1. Manuals
  2. Brands
  3. APconnections Manuals
  4. Network Hardware
  5. NetEqualizer
  6. User manual

APconnections NetEqualizer User Manual

Hide thumbs Also See for NetEqualizer:
Table of Contents

Advertisement

Quick Links

Download this manual See also: User Manual

User Guide

NetEqualizer
User Guide
© Copyright 2014,2015 APconnections. All rights reserved.
No part of this publication including text, examples, diagrams or illustrations may be reproduced,
transmitted, or translated in any form or by any means, electronic, mechanical, manual, optical
or otherwise, for any purpose, without prior written permission of APconnections, Inc.
APconnections, Inc. // 303.997.1300 // www.netequalizer.com
Copyright © 2014, 2015 APconnections, Inc.
Page 1 of 96
All rights reserved
rev. 20150309

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the NetEqualizer and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for APconnections NetEqualizer

Summary of Contents for APconnections NetEqualizer

  • Page 1: User Guide

    No part of this publication including text, examples, diagrams or illustrations may be reproduced, transmitted, or translated in any form or by any means, electronic, mechanical, manual, optical or otherwise, for any purpose, without prior written permission of APconnections, Inc. APconnections, Inc. // 303.997.1300 // www.netequalizer.com...

  • Page 2: Table Of Contents

    Where to Install NetEqualizer ................. 5 Setting up the NetEqualizer..................6 Factory Default IP Settings ....................6 Accessing the NetEqualizer via the Web GUI IP ............... 6 Cabling the NetEqualizer into your Network ................6 Configuring the NetEqualizer ..................... 8 The NetEqualizer Dashboard ...................
  • Page 3 Appendix 2 - Setting/Forcing LAN Speeds and Duplex ........... 84 Appendix 3 - Packet Capturing for taps such as CALEA ..........86 Appendix 4 - NetEqualizer Caching Option (NCO) ............88 Appendix 5 - Tuning Parameters for a Large Number of subnet-ranged Limits, Pools, & Masks ..89 Appendix 6 - Syncing NetEqualizer Date/Time ............
  • Page 4 NetEqualizer Quick Start Guide. It also includes appendices describing our add-on modules. Once up and running, it is a good idea to review this entire NetEqualizer User Guide, to become familiar with all of the advanced features available to you.

  • Page 5: Where To Install Netequalizer

    User Guide Where to Install NetEqualizer NetEqualizer can be installed on any link whose traffic you would like to shape. For maximum effectiveness, most users should install NetEqualizer between the network users and the Internet trunk. Traffic running between your network and the Internet is generally a constriction point in traffic flow where many users compete for this limited resource.

  • Page 6: Setting Up The Netequalizer

    API. Accessing the NetEqualizer via the Web GUI IP To access the NetEqualizer via the Web GUI IP, plug a laptop/PC into your Switch, and then set to the 192.168.1.x range (x not 143) to access the NetEqualizer. Once you...
  • Page 7 Once your machine is on & connected, you should see green lights in the Power LED, Eth0, and Eth1 LEDs, as in the above picture of the LED panel. Note: We recommend that you install your NetEqualizer on a UPS, to protect from power surges and outages.

  • Page 8: Configuring The Netequalizer

    Accessing the NetEqualizer via the Web GUI Once you login to the NetEqualizer, your next steps in setting up the NetEqualizer will be to configure your IP settings, set your passwords, install your license key, and set the date/time and time zone for your NetEqualizer. All these functions are found under the...

  • Page 9: The Netequalizer Dashboard

    NetEqualizer. Think of the Dashboard as your command and control center for managing your NetEqualizer. On the picture below, the key elements that make up the Dashboard are labeled: Status Indicators, Navigation Menu, Common Tasks, and NetEqualizer Menus.
  • Page 10 To make sure you know what date/time and time zone you have set, we display that as well. The Dashboard can be set to Auto Refresh (On/Off), at available intervals of 5, 10, or 30 seconds, which should work for most users. Note: The NetEqualizer Dashboard is available in Software Update 6.0 and above.

  • Page 11: Equalizing Defined

    This process continues until network congestion eases. NetEqualizer is the only tool on the market to offer bandwidth shaping in these 3 modes:  Equalizing only (simplest) Equalizing Rules = on. Custom Rules have not been defined.
  • Page 12 [Start Equalizing]. Equalizing in Action Once NetEqualizer is installed and running, a review of the NetEqualizer Log File will allow you to monitor and analyze how NetEqualizer is responding to your network’s traffic. To see the last 25 lines of the log, from the Dashboard, Click on ->...
  • Page 13 With Smart Connection Limits, as a user's connections increase over a defined number of allowable connections, limiting is enhanced to slowly starve the P2P connections for bandwidth. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 13 of 96 All rights reserved Copyright ©...

