Black Box LNA1000A User Manual

Download

Page 1

OCTOBER 2004

LNA1000A

™

Black Box® IT Pro

™

CUSTOMER

SUPPORT

INFORMATION

Order toll-free in the U.S.: Call 877-877-BBOX (outside U.S. call 724-746-5500) FREE technical support, 24 hours a day, 7 days a week: Call 724-746-5500 or fax 724-746-0746 Mailing Address: Black Box Corporation, 1000 Park Drive, Lawrence, PA 15055-1018 Web site: www.blackbox.com • E-mail: info@blackbox.com

Page 2

This device complies with IEC60950 (1999) 3rd Edition, CSA C22.2 No. 60950-

00/UL 60950 (2000) 3

Edition.

The Black Box® IT Pro™ meets Class B requirements.

FEDERAL COMMUNICATIONS COMMISSION and CANADIAN DEPARTMENT OF COMMUNICATIONS RADIO FREQUENCY INTERFERENCE STATEMENT

Class B Digital Device. This equipment has been tested and found to comply with the limits for a Class B computing device pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation. However, there is no guarantee that interference will not occur in a particular installation. This equipment generates, uses, and can radiate radio frequency energy, and, if not installed and used in accordance with the instructions, may cause harmful interference to radio communications. If this equipment does cause harmful interference to radio or telephone reception, which can be determined by turning the equipment off and on, the user is encouraged to try to correct the interference by one of the following measures:

• Reorient or relocate the receiving antenna.

• Increase the separation between the equipment and receiver.

• Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.

• Consult an experienced radio/TV technician for help.

Caution: Changes or modifications not expressly approved by the party responsible for compliance could void the user's authority to operate the equipment.

To meet FCC requirements, shielded cables and power cords are required to connect this device to a personal computer or other Class B certified device.

This digital apparatus does not exceed the Class B limits for radio noise emission from digital apparatus set out in the Radio Interference Regulation of the Canadian Department of Communications. Le présent appareil numérique n'émet pas de bruits radioélectriques dépassant les limites applicables aux appareils numériques de la classe B prescrites dans le Règlement sur le brouillage radioélectrique publié par le ministère des Communications du Canada.

Page 3

Operating Conditions

Black Box® IT Pro™:

• 100V – 240VAC / 1.5A

• 50Hz - 60Hz

• 0 to 35 degrees Celsius (41° to 95° F)

• 10% – 80% Relative Humidity

Changes or modifications not expressly approved by Black Box could void the user's authority to operate the equipment.

Publication Date:October 2004

Technical Support

If you need technical support, please contact Black Box.

Page 4

Technical Support 2

Chapter 1 Quick Start 3

Step 1: Connecting your Black Box® IT Pro™ 3 Step 2: Configuring your system 4 Step 3: Manually Setting the IP Address 5 Step 4: Configuring your desktop 6 Step 5: Connecting to WebConfig 7 Step 6: Configuring your Internet connection 9

Chapter 2 First-time Nitix Setup - Black Box®

IT Pro™ 11

Black Box® IT Pro™ Components 11 Meet Your Black Box® IT Pro™ 12 Connecting the Power 13 Ethernet Connections 14 Connecting Ethernet Port 0 15 Connecting LAN 2 and LAN 3 16 Connecting an External Dial-up Modem 16 Configuring Your System 17 Manually Setting the IP Address 18

Chapter 3 Connecting to WebConfig 19

What is WebConfig? 19 Secure WebConfig 19 Configuring TCP/IP 20 Creating an Administrator Account 31 Software Activation Keys 33 System Status Screen 34 Notices Box 40

Page 5

Chapter 4 Configuring Nitix 43

Proceeding with Configuration 43 Configuring General Network Settings 43 Configuring Advanced Network Settings 45 Network Devices 46 Network Routes 48 Network Configuration Scenarios 50 Configuring your Internet Connection 53

Chapter 5 Client Access Licenses 57

Client Access Licensing Requirements 57 License Information 57

Chapter 6 DoubleVision 59

What is DoubleVision? 59 Modem Connections 60

Chapter 7 User & Team Management 61

Service Integration 61 User Accounts 63 Modifying User Email Settings 70 Team Accounts 72 Password Policy 76

Chapter 8 File Services 81

File Sharing Services 81 Configuring File Services 82 Access Control Lists 84

Page 6

Chapter 9 Disk Quotas 91

Setting Default Disk Quota Values 91 Setting Individual User Disk Quotas 92 Quota Limit 93

Chapter 10 NT Domain Services 95

What is a Windows NT Domain Member? 95 Configuring the Domain Member 95 What is a Domain Controller? 97 Configuring the Domain Controller 97 Joining Windows Systems to a Domain 99 File Mounting/Drive Mapping 105 Logon Scripts 106 Automated Drive Mapping 107 Workstation Administrative Rights 107

Chapter 11 Print Services 109

Nitix Print Services 109 Configuring Print Services 109 Configuring your Workstation 110

Chapter 12 Email Services 113

Components of the Email System 113 Configuring Email Service 115 Clearing the Email Queue 118 Configuring Email Aliases 118 Configuring DNS Records 122 Configuring Email Clients 123 Advanced Email Settings 125

Page 7

LDAP Server 126

Chapter 13 WebMail 129

WebMail Server 129 Enabling WebMail Server 129 Accessing WebMail 131 Configuring WebMail 135 Composing an Email Message 136 Opening a Received Message 137 Replying to a Message 138 Search Function 138 Address Book 140 Calendar 141 Tasks 143 Notes 145 Mail Filters 145

Chapter 14 Web Services 149

Web Ser v e r 149 Master Web Server 149 Virtual Web Servers 153 Hosting Multiple Web Sites 155 Secure Web Services 156 SSL Certificate 156 Web Caching 161

Chapter 15 Web Filtering 163

Positive Web Filtering 163 Enabling the Web Filter 163 Providing Full Internet Access 164

Page 8

Adding Permitted Websites 165 Accepting Access Requests 165 Denying Access Requests 166 Entering Access Requests 167

Chapter 16 FTP Services 169

FTP Server 169 Anonymous FTP Server 169 Enabling the FTP Server 170 Enabling FTP Access 171 User vs. Team FTP Access 171

Chapter 17 Software Update 173

Software Updates 173 Upgrading Nitix 173

Chapter 18 TunnelVision 177

Private Networks 177 Virtual Private Networks 177 VPN Network Topologies 178 How TunnelVision Works 181 Creating a VPN (server-to-server) 182 Configuring a TunnelVision Master Server 183 Configuring a TunnelVision Client 184 TunnelVision Status 186 The Idle Time-out 186

Chapter 19 IPsec 187

IPsec: An alternative to TunnelVision 187

Page 9

Known Configurations 187 Adding an IPsec route 187 Adding an Anonymous Incoming Connection

IPsec route 189 Editing an IPsec route 190 Setting up Third Party IPsec Clients 192

Chapter 20 Remote Access Services 193

What is RAS? 193 PPTP - Client-to-Server VPN Service 194 Dial-in Service 199 Terminating a Connection from WebConfig 203

Chapter 21 Firewall Services 205

ICSA Firewall Security Compliance 205 Traffic Denied Inbound 205 Traffic Permitted Inbound 206 Traffic Permitted Outbound 206 Firewall Log 207

Chapter 22 Domain Name Services 209

What is DNS? 209 DNS Services 209 Configuring Public DNS 210 How the DNS System Works 211 Dynamic DNS 212 Manually Creating DNS Entries 212

Page 10

Chapter 23 Workstation Viewer 217

What is the Workstation Viewer? 217 Accessing the Workstation Viewer 217 Virtual Network Computing (VNC) 218 Configuring VNC 218

Chapter 24 FastForward 221

What is FastForward? 221 Introduction to TCP/IP 221 Proxy Servers 223 Configuring FastForward 225 Forwarding Scenarios 227 Multiple Static IP Addresses 228 Common Port Numbers 228 Troubleshooting FastForward 229

Chapter 25 MySQL Server 231

What is the MySQL Server? 231 What is phpMyAdmin? 231 Managing Databases in phpMyAdmin 232 Deleting Database Tables 236 Setting up Windows for MySQL Access 236 What is a Dynamic Web Site? 240

Chapter 26 Hardware Components

Reporting 241

Hardware Components Reporting 241

Page 11

Chapter 27 Log Messages 243

Accessing Log Messages 243 Customizing Message Display 244 Firewall Log 244

Chapter 28 Network File System 247

What is NFS? 247 Installing and Configuring ugidd 247 Mounting an NFS directory 248 Unmounting an NFS Directory 248

Chapter 29 rsync 249

What is rsync? 249 Using rsync 249

Chapter 30 ExchangeIt! 251

ExchangeIt! Overview 251 ExchangeIt! Server Configuration 251 Outlook Configuration 255 Using ExchangeIt! 267

Appendums

Licensing 271 Adrian Sun License 277 Apache Public License 279 Apple Public Source License 281 The “Artistic License” 289 Australian National University License 293

Page 12

BSD License 295 Dazuko License 297 Eric Rosenquist License 299 Caldera Systems License 301 Carnegie Mellon University License 303 Gregory M. Christy License 305 GNU General Public License 307 GNU Library General Public License 313 GNU Lesser General Public License 323 HighPoint License 333 Internet Software Consortium License 335 LILO License 337 Linux-PAM License 339 mod_auth_pam License 341 mod_ssl License 343 NVIDIA License 345 OpenLDAP Public License 349 OpenSSL License 351 OSSP Project License 353 The PHP License, version 2.02 355 The PHP License, version 3.0 357 SSLeay License 359 Strace License 361 Sun Microsystems License 363 Rick R. Kaseguma License 365 RSA License 367 The Regents of the University of California License 369 University of Chicago License 371 University of Michigan License 373 University of Utah and the Regents of the

University of California License 375 University of Washington’s Free Fork

License 377

Page 13

VPB Software License 379 Zend Engine License, version 2.00 381 Zlib License 383 Glossary 385

Page 14

Chapter 1 Quick Start

This chapter provides the basic information required for a qualified administrator to configure the Black Box® IT Pro™. For more in-depth information, please skip to Chapter 2:

First-time Nitix Setup.

