PLANET IM-1000 User Manual

Internet Monitor
IM-1000
User’s Manual
Copyright
Disclaimer
PLANET Technology does not warrant that the hardware will work properly in all environments and applications, and makes no warranty and representation, either implied or expressed, with respect to the quality, performance, merchantability, or fitness for a particular purpose. PLANET has made every effort to ensure that this User’s Manual is accurate; PLANET disclaims liability for any inaccuracies or omissions that may have occurred. Information in this User’s Manual is subject to change without notice and does not represent a commitment on the part of PLANET. PLANET assumes no responsibility for any inaccuracies that may be contained in this User’s Manual. PLANET makes no commitment to update or keep current the information in this User’s Manual, and reserves the right to make improvements to this User’s Manual and/or to the products described in this User’s Manual, at any time without notice. If you find information in this manual that is incorrect, misleading, or incomplete, we would appreciate your comments and suggestions.
CE mark Warning
This is a class A device, in a domestic environment, this product may cause radio interference, in which case the user may be required to take adequate measures.
Trademarks
The PLANET logo is a trademark of PLANET Technology. This documentation may refer to numerous hardware and software products by their trade names. In most, if not all cases, these designations are claimed as trademarks or registered trademarks by their respective companies.
To avoid the potential effects on the environment and human health as a result of the presence of hazardous substances in electrical and electronic equipment, end users of electrical and electronic equipment should understand the meaning of the crossed-out wheeled bin symbol. Do not dispose of WEEE as unsorted municipal waste and have to collect such WEEE
separately.
Customer Service
For information on customer service and support for the Internet Monitor, please refer to the following Website URL:
http://
www.planet.com.tw
Before contacting customer service, please take a moment to gather the following information:
Internet Monitor serial number and MAC address Any error messages that displayed when the problem occurred Any software running when the problem occurred Steps you took to resolve the problem on your own
Revision
User’s Manual for PLANET Internet Monitor Model: IM-1000 Rev: 1.0 (November, 2006) PartNo.EM-IM1000v1
Table of Contents
Chapter 1 Introduction .................................................................................. 5
1.1 Package Contents.......................................................................... 6
1.2 Front View ................................................................................... 7
1.3 Specification ................................................................................ 7
System
Chapter 2
2.1 Admin………………………………………………...............
2.2
2.3
2.4
2.5
2.6
2.7
System…………………………………………….................. 9
13
Interface IP……………………………………………............ 15
Setting………………………………………………...............
Date / Time……………………………………………...........
Permitted IPs…………………………………………….........
Language…………………………………………..…………. 24
Software Update……………………………………...............
16 22
23
25
User List
Chapter 3
3.1
User List…………………………………………….............. 26
Example……………………………... ………………………
29
IM Management
Chapter 4 IM Management…………………………………………….. 46
4.1 Configure…………………………………………………….. 47
4.2
4.3
Record
Chapter 5
Chapter 6
Chapter 7
7.1
7.2
7.3
7.4
Authentication………………………………………………… 53 Rule…………………………………………………………… 111
Setting……………………………………….………………. 133
User…………………………………………….……………. 136
Service………………………………………………............. 149
SMTP ………………………………….…………………..... 153
POP3 ………………………………….…………………...... 155
HTTP ………………………………….………………......... 157
IM ………………………………….……………………….. 159
7.5
7.6
7.7
7.8
Anomaly Flow IP
Chapter 8
8.1
8.2
8.3
Local Disk
Chapter 9
9.1
9.2
Remote Backup
Chapter 10
10.1
10.2
Report
Chapter 11
11.1
Status
Chapter 12 Status…………………………………………........................ 203
12.1
12.2
12.3
12.4
Web SMTP ………………………………….……………… 161 Web POP3 ………………………………….………………. 163 FTP ………………………………….…………………….. . 165
TELNET ………………………………….………………... . 167
Anomaly Flow IP……………………………………………. 169 Setting………………………………………………………… 171
Virus Infected IP………………………………………….......
Intrusion IP………………………………………................... 176
Local Disk…………………………………………................ 179
Storage Time………………….................................................
Disk Space................................................................................. 181
Remote Backup……………………………………………… 183 Backup………………………………………………………… 184 Browse………………………………………………………… 193
Report……………………………………………................... 194
Storage Report……………………………………………….. 201
System Info……………….…………………………………..
ARP Table………………….……………………………........ 206
Record Info…………………………………………………... 207 Event Log…………………………………………………….. 209
173
180
204

Chapter 1 Introduction

The innovation of the Internet has created a tremendous worldwide venue for E­business and information sharing, but it also creates network resource and security issues. These requests will be the primary concerned for the enterprise. The new model of Planet’s Internet Monitor, IM-1000, a special designed of Internet monitor gateway, provides monitoring many popular Internet services. The IM-1000 appliance offers recording Web mails, SMTP / POP3 mails, IM (MSN, Yahoo Messenger, ICQ, and QQ), HTTP (Web pages), FTP, and TELNET in the internal PCs and servers. It prevents employees accessing personal network activities through the company's network resources, improving the working efficiency, and keeping confidential information records.
PRODUCT FEATURES
Monitor Web Mail, SMTP, POP3, IM, HTTP, FTP, and TELNET Contents
Records the Web mails, E-mails, IM contents (MSN, Yahoo Messenger, ICQ, and QQ), HTTP (browsed web pages), FTP downloading and uploading data information, and Telnet (BBS) contents.
Sniffer or Bridge Mode Deployment Administrator can choose Sniffer or
Bridge mode depends on the real network environment. Sniffer mode needs a hub or core switch (support mirror port function) to link IM1000 Inbound port to the any port of the hub or mirror port of core switch. Bridge mode links the IM-1000 Inbound port to firewall or gateway. Another Outbound port connects to the internal network via hub or switch. H/W Bypass function also ensures the network stability when the internet monitor is malfunction.
Record Backup Periodically backup the Web SMTP, Web POP3, SMTP, POP3,
HTTP, FTP, and Telnet records to the assigned NAS or file server. Administrator
can download and unzip the recorded files from assigned NAS or file server via PC.
Group Administrator Add the new group administrator and set different
privilege for every group administrator to view the user records. If the company's internal network is divided in several groups, MIS can limit the view privilege to the assigned administrator to view the records of certain groups without crossing groups.
Daily Record of Specific User Record today's network activity of each user in
detail.
User Record and Service Record Search the specific user in user list and
monitor the user network activities. Search the service records by service name and user to reduce the search time.
IP address or MAC address Record the internal user's network accessing
activities according to its IP or MAC address. Administrator can easily view the stored records.
Remote Monitoring Use the web management interface, and no software to
install. Administrator can log in to view the records anytime or anyplace.
Optimal Storage Space Prompt Provides the optimal storage time and settings
in every service depends on daily network flow and service utilization.
Easy-to-use Web UI and Friendly Charts The IM-1000 provides the system
information and flow statistics displayed in friendly charts. Administrator can easily analyze the network flow status by using these information.
Virus-Infected Alarm If the internal virus-infected PC keeping send packets to
paralyze the company's network, the IM-1000 would send the alarm message to inform the user and administrator. Use Bridge mode to deploy the IM-1000 can efficiently block the anomaly flow packets.
1.1 Package Contents
IM-1000 x 1 Power Cord x 1 Quick Installation Guide x 1
User’s Manual CD x 1 Console cable x 1 Cat5 cross cable x 1 Cat5 cable x 1 Rack-mount ear x 2
1.2 Front View
LED Description PWR Power is supplied to this device. HD Blinks to indicate this devise is being to access the hard disk. Inbound / Outbound
Green Steady on indicates the port is connected to other
Orange Steady on indicates the port is connected at
network device. Blink to indicates there is traffic on the port
100Mbps speed
1.3 Specification
Product Internet Monitor Model IM-1000 Recommend maximum concurrent user Hardware Ethernet
Console Hard Disk H/W Watch-Dog Software
Inbound Outbound
100
1 x 10/100 Based-TX RJ-45 1 x 10/100 Based-TX RJ-45 1 x RS-232 (DB-9) 160 GB Auto reboot when detecting system fail
Management Network Connection Concurrent Sessions Inbound to Outbound Throughput Recommend concurrent user Internet Record
IM Management Remote Backup /
Browse Max. Department / Group User List
Anomaly Flow Sub-Administrator
Remote Management
Firmware Upgrade Configuration
Status
Web Sniffer and Bridge mode 582,000 100Mbps
50~100
E-mail: SMTP, POP3 Web Mail : Yahoo, Hotmail, SINA, Gmail, Hinet, PChome, Seednet, Sohu, 163, Tom, Yam IM: MSN, MSN Web Messenger, Yahoo Messenger, ICQ, QQ HTTP FTP Telnet Sorting: by User Name or Service Search Login Notification: NetBIOS, MSN, Yahoo Messenger, ICQ User Authentication: Authentication User, RADIUS, POP3, LDAP E-Mail, Web Mail, HTTP, IM, FTP, Telnet
12
Black list (Logged User) White list (Ignored User) Auto Search User Blaster Alarm: Enable Blaster Blocking, E-Mail / NetBIOS Alert Notification, Co-Defense with Core Switch Max entry: 400 Write Access Group Admin Remote Monitor Web Management (Port Number) can be changeable Permitted IPs (Max entry): 512 Web UI Log out From Web UI
Save configuration to file Load configuration from file Load Default Setting (Factory Reset) System Information: CPU, Hard Disk, Memory, and RAM Disk Utilization ARP Table Record Session Event Log

Chapter 2 System

The system administration, refers the competency to manage the IM-1000. In this Chapter, it will be define to the Admin, Interface IP, Setting, Date/ Time, Permitted IPs, Language, Log out, and Software Update.
The IM-1000 is managed by the main system administrator. The main system administrator can add or delete any system settings and monitor the system status. The other group administrator have no competency to modify the system settings (the administrator’s name is set by the system main administrator), only can monitor the system status.
Administrator
Administrator/ Group administrator :
The name of system administrator and group administrator. Administrator is the
defult name of system administrator in IM-1000, and it cannot be canceled: otherwise the group administrator can change or cancel it.
The default system administrator can add or modify the other administrator, and
also can decide if the group administrator have the competency to write into main system.
On the other hand , the group administrator who has the write competency, can
modify the competency of default system administrator, only has the competency to read.
There must be at least one administrator who have the competency to read and
write in IM-1000.
The default user name and password of system administrator in IM-1000 are admin and admin .
Privilege:
The administrator who has the competency to read/write, can change the system
settings, monitor the system status, to add and cancel other administrators.
The administrator who has the competency to read, only can monitor the system
status, but has no competency to change any settings.
Password/New Password/Confirm Password :
To add or modify the main group administrator password.
View Groups
The group administrator can divide the internal network into several groups .
And he can appoint the specifiy administrator to view the group but can not view across groups.
10
Interface IP
Interface Address :
The administrator can set the IP login information in IM-1000.
Ping
Enable the function, the user can send Ping (ICMP) packets to Interface.
HTTP :
Enable this function, the user can login IM-1000 Web UI through HTTP protocol.
HTTPS
Enable this function, the user can login IM-1000 Web UI through HTTPS
protocol .
Download Bandwidth and Upstream Bandwidth
The system administrator should set the accurate bandwidth of WAN, in order to
be the basic operation of IM-1000.
Setting
Internet Recorder Configuration
The system administrator can import or export the system settings, or they can also
reset the factory setting and format the disk.
E-mail Setting
To activate this option , the system administrator will receive the cau tion message
automatically when IM-1000 is in the unpreditictable trouble.
11
Web Management (Port Number)
The system administrator can use the WebUI to manage IM-1000 anywhere. The
system manager can also change the port number of IM-1000.
When the port number of HTTP and HTTPS had been changed . If the system admini st rat or
want to log in to WebUI , then he must change the WebUI port number. for example
http://172.20.108.172:8080 and https:// 172.20.108.172:1025
Log Storage Time
System administrator can set the log storage time.
Date/Time
Synchronize system clock
This option can schronize the Date/Time in IM-1000, the administrator’s PC and
the WAN server.
GMT
The international standard timeGreenwich Mean Time : GMT).
Daylight saving time
Daylight saving time (also called DST, or Summer Time) is the portion of the year
in which a region's local time is advanced by (usually) one hour from its standard official time.
12
2.1 Admin
Step1. In admin setting window
click the New-Group Admin .
Step2. In add new group-admin window
Group-Admin set group_admin.
 