  • Page 14: Configuring Equalizing Parameters

    RATIO parameter refers to the network utilization on a percentage basis. RATIO can be set from 1 to 100. A value of 100 tells NetEqualizer not to have the default rules kick in until the trunk is 100 percent utilized; a value of 85 would have the rules kick in at 85 percent utilized.

  • Page 15: Setting Your Trunk Size

    (Bandwidth Down). NetEqualizer allows for different speeds for outbound and inbound links, as equalizing shapes bi-directionally. These parameters are set in bytes/per second, and are used by the NetEqualizer so it can react and take action when your trunk is nearing capacity.

  • Page 16: Parameters To Adjust Equalizing Sensitivity

    Penalty Unit (PENALTY_UNIT) (units are 100ths of seconds, Default = 2) PENALTY_UNIT is the unit of time that NetEqualizer will start with when delaying a packet of Internet data. It iteratively increases penalties by this value should a “hog” not respond to the initial penalty.
  • Page 17 ANCIENT (units are seconds, Default = 20) Ancient is no longer visible on the NetEqualizer GUI. The Ancient parameter is how long to keep a penalty in effect, in seconds. The preset value for ANCIENT from our factory- delivered NetEqualizer is designed to handle any size network and need not be changed.

  • Page 18: Parameters To Size Internal Tables

    (slowed down). When NetEqualizer sets a penalty on a connection, it assigns a “delay” buffer to this connection to slow it down. NetEqualizer reserves a finite number of “delay” buffers when it powers up.

  • Page 19: Viewing Your Equalizing Parameter Settings

    User Guide example, a value of 200 for this parameter instructs the NetEqualizer to “cancel” tracking a connection after 2 seconds. Viewing your Equalizing Parameter Settings Once you have set all your parameters, make sure to scroll to the bottom of the window, and then Click on ->...

  • Page 20: Controlling P2P Traffic

    NetEqualizer enables you to limit the amount of bandwidth a specific IP address or set of IP addresses can use. There are two ways to configure this in the NetEqualizer, to best meet your needs.
  • Page 21 Make sure when setting up your Connection Limits that you do not create an overlap between subnetted Connection Limits (/24, /16, etc.). The NetEqualizer does not support an overlap between subnetted Connection Limits. For example, this is NOT allowed, as the subnet ranges overlap.

  • Page 22: Dynamic Hogmin: Creating Smart Connection Limits

    Limit as high as sixty (60) to facilitate online game playing. Note: When you first set up a Connection Limit for an IP address, NetEqualizer will not drop existing connections over the limit. We wait until the overages die off or finish, but in the meantime the IP address cannot open any more connections.
  • Page 23 IP addresses that you wish to smart connection limit (Dynamic Hogmin will apply), formatted as follows: For an individual IP address: 10.0.10.106/32 For a subnet: 10.99.1.1/16 APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 23 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc. rev. 20150309...
  • Page 24 1. Dynamic Hogmin 2. Dynamic Hogmin Connections Dynamic Hogmin When turned on, NetEqualizer will allocate bandwidth based on the number of connections a given IP is using. To set Dynamic Hogmin, click on the drop down box and select ON.

  • Page 25: Setting Bandwidth Limits

    Note: You cannot assign a Bandwidth Limiting Rule to an IP address that physically sits on the WAN side of the NetEqualizer. For example, you cannot put a hard limit on an Internet site such as yahoo.com. If you do, the Hard Limit will be ignored. This makes sense, as the NetEqualizer is intended to manage your internal (LAN) IP addresses.

  • Page 26: Adding Bursting To Hard Limits

    In order to make bursting a “special” feature, it obviously can’t be on all the time. For this reason, by default the NetEqualizer will force a user to wait 80 seconds before they can burst again.
  • Page 27 80 seconds after its last burst duration completes before bursting again. The second parameter, BURST DURATION, is the time an IP will be allowed to burst (in seconds) before being relegated back to its base Hard Limit. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 27 of 96 All rights reserved Copyright ©...