Step 1: Connecting your Black Box® IT Pro™

Please Note: Skip (D) if your office is already connected to the Internet.

Please Note: For a diagram of the server’s physical features, see Chapter 2: First-time Nitix Setup.

Ensure that the Black Box® IT Pro™ has adequate ventilation. Place the back of the

unit at least one to two feet (12” - 24”) away from the wall. Do not block ventilation holes on the unit top and sides.

B. To plug in the Black Box® IT Pro™:

i.) Connect one end of the power cord into the DC 12V input socket (located on the

back of the unit).

ii.) Connect the other end of the power cord into a standard 115 Volt AC

(North America) or 220/240 Volt AC (Europe) power outlet.

C. To connect to your Local Area Network (LAN):

i.) Connect one end of a category 5 or higher Ethernet cable into LAN 1

(located on the back of the unit).

ii.) Connect the other end of the cable into your Ethernet hub.

D. If you are using a high-speed cable modem or a DSL modem:

i.) Connect one end of a category 5 or higher Ethernet cable into LAN 2

(located on the back of the unit)

ii.) Connect the other end of the cable into your cable modem or DSL modem.

E. Connect a VGA monitor and PS/2 style keyboard to the appropriate connectors at the

rear of the unit.

Black Box® IT Pro™User Manual 3

Page 15

Step 2: Configuring your system

A. Turn on the main power switch.

B. When the system boots, the Nitix boot screen will load. When it has loaded, the fol-

lowing prompt will appear on your monitor: Press ENTER to begin.

C. Press <Enter>. A Configuration screen similar to the following will appear:

Please Note:A red warning box may appear advising you to set up your server using Nitix’s web-

based configuration screen. Press <Enter> to continue.

Step 2: Configuring your system

Take note of the display’s Settings and Status boxes. These display various information about the server.

E. Take note of the IP address shown in the Status box. This is the LAN IP address of the

server. The Default IP address for the IT Pro™ is 192.168.168.1. You will need this IP address to connect to finish the configuration of your server.

Please Note:In the event that the server is unable to detect an appropriate IP address for your LAN, or to change the IP address, see Step 3: Manually Setting the IP Address.

You are ready to proceed with Step 4: Configuring Your Desktop when an IP address

appears in the console’s Status box.

Black Box® IT Pro™User Manual 4

Page 16

Step 3: Manually Setting the IP Address

Please Note: Skip this step if Nitix automatically selected an IP address for you, and the address is acceptable.

Follow these steps if your Black Box® IT Pro™ is unable to automatically select an IP address (the console’s Status box continues to read Choosing Address) or if you want to change the chosen address:

A. Select IP Address from the Main Menu box on the Configuration Screen (see screen

shot in Step 2).

B. You will be prompted to enter a new IP address. Enter the new IP address and press

<Enter>.

Quick Start

C. Confirm the new IP address by pressing <Y>.

D. You can turn on or off the DHCP server (which automatically assigns IP addresses to

the workstations connected to your local network). Unless you have some other server providing DHCP services, it is recommended that you turn DHCP on. To turn DHCP on, select DHCP server from the Main Menu on the Configuration Screen - if it says, “The DHCP server is currently DISABLED”, then press <Y> to enable the DHCP server. The DHCP server is now on.

Black Box® IT Pro™User Manual 5

Page 17

Step 4: Configuring your desktop

Please Note: Desktop displays may vary according to Windows version and operating system.

In Windows (on your workstation), select Start > Settings > Control Panel.

B. Select Network from the list. The Network screen displays:

Quick Start

C. If TCP/IP does not display in the installed components list:

i.) Click on the Add button. The Select Network Component Type screen displays. ii.) Select Protocol from the list. Click on the Add button. The Select Network

Protocol screen displays. iii.) Select Microsoft in the Manufacturers section of the screen. Select TCP/IP in the Network Protocols section of the screen. Click on the OK button. TCP/IP should now display on the Network screen.

D. Select TCP/IP from the installed components list on the Network screen. Click on the

Properties button. The TCP/IP Properties screen displays.

E. Click on the IP Address tab. Select Obtain an IP address automatically.

F. To configure DNS settings:

i.) Click on the DNS tab. Select Enable DNS.

Black Box® IT Pro™User Manual 6

Page 18

ii.) Select all entries in the DNS Server Search Order section of the screen and click on the Remove button. iii.) Select all entries in the Domain Suffix Search Order section of the screen and click on the Remove button. iv.) Select Disable DNS.

G. Click on the Gateway tab. Select any entries in the Installed gateways section of the

screen and click on the Remove button.

H. Click on the WINS Configuration tab. Select all entries in the WINS Server Search

Order section of the screen and click on the Remove button. Select Use DHCP for WINS Resolution.

I. Click on the OK button.

J. Reboot your computer.

Step 5: Connecting to WebConfig

A. Open an Internet browser on your workstation. Newer versions of Netscape or

Microsoft browsers are recommended.

B. Read the IP address from the Status box on the Configuration screen on the console.

For demonstration purposes, we will use the following IP address: 192.168.0.1

C. Type https://192.168.0.1:8043 into the browser's address bar. Press <Enter> on your

keyboard. The Create Administrator Account page displays:

Quick Start

Black Box® IT Pro™User Manual 7

Page 19

Quick Start

D. Type in the following information:

i.) a User ID. The default User ID is root - you can use this name or you can create a new User ID by typing over the existing text. ii.) the administrator's full name. iii.) a password. Retype the password to ensure it was typed properly. iv.) your organization's registered Internet domain name (e.g. example.com). If you do not have a registered domain name, leave the default domain name. v.) your Software Activation Key.

E. Click on the Save Changes button. This will take you directly to Nitix’s main Web-

Config screen:

Black Box® IT Pro™User Manual 8

Page 20

Step 6: Configuring your Internet connection

Please Note: If the Internet Status option on the System Status page has a green light, you do not have to perform these steps.

I. CABLE MODEM or DSL MODEM (not requiring Payee protocol)

If your cable modem or DSL modem does not configure automatically (i.e. the Internet Status option does not have a green light), refer to Chapter 4: Advanced Network Settings for information on how to set up an IP address and default gateway using data provided by your Internet Service Provider (ISP).

II. LEASED LINE CONNECTION

Please refer to the section on Configuring a Leased Line Connection in Chapter 5: Configuring Nitix for full instructions.

III. DSL MODEM (requiring Payee protocol)

Quick Start

A. From the Network Setup menu on the System Status page, select Dial-up.

B. The Dial-up Networking Setup page displays. Click on the appropriate ADSL Action

button.

C. On the screen that displays:

i.) type in your account user name (provided by your ISP). ii.) type in your account password. Retype this password to ensure it was typed properly. iii.) select Ye s to enable the DSL connection.

D. Click the Save Changes button.

Black Box® IT Pro™User Manual 9

Page 21

Quick Start

Black Box® IT Pro™User Manual 10

Page 22

Chapter 2 First-time Nitix Setup -

Black Box® IT Pro™

Black Box® IT Pro™ Components

You should have received the following components in your Black Box® IT Pro™ package:

Black Box® IT Pro™

1. Black Box® IT Pro™ (1)

2. User Manual CD (1) that includes ExchangeIt!/ WebMail Usage Guides

3. Power cord and external supply cord

4. Category 5 Ethernet cables (3)

Required External Peripherals:

1. Monitor

2. Keyboard

Black Box® IT Pro™ User Manual 11

Page 23

Meet Your Black Box® IT Pro™

Black Box® IT Pro™

Front View

First-time Nitix Setup - Black Box® IT Pro™

1. USB Port – reserved for future use.

2. Ethernet LED – indicates Ethernet activity.

3. Hard Drive LED – indicates hard drive activity.

4. Power LED – lights up when power is on.

5. Power Button – used to turn the box on and off.

Black Box® IT Pro™ User Manual 12

Page 24

Back View

First-time Nitix Setup - Black Box® IT Pro™

1. Power socket – where the PC power from the power supply is connected.

2. PS/2 keyboard connector – used to connect a keyboard.

3. LAN 2 – used to connect to a LAN segment or to the Internet.

4. Serial port – used to connect an external modem.

5. Parallel port – used to connect a printer

6. VGA connector – used to connect a monitor.

7. LAN 1 – used to connect to the local area network (LAN).

8. LAN 3 – used to connect to a LAN segment or to the Internet.

Connecting the Power

1. Ensure that the Black Box® IT Pro™ unit has adequate ventilation. Place the back of the

unit at least one to two feet (12”-24”) away from the wall. Make sure the front of the unit is easily accessible.

Black Box® IT Pro™ User Manual 13

Page 25

2. Connect one end of the power cord into the power socket on the back of the Black Box®

IT Pro™.

3. Connect the other end of the cord into a standard power outlet.

4. Turn on the main power switch.

5. Press the power button.

Ethernet Connections

First-time Nitix Setup - Black Box® IT Pro™

What is Ethernet?

Ethernet connects computers in a local area network (LAN). An Ethernet connection is very fast, and unlike modem and ISDN connections, one Ethernet network can have many computers attached to it. There are two different kinds of Ethernet cables: category 3 and category 5 are two examples. It is recommended that you use category 5 at minimum for 100baseT networks, and category 5e at minimum for 1000baseT networks.

10baseT, 100baseT, and 1000baseT hubs and switches have a number of ports that you connect to workstations, routers, servers, printers, or other devices using Ethernet cables. Connect your Black Box® IT Pro™ to a free port using one of the supplied category 5 cables. If the port lights up after you connect and then turn on your Black Box® IT Pro™, you have a proper connection.

You can cascade more hubs or switches to increase the number of available ports, (consult the manual that comes with your hub/switch before trying this).

Black Box® IT Pro™ User Manual 14

Page 26

Connecting Ethernet Port 0

1. Connect one end of an Ethernet cable into LAN 1 on your Black Box® IT Pro™. (located

on the back of your Black Box® IT Pro™).

