings or to change settings for the router from the Internet using the router's Internet address. Allow WAN pings: When enabled the functionality allows an external WAN client to ping the router.
Page 176 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Some Carriers block the remote SSH Access ports. If a ping to the router's WAN port does not work, it is unlikely that remote SSH Access will work. 8.1.5 If you have an attached device with GPS support, you can enable a graphical view of your router’s location which will appear in Status →...
Page 177 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT o GPS server port number • Enable GPS reporting to remote server: Enables periodic reporting of GPS NMEA sentences to a remote server. The router will buffer NMEA data if errors are encountered or if the Internet connection goes down and send the buffered sentences when the connection is restored.
Page 178 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Height of geoid above WGS84 ellipsoid -34.0, M -34.0 meters Time since last DGPS update blank No last update DGPS reference station id blank No station id Checksum Used by program to check for transmission errors...
Page 179 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT = UTC of Position = Latitude = N or S = Longitude = E or W = GPS quality indicator (0=invalid; 1=GPS fix; 2=Diff. GPS fix) = Number of satellites in use [not those in view]...
Page 180 If this occurs, disable this option. Log to attached USB stick: Only enable this option if instructed by a CradlePoint support agent. This will write a very verbose log file to the root level of an attached USB stick. Please disable the feature before removing the USB stick, or you may lose some logging data.
Page 181: Device Alerts
Alert sent. 8.2.1 SMTP Mail Server Since the MBR1400 does not have its own email server, to receive alerts you must enable an SMTP server. This is possible through most email services (Gmail, Yahoo, etc.) © 2013 CRADLEPOINT, INC.
Page 182 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Each SMTP server will have different specifications for setup, so you have to look those up separately. The following is an example using Gmail: • Server Address: smtp.gmail.com • Server Port: 587 (for TLS, or Transport Layer Security port;...
Page 183: Hotspot Services
Network Settings → WiFi / Local Networks. NOTE: Although any network can be a hotspot, the MBR1400 allows only one hotspot. Hotspot Mode: Choose from the following dropdown options: •...
Page 184 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 8.3.1 Simple Mode Settings Display: This section allows you to choose if a "Terms of Use" page will be given to the user connecting to the hotspot. • Internal Terms of Use. Fill in your own terms of use.
Page 185 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 8.3.2 RADIUS/UAM Settings This section allows you to configure a RADIUS and Universal Access Method server. After the user accepts the terms, you can either let him/her continue to the URL they were trying to reach or you can force the user to go to a specified UAM Server or URL once before continuing on.
Page 186 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT UAM Settings: • Login URL: Assigned by UAM service. • Shared Secret: Optional, depending on the UAM service. • NAS/Gateway ID: Assigned by UAM service. 8.3.3 Allowed Hosts Prior to Authentication...
Page 187: Representative
WiPipe Central client will not start unless the WAN is Ethernet. Registration URL: Register your router using the code provided by CradlePoint when you purchase WiPipe Central. 8.4.1 SNMP Configuration SNMP, or Simple Network Management Protocol, is an Internet standard protocol for remote management.
Page 188 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT LAN port #: Use the LAN port # field to configure the LAN port number you wish to access SNMP services on. (Default: 161) Enable SNMP on WAN: Enabling SNMP on WAN will make SNMP services available to the WAN interfaces of the router.
Page 189 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT • MD5 with DES encryption • SHA with DES encryption • MD5 with AES encryption • SHA with AES encryption Username: Enter the Username configured on your SNMP host in the username field.
Page 190: Redirector
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 8.5 Serial Redirector A single USB Serial device can be used to establish a serial link to a host port on the router. The USB Serial device can also be accessed by running "serial" from an SSH session.
Page 191 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT • 1200 • 1800 • 2400 • 4800 • 9600 • 19200 Byte Size: The number of bits in a byte. Select from: 5, 6, 7, and 8. Parity: Change this value to enable parity bit checking. Select from the following dropdown options: •...
Page 192: System Control
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 8.6 System Control Restore to Factory Defaults: This changes all settings back to their default values. Reboot The Device: This causes the router to restart. Advanced: System Automatic Reboot and Ping Test Scheduled Reboot: This causes the router to restart at a user-determined time.
Page 193: System Software
This allows the administrator to load new firmware onto the router to add new features or fix defects. If you are happy with the operation of the router, you may not want to upgrade just because a new version is available. Check the firmware release notes (www.cradlepoint.com/firmware) for information to decide if you should upgrade. Current Firmware Version: Shows the number of the current firmware and the date it was updated.