  • Page 28: Setting Up Bandwidth Pools

    1Mbps, then the total bandwidth for all four IPs is 1Mbps (the total, not per IP). Pools are a bandwidth restriction, not a reservation. Think of a pool as a "virtual NetEqualizer". You can group users into logical trunks by IP address and apply equalizing technology to each logical group (bandwidth pool).
  • Page 29 4) If you create a Priority Traffic rule for an IP address, and the IP address exists within a Bandwidth Pool, it will receive priority over other IP addresses within the pool. 5) An IP address can only exist in one Pool at a time. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 29 of 96 All rights reserved Copyright ©...
  • Page 30 Bandwidth Pools can number from 1 to 300; up to 300 different bandwidth pools per NetEqualizer (< 4.5 the number is limited to 40). Note: If you plan to set up a large number of subnet-ranged Pools (>=32 subnet ranges), you will need to set several tuning parameters.

  • Page 31: Setting Hard Limits By Vlan

    VLAN. For example, if you set the download limit on a specific VLAN to 192,000 bytes per second (T1) and the VLAN usage level reaches 85 percent, the NetEqualizer will begin to penalize any connection exceeding the value of HOGMIN within the VLAN.
  • Page 32 Access Points. Most of the time you would only see the address of the Router or Access Point, which would not enable you to shape down to the user level on your network. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 32 of 96 All rights reserved Copyright ©...

  • Page 33: Consider Setting Bandwidth Priority

    Equalizing Rules. However, some organizations need to setup Bandwidth Priority Rules for specific traffic types. There are two types of priority that you can set up on the NetEqualizer: 1) traffic with priority over equalizing, and traffic hidden from equalizing.

  • Page 34: Masking Off Traffic

    “paired” mask will only be ignored if it is talking to another host or subnet that is also registered as a paired mask. By design, a Paired Mask will cause NetEqualizer to ignore hosts talking to other paired mask hosts, while at the same time subject the same hosts to NetEqualizer's bandwidth shaping rules if they make a connection with a server on the Internet.
  • Page 35 Note: Three (3) is different than 0 because zero (0) just turns off the feature without clearing the table. If you used zero (0) and then set it to 1 again, the members would stay the same. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 35 of 96 All rights reserved Copyright ©...

  • Page 36: Restricting Bandwidth Usage

    In order to work with the quota commands, you must first start the Quota System. If not started, the other commands will return with errors stating "quota server busy or not running". You can use the new NetEqualizer Dashboard to see if the Quota System is running.
  • Page 37 (128,000 bytes per second = 1Mbps) Contact support@gmail.com You will see the following screen and messages when the quota rule setup is complete. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 37 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc. rev. 20150309...
  • Page 38 (1) email per hour to that address containing all violations. If you had 100 Quota Rules set up, and 25 violations occurred, you would see APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 38 of 96 All rights reserved Copyright ©...
  • Page 39 10.99.100.01/24, and Click on -> [Remove Rule]. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 39 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc. rev. 20150309...

  • Page 40: Viewing Quotas

    IP address. The Quota Report Table below describes all the fields available in the report. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 40 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc.
  • Page 41 However, the current class of NetEqualizer systems do not have disk drives (for a variety of good reasons), and so we have not incorporated this into our Quota System.

  • Page 42: Mac Redirection

    Click on -> [Remove MAC Rule]. Any time you add or remove an authorized MAC address, you will need to restart the NetEqualizer Firewall for the change to take effect. Go to the Setup and Configuration Menu, Click on -> Manage Firewall Settings ->...
  • Page 43 To select the website to redirect to: Follow the instructions in the Sample Instructions referred to in "To learn more about setting up MAC redirection" above. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 43 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc.

  • Page 44: Distributed Denial Of Service Attack (Ddos) Tools

    DDoS attacks. Our new DDoS Firewall tool (DFW) can be purchased as an add-on module. The goal of the NetEqualizer DDoS toolset is twofold: 1) to help you identify suspected DDoS attacks, and 2) to help you identify and block outside IP addresses until you have regained control over your network.
  • Page 45 Rate has been over time. However, the combination of Rate, Seconds, and Count are a great indicator of whether an external IP is involved in a DDoS attack on your network. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 45 of 96 All rights reserved Copyright ©...

  • Page 46: Ddos Firewall

    If you are reviewing results from the DDoS Monitor, and would like to take it further to block external IP addresses, please contact our Support Team at support@apconnections.net 303.997.1300 x102. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 46 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc.