2. Connect the other end of the cable into your LAN hub or switch.

Please Note: LAN 1should not be connected to a router providing Internet access. LAN1 is typically used/

reserved for internal/Local Network access.

First-time Nitix Setup - Black Box® IT Pro™

Black Box® IT Pro™ User Manual 15

Page 27

Connecting LAN 2 and LAN 3

LAN 2 and LAN 3 are used to connect to the Internet or to other segments of your LAN. Use

an Ethernet cable to connect to your high-speed Internet routing device. Some devices may require the use of a cross-over cable that is normally supplied with the device.

If you are using your Black Box® IT Pro™ as a workgroup server without a direct connection to the Internet, it is possible to use LAN 2 and LAN 3 to connect to other segments of the LAN. This is typically done to improve network throughputs when large numbers of users are connected to Black Box® IT Pro™.

Please Note: Secondary segments must be physically separate from the primary network segment connected to the LAN1. You cannot connect all Ethernet ports to the same segment in order to improve network throughput.

First-time Nitix Setup - Black Box® IT Pro™

Connecting an External Dial-up Modem

1. Connect the cable included with your own external dial-up modem to the Serial port on

the back of your Black Box® IT Pro™.

2. Connect one end of the standard telephone cable to the external modem, and connect the

other end to your telephone wall jack.

Please Note: The external modem will be auto-detected when the server goes through a power-up sequence.

Black Box® IT Pro™ User Manual 16

Page 28

Configuring Your System

First-time Nitix Setup - Black Box® IT Pro™

1. Turn on the power button.

2. When the system boots, Nitix will automatically launch.

3. Press <Enter>. A Configuration screen similar to the following will appear:

Please Note: A red warning box may appear advising you to set up your server using Nitix’s web-

based configuration screen. Press <Enter> to continue.

Take note of the display’s Settings and Status boxes. These display various information

about the server.

5. Take note of the WebConfig URL shown in the Status box. This is the LAN IP address of

the server. The default IP address of the Black Box IT Pro™ is: 192.168.168.1. You will need this address to connect to and finish the configuration of your server.

Please Note: In the event that the server is unable to detect an appropriate IP address for your LAN, you will have to manually set the IP address for the server. Refer to Manually Setting the IP Address in this chapter for more information.

6. You are ready to proceed with the setup (see Chapter 3: Connecting to WebConfig) when

an IP address appears in the console’s Status box.

Black Box® IT Pro™ User Manual 17

Page 29

Manually Setting the IP Address

1. Select IP Address from the Main Menu box on the Configuration screen (see above).

2. You will be prompted to enter a new IP address. Enter the new IP address and press

<Enter>.

First-time Nitix Setup - Black Box® IT Pro™

3. Confirm the new IP address by pressing <Y>

4. You can turn on or off the DHCP server (which automatically assigns IP addresses to the

workstations connected to your local network). Unless you have some other server providing DHCP services, it is recommended that you turn DHCP on. To turn DHCP on, select DHCP server from the Main Menu on the Configuration Screen - if it says, “The DHCP server is currently DISABLED”, then press <Y> to enable the DHCP server. The DHCP server is now on.

Black Box® IT Pro™ User Manual 18

Page 30

Chapter 3 Connecting to

WebConfi g

What is WebConfig?

The web-based configuration system (WebConfig) is where you will set most Nitix’s options.

Secure WebConfig

Nitix’s WebConfig uses 128-bit encryption, protecting administrator information and passwords. Most recent versions of web browsers contain built-in support for this; you may need to upgrade your browser prior to installing Nitix on your Black Box® IT Pro™.

.Netscape 7 http://channels.netscape.com/ns/browsers/download.jsp Netscape (older versions) http://wp.netscape.com/download/archive.html Microsoft Internet Explorer 6 http://www.microsoft.com/windows/ie/default.asp Mozilla 1.0.1 http://www.mozilla.org/releases/stable.html Opera 6.05 http://www.opera.com/download/

If you are using Microsoft Internet Explorer version 4, 5, or 5.01, but don’t want to upgrade, you can download 128-bit encryption separately:

http://www.microsoft.com/windows/ie/downloads/recommended/128bit/default.asp

Failure to support 128-bit encryption will result in WebConfig being unreachable while the server is running Nitix.

Black Box® IT Pro™ User Manual 19

Page 31

Configuring TCP/IP

Before you can access WebConfig, you have to configure your workstation to use TCP/IP. If TCP/IP is already configured, proceed to Creating an Administrator Account (later in this chapter). If TCP/IP is not configured, follow the appropriate steps for your operating system.

For Windows 95/98/ME:

1. In Windows, select Start > Settings > Control Panel. The Control Panel window dis-

plays:

Connecting to WebConfig

Black Box® IT Pro™ User Manual 20

Page 32

Connecting to WebConfig

2. Select Network from the list. The Network window displays:

Click on the Add button if TCP/IP does not display in the installed components list.

3. The Select Network Component window displays:

Select Protocol from the window. Click Add.

Black Box® IT Pro™ User Manual 21

Page 33

Connecting to WebConfig

4. The Select Network Protocol window displays:

Select Microsoft in the Manufacturers section of the window. Select TCP/IP in the Net- work Protocols section of the window. Click on the OK button. TCP/IP should now dis- play on the Network window.

Black Box® IT Pro™ User Manual 22

Page 34

Connecting to WebConfig

5. Select TCP/IP from the installed components list on the Network window. Click on the

Properties button. The TCP/IP Properties window displays:

6. Click on the IP Address tab. Select Obtain an IP address automatically.

7. Click on the DNS tab. Select Enable DNS.

8. Select all entries in the DNS Server Search Order section of the window and click on the

Remove button.

9. Select all entries in the Domain Suffix Search Order section of the window and click on

the Remove button.

10. Select Obtain an IP address automatically.

11. Click on the Gateway tab. Select any entries in the Installed gateways section of the win-

dow and click on the Remove button.

12. Click on the WINS Configuration tab. Select all entries in the WINS Server Search Order

section of the screen and click on the Remove button. Select Use DHCP for WINS Resolution.

13. Click on the OK button. The Network window displays. Click on the OK button again.

14. Reboot your computer.

Black Box® IT Pro™ User Manual 23

Page 35

For Windows 2000/XP:

1. In Windows, select Start > Settings > Control Panel (or in Windows XP, Start > Control

Panel).

2. Select Network and Dial-up Connections from the list. The Network Connections screen

displays:

3. Click on Local Area Connection. The Local Area Connection window displays:

Connecting to WebConfig

Click on Properties.

Black Box® IT Pro™ User Manual 24

Page 36

Connecting to WebConfig

4. The Local Area Connection Properties window displays:

If Internet Protocol (TCP/IP) is not in the This connection uses the following items list, click on Install.

5. The Select Network Component Type displays:

Select Protocol from the window. Click on Add.

Black Box® IT Pro™ User Manual 25

Page 37

Connecting to WebConfig

6. The Select Protocol window displays:

Select Internet Protocol (TCP/IP) from the list. Click OK. TCP/IP should now display on the Local Area Connection Properties window.

7. Select Internet Protocol (TCP/IP) from the list, and click on the Properties button.

Black Box® IT Pro™ User Manual 26

Page 38

Connecting to WebConfig

8. The Internet Protocol (TCP/IP) Properties screen displays:

Select Obtain IP Address automatically. Select Obtain DNS server address automati- cally.

9. Click on the Advanced button. The Advanced TCP/IP Settings window displays:

Select any entries in the Default gateways section of the window, and click on the

Remove button.

Black Box® IT Pro™ User Manual 27

Page 39

For Mac OS 9:

Connecting to WebConfig

10. Click on the DNS tab. Select any entries in the DNS server addresses section of the win-

dow, and click on Remove. Select Append primary and connection specific DNS suffixes. Select Append parent suffixes and primary DNS suffixes.

11. Click on the WINS tab. Select any entries in the WINS addresses section of the window,

and click on Remove. Select the Default NetBios setting.

12. Click on OK. Click on the OK button on the TCP/IP Properties screen.

13. Reboot your computer.

1. Click on the Apple icon in the top menu bar. Select Control Panel > TCP/IP.

Black Box® IT Pro™ User Manual 28

Page 40

Connecting to WebConfig

The TCP/IP window displays:

2. Select Connect via Ethernet. Select Connect via DHCP. Leave the other fields blank.

3. Click on the Close Window button. The Save screen displays:

Click on Save.

4. If the Internet connection doesn’t function immediately, reboot your computer.

Black Box® IT Pro™ User Manual 29

Page 41

For Mac OS X:

Connecting to WebConfig

1. Click on the Apple icon in the top menu bar. Select Control Panel > System Preferences.

The System Preferences window displays:

Black Box® IT Pro™ User Manual 30

Page 42

2. Click on the Network icon. The Network screen displays:

Connecting to WebConfig

3. Select Automatic for location. Select Built-in Ethernet for connection. In the TCP/IP tab,

select the DHCP configuration.

4. Click on the Apply Now button.

5. If the Internet connection doesn’t function immediately, reboot your computer.

Creating an Administrator Account

At this point, the Black Box® IT Pro™ should have an IP address, your workstation should have TCP/IP configured, and both your Black Box® IT Pro™ and your workstation should be connected to the LAN. You now need to create an Administrator account:

1. Open an Internet browser on your workstation. Newer versions of Netscape or Microsoft

browsers are recommended.

2. Read the IP address on the console. For demonstration purposes, we will use the follow-

ing address:

Black Box® IT Pro™ User Manual 31

192.168.168.1

Page 43

Connecting to WebConfig

3. Enter https://192.168.168.1 into the browser’s address bar. Press Enter on your

keyboard. The Create Administrator Account page displays:

4. Enter a User ID. The default User ID is root – you can use that name or you can create a

new ID by typing over the existing text.

5. Enter the administrator’s full name.

6. Enter a password.

7. Re-enter your password to ensure it was entered correctly.

8. Enter your organization’s registered Internet domain name. Leave the default name if you

do not have one, or if you are unsure about whether or not you have one.

9. Enter your Software Activation Key in the Activation Key text box (see below for more

information on Software Activation Keys).