Page 194 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 8.7.2 System Config Save/Restore Backup Current Settings: Click on “Save to disk” to save your current settings to a file on a computer. Restore Settings: Click on “Upload from file” to restore your previous settings from a file on a computer.
Page 195: Glossary
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 9 GLOSSARY 802.11 Alphanumeric A family of specifications for wireless local area networks Characters A-Z and 0-9. (WLANs) developed by a working group of the Institute of Antenna Electrical and Electronics Engineers (IEEE).
Page 196 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Authentication Bit rate To provide credentials, like a Password, in order to verify The amount of bits that pass in given amount of time. that the person or device is really who they are claiming Bit/sec to be.
Page 197 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT CardBus Data-Link layer A newer version of the PC Card or PCMCIA interface. It The second layer of the OSI model. Controls the supports a 32- bit data path, DMA, and consumes less movement of data on the physical link of a network.
Page 198 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Demilitarized zone Download DMZ: A single computer or group of computers that can To send a request from one computer to another and be accessed by both users on the Internet as well as have the file transmitted back to the requesting computer.
Page 199 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Encryption Fragmentation Converting data into cyphertext so that it cannot be easily Breaking up data into smaller pieces to make it easier to read. store. Ethernet The most widely used technology for Local Area File Transfer Protocol.
Page 200 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Half-duplex IEEE Data cannot be transmitted and received at the same Institute of Electrical and Electronics Engineers. time. IGMP Hashing Internet Group Management Protocol is used to make sure that computers can report their multicast group Transforming a string of characters into a shorter string with a predefined length.
Page 201 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Internet Protocol Security Java IPsec provides security at the packet processing layer of A programming language used to create programs and network communication. applets for web pages. Internet Service Provider Kbps An ISP provides access to the Internet to individuals or Kilobits per second.
Page 202 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT LPR/LPD MPPE “Line Printer Requestor”/”Line Printer Daemon”. A Microsoft Point-to-Point Encryption is used to secure data TCP/IP protocol for transmitting streams of printer data. transmissions over PPTP connections. MAC Address A unique hardware ID assigned to every Ethernet Maximum Transmission Unit is the largest packet that adapter by the manufacturer.
Page 203 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Network Interface Card routers in the network as opposed to sending the entire routing table at a regular interval, which is how RIP NIC. A card installed in a computer or built onto the functions.
Page 204 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT channel) but can have multiple ports (logical channels) Rendezvous each identified by a number. Apple’s version of UPnP, which allows for devices on a network to discover each other and be connected without the need to configure any settings.
Page 205 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Session key An encryption and decryption key that is generated for Secure Shell is a command line interface that allows for every communication session between two computers. secure connections to remote computers.
Page 206 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT TFTP Upload Trivial File Transfer Protocol is a utility used for To send a request from one computer to another and transferring files that is simpler to use than FTP but with have a file transmitted from the requesting computer to less features.
Page 207 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Wake on LAN WiFi Protected Access Allows you to power up a computer through it’s Network An updated version of security for wireless networks that Interface Card. provides authentication as well as encryption.
Page 208 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT Yagi antenna A directional antenna used to concentrate wireless signals on a specific location. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.COM/ FOR MORE HELP AND RESOURCES PAGE 206...
Page 209: Appendix
If the purchaser wishes to upgrade or convert to another CradlePoint, Inc. product within the thirty (30) day period, purchaser may return the product and apply the full purchase price toward the purchase of the other product. Any other return will be subject to CradlePoint, Inc.’s existing return policy.
Page 210: Specifications
MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT 10.3 Specifications MODEL NAME DETAILS MBR1400 Mission-Critical Broadband Router • 2.412 to 2.484 GHz WiFi Frequency Band WAN / INTERNET Operation 3G/4G via five modem ports (3 USB 2.0, 2 ExpressCard);...
Page 211 MBR1400 | USER MANUAL – Firmware version 4.2 CRADLEPOINT http://www.cradlepoint.com/ Copyright © 2013 by CradlePoint, Inc. All rights reserved. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.COM/ FOR MORE HELP AND RESOURCES PAGE 209...

This manual is also suitable for:

Mbr1400le-vz Mbr1400lp-at Mbr1400w

Cradlepoint MBR1400 Product Manual

1 Introduction

2 Hardware Overview

3 Quick Start

4 Web Interface -- Essentials

5 Status

6 Network Settings

7 Internet

8 System Settings

9 Glossary

10 Appendix

Quick Links

Related Manuals for Cradlepoint MBR1400

Summary of Contents for Cradlepoint MBR1400

This manual is also suitable for:

Table of Contents