  • Page 47: Monitoring And Reporting

    NetEqualizer will send alerts & notifications to for selected events. Note: You can store and view up to one (1) month of data on the NetEqualizer, if you are running version 8.1 or greater. To view additional history, you can set up a process to dump data periodically to a separate server.

  • Page 48: View Current Activity

    Start/Stop RTR - Turn RTR on/off and view RTR statistics. Autostart RTR - Turn RTR on automatically upon a NetEqualizer reboot. View Current Activity This menu is displayed when you click on View Current Activity. P2P Report View suspected peer-to-peer (P2P) traffic for any IP or subnet.
  • Page 49 Set-up Emails to notify, and Select Events, upon which to send alerts and notifications. Configure Email Set up email to send alerts to. Configure Alerts Select events to send email alerts on. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 49 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc. rev. 20150309...

  • Page 50: Dynamic Real-Time Reporting (Rtr)

    User Guide Dynamic Real-Time Reporting (RTR) One of the things that has always differentiated the NetEqualizer from other monitoring and shaping tools is that we have the actual data for every user accurately updated by the second. Thus, we are able to make shaping decisions based on usage every second. This sets us apart from other network tools that report on traffic.

  • Page 51: Real-Time Traffic Graph

    Real-Time Traffic (RTT) graph itself. On this graph you can see bandwidth consumed for all traffic flowing through your NetEqualizer. Click on a radio button to see this graph for Downloads, Uploads, or Both. Each time you come back to the RTR Dashboard, it starts the graph anew.
  • Page 52 To view from the Dashboard From the Dashboard, on the Common Tasks bar, Click on -> [View Current Activity]. To view from the NetEqualizer Menus From the Management and Reporting Menu, Click on -> View Current Activity -> [View Active Connections].
  • Page 53 “--“ (circled in the table above) are the IPv6 rows. You can also see that the DST IP and SRC IP for these rows are in IPv4 format. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 53 of 96 All rights reserved Copyright ©...
  • Page 54 Destination IP address involved in the connection. Source IP address involved in the connection Ptcl The protocol (ICMP, TCP/IP, UDP). APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 54 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc. rev. 20150309...

  • Page 55: Ip Reports

    Note: You need to use an external IP for this lookup to bring back a value. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 55 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc.
  • Page 56 Click on -> “T”, (Traffic History by IP), for the DST IP on Row 1, 192.168.1.113, the screen below comes up. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 56 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc.
  • Page 57 Note: By design, the graph does not refresh. Click on ->[Update Data] below the graph to refresh your data. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 57 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc. rev. 20150309...

  • Page 58: Traffic History

    In software update 8.1, we have enhanced our real-time graphical traffic reporting within the NetEqualizer. Traffic History Reports enable you to quickly see how busy your network has been over a period of time, or hone in on an individual IP, Pool, or VLAN for analysis.
  • Page 59 User Guide General Traffic History (GTH) is a graph showing all traffic flowing through the NetEqualizer. As this graph uses data sampled every 1 minute, the graph is intended to show data use over time, not an exact bandwidth use per second.
  • Page 60 User Guide Manage Tracked IPs In order to use Traffic Reporting by IP/Pool/VLAN, you need to also let the NetEqualizer know which IPs you would like to report on. To do this, Click on -> Manage Tracked IP’s. The screen on the right will come up.
  • Page 61 Click on - >[OK] to continue or Click on ->[Cancel] keep your data. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 61 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc. rev. 20150309...

  • Page 62: View Netequalizer Log

    View NetEqualizer Log (back) The NetEqualizer Log File contains a record of the actions of the NetEqualizer. It displays key activity on the NetEqualizer, such as limits being applied, and penalties being added or removed. It is viewable from two menus in the NetEqualizer.
  • Page 63 MAX_PENALTY. In the 3 line of the log, a penalty is being removed. In NetEqualizer Log files you can see entries for penalties being applied (PENALTY), increased (PENALTY INCREASE), decreased (PENALTY DECREASE), and being removed (PENALTY REMOVE).

  • Page 64: Configuration

    HOGMIN. Configuration (back) View how you have defined the key parameters on your NetEqualizer. It is viewable from several places in the NetEqualizer. To view from RTR Menus From the RTR Menus, Click on ->...

  • Page 65: Running Processes

    Running Processes (back) View this report to check out what processes are running on your NetEqualizer. Use this report to see how much CPU and memory is being consumed by each process, as well as how long a process has been running. This is useful in troubleshooting efforts.