10. Click on the Save Changes button. This will take you directly to Nitix’s main WebConfig

page.

Please Note: Some browsers will take you to an Administrator Account Created page. If this occurs, click on the Login button and you will be taken to the main WebConfig page.

Please Note: Clicking on the Cancel Changes button will reset the Create Administrator Account form.

Black Box® IT Pro™ User Manual 32

Page 44

Software Activation Keys

Nitix comes, by default, configured in a 30-day Trial mode. To get out of Trial mode and activate the features and licenses you have purchased, you must enter a Software Activation Key.

When you purchase a Black Box® IT Pro™, a Software Activation Key will be provided.

IMPORTANT:An Internet connection is required for activating the Nitix software license. It is the user's responsibility to ensure that an Internet connection is established when attempting to install the software.

Enter Activation Key to Exit Trial Mode

Go to the WebConfig and click on Software Update on the left side. Enter your Activation Key in the Nitix Registration box and then click on the Save Changes button.

Connecting to WebConfig

Updating your Activation Key

To replace an existing Activation Key with a new one first go to the WebConfig. In WebConfig, click on Software Update on the left and you will see your current Key displayed. Click on the Edit button (located to the right). The Nitix Registration box will appear.

Enter your new Activation Key in the Nitix Registration box and then click on the Save

Changes button to complete the process.

Black Box® IT Pro™ User Manual 33

Page 45

System Status Screen

WebConfig’s System Status screen displays the status of the services running on Nitix. The WebConfig menu (on the left side of the screen) allows you to access and configure various Nitix subsystems.

Connecting to WebConfig

Black Box® IT Pro™ User Manual 34

Page 46

Connecting to WebConfig

Black Box® IT Pro™ User Manual 35

Page 47

Features of the System Status screen

Connecting to WebConfig

CPU Utilization

Ethernet 0 Displays the speed of data transfer through LAN 1 (measured in kbps or Mbps). The

Ethernet 1 and 2

PPP link Displays the speed of data transfer through the DSL PPPoE or dial-up Internet con-

Disk Load Displays the amount of data being transferred to and from the hard disk (measured in

Displays the utilization of the system’s central processing unit (CPU) in numerical form and as a bar graph. During intensive operations (such as very heavy file transfers), the CPU utilization bar might show 100%. This is normal cent utilization simply means that the CPU is being fully utilized and does not necessarily mean that your Black Box® IT Pro™ is being overloaded or that performance will suffer. However, if the CPU utilization is constantly at 100%, and you experience service slow-downs, you might want to contact support for a services review.

bar graph displays the speed as a percentage of the highest transfer rate recorded since the last power-up.

Displays the speed of data transfer through the Ethernet Ports 1 and 2 (measured in kbps or Mbps). The bar graph displays the speed as a percentage of the highest transfer rate recorded since the last power-up.

nection (measured in kbps). The bar graph displays the speed as a percentage of the maximum measured speed.

kbps or Mbps). The bar graph displays the amount as a percentage of the highest amount recorded since the last power-up.

. One hundred per

Disk Space Used Shows how full your server hard disk is by displaying the usage and capacity of the

drive.

System Status Details Button

Black Box® IT Pro™ User Manual 36

Displays System Status resource information in a graphical representation, on a variable time basis (e.g. half hour, 1 month, 1 year, etc.). Also includes graphs for Physical Memory and Virtual Memory.

Page 48

Connecting to WebConfig

Internet Status

Displays the status of your Internet connection(s). The status light is bright green when an Internet connection is configured properly. The default route used to transfer data to destinations on the Internet also displays. If a modem is configured, clicking on dial modem initiates a connection to the Internet. The administrator can choose to terminate the connection through this screen.

Firewall Displays the status of the firewall (enabled/disabled).

TunnelVision Displays the status of all TunnelVision connections.

IPsec Connec-

Displays the status of all IPsec connections.

tions

PPTP Connections

Displays the status of all PPTP connections and provides an option to disconnect active connections.

SoftUpdate Displays the status of the subsystem that automatically checks for available software

updates. When the subsystem is active and retrieving a list of available software updates, the status light is bright green. When the subsystem is operational but idle, the status light is gray. A red status light indicates a problem with the subsystem (usually an inability to access the distribution server). Refer to Chapter 27: Log Messages for more information on download errors.

Disk Status Displays the status of your disk configuration, and provides disk reconfiguration

options.

Quota Status Displays if there are any users over their quota limit. See Quota Setup in Chapter 7:

User and Team Management for more information.

User Authentication Method

Displays the method of authentication currently enabled. It will display “Using normal password authentication” if Nitix is in Domain Controller Mode or Non-Domain mode. It will display “Using the ‘domainname’ Windows domain” if Nitix is in Domain Member mode. It will also display the number of Nitix Client Access Licenses (CALs) available for use.

WebMail Displays the status of the WebMail server, and the address for webmail access.

Black Box® IT Pro™ User Manual 37

Page 49

Connecting to WebConfig

Virus Definition Updates

Displays whether or not there is a valid virus scanner license, and the last reported update. It also displays when the definitions were last updated, how many viruses you are protected against, and links to a report on how many viruses were detected since the last reboot.

DNS Server Displays the status of the DNS servers.

FastForward Displays the status of the port forwarding engine and the number of forwarded ses-

sions. The status light is gray if service is disabled, bright green if service is operational, yellow if service is utilized heavily, and red if there is a problem with the service. The CPU utilization bar graph indicates how much processor time is being used by this service.

WWW Server Displays the status of web publishing services. The number of sessions displayed rep-

resents the number of active web sessions currently open. The CPU utilization bar graph indicates how much processor time is being used by this service. The status light is gray if service is disabled, bright green if service is operational, yellow if service is utilized heavily, and red if there is a problem with the service.

Secure WWW Server

Displays the status of the secure web server. The number of sessions displayed represents the number of active secure web sessions currently open. The CPU utilization bar graph indicates how much processor time is being used by this service. The status light is gray if service is disabled, bright green if service is operational, yellow if service is utilized heavily, and red if there is a problem with the service.

Windows File Server

Displays the status of file services for Windows and NT clients. The number of sessions displayed represents the number of active users currently connected to Nitix and utilizing file services. The CPU utilization bar graph indicates how much processor time is being used by this service. The status light is gray if service is disabled, bright green if service is operational, yellow if service is utilized heavily, and red if there is a problem with the service.

Black Box® IT Pro™ User Manual 38

Page 50

Connecting to WebConfig

Apple File Server

Displays the status of file services for Apple Macintosh clients. The number of sessions displayed represents the number of users currently connected to Nitix and utilizing file services. The CPU utilization bar graph indicates how much processor time is being used by this service. The status light is gray if service is disabled, bright green if service is operational, yellow if service is utilized heavily, and red if there is a problem with the service.

NFS File Server Displays the status of the NFS file server for UNIX and similar systems. The number

of sessions displayed represents the number of active users currently connected to Nitix and utilizing file services. The CPU utilization bar graph indicates how much processor time is being used by this service. The status light is gray if service is disabled, bright green if service is operational, yellow if service is utilized heavily, and red if there is a problem with the service.

FTP Server Displays the status of FTP services. The number of sessions displayed represents the

number of active FTP downloads currently in progress. The CPU utilization bar graph indicates how much processor time is being used by this service. The status light is gray if service is disabled, bright green if service is operational, yellow if service is utilized heavily, and red if there is a problem with the service.

MySQL Server Displays the status of MySQL services. The number of sessions displayed represents

the number of active users currently connected to Nitix and utilizing MySQL database services. The CPU utilization bar graph indicates how much processor time is being used by this service. The status light is gray if service is disabled, bright green if service is operational, yellow if service is utilized heavily, and red if there is a problem with the service.

SMTP Server Displays the status of SMTP services. The number of sessions displayed represents

the number of emails being transferred by this server (normally none). The CPU utilization bar graph indicates how much processor time is being used by this service. The status light is gray if service is disabled, bright green if service is operational, yellow if service is utilized heavily, and red if there is a problem with the service.

Black Box® IT Pro™ User Manual 39

Page 51

Connecting to WebConfig

IMAP and POP3 Server

LDAP Server Displays the status of the LDAP server (which is used to publish user names and

Reboot Button

Shutdown Button

*Others Other items may appear on the System Status Screen depending on the addition of

Displays the status of servers responsible for delivery of email messages from IMAP and POP3 mailboxes. The number of sessions displayed represents the number of users currently downloading email messages from their IMAP or POP3 mailboxes. The status light is gray if service is disabled, bright green if service is operational, yellow if service is utilized heavily, and red if there is a problem with the service.

email addresses into the internal directory). The number of sessions shows how many users are connected. The status light is gray if service is disabled, bright green if service is operational, yellow if service is utilized heavily, and red if there is a problem with the service. The CPU utilization bar graph indicates how much processor time is being used by this service.

Click on this button to reboot your Black Box® IT Pro™.

Click on this button to properly shut-down your Black Box® IT Pro™.

any optional software modules. Please refer to the appropriate software documentation for the description of the status indicators.

Notices Box

In most cases, when you change a service option in WebConfig and click on Save As, Nitix will display a list of major actions that are happening in the background in a Notices box at the top of that sub-service screen. Failure notices will also appear in the Notices box.

Black Box® IT Pro™ User Manual 40

Page 52

Connecting to WebConfig

For example, when you create a new user, a Notices box similar to the following will display showing all of the actions Nitix has taken in setting up that user:

Black Box® IT Pro™ User Manual 41

Page 53

Connecting to WebConfig

Black Box® IT Pro™ User Manual 42

Page 54

Chapter 4 Configuring Nitix

Proceeding with Configuration

You are ready to proceed with the system configuration once you have:

• configured your workstation to use TCP/IP

• created an Administrator account

• logged in and connected to WebConfig

Configuring General Network Settings

1. Select Local from the Network Setup menu on the left side of any WebConfig screen. The

Local Network Options screen displays:

Black Box® IT Pro™ User Manual 43

Page 55

Configuring Nitix

2. Nitix automatically assigns a random Host Name to the Black Box® IT Pro™ during the

first boot-up. If appropriate, enter a new host name by typing over the existing text. The new host name should be unique, it should use only numbers and letters, and it should contain no spaces.

