Option GlobeSurfer-II User Manual

GlobeSurfer

®

II 1.8 - 7.2 - 7.2 S

Reference Manual

Version 3.16 R1D02

2

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

TABLE OF CONTENTS

1 INTRODUCTION TO GLOBESURFER ® II 6

2 SETUP 8

2.1 Setting up WAN and LAN connections 8

2.2 PC Network Configuration 9

2.3 GlobeSurfer ® II Quick Setup Wizard 10

2.3.1 Quick Setup Wizard: Language 12

2.3.2 Quick Setup Wizard: Telephony 12

2.3.3 Quick Setup Wizard: UMTS 12

2.3.4 Quick Setup Wizard: Wireless 13

2.3.5 Quick Setup Wizard: Wireless Encryption 14

2.3.6 Quick Setup Wizard: Firewall Policy 15

2.3.7 Quick Setup Wizard: Finish 16

3 GLOBESURFER ® II MANAGEMENT CONSOLE 18

3.1 Accessing the GlobeSurfer ® II Management Console 18

3.2 Left Sidebar 18

3.3 Connection status 19

3.4 Managing tables 20

3.5 Getting Help 21

4 SMS 22

4.1 SMS Create 22

4.2 Inbox 23

4.3 Sent 24

4.4 Archive 24

4.5 Templates 24

4.6 SIM Card 25

4.7 Drafts 25

4.8 Settings 26

5 CONNECTION SETTINGS 26

5.1 Network Map 26

5.2 Network Connections 27

5.2.1 Connection Wizard 29

5.2.2 LAN Bridge 32

5.2.2.1 Creation with the Connection Wizard 32

5.2.2.2 General 34

5.2.2.3 Internet Protocol 34

5.2.2.4 Bridge Settings 35

5.2.2.5 DNS Server 36

5.2.2.6 IP Address Distribution 36

5.2.2.7 Routing 38

5.2.2.8 Internet Connection Firewall 38

5.2.2.9 Additional IP Addresses 39

5.2.3 LAN Ethernet 39

5.2.3.1 General 40

5.2.3.2 Internet Protocol 41

5.2.3.3 DNS Server 42

5.2.3.4 IP Address Distribution 42

5.2.3.5 Routing 44

5.2.3.6 Internet Connection Firewall 44

5.2.3.7 Additional IP Addresses 45

5.2.4 LAN Wireless 45

5.2.4.1 General 48

5.2.4.2 Wireless Access Point 48

5.2.4.3 Wireless Security 49

5.2.4.4 Internet Protocol 53

5.2.4.5 DNS Server 54

5.2.4.6 IP Address Distribution 54

5.2.4.7 Routing 56

5.2.4.8 Internet Connection Firewall 56

5.2.4.9 Additional IP Addresses 57

5.2.5 WAN Cellular 57

5.2.5.1 General 58

5.2.5.2 Internet Protocol 59

5.2.5.3 DNS Server 59

5.2.5.4 Routing 60

5.2.5.5 Internet Connection Firewall 61

5.2.6 Configuring your Wireless Windows® XP clients 61

5.3 Security 64

5.3.1 General 64

5.3.2 Access control 67

5.3.3 Port forwarding 69

5.3.4 DMZ host 73

5.3.5 Port triggering 74

5.3.6 Website restrictions 78

5.3.7 Advanced filtering 80

5.3.8 Security log 82

3

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

6 SYSTEM SETUP 88

6.1 Telephone 88

6.1.1 Missed calls 88

6.1.2 Incoming calls 88

6.1.3 Outgoing calls 89

6.1.4 Telephone settings 89

6.2 SIM setup 89

6.3 Unlock device 91

6.4 System monitoring 91
Connections 91

6.4.1 Log 92

6.4.2 System 93

6.4.3 About GlobeSurfer ® II 93

6.4.4 Configuration file 93

6.4.5 Restart 94

6.4.6 Restore defaults 95

6.4.7 Diagnostics 95

6.4.8 Ping 95

6.4.9 Performing a Traceroute 96

6.5 System settings 96

6.5.1 System 97

6.5.2 GlobeSurfer ® II Management Console Settings 98

6.5.3 Remote administration 98

6.5.4 Management Application Ports 98

6.5.5 System Logging Settings 98

6.5.6 Security Logging Settings 98

6.5.7 Outgoing Mail Server Settings 99

6.5.8 Firmware upgrade 99

6.5.8.1 Upgrading From a Local Computer 99

6.5.9 Date and time 100

6.5.10 Users 101

6.6 Advanced 102

6.6.1 Remote administration 102

6.6.2 Simple Network Management Protocol (SNMP 104

6.6.3 Universal Plug and Play 105

6.6.4 Scheduler Rules 105

6.6.5 Certificates 107

6.6.5.1 Overview 107

6.6.5.2 Digital Certificates 108

6.6.5.3 X.509 Certificate Format 108

6.6.5.4 GlobeSurfer ® II Certificate Stores 109

6.6.5.4.1 Requesting an X509 Certificate 109

6.6.5.4.2 Creating a Self-Signed Certificate 114

6.6.5.4.3 Loading a PKCS#12 Format Certificate 116

6.6.6 Radius 117

6.6.7 Routing 118

6.6.8 Network objects 119

6.6.9 Dynamic DNS 120

6.6.9.1 Opening a Dynamic DNS Account 121

6.6.9.2 Using Dynamic DNS 121

6.6.10 IP address distribution 122

6.6.10.1 DHCP Server Settings 123

6.6.10.2 DHCP relay settings 124

6.6.10.3 DHCP connections 127

6.6.11 DNS server 128

6.6.11.1 Viewing and Modifying the DNS Table 129

6.6.12 IPSEC Internet Protocol Security 130

6.6.12.1 IPSec Settings 131

6.6.12.1.1 Public Key Management 131

6.6.12.2 IPSec Connection Settings 133

6.6.12.3 IPSec Gateway-to-Host Scenario Connection 138

6.6.12.3.1 Configuring IPSec on GlobeSurfer ® II 139

6.6.12.3.2 Configuring IPSec on the Windows Host 142

6.6.13 L2TP server 156

6.6.13.1 Configuring the L2TP Server 156

6.6.13.2 Advanced L2TP Server Settings 157

6.6.14 PPTP server 158

6.6.14.1 Configuring the PPTP Server 158

6.6.14.2 Advanced PPTP Server Settings 159

6.6.15 Protocols 160

LIST OF ACRONYMS 162

GLOSSARY 164

4

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

1. INTRODUCTION TO GLOBESURFER ® II

Within minutes, you can connect to your mobile network and use a wireless connection to the Internet through the mobile network.
GlobeSurfer ® II is compatible with GSM and 3G mobile networks and supports GPRS, EDGE, UMTS and HSDPA technologies.