  • Page 66: Start/Stop Rtr

    Click on -> Maintenance ->Edit Autostart File -> [Edit]. Type in the following command at the bottom of the file: php /var/www/newgui/RTR/start-rtr.php APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 66 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc.

  • Page 67: View Current Activity

    Curious about how much bandwidth a particular IP address, Pool, or VLAN is utilizing on your network? Our Instant Report enables you to query instantaneous bandwidth usage in real-time right from the NetEqualizer Web GUI. This enables you to measure a customer’s current bandwidth utilization by IP, VLAN or Bandwidth Pool, allowing you to...
  • Page 68 For IPv6, the report shows the total IPv6 traffic across your network up (outbound) followed by the total down (inbound). APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 68 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc. rev. 20150309...

  • Page 69: Email Notifications

    User Guide Email Notifications You can set-up an email account to receive alerts and notifications from the NetEqualizer. Notifications (email alerts) can be sent either immediately, or if you prefer less email, they can be batched up and sent out once per day.

  • Page 70: Configure Alerts

    Note: By default the routine that does the actual emailing is disabled. If you Select Email Alerts prior to Configuring Email, they will not run until you have configured your email server. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 70 of 96 All rights reserved Copyright ©...

  • Page 71: Redundancy And Failover

    User Guide Redundancy and Failover If you are concerned about passing traffic if your NetEqualizer goes down, either for scheduled maintenance or due to an unplanned failure (i.e. power outage, equipment failure, etc.), you might want to consider building in a plan for either: 1) full redundancy, or 2) failover.

  • Page 72: Failover

    If you do not need full redundancy, but would like a failover solution to ensure that your network continues to pass traffic if your NetEqualizer goes down, you can configure a STP- capable switch to bypass the NetEqualizer. You can use your own switch or try our...

  • Page 73: Maintenance Tasks

    User Guide Maintenance Tasks Powering Off the NetEqualizer If you ever need to shutdown the NetEqualizer (not just a reboot), here is a graceful way to do that: Go to the Maintenance and Reference Menu, Click on -> Maintenance -> [Run A Command].
  • Page 74 CF card. Two CFs are provided with each NetEqualizer (one in the unit, and a backup CF in the Accessories Box). You can round-robin your CFs. Please be aware that when you replace the CF you replace every file and setting, as this is no different than putting a new hard drive into a system and removing the old one.
  • Page 75 The instructions that you receive from Support will walk you through this process in detail. Note: Support will send detailed instructions to walk you through re-flashing or replacing the Compact Flash card. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 75 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc.

  • Page 76: Troubleshooting

    User Guide Troubleshooting This section of the User Guide contains some ideas to troubleshoot your NetEqualizer. For our full Support Archive, please go to our NetEqualizer News blog site. You can also review Advanced Tuning library, recommended for NetEqualizer power users. Finally, you can contact Support at support@apconnections.net...
  • Page 77 User Guide I cannot get traffic through the NetEqualizer (back) Can you put a keyboard and monitor on the NetEqualizer and see if there are any errors showing up on screen? From the Troubleshooting and Support menu, Click on-> Troubleshooting, then Click on ->...
  • Page 78 Save Page As… filename.txt, and then enter a valid text file filename. Attach the file to an email and send to support@apconnections.net, along with a description of the problem you are encountering. Once your file is received, Support will review your diagnostic file, and contact you to help troubleshoot your system.

  • Page 79: Frequently Asked Questions (Faqs)

    Go to the "NAME=" parameter line in the file and change whatever is listed after the equal sign to what you want to call this NetEqualizer. For example, if you decided to name by location, you might have a NAME=BoulderNetEQ.
  • Page 80 When you do your initial testing on Bandwidth Limits (bandwidth limiting rules), use file transfers that persist for more than 15 seconds to allow NetEqualizer to come to a steady rate of data transfer. APconnections, Inc. // 303.997.1300 // www.netequalizer.com...
  • Page 81 However, the NetEqualizer will allow some bursts through. As NetEqualizer takes a few seconds to adjust to changing traffic situation, if you are testing with one or two large downloads, the bursts will be more pronounced than traffic on a busy network.
  • Page 82 Click on -> Maintenance -> [Run a Command] Type in /art/showhogs All connections over Hog Minimum will be displayed when command is processed. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 82 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc. rev. 20150309...

  • Page 83: Appendix 1 - Equalizing Parameters, Units, & Defaults

    Hogmin. Value is ignored are restricted more aggressively when (DHMIN_CONN) user. unless Dynamic Hogmin=ON. the network is under load. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 83 of 96 All rights reserved Copyright © 2014, 2015 APconnections, Inc. rev. 20150309...

