LevelOne WHG-1000 User Manual
LevelOne
WHG-1000
300Mbps Wireless PoE Hotspot Gateway
User Manual
H/W Ver 2.0
2012/11/08
tents
Chapter 1. Before You Start............................................................................................... 1
1.1 Preface ........................................................................................................................................ 1
1.2 Package Contents ....................................................................................................................... 1
Chapter 2. System Overview ............................................................................................. 2
2.1 Introduction of WHG-1000 .......................................................................................................... 2
2.2 System Concept .......................................................................................................................... 2
2.3 Specification ................................................................................................................................ 3
Chapter 3. Base Installations ............................................................................................ 9
3.1 Installations ................................................................................................................................. 9
3.1.1 System Requirements ......................................................................................................... 9
3.1.2 Panel Function Descriptions ............................................................................................... 9
3.1.3 Hardware Installation ......................................................................................................... 11
3.2 Software Configuration ............................................................................................................. 12
3.2.1 Getting Start ...................................................................................................................... 12
3.2.2 Quick Configuration .......................................................................................................... 14
3.2.3 Access Internet ................................................................................................................. 19
Chapter 4. Web Interface Configuration ........................................................................ 20
4.1 Connect WHG-1000 to the external Netw ork ......................................................................... 21
4.1.1 Network Requirement ....................................................................................................... 21
4.1.2 Configure WAN Port .......................................................................................................... 21
4.1.3 Configure WAN Traffic ...................................................................................................... 24
4.1.4 Configure Dynamic DNS ................................................................................................... 26
4.1.5 Configure Local(LAN/VLA N) Net w ork .............................................................................. 27
4.2 Create Your Wireless Networ k .................................................................................................. 32
4.2.1 Configure Wireless General Setup ................................................................................... 32
4.2.2 Configure Wireless Advanced Setup ................................................................................ 34
4.2.3 Create Virtual AP............................................................................................................... 37
4.2.3.1 Configure Virtual AP .................................................................................................. 40
4.2.3.2 Block Wireless Clients .............................................................................................. 45
4.2.3.3 Monitor Associated Wireless Clients ......................................................................... 46
4.3 Expand Your Wireless Network ................................................................................................ 47
4.3.1 Create WDS Link .............................................................................................................. 47
4.3.2 View WDS Link Status .................................................................................................... 48
4.4 Manage the System .................................................................................................................. 49
4.4.1 Configure System Time ..................................................................................................... 49
4.4.2 Configure Management .................................................................................................... 50
4.4.3 Configure SNMP ............................................................................................................... 53
4.4.4 Backup / Restore and Reset to Fa ct or y ............................................................................ 54
4.4.5 Firmware Upgrade ............................................................................................................ 55
4.4.6 Network Utility ................................................................................................................... 56
4.4.7 Format Database .............................................................................................................. 57
4.4.8 Reboot ............................................................................................................................... 58
4.5 Access To External Network With Servic e Domain .................................................................. 59
4.5.1 Configure Service Domain ................................................................................................ 60
4.5.2 Configure Authentication ................................................................................................... 64
4.5.2.1 Authentication Management ..................................................................................... 64
4.5.2.2 Configure Pregenerated Tickets ............................................................................... 65
4.5.2.3 Configure On-Demand .............................................................................................. 72
4.5.2.3.1 Create Billing Plans ........................................................................................... 73