Tip: To achieve the best possible reception, check the signal strength on the display of the unit (the more bars the better the reception). You
may find that placing the unit near a window provides the best reception.

Simple set-up

GlobeSurfer ® II provides you with a quick installation and set-up that gets you easily and quickly connected to the Internet. You can use an
Internet browser (e.g. Microsoft ® Internet Explorer 6.0 or Firefox ® 1.5) and most personal computers, including Windows ®, Macintosh ® and
Linux. The ‘Quick Setup Wizard’ introduces you to the basic settings that need to be configured for use with the mobile network. Once you
have configured, you can review and enable customised wireless security settings.

Instant protection

Your GlobeSurfer ® II supports Network Address Translation (NAT). This network service hides the computers in your network so they cannot be
found or directly accessed from outside your network. A firewall is also included which, by default, blocks incoming traffic and allows outgoing
traffic.

Additional security

GlobeSurfer ® II supports both Wired Equivalent Privacy (WEP) and Wi-Fi Protected Access (WPA and WPA2) to protect your network data.
Security logs keep you aware of potential security risks and intrusion attempts. You can view logs online or via email.

Stay in touch

You can use GlobeSurfer ® II to send and receive SMS text messages. The display on the front of the unit lets you know when a new SMS
arrives. You can use GlobeSurfer ® II to make mobile phone calls. When you get a phone call the display shows the caller’s number and
indicates missed calls.

Important note

To protect your network from unauthorised access, and to make it more difficult for hackers to analyse your data, please configure the WLAN
security settings and enable WEP, WPA or WPA2 encryption on your GlobeSurfer ® II.

About This Manual

This manual describes configuration and operation of GlobeSurfer ® II. It is intended as a complement to the GlobeSurfer ® II User Guide to
provide reference information for the advanced user of the GlobeSurfer ® II. It is assumed that the hardware installation of GlobeSurfer ® II has
been done when the Reference Manual is read.

This version of the manual is valid for GlobeSurfer ® II version 3.16 R1D02. Other product versions with customer specific functions not
described in this manual, may be available.

5

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

2. SETUP

Connecting your computer or home network to the gateway is a simple procedure, varying slightly depending on your operating system. This
chapter will help you to seamlessly integrate GlobeSurfer ® II with your computer or home network. The Windows default network settings
dictate that in most cases the setup procedure described below will be unnecessary. For example, the default DHCP setting in Windows
2000 is ’client’, requiring no further modification. However, it is advised to follow the setup procedure described below to verify that all
communication parameters are valid and that the physical cable connections are correct. The setup procedure consists of three consecutive
configuration stages:

Figure 2.1 Hardware Configuration

1. Setting up WAN and LAN connections [2.1]

2. PC Network Configuration [2.2]

3. GlobeSurfer ® II Quick Setup [2.3]

2.1 Setting up WAN and LAN connections

· WAN Connection: Setting up the WAN connection requires that a SIM card is inserted correctly into the SIM slot of the

GlobeSurfer ® II. See the User Guide for instructions on how to insert the SIM card. With the SIM card in place you configure theWAN
connection through the Quick Setup of GlobeSurfer ® II (see section 2.3). The first time you login to GlobeSurfer ® II you will have to
enter a PIN code. The PIN code is received from your ISP, but normally provided separately from the SIM card for security reasons.

· LAN Connection: Your computer can connect to the gateway in two ways, either through Ethernet or through the use of Wireless.

The most common type of connection is Ethernet, with most platforms featuring four such ports. Use an Ethernet cable to connect
between an Ethernet port on your gateway and your computer’s network card. Please refer to the accompanying Installation Guides
for additional information.

2.2 PC Network Configuration

Each network interface on the PC should either be configured with a statically defined IP address and DNS address, or should be
instructed to automatically obtain an IP address using the Network DHCP server. GlobeSurfer 2 provides a DHCP server on its LAN and
it is recommended to configure your LAN to obtain its IP and DNS server IPs automatically. This configuration principle is identical but
performed differently on each operating system.

Figure 2.1displays the ’TCP/IP Properties’ dialog box as it appears in Windows XP. Following are TCP/IP configuration instructions for all
supported operating systems.