  • Page 84: Appendix 2 - Setting/Forcing Lan Speeds And Duplex

    Occasionally you need to manually set LAN Port Speed and Duplex in order for the NetEqualizer to operate at the expected port speeds and in the correct duplex mode. The NetEqualizer LAN ports auto-negotiate 95% of the time. However, the NetEqualizer may need to be manually set to work with some Routers or Switches.
  • Page 85 Use the backspace and delete and arrow keys just like in Notepad. Save with Ctrl-o and Enter and exit with Ctrl-x. There is a menu at the bottom of nano that shows these commands. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 85 of 96 All rights reserved Copyright ©...

  • Page 86: Appendix 3 - Packet Capturing For Taps Such As Calea

    CALEA module is not covered under NSS, consulting charges may apply. For additional information on CALEA, go to: http://transition.fcc.gov/pshs/services/calea/. The NetEqualizer is set up as a CALEA Probe in two steps, which must be executed in the order below: 1.
  • Page 87 Set up the port to listen on: On the receiving computer, run the command line of: nc -l -p XXXXX where XXXXX is the port you want to listen on, and that you setup on the NetEqualizer to send on. Pipe results to a File (optional): Netcat can be piped to a file using the >...

  • Page 88: Appendix 4 - Netequalizer Caching Option (Nco)

    We have developed an embedded caching capability used to cache frequently used, static content, primarily YouTube videos. The NetEqualizer Caching Option (NCO) runs directly on the NetEqualizer 3000 and 4000 series. When NCO is activated, a squid proxy server and web cache daemon are loaded, along with proprietary NetEqualizer Caching configuration and integration software and a new internal solid-state drive (SSD).

  • Page 89: Appendix 5 - Tuning Parameters For A Large Number Of Subnet-Ranged Limits, Pools, & Masks

    Tuning for a Large Number of subnet-ranged (>=32 subnet ranges) Connection Limits, Hard Limits, Masks, Pools, and VLANs The NetEqualizer currently simplifies your configuration set-up by enabling you to enter Hard Limits, Connection Limits, Masks, and Pools as “subnet ranges” (i.e. HARD x.x.x.x/24 or /16), instead of as individual rules.

  • Page 90: Appendix 6 - Syncing Netequalizer Date/Time

    /root/settime.sh and /root/crontab files from the command line or SSH with a text editor. Note: You must have NetEqualizer setup so that it can access the Internet for this to function. Note: You must make sure that ntop is not running, or stop ntop, before changing the time on your NetEqualizer.
  • Page 91 Click on -> [Submit] to save. Go to the NetEqualizer Dashboard, scroll down if needed, and refresh your screen. Make sure the Date/Time is set to your Past Date/Time. Now wait 5 or more minutes (the cron job runs every 5 minutes), go back to the Dashboard, and refresh your screen again. Make sure that the Date/Time is now Current.

  • Page 92: Appendix 7 - Firewalling The Netequalizer

    User Guide Appendix Appendix 7 - Firewalling the NetEqualizer This appendix is for customers that need to install the NetEqualizer outside of their firewall, on the public side of their Internet pipe. Firewall rules are provided to prohibit unauthorized users from accessing the NetEqualizer IP and thus SSH access and the NetEqualizer Web GUI screen.

  • Page 93: Appendix 8 - Netequalizer Directory Integration (Ndi)

    Directory Integration has the obvious benefit of utilizing known usernames from your system to identify data flows & activity in the NetEqualizer, rather than IP addresses. As you can imagine, this could make it much easier to trace activity back to a particular user.
  • Page 94 IP and returns a random user name, to serve as an example of the format of the NDI API. You can run this on your NetEqualizer box, as long as you have Software Update 7.0 loaded. From the Maintenance and Reference Menu, Click on ->...
  • Page 95 Our first extension of the NDI, Named Quotas, is available for Beta Test. With Named Quotas, once the generic NDI API is setup, the data is used by the NetEqualizer to provide status for User Quotas. This makes the User Quota capability even more meaningful, as quotas are tied to a consistent user’s name rather than an IP address.
  • Page 96 Note: As a reminder, Quota Usage data is not persistent on a restart of the quota process or the equalizing process. It also does not persist upon a machine reboot. APconnections, Inc. // 303.997.1300 // www.netequalizer.com Page 96 of 96 All rights reserved Copyright ©...

Table of Contents