4.5.2.3.2 Create On-Demand Users ................................................................................ 75
4.5.2.3.3 Configure External Pay m ent G at eway.............................................................. 79
4.5.2.3.4 Configure Thermal Printer ................................................................................. 82
4.5.2.3.5 Billing Plan Report ............................................................................................. 87
4.5.2.3.6 Ticket Customization ......................................................................................... 89
4.5.2.4 Configure Local RADIUS Accounts .......................................................................... 90
4.5.2.5 Configure Remote RADI US Server .......................................................................... 93
4.5.2.6 Configure LDAP Server ............................................................................................ 94
4.5.3 Configure Privilege List ..................................................................................................... 95
4.5.4 Configure Walled Garden ................................................................................................. 96
4.5.5 Configure Blacklist ............................................................................................................ 98
4.5.6 Configure Notification ........................................................................................................ 99
4.5.7 Monitor Online Users ...................................................................................................... 104
4.5.8 Log Information ............................................................................................................... 105
4.6 Restrain the Users and Sharing Your Internal Service ........................................................... 108
4.6.1 Configure Time Policy ..................................................................................................... 108
4.6.2 IP Filter ............................................................................................................................ 109
4.6.3 MAC Filter ........................................................................................................................ 110
4.6.4 Virtual Server (Port / I P Forwarding) ................................................................................. 111
4.6.5 DMZ .................................................................................................................................. 112
4.7 Observer the Status ................................................................................................................. 113
4.7.1 Overview .......................................................................................................................... 113
4.7.2 Extra Info .......................................................................................................................... 114
4.7.3 Event Log ......................................................................................................................... 117
Appendix A. Web GUI valid Characters ................................................................... 118
Appendix B. System Manager Privileges ................................................................ 123
Appendix C. Create PayPal Business Account ....................................................... 124
Appendix D. Examples of Making Payments for End Users .................................. 128
Appendix E. Issue Refund for PayPal ...................................................................... 131
Chapter 1. Before You Start
Package Contents
• Ground Cable x 1
1.1 Preface
The WHG-1000 is the mo st economical yet feature-rich Wi r el ess Hotspot Gateway, targeting mini-size
stores who want to provide s m al l, s in gle-point wireless Internet acc ess ser vice. WHG-1000 is a perfect
choice for beginners to ru n hotspot businesses. It does not c ost a fortune to buy a pile of equipment,
nor does it take the skills of an expert to glue multiple appl ications out of multiple freeware. Featurepacked for hotsp ot oper ation, WHG-1000 comes with built-in 802.11n/b/g access point, web server
and web pages for clients to login, easy logo-loading for branding a hotspot store, si m ple
user/visitor account m anagement tool, p ayment plans, PayPal credit card gateway, traffic logs,
IP sharing and etc.
1.2 Package Contents
• WHG-1000 x 1
• Quick Installation G uide x 1
• CD-ROM (with User Manual and QI G ) x 1
• Console Cable x 1
• Ethernet Cable x 1
• Power Adapter DC12V 1A x 1
• Antenna x 2
It is highly recommended to use all the supplies in the package instead of substituting any components by
other suppliers to guarantee best performance.
Chapter 2. System Overv iew
2.1 Introduction of WHG-1000
The WHG-1000 – Wireless Hots pot Controller , built-in Wifi-N technology with data rate up to 300 Mbps,
applies to public access n etwork such as WiFi-Hotspot , network management guest access, hospitality
deployments – whi ch r equires reliability, efficiency, and security. I t combines an IP Router /Firewal l,
Multi-WAN/ QoS enforcement and Access Controller for use in wireless hotspot environme nts. One
single WHG-1000 can serv e Suggest 100 simultaneous users, takes control over authent ication,
authorization, accounti ng and routing to the Internet as w ell as to t he operating central. Built -in AAA
system allows hotsp ot owners set up public access serv ices w ithout extra RADIUS server.
2.2 System Concept
WHG-1000 Wireless Hotspot Controller provides au t hentication, authorization and ac counting for a
wired/or wireless networks. Hotspot technology allows Internet providers to offer Internet access to
customers, while apply ing certain Internet use rules and limitation. It is conv enient f or I nt er net c af es,
hotels, airports, sc hools and universities. The I nt er net provider gets complet e tracking records of per
customer time spent on the net work, data amount sent/ r eceived, real-time accounting a nd more.
To begin browsing, a client must go through a registration process with t he provider, then enter a
Passcode/Username of a cc ess t icket in a browser Login window t hat appears on the attempt to open a
webpage. Hotspot technology proposes providers to establish and administrate a user database, which
can be useful for enterpris e such as airports, hotels or universities that offer wir eless or Ethernet
Internet connectivity t o em ploy ees , st udents, guests or ot her gr oups of users.