6

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

Figure 2.2 IP and DNS configuration

Windows XP

1. Access ’Network Connections’ from the Control Panel.

2. Right-click the Ethernet connection icon, and select ’Properties’.

3. Under the ’General’ tab, select the ’Internet Protocol (TCP/IP)’ component, and press the ’Properties’ button.

4. The ’Internet Protocol (TCP/IP)’ properties window will be displayed (see Figure 2.2).

5. Select the ’Obtain an IP address automatically’ radio button.

6. Select the ’Obtain DNS server address automatically’ radio button.

7. Click ’OK’ to save the settings.

Windows 2000/98/Me

1. Access ’Network and Dialing Connections’ from the Control Panel.

2. Right-click the Ethernet connection icon, and select ’Properties’ to display the connection’s properties.

3. Select the ’Internet Protocol (TCP/IP)’ component, and press the ’Properties’ button.

4. The ’Internet Protocol (TCP/IP)’ properties will be displayed.

5. Select the ’Obtain an IP address automatically’ radio button.

6. Select the ’Obtain DNS server address automatically’ radio button.

7. Click ’OK’ to save the settings.

7

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

Windows NT

1. Access ’Network’ from the Control Panel.

2. From the ’Protocol’ tab, select the ’Internet Protocol (TCP/IP)’ component, and press the ’Properties’ button.

3. From the ’IP Address’ tab select the ’Obtain an IP address automatically’ radio button.

4. From the ’DNS’ tab, verify that no DNS server is defined in the ’DNS Service Search Order’ box and no suffix is defined in the
’Domain Suffix Search Order’ box.

Linux

1. Login into the system as a super-user, by entering ”su” at the prompt.

2. Type ”ifconfig” to display the network devices and allocated IP addresses.

3. Type ”pump -i <dev>”, where <dev> is the network device name.

4. Type ”ifconfig” again to view the new allocated IP address.

5. Make sure no firewall is active on device <dev>.

2.3 GlobeSurfer ® II Quick Setup Wizard

The GlobeSurfer ® II management console allows you to control various GlobeSurfer ® II system parameters. The interface is accessed
through a web browser:

1. Start a web browser on your PC.

2. Enter the address 192.168.1.1 to display the GlobeSurfer ® II management console. When first logging on to the management
console, the welcome screen will appear (see Figure 2.3). Configure your language settings and enter a password. To verify
correctness retype the password, and click ‘OK’ to login to the management console. For security reasons it is strongly
recommended that you specify a password. However, make sure you remember your new user name and password, since this is the
only way you will be able to login to the GlobeSurfer ® II from now on.

Figure 2.3 Welcome to GlobeSurfer® II

3. After choosing your password and clicking ‘OK’ you will be forwarded to the ‘Quick Setup Wizard’ page (see Figure 2.3). Click ‘OK’ to
continue the ‘Quick Setup Wizard’.

8

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

Figure 2.4 Welcome to the Quick Setup Wizard

4. The ‘Quick Setup Wizard’ helps you to quickly set the most important settings of your GlobeSurfer ® II. If you would like to complete
the ‘Quick Setup’ without using the Wizard just click ‘Cancel’. Alternatively, click the ‘Quick Setup’ icon on the left sidebar, after login
in. The following sections describe the various configuration parameters of ‘Quick Setup’. Once you have filled the ‘Quick Setup’
sections as described below, click the ‘OK’ button to configure your GlobeSurfer ® II.

2.3.1 Quick Setup Wizard: Language

Select the language you would like to use on the GlobeSurfer ® II Management Console and Display (see Figure 2.5).

Figure 2.5 Quick Setup Wizard: Language

2.3.2 Quick Setup Wizard: Telephony

Select the country for your telephone handset. This will adapt the telephone connector of GlobeSurfer ® II to work with your
handset (see Figure 2.6).

Figure 2.6 Quick Setup Wizard: Telephony

9

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

2.3.3 Quick Setup Wizard: UMTS

Check or change the following settings on the Quick setup screen to configure the UMTS connection (see Figure 2.7):

Figure 2.7 Quick setup Wizard: UMTS

Access point name:

Enter the access point name as provided by your Internet Service Provider (ISP), or accept the name already set.

UMTS connect method:

· Connect Manually: connect to the Internet by clicking ‘Connect’ on the ‘Connection Status’ page in the management
console or press the ‘Connect’ button on the GlobeSurfer ® II unit.

· Automatically connect upon traffic: GlobeSurfer ® II will automatically connect when you attempt to send data via the
Internet.

In case of inactivity, disconnect after (minutes): The default is zero (0), meaning UMTS will stay connected until

manually disconnected. The maximum is 1440 minutes (24hrs).

Note: Incoming traffic is treated as inactivity.

2.3.4 Quick Setup Wizard: Wireless

SSID:

The Service Set Identifier: enter a name for your local wireless network (WLAN) (maximum 32 characters).

Note: Setting the SSID to something unique will make it much easier to identify your own wireless network, especially if there
are other wieless networks available in the nearby area.

SSID broadcast:

If you set the ‘Enabled’ checkbox to broadcast then other devices can detect and connect to your WLAN. Clear the checkbox
to disable broadcasting and hide the name of your network. This provides minimal security, as other devices have to know the
SSID to connect. You can install the WLAN with this feature enabled and then disable it once you have set up GlobeSurfer ® II
and its associated wireless clients.

10

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

Figure 2.8 Quick Setup Wizard: Wireless

2.3.5 Quick Setup Wizard: Wireless Encryption

In order to prohibit unauthorized access to your GlobeSurfer ® II, make sure to apply sufficient security and encryption on your
wireless network.

If WPA2 is supported by your wireless clients it is recommended to apply WPA2 encryption to your wireless network as it offers
the highest level of security.

Depending on your choice of security method, the Wireless Encryption page will refresh with relevant configuration choices.
Unless ‘No Encryption’ is selected you will be asked to enter an encryption key in either HEX or ASCII format. HEX format
requires a hexadecimal key (‘0’-‘9’, ‘a’-‘f’) of various length depending on your selection. An ASCII key consists of a pass­phrase of various length that will be translated by the GlobeSurfer ® II into a HEX key. Using an ASCII key could be easier to
remember than a HEX key, but in some cases there are compatability issues between different vendors of wireless equipment.
Hence, if you are experiencing problems when using ASCII key, try to use HEX keys instead.

Available choices are:

· ‘No encryption’ This option is not recommended except during installation of your network.

· ‘WEP’ Wireless Equivalent Privacy is a 64-bit or 128-bit encryption method with user configurable fixed keys.

· ‘WPA’ Wi-Fi Protected Access is a 256-bit encryption method with keys that change automatically over time.

· ‘WPA2’ A more secure version of WPA with implementation of the 802.11i standard.

· ‘Keep current (radius based) scheme’ This option is only available if advanced encryption settings have previously been

configured.

Figure 2.9 Quick Setup Wizard: Wireless Encryption

11

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

2.3.6 Quick Setup Wizard: Firewall Policy

The GlobeSurfer ® II has three different predefined Firewall Policies:

· ‘Minimum Security’ Lowest level of firewall security allowing both incoming and outgoing traffic.

· ‘Typical Security’ Offers some firewall security, but is still open for all connections initiated from clients connected to the

GlobeSurfer ® II.

· ‘Maximum Security’ Highest level of firewall security where only most commonly used protocols are allowed also for local
clients trying to connect to the Internet.

To learn more about these predefined security levels, please refer to section 5.3.1. It is also possible to add more advanced
firewall policies than these three predefined levels. To learn more about this, please see chapter 5.3.

Figure 2.10 Quick Setup Wizard: Firewall Policy

2.3.7 Quick Setup Wizard: Finish

The last page of the Quick Setup Wizard shows all the settings made on previous pages. If they all look correct, press the
‘Finish’ button to apply these settings.

If you want to change any settings, use the ‘Back’ button to navigate to the appropriate page and modify that setting.

Press the ‘Cancel’ button if you want to quit the Quick Setup Wizard without applying any new changes.

Figure 2.11 Quick Setup Wizard: Finish

12

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

3 GLOBESURFER ® II MANAGEMENT CONSOLE

The GlobeSurfer ® II management console described here allows you to control various GlobeSurfer ® II system parameters, using a user­friendly graphical interface. The management console includes a connection status screen, a quick setup screen, network configuration,
security configuration, authentication with multiple-user support, connection monitoring and more.

3.1 Accessing the GlobeSurfer ® II Management Console

To access the management console:

· Launch a Web-browser on a PC in the LAN or WLAN.

· Type the IP address of the GlobeSurfer ® II or a name as provided by the supplier in the address bar (Internet Explorer) or location bar
(Netscape Navigator). The default IP address is 192.168.1.1, and default name is http://umts-gateway.mydomain.

· Enter your username and password to log on to the web-based management console.

Your session will automatically time-out after a few minutes of inactivity. If you try to operate the management console after the session
has expired the Login screen will appear and you will have to reenter your user name and password before proceeding. This feature
helps to prevent unauthorized users from accessing the management console and changing the GlobeSurfer ® II settings.

3.2 Left Sidebar

The GlobeSurfer ® II management console screens have been grouped into several subject areas and may be accessed by clicking on
the appropriate icon in the left sidebar.

The subject areas are:

· Connection status: Display the status of the Internet connection (see Section 3.3)

· Quick Setup: Quick access to basic configuration settings (see Section 2.3).

· SMS: Manage your SMS messages (see Chapter 4).

· Connection Settings: Create and configure network connections (see Chapter 5).

· System Setup: You can access ‘Telephone’, ‘Date and Time’, ‘SIM’ settings, ‘Firmware upgrade’ and more (see Chapter 6).

· Advanced: This section is intended for more advanced users. Changes to these settings could adversely affect the operation

of your network. Please refer to the ‘Reference Manual’.

· Login / Logout: Login to or Logout from the management console.

3.3 Connection status

The Connection status screen shows the status of the WAN Cellular connection and provides a button to manually connect and
disconnect. If your GlobeSurfer ® II is configures to automatically connect to the Internet when needed (see section 2.3.3), then the
Connect/Disconnect button on the Connection Status page will force the GlobeSurfer ® II to toggle connection state.

On the Conenction Status page some additional information about the current GlobeSurfer ® II settings could be seen. The following
additional information is provided:

· ‘Signal strength’ Current signal strength on your cellular network.

· ‘Operator’ The name of the cellular network operator that the GlobeSurfer ® II is currently attached to.

· ‘Access Point Name’ The current APN (Access Point Name) setting (see section 2.3.3).

· ‘Status’ Shows the current connection status of the cellular WAN conncetion.

13

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

· ‘Connection Type’ When the GlobeSurfer ® II is connected to a cellular network, the ‘Connection Status’ indicated what kind of
network it is.

· ‘Missed calls’ The amount of missed calls since last checked.

· ‘Unread SMS messages’ The amount of unread SMS messages in the SMS Inbox folder.

· ‘Total connection time’ The total amount of time that this GlobeSurfer ® II unit has been connected to the cellular WAN since last
reset.

· ‘Current connection time’ The amount of time that the GlobeSurfer ® II unit has been connected during this session.

· ‘Received bytes’ The amount of data received from the cellular WAN network, represented in Mb.

· ‘Sent bytes’ The amount of data sent to the cellular WAN network, represented in Mb.

The information in Connection status can be refreshed and updated manually by clicking ‘Refresh’. You can also set Connection status
to update automatically by clicking ‘Automatic refresh on’ once.

Figure 3.1 Connection Status

3.4 Managing tables

Tables are used throughout the GlobeSurfer 3G management console. They handle user-defined entries relating to elements such as
network connections, local servers, restrictions and configurable parameters. The principles outlined in this section apply to all tables in
the management console.

Figure 3.2 Typical Table Structure

14

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

Figure 3.2 illustrates a typical table. Each row defines an entry in the table. The following icons located in the Action column enable
adding, editing and deleting table entries:

· Click the Add icon to add an entry of the same type as on that row.

· Click the Edit icon to edit the entry on that row.

· Click the Delete icon to remove the entry on that row.

In many tables the last row includes a link that allows adding a new entry to the table.

3.5 Getting Help

The help icon on the upper right side of the management console may be used to get on-line help about the settings you see on each
particular screen.

View help information about each specific management console screen.

15

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

4 SMS

The GlobeSurfer ® II can send and receive SMS text messages. It supports both incoming and outgoing concatenated messages, and it can
send flash-SMS’s.

When the GlobeSurfer ® II receives a new SMS text message, this is indicated by an envelope symbol shown on the GlobeSurfer ® II display.

4.1 SMS Create

Creating and sending SMS text messages:

1. Select the ‘SMS create’ tab.

2. Type your message text in the ‘SMS message’ field. The Characters left field shows how much space is left.

3. Enter the mobile number of the person you want to contact in the ‘Phone numbers’ field. Use the standard mobile number format:
+4976123456 for international, and 076123456 for national numbers.

Tip: You can enter several numbers separated by commas (no spaces allowed), up to a maximum of ten phone numbers.

4. You can select the ‘Flash SMS’ - ‘Enabled’ checkbox if you want the message text displayed immediately when received (not
supported by all phones).

5. Click ‘Send SMS’ when ready to send. You will be redirected to an intermediate page that gives you information about the send
progress. After the SMS text message has been successfully sent, it will be stored in the ‘Sent’ folder, see section 4.3.
Alternatively you can:

· Click ‘Save as draft’ to save in the Drafts folder for completion later, see section 4.7.

· Click ‘Save as template’ to save the message as a template for future use, see section 4.5.

Figure 4.1 SMS Create

Tip: GlobeSurfer ® II supports concatenated SMS, which works as follows; if you want to send a longer than standard SMS of 160
characters you can type the almost the equivalent of 4 standard messages (up to 609 characters). When you send the message it will
be counted as separate messages.

Note: When you send an SMS, you may incur a charge depending on your subscription with your mobile operator.

4.2 Inbox

Handling SMS text messages in the Inbox:

1. Select the ‘Inbox’ tab to display the messages, with unread message in bold.

2. Click the SMS that you want to read. The message text is shown.

16

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

3. When you have read the SMS you can click on:

· ‘Reply’: the message text is displayed in the ‘SMS create’ tab with the phone number of the sender already filled in.

· ‘Delete’: the SMS is permanently removed without confirmation.

· ‘Save to archive’: the SMS is moved to the ‘Archive’ tab, see section 4.4.

· ‘Forward’: the message text is displayed in the ‘SMS create’ tab ready for you to enter a phone number.

To delete an SMS from the list of messages in the ‘Inbox’ tab:

1. Select the ‘Inbox’ tab.

2. Click the ‘Remove’ icon for the message that you want to delete; the SMS is permanently removed without confirmation.

Figure 4.2 SMS Inbox

4.3 Sent

After a SMS text message has been sent from your GlobeSurfer ® II it will be stored in the ‘Sent’ folder. From here it is possible to open
any sent message and choose to delete, forward or save it to the archive (see section 4.4).

Figure 4.3 SMS Sent

4.4 Archive

SMS text messages from ‘Inbox’ or ‘Sent’ folders can be stored in the archive. When selecting the ‘Archive’ tab stored messages are
listed and it is possible to open any message and choose to delete, forward or reply to that message.

Figure 4.4 SMS Archive

17

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

4.5 Templates

From the ‘SMS create’ tab it is possible to chose to save a textmessage as template instead of sending it directly. When a message is
saved as template, it can be loaded from the ‘Templates’ folder. This is convenient when SMS text messages are often sent to the same
recipient or with similar content.

To remove a template, simply click the remove icon for that specific template.

Figure 4.5 SMS Templates

4.6 SIM Card

The ‘SIM Card’ tab shows SMS text messages that are stored on the SIM card inserted in the GlobeSurfer ® II. After opening a SMS
from the ‘Sim Card’ folder you can choose to delete it, reply to it, forward it or save it to the Archive folder.

Figure 4.5 SMS Templates

4.7 Drafts

While creating a new SMS text message from the ‘SMS create’ tab it is possible to choose to save it as draft instead of sending it
directly. This SMS will then be accessable from the ‘Drafts’ folder. When clicking on an SMS in the ‘Drafts’ folder, one will be directed
back to the ‘SMS create’ tab where it can be finalized.

Observe that when a SMS text message in the ‘Drafts’ folder has been opened and then sent, it will be removed from the ‘Drafts’ folder.

Figure 4.7 SMS Drafts

18

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

4.8 Settings

On the ‘Settings’ tab it is possible to define the SMSC number which is the number to the Short Message Service Center that will be
used for sending SMS messages from your GlobeSurfer ® II unit. This number is usually already filled in by default, but if necessary you
can use the ‘Settings’ tab to change it.

Figure 4.8 SMS Settings

19

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

5 CONNECTION SETTINGS

The Connection settings page include three main categories, the Network Map where it is possible to get a static view of currently connected
network components (see section 5.1), the Network connections where all settings are made for UMTS, Ethernet and WLAN interfaces and
where it is also possible to create advanced VPN tunnel connections (see section 5.2) and the Security page where all firewall settings are
made (see section 5.3).

5.1 Network Map

The network map builder provides an up to date accurate graphical representation of the LAN network, displaying the devices
currently connected to the gateway and their parameters. While the standard network map displays devices with a DHCP lease from
GlobeSurfer ® II, with zero configuration technology devices with statically defined IP addresses are also displayed.

The network map builder relies on existing modules, such as the DHCP and the IP auto detection, as well as its own information
collectors to assemble the network information. All information is validated and displayed in the network map.

The network map builder actively sends various messages to discover which network objects are currently active on the network.
Comparing the replies to its list of IP addresses or host names, GlobeSurfer ® II is updated with information on the network view. This
data is then validated and translated to a user friendly, graphic map.

Figure 5.1 Network Map

The network map will display the following icons to indicate the interfaces used for connecting these devices:

· Represents an Ethernet Local Area Network (LAN) connection. Click this icon to configure network parameters for

the Ethernet LAN device (see section 5.2.3).

· Represents a Wireless LAN connection. Click this icon to configure network parameters for the Wireless LAN

device (see section 5.2.4).

· Represents a bridge connected in the home network. Click this icon to view the bridge’s underlying devices.

· Represents a computer (host) connected in the home network. Each computer connected to the network
appears below the network symbol of the network through which it is connected. Click an icon to view network
information for the corresponding computer.

5.2 Network Connections

GlobeSurfer ® II supports various network connections, both physical and logical. The Network Connections screen enables you to
configure the various parameters of your physical connections, the LAN and WAN, and create new connections, using tunneling
protocols over existing connections, such as PPP and VPN.

When clicking the ‘Network Connections’ icon under the ‘Connection Settings’ sidebar menu, the following typical screen will appear:

20

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

Figure 5.2 Network Connections - Basic

Press the ‘Advanced’ button to expand the screen and display all connection entries (see Figure 5.3).

Figure 5.3 Network Connections - Advanced

This chapter describes the different network connections available with GlobeSurfer ® II in their order of appearance in the Network
Connections screen (see Figure 5.3), as well as the connection types that you can create using the Connection Wizard.

GlobeSurfer ® II’s default network connections are:

· LAN - Creating a home/SOHO network

· LAN Bridge (see section 5.2.2).

· LAN Ethernet (see section 5.2.3).

· LAN Wireless (see section 5.2.4).

· WAN - Internet Connection

· WAN Cellular (see section 5.2.5).

The logical network connections available with GlobeSurfer ® II are:

· Virtual Private Network over the Internet

· Layer 2 Tunneling Protocol over Internet Protocol Security.

· Layer 2 Tunneling Protocol Server.

· Point-to-Point Tunneling Protocol Virtual Private Network.

· Point-to-Point Tunneling Protocol Server.

· Internet Protocol Security.

21

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

· Internet Protocol Security Server.

· Advanced Connections

· Network Bridging.

· Internet Protocol over Internet Protocol.

· General Routing Encapsulation.

5.2.1 Connection Wizard

The logical network connections can be easily created using the Connection Wizard. This wizard is consisted of a series of
Web-based management screens, intuitively structured to gather all the information needed to create a logical connention.

In order to create a connection using the Connection Wizard, click the ‘New Connection’ link in the Network Connections
screen. The ‘Connection Wizard’ screen will appear (see Figure 5.4).

Figure 5.4 Connection Wizard

This screen presents you with the main connection types. Each option that you choose will lead you to further options in a
tree-like formation, adding more information with each step and narrowing down the parameters towards the desired network
connection.

· Connect to a Virtual Private Network over the Internet Selecting this option will take you to the ‘Connect to a Virtual Private
Network over the Internet’ screen (see Figure 5.5). This section will help you connect GlobeSurfer ® II to a business network
using a Virtual Private Network (VPN) so you can work from home, your workplace or another location.

Figure 5.5 VPN Wizard Screen

· Advanced Connection Selecting this option will take you to the ‘Advanced Connection’ screen (see Figure 5.6). This section
is a central starting point for all the aforementioned logical network connections. In addition, it provides the sequence for
creating the Network Bridge and VLAN Interface connections.

22

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

Figure 5.6 Advanced Connection Wizard Screen

How to configure a LAN Bridge will be described in section 5.2.2. For more information on how to configure the other
advanced connections that can be seen in Figure 5.3, please contact customer support center (see page 2).

5.2.2 LAN Bridge

The LAN bridge connection is used to combine several LAN devices under one virtual network. For example, creating one
network for LAN Ethernet and LAN wireless devices.

Please note, that when a bridge is removed, its formerly underlying devices inherit the bridge’s DHCP settings. For example,
the removal of a bridge that is configured as DHCP client, automatically configures the LAN devices formerly constituting the
bridge as DHCP clients, with the exact DHCP client configuration.

5.2.2.1 Creation with the Connection Wizard

To configure an existing bridge or create a new one, perform the following steps:

1. Click the New Connection link in the ‘Network Connections’ screen (see Figure 5.2). The ‘Connection Wizard’
screen will appear (see Figure 5.4).

2. Select the Advanced Connection radio button and click Next. The ‘Advanced Connection’ screen will appear (see
Figure 5.6).