Password enter 12345.
Confirm Password enter 12345. In View Groups column, select the permitted group record to see.
, enter te following information:
Step3. Click OK to login the user or click cancel, to delete the new group
administrator.
Add new group-admin
13
System
Admin
Step1. In admin find the administrator’s name that correspond to the right column,
then click modify.
Step2. In Modify admin password or modify group admin password window.
Enter the following information
Password enter admin. new Password enter 52364. confirm Password enter 52364.
Step3. Click OK to modify the password or click cancel to cancel the setting.
To change the admin password
14
2.2 Interface IP
Step1. In System
In IP Address, Netmask and Default Gateway column, enter the
available IP of the LAN subnet.
Enter DNS server 1 or DNS server 2. Enter Max Downstream Bandwidth and Max Upstream
Bandwidth . ( it depends on the applied flow statistics of the user. )
Enable the setting of Ping, HTTP and HTTPS function. Click OK.
Æ Interface IP , enter the following setting
The interface IP setting
Please do not cancel HTTP and HTTPS before setting the Interface IP, because it will let the
system administrator could not enter the Web UI of IM-1000.
15
2.3 Setting
Step1. In System Setting, select Internet Recorder Configuration Æ Export
System setting to client, and click the download button at the right place.
Step2 When it appeared File Download window, click Save button, and it will
.
show where the file will be saved. Click Save button againThe settings of IM-1000 will be copied to the appointed directory.
16
System
Setting
Step1. In System Setting window, Internet Recorder Configuration Æ Imort
System Setting From Client, then click Browse button at right place.
Step2. In Choose File window, choose the directory of former saved file in IM-
1000, and choose the correct setting, then click Open.
Step3. Click the lower right OK, the window will closed. Step4. Click the OK inside the confirm dialogue box, the setting will import to
IM-1000.
Confirm the import setting
17
System
Setting
Step1. In SystemÆ Setting Æ Internet Recorder ConFiguration, select Reset
Factory Setting and Format Hard Disk.
. Step2 Click the OK in the lower right, it will restore to the factory setting of IM-
1000 and format the disk at the same time.
Select Resect Factory Setting
18
System
Setting
Step1. Select E-Mail Setting Æ Enable Email Alert Notification. Step2. Company Name, enter the name of the company which belong the IM-
1000.
Step3. Device Name, enter the name of IM-1000. Step4. Sender Address, sending the e-mail address of the sender.Some of the
ISP have request to enter in the sender address column
Step5. SMTP Server, enter the IP address of the delivered e-mail in SMTP
server.
Step6. E-Mail Address 1, enter the e-mail address in the first one position to
receive the alarm message.
Step7. E-Mail Address 2, enter the e-mail address in the second position to
receive the alarm message.
. Step8 Click the lower right OK to set the function of message alarm .
Enable the instant mail message alarm of IM-1000
19
Click Mail Test button to test E-Mail address 1 and E-Mail address 2 , to see if the e-mail sending
address can receive the current caution message .
20
System
Setting
Step1. In Reboot Internet Recorder Appliance Æ Reboot button. Step2. It will show “Are you sure to reboot ?” Step3. Click OK to reboot IM-1000, or click Cancel to cancel reboot IM-1000.
Reboot the internet recorder appliance
21
2.4 Date / Time
Step1. Select Enable Synchronize with an Internet Time Server. Step2. Click Set Offset Hours from GMT pull down menu , and choose the
correct time.
Step3. Enter the Server IP address into Server IP/Name. Step4. Enter the frquence of the updating time in Update system clock every
minutes.
System time setting
Select Synchronize Æ Sync button, the system time in IM-1000, will synchronize to the
administrator’s computer.
The settings of Set offset hours from GMT and Server IP can be entered with using Assist.
If the local area execute the daylight saving time, then enable the daylight saving time setting.
22
2.5 Permitted IPs
Step1. In System Æ Permitted IPS Æ New Entry, add the new setting:
Name enter master. IP Address enter 192.168.139.30. Netmask enter 255.255.255.255 .  Service select Ping HTTP and HTTPS. Click OK . Complete Permitted IPs settings.
The Permitted IPs setting
Complete the Permitted IPs setting
If you want the Permitted IPs to be real working, then it must be connect from the administrator to
the interface of IM-1000 WebUI, but the settings of Ping, HTTP, and HTTPS all must be canceled. Before you cancel the interface address of HTTP and HTTPS, you have to set the Permitted IPs first or it will not connect to WebUI through the internet.
23
2.6 Language
Step1. In System Æ Language, choose the Language you want, then Click OK.
Select the language version
24
2.7 Software Update
Step1. In System
Æ Software Update, the user can update the firmware step by
step In Version Number, we can know the current version of the software.
Go on the internet to gain the newest version of the firmware and download into the storage disk in IM-1000.
Click Browse
Æ Choose file, select the newest version of the software.
Click the lower right OK, it will running the update.
Software update
It need 3 minutes to update the software, and will reboot after updated the system . Please do not
turn it off, off line and exit the web page during the update or it will cause the error in IM-1000It is recommended using the LAN to update).
25

Chapter 3 User List

This chapter is about the users can be monitored by the IM-1000. It can automatic serch and add the new users, and the system administrator can add the lists by himself or herself.
26
Setting
User List Configuration
Administrator can export the monitor user list and some related settings to the PC
or import these settings into IM-1000.
Department / Group
The administrator can group the users according to the network structure, so that
he can manage the system more easily.
27
We will setup three different user list in the application environment.
No. Environments
Example.1 The company can be divided into several departments , and part of
the user(department)settled in different subnet.
Example.2
Change the user list by import the user list configuration(excel list).
28
3.1 Example
The company can be divided into several departments, and part of the user departmentsettled in different subnet.
Step1. In User List Æ Setting, set the following settings
To set the Department / Group depends on the real network
deployment.
Click OK
Set the user list
29
Loading...
+ 181 hidden pages