WHG-1000 300Mbps Wireless PoE Hotspot Gateway
2.3 Specification
Network
Support NAT or Router Mode
Support static IP, Dynamic IP(DHCP Client ), PPPoE and PPTP on WAN connection
DHCP Server Per VLAN; Multiple DHCP Networks
802.3 Bridging
Proxy DNS/Dynamic DNS
Support NAT
IP/Port destination redirection
DMZ server mapping
Virtual server ma ppi ng
Built-in with DHCP server
NTP Client
Binding VLA N w it h Ethernet and Wireless interfa ce
H.323, SIP Pass-through
User's Manual
Support MAC Filter
Support IP Filter
Support URL Filter
Support Walled garden (free sur f in g zone)
Support MAC-address and IP-address pass through
IP Plug a nd Play (IP PnP)
User Management
Suggest 10 0 si m ultaneous authenticati on users
Max 3066 Accounts
Support Pregenerated Users, On-Dem and Users and Local RADIUS Accounts.
Users Session Manage m ent
Configurabl e us er Black list (with Time-based control)
Allows MAC a ddr ess and user identity binding for local user authentication
SSL protected login port al page
Login Sess ion idl e t ime out setting
Session and a ccount expiration control
User Log and t r affic statistic notificati on via automatically email service
Login time frame control
Session limit
Real-Time Online Users Traffic S tatistic Reporting
Support local account roaming
6
WHG-1000 300Mbps Wireless PoE Hotspot Gateway
User's Manual
Seamless Mobility : User-centric networking manages wired and wireless users as they roam between
ports or wireless APs
Multiple Service Domain
The network is divided into maximum 8 group, each defined by a pair of VLAN tag and ESSID
Each Domain has its own (1) login portal page (2) authentication options (3) LAN interface IP
address range (4) Session number limit control (5) Traffic shaping (6) IP Plug and Play (IP PnP)
(7) Multiple Authentication
Enable DH CP or not, and DHCP address range
Enable authentication or not
Enable Guest ser vice or not
Types of authentication options (Local RADIU S, Re mote RADIUS, LDAP, On-Demand and Pregenerated)
Bandwidth (Distribution or Individua l)
Scheduling aut hentication service control on different Service D omain
Authentication
Authentication: single sign-on (SSO) client w it h aut hentication integrated into t he local authentication
environment through loc al /domain, LDAP, RADIUS, MAC authentication, and 802.1x
Customizable Login and Logout Portal Pages
Customizable Advertisement Links on Login Porta l Page
User authentication with UAM (Universal Access M ethod), 802.1x /EAPoLAN ,M AC address
Allow MAC ad dres s and users identity binding for local user authentication
Support Multiple Login service on one Accounts
Each group (role) may get different network policies in different Service Domain
Max simult aneous user session (TCP/UDP) limit
Configurabl e us er black list
Export/Import local users list to/from a text file
Web-based Captive Portal for SSL br ow ser-based authenticatio n
Authenticat ion Type
IEEE802.1X(EAP, EAP/TLS, EAP/TTLS, EA P/GTC, EAP/M D5, EAP/MSCHAP-V2)
RFC2865 RADIUS Authentication
RFC3579 RADIUS Su pport for EAP
RFC3748 Extensible Authentication Protocol
MAC Address authentication
Web-based captive portal authentication
7
WHG-1000 300Mbps Wireless PoE Hotspot Gateway
User's Manual
Accounting :
Provides bi lling plans for Pregenerated accounts
Provides bi lling plans for On-Demand accounts
Enables ses sion expiration control for both Pregener ated ticket s and On-Demand accounts by Time(Hours)
and Data Volume(MB)
Detai led per-user traffic histor y based on time and data volu me for bot h Pregenerated tickets an d O n-
Demand accounts
Support Loca l R ADIUS, Pregenerated, On-Demand and external RADI US ser v er
Contai n 10 configurable billing plans for O n-Demand accounts
Support credit card billing system by Pap al
Support automatic email network traffic history
Security
Layer 2 User Isolation
Blocks client t o cli ent di scovery within a specified V LAN
Setting for TKIP/CCMP/AES key ’s refreshing periodically
Hidden ESSID support
Setting for “ D eny Any “ connect ion request
MAC Address Filtering (MAC ACL)
Support Data Encryption : WEP(64/12 8-bit), WAP, WAP2
Support v ar ious aut hentic ation methods : WP A-PSK, WPA-RADIUS, IEEE802.1X
No. Of Register ed RADIUS Servers : 2
Support VPN pass-through
Encryptio n Type
WEP: 64, 128 and 152 bit
WAP-TKIP , WPA-PSK –TKIP, WPA-AES, WPS-PSK-AES
WAP2/8 02. 11i :WPA2-AES, WAP2-PSK-AES, WAP2-TKIP, WPA-PSK-TKIP
Secure Socket Layer (SSL ) and TLS : RC4 128-bit and RSA1024-bit and 2048-bit
Dual WAN
Load Balancing
Outbound Fault Tolerance
Outbound load balance
Multiple Domain Support
By Traffic
Bandwidth Management by indiv idu al and distribution on diff er ent net work(Service Domain)
WA N Con necti on Detecti on
8
WHG-1000 300Mbps Wireless PoE Hotspot Gateway
QoS Enforcement
Packet classification via DSCP (Differentiated Services code Point )
T r affic Statistics
Diff/TOS
IEEE 802.1Q Tag VLAN priority control
IEEE 802.1 1e WMM
Automatic mapping of WMM priorities to 802.1p and IP DSCP
Upload and Dow nload Traffic M anagement
Wireless
Transmission power control : 7 Levels
Channel se lection : Manual or Auto
No. of associ at ed clients per AP : 32
Setting for ma x no associated clients : Yes
No. of BBSID (Virtual AP) : 8
User's Manual
No. of Max. WDS setting : 4
Preamble set t ing : Short / Long
Setting for 802.11b/g/n mix, 802.11b only or 802.11 b/g only or 802.11n only
Setting for transmission speed
IEEE802. 11f IAPP ( Inter Access Point Protocol ), hand over users to an ot her AP
IEEE802. 11i Preauth (PMSKA Cache)
IEEE802. 11d Multi country roaming
Automatic channel assignment
Coordinated Access ensures optimal perfor m ance of nearby APs on the same channel
Secure wireless bridge connects access points without wire
Monitoring a nd r eporting
System A dmini strati on
Intuitive Web Management Int er face
Three administrator accounts
Provide cust omizable login and logout portal page
CLI access ( Remote Management) via Telnet and SSH
Remote firmware upgrade (via Web)
Utilities to bac k up and restore the system configuration
Remote Link Test – Display connect statistics
Full Statistics and Status Reporting
Real time traffic monitor
9
WHG-1000 300Mbps Wireless PoE Hotspot Gateway
Ping Watc hdog
WHG-1000 Hardware Specifications
Base Platform
AR7240+AR9283
CPU Clock Spe e d
400 MHz
Wireless Radio
802.11bgn
Serial Port
1 (DB-9)
USB Port (Optional)
1 (Optional 3G interface r adio with major brands – ODM only)
Reset Switch Built-in
Push-button momentary contact switch
RF Channel Scan Hardware
Button
Hardware Push-button to s can for a better channel to use
Stan dar ds Co nform a nc e
IEEE 802.3 / IEEE 802.3u
Ethernet Configur at ion
10/100BASE-TX auto-n egotiation Ethernet port x 3 (RJ-4 5 connector)
Auto Fail over
SDRAM
On board : 64 Mbytes
Flash
On board : 16 Mbytes
Built-In LED Indicators
1x Power , 2 x WAN ,1x LAN , 1x Status, 1x System, 1x Printer
T r affic history report via email to administrator
Users’ session log can be sent by external Syslog Server or E-mail
Even Syslog
SNMP v1, v2c,v3
SNMP Traps to a list of IP Address
Support MI B-II
S p annin g T ree Protocol
NTP Time Synchroniz ation
Customizable Time D is play Format for System
Administrativ e Access : HTTP / HTTPS
User's Manual
WAN * 2
LAN * 1
Auto MDI/MDI-X enabled , IEEE802.3af Power Over Ethernet Compatible ,
10
WHG-1000 300Mbps Wireless PoE Hotspot Gateway
User's Manual
Wireless Specifications
Network Sta ndar ds
Conformance
IEEE802.11 b /g /n compliant
Data T r ansf er Rate
IEEE802.11n : 300 (auto sensing)
Frequency Range
2.457 ~ 2.472 GHz (Franc e)
Media Access Protocol
CSMA / CA with ACK
Modulation Metho d
Operating Cha nnels
802.11b/g/n : 11 for FCC,14 for Japan,13 for Europe, 2 for Sp ain, 4 for France
RF Output Power
100mW
Transmit Power V ariatio n
802.11g/n : Up to 16 dBm
802.11b : up to 18 dBm
Frequency Response fl atness
±1dB over operating rang e
Receiver Sensitiv i ty
802.11b/g /n
-90dBm@1Mbps, -86dBm@6Mbps,-84dBm@11Mbps,-69dBm@54Mbps
Environmental & Mechanical Characteristics
Operating Temperature
-20 °C ~ 50 °C
Storage Temperature
-20 °C ~ 60 °C
Operating Humidity
10% to 80% Non-Condensing
Storage Humidity
5% to 90% Non-Condensing
Antenna Conne c t or
SMA-Type Connector
Power Supply
110 – 220V AC Power ; 12 VDC, 1A input.
Support 802.3af Compl ian t , Power Over Ethernet (48V/0.3 A)
Unit Dimensions
205 x 125 x 35 (mm) (Width x Dept h x He ight)
Unit Weight
600g
Form Factor
Wall Mountable , Metal case co mp li ant w it h I P50 standard
Certifications
FCC,CE, IP50,ROHS compliant
IEEE802.11b:1 / 2 / 5.5 / 11Mbps (auto sens ing)
IEEE802.11g:6 / 9 / 12 / 18 / 24 / 36 / 48 / 54(auto sensing)
IEEE802.11b/g:
2.412 ~ 2.462GHz (USA)
2.412 ~ 2.484GHz (Japan)
2.412 ~ 2.472 GHz (Euro pe E TSI )
2.457 ~ 2.462 GHz (Spain)
IEEE802.11b:DSSS (DBPK,DQPSK,CCK)
IEEE802.11g/n:OFDM(64-QAM,16-QAM,QPSK,BPSK)
11
WHG-1000 300Mbps Wireless PoE Hotspot Gateway
Chapter 3. Base Installations
3.1 Installations
3.1.1 System Requirements
Standard 10/100Base T including f iv e net work cables with RJ-45 connector s
All PCs need to install the TCP/IP network protocol
3.1.2 Panel Function Descriptions
Front Panel
User's Manual
1. Power SOCKET (12V DC) : Attach the power socket here.
2. Reset : Press the Reset button once to restart t he system, The LED except Power indicator will be of f
before restarting.
3. LAN(POE) : Clients devices connect to WHG-1000 via LAN ports
4. WAN1/WAN2 : Two WAN ports are availab le on the system.
5. Console : The serial RS-232 DB9 cable attaches here.
6. Scan Button :
Press and hold t he Scan button for 3 seconds unt il STATUS LED FLASH and release to Scan New AP's
Channel.
Press and hold t he Scan button for more than 10 seconds until SYSTEM LED FLASH to reset the
system to default configurations.
7. USB : (option)
12
WHG-1000 300Mbps Wireless PoE Hotspot Gateway
Rear Panel
1. WHG-1000 supports 1 RF interface with 2 SMA connectors for Antenna connection.
LED Panel
User's Manual
1. Power : LED ON indicates power on, OFF indicates power off.
2. WAN1/WAN2/LAN : LED ON indicates connection, OFF indicates disconnection, FLASH indicates packets
transmitting.
3. WLAN : LED ON indicates Wireless ready.
4. PRINT : LED ON indicatesDSA-1000 ready.
5. SYSTEM : LED ON/FLASH indicates Flash busy, OFF indicates Flash Idle
6. STATUS : LED ON indicates System up, OFF indicates down, FLASH indicates Scan button activated.
13
WHG-1000 300Mbps Wireless PoE Hotspot Gateway
User's Manual
package. Using a different power adapter
3.1.3 Hardware Installation
Please follow the steps mentioned below to install the hardware of WHG-1000
1. Place the WHG-1000 at a best location.
The best location for WHG-1000 is usually at t he center of your wireless network.
2. Connect WHG-1000 to your outbound networ k device.
Connect one end of the Ethernet cable to the WAN1/WAN2 port of WHG-1000 on the front panel. On your
environment, connect t he ot her end of the cable to the external Inter net . The WAN1/WAN2 LED indicator should be
ON to indicate a proper co nnect i on.
3. Connect WHG-1000 to your network device.
Connect one end of the Ethernet c able to LAN port of WHG-1000 on the front panel. Connect the other end of cable
to a PC for configuring the system. The LAN LED indicator s hould be ON to indicate a proper connection.
4. There are two ways to supply power over to WHG-1000
Connect the DC power ad apt er t o t he WHG-1000 power socket on th e front panel.
Please only use the powe r adapt er supplied with the WHG-1000
may damage this system
WHG-1000 is capable of tr ansmitting DC current via its LAN(PoE) port. Connect an IEEE 802.3af-
compliant PSE device, e. g. A PoE Switch, to the LAN(PoE) port of WHG-1000 w it h t he Et her net cable.
Now, t he har dware installation is completed.
To double verify the wired connection between WHG-1000 and your switch/rou t er / hub, please check the
LED status indicat ion o f t hese network devices.
14
WHG-1000 300Mbps Wireless PoE Hotspot Gateway
User's Manual
If you can't get the login screen, you may have incorrectly set your PC to obtain an IP ad dr ess
Please use default IP address such as 192.168.2.xx in y our net work and then try it again.
3.2 Software Configuration
3.2.1 Getting Start
Step :
1. Once the hardware installation is don e, set DHCP in TCP/IP of the administrator's P C to get an I P address
automatically. Connect the PC to the LAN(PoE) port of WHG-1000. An IP address will be assigned to t he
PC automatically via the WHG-1000.
2. Launch a web browser to access the web GUI o f WHG-1000 by ent er ing “http://192.168.2.254” in t he
address field.
3. The following Administ r at or Login Page will appear. Enter “root” in the Username field, and “default” in the
Password field. Click OK button to login.
automatically from LAN port or the IP address used does not have the same subnet as the URL.
15
WHG-1000 300Mbps Wireless PoE Hotspot Gateway
User's Manual
You can login as root, admin or operator. The default username and password as follows.
Root : The administrat or can access all area of the WHG-1000
Username : root
Password : default
admin : The admin can a ccess the area under Service Domain, Wireless and Advanced setting (Please see
Appendix B.)
Username : admin
Password : admin
operator : The operator only can access the area of On-Demand authentication to create, edit and print out
the new On-Demand user acc ounts. (Please see Appendix B.)
Username : operator
Password : 1234
4. After a successful login, the “Home Page” will appear on the screen.
16
WHG-1000 300Mbps Wireless PoE Hotspot Gateway
User's Manual
3.2.2 Quick Configuration
WHG-1000 provides wireless an d wired network service with authentication required for clients in Service Domain.
Clients in the each Service Domain are isolated with each other. WHG-1000 supports 8 Serv ice Domains, Domain-0
to Domain-7. Administrator can select authentication type on each Service Domain. If Authentication Re quire d is
enabled, the clients are r equired to get authenticated successfully before access the Inter net .
Configuration Steps :
Step 1 : Change Root's Password
Click System → Management, the Management Setup page will ap pear.
Enter a New Root Password for the Root account ad retype in t he C heck Root Password field. (4-30
alphanumeric and specif ic char acters; not support Space)
Click Save button.
For security concern, it is strongly r ecommended to change the Root p assword.
Step 2 : Choose System's Time Zone
Click System → Time Server, the Time Server Setup page will appear.
Select the appropriate set t ing a nd c l ick Save button.
17
Loading...