3. Select the Network Bridging radio button and click Next. The ‘Bridge Options’ screen will appear (see Figure 5.7).

23

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

Figure 5.7 Bridge Options

4. Select whether to configure an existing bridge (this option will only appear if a bridge exists) or to add a new one:

a. Configure Existing Bridge Select this option and click Next. The ‘Network Bridging’ screen will appear (see

Quick Setup Wizard: Telephony) allowing you to add new connections or remove existing ones, by checking or
unchecking their respective check boxes.

Figure 5.8 Network Bridging - Configure

For example, checking the ‘LAN Wireless’ check box will add the Wireless LAN interface to the existing bridge.

b. Add a New Bridge Select this option and click Next. A different ‘Network Bridging’ screen will appear (see Figure

5.9) allowing you to add a bridge over the unbridged connections, by checking their respective check boxes.

Figure 5.9 Network Bridging - Add

Important notes:

· The same connections cannot be shared by two bridges.

· A bridge cannot be bridged.

· Bridged connections will lose their IP settings.

24

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

5. Click Next. The ‘Connection Summary’ screen will appear (see Figure 5.10), corresponding to your changes.

6. Check the ‘Edit the Newly Created Connection’ check box if you wish to be routed to the new connection’s
configuration screen after clicking Finish.

Figure 5.10 Connection Summary - Configure Existing Bridge

7. Click Finish to save the settings.

The new bridge will be added to the network connections list, and will be configurable like any other bridge.

5.2.2.2 General

The top part of the configuration window displays general communication parameters. It is recommended not to
change the default values in this screen unless you are familiar with the networking concepts they represent. Since
your gateway is configured to operate with the default values, no parameter modification is necessary. You can
configure the following general connection settings:

•

‘Physical Address’

The physical address of the network card used for your network. Some cards allow you to change this address.

•

‘MTU’

MTU is the Maximum Transmission Unit. It specifies the largest packet size permitted for Internet transmission.
Manual, allows you to enter the largest packet size that will be transmitted. The recommended size, is 1492. You
should leave this value in the 1200 to 1500 range. To have the gateway select the best MTU for your Internet
connection, select Automatic (default setting).

Figure 5.11 General Bridge Settings

5.2.2.3 Internet Protocol

Select one of the following Internet Protocol options from the ‘Internet Protocol’ drop down menu:

· No IP Address

· Obtain an IP Address Automatically

· Use the Following IP Address

Please note that according to the selection you make in the ‘Internet Protocol’ drop down menu, the screen will
refresh and display relevant configuration settings.

‘No IP Address’ Select ‘No IP Address’ if you require that this connection will have no IP address. Figure 5.12
Internet Protocol Settings - No IP Address

25

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

Figure 5.12 Internet Protocol Settings - No IP Address

‘Obtain Address Automatically’ Select ‘Obtain Address Automatically’ if you require that this connection will try to
obtain its IP address from a DHCP server.

Figure 5.13 Internet Protocol Settings - DHCP

‘Use the Following IP Address’ The LAN connection is usually configured using a permanent (static) IP address.
Your service provider should provide you with this address, and subnet mask.

Figure 5.14 Internet Protocol Settings - Static IP

5.2.2.4 Bridge Settings

The bridge section allows you to specify the LAN devices that you would like to join under the network bridge.

Select the ‘STP’ check box to enable the Spanning Tree Protocol on the device. You should use this to ensure that
there are no loops in your network configuration, and apply these settings in case your network consists of multiple
switches, or other bridges apart from those created by the gateway.

Figure 5.15 LAN Bridge Settings

5.2.2.5 DNS Server

It is possible to specify IP addresses of primary and secondary DNS servers if for instance local domain names
should be handled by local name servers. Note that for the Cellular WAN interface, DNS servers are configured
separately.

Figure 5.16 DNS Server

5.2.2.6 IP Address Distribution

The ‘IP Address Distribution’ section allows you to configure the gateway’s Dynamic Host Configuration Protocol
(DHCP) server parameters. The DHCP automatically assigns IP addresses to network PCs. If you enable this
feature, make sure that you also configure your network PCs as DHCP clients. For a comprehensive description of
this feature, please refer to section 6.6.10.

26

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

Select one of the following options from the ‘IP Address Distribution’ combo-box:

· DHCP Server

‘Start IP Address’ The first IP address that may be assigned to a LAN host. Since the gateway’s default IP

address is 192.168.1.1, this address must be 192.168.1.2 or greater.

‘End IP Address’ The last IP address in the range that can be used to automatically assign IP addresses to LAN

hosts.

‘Subnet Mask’ A mask used to determine to what subnet an IP address belongs. An example of a subnet mask

value is 255.255.0.0.

‘WINS server’ If you use a Windows Internet Naming Service (WINS), specify the WINS server address in this

field.

‘Lease Time In Minutes’ Each device will be assigned an IP address by the DHCP server for a this amount of

time, when it connects to the network. When the lease expires the server will determine if the computer has
disconnected from the network. If it has, the server may reassign this IP address to a newly-connected computer.
This feature ensures that IP addresses that are not in use will become available for other computers on the
network.

‘Provide Host Name If Not Specified by Client’ If the DHCP client does not have a host name, the gateway will

automatically assign one for him.

Figure 5.17 IP Address Distribution - DHCP Server

· DHCP Relay
Your gateway can act as a DHCP relay in case you would like to dynamically assign IP addresses from a DHCP
server other than your gateway’s DHCP server. Note that when selecting this option you must also change
GlobeSurfer ® II’s WAN to work in routing mode. For more information, see section 6.6.10.2.