Please Note: Host Names should be unique because they are used to distinguish your box from others on the local network and are used by local users to identify a Nitix file and print-sharing resources. In addition, the host name (in conjunction with the domain name) forms a unique Internet name under which the Black Box® IT Pro™ and its web, FTP, and email services are addressed on the Internet.

If appropriate, enter a new domain name by typing over the existing text.

Please Note: Domain Names are part of the Internet naming standard (which applies to every device connected to the Internet). Each host has a unique name, which consists of a host name and domain name. In general, all Internet hosts owned by your company will belong under the same domain.

Indicate whether or not you want the rsync server to be enabled. This option is for Unixstyle clients only. We recommend that you leave the default setting.

5. Select the appropriate public DNS resolution option.

• Select Ye s if you want Nitix to perform DNS resolution for Internet hosts.

• Select No if you do not want Nitix to perform DNS resolution.

• Select Dynamic if you want Nitix to perform Dynamic DNS resolution.

Please Note: If the public DNS server is enabled, Internet hosts can resolve name-to-IP number queries for Internet services provided by Nitix. Dynamic DNS resolution allows you to host email, web, and FTP services using an Internet connection with a dynamic IP address.

The DHCP server is set by default to “turned off” on eth0, if no other DHCP server is on that segment. We recommend that you turn this on.

7. Indicate whether or not you want to enable the SNMP (Simple Network Management

Protocol) server.

Please Note: SNMP is used to collect statistical information from the host about parameters such as network throughput and CPU utilization. It is also used for network monitoring.

If you enable the SNMP server, enter an appropriate SNMP community name.

9. Indicate whether or not you want to enable the NIS Server. Leave NIS disabled if you are

using Windows. If you are using Unix or a similar system, leave it disabled unless you need NIS Service.

Please Note: Nitix’s built-in Network Information Server (NIS) is used to share usernames and groups across a network to simplify user access. Unix and similar systems can be configured to use NIS. Nitix uses NIS version 2.

10.

Indicate whether or not you want to enable Nitix as an NTP Server.

Black Box® IT Pro™User Manual 44

Page 56

Please Note: NTP (Network Time Protocol) client is required to synchronize the desktop clocks to the Black Box® IT Pro™.

Choose whether or not to Restrict Outgoing Connections. As part of Nitix's ICSA compli-

11.

ance, Nitix can restrict outgoing connections to a few protocols. Enabling this option allows outgoing traffic based on the server’s configuration. All other traffic will be blocked. See Chapter 21: Firewall Services for more information.

12. Nitix synchronizes its clock from a source on the Internet. To set the proper time, select

your Time Zone from the drop-down list. Nitix will attempt to auto detect the proper time-zone and display its detected results for you.

13. Click on the Save Changes button.

Configuring Advanced Network Settings

The Advanced Network Settings screen allows you to configure some of Nitix’s more advanced features. Changing advanced network settings can cause odd behavior on your network; for example, if you change your Nitix server’s IP address or Netmask to an incorrect value, you may not be able to reach it from your web browser to change it back.

Configuring Nitix

Please Note: If you intend to use TunnelVision (discussed in Chapter 18), every network in each office location that will be connected through a VPN must have a separate network subnet. If Nitix servers in various locations auto-configure their local network interfaces to the same subnet, you will have to change your subnet number and IP address to a different value. Refer to Reconfiguring Network Devices in this chapter for information on how to do that.

Advanced Network Settings screen

To access the Advanced Network Settings screen:

1. Select Local from the Network Status menu found on the left side of any WebConfig

screen. The Local Network Options screen displays.

Black Box® IT Pro™ User Manual 45

Page 57

2. Select the Advanced... option at the bottom of the screen. The Advanced Network Settings

screen displays:

Network Devices

The following list describes the Network Devices section of the screen:

Configuring Nitix

• Device – lists the network interfaces installed on the Black Box® IT Pro™. Eth0 should be connected to your LAN. ETH1 (LAN2) and ETH2 (LAN3), and PPP0 should be connected to the Internet.

• IP Address – lists the IP addresses to the interfaces.

• Netmask – lists the IP network mask assigned to a particular interface.

• Mode – describes how an IP address was assigned to an interface.

• Forced means that a permanent IP address was assigned by an administrator. Eth0 should always have a forced IP address.

• DHCP means that a temporary IP address was assigned by the DHCP server. DHCP addresses change each time you turn-on your Black Box® IT Pro™.

• NetMap indicates that the IP address was automatically assigned by Nitix.

• Trust – a very important parameter. Yes signifies a trusting relationship with all hosts attached to that interface (meaning that no firewall protection is applied to that inter- face). Eth0 should always be configured as trusted. No means that any traffic arriving at that interface is considered non-trusted; as such, appropriate firewall protection is applied. All Internet connections should be configured as non-trusted.

Black Box® IT Pro™User Manual 46

Page 58

• Action Button – Clicking this button displays a screen where interface settings can be changed.

Reconfiguring Network Devices

1. Click on an interface’s Action button.

2. The Network Settings screen for that interface displays:

3. Optional: Enter a new IP address (in the format 192.168.12.10).

4. Optional: Enter a new network mask (in the format 255.255.255.0).

5. Optional: Indicate whether or not to trust computers on this network.

6. Optional: Indicate whether or not you want Nitix to automatically choose an IP address

and network mask.

• The default setting is Yes , meaning that Nitix automatically selects an IP address and network mask.

• The default setting is changed to No (and autoconfiguration is disabled) if you entered a new IP address or a new network mask and clicked on the Save Changes button.

Configuring Nitix

Please Note: Eth0 should never be set to choose automatically. Once an IP has been chosen, the inter- face should have its option forced (not automatic) unless you are running a separate DHCP server on the local network.

Optional: If your DHCP server (i.e. your cable modem provider) specified that you need a DHCP Client ID when setting up your network, enter it here.

8. Optional: Indicate whether or not you want Nitix to use this link as the default gateway.

Black Box® IT Pro™ User Manual 47

Page 59

9. Click on the Save Changes button.

Network Routes

The Network Routes section of the screen displays the IP routes known to Nitix. Because Nitix automatically discovers its network surroundings and sets up routing tables, you generally do not need to edit them. However, depending on your Internet connection, your ISP may assign you a new route (in which case you have to edit the default route).

Please Note: Whether or not you have to change any route settings depends on your network setup and Nitix’s connection to the LAN and to the Internet.

Configuring Nitix

• If this is set to Yes , Nitix will create a default route to the network through this interface at the highest priority level, so this link will be used by default for incoming and outgoing traffic.

• If this is set to Only as last resort, Nitix will create a default route to the network through this interface with a lower priority level, so it will be used only if your higher-priority (“Yes”) links stop working.

Deleting Network Routes

1. Click on the appropriate route’s Delete button.

2. In the window that appears, confirm the deletion by clicking on the Ok button.

Please Note: If the server prevents the route from being deleted, the server deems the route as

“required” or important, as it must relate to another setting or subnet in your “Device” list. If you continue to have issues, review FAQs for a “Netscan” option or contact support.

Black Box® IT Pro™User Manual 48

Page 60

Editing Network Routes

1. Click on the appropriate route’s Action button. The following screen displays:

2. Optional: Enter a new destination IP address and netmask (in the format

192.168.12.0/24).

3. Optional: Click on the Interface drop-down arrow and select the interface over which

this network can be accessed.

4. Optional: If this is not a local network route entry (i.e. eth1 or eth2), enter the network’s

gateway address:

Configuring Nitix

5. Click on the Save Changes button.

Black Box® IT Pro™ User Manual 49

Page 61

Network Configuration Scenarios

1. Black Box® IT Pro™ as a Workgroup Server without a direct connection to the

Internet

In this scenario, you would go to the Advanced Network Settings screen to change the IP address or the network mask of the local network interface or Nitix’s default route. Although you generally do not need to change these settings, you can still do so:

a. In the Network Devices or Network Routes section of the Advanced Network Settings

screen, click on the appropriate Action button.

b. Depending on your choice, the Modify Route or the Network Settings screen displays:

Please Note: Refer to Reconfiguring Network Devices and Editing Network Routes earlier in this

chapter for full descriptions of these two screens.

Configuring Nitix

Hub/Switch

Change the appropriate settings and click on the Save Changes button.

Black Box® IT Pro™User Manual 50

Page 62

Configuring Nitix

2. Black Box® IT Pro™ as a Workgroup Server and Dial-up Gateway to the Internet

Internet

Dial-up line

Hub

/Switch

If Nitix has automatically chosen the proper IP addresses, there is nothing else for you to change. If you want to change the Nitix servr’s local IP addresses, you can do so by clicking on the Edit button on the line describing the parameters for the Ethernet 0 interface.

The default route is automatically determined when Nitix dials in to the Internet. In this case, there should be no default route entry in the Routes Table.

3. Black Box® IT Pro™ as a Workgroup Server and High-speed Gateway to the Inter-

net

Hub/Switch

Router

Internet

Nitix auto configures its parameters if the ISP uses DHCP as a means of automatic network configuration. In this case, there should be nothing for you to do on the Advanced Network Setup screen (although you can change the address of your local network interface if you wish to do so).

If your ISP assigns a unique static IP address, network mask, and default route, Nitix will likely discover the proper default route but will not know which IP address to select. Although Nitix will find the available address and establish a proper connection to the

Black Box® IT Pro™ User Manual 51

Page 63

Configuring Nitix

Internet, you should change the IP address of your Internet interface to the address assigned by your ISP. You should do the same with the default route setting. If you run into problems configuring advanced network settings, contact technical support. To change these settings:

a. In the Network Devices section of the Advanced Network Settings screen, click on the

eth1 Action button.

b. The Network Settings screen displays. Enter the new IP address and click on the Save

Changes button.

c. In the Network Routes section of the Advanced Network Settings screen, click on the

Default Action button (the last entry in the list).

d. The Modify Route screen displays. Change the default route and click on the Save

Changes button.

4. Black Box® IT Pro as a Domain Controller and High-speed Gateway to the Internet

Hub/Switch

Router/Cable

Internet

Modem/DSL Modem

Nitix can serve as a Windows NT style domain controller for all the computers running Windows on the network. As the domain controller, Nitix will provide authentication services for the computers on the network. When this function is enabled, the Windows file server is set up as a domain controller, and a domain will replace the Windows workgroup. For specific information on configuring domain controllers, please see Chapter

10: NT Domain Services.

Black Box® IT Pro™User Manual 52

Page 64

Configuring your Internet Connection

Configuring a Dial-up Modem

1. Select Dial-up from the Network Status menu found on the left side of any WebConfig

screen. The Dial-up Networking Setup screen displays:

2. Optional: If you have an external modem connected, you may need to click on the Detect

Modems button to initiate the Modem Detection Cycle. Refer to Chapter 6: DoubleVision

for information on using multiple dial-up modems.

Please Note: If modem undetected, check cables/power, etc. Cycle power on modem and initiate a new Detect Modems test. Refer to FAQ for more troubleshooting tips.

Click on the Modem #1 Action button. The following screen displays:

Configuring Nitix

4. Enter the phone number provided by your ISP. If you have to dial 9 to get an outside line,

enter this number as well. For example, enter:

Black Box® IT Pro™ User Manual 53

9, 123-123-1234.

Page 65

Configuring Nitix

5. Enter the Internet account username provided by your ISP.

6. Enter the account password provided by your ISP.

7. Re-enter your password to ensure it was entered correctly. If the passwords do not match,

you will be asked to re-enter your password in both fields.

8. Indicate the number of idle seconds before automatic disconnection.

Please Note: If you enter zero, the connection will never automatically disconnect. Be careful with

this setting, especially if you do not have an unlimited Internet access package from your ISP.

Select the appropriate dialing mode:

• Select Ye s if you want the Black Box® IT Pro™. to dial automatically to the Internet when someone tries to reach it.

• Select No if you want to manually initiate a connection by clicking on Dial Modem on the System Status page.

• Select Only as a last resort if you want to use a dial-up connection when one or more of your high-speed connections fail. The dial-up connection will stay active until one of the high-speed connections becomes functional. Although all traffic is forwarded to the high-speed connection when it returns to normal, the dial-up connection remains active for a few minutes in case the high-speed connection fails again. In that case, the system re-routes traffic back to the dial-up connection immediately without having to wait for a dial-up connection to be re-established.

10. Indicate whether or not you want your Black Box® IT Pro™ to emulate Windows Dial-

up Networking.

Please Note: Some Internet providers are setup to work only with Windows dial-up clients. If you have problems establishing dial-up connection, try enabling this option.

Indicate whether or not users will be able to establish a remote dial-in modem connection

11.

to the internal network.

Please Note: A user’s VPN (PPTP) and Dial-In access has to be enabled before they can establish a remote connection. See Creating Users in Chapter 7: User & Team Management for more information.

12.

Click on the Save Changes button.

Black Box® IT Pro™User Manual 54

Page 66

Configuring a DSL Connection (PPPoE)

1. Select Dial-up from the Network Status menu found on the left side of any WebConfig

screen. The Dial-up Networking Setup screen displays.

2. Click on the Action button in the appropriate ADSL row (eth1 or eth2 only). The ADSL

Dialer Options screen displays:

3. Enter the Internet account username provided by your ISP.

4. Enter the account password provided by your ISP.

5. Re-enter your password to ensure it was entered correctly. If the passwords do not match,

you will be asked to re-enter your password in both fields.

6. Optional: Enter your gateway IP address. Leave this blank if you don’t know the address.

7. Indicate whether or not you want to enable the connection.

• Select Yes if you want to establish a permanent connection.

• Select No if you do not want to establish a connection.

• Select Only as a last resort if you want to use this connection only if the primary connection fails.

8. Click on the Save Changes button.

Configuring Nitix

Black Box® IT Pro™ User Manual 55

Page 67

Configuring a Leased Line Connection

1. Select Dial-up from the Network Status menu found on the left side of any WebConfig

screen. The Dial-up Networking Setup screen displays.

2. Click on the Leased Line Action button. The following screen displays:

3. Enter the account username provided by your ISP.

4. Enter the account password provided by your ISP.

5. Re-enter your password to ensure it was entered correctly. If the passwords do not match,

you will be asked to re-enter your password in both fields.

6. Indicate whether or not you want to enable this connection.

• Select Ye s if you want to establish a permanent connection using the leased line. This is the recommended setting.

• Select No if you do not want to establish a connection using the leased line.

• Select Only as a last resort if you want to use the leased line connection only if the primary connection fails.

7. Click on the Save Changes button.

Configuring Nitix

Take A Snapshot

Now that you have taken the time to configure Nitix you can use the Take Snapshot item in the left hand menu to display all the information available on one scrollable page.

Black Box® IT Pro™User Manual 56

Page 68

Chapter 5 Client Access Licenses

Client Access Licenses, or “CALs,” allow individuals within your company to legally use the Black Box® IT Pro™: when you purchase a Nitix CAL, you are purchasing the rights for a user to use the software.

Client Access Licensing Requirements

Nitix uses a “Per User” licensing model. That is, any number of individuals can connect to the Black Box® IT Pro™; however, you must purchase a Nitix Client Access License (CAL) for each individual, or “user account,” where access to Nitix services (such as email, file, print and FTP services) is needed. For example, if an individual is only utilizing the Black Box® IT Pro™ as gateway or firewall, that person does not require a CAL. See Chapter 7: User and Team Management for more information.

Please Note: Nitix CALs are not required for team accounts without a password; team members can still access team data/services using their personal user account passwords.

A defined number of Nitix CALs come with each Black Box® IT Pro™. One additional “free” Nitix CAL is allocated for a Nitix administrator.

License Information

To see how many Nitix CALs are licensed for the system and currently being used:

1. Login to Nitix with your administrator username and password. WebConfig’s System

Status page displays.

Black Box® IT Pro™ User Manual 57

Page 69

Client Access Licenses

2. Select Software Update from the left-hand side of the WebConfig screen. The Software

Update screen displays with a Notices box at the top of the screen showing how many

Nitix CALs you have:

Please Note: The User Authentication Method box on WebConfig’s main System Status screen also dis- plays how many Nitix CALs are licensed for the system and currently being used.

If you exceed your licensed number of Nitix CALs, a Notices box similar to the following will appear at the top of each page in WebConfig:

Please Note: To purchase additional Nitix licenses, please contact Black Box.

Black Box® IT Pro™ User Manual 58

Page 70

Chapter 6 DoubleVision

What is DoubleVision?

DoubleVision is a Nitix feature that allows you to configure two or more Internet connections. For example, you can combine a cable modem and an ADSL link, two ADSL links, multiple dial-up modems (to the same or different ISP), or any combination of Internet connections supported by Nitix.

There is no single place to configure DoubleVision. Instead, it is automatically configured when more than one Internet connection is used at the same time.

Please Note: In order for DoubleVision to activate, you must have at least two gateway connections. You can choose a default connection.

Advantages to DoubleVision

• Increased performance

Internet traffic is increased by being able to utilize the bandwidth of both lines.

Please Note: You cannot specify which connection is used. It is automatically chosen by NetIntelli- gence.

• Increased reliability

If one ISP’s Internet connections fails, the remaining ISP’s connection stays functional. This means that your downtime is limited (it’s also known as fail-over, or redundant connectivity).

• Last Resort dial-up mode

If one or more of your high-speed Internet connections fail, Nitix can dial your modem automatically and use dial-up access instead. When your high-speed links are restored, the modem automatically disconnects after it verifies that the high-speed connections are stable and active. The same applies to high-speed connections if you choose to use them as a last resort connection.

Black Box® IT Pro™ User Manual 59

Page 71

• Dynamic DNS Integration

If you’re using Dynamic DNS, Nitix automatically publishes appropriate DNS names so that people can always find your web site, even if your high speed links are down and you need to use a dial-up connection. See Chapter 22: Domain Name Services for more information.

• NetIntelligence

No human intervention is required to activate and deactivate Internet services when they fail or are restored. NetIntelligence automatically takes care of these situations.

• Full automation

You do not have to reconfigure any client workstations on your local network in order to take advantage of DoubleVision. DoubleVision is fully automated and managed by the server.

Modem Connections

Since modems are normally much slower than other Internet connections, you probably do not want to use a modem as your primary connection. Instead, you can configure your modem as a ‘last resort’ option, meaning that your modem will only connect if one or more of the high-speed connections fails.

DoubleVision

If a modem is configured as the primary connection, it will connect to the Internet even if high-speed connections are available. This is useful if you want to test the modem connection.

Black Box® IT Pro™ User Manual 60

Page 72

Chapter 7 User & Team

Management

Service Integration

User and team management is tightly integrated with a number of other Nitix services. It is very important that you understand how user and team management relates to these other functions before we start talking about creating, editing, and deleting users and teams. Please read the following section carefully.

Nitix’s email, file, web, and FTP services are tightly integrated. Every user and team account that is created has instant and automatic access to all of these services. When a user is created, a number of things happen in the background:

• a login account is created and the password defined by the administrator is assigned to that account.

• a personal user directory is created on the server. This directory is accessible in Windows’ Network Neighborhood or on Macintosh’s AppleShare drive. If NFS is enabled, UNIX and similar systems can use the path

/export/home/username to access this directory. For example, the path for

someone with the username janedoe would be

• a WWW directory is created within the user’s personal directory. Any file stored in this directory is automatically published on the user’s personal web page.

• an FTP account (which points directly to the user’s personal directory) is created for the user. If the user logs in to the FTP server using the proper username and password, they can access the files in their personal directory.

• an email account is created for the user. Email is available through either POP3, IMAP, or WebMail.

/export/home/janedoe.

Similarly, when a team is created, a number of things happen in the background:

• a team login account is created and the password defined by the administrator is

• a team directory is created. This directory is accessible to all team members in

Black Box® IT Pro™ User Manual 61

assigned to that account.

Window’s Network Neighborhood or on Macintosh’s AppleShare drive. If NFS is enabled, UNIX and similar systems can use the path

/export/home/teamname

Page 73

User & Team Management

to access this directory. For example, the path for a team named sales would be

/export/home/sales.

• a WWW directory is created within the team directory. Any file stored in this directory is automatically published on the team's web page.

• an FTP account (which points directly to the team directory) is created for the team. If a team member logs into the FTP server using the proper team name and password, they can access the files in the team directory.

• an email distribution account is created for members of the team. Team email can be accessed through either POP3 or IMAP mailboxes. Emails received by the team email account may be set to be automatically forwarded to all members of the team.

Please Note: All Nitix user and team accounts with a password require a Nitix CAL. Users who do not need to access Nitix services (such as email, file, print and FTP services), do not require a CAL. Nitix CALs are not required for team accounts without a password; team members can still access team data/ services using their personal user account passwords. One additional “free" Nitix CAL is allocated for a Nitix administrator. See Chapter 5: Client Access Licenses for more information.

Black Box® IT Pro™ User Manual 62

Page 74

User Accounts

Creating Users

1. Select User Setup from the menu on the left side of any WebConfig screen. The Main

Setup screen displays:

User & Team Management

Black Box® IT Pro™ User Manual 63

Page 75

User & Team Management

2. Click on the Add New User button. The Add a User screen displays:

3. Enter the User ID that will serve as the user’s login and personal directory name. User

IDs cannot contain spaces or any punctuation other than the hyphen, the dot, or the underscore (e.g. jane-doe, jane.doe, janedoe).

Please Note: If Nitix's email server is used to receive email, this user ID will become part of the user’s email address. For example, if the username janedoe is created on a Black Box® IT Pro™ that resides in the

example.com domain, Jane's email address will be janedoe@example.com.

Enter the user’s full name.

5. Enter a password for the user. User passwords should be unique.

6. Re-enter the password to ensure it was entered correctly. If the passwords do not match,

you will be asked to re-enter the password in both fields.

7. Indicate whether or not this user will have administrative privileges. Administration priv-

ileges means that this user will have unrestricted access to all configuration functions of Nitix.

8. Indicate whether or not this user will have FTP access to his or her private directory.

Please Note: FTP has to be enabled before the user has FTP access. If FTP is enabled in Trusted

Hosts Only mode, the user can access files from a trusted, internal network or from a VPN. If FTP is enabled in open mode, the user can access files using FTP from anywhere on the Internet.

Indicate whether or not the user is allowed to establish a remote VPN (PPTP) or dial-in modem connection to the internal network. For security reasons, most users should not be able to establish a remote connection.

Black Box® IT Pro™ User Manual 64

Page 76

Editing Users

User & Team Management

Please Note: VPN services have to be enabled before a user can establish a VPN connection. Similarly, dial-in for a specific modem has to be enabled before a user can establish a dial-in connection on that modem. See Chapter 20: Remote Access Services for more information.

10.

If the domain controller is enabled, choose a drive that the user’s files can be automatically mounted to when logged into a domain workstation. The default drive is X:.

Please Note: Be sure to choose a drive that is not already in use. For more information, see Chapter 10: NT Domain Services.

Select a Quota Value for this user.

11.

Please Note: For more information, see Chapter 9: Disk Quotas.

Select the teams this user will be a part of. Team membership gives users full access to

12.

the team’s shared directory.

13. Click on the Save Changes button. The Main User Setup page re-displays, and the user

displays in the list of previously created users.

1. On the Main User Setup screen, click on the appropriate user’s Edit Action button. The

Modify User screen displays:

2. Change the user’s information as appropriate. Refer to Creating Users (in this chapter)

for a description of the fields on this screen.

3. Click on Convert to Team to convert this user into a team.

Black Box® IT Pro™ User Manual 65

Page 77

4. Click on the Saves Changes button.

Deleting Users

IMPORTANT: Deleting a user means that all of the user’s personal files, email settings, mailbox, and any undelivered email in the mailbox will be deleted. Once this is done, none of the above can be recovered.

1. On the Main User Setup screen, click on the appropriate user’s Delete button.

2. A “delete user” confirmation box appears. Select the OK button to continue and DELETE

the user.

Import Users from Windows

To upload user information from a Windows 2000 or NT server:

1. You will need to download an executable file called “pwdump2”. The program is freely

available online and can be found at various locations on the Internet. Here is one: http://razor.bindview.com/tools/desc/pwdump2_readme.html

2. Download the file called “pwdump2.zip” and unzip the contents to their own folder. For

example, extract the contents to a folder called “pwdump2” on your C drive.

3. Click on the Start menu, and choose Run.

User & Team Management

Black Box® IT Pro™ User Manual 66

Page 78

User & Team Management

4. Enter “cmd” and click OK.

5. Type “cd pwdump2” and hit Enter. This will change the directory to the folder you cre-

ated on your C drive that contains the contents to the file “pwdump2.zip”.

6. Type “pwdump2 > list.txt” and hit Enter. This will run the file called “pwdump2.exe” and

generate a text file called “list.txt” in the same folder.

7. Open the file called “list.txt”. This contains a list of Windows users. Highlight the users

you wish to import, right-click with your mouse and choose Copy.

Black Box® IT Pro™ User Manual 67

Page 79

User & Team Management

8. In WebConfig, click on User Setup in the left-side menu. The main setup screen displays:

9. Click on Import Users. The Import Users screen will display:

Black Box® IT Pro™ User Manual 68

Page 80

User & Team Management

10. Right-click on your mouse in the field called “Import Users Info”. Choose Paste. This

will copy the contents of the file called “list.txt” into this space.

11. Click on Save Changes. This screen will display.

12. Click on Save Changes.

13. Because Windows utilizes a one-way hash algorithm for storage of passwords, the pass-

words are not easily recovered. The Administrator will need to create new passwords by

Black Box® IT Pro™ User Manual 69

Page 81

User & Team Management

clicking on the left button in the Action column, in the row containing a user’s information. This screen will display:

14. Enter the new password into the appropriate fields. Click Save Changes.

Modifying User Email Settings

1. Select User Setup from the menu on the left side of any WebConfig screen. The Main

User Setup screen displays.

2. Click on the appropriate user’s Action button. The Modify Users screen displays.

Black Box® IT Pro™ User Manual 70

Page 82

User & Team Management

3. Click on the E-mail... button on the bottom of the screen. The E-mail Setup screen dis-

plays:

Section A:

1. Retrieve Mail from POP Server:

• Used to POP mail from your current mail provider and/or used to pull third party POP mail (i.e. Yahoo/Hotmail).

• Configure by entering the full server name used to pull mail down from your ISP (i.e. pop1sympatico.ca).

2. Remote POP Username:

• Enter the appropriate account credentials for the mail service you are retrieving from.

3. Remote POP Password:

• Enter password for POP account.

4. Re-enter POP Password:

• Re-enter password for POP account.

Section B:

Black Box® IT Pro™ User Manual 71

Page 83

1. Forward to this E-Mail Address:

• This is a “by user” mail forwarder. This allows you to forward or send copies of your mail to an alternative address (e.g. you’re leaving for vacation, but need your colleague to review your email for sales orders).

Section C:

1. Keep Mail if Forwarding?:

• Gives you the ability to keep a copy of all the mail that you have forwarded for later review or archive.

• Default setting is YES.

Section D:

1. Automatic Reply Message:

• Also known as the “Out of Office” notification.

• Users can automate a private reply message for any mail that gets sent to them.

Please Note: This feature is intelligent and is designed to send a single response to each address that gets received to your mailbox. If the same user sends you ten messages, they will only receive one auto reply from your mailserver.

User & Team Management

Team Accounts

Creating Teams

1. Select User Setup from the menu on the left side of any WebConfig screen. The Main

User Setup screen displays.

Black Box® IT Pro™ User Manual 72

Page 84

User & Team Management

2. Click on the Add New Team button. The Create New Team screen displays:

3. Enter a team ID. This ID serves as the name of the team’s shared directory and as the

team’s FTP login name (which gives team members FTP access to the shared directory and the WWW directory). Team IDs cannot contain spaces or any punctuation other than the hyphen, the dot, or the underscore (e.g. sales-team, sales.team, sales_team).

4. Enter a descriptive name for the team in the Full Name field.

5. Enter a login password for the team. Team passwords should be unique.

6. Re-enter the password to ensure it was entered correctly. If the passwords do not match,

you will be asked to re-enter the password in both fields.

7. Indicate whether or not the team will have FTP access to the team directory.

Please Note: FTP has to be enabled before the team has FTP access. If FTP is enabled in Trusted

Hosts Only mode, the team can access files from the internal network or from a VPN. If FTP is enabled in open mode, the team can access files using FTP from anywhere on the Internet.

Indicate whether or not team members are allowed to establish a remote VPN (PPTP) or dial-in modem connection to the internal network. For security reasons, most teams should not be able to establish a remote connection.

Please Note: VPN services and dial-in services have to be enabled before a team member can establish a VPN or dial-in connection. See Chapter 20: Remote Access Services for more information.

Select the appropriate group email setting:

• Select Send to members to send team emails to all team members.

• Select Use shared folder to store all team emails in an automatically created folder

• Select Act as mailing list to make the group email address act as a mailing list

Black Box® IT Pro™ User Manual 73

that is accessible to all team members through an IMAP client.

where others (even non-group members) can subscribe.

Page 85

User & Team Management

When a mailing list is first setup, no one is subscribed to it. People who want to subscribe (including group members) must do it themselves. To subscribe/unsubscribe, mail is sent to group-subscribe@example.com or group-unsubscribe@example.com.

The mail list files are maintained in the group’s home directory under Maildir/listmail/.

The default value for a group email is to forward mail to all members.

10. If the domain controller is enabled, choose a drive that the team’s shared files can be

automatically mounted to when one of its members logs into a domain workstation. The default, None, does not mount the files to ensure that there are no conflicts with drive space.

Please Note: For more information, see Chapter 10: NT Domain Services.

Select a Quota Value for this team.

11.

Please Note: For more information, see Chapter 9: Disk Quotas).

Select the members of the team. Team membership gives full access to the team’s shared

12.

directory.

13. Click on the Save Changes button. The Main User Setup page re-displays. The team dis-

plays in the list of previously created teams.

Black Box® IT Pro™ User Manual 74

Page 86

Editing Teams

User & Team Management

1. On the Main User Setup screen, click on the appropriate team’s Edit Action button.

2. The Modify Team screen displays:

3. Change team information as appropriate. Refer to Creating Teams (in this chapter for a

description of the fields on this screen.

4. Click on Send to send this team a test email.

5. Click on Convert to User to convert this team into a user.

6. Click on the Save Changes button.

Convert to User

Clicking on “Convert to User” on the Modify User screen will convert a “user” into a team of the same name.

Convert to Team

Clicking on “Convert to Team” on the Modify User screen will convert a team into a user account. All team members will be removed.

Black Box® IT Pro™ User Manual 75

Page 87

Deleting Teams

IMPORTANT: Deleting a team means that the team’s shared network directory and all of the files contained within the directory are deleted. Once this is done, none of the above can be recovered.

1. On the Main User Setup screen, click on the appropriate team’s Delete button.

2. In the window that displays, click on the OK button.

Password Policy

The Password Policy feature allows an administrator to set restrictions on the format of passwords chosen by users. For example, the administrator can specify that upper-case and lower-case letters must be included in the password and/or that passwords must be of a particular minimum length.

Please Note: The Password Policy will only affect users when they change their password in WebConfig. I.e., if a user is already set up and the administrator creates a Password Policy, that user’s password will be valid -- even if it does not meet the Policy criteria -- until he or she creates a new password.

User & Team Management

Black Box® IT Pro™ User Manual 76

Page 88

Creating a Password Policy

1. Select User Setup from the menu on the left side of any WebConfig screen. The main

User Setup screen displays:

User & Team Management

2. Click on the Password Policy button at the bottom of the screen. The Password Policy

screen displays:

3. Choose whether you wish to enforce the Password Policy for administrators.

Please Note: The Password Policy settings are always enforced for regular users. If this option is

enabled, the Password Policy settings will also be enforced for admin users.

Black Box® IT Pro™ User Manual 77

Page 89

4. Select which Password Policy criteria should be enforced by checking off the appropriate

5. If you wish to enforce a minimum password length, enter the number of characters in the

6. Click on the Save Changes button. The main User Setup page re-displays.

Please Note: The “Passwords must contain letters” and “Passwords must contain both upper- and lower-

case letters” rules are independent of each other. Therefore, you only need to select one or the other - not both.

Illegal Passwords

The Password Policy will only affect users when they change their password in WebConfig. I.e., if a user is already set up and the administrator creates a Password Policy, that user’s password will be valid -- even if it does not meet the Policy criteria -- until he or she creates a new password.

When a user changes their password in their personal WebConfig screen to one that does not meet the Policy criteria, they will get a pop-up error message similar to the following:

User & Team Management

boxes (i.e. Passwords must contain letters).

Password minimum length text box.

Black Box® IT Pro™ User Manual 78

Page 90

User & Team Management

They will also receive an error message in WebConfig’s Notices box telling them that their password was not changed.

Administrators are able to change a user’s password to one that does not meet the Policy criteria. This allows administrators to set an easy-to-remember password for a new-user, until that user can go in and change his or her own password.

The administrator will receive an error message in WebConfig’s Notices box warning him or her that the password does not meet the Policy criteria, but that the password has been changed:

Black Box® IT Pro™ User Manual 79

Page 91

User & Team Management

Black Box® IT Pro™ User Manual 80

Page 92

Chapter 8 File Services

File Sharing Services

Nitix is designed to provide high performance file sharing services for Windows, Macintosh, and UNIX-style clients. Files created by Windows users can transparently be seen by Macintosh users and vice versa.

The management and administration of file services is tightly integrated with user management and administration. Please refer to Service Integration in Chapter 7: User & Team Management for a detailed explanation of how file sharing services are automatically setup during user and team creation.

Black Box® IT Pro™ User Manual 81

Page 93

Configuring File Services

1. Select the File from the Server Setup menu on the left side of any WebConfig screen. The

File Server Setup screen displays:

File Services

2. If appropriate, enable the file virus scanner. With this option selected, all files on the sys-

tem will be automatically scanned for viruses every 12 hours. When a virus is encountered, it will be cleaned up if possible. Otherwise it will be renamed to “filenameINFECTED” and the user whose directory the file was found in will be informed via email of the virus.

3. If appropriate, enable the Macintosh File Server. If Macintosh file services are not

enabled, users will not have access to their personal network directories or shared team directories from Macintosh workstations.

Black Box® IT Pro™ User Manual 82

Page 94

File Services

4. If appropriate, enable the Windows File Server. If Windows file services are not enabled,

users will not have access to their personal network directories or shared team directories from Windows workstations.

5. Enable the Windows File Server if you are: using a workgroup, acting as a domain mem-

ber, or if you are acting as a domain controller.

a. Enter a workgroup name if you are not acting as a domain member or a domain con-

troller. This name indicates the workgroup under which the Black Box® IT Pro™ will be listed as a resource in Windows Network Neighborhood.

Please Note:It is recommended that you enter the Windows workgroup name being used by other workstations in the office. If you are setting up a new network, you can use any workgroup name you wish – just make sure that you configure your Windows workstations so they belong to the same workgroup.

Enter a domain name if you want to enable the Domain Member or Domain Controller feature.

Please Note: You cannot act as a Domain Member and a Domain Controller at the same time.

If appropriate, enable the Act as Domain Member? feature by selecting Ye s.

Please Note: If you choose Nitix to act as a Domain Member, ensure that you have disabled Act as

Domain Controller? and Domain Controller: Enable roaming profiles?.

Enter your Domain Member: Admin username (this is your Windows NT administrator

name).

8. Enter your Domain Member: Admin password (this is your Windows NT administrator

password). Re-enter your password to ensure it was entered correctly.

9. If appropriate, enable the Domain Controller. The Windows File Server will then act as

the Windows domain controller. The Windows workgroup name will then become your network Domain Name.

Please Note: If you choose to have Nitix act as a Domain Controller, ensure that you have disabled the Act as Domain Member? feature.

Please Note: The Windows File Server must be enabled for the Domain Controller to function. See Chapter 10: NT Domain Services for more information.

Please Note: Your network domain name has nothing to do with your internet domain name. They do not interact and are independent of each other.

Advice/Recommendation:Do not use the same internet domain name as your local network domain name.

10.

Enter an administrative password for the Domain Controller. This will be used to add workstations to the domain. Re-enter the password to ensure it was entered correctly.

Black Box® IT Pro™ User Manual 83

Page 95

11. If appropriate, enable the NFS File Server. If NFS file services are not enabled, UNIX

users will not have access to their personal network directories or shared team directories from UNIX workstations.

12. Click on the Save Changes button.

13. To ensure that the status of the file server has changed, select System Status from the

menu on the left hand side of the screen. The Windows, Apple, and NFS File Server sections of the System Status screen display the updated status.

Please Note: It may take up to 15 seconds for file services to start, and during that time the status may read Error starting service.

Access Control Lists

An Access Control List (ACL) is a set of data that informs a computer's operating system which permissions, or access rights, that each user or team has to a specific file or directory.

Administrators can modify a Nitix user or team's permissions (“Read Only,” “Read/Write” or “None”) on directories through the Nitix Permissions feature.

File Services

Black Box® IT Pro™ User Manual 84

Page 96

Setting a User's Permissions

1. Select File under Server Setup from the menu on the left side of any WebConfig screen.

The File Server Setup screen displays:

File Services

Black Box® IT Pro™ User Manual 85

Page 97

File Services

2. Click on the Permissions button at the bottom of the screen. The Select Files screen dis-

plays:

3. Scroll down the list of Teams, Admins and Users in the selection box and click on the

directory of the user you wish to assign permissions to. Click on the check mark icon to the right of the list.

4. The Modify File Permissions screen displays showing the current permissions for that

directory:

Black Box® IT Pro™ User Manual 86

Page 98

5. Modify the user's permissions by clicking on the radio buttons: Read Only, Read/Write,

and None. Click on the check mark button in the Action column to save the permissions that have been set.

Please Note: To reset a user's permissions level to default settings, click on the Reset Permissions button at the bottom of the screen. This will reset all permission for all contents, including sub-folders, of the user's directory.

Please Note: Note: You can remove a user's permissions by clicking the "X" button in the action column. This option does not appear for the file owner or for the Everyone Else row.

Setting a Team's Permissions

1. Select File under Server Setup from the menu on the left side of any WebConfig screen.

The File Server Setup screen displays:

File Services

Black Box® IT Pro™ User Manual 87

Page 99

File Services

2. Click on the Permissions button at the bottom of the screen. The Select Files screen dis-

plays:

3. Scroll down the list of Teams, Admins and Users in the selection box and click on the

directory of the team you wish to assign permissions to. Click on the check mark icon to the right of the list.

4. The Modify File Permissions screen displays showing the current permissions for that

directory:

Black Box® IT Pro™ User Manual 88

Page 100

File Services

5. Modify the team's permissions by clicking on the radio buttons: Read Only, Read/Write,

and None. Click on the check mark button in the Action column to save the permissions that have been set.

Please Note: To reset a team's permissions level to default settings, click on the Reset Permissions button at the bottom of the screen. This will reset all permission for all contents, including sub-folders, of the team's directory.

To view the permissions of all users assigned to that team, click on the Plus symbol to the left of the team name in the Modify File Permissions section. This will expand the team list and show all users within that team as well as their permission levels.

Please Note: The expanded rows cannot be modified; they are for informational purposes only.

Please Note: You can remove a user's permissions by clicking the "X" button in the action column. This

option does not appear for the file owner or for the Everyone Else row.

Black Box® IT Pro™ User Manual 89

Black Box LNA1000A User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual