Nomadix Universal subscriber gateway User Manual

Universal subscriber gateway

Table of Contents

Quick Links

Download this manual

Table of Contents

Need help?

Do you have a question about the Universal subscriber gateway and is the answer not in the manual?

Questions and answers

Summary of Contents for Nomadix Universal subscriber gateway

Page 2 Universal Subscriber Gateway Copyright © 2002 Nomadix, Inc. All Rights Reserved. This product also includes software developed by: The University of California, Berkeley and its contributors; Carnegie Mellon University, Copyright © 1998 by Carnegie Mellon University All Rights Reserved; Go Ahead Software, Inc., Copyright © 1999 Go Ahead Software, Inc.
Page 3: Product Information
Trademarks symbol, , Universal Subscriber Gateway™, and USG™ are trademarks of Nomadix, Inc. All other trademarks and brand names are marks of their respective holders. Product Information Telephone: +1.818.597.1500 Fax: +1.818.597.1502 For technical support information, see the Appendix in this User’s Guide.
Page 4 Nomadix, Inc. makes no warranty, either express or implied, including but not limited to any implied warranties of merchantability and fitness for a particular purpose, regarding the product described herein. In no event shall Nomadix, Inc. be liable to anyone for special, collateral, incidental, or consequential damages in connection with or arising from the use of Nomadix, Inc.
Page 5: Table Of Contents
Introduction ......................9 About this User’s Guide ..................... 9 Organization........................ 9 About the NOMADIX Network Service Engine (NSE)........... 10 Welcome to the Universal Subscriber Gateway™ ........... 12 Leveraging Services................... 12 Product Overview ..................... 13 Product Configurations and Licensing.............. 13 Base USG ....................13 Credit Card Module..................
Page 6 Selective Access Control (Walled Garden) ..........23 Home Page Redirection................23 IP Upsell ..................... 24 URL Filtering ..................... 24 Nomadix Connection Screen & Partner Image .......... 24 Flexible Screen Size & JAVA Detect ............24 Language Support..................24 Bandwidth Management ..................25 Bandwidth Shaping (and Dynamic Bandwidth Management) ....
Page 7 ™ NIVERSAL UBSCRIBER ATEWAY Archiving Your Configuration Settings..............51 Installing the Nomadix Enterprise MIB..............52 Chapter 2: System Administration ..............53 Choosing a Remote Connection ................53 Using the Web Management Interface (WMI)........... 54 Using an SNMP Manager.................. 54 Using a Telnet Client ..................55 Logging In.........................
Page 8 ™ NIVERSAL UBSCRIBER ATEWAY Displaying ICMP Statistics {ICMP}..............102 Displaying the Network Interfaces {Interfaces} ..........103 Displaying the IP Statistics {IP}..............104 Displaying the Routing Tables {Routing}............105 Displaying the Active IP Connections {Sockets}..........106 Displaying TCP Statistics {TCP} ..............107 Displaying UDP Statistics {UDP}..............
Page 9 ™ NIVERSAL UBSCRIBER ATEWAY Web Management Interface (Sample)............142 Defining the Subscriber’s Login UI {Login UI}..........143 Subscriber Login Screen (Sample)............146 Defining Subscriber UI Labels {Subscriber Labels}........148 Defining Subscriber Error Messages {Subscriber Errors} ......149 Defining Subscriber Messages {Subscriber Messages} ........151 System Menu ......................
Page 10 Authentication-Request..................200 Authentication-Reply (Accept)................. 200 Accounting-Request ..................201 Selected Detailed Descriptions................ 201 Nomadix Vendor Specific Attributes..............203 Setting Up the SSL Feature ..................203 Prerequisites ....................203 Obtain a Private Key File (cakey.pem) ............204 Installing Cygwin and OpenSSL on a PC............204 Private Key Generation ...................
Page 11 ™ NIVERSAL UBSCRIBER ATEWAY Appendix: Technical Support................. 231 Contact Information ....................231 Glossary of Terms ....................233 Index ........................245 Table of Contents...
Page 12 ™ NIVERSAL UBSCRIBER ATEWAY This page intentionally blank viii Table of Contents...
Page 13: Introduction
This User’s Guide was developed for system administrators. It provides information and procedures that will enable you to install, configure, manage, and use the Universal Subscriber Gateway™ (USG™) successfully and efficiently. Use this guide to take full advantage of the USG’s functionality and features.
Page 14: About The Nomadix Network Service Engine (Nse)
More than 50 million mobile enterprise users carry laptops and hand-held computers as they move about. Network equipment manufacturers must eliminate the concerns of security and connectivity that are associated with a mobile workforce. Nomadix developed an embedded software mobility solution called the Network Service Engine (NSE), creating a robust networking environment where connectivity problems and concerns about security are things of the past.
Page 15 ™ NIVERSAL UBSCRIBER ATEWAY The NSE is designed for the following critical application areas: Enterprise ! ! ! ! IT administrators can deploy NSE-enabled wireless Access Points to enhance today’s security implementations (that focus on the privacy of the data) by providing a Web-based, vendor and client-independent solution that securely authenticates the user to the network over SSL.
Page 16: Welcome To The Universal Subscriber Gateway
Welcome to the Universal Subscriber Gateway™ In addition to licensing its NSE technology solution to makers of edge networking devices, Nomadix has created its own robust platform for the NSE, called the Universal Subscriber Gateway (USG). The USG is a stand-alone, turnkey networking device that provides important user mobility and security enhancements to network infrastructures.
Page 17: Product Overview
UBSCRIBER ATEWAY Product Overview The Universal Subscriber Gateway is deployed in any wireless or wired broadband service network. The USG immediately recognizes new users on the network (and remembers returning users) and redirects their browser to a proprietary Web page where they can purchase high speed Internet access and services from the network solution provider.
Page 18: Credit Card Module
For a detailed listing of the features that are available for licensing with the Universal Subscriber Gateway platform, refer to “Product Features” on page " New features are constantly being added to our products. For a complete and up-to-date list of features, contact our technical support team at ++1.818.575.2590 or email support@nomadix.com. Introduction...
Page 19: Product Features
™ NIVERSAL UBSCRIBER ATEWAY Product Features Transparent Connectivity Dynamic Address Translation™ The USG offers plug-and-play, transparent broadband network connectivity covering every PC configuration (static IP, DHCP, DNS) and performs standard network and port address translation—supporting Application Level Gateways (ALGs) for protocols such as FTP, H.323, PPTP, and IPsec.
Page 20: Pptp Support
™ NIVERSAL UBSCRIBER ATEWAY PPTP Support The USG fully supports PPTP (Point-to-Point Tunneling Protocol) so that misconfigured users (DHCP private or statically misconfigured) can use PPTP VPNs through the USG’s Dynamic Address Translation (DAT) function. Our patented DAT technology ensures that this feature is “transparent” to users. The USG supports a maximum of 500 simultaneous PPTP sessions.
Page 21: Authentication And Billing
RADIUS. Adding SSL support to the USG requires service providers to obtain digital certificates from VeriSign™ to create HTTPS pages. Instructions for obtaining certificates are provided by Nomadix. Authentication The USG enables support for port-based authentication using 802.1x and other...
Page 22: Portal Page Parameter Passing
(for example, an airport lounge) from a centralized Web server. " If you plan to implement Portal Page Redirect by VLAN ID, please go to “Contact Information” on page 225 and contact Nomadix Technical Support for more information. Cookie Placement (“Remember My Login”)
Page 23: Pms Integration
Micros POS system. This functionality allows hotels to seamlessly deploy wireless networks (or alternatively use low-cost wired access concentration equipment) that either do not support port-ID or do so in a proprietary format that Nomadix does not currently support—and still be able to bill directly to the room. Introduction...
Page 24: Billing Records Mirroring
™ NIVERSAL UBSCRIBER ATEWAY Billing Records Mirroring Multiple USG units can send copies of credit card and Property Management System (PMS) billing records to external servers that have been previously defined by system administrators. The USG assumes control of billing transmissions and saving billing records.
Page 25: Radius Portal Redirect
ATEWAY RADIUS Portal Redirect This feature allows the USG to receive a Nomadix VSA from the RADIUS server for URL redirection, and provides a method for users to be redirected to a different site when logging in, based on a predefined RADIUS attribute.
Page 26: Port-Location Mapping
™ NIVERSAL UBSCRIBER ATEWAY Port-Location Mapping The USG can provision subscriber access to the network on a localized port basis. For example, in an apartment building environment, a solution provider may want to provision Internet access to individual apartments, where each apartment is assigned a port-location tag.
Page 27: In-Room Port Mapping
™ NIVERSAL UBSCRIBER ATEWAY In-Room Port Mapping System administrators can set the properties for each room from the subscriber side of the USG. The system automatically detects which port number the administrator is using and allows them to enter the fields for the room corresponding to the port they are using.
Page 28: Ip Upsell
Nomadix Connection Screen & Partner Image The USG allows the Nomadix connection screen (and partner image) to be displayed even when AAA is turned “off.” Flexible Screen Size & JAVA Detect...
Page 29: Bandwidth Management
The USG can be easily managed over the Internet with an SNMP client manager (for example, HP OpenView or Castle Rock SNMPc). Simply import the nomadix.mib file from the Accessories CD (supplied with the product) to view and manage SNMP objects on your USG.
Page 30: Remote Administration
USG. License Key Server The USG can interface with a Nomadix License Key Server which distributes Nomadix license keys over the Internet. This functionality provides a simple method for customers to obtain license keys and eliminates the need for system administrators to input license keys manually.
Page 31: Optional Standalone Applications
ATEWAY Optional Standalone Applications The following supplemental applications—delivered on a separate CD-ROM—are available from Nomadix: Meeting Room Scheduler (MRS) Our Meeting Room Scheduler application allows hotel desk clerks to schedule and reserve conference rooms on behalf of their hotel guests and generate the necessary invoices in advance.
Page 32: Some Potential Applications For The Usg
™ NIVERSAL UBSCRIBER ATEWAY Some Potential Applications for the USG The USG can be deployed effectively in a variety of wireless and wired broadband environments where there are many users—usually mobile—who need high speed access to the Internet. Here are just a few examples: Hospitality –...
Page 33: Product Specifications
™ NIVERSAL UBSCRIBER ATEWAY Product Specifications Item Specifications Users Maximum of 2,000 users concurrently Throughput 39 Mbps* *As defined by RFC1242, Section 3.17 Mounting 2U rack space in a 19” rack Operating Voltage 100 – 260 VAC, 50/60 Hz Power Consumption 60 Watts Environmental Ambient temperature: 0°...
Page 34: Online Help (Webhelp)
™ NIVERSAL UBSCRIBER ATEWAY Online Help (WebHelp) The USG incorporates an online Help system called “WebHelp” which is accessible through the Web Management Interface (when a remote Internet connection is established following a successful installation). WebHelp can be viewed on any platform (for example, Windows, Macintosh, or UNIX-based platforms) using either Internet Explorer or Netscape Navigator (see note).
Page 35: Chapter 1: Installing The Usg
Installing the USG This chapter provides installation instructions for the hardware and software components of the Universal Subscriber Gateway. It also includes an overview of the management interface, some helpful hints for system administrators, and procedures for the following tasks: Powering up the system.
Page 36: Unpacking The Usg
10–32 x 1/2” PH screw with internal washer. Universal mounting bracket Quick Start Guide “Accessories” CD-ROM (containing this User’s Guide, README file, NOMADIX Enterprise MIB file, and any other useful accessories. Customer letter End User License Agreement (EULA) Packing materials (polystyrene end caps)
Page 37: Installation Workflow
When prompted, accept to the Nomadix End User License Agreement (EULA). You must accept the EULA before the USG can connect with the Nomadix License Key Server. When the key is successfully received from the server, your USG will reboot. You can now power down and connect the USG to the customer’s network.
Page 38: Powering Up The System
™ NIVERSAL UBSCRIBER ATEWAY Powering Up the System Use this procedure to establish a direct cable connection between the USG and your laptop computer, and to power up the system. Place the USG on a flat and stable work surface. Connect the power cord.
Page 39: Logging In To The Command Line Interface
USG’s management interface successfully. If this is an initial installation which requires the USG to receive a license key from the Nomadix License Key Server), you must accept the Nomadix End User License Agreement (EULA).
Page 40: The Management Interfaces (Cli And Web)
™ NIVERSAL UBSCRIBER ATEWAY The Management Interfaces (CLI and Web) " The USG supports various methods for managing the system remotely. These include, an embedded graphical Web Management Interface (WMI), an SNMP client, or Telnet. However, until the unit is installed and running, system management is performed from the USG’s embedded Command Line Interface (CLI) via a direct serial cable connection.
Page 41: Menu Organization (Web Management Interface)
™ NIVERSAL UBSCRIBER ATEWAY Menu Organization (Web Management Interface) When you have successfully installed and configured the USG from the Command Line Interface (CLI), you can then access the USG from its embedded Web Management Interface (WMI). The WMI is easier use (point and click) and includes some items not found in the CLI.
Page 42: Online Documentation And Help
Help system Other online documentation resources, available from our corporate Web site (www.nomadix.com), include a full PDF version of this User’s Guide (viewable with Acrobat™ Reader, version 4.0 or higher), white papers, technical notes, and business cases. The PDF version of this User’s Guide and associated README files are also available on the “Accessories”...
Page 43: Establishing The Start Up Configuration
™ NIVERSAL UBSCRIBER ATEWAY Establishing the Start Up Configuration The Command Line Interface (CLI) allows you to administer the USG’s start-up configuration settings. " When establishing the start-up configuration for a new installation, you are connected to the USG via a direct serial connection (you do not have remote access capability because the USG is not yet configured or connected to a network).
Page 44: Assigning Login User Names And Passwords
™ NIVERSAL UBSCRIBER ATEWAY Assigning Login User Names and Passwords When you initially powered up the USG and logged in to the Management Interface, the default login user name and password you used was “admin.” The USG allows you to define 2 concurrent access levels to differentiate between managers and operators, where managers are permitted read/write access and operators are restricted to read access only.
Page 45: Setting The Snmp Parameters (Optional)
(yes) to reboot your USG. AMPLE CREEN ESPONSE Configuration>sn Enable the SNMP Daemon? [Yes]: Enter new system contact: newname@domainname.com [Nomadix, Westlake Village, CA] Enter new system location: Office, Westlake Village, CA Enter read/get community [public Enter write/set community [private Enter IP of trap recipient [0.0.0.0...
Page 46: Enabling The Logging Options (Recommended)
™ NIVERSAL UBSCRIBER ATEWAY Enabling the Logging Options (recommended) System logging creates log files and error messages generated at the system level. AAA logging creates activity log files for the AAA (Authentication, Authorization, and Accounting) functions. You can enable either of these options. "...
Page 47: Assigning The Location Information And Ip Addresses
After assigning the network interface IP address, the system displays the current subscriber interface IP address (the default is 10.0.0.11).The IP addresses from subscribers that are on a subnet different from the USG (for example, misconfigured) are translated by Nomadix’ Dynamic Address Translation (DAT) patented technology to the Subscriber IP Address Enter a valid subscriber interface IP address.
Page 48 ™ NIVERSAL UBSCRIBER ATEWAY Enter a valid subnet mask. After assigning the subnet mask, the system displays the current default gateway IP address (the factory default is 10.0.0.1). This is the IP address of the router that the USG uses to transmit data to the Internet. Enter a valid default gateway IP address.
Page 49: Logging Out And Powering Down The System
™ NIVERSAL UBSCRIBER ATEWAY Your new settings are displayed and the USG reboots. When the system restarts, the Telnet interface is enabled (based on your new configuration settings which are saved to the USG’s on-board flash memory). " The start up configuration is now complete; however, before connecting the USG to the customer’s network, you must power down the system.
Page 50: Connecting The Usg To The Customer's Network
™ NIVERSAL UBSCRIBER ATEWAY Connecting the USG to the Customer’s Network Use this procedure to connect the USG to the customer’s network (after the start up configuration parameters have been established). Choose an appropriate physical location that allows a minimum clearance of 4cm either side of the unit (for adequate airflow).
Page 51: Establishing The Basic Configuration For Subscribers
™ NIVERSAL UBSCRIBER ATEWAY Establishing the Basic Configuration for Subscribers When you have successfully established the start up configuration and installed the unit onto the customer’s network, connect to the USG via Telnet. You must now set up the basic configuration parameters for subscribers, including: Setting the DHCP Options –...
Page 52 ™ NIVERSAL UBSCRIBER ATEWAY To route DHCP through an external server, enable the DHCP relay and assign a valid IP address for the external DHCP server (the default is 0.0.0.0). When assigning an IP address for the DHCP Relay, ensure that the IP address you use does not conflict with devices on the network side of the USG.
Page 53 ™ NIVERSAL UBSCRIBER ATEWAY You are at this step because you want the USG to act as its own DHCP server (you did not enable the DHCP relay). The system now displays the current status of the DHCP server (the factory default is “enabled”).
Page 54: Setting The Dns Options
(configuration) at the USG Menu. The Configuration menu appears. Enter (dns) at the Configuration menu. The system displays the current domain (the default is “nomadix”). " The host name and domain name fields will accept a maximum of 64 characters.
Page 55: Archiving Your Configuration Settings
You must now reboot the system for your settings to take effect. Enter (yes) to reboot the USG. AMPLE CREEN ESPONSE Configuration>dn [nomadix.com] Enter domain: domainname Enter host name <no spaces> [dnshostname ]: newhostname Enter primary DNS [0.0.0.0 ]: 20.21.22.23 Enter secondary DNS [0.0.0.0...
Page 56: Installing The Nomadix Enterprise Mib
Installing the Nomadix Enterprise MIB The Nomadix Enterprise MIB is supplied on the “Accessories” CD-ROM, delivered with your USG. After importing the nomadix.mib file from the CD-ROM you will be able to view and manage SNMP objects on your USG.
Page 57: Chapter 2: System Administration
™ NIVERSAL UBSCRIBER ATEWAY System Administration This chapter provides all the instructions and procedures necessary for system administrators to manage the USG on the customer’s network (after a successful installation). The system administration procedures in this chapter are organized as they are listed under their respective Web Management Interface (WMI) menus (Configuration, Network Info, Port-Location, Subscriber Administration, Subscriber Interface, and System).
Page 58: Using The Web Management Interface (Wmi)
Managed objects are arranged into a virtual information database, called a Management Information Base (MIB). SNMP enables managers and agents to communicate with each other for the purpose of accessing these MIBs and retrieving data. See also, “Installing the Nomadix Enterprise MIB” on page System Administration...
Page 59: Using A Telnet Client
About Your Product License Some features included in this chapter will not be available to you unless you have purchased the appropriate product license from Nomadix. In this case, the following statement will appear either immediately below the section heading or when the feature is mentioned in the body text: Your product license may not include this feature.
Page 60: Configuration Menu
™ NIVERSAL UBSCRIBER ATEWAY Configuration Menu Defining the AAA Services {AAA} This procedure shows you how to set up the AAA (Authentication, Authorization, and Accounting) service options. AAA Services are used by the USG to authenticate, authorize, and subsequently bill subscribers for their use of the customer’s network. The USG currently supports several AAA models which are discussed in “Subscriber Management”...
Page 61 ™ NIVERSAL UBSCRIBER ATEWAY ... AAA screen image continued: Enable or disable AAA Services If you enable AAA Services, go to Step 3, otherwise this feature is disabled and you can exit the procedure. Enable or disable the , as required. XML Interface XML (eXtensible Markup Language) is used by the USG’s subscriber management module for port location and user administration.
Page 62 Go to “Contact Information” on page 225 and contact nomadix technical Support for more information. Select the authorization mode you want to use: Internal Web Server ! ! ! !
Page 63: Enabling Aaa Services With The Internal Web Server
™ NIVERSAL UBSCRIBER ATEWAY Enabling AAA Services with the Internal Web Server You are here because you want to enable the AAA Services with the USG’s Internal Web Server. The USG maintains an internal database of authorized subscribers, based on their MAC (hardware address) and user name (if enabled). By referring to its database record, also known as an authorization table, the USG instantly recognizes new subscribers on the network.
Page 64 (especially when using RADIUS). Adding SSL support to the USG requires service providers to obtain digital certificates from VeriSign™ to create HTTPS pages. Instructions for obtaining certificates are provided by Nomadix. " To enable SSL Support, your product license must include this feature and your USG’s flash must include the server.pem, cakey.pem, and...
Page 65 ™ NIVERSAL UBSCRIBER ATEWAY Enable or disable the feature, as required (refer to table on page 59). Usernames Some subscribers may want additional account flexibility and security for their services (for example, if they use more than one computer and their MAC address changes, or if they move between port-locations).
Page 66: Enabling Aaa Services With An External Web Server
™ NIVERSAL UBSCRIBER ATEWAY Enable or disable the feature, as required. The USG’s Smart Client Support Smart Client feature supports iPass, Gric, and Boingo clients. " To enable Smart Client Support, your product license must include this feature. If you enabled or disabled on this screen, you must click the check SSL Support box for...
Page 67: Establishing Secure Administration {Access Control
™ NIVERSAL UBSCRIBER ATEWAY Establishing Secure Administration {Access Control} The USG incorporates a master access control list that checks the source (IP address) of administrator logins. A login is permitted only if a match is made with the master list contained on the USG. If a match is not made, the login is denied, even if a correct login name and password are supplied.
Page 68 ™ NIVERSAL UBSCRIBER ATEWAY If you are adding a range of IP addresses to the access control list, you must now enter the “ending” IP address in the field. If you are Access Control End IP adding a single IP address, enter in the field.
Page 69: Bandwidth Management {Bandwidth Management
™ NIVERSAL UBSCRIBER ATEWAY Bandwidth Management {Bandwidth Management} Your product license may not include this feature. The USG allows system administrators to manage the bandwidth for subscribers, defined in Kbps (Kilobits per seconds) for both upstream and downstream data transmissions. With the ICC feature enabled, subscribers can increase or decrease their own bandwidth dynamically (by the minute, or on an hourly, daily, weekly, or monthly basis), and also adjust the pricing plan for their service.
Page 70: Establishing Billing Records "Mirroring" {Bill Record Mirroring
™ NIVERSAL UBSCRIBER ATEWAY Establishing Billing Records “Mirroring” {Bill Record Mirroring} Your product license may not include this feature. The USG can send copies of credit card and Property Management System (PMS) transaction billing records to external servers that have been previously defined by system administrators.
Page 71 ™ NIVERSAL UBSCRIBER ATEWAY Enter the communication parameters for the primary server that is to be used for mirroring, including: Primary IP ! ! ! ! ! ! ! ! Secret Key ! ! ! ! Port ! ! ! ! The USG and the “mirror”...
Page 72: Enabling Centralized Management (Centralized Management)
The Centralized Management screen appears: If you want to enable the Centralized Management functionality (and you have purchased and installed the Nomadix CMS application), click on the check box Centralized Management. Enter the IP address of the machine where you installed the CMS application in field.
Page 73: Managing The Dhcp Service Options {Dhcp
™ NIVERSAL UBSCRIBER ATEWAY Managing the DHCP Service Options {DHCP} When a device connects to the network, the DHCP server assigns it a “dynamic” IP address for the duration of the session. Most users have DHCP capability on their computer. To enable this service on the USG, you can either enable the DHCP relay (routed to an external DHCP server IP address), or you can enable the USG to act as its own DHCP server.
Page 74 NIVERSAL UBSCRIBER ATEWAY " Nomadix’ patented Dynamic Address Translation (DAT) functionality is automatically configured to facilitate “plug-and-play” access to subscribers who are misconfigured with static (permanent) IP addresses, or subscribers that do not have DHCP capability on their computers. DAT allows all users to obtain network access, regardless of their computer’s network settings.
Page 75 ™ NIVERSAL UBSCRIBER ATEWAY Assign a valid address (the default is 0.0.0.0) and a valid DHCP Server IP DHCP address. Relay Agent IP The DHCP Relay Agent allows the USG to request a specific range of IP addresses from different IP pools from the DHCP Server. Leaving these fields blank forces the system to use the IP pool that contains IP addresses that are on the same subnet as the USG.
Page 76: Managing The Dns Options {Dns
™ NIVERSAL UBSCRIBER ATEWAY When finished, click on the button to save your changes and reboot the Submit system, or click on the button if you want to reset all the values to their Reset previous state. The existing lease pool and lease table are deleted and the USG reboots. The USG can issue IP addresses to any DHCP enabled subscriber who enters the network.
Page 77 ™ NIVERSAL UBSCRIBER ATEWAY Enter a valid name (the Internet domain that DNS requests will utilize). Domain Enter the IP addresses for the DNS servers (located at the customer’s network operating center where DNS requests are sent). Servers include: Primary DNS Server ! ! ! ! Secondary DNS Server ! ! ! !
Page 78: Setting The Home Page Redirection Options {Home Page Redirect
™ NIVERSAL UBSCRIBER ATEWAY Setting the Home Page Redirection Options {Home Page Redirect} This procedure shows you how to redirect the subscriber’s browser to a specified home page. Generally, this function is used to redirect subscribers to specified solution providers pages after authentication and at certain intervals thereafter. "...
Page 79: Establishing Your Location {Location
™ NIVERSAL UBSCRIBER ATEWAY Establishing Your Location {Location} This command sets up your location and the corresponding IP addresses for the network interface, subscriber interface, subnet, and default gateway. You *must* provide your full location information. From the Web Management Interface, click on , then Configuration Location.
Page 80 ™ NIVERSAL UBSCRIBER ATEWAY " You must reboot the system if you make changes to any of the following IP settings. You may lose your connection if you change the IP settings incorrectly (using invalid IP addresses). If you “misconfigure” the USG and network connectivity is lost, you can still access the USG from the Command Line Interface (CLI) via a direct serial connection.
Page 81: Managing The System And Billing Log Options {Logging
™ NIVERSAL UBSCRIBER ATEWAY When finished, you must reboot the system for the new settings to take effect. Click on the check box for to reboot the Reboot after changes are saved? system after saving your changes. Click on the button to save your changes and reboot the system, or click Submit on the...
Page 82: Enabling The Meeting Room Scheduler {Meeting Room Scheduler
“Sample AAA Log” on page 196. Enabling the Meeting Room Scheduler {Meeting Room Scheduler} The NOMADIX Meeting Room Scheduler (MRS) application is an optional feature delivered on CD-ROM. The MRS allows hotel desk clerks to schedule and reserve conference rooms on behalf of their hotel guests and generate the necessary invoices in advance.
Page 83: Defining Miscellaneous Settings {Misc
™ NIVERSAL UBSCRIBER ATEWAY Defining Miscellaneous Settings {Misc} Miscellaneous settings include the following: Partner image and partner image file name – The partner image is used ! ! ! ! for the connection status screen (the screen that tells subscribers they have been recognized by the network).
Page 84: Assigning Passthrough Addresses (Passthrough Addresses)
™ NIVERSAL UBSCRIBER ATEWAY Click on the button to save your changes and reboot the system, or click Submit on the button if you want to reset all the values to their previous state. Reset Assigning Passthrough Addresses (Passthrough Addresses) The USG allows up to 300 (hundred) IP passthrough addresses and DNS names.
Page 85: Assigning A Pms Service {Pms
(or alternatively use low-cost wired access concentration equipment) that either do not support port-ID or do so in a proprietary format that Nomadix does not currently support—and still be able to bill directly to the room. System Administration...
Page 86 ™ NIVERSAL UBSCRIBER ATEWAY From the Web Management Interface, click on , then Configuration PMS. The Property Management System Settings screen appears: Select the you require from the available list (or you can choose to Type of PMS disable PMS functionality). You can also choose if you want to take advantage of the ASCII Serial Printer...
Page 87 Reset state. " Based on the HOBIC interface standards, Nomadix, Inc. has also certified interoperability with a number of other PMS and call accounting solutions such as Ramesys’ ImagInn, Xeta Virtual XL, and Marriott’s proprietary standard. This development effort is on-going.
Page 88: Setting Up Port Locations {Port-Location
™ NIVERSAL UBSCRIBER ATEWAY Setting Up Port Locations {Port-Location} Your product license may not include this feature. Port-Location allows you to establish the mode of operation for devices. " This function is required when PMS is enabled. See also, “Assigning a PMS Service {PMS}”...
Page 89 ™ NIVERSAL UBSCRIBER ATEWAY System administrators can set the properties for each room from the subscriber side of the USG. The system automatically detects which port number the administrator is using and allows them to enter the fields for the room corresponding to the port they are using.
Page 90 ™ NIVERSAL UBSCRIBER ATEWAY If you are using an access concentration device that cannot handle VLAN IDs, select one of the available Access Concentrator Query options: " When managing from the network side, the following devices must be assigned an IP address on the same subnet as the USG. You must remove “old”...
Page 91: In Room Port Mapping
™ NIVERSAL UBSCRIBER ATEWAY From the Cascading Support screen, you can return to the main Port-Location Settings screen at any time by pressing the button. Back Click on the button to save your changes, or click on the button if Submit Reset you want to reset all the values to their previous state.
Page 92 ™ NIVERSAL UBSCRIBER ATEWAY Enter your user name and password, then click on the button. The In Room Port Mapping screen appears: Enter the room number and a description for this room. Select the access mode you want to assign to this room: Room Free Access ! ! ! ! Room For Charge...
Page 93: Defining The Radius Options {Radius Options
Allows ISPs to track the usage on their networks ! ! ! ! With the RADIUS Portal Redirect feature, the USG can receive a Nomadix VSA from the RADIUS server for URL redirection, and provide a method for users to be redirected to a different site when logging in, based on a predefined RADIUS attribute.
Page 94 ™ NIVERSAL UBSCRIBER ATEWAY From the Web Management Interface, click on , then Configuration RADIUS Options. The RADIUS Settings screen appears: System Administration...
Page 95: Authentication
™ NIVERSAL UBSCRIBER ATEWAY If you want to enable RADIUS, click on the check box for Enable RADIUS Authentication If you enabled the RADIUS interface, you must provide additional information that is directly related to the RADIUS functionality. The system requires parameters for the following categories: Authentication –...
Page 96: Accounting
™ NIVERSAL UBSCRIBER ATEWAY Enter the primary RADIUS authentication server IP address in the Primary IP field. Enter the authorization port in the field for the primary RADIUS Port authentication server. This is the port the system uses when authorizing subscribers.
Page 97: Isp Account Creation
™ NIVERSAL UBSCRIBER ATEWAY ISP Account Creation If you want to let your subscribers establish an ISP account, click on the check box for (see note). Enable ISP Account Creation " The “ISP Account Creation” option can be used only when RADIUS is enabled.
Page 98: Managing Smtp Redirection {Smtp
™ NIVERSAL UBSCRIBER ATEWAY Managing SMTP Redirection {SMTP} When SMTP redirection is enabled (for misconfigured or properly configured subscribers), the USG redirects the subscriber’s E-mail through a dedicated SMTP server. To the subscriber, sending E-mail is as easy as it’s always been. This function is transparent to subscribers.
Page 99: Managing The Snmp Communities {Snmp
™ NIVERSAL UBSCRIBER ATEWAY Managing the SNMP Communities {SNMP} You can address the USG using an SNMP client manager (for example, HP OpenView). SNMP is the standard protocol that regulates network management over the Internet. To do this, you must set up the SNMP communities and identifiers. For more information about SNMP, see “Using an SNMP Manager”...
Page 100 ™ NIVERSAL UBSCRIBER ATEWAY Enter the SNMP parameters (communities and identifiers), including: System Contact ! ! ! ! System Location ! ! ! ! Get (Read) Community ! ! ! ! Set (Write) Community ! ! ! ! Trap Community ! ! ! ! Trap Recipient IP ! ! ! !
Page 101: Displaying Your Configuration Settings {Summary
™ NIVERSAL UBSCRIBER ATEWAY Displaying Your Configuration Settings {Summary} You can display a summary listing of all your current Configuration settings. To view the summary listing, go to the Web Management Interface, click on , then click on Configuration Summary. The Summary of Configuration Settings screen appears (partial screen only shown here): More listings ...
Page 102: Setting The System Date And Time {Time
™ NIVERSAL UBSCRIBER ATEWAY Setting the System Date and Time {Time} This procedure shows you how to set the system date and time. From the Web Management Interface, click on , then Configuration Time. The Set Date and Time screen appears: If required, enter the new date and time parameters in the relevant fields: Year (####) ! ! ! !
Page 103 ™ NIVERSAL UBSCRIBER ATEWAY As an optional feature, the USG allows you to enter a “Time from UTC.” This parameter is the Universal Coordinated Tim, based on the ISO 8601standard, and is used in conjunction with RADIUS servers (for example, if the RADIUS server is setup for a time zone that is different from the USG).
Page 104: Url Filtering {Url Filtering
™ NIVERSAL UBSCRIBER ATEWAY URL Filtering {URL Filtering} The USG can restrict access to specified Web sites based on URLs defined by the system administrator. URL filtering will block access to a list of sites and/or domains entered by the administrator using the following three methods: Host IP address (for example, 1.2.3.4) Host DNS name (for example, www.yahoo.com) DNS domain name (for example, *.yahoo.com, meaning all sites under the...
Page 105: Network Info Menu
™ NIVERSAL UBSCRIBER ATEWAY Network Info Menu Displaying ARP Table Entries {ARP} You can display a table that shows the current status of the ARP (Address Resolution Protocol) assignments. ARP is used to dynamically bind a high level IP address to a low level physical hardware (MAC) address.
Page 106: Displaying The Host Table {Hosts
™ NIVERSAL UBSCRIBER ATEWAY Displaying the Host Table {Hosts} You can display a table which lists the hosts that are currently configured. This table includes the assigned host names, their corresponding IP addresses, and any aliases that may be assigned to each host. Hosts provide services to other computers that are linked to it by a network.
Page 107: Displaying The Network Interfaces {Interfaces
™ NIVERSAL UBSCRIBER ATEWAY Displaying the Network Interfaces {Interfaces} You can display the network interfaces which are presented as a detailed listing of all interface communication elements and their current status. To view the Network Interfaces, go to the Web Management Interface, click on , then click on Network Info Interfaces.
Page 108: Displaying The Ip Statistics {Ip
™ NIVERSAL UBSCRIBER ATEWAY Displaying the IP Statistics {IP} You can display the IP (Internet Protocol) statistics which are presented as a detailed listing of all IP elements and their current status. With IP transmissions, data is broken up into packets which are then sent over the network. By using IP addressing, Internet Protocol ensures that the data reaches its destination, even though different packets may “pass through”...
Page 109: Displaying The Routing Tables {Routing
™ NIVERSAL UBSCRIBER ATEWAY Displaying the Routing Tables {Routing} You can display the current Routing Tables, including any dynamically generated routes, unreachable routes, or wildcard routes. To view the Routing Tables, go to the Web Management Interface, click on Network , then click on Info Routing.
Page 110: Displaying The Active Ip Connections {Sockets
™ NIVERSAL UBSCRIBER ATEWAY Displaying the Active IP Connections {Sockets} You can display a table which provides a detailed listing of all currently active IP (Internet Protocol) connections. To view the Socket Table, go to the Web Management Interface, click on Network , then click on Info...
Page 111: Displaying Tcp Statistics {Tcp
™ NIVERSAL UBSCRIBER ATEWAY Displaying TCP Statistics {TCP} You can display the TCP (Transmission Control Protocol) statistics which are presented as a detailed listing of all TCP elements and their current status. TCP is a standard protocol that manages data transmissions across networks. To view the TCP Statistics, go to the Web Management Interface, click on Network , then click on...
Page 112: Displaying Udp Statistics {Udp
™ NIVERSAL UBSCRIBER ATEWAY Displaying UDP Statistics {UDP} You can display the UDP (User Datagram Protocol) statistics which are presented as a detailed listing of all UDP elements and their current status. UDP is an Internet standard transport layer protocol. It is a connectionless protocol which adds a level of reliability and multiplexing to the Internet Protocol (IP).
Page 113: Port-Location Menu
™ NIVERSAL UBSCRIBER ATEWAY Port-Location Menu Your product license may not include port-location functionality. Adding and Updating Port-Location Assignments {Add} Port-locations can be assigned at any level (for example, a specific room in a hotel or apartment building, a floor number, wing, or building). There may even be multiple ports assigned to a single room or location.
Page 114: Updating A Port-Location Assignment
™ NIVERSAL UBSCRIBER ATEWAY Enter a location identifier in the field. Locations can be assigned as an Location alpha, numeric, or alpha-numeric value unless a PMS interface is used (see notes). If you are using a PMS interface, ensure that the “Location” field consists only of numbers (no alpha characters or symbols).
Page 115: Deleting All Port-Location Assignments {Delete All
™ NIVERSAL UBSCRIBER ATEWAY Deleting All Port-Location Assignments {Delete All} This procedure shows you how to delete all port-location assignments. The USG displays a warning and prompts you to confirm this action before deleting all the port- locations currently assigned in the system. From the Web Management Interface, click on , then Port-Location...
Page 116: Deleting Port-Location Assignments By Port {Delete By Port
™ NIVERSAL UBSCRIBER ATEWAY In the field, enter the location of the port-location assignment you want Location to delete. " Locations are case-sensitive. Click on the button to delete the specified port-location assignment, or Delete click on the button if you want to reset the “location” value to its blank Reset state.
Page 117: Exporting Port-Location Assignments {Export
™ NIVERSAL UBSCRIBER ATEWAY Exporting Port-Location Assignments {Export} This procedure shows you how to export your current port-location assignments to the “location.txt” file. The location.txt file is stored in: /flash/location.txt (resident in the USG’s flash memory). " Exporting your current port-location assignments to the USG’s flash memory will overwrite the existing location.txt file.
Page 118: Finding Port-Location Assignments By Description {Find By Description
™ NIVERSAL UBSCRIBER ATEWAY Finding Port-Location Assignments by Description {Find by Description} This procedure shows you how to find a port-location assignment, based on its description. This procedure is useful if you want to review the details of a specific port-location.
Page 119: Finding Port-Location Assignments By Location {Find By Location
™ NIVERSAL UBSCRIBER ATEWAY Finding Port-Location Assignments by Location {Find by Location} This procedure shows you how to find a port-location assignment, based on its location. This procedure is useful if you want to review the details of a specific port- location.
Page 120: Finding Port-Location Assignments By Port {Find By Port
™ NIVERSAL UBSCRIBER ATEWAY Finding Port-Location Assignments by Port {Find by Port} This procedure shows you how to find a port-location assignment, based on its location. This procedure is useful if you want to review the details of a specific port- location.
Page 121: Importing Port-Location Assignments {Import
™ NIVERSAL UBSCRIBER ATEWAY Importing Port-Location Assignments {Import} This procedure shows you how to import port-location assignments from the “location.txt” file. The location.txt file is stored in: /flash/location.txt (resident in the USG’s flash memory). " If you have never exported port-location assignments (since installing the USG at this site), the location.txt is empty.
Page 122: Viewing The "Location.txt" File
™ NIVERSAL UBSCRIBER ATEWAY Viewing the “location.txt” File You can click on the “View location.txt” link if you want to view the current contents of the file. Creating a “location.txt” File You can create your own “location.txt” file and upload the file to the USG’s flash memory at [IP address]/flash/location.txt.
Page 123: Displaying The Port-Location Mappings {List
™ NIVERSAL UBSCRIBER ATEWAY Displaying the Port-Location Mappings {List} You can display a listing of all port-locations assigned to this system. To view the listing of port-location assignments, go to the Web Management Interface, click on , then click on Network Info List.
Page 124: Subscriber Administration Menu
™ NIVERSAL UBSCRIBER ATEWAY Subscriber Administration Menu Adding Subscriber Profiles {Add} " AAA Services must be enabled before you can add a subscriber profile into the USG’s internal authorization database. Refer to, “Defining the AAA Services {AAA}” on page This procedure shows you how to add subscriber profiles into a table of authorized users.
Page 125 ™ NIVERSAL UBSCRIBER ATEWAY Choose for this profile. Subscriber Device Define the DHCP Address Type: (only used when the IP Public Private Upsell feature is enabled, otherwise leave this set to “private”). Define the (your license must include proxy ARP Proxy Arp for Device support).
Page 126: Displaying Current Subscriber Connections {Current
™ NIVERSAL UBSCRIBER ATEWAY Displaying Current Subscriber Connections {Current} You can display a listing of all the subscribers currently connected to the system. The list includes the MAC addresses of the subscribers, their active state, the individual expiration times, port numbers (if assigned), and the number of bytes that have been passed from the subscriber to the Internet.
Page 127: Deleting Subscriber Profiles By Mac Address {Delete By Mac
™ NIVERSAL UBSCRIBER ATEWAY Deleting Subscriber Profiles by MAC Address {Delete by MAC} This procedure shows you how to delete a subscriber profile from the USG’s database of authorized subscribers, based on the profile’s MAC address. " To see a current listing of the subscriber database, sorted by MAC addresses, go to “Listing Subscriber Profiles by MAC Address {List by MAC}”...
Page 128: Deleting Subscriber Profiles By User Name {Delete By User
™ NIVERSAL UBSCRIBER ATEWAY Deleting Subscriber Profiles by User Name {Delete by User} This procedure shows you how to delete a subscriber profile from the USG’s database of authorized subscribers, based on the profile’s user name. " To see a current listing of the subscriber database, sorted by user name, go to “Listing Subscriber Profiles by User Name {List by User}”...
Page 129: Displaying The Currently Allocated Dhcp Leases {Dhcp Leases
™ NIVERSAL UBSCRIBER ATEWAY Displaying the Currently Allocated DHCP Leases {DHCP Leases} You can display a listing of the DHCP (Dynamic Host Configuration Protocol) leases that are currently active on the system’s DHCP server. DHCP is a standard method for assigning IP addresses automatically to network devices.
Page 130: Finding Subscriber Profiles By Mac Address {Find By Mac
™ NIVERSAL UBSCRIBER ATEWAY Finding Subscriber Profiles by MAC Address {Find by MAC} This procedure shows you how to find a subscriber profile from the USG’s database of authorized subscribers, based on the profile’s MAC address. Use this procedure when you want to see the statistics corresponding to the MAC address. Statistics include user name and password (if any) and the access time remaining for this subscriber.
Page 131: Finding Subscriber Profiles By User Name {Find By User
™ NIVERSAL UBSCRIBER ATEWAY Finding Subscriber Profiles by User Name {Find by User} This procedure shows you how to find a subscriber profile from the USG’s database of authorized subscribers, based on the profile’s user name. Use this procedure when you want to see the statistics corresponding to the user name.
Page 132: Listing Subscriber Profiles By Mac Address {List By Mac
™ NIVERSAL UBSCRIBER ATEWAY Listing Subscriber Profiles by MAC Address {List by MAC} You can display the currently active database of authorized subscribers, based on MAC addresses. To view the list of Authorized Subscriber Profiles, go to the Web Management Interface, click on , then click on Subscriber Administration...
Page 133: Displaying Current Profiles And Connections {Statistics
™ NIVERSAL UBSCRIBER ATEWAY Displaying Current Profiles and Connections {Statistics} You can view the total number of profiles and connections currently stored in the USG’s database of authorized subscribers. The displayed list includes the number of subscribers currently in the database (Current Table) and a numerical breakdown of how the subscribers can utilize the system (for example, free access, credit card, RADIUS etc.).
Page 134: Subscriber Interface Menu
™ NIVERSAL UBSCRIBER ATEWAY Subscriber Interface Menu Defining the Billing Options {Billing Options} You can define various billing options for use with the Internal Web Server (IWS), based on: Billing plans (0 – 5), including pricing and bandwidth ! ! ! ! Messages displayed to subscribers ! ! ! ! Billing schemes (units of access) and free billing options (free access)
Page 135 ™ NIVERSAL UBSCRIBER ATEWAY Review the billing plans (0 – 5) that are currently active. To view or edit a billing plan, simply click on the button opposite the plan. Show/Change The Internal Billing Options Plan Setup screen appears for the billing plan you selected (Plan A shown here): System Administration...
Page 136 ™ NIVERSAL UBSCRIBER ATEWAY If required, click on the check box to enable (make active) this billing Enable plan. Define a “label” for this billing plan in the field. Label " Each plan must have a unique label, different from other plans. Enter a description for this billing plan in the field.
Page 137 ™ NIVERSAL UBSCRIBER ATEWAY Click on the button to save your changes and establish this billing plan, Submit or click on the button if you want to reset all the values to their previous Reset state. You can click on the button at any time to return to the Internal Back Billing Options Setup (previous) screen.
Page 138 ™ NIVERSAL UBSCRIBER ATEWAY Define the messages you want to present to subscribers, including: Introduction Message ! ! ! ! Offer Message ! ! ! ! Policy Message ! ! ! ! In the field, define the minimum units Minimum Units of Access to Purchase of access that subscribers must purchase.
Page 139: Setting Up The Information And Control Console {Icc Setup
Setting Up the Information and Control Console {ICC Setup} Your product license may not include this feature. The Nomadix Information and Control Console (ICC) is a JAVA™ pop-up window that is presented to subscribers, allowing them to select their bandwidth and billing plan options quickly and efficiently, and displays a dynamic “time”...
Page 140 ™ NIVERSAL UBSCRIBER ATEWAY From the Web Management Interface, click on , then Subscriber Interface Setup The ICC Setup screen appears: Click here if you want to assign banners If you want subscribers to see the ICC (pop-up window), click on the check box to enable this feature.
Page 141: Assigning Buttons
™ NIVERSAL UBSCRIBER ATEWAY You must now decide what you want the ICC to do if the subscriber closes it. The following options are available: Redisplay itself ! ! ! ! (return the subscriber to a “pending” state) – with RADIUS Logout ! ! ! ! only (not recommended).
Page 142: Assigning Banners
™ NIVERSAL UBSCRIBER ATEWAY Assigning Banners From the Subscriber Console (Information and Control Console - ICC) Setup screen, click on the link. Configure Banners The Subscriber Console (Information and Control Console - ICC) Banners Setup screen appears: Click here to return to the previous screen You can display up to 5 (five) banners, but they must be defined here.
Page 143: Pixel Sizes
™ NIVERSAL UBSCRIBER ATEWAY Pixel Sizes " Before you can load new button or banner images, you must create a ZIP file called “images.zip” and FTP the file to the USG’s flash directory (for example, [IP address]/flash/). All images placed in the zip file must have the same names as the names you used in the “Image Name”...
Page 144: Defining Languages {Language Support
™ NIVERSAL UBSCRIBER ATEWAY Defining Languages {Language Support} The USG allows you to freely define the text that is displayed by the Internal Web Server to your users, without the need for any HTML or ASP expertise. The language you select here will determine the language encoding that the USG’s Internal Web Server will instruct the browser to use.
Page 145: Information And Control Console (Sample)
If sufficient space is available, the USG’s Internal Web Server also supports multiple languages at the same time. The following sample images show the Nomadix™ Information & Control Console (ICC), the Web Management Interface (WMI), and the subscriber’s login page displayed with Asian language characters.
Page 146: Web Management Interface (Sample)
™ NIVERSAL UBSCRIBER ATEWAY Web Management Interface (Sample) System Administration...
Page 147: Defining The Subscriber's Login Ui {Login Ui
™ NIVERSAL UBSCRIBER ATEWAY Defining the Subscriber’s Login UI {Login UI} This procedure allows you to set up the presentation and content of the subscriber’s login User Interface (UI). From the Web Management Interface, click on , then Subscriber Interface Login The Subscriber Login User Interface Settings screen appears: System Administration...
Page 148 ™ NIVERSAL UBSCRIBER ATEWAY Define the messages you want subscribers to see when they log in. Keep messages brief and to the point. Available message categories include: Service Selection Message ! ! ! ! Existing Username Message ! ! ! ! New Username Message ! ! ! ! Contact Message...
Page 149 ™ NIVERSAL UBSCRIBER ATEWAY " You can view a grid of acceptable screen colors. To view the grid, simply click on the “View Color Grid” link. If you click on the “View Color Grid” link, the Browser Safe Background Colors by RGB screen appears (partial view only shown here): More colors ...
Page 150: Subscriber Login Screen (Sample)
™ NIVERSAL UBSCRIBER ATEWAY Subscriber Login Screen (Sample) The following sample shows a subscriber login screen (with RADIUS and credit card services enabled): System Administration...
Page 151 ™ NIVERSAL UBSCRIBER ATEWAY Defining Subscriber UI Buttons {Subscriber Buttons} This procedure allows you to define how each of the control buttons are displayed to subscribers. From the Web Management Interface, click on , then Subscriber Interface Subscriber Buttons. The Subscriber Page -- Control Button Definitions screen appears: Caution Only the button can be named “Login.”...
Page 152: Defining Subscriber Ui Labels {Subscriber Labels
™ NIVERSAL UBSCRIBER ATEWAY Defining Subscriber UI Labels {Subscriber Labels} This procedure allows you to define how the user interface (UI) field labels are displayed to subscribers. From the Web Management Interface, click on , then Subscriber Interface Subscriber Labels. The Subscriber Page -- Field Label Definitions screen appears: Enter the definitions you want for each label in the corresponding fields.
Page 153: Defining Subscriber Error Messages {Subscriber Errors
™ NIVERSAL UBSCRIBER ATEWAY Defining Subscriber Error Messages {Subscriber Errors} This procedure allows you to define how error messages are displayed to subscribers. " There are 2 (two) pages of error messages available. From the Web Management Interface, click on , then Subscriber Interface Subscriber Errors, 1 of 2.
Page 154 ™ NIVERSAL UBSCRIBER ATEWAY Enter the definitions you want for each error message in the corresponding fields. Click on the button to save your changes, or click on the button if Submit Reset you want to reset all the values to their previous state. If you want to reset all field values to their default state, click on the Revert button.
Page 155: Defining Subscriber Messages {Subscriber Messages
™ NIVERSAL UBSCRIBER ATEWAY Defining Subscriber Messages {Subscriber Messages} This procedure allows you to define how “other” subscriber messages are displayed. " There are 3 (three) pages of subscriber messages available. From the Web Management Interface, click on , then Subscriber Interface Subscriber Messages, 1 of 3.
Page 156 ™ NIVERSAL UBSCRIBER ATEWAY Enter the definitions you want for each subscriber message in the corresponding fields. Click on the button to save your changes, or click on the button if Submit Reset you want to reset all the values to their previous state. If you want to reset all field values to their default state, click on the Revert button.
Page 157 ™ NIVERSAL UBSCRIBER ATEWAY Repeat Steps 1 – 3 for page 3 of 3 (see following screen): System Administration...
Page 158: System Menu
™ NIVERSAL UBSCRIBER ATEWAY System Menu Adding an ARP Table Entry {ARP Add} ARP (Address Resolution Protocol) is used to dynamically bind a high level IP address to a low level physical hardware (MAC) address. ARP is limited to a single physical network that supports hardware broadcasting.
Page 159: Deleting An Arp Table Entry {Arp Delete
™ NIVERSAL UBSCRIBER ATEWAY Deleting an ARP Table Entry {ARP Delete} ARP (Address Resolution Protocol) is used to dynamically bind a high level IP address to a low level physical hardware (MAC) address. ARP is limited to a single physical network that supports hardware broadcasting. This procedure shows you how to delete an ARP table entry.
Page 160: Enabling The Bridge Mode Option {Bridge Mode
™ NIVERSAL UBSCRIBER ATEWAY Enabling the Bridge Mode Option {Bridge Mode} Bridge Mode allows complete and unconditional access to devices on the subscriber side of the USG. When the Bridge Mode option is enabled, the USG is effectively transparent to the network in which it is located, allowing clusters of switches (especially Cisco Systems switch clusters) to be managed using the STP (Spanning Tree Protocol), or any other algorithm/protocol.
Page 161: Exporting Configuration Settings To The Archive File {Export
™ NIVERSAL UBSCRIBER ATEWAY Exporting Configuration Settings to the Archive File {Export} This procedure shows you how to export the current system configuration settings to an archive file for future retrieval. This function is useful if you want to change the configuration settings and you are unsure of the effect that the changes will have.
Page 162: Importing The Factory Defaults {Factory
™ NIVERSAL UBSCRIBER ATEWAY Importing the Factory Defaults {Factory} This procedure shows you how to replace the current configuration settings with the settings that were established at the factory. " If you restore the factory default configuration settings, you will no longer be able to access the USG remotely.
Page 163: Viewing The History Log {History
™ NIVERSAL UBSCRIBER ATEWAY Viewing the History Log {History} You can view a history log of the system’s Access, Reboot, and Uptime activities. The history log contains up to 500 entries. Over 500 entries and each new log item removes the oldest entry in the list. The latest entry is always at the top of the list. To view the history log, go to the Web Management Interface and click on System then...
Page 164: Importing Configuration Settings From The Archive File {Import
™ NIVERSAL UBSCRIBER ATEWAY Importing Configuration Settings from the Archive File {Import} This procedure shows you how to restore the system configuration settings from an archive file (previously created with the export function). The archived configuration settings you want to restore may not contain valid IP addresses.
Page 165: Establishing Login Access Levels {Login
™ NIVERSAL UBSCRIBER ATEWAY Establishing Login Access Levels {Login} This procedure shows you how to assign differentiated access levels for operators and managers at login, and manager login control for remote RADIUS testing (if RADIUS is enabled). The USG allows you to define 2 concurrent access levels to differentiate between managers and operators, where managers are permitted read/write access and operators are restricted to read access only.
Page 166 ™ NIVERSAL UBSCRIBER ATEWAY Click on the check box for if you want to assign Administration Concurrency concurrent Manager and Operator logins. In the field, enter a login name for this manager. Manager Login " Login names and passwords are case-sensitive. Use login names and passwords that are easy to remember (up to 11 characters, any character type).
Page 167: Testing A Remote Host {Ping
™ NIVERSAL UBSCRIBER ATEWAY Managers Only: If you entered a login name in Step 7, enter a password in the field. Radius Remote Test Password Managers Only: Click on the button to save the login and password Submit parameters, or click on the button if you want to reset all the values to their Reset previous state.
Page 168: Rebooting The System {Reboot
™ NIVERSAL UBSCRIBER ATEWAY Rebooting the System {Reboot} This procedure shows you how to reboot the USG. " The “reboot” procedure outlined on this page allows you to decide when to reboot (if you are making multiple changes to different menu functions and you want to reboot just one time after completing all your changes).
Page 169: Adding A Route {Route Add
™ NIVERSAL UBSCRIBER ATEWAY Adding a Route {Route Add} This procedure shows you how to add a route into the USG’s routing table. This is accomplished by establishing the route’s destination IP address, and by setting the gateway or router IP address by which the route’s destination can be reached. From the Web Management Interface, click on , then System...
Page 170: Deleting A Route {Route Delete
™ NIVERSAL UBSCRIBER ATEWAY Deleting a Route {Route Delete} This procedure shows you how to delete a route to a specific IP destination. From the Web Management Interface, click on , then System Route Delete. The Delete Static Routes screen appears: Enter the address of the route you want to delete from the routing Destination IP...
Page 171: Updating The Usg Firmware {Upgrade
™ NIVERSAL UBSCRIBER ATEWAY Updating the USG Firmware {Upgrade} Upgrading the USG firmware is performed from the USG’s Command Line Interface (CLI) only (unless you have purchased our Centralized Management System USG). The Firmware Upgrade Procedure is contained on your USG “Accessories” CD- ROM.
Page 172 ™ NIVERSAL UBSCRIBER ATEWAY Notes Use this page for your notes. System Administration...
Page 173: Chapter 3: The Subscriber Interface
™ NIVERSAL UBSCRIBER ATEWAY The Subscriber Interface This chapter provides an overview and a sample scenario for the USG’s Subscriber Interface. It also includes a section outlining the authorization and billing processes utilized by the system, and a section on the Information and Control Console (ICC). Overview The Subscriber Interface is the window to the solution provider’s Web site, and much more than that.
Page 174: A Subscriber Interface Scenario
™ NIVERSAL UBSCRIBER ATEWAY A Subscriber Interface Scenario The following scenario assumes that the USG is connected to a hotel’s broadband network and is set up to use an external Web server. The screens illustrated in this scenario are samples only, but they reflect the features and functionality of a typical solution provider.
Page 175: Creating An Account
™ NIVERSAL UBSCRIBER ATEWAY Creating an Account You must now choose the level of service you require and set up an account that you can be billed against. " If you already have an account, you will need to provide your existing user name and password to authenticate you on the system.
Page 176: Confirmation
™ NIVERSAL UBSCRIBER ATEWAY Confirmation If your billing data is authenticated and approved, you are provided with a confirmation. Click here to continue The Subscriber Interface...
Page 177 ™ NIVERSAL UBSCRIBER ATEWAY It’s that Easy! You are now authorized and will find that you have full high speed access to the Internet, as well as all the other services shown on the solution provider’s portal page. The Subscriber Interface...
Page 178: Authorization And Billing
™ NIVERSAL UBSCRIBER ATEWAY Authorization and Billing As a gateway device, the USG enables plug-and-play access to broadband networks. Broadband network solution providers can now offer their subscribers a wide range of high speed services, including access to the Internet. Of course, a high speed Internet connection is not free –...
Page 179: The Aaa Structure
™ NIVERSAL UBSCRIBER ATEWAY The AAA Structure The USG’s Authentication, Authorization, and Accounting (AAA) module enables the solution provider to provision, track, and bill new or returning subscribers. This includes: Allowing the solution provider (for example, a hotel) to bill its guests for the ! ! ! ! high speed network services it provides, track usage on the network, and deny service to those guests who have not paid.
Page 180 ™ NIVERSAL UBSCRIBER ATEWAY The Authentication module is responsible for ensuring that when subscribers log in to the system they are correctly identified. It can identify subscribers in many different ways. For example: Based on their hardware (MAC) address. ! ! ! ! By validating their user name and password.
Page 181: Process Flow (Aaa)
™ NIVERSAL UBSCRIBER ATEWAY Process Flow (AAA) The following flowchart outlines the AAA and billing process. All actions depicted in the chart are administered and tracked by the USG. USG detects connection and verifies user against authorization table New User Existing Subscriber Login Page Specify lease time...
Page 182: Internal And External Web Servers
™ NIVERSAL UBSCRIBER ATEWAY Internal and External Web Servers The USG supports both internal and external Web servers which act as a login interface between subscribers and the solution provider’s network, including the Internet. The internal Web server is “flashed” into the system’s memory and the login page is served directly from the USG.
Page 183: Subscriber Management Models
™ NIVERSAL UBSCRIBER ATEWAY Subscriber Management Models The system administrator establishes the subscriber management model via the Command Line Interface (CLI) or the Web Management Interface. These models can be changed while the USG is running (without rebooting or interrupting the service). Free Access –...
Page 184: Configuring The Subscriber Management Models
™ NIVERSAL UBSCRIBER ATEWAY Configuring the Subscriber Management Models Model What You Need To Do Free access Disable the AAA services. MAC address Enable the AAA services and add a subscriber profile to the database for each MAC address you want to enable. Port-ID (port-location) Enable the AAA services and add port-location mapping for each VLAN tag, specifying the location it...
Page 185: Information And Control Console (Icc)
™ NIVERSAL UBSCRIBER ATEWAY Information and Control Console (ICC) The Information and Control Console (ICC) is a JAVA™ pop-up window that is presented to subscribers, allowing them to select their bandwidth and billing options quickly and efficiently, and displays a dynamic “time” field to inform them of the time remaining on their account.
Page 186 ™ NIVERSAL UBSCRIBER ATEWAY Notes Use this page for your notes. The Subscriber Interface...
Page 187: Chapter 4: Quick Reference Guide
™ NIVERSAL UBSCRIBER ATEWAY Quick Reference Guide This chapter contains product reference information, organized by topic. Use this chapter to locate the information you need quickly and efficiently. Web Management Interface (WMI) Menus The following tables contain a listing and brief explanation of all menus and menu items contained in the USG’s Web Management Interface (WMI), listed as they appear on screen.
Page 188: Configuration Menu Items
Configures the USG to send copies of billing records to external servers. Centralized Management The NOMADIX™ Centralized Management System (CMS) application allows system administrators to upgrade the firmware for all USG products on their customer’s network from a centralized user interface.
Page 189 ™ NIVERSAL UBSCRIBER ATEWAY Item Description Meeting Room Scheduler Allows subscribers to reserve conference rooms and pay for their Internet access in advance. This feature is optional, provided as a stand-alone application delivered on CD-ROM. Misc Establishes any miscellaneous settings (for example, defining a new partner image and setting the PPTP parameters.
Page 190: Network Info Menu Items
™ NIVERSAL UBSCRIBER ATEWAY Network Info Menu Items Item Description Displays the ARP table, including the destination IP address and the gateway MAC address. Displays the DAT session table. Hosts Displays the host table, including host names, associated IP addresses and any assigned aliases. ICMP Displays the ICMP (Internet Control Message Protocol) performance statistics.
Page 191: Port-Location Menu Items
™ NIVERSAL UBSCRIBER ATEWAY Port-Location Menu Items Items Description Allows you to add or update port-location assignments. Delete All Deletes all port-location assignments. Use this command with caution. Delete by Location Deletes port-location assignments, based on a specified location. Delete by Port Deletes port-location assignments, based on a specified port (VLAN tag).
Page 192: Subscriber Administration Menu Items
™ NIVERSAL UBSCRIBER ATEWAY Subscriber Administration Menu Items Items Description Allows you to add subscriber profiles to the database. Current Displays a list of all currently connected subscribers. Delete by MAC Allows you to delete a subscriber, based on a specific MAC address.
Page 193: Subscriber Interface Menu Items
™ NIVERSAL UBSCRIBER ATEWAY Subscriber Interface Menu Items Items Description Billing Options Establishes the various billing plans and rates (schemes), including messages and appearance, and allows you to set the bandwidth ranges for each plan. ICC Setup Allows you to set up the Information and Control Console (ICC) for subscribers.
Page 194: System Menu Items
Upgrade Allows you to upgrade the USG firmware to a newer level. Unless you are using the NOMADIX™ Centralized Management System (CMS), firmware upgrades must be performed from the Command Line Interface (CLI). For more information, and to obtain the latest Firmware Upgrade procedure, contact our Technical Support staff.
Page 195: Alphabetical Listing Of Menu Items (Wmi)
™ NIVERSAL UBSCRIBER ATEWAY Alphabetical Listing of Menu Items (WMI) Item Description Menu AAA ........Set AAA options ..............Configuration Access Control ..... Enables secure administration of the USG......Configuration Add........Add or update port-location assignments ......Port-Location Add........Add subscriber profiles to the database......Subscriber Admin ARP ........
Page 196 ™ NIVERSAL UBSCRIBER ATEWAY Alphabetical Listing (continued) Item Description Menu Login ........Establish access for managers and operators ..... System Login UI....... Establish the internal login screen settings......Subscriber I’face Meeting Room Scheduler..Allows subscribers to reserve conference rooms ....Configuration Misc........
Page 197: Default (Factory) Configuration Settings
MAC address is unique for each product Network Interface IP 10.0.0.10 Subscriber IP 10.0.0.11 Subnet Mask 255.255.255.0 Default Gateway IP 10.0.0.1 Domain nomadix. Host Name Primary DNS 0.0.0.0 Secondary DNS 0.0.0.0 Tertiary DNS 0.0.0.0 DHCP Relay Disabled External DHCP Server IP 0.0.0.0...
Page 198 SNMP Disabled SNMP Get Community public SNMP Set Community private SNMP Trap IP 0.0.0.0 Information & Control Console (ICC) Disabled ICC Title Nomadix Information and Control Console System Administration Login User Name admin System Administration Password admin Quick Reference Guide...
Page 199: Product Specifications
™ NIVERSAL UBSCRIBER ATEWAY Product Specifications Item Specifications Users Maximum of 2,000 users concurrently Throughput 39 Mbps* *As defined by RFC1242, Section 3.17 Mounting 2U rack space in a 19” rack Operating Voltage 100 - 260 VAC, 50/60 Hz Power Consumption 60 Watts Environmental Ambient temperature: 0°...
Page 200: Sample Aaa Log
Time Log Code Log Message tion Name of Data Address Time 18:23:10 nomad237 INFO USG_AAA: AAA_Authentication Successful 00:00:0E:32:2C:BC 2 hrs .nomadix 4207 1 min .com 18:23:26 nomad237 INFO USG_AAA: AAA_Authentication Successful 00:10:5A:61:40:FF 12 hrs .nomadix 4207 0 min .com 18:21:53...
Page 201: Sample Syslog Report
™ NIVERSAL UBSCRIBER ATEWAY Sample SYSLOG Report Syslog reports are generated by the USG and sent to the syslog server that is assigned to general error detection and reporting. Sample History Log A history log is generated by the USG which includes the system’s activity (Access, Reboot and Uptime).
Page 202: Keyboard Shortcuts
™ NIVERSAL UBSCRIBER ATEWAY Keyboard Shortcuts The following table shows the most common keyboard shortcuts. Action Keyboard Shortcut Cut selected data and place it on the clipboard. Ctrl + X Copy selected data to the clipboard. Ctrl + C Paste data from the clipboard into a document (at the Ctrl + V insertion point).
Page 203: Radius Attributes
RADIUS server can tell the USG what upstream and downstream bandwidth the subscriber should receive. If RADIUS cannot authenticate the subscriber, it will instruct the NAS to deny access to the network. The Nomadix USG RADIUS functionality can be broken down into the following categories: Authentication-Request...
Page 204: Authentication-Request
! ! ! ! EAP-Packet (used for 802.1x) ! ! ! ! Message-Authenticator (used for 802.1x) ! ! ! ! Acct-Interim-Interval ! ! ! ! Nomadix VSAs: ! ! ! ! - Nomadix-Bw-Up - Nomadix-Bw-Down - Noamdix-URL-Redirection - Nomadix-IP-Upsell - Nomadix-Expiration...
Page 205: Accounting-Request
Acct-Input-Octets ! ! ! ! Acct-Output-Packets ! ! ! ! Acct-Input-Packets ! ! ! ! Class ! ! ! ! Nomadix VSAs: ! ! ! ! - Nomadix-Bw-Up - Nomadix-Bw-Down - Noamdix-URL-Redirection - Nomadix-IP-Upsell - Nomadix-Expiration Acct-Session-Time (Stop) ! ! ! !
Page 206 ™ NIVERSAL UBSCRIBER ATEWAY Idle Timeout The WMI allows the setting of a default timeout. If the Radius server does not send an Idle-Timeout in the Radius Access-Accept, the USG will use the default one to disconnect subscribers. "0" means forever. Timeout Detection If a subscriber is sending traffic through the USG, the USG will immediately detect a Session-Timeout.
Page 207: Nomadix Vendor Specific Attributes
You must purchase the SSL feature which is enabled through a license key from Nomadix. If you did not purchase the SSL feature, the SSL option in the USG™ platform's Web Management Interface (WMI) will still be present, but you will not able to enable the feature.
Page 208: Obtain A Private Key File (Cakey.pem)
Downloading Cygwin There are several sources for obtaining "Cygwin" to install OpenSSL. One popular source is: http://sources.redhat.com/cygwin/. " Nomadix used Cygwin version 1.3.2 for generating this section of the User’s Guide. Installing Cygwin and OpenSSL on a PC " The example in this document is based on downloading the software with Netscape 4.75.
Page 209 ™ NIVERSAL UBSCRIBER ATEWAY The following screen appears: Click on the button to display the next setup screen. Next Click on the button to display the next setup screen. Next Quick Reference Guide...
Page 210 Next Click on the button to display the next setup screen. Next Select a location and click on the button. Next " For the purposes of this document, Nomadix used: ftp://planetmirror.com. Quick Reference Guide...
Page 211 ™ NIVERSAL UBSCRIBER ATEWAY In the following screens, please skip all packages except "cygwin" and "openssl," then click on the Next when you are done. " At the time of this writing, there are more than 70 packages to install. Please ensure that you "skip"...
Page 212: Private Key Generation
™ NIVERSAL UBSCRIBER ATEWAY Click on the button to start the “download” process. Wait for the download Next process to complete. Click on the button to start the “install” process. Wait for the install process to Next complete. There will be a pop-up dialog to inform you that the installation process is completed. At the pop-up dialog, click on the button.
Page 213 ™ NIVERSAL UBSCRIBER ATEWAY Run the "command" prompt from Windows, then click on the button. Go to the c:\cygwin\bin\ directory and run the following command: >openssl genrsa -rand file1:file2:file3:file4:file5 1024 > cakey.pem The following table provides an explanation of the command elements: openssl "openssl"...
Page 214 ™ NIVERSAL UBSCRIBER ATEWAY Because there is a parameter buffer size limitation of the "openssl" command, the argument length should not have more than 80 characters. If you are creating multiple keys, please output them into different directories and save them as different names. However, if you saving them as a different namse, you must change the names back to "cakey.pem"...
Page 215: Create A Certificate Signing Request (Csr) File
™ NIVERSAL UBSCRIBER ATEWAY Create a Certificate Signing Request (CSR) File Run the following command to generate the certificate signing request: >openssl req -new -key cakey.pem > server.csr The following table provides an explanation of the command elements: openssl "openssl" command A parameter for creating a request Defining a "new"...
Page 216: Create A Public Key File (Server.pem)
™ NIVERSAL UBSCRIBER ATEWAY Here is the output of server.csr: Create a Public Key File (server.pem) VeriSign Purchasing Process The signing process varies by Certificate Authority. Generally, you will need to send a Certificate Signing Request to the Certificate Authority (CA) and the CA will create a public key base on the certificate request.
Page 217 Some older versions of popular browsers only support 40-bit or 56-bit encryption. Since it impossible to forecast the browsers that may be used in a visitor-based network, Nomadix recommends implementing a 40-bit Public Key. During the process, VeriSign will ask for your business information and verification.
Page 218 ™ NIVERSAL UBSCRIBER ATEWAY CSR Submission to VeriSign Please select "Apache Freeware" to submit the CSR to VeriSign. The Certificate Signing Request is in the server.csr (created in the previous step). Open server.csr and copy and paste all data into the edit box. Select the purchase method and summit the required contact information.
Page 219: Setting Up Usg™ For Ssl Secure Login
™ NIVERSAL UBSCRIBER ATEWAY The file, "server.pem" will look like this: You have now finished the process of obtaining a public key. Setting Up USG™ for SSL Secure Login FTP the "cakey.pem" and "server.pem" files into the USG platform's flash directory. FTP to the USG™...
Page 220: Setting Up The Portal Page
This document describes the process used by the Nomadix Universal Subscriber Gateway for mirroring billing records, and is organized into the following sections: Sending billing records...
Page 221: Sending Billing Records
™ NIVERSAL UBSCRIBER ATEWAY Sending Billing Records When there is a message (billing record) in the message queue, the system "wakes up" and performs the following tasks: Stores the billing record in the flash Create an XML packet, based on the new billing record Send the billing record to the carbon copy server(s) Transmit the data currently stored in the flash, based on the specified retransmission method (round-robin: A-B-A-B, or fail-over: A-A-B-B)
Page 222 ™ NIVERSAL UBSCRIBER ATEWAY Format for each field: REC_NUM: 00923 (numbers only, no alpha characters) USG_ID: 00020b PROPERTY_ID: Any regular string DATE: 03/30/2001 (mm/dd/yyyy) TIME: 23:41:38 (24 hour format) ROOM_NUM: Any regular string AMOUNT: 234.34 TRANS_TYPE: PMS or CC SIGNATURE: Encrypted signature for authentication RESULT_VALUE: OK or ERROR...
Page 223 ™ NIVERSAL UBSCRIBER ATEWAY External Server to USG: <USG COMMAND="RMTLOG_ACK"> <ACK_VALUE>RESULT_VALUE</ACK_VALUE> <IP_ADDR>Server IP</IP_ADDR> <ERROR_CODE>ERROR_CODE</ERROR_CODE> </USG> Example of a Positive Acknowledgement: <USG COMMAND="RMTLOG_ACK"> <ACK_VALUE>OK</ACK_VALUE> <IP_ADDR>11.22.33.44</IP_ADDR> <ERROR_CODE>1</ERROR_CODE> </USG> Example of a Negative Acknowledgement: <USG COMMAND="RMTLOG_ACK"> <ACK_VALUE>ERROR</ACK_VALUE> <IP_ADDR>11.22.33.44</IP_ADDR> <ERROR_CODE>5</ERROR_CODE> </USG> Format for each Field: RESULT_VALUE: OK or ERROR Standard IP format (123.123.123.123)
Page 224: Web Management Interface (Wmi)
™ NIVERSAL UBSCRIBER ATEWAY Web Management Interface (WMI) To configure the USG for billing records mirroring functionality, go to the Configuration menu, then Bill Record Mirroring. Enable/Disable Mirroring: Enable CC/PMS mirroring Enter a Property ID: (this is the property ID sent by the USG). Quick Reference Guide...
Page 225 ™ NIVERSAL UBSCRIBER ATEWAY Primary and Secondary Servers: Enter the Primary Server information: This field must contain the Primary Server IP address. This field is optional. If the URL is not entered, the USG simply sends the XML packet to the server's IP on the selected port. The system administrator decides if the server will "listen"...
Page 226 ™ NIVERSAL UBSCRIBER ATEWAY Failsafe Provisions: Select Retransmit Method: Alternate: (This is the "round-robin" method-ABAB). Do Not Alternate: (This is the "fail-over" method-AABB). Enter the number of retransmission attempts: Number of Retransmit Attempts: (The value entered in this field defines how many times the USG transmits the billing record before determining that the transmission has failed).
Page 227: Chapter 5: Troubleshooting
™ NIVERSAL UBSCRIBER ATEWAY Troubleshooting This chapter provides information to help you resolve common hardware and software problems. It also contains a list of known error messages associated with the Management Interface. General Hints and Tips The USG is both a hardware device and a powerful software utility. As a hardware computing device, the USG requires careful handling.
Page 228: Management Interface Error Messages
™ NIVERSAL UBSCRIBER ATEWAY Management Interface Error Messages The following table contains the error messages associated with the Management Interface (CLI and Web). All messages are listed alphabetically. Error Message Cause AAA must be enabled before adding a You are attempting to add a subscriber subscriber to the profile database.
Page 229 When upgrading the software, the system must FTP a valid boot image to the flash. needs the new boot image file. You must FTP the file from NOMADIX™ to your local hard drive. Warning: no DHCP services are available This message is displayed because you to subscribers.
Page 230: Replacing The Fuse
™ NIVERSAL UBSCRIBER ATEWAY Replacing the Fuse This procedure shows you how to replace the unit’s internal fuse. Disconnect the power cord. Use a small flat blade screwdriver to pry open the fuse holder door on the rear panel. Remove the fuse holder. The system’s 4-amp mini fuse is located on the underside of the fuse holder between the clips at the inboard end of the holder (see illustration).
Page 231: International Power Conversion
™ NIVERSAL UBSCRIBER ATEWAY International Power Conversion This procedure is provided to assist you when you need to convert the USG power switch from 115V to 230V (this covers the range of voltage from 200 – 260V). Procedure Disconnect the power cord. Retain the cord for future use at the lower voltage (if you need to convert back to 115V).
Page 232: Common Problems
NIVERSAL UBSCRIBER ATEWAY Common Problems If you are having problems, you may find the answers here. An updated version of this list can be found at: http://www.nomadix.com/techsup. Problem Possible Cause Solution When using the internal The internal AAA login Enable communications...
Page 233: Fault Light
™ NIVERSAL UBSCRIBER ATEWAY Problem Possible Cause Solution When a subscriber logs in Home page redirection is Enable home page for the first time, their not enabled in the USG. redirection. browser is not redirected to The home page URL was Re-enter the correct URL.
Page 234 ™ NIVERSAL UBSCRIBER ATEWAY Notes Use this page for your notes. Troubleshooting...
Page 235: Appendix: Technical Support
Technical Support We have tried to ensure that you get the most up-to-date information available about the Universal Subscriber Gateway, and we hope this User’s Guide has met all your operational and performance needs. However, we understand that occasionally you may run into problems that require additional technical support.
Page 236 ™ NIVERSAL UBSCRIBER ATEWAY Notes Use this page for your notes. Technical Support...
Page 237: Glossary Of Terms
Adaptive Configuration Technology A Nomadix, Inc. patented technology that enables Dynamic Address Translation. See also, DAT. ADSL (Asynchronous Digital Subscriber Line) A method for moving data at high speed over regular phone lines.
Page 238 (permanent) IP addresses, or subscribers that do not have DHCP functionality on their computers. DAT is a Nomadix, Inc. patented technology that allows all users to obtain network access, regardless of their computer’s network settings. See also, DHCP.
Page 239 ™ NIVERSAL UBSCRIBER ATEWAY ECommerce A business venture between a supplier and its customers using online services (for example, the Internet). Both parties use online services to conduct business transactions. Transactions may include generating orders, invoices, and payments, and submitting inquiries. Also known as Enterprise. Enterprise See ECommerce.
Page 240 ™ NIVERSAL UBSCRIBER ATEWAY Home Page Usually the first page users see when they visit a Web site (if they address the home page’s URL). A well constructed Web site will normally consist of a home page that provides a clear and concise overview of the entire Web site, together with the tools for accessing other pages and topics quickly and efficiently.
Page 241 ™ NIVERSAL UBSCRIBER ATEWAY Internet Service Provider The agency that provides you with access to the Internet. Your Internet Service Provider (ISP) may be a large commercial organization (for example, America Online) or, if you access the Internet via your employer, then your employer is your Internet Service Provider.
Page 242 SNMP agent with a properly defined MIB. See also, SNMP. Misconfigured User A Nomadix, Inc. term used to describe users who have IP address configurations that are different from the current network. For example, if the current network is 123.45.67.89 but the user’s IP address is 10.10.10.15, then this user is considered to be “misconfigured.”...
Page 243 ™ NIVERSAL UBSCRIBER ATEWAY Packet Switching Network Refers to protocols in which messages are divided into packets before they are sent. Each packet is then transmitted individually and can even follow different routes to its destination. Once all the packets forming a message arrive at its destination, they are recompiled into the original message.
Page 244 ™ NIVERSAL UBSCRIBER ATEWAY Protocol A standard process consisting of a set of rules and conditions that regulates data transmissions between computing devices. Some examples of protocols include HTTP (HyperText Transfer Protocol), FTP (File Transfer Protocol), TCP/IP (Transmission Control Protocol/Internet Protocol), and POP (Post Office Protocol).
Page 245 Normally, a solution provider is offering a solution that isn’t readily available on the open market. For example, NOMADIX™ is a solution provider to its customers (broadband network service providers), and those customers are solution providers to their end users (network subscribers). See also, Solution.
Page 246 The net data transfer rate between an information source and its destination, using the maximum packet size without loss. Throughput is expressed as Megabits per second (Mbps). At the time of this writing, the specific rate for “throughput” for the Universal Subscriber Gateway is 39 Mbps, as defined by RFC1242, Section 3.17. See also,...
Page 247 Internet. This is effectively the “address” of a document or file, expressed in the form: protocol://domain.filename/path.type (for example, http://www.myfile.com/nextpage.html). (Universal Subscriber Gateway) A product from Nomadix, Inc. that solves IP addressing problems in environments where the network service provider does not have control over the subscriber’s network settings or parameters.
Page 248 HTML. For example, XML supports links that point to multiple documents, as opposed to HTML links, which can reference just one destination each. For the Nomadix Universal Subscriber Gateway, XML is used by the USG’s subscriber management module for port location and user administration.
Page 249: Index
™ NIVERSAL UBSCRIBER ATEWAY Index authorization and billing setting options automatic message definitions billing log sample security lookup 21, tracking process flow automatic user tracking services external Web server setting up structure bandwidth an overview management AAA port passthrough bandwidth management about this User’s Guide Bill Record Mirroring 66, Access Control...
Page 250 SNMP manager subscriber DHCP leases telnet client TCP statistics types of UDP statistics Web management Interface contacting NOMADIX pass-through cookie placement server correctly configured primary IP address 50, SMTP support secondary IP address 50, Current setting (CLI)
Page 251 ™ NIVERSAL UBSCRIBER ATEWAY internal fuse international Factory replacing fault light internal Web server Find by Desc international power conversion Find by Loc introduction 9–29 Find by Port IP 43–45, finding addresses 43, subscriber profiles 126, assigning (CLI) firmware upgrade pass-through flexible screen size IP upsell...
Page 252 IP address 43, finding by port settings Import translation of port assignments types supported updating Network Info menu port mapping Network Service Engine in-room 23, Nomadix MIB portal page Index...
Page 253 ™ NIVERSAL UBSCRIBER ATEWAY Port-Location email setting up home page port-location mapping redirection Port-Location menu home page power conversion remember my login power loss remote administration troubleshooting remote connections 54, powering SNMP manager down using telnet client PPTP using PPTP support restoring printing archives...
Page 254 ™ NIVERSAL UBSCRIBER ATEWAY SNMP technical parameters user setting parameters SYSLOG Sockets report specifications 29, sample splash screen system administration 53–?? SSL setup Configuration menu SSL support logging in start up configuration 39–45 Network Info menu Statistics Port-Location menu subnet mask procedures setting up 44, subscriber...
Page 255 ™ NIVERSAL UBSCRIBER ATEWAY Meeting Room Scheduler hints and tips Misc international power conversion Passthrough Addresses power loss Ping types of networks supported Port-Location Reboot Route Add Route Delete updating Routing port assignments SMTP Upgrade SNMP system firmware Sockets uptime Statistics URL filtering Summary...
Page 256 ™ NIVERSAL UBSCRIBER ATEWAY This page intentionally blank Index...

Nomadix Universal subscriber gateway User Manual

Chapter 1: Installing the USG

Chapter 2: System Administration

Chapter 3: The Subscriber Interface

Chapter 4: Quick Reference Guide

Chapter 5: Troubleshooting

Appendix: Technical Support

Quick Links

Need help?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Nomadix Universal subscriber gateway

Summary of Contents for Nomadix Universal subscriber gateway