1. After selecting ‘DHCP Relay’ from the drop down menu, a ‘New IP Address’ link will appear:

Figure 5.18 IP Address Distribution - DHCP Relay

Click the ‘New IP Address’ link. The ‘DHCP Relay Server Address’ screen will appear:

Figure 5.19 DHCP Relay Server Address

2. Specify the IP address of the DHCP server.

27

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

3. Click ‘OK’ to save the settings.

· Disabled Select ‘Disabled’ from the combo-box if you would like to statically assign IP addresses to your network
computers.

Figure 5.20 IP Address Distribution - Disable DCHP

5.2.2.7 Routing

You can choose to setup your gateway to use static or dynamic routing. Dynamic routing automatically adjusts how
packets travel on the network, whereas static routing specifies a fixed routing path to neighboring destinations.

‘Routing’

Select ‘Advanced’ or ‘Basic’ routing.

‘Device Metric’

The device metric is a value used by the gateway to determine whether one route is superior to another,
considering parameters such as bandwidth, delay, and more.

‘Default Route’

Select this check box to define this device as the default route.

‘Multicast - IGMP Proxy Internal’

IGMP proxy enables the system to issue IGMP host messages on behalf of hosts that the system discovered
through standard IGMP interfaces. IGMP proxy enables the routing of multicast packets according to the IGMP
requests of LAN devices asking to join multicast groups. Select the ‘Multicast IGMP Proxy Internal’ check-box to
enable this feature.

‘Routing Information Protocol (RIP)’

Select this check box to enable the Routing Information Protocol (RIP). RIP determines a route based on the
smallest hop count between source and destination. When RIP is enabled, select the following:

· Listen to RIP messages - select ‘None’, ‘RIPv1’, ‘RIPv2’ or ‘RIPv1/2’.

· Send RIP messages - select ‘None’, ‘RIPv1’, ‘RIPv2-broadcast’ or ‘RIPv2-multicast’.

‘Routing Table’

Allows you to add or modify routes when this device is active. Use the ‘New Route’ button to add a route or edit
existing routes.

Figure 5.21 Advanced Routing Properties

To learn more about this feature, please refer to chapter 6.6.7.

28

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

5.2.2.8 Internet Connection Firewall

Your gateway’s firewall helps protect your computer by preventing unauthorized users from gaining access to it
through a network such as the Internet. The firewall can be activated per network connection.

To enable the firewall on this network connection, select the ‘Enabled’ check box. To learn more about your
gateway’s security features, please refer to chapter 5.3.

Figure 5.22 Internet Connection Firewall

5.2.2.9 Additional IP Addresses

You can add alias names (additional IP addresses) to the gateway by clicking the ‘New IP Address’ link. This
enables you to access the gateway using these aliases in addition to the 192.168.1.1.

Figure 5.23 Additional IP Addresses

5.2.3 LAN Ethernet

A LAN Ethernet connection connects computers to GlobeSurfer ® II using Ethernet cables, either directly or via network hubs
and switches.

Figure 5.24 LAN Ethernet Properties

Clicking the “Settings” button at the bottom-right of the connection’s Properties window, will open its Configuration window:

29

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

Figure 5.25 LAN Ethernet Configuration

Note that available configuration options may vary depending on if the LAN Ethernet interface is part of a bridge or not.

5.2.3.1 General

The top part of the configuration window displays general communication parameters. It is recommended not to
change the default values in this screen unless you are familiar with the networking concepts they represent. Since
your gateway is configured to operate with the default values, no parameter modification is necessary. You can
configure the following general connection settings:

‘Physical Address’
The physical address of the network card used for your network. Some cards allow you to change this address.

‘MTU’
MTU is the Maximum Transmission Unit. It specifies the largest packet size permitted for Internet transmission.
Manual, allows you to enter the largest packet size that will be transmitted. The recommended size, is 1492. You
should leave this value in the 1200 to 1500 range. To have the gateway select the best MTU for your Internet
connection, select Automatic (default setting).

Figure 5.26 General LAN Ethernet Settings

30

GlobeSurfer ® II 1.8 - 7.2 - 7.2 S REFERENCE MANUAL

5.2.3.2 Internet Protocol

Select one of the following Internet Protocol options from the ‘Internet Protocol’ drop down menu:

· No IP Address

· Obtain an IP Address Automatically

· Use the Following IP Address

Please note that according to the selection you make in the ‘Internet Protocol’ drop down menu, the screen will
refresh and display relevant configuration settings.

‘No IP Address’
Select ‘No IP Address’ if you require that this connection will have no IP address. Figure 5.27 Internet Protocol
Settings - No IP Address

Figure 5.27 Internet Protocol Settings - No IP Address

‘Obtain Address Automatically’
Select ‘Obtain Address Automatically’ if you require that this connection will try to obtain its IP address from a
DHCP server.

Figure 5.28 Internet Protocol Settings - DHCP

‘Use the Following IP Address’
The LAN connection is usually configured using a permanent (static) IP address. Your service provider should
provide you with this address, and subnet mask.

Figure 5.29 Internet Protocol Settings - Static IP

5.2.3.3 DNS Server

It is possible to specify IP addresses of primary and secondary DNS servers if for instance local domain names
should be handled by local name servers. Note that for the Cellular WAN interface, DNS servers are configured
separately.

Figure 5.30 DNS Server

5.2.3.4 IP Address Distribution

The ‘IP Address Distribution’ section allows you to configure the gateway’s Dynamic Host Configuration Protocol
(DHCP) server parameters. The DHCP automatically assigns IP addresses to network PCs. If you enable this
feature, make sure that you also configure your network PCs as DHCP clients. For a comprehensive description of
this feature, please refer to section 6.6.10.

Select one of the following options from the ‘IP Address Distribution’ combo-box: