Proxicast LAN-Cell 2 User Manual
www.proxicast.com
LAN-Cell 2
3G Cellular Router + VPN + Firewall
User’s Guide
Version 4.02
November 2008
Edition 2
Contents Overview
Contents Overview
Introduction ............................................................................................................................25
Getting to Know Your LAN-Cell 2 .............................................................................................. 27
Introducing the Web Configurator & Home Screen ...................................... ... ... .... ... ... ... ... .... ... 35
Tutorials: 3G Modem Setup & VPN Wizard ............................................................................... 53
Network & Wireless Menus ...................................................................................................75
LAN Screens .............................................................................................................................77
WAN & 3G Cellular Screens ............... ... ............................................................. .... ... ... .............89
DMZ Screens ........................................................................................................................... 127
Wireless LAN (WLAN) Screens ...............................................................................................137
Wi-Fi Screens ........... ... ... .... ... .......................................................... ... ... .... ... ... ... .... ... ... ........... 163
Security Menu ......................................................................................................................179
Firewall Screens ...................................................................................................................... 181
IPSec VPN Config Screens ..................................................................................................... 209
Certificates Screens ................................................................................................................255
Authentication Server Screens ........... ... ... ... .... ... ... ... .... ... ... ..................................................... 283
Advanced Menu ...................................................................................................................287
Network Address Translation (NAT) Screens .......................................................................... 289
DNS Screens ............................................ ... .... ... ... ... .... ... ... ... .................................................. 307
Remote Management Screens ................................................................................................319
Static Route Screens ...............................................................................................................339
Policy Route Screens ..............................................................................................................343
Bandwidth Management Screens .................... ... .....................................................................349
ALG Screens ........................................................................................................................... 365
Custom Application Screens ...................................................................................................371
Logs and Maintenance Menus ............................................................................................373
Logs Screens ........................................................................................................................... 375
Maintenance Screens ..............................................................................................................397
System Management Terminal ...........................................................................................411
Introducing the SMT ................................................................................................................413
General Setup .......... .......................................................... ... .... ... ... ... ... .... ... ... ... .....................421
WAN, 3G and Dial Backup Setup .......................................... .... ... ... ... ... .... ... ... ........................ 427
LAN Setup ............................................................................................................................... 441
LAN-Cell 2 User’s Guide
3
Contents Overview
Ethernet WAN Internet Access ................................................................................................447
DMZ Setup .............................................................................................................................. 453
Route Setup .............. ... ... .... .......................................................... ... ... ... .... ... ...........................457
WLAN Setup ............................................................................................................................461
WAN ISP Setup ........... ... .... ... ... ... .... .......................................................... ... ... ... .... ... ... ... ........ 465
IP Static Route Setup ..............................................................................................................473
Network Address Translation (NAT) ........................................................................................ 477
Firewall Status ......................................................................................................................... 497
Filter Configuration ..................................................................................................................499
SNMP Configuration ................................................................................................................515
System Information & Diagnosis .............................................................................................517
Firmware and Configuration File Maintenance ........................................................................ 529
System Maint. Menus 8 to 10 .................................................................................................. 543
Remote Management ..............................................................................................................551
IP Policy Routing ......................................... ........................................................... ... ... ...........555
Call Scheduling ........................................................................................................................ 563
Troubleshooting and Specifications ..................................................................................567
Troubleshooting ..................................................... .................................................................. 569
Product Specifications ............................................................................................................. 575
Appendices ...........................................................................................................................581
4
LAN-Cell 2 User’s Guide
Table of Contents
Table of Contents
Contents Overview ...................................................................................................................3
Table of Contents......................................................................................................................5
About This User's Guide........................................................................................................19
Document Conventions..........................................................................................................20
Safety Warnings ......................................................................................................................22
Part I: Introduction................................................................................. 25
Chapter 1
Getting to Know Your LAN-Cell 2..........................................................................................27
1.1 LAN-Cell 2: 3G Cellular Router + VPN + Firewall Overview ............................................... 27
1.2 Ways to Manage the LAN-Cell ..................................................................................... .... ... 27
1.3 Good Habits for Managing the LAN-Cell ............................................................................. 28
1.4 Applications for the LAN-Cell ........................ ....................... ................... ...................... ....... 28
1.4.1 3G WAN Applications ................................................................................................. 28
1.4.2 Redundant Secure Broadband Internet Access via Ethernet or Cellular ................... 29
1.4.3 VPN Application ............................................ ... ... ... .... ... ... ... ....................................... 29
1.5 Front Panel Indicators ........ ... .... ............................................................. ... ... .......................30
1.6 Rear Panel Connections ...................................................................................................... 31
1.7 Card-Lock ........ ... ... .......................................................... .... ... ... ... ... .... ................................ 32
Chapter 2
Introducing the Web Configurator & Home Screen.............................................................35
2.1 Web Configurator Overview .................................................................................................35
2.2 Accessing the LAN-Cell Web Configurator ..........................................................................35
2.3 Navigating the LAN-Cell Web Configurator ......................................................................... 37
2.3.1 Title Bar ...................................................................................................... ... ... .......... 37
2.3.2 Navigation Panel ....................... ... .... ..........................................................................38
2.3.3 Main Window .......................... ... .......................................................... .... ... ... ... ... .... ...40
2.3.4 HOME Screen .................... ... ... ... .... .......................................................... ... ... ... .... ... 41
2.3.5 Port Statistics ...........................................................................................................45
2.3.6 Show Statistics: Line Chart .................................... .... ... ... ... ....................................... 46
2.3.7 DHCP Table Screen ................................................................................................ 47
2.3.8 VPN Status ................... .... ... ... ... ... .... .......................................................... ... ... ... ....... 48
LAN-Cell 2 User’s Guide
5
Table of Contents
2.3.9 Bandwidth Monitor .................................................................................................... 49
2.3.10 Status Bar .................................................................................................................50
2.4 Resetting the LAN-Cell .... .................................................................................................... 51
Chapter 3
Tutorials: 3G Modem Setup & VPN Wizard...........................................................................53
3.1 Setting Up a 3G WAN Connection ....................................... ... ... ... ... .... ... ... .......................... 53
3.1.1 Inserting a 3G PC-Card ........................................................................... ... ... ... ... .... ... 53
3.1.2 Configuring 3G WAN Settings ................... .... ... ... ... .................................................... 54
3.1.3 Checking WAN Connections ...................................................................................... 55
3.2 VPN Wizard Overview ........................................................................................................ 57
3.2.1 VPN Wizard Gateway Setting ....................................................................................57
3.2.2 VPN Wizard Network Setting ..................................................................................... 58
3.2.3 VPN Wizard IKE Tunnel Setting (IKE Phase 1) ......................................................... 59
3.2.4 VPN Wizard IPSec Setting (IKE Phase 2) ................................................................. 61
3.2.5 VPN Wizard Status Summary .................................................................................... 62
3.2.6 VPN Wizard Setup Complete ........... .......................................... ................................ 64
3.3 Security Settings for VPN Traffic ......................................................... ... ... ... .... ... ... ... ... .... ... 66
3.3.1 Firewall Rule for VPN Example .................................................................................. 66
3.3.2 Configuring the VPN Rule ..........................................................................................66
3.3.3 Configuring the Firewall Rules ................................................................................... 70
Part II: Network & Wireless Menus....................................................... 75
Chapter 4
LAN Screens............................................................................................................................77
4.1 LAN, WAN and the LAN-Cell ...............................................................................................77
4.1.1 What Yo u Can Do in The LAN Screens .....................................................................77
4.1.2 What You Need to Know About LAN ...... ... .... ... ... ... .... ................................................ 78
4.2 LAN Screen ..................................... ... ... .... ... ... ... ................................................................. 80
4.3 LAN Static DHCP Screen ...... .... ... ... ... ... .... .......................................................... ... ... ... .... ... 83
4.4 LAN IP Alias Screen ........................................................................................................... 84
4.5 LAN Port Roles Screen .......................................................................................................86
Chapter 5
WAN & 3G Cellular Screens...................................................................................................89
5.1 Overview ............. .......................................................... ... .... ... ... ... ....................................... 89
5.1.1 What Yo u Can Do in the WAN Screens ..................................................................... 90
5.1.2 What You Need To Know About WAN ........................................ ... ... ... .... ... ... ... ... .... ... 91
5.2 WAN General Screen .......................................................................................................... 94
5.2.1 Configuring Load Balancing ................ ... ... .... ............................................................. 97
6
LAN-Cell 2 User’s Guide
Table of Contents
5.2.2 WAN Connectivity Check ......................................................................................... 101
5.3 WAN Screen ........................................................................................... ... ... .... .................103
5.3.1 WAN Ethernet Encapsulation ................................................................................... 104
5.3.2 PPPoE Encapsulation ..............................................................................................107
5.3.3 PPTP Encapsulation .............................................. .... ... ... ... ... .... ...............................110
5.4 Cellular (3G WAN) Screen .................................................................................................114
5.4.1 Configuring 3G Network Access Parameters ......... .... ... ... ... ... .... ... ............................115
5.4.2 Configuring Cell-Sentry Budget Control ....................................................................118
5.5 Traffic Redirect Screen ...................................... .... ... ... ... .................................................. 120
5.5.1 Configuring Traffic Redirect .............................................. ... ... .................................. 120
5.6 Dial Backup Screen ............ ... .... ... ... ... ...............................................................................122
5.6.1 Advanced Modem Setup ........................................................................................ 124
5.6.2 Configuring Advanced Modem Setup .............. ... ... .... ... ... ... ... .... ... ... ... .... ... ..............125
Chapter 6
DMZ Screens.........................................................................................................................127
6.1 Overview .......................................................................................................................... 127
6.1.1 What You Can Do in the DMZ Screens ....................................................................127
6.1.2 What You Need To Know About DMZ ....... .... ... ... ... .... ... ... ... ... .... .............................. 127
6.1.3 DMZ Public IP Address Example .............................................................................128
6.1.4 DMZ Private and Public IP Address Example ..........................................................129
6.2 DMZ Screen ....... ... ... .... ... ... ... .... ... .....................................................................................129
6.3 DMZ Static DHCP Screen .................................... ... ... ... .... ... ... ........................................ 132
6.4 DMZ IP Alias Screen ......................................... ............................................................... 133
6.5 DMZ Port Roles ............. ... ... .... .......................................................... ... ... ... .... ... ... ...........135
Chapter 7
Wireless LAN (WLAN) Screens............................................................................................137
7.1 Overview ............. .......................................................... ... .... ... ... ... ..................................... 137
7.1.1 What You Can Do in the WLAN Screens ................................................................. 138
7.1.2 What You Need to Know About Wireless LAN ........................... ... ... ... .... ... ... ... ... .... . 1 38
7.2 WLAN Screen .................................................................................................................. 139
7.3 WLAN Static DHCP Screen .............................................................................................. 141
7.4 WLAN IP Alias Screen .......................................................................................................142
7.5 WLAN Port Roles Screen ................................................................................................. 144
7.6 Wireless Security Overview ............................. ... .... ... ........................................................ 147
7.6.1 SSID ................................................. ... ... .......................................................... ........ 147
7.6.2 MAC Address Filter ...................... ....................................................................... ..... 147
7.6.3 User Authentication .......................................... ... ... .... ... ... ........................................ 147
7.6.4 Encryption .............................................. .......................................................... ... ..... 148
7.6.5 Additional Installation Requirements for Using 802.1x ............................................. 149
7.7 Internal Wi-Fi Access Point Setup .................................................................................... 150
7.7.1 SSID Profile ........................... ... ... ........................................................... ... ... ... ... ..... 152
LAN-Cell 2 User’s Guide
7
Table of Contents
7.8 Configuring Wireless Security ........................................................................................... 153
7.8.1 No Security .......................... ... .......................................................... ... .... ... ... ... ........155
7.8.2 Static WEP ............. ... ... .... ... .......................................................... ... ... .....................155
7.8.3 IEEE 802.1x Only .....................................................................................................156
7.8.4 IEEE 802.1x + Static WEP ....................................................................................... 157
7.8.5 WPA, WPA2, WPA2-MIX ........ ... ... .... ... ... .......................................................... ... .... . 1 59
7.8.6 WPA-PSK, WPA2-PSK, WPA2-PSK-MIX ................................................................. 160
7.9 MAC Filter ............. ... .... ... ... ... .... ... .......................................................... ... ... .... ... ... ........... 161
7.10 Country Codes ................................................................................................................. 162
Chapter 8
Wi-Fi Screens........................................................................................................................163
8.1 Overview ............. .......................................................... ... .... ... ... ... ..................................... 163
8.1.1 What You Can Do in the Wi-Fi Screens ................................................................... 163
8.1.2 What You Need to Know About Wireless LAN ........................... ... ... ... .... ... ... ... ... .... . 1 63
8.2 Wi-Fi Configuration Screen ..............................................................................................166
8.2.1 SSID Profile ........................... ... ... ........................................................... ... ... ... ... ..... 168
8.3 Wireless Security Screen .......................................... ... ... .... ... ... ... ... .................................. 169
8.3.1 No Security .......................... ... .......................................................... ... .... ... ... ... ........171
8.3.2 Static WEP ............. ... ... .... ... .......................................................... ... ... .....................171
8.3.3 IEEE 802.1x Only .....................................................................................................173
8.3.4 IEEE 802.1x + Static WEP ....................................................................................... 173
8.3.5 WPA, WPA2, WPA2-MIX ........ ... ... .... ... ... .......................................................... ... .... . 1 75
8.3.6 WPA-PSK, WPA2-PSK, WPA2-PSK-MIX ................................................................. 176
8.4 MAC Filter Screen ................................. .... ... ... ... .......................................................... ..... 177
8.5 Country Codes ................. ... ... .......................................................... .... ... ... ... .... ... ... ... ........ 178
Part III: Security Menu......................................................................... 179
Chapter 9
Firewall Screens....................................................................................................................181
9.1 Overview ............... .......................................................... .... ... ... ... ... .................................. 181
9.1.1 What You Can Do in the Firewall Screens ...............................................................182
9.1.2 What You Need To Know About The LAN-Cell Firewall ........................................... 1 82
9.2 Firewall Rules Example ......... .... ... ... ... ... .... ... ............................................................. ... .....182
9.3 Firewall Default Rule .... ... ... ... .... ... ... ... ... .... ........................................................................184
9.4 Firewall Rule Summary Screen .... ............................................................. ... .... ... ..............186
9.4.1 Firewall Edit Rule ..................................................... ........................................... 188
9.5 Anti-Probing Screen ...... ... ... .... ... ... ... ...............................................................................191
9.6 Threshold Screen ...................................... ... .......................................................... ... ... ..... 192
9.7 Service Screen .................................................................................................................194
8
LAN-Cell 2 User’s Guide
Table of Contents
9.7.1 Firewall Edit Custom Service .................................................................................. 195
9.7.2 My Service Firewall Rule Example ................... ... ... .... ... ........................................... 196
9.8 Firewall Technical Reference ................. .... ... ... ... .... ... ... ... .... .............................................. 200
Chapter 10
IPSec VPN Config Screens ..................................................................................................209
10.1 IPSec VPN Overview ..................................................................................................... 209
10.1.1 What You Can Do in the IPSec VPN Screens ........................................................ 209
10.1.2 What You Need to Know About IPSec VPN ...........................................................210
10.2 VPN Rules (IKE) Screen ................................................................................................. 212
10.2.1 VPN Rules (IKE) Gateway Policy Edit Screen ...................................................... 213
10.2.2 VPN Rules (IKE): Network Policy Edit .................................................................. 219
10.2.3 Network Policy Edit: Port Forwarding Screen ........................................................ 223
10.2.4 VPN Rules (IKE): Network Policy Move Screen .................................................. 225
10.2.5 Dialing the VPN Tunnel via Web Configurator .. ... .... ... ... ........................................ 226
10.3 VPN Rules (Manual) ........................................................................................................227
10.4 VPN Rules (Manual): Edit Screen ................................................................................228
10.5 VPN SA Monitor Screen .................................................................................................. 231
10.6 VPN Global Setting Screen ............................................................................................232
10.6.1 Configuring the Global Setting Screen ..................................................... ... ... ... .... . 234
10.7 Mobile User VPN/IPSec Examples ............................. .......................... .......................... . 235
10.7.1 Mobile Users Sharing One VPN Rule Example .......................................... ... ... .... . 2 36
10.7.2 Mobile Users Using Unique VPN Rules Example .................................................. 236
10.8 VPN and Remote Management .......................................................................................238
10.9 Hub-and-spoke VPN ........................................................................................................ 238
10.9.1 Hub-and-spoke VPN Example ............................................................................... 239
10.9.2 Hub-and-spoke Example VPN Rule Addresses ............................. ........................ 240
10.9.3 Hub-and-spoke VPN Requirements and Suggestions ........................................... 240
10.10 VPN Troubleshooting .....................................................................................................241
10.10.1 IPSec Debug ........................................................................................................ 242
10.11 IPSec VPN Technical Reference ................................................................................... 244
Chapter 11
Certificates Screens .............................................................................................................255
11.1 Overview .......................................................................................................................... 255
11.1.1 What You Can Do in the Certificate Screens .................. ............. ............. ......... ..... 255
11.1.2 What You Need to Know About Certificates ........................................................... 255
11.2 My Certificates Screen ....................................................................................................257
11.2.1 My Certificate Details Screen ............................................................................... 259
11.3 My Certificate Export Screen ..........................................................................................262
11.4 My Certificate Import Screen .......................................................................................... 263
11.5 My Certificate Create Screen ...........................................................................................265
11.6 Trusted CAs Screen .........................................................................................................269
LAN-Cell 2 User’s Guide
9
Table of Contents
11.7 Trusted CA Details Screen .............................................................................................. 270
11.8 Trusted CA Import Screen .............................................................................................. 273
11.9 Trusted Remote Hosts Screen ........................................................................................ 274
11.10 Trusted Remote Hosts Import Screen .................................... ... ... .... ... ... ... .... ... ... ... ... .... . 276
11.11 Trusted Remote Host Certificate Details Screen ........................................................... 277
11.12 Directory Servers Screen ..............................................................................................279
11.13 Directory Server Add or Edit Screen ..................................... ... ... .... .............................. 280
Chapter 12
Authentication Server Screens...................................................................................... ......283
12.1 Overview .......................................................................................................................... 283
12.1.1 What You Can Do in the Authentication Server Screens .......................................283
12.1.2 What You Need To Know About Authentication Server ..........................................283
12.2 Local User Database Screen ............................................................................. ... ... ... .... . 2 84
12.3 RADIUS Screen .............................................................................................................. 285
Part IV: Advanced Menu...................................................................... 287
Chapter 13
Network Address Translation (NAT) Screens.....................................................................289
13.1 Overview ........................................................................................................................ 289
13.1.1 What You Can Do in the NAT Screens ...................................................................289
13.1.2 What You Need To Know About NAT .....................................................................289
13.2 NAT Overview Screen ..................................................................................................... 290
13.3 NAT Address Mapping ................................................................................................... 292
13.3.1 NAT Address Mapping Edit .................................................................................. 294
13.4 Port Forwarding .............................................................................................................. 295
13.4.1 Configuring Servers Behind Port Forwarding (Example) ....................................... 296
13.4.2 Port Forwarding Screen ......................................................................................... 298
13.5 Port Triggering ...............................................................................................................300
13.6 NAT Technical Reference ................................................................................................ 302
Chapter 14
DNS Screens .........................................................................................................................307
14.1 Overview ......................................................................................................................... 307
14.1.1 What You Can Do in the DNS Screens .................................................................. 307
14.1.2 What You Need To Know About DNS .................................................................... 307
14.2 System Screen ................................................................................................................309
14.2.1 Adding an Address Record ...................................................................................311
14.2.2 Inserting a Name Server Record .......................................................................... 312
14.3 DNS Cache .................................................................................................................... 313
10
LAN-Cell 2 User’s Guide
Table of Contents
14.4 Configure DNS Cache ..................................................................................................... 313
14.5 Configuring DNS DHCP ................................................................................................315
14.6 DDNS Screen ................. ... .... ... .....................................................................................316
14.7 Configuring Dynamic DNS ............................................................................................... 317
Chapter 15
Remote Management Screens.............................................................................................319
15.1 Overview .......................................................................................................................... 319
15.1.1 What You Can Do in the Remote Management Screens ....................................... 319
15.1.2 What You Need To Know About Remote Management ......................................... 320
15.2 Remote Management Examples .....................................................................................321
15.2.1 HTTPS Example .................................................................................................... 321
15.2.2 Secure Telnet Using SSH Examples ...................................................................... 324
15.3 WWW ..............................................................................................................................326
15.4 The WWW (HTTP and HTTPS) Screen .......................................................................... 327
15.5 Configuring the WWW Screen .......................... .......................... .......................... ........... 329
15.6 The SSH Screen ............................................................................................................. 330
15.7 Configuring the SSH Screen ........................................................................................... 331
15.8 Telnet Screen ................................................................................................................... 331
15.9 FTP Screen ................................................................................................................... 332
15.10 SNMP Screen ..............................................................................................................333
15.10.1 Configuring the SNMP Screen .............................................................................335
15.11 DNS Screen ................................................................................ .... ... ... ... .... ... ... ... ........ 336
15.12 Remote Management Technical Reference ................ .... ... ... ........................................ 337
Chapter 16
Static Route Screens............................................................................................................339
16.1 Overview .......................................................................................................................... 339
16.1.1 What You Can Do in the Static Route Screens ...................................................... 339
16.2 IP Static Route Screen ....................................................................................................339
16.2.1 IP Static Route Edit Screen ...................................................................................341
Chapter 17
Policy Route Screens...........................................................................................................343
17.1 Overview .......................................................................................................................... 343
17.1.1 What You Can Do in the Policy Route Screens ..................................................... 343
17.1.2 What You Need To Know About Policy Route .......................... .............................. 343
17.2 Policy Route Summary Screen ........................................................................................ 344
17.3 Policy Route Edit Screen .................................................................................................345
Chapter 18
Bandwidth Management Screens........................................................................................349
18.1 Overview ......................................................................................................................... 349
LAN-Cell 2 User’s Guide
11
Table of Contents
18.1.1 What You Can Do in the Bandwidth Management Screens ..... ... ... ... .... ... ... ... ... .... . 349
18.1.2 What You Need to Know About Bandwidth Management ...................................... 350
18.1.3 Bandwidth Management Examples ................................ ................... .................... . 351
18.2 Bandwidth Management Summary Screen .....................................................................354
18.3 Class Setup Screen ........................................................................................................356
18.3.1 Bandwidth Manager Class Configuration ............................................................. 357
18.3.2 Bandwidth Management Statistics Screen ........................................................361
18.4 Bandwidth Manager Monitor .......................................................................................... 362
Chapter 19
ALG Screens .........................................................................................................................365
19.1 Overview ......................................................................................................................... 365
19.1.1 What You Need to Know About ALG ..................................................................... 365
19.2 ALG Screen ..................................................................................................................... 369
Chapter 20
Custom Application Screens...............................................................................................371
20.1 Overview ......................................................................................................................... 371
20.1.1 What You Need to Know About Custom Application ..............................................371
20.2 The Custom Application Screen ...................................................................................... 371
Part V: Logs and Maintenance Menus ............................................... 373
Chapter 21
Logs Screens ........................................................................................................................375
21.1 Overview .......................................................................................................................... 375
21.1.1 What You Can Do in the Log Screens .................................................................... 375
21.1.2 What You Need To Know About Logs ....................................................................375
21.2 View Log Screen ................................................... ........................................................... 375
21.2.1 Log Description Example ....................................................................................... 377
21.3 Log Settings Screen ........................................................................................................377
21.4 Logs Technical Reference ............................................................................................... 381
Chapter 22
Maintenance Screens...........................................................................................................397
22.1 Overview .......................................................................................................................... 397
22.1.1 What You Can Do in the Maintenance Screens ..................................................... 397
22.2 General Setup Screen ..................................................................................................... 397
22.3 Password Screen ............................................................................................................ 398
22.4 Time and Date Screen ......................... .... ........................................................................399
22.4.1 Time Server Synchronization Example ... .... ... ... ... .... ... ... ... ... .... ... ... ... .... ... ... ...........402
12
LAN-Cell 2 User’s Guide
Table of Contents
22.5 F/W Upload Screen ........................................................................................................403
22.6 Backup and Restore Screen ......................... ....................... ...................... ..................... 405
22.7 Restart Screen ................................................................................................................ 407
22.8 The Diagnostics Screen ..................................................................................................408
Part VI: System Management Terminal...............................................411
Chapter 23
Introducing the SMT.............................................................................................................413
23.1 Introduction to the SMT ...................................................................................................413
23.2 Accessing the SMT via the Console Port ........................................................................ 413
23.2.1 Initial Screen ..........................................................................................................413
23.2.2 Entering the Password ................................ ........................................................... 414
23.3 Navigating the SMT Interface .......................................................................................... 414
23.3.1 Main Menu ............................................................................................................. 415
23.3.2 SMT Menus Overview ............................................................................................ 417
23.4 Changing the System Password .....................................................................................418
23.5 Resetting the LAN-Cell ....................................................................................................419
Chapter 24
General Setup........................................................................................................................421
24.1 Introduction to General Setup .......................................................................................... 421
24.2 Configuring General Setup .............................................................................................. 421
24.2.1 Configuring Dynamic DNS ..................................................................................... 422
Chapter 25
WAN, 3G and Dial Backup Setup.........................................................................................427
25.1 Introduction to WAN, 3G WAN and Dial Backup Setup ................................................... 427
25.2 WAN Setup ......................................................................................................................427
25.3 Dial Backup .....................................................................................................................428
25.3.1 Configuring Dial Backup in Menu 2 ........................................................................ 428
25.3.2 Advanced WAN Setup ........................................................................................... 429
25.3.3 Remote Node Profile (Backup ISP) ................... ... .... ... ... ... ... .... ... ... ... .....................431
25.3.4 Editing TCP/IP Options .......................................................................................... 433
25.3.5 Editing Login Script ................................................................................................ 434
25.3.6 Remote Node Filter ................................................................................................ 436
25.4 3G WAN ...........................................................................................................................436
25.4.1 3G Modem Setup ................................................................................................... 436
25.4.2 Remote Node Profile (3G WAN) .................................... ... ... .... ... ........................... 437
Chapter 26
LAN Setup..............................................................................................................................441
LAN-Cell 2 User’s Guide
13
Table of Contents
26.1 Introduction to LAN Setup ............................................................................................... 441
26.2 Accessing the LAN Menus ............ ... ... .... ........................................................................441
26.3 LAN Port Filter Setup ....................................................................................................... 441
26.4 TCP/IP and DHCP Ethernet Setup Menu ........................................................................ 442
26.4.1 IP Alias Setup .........................................................................................................445
Chapter 27
Ethernet WAN Internet Access ............................................................................................447
27.1 Introduction to Internet Access Setup ..............................................................................447
27.2 Ethernet Encapsulation ................................................................................................... 447
27.3 Configuring the PPTP Client ............................................................................................ 449
27.4 Configuring the PPPoE Client ......................................................................................... 450
27.5 Basic Setup Complete ..................................................................................................... 451
Chapter 28
DMZ Setup.............................................................................................................................453
28.1 Configuring DMZ Setup ................................................................................................... 453
28.2 DMZ Port Filter Setup ......................................................................................................453
28.3 TCP/IP Setup ................................................................................................................... 454
28.3.1 IP Address ..............................................................................................................454
28.3.2 IP Alias Setup .........................................................................................................455
Chapter 29
Route Setup................................................................ .......... ........... ........... ...........................457
29.1 Configuring Route Setup .................................................................................................457
29.2 Route Assessment ..........................................................................................................457
29.3 Traffic Redirect ................................................................................................................458
29.4 Route Failover .................................................................................................................459
Chapter 30
WLAN Setup..........................................................................................................................461
30.1 TCP/IP Setup ................................................................................................................... 461
30.1.1 IP Address ..............................................................................................................461
30.1.2 IP Alias Setup .........................................................................................................462
Chapter 31
WAN ISP Setup......................................................................................................................465
31.1 Introduction to WAN ISP Setup .......................................................................................465
31.2 Remote Node Setup ........................................................................................................ 465
31.3 Remote Node Profile Setup .................................. .......................................................... . 4 65
31.3.1 Ethernet Encapsulation ..........................................................................................466
31.3.2 PPPoE Encapsulation ............................................................................................467
31.3.3 PPTP Encapsulation .............................................................................................. 468
14
LAN-Cell 2 User’s Guide
Table of Contents
31.4 Edit IP .............................................................................................................................. 469
31.5 Remote Node Filter .........................................................................................................471
Chapter 32
IP Static Route Setup............................................................................................................473
32.1 IP Static Route Setup ......................................................................................................473
Chapter 33
Network Address Translation (NAT)....................................................................................477
33.1 Using NAT ........................................................................................................................ 477
33.1.1 SUA (Single User Account) Versus NAT ................................................................ 477
33.1.2 Applying NAT .........................................................................................................477
33.2 NAT Setup ....................................................................................................................... 479
33.2.1 Address Mapping Sets ...........................................................................................480
33.3 Configuring a Server behind NAT ........ .... ... .......................................................... ... ... .....484
33.4 General NAT Examples ...................................................................................................487
33.4.1 Internet Access Only .............................................................................................. 487
33.4.2 Example 2: Internet Access with a Default Server ............ ... .... ... ... ... .... ... ..............488
33.4.3 Example 3: Multiple Public IP Addresses With Inside Servers .............................. 489
33.4.4 Example 4: NAT Unfriendly Application Programs ................................................. 492
33.5 Trigger Port Forwarding ...................................................................................................494
33.5.1 Two Points To Remember About Trigger Ports ...................................................... 494
Chapter 34
Firewall Status.......................................................................................................................497
34.1 Firewall SMT Menus ........................................................................................................497
34.1.1 Activating the Firewall ............................................................................................ 497
Chapter 35
Filter Configuration...............................................................................................................499
35.1 Introduction to Filters ....................................................................................................... 499
35.1.1 The Filter Structure of the LAN-Cell ....................................................................... 500
35.2 Configuring a Filter Set ....................................................................................................502
35.2.1 Configuring a Filter Rule ........................................................................................ 503
35.2.2 Configuring a TCP/IP Filter Rule ............................................................................ 504
35.2.3 Configuring a Generic Filter Rule ........................................................................... 506
35.3 Example Filter .................................................................................................................. 508
35.4 Filter Types and NAT .......................................................................................................510
35.5 Firewall Versus Filters .....................................................................................................510
35.5.1 Packet Filtering: ..................................................................................................... 510
35.5.2 Firewall ....................................................................................................................511
35.6 Applying a Filter ...............................................................................................................511
35.6.1 Applying LAN Filters ............................................................................................... 512
LAN-Cell 2 User’s Guide
15
Table of Contents
35.6.2 Applying DMZ Filters .............................................................................................. 512
35.6.3 Applying Remote Node Filters ...............................................................................513
Chapter 36
SNMP Configuration.............................................................................................................515
36.1 SNMP Configuration ........................................................................................................515
36.2 SNMP Traps .................................................................................................................... 516
Chapter 37
System Information & Diagnosis.........................................................................................517
37.1 Introduction to System Status .......................................................................................... 517
37.2 System Status ..................................................................................................................517
37.3 System Information and Console Port Speed .................................... ... ........................... 519
37.3.1 System Information ................................................................................................ 519
37.3.2 Console Port Speed ............................................................................................... 520
37.4 Log and Trace ..................................................................................................................521
37.4.1 Viewing Error Log ...................................................................................................521
37.4.2 Syslog Logging .......................................................................................................522
37.4.3 Call-Triggering Packet ............................................................................................ 525
37.5 Diagnostic ........................................................................................................................526
37.5.1 WAN DHCP ............................................................................................................ 527
Chapter 38
Firmware and Configuration File Maintenance..................................................................529
38.1 Introduction ......................................................................................................................529
38.2 Filename Conventions .....................................................................................................529
38.3 Backup Configuration ......................................................................................................530
38.3.1 Backup Configuration ........................ ....................................... .............................. 530
38.3.2 Using the FTP Command from the Command Line ................. ... ... ... .... ... ... ... ... .... . 531
38.3.3 Example of FTP Commands from the Command Line .......................................... 531
38.3.4 GUI-based FTP Clients ..........................................................................................532
38.3.5 File Maintenance Over WAN ..................................................................................532
38.3.6 Backup Configuration Using TFTP ......................................................................... 532
38.3.7 TFTP Command Example ...................................................................................... 533
38.3.8 GUI-based TFTP Clients ........................................................................................ 533
38.3.9 Backup Via Console Port ....................................................................................... 533
38.4 Restore Configuration ...................................................................................................... 534
38.4.1 Restore Using FTP ................................................................................................. 535
38.4.2 Restore Using FTP Session Example .................................................................... 536
38.4.3 Restore Via Console Port .......................................................................................536
38.5 Uploading Firmware and Configuration Files .................................................................. 537
38.5.1 Firmware File Upload .............................. ............................................................... 537
38.5.2 Configuration File Upload .......................................................................................538
16
LAN-Cell 2 User’s Guide
Table of Contents
38.5.3 FTP File Upload Command from the DOS Prompt Example ................................. 539
38.5.4 FTP Session Example of Firmware File Upload .................................................... 539
38.5.5 TFTP File Upload ................................................................................................... 539
38.5.6 TFTP Upload Command Example ......................................................................... 540
38.5.7 Uploading Via Console Port ................................................................................... 540
38.5.8 Uploading Firmware File Via Console Port ............................................................ 540
38.5.9 Example Xmodem Firmware Upload Using HyperTerminal ..................... ... ...........541
38.5.10 Uploading Configuration File Via Console Port ............................................... .... . 5 41
38.5.11 Example Xmodem Configuration Upload Using HyperTerminal ........................... 5 42
Chapter 39
System Maint. Menus 8 to 10...............................................................................................543
39.1 Command Interpreter Mode ............................................................................................ 543
39.1.1 Command Syntax ...................................................................................................543
39.1.2 Command Usage ................................................................................................... 544
39.2 Call Control Support ........................................................................................................545
39.2.1 Budget Management .............................................................................................. 545
39.2.2 Call History .............................................................................................................546
39.3 Time and Date Setting .......................................................... ...........................................547
Chapter 40
Remote Management............................................................................................................551
40.1 Remote Management ...................................................................................................... 551
40.1.1 Remote Management Limitations .......................................................................... 553
Chapter 41
IP Policy Routing ..................................................................................................................555
41.1 IP Routing Policy Summary .............................................................................................555
41.2 IP Routing Policy Setup ...................................................................................................556
41.2.1 Applying Policy to Packets ..................................................................................... 558
41.3 IP Policy Routing Example ..............................................................................................559
Chapter 42
Call Scheduling.....................................................................................................................563
42.1 Introduction to Call Scheduling ........................................................................................ 563
Part VII: Troubleshooting and Specifications ................................... 567
Chapter 43
Troubleshooting....................................................................................................................569
43.1 Power, Hardware Connections, and LEDs .... ... .... ... ... ... .... ... ... ........................................ 569
LAN-Cell 2 User’s Guide
17
Table of Contents
43.2 LAN-Cell Access and Login ............................................................................................. 570
43.3 Internet Access ................................................................................................................572
Chapter 44
Product Specifications.........................................................................................................575
Part VIII: Appendices........................................................................... 581
Appendix A Pop-up Windows, JavaScripts and Java Permissions......................................583
Appendix B Setting up Your Computer’s IP Address............................................................589
Appendix C IP Addresses and Subnetting ...........................................................................605
Appendix D Common Services ............................................................................................613
Appendix E Wireless LANs ..................................................................................................617
Appendix F Brute-Force Password Guessing Protection.....................................................633
Appendix G Legal Information..............................................................................................635
Appendix H Customer Support.............................................................................................639
Index.......................................................................................................................................641
18
LAN-Cell 2 User’s Guide
About This User's Guide
About This User's Guide
Intended Audience
This manual is intended for people who want to configure the LAN-Cell 2 using the web
configurator or System Management Terminal (SMT). You should have at least a basic
knowledge of TCP/IP networking concepts and topology.
Related Documentation
• Quick Start Guide
The Quick Start Guide is designed to help you get up and running right away. It contains
information on setting up your network and configuring for Internet access.
• Web Configurator Online Help
Embedded web help for descriptions of individual screens and supplementary
information.
• Support Disk
Refer to the included CD for additional support documents.
• Proxicast Support Web Site
Please refer to support.proxicast.com
our Knowledgebase.
for additional support documentation and access to
LAN-Cell 2 User’s Guide
19
Document Conventions
Document Conventions
Warnings and Notes
These are how warnings and notes are shown in this User’s Guide.
1 Warnings tell you about things that could harm you or your device.
" Notes tell you other important information (for example, other things you may
need to configure or helpful tips) or recommendations.
Syntax Conventions
• The LAN-Cell 2 may be referred to as the “LAN-Cell”, the “device” or the “system” in
this User’s Guide.
• The LAN-Cell’s wired Ethernet WAN interface may be referred to as “WAN”, “Wired
WAN” or “WAN 1”.
• The LAN-Cell’s PC-Card modem 3G cellular interface may be referred to was “Cellular”,
“CELL”, or “WAN 2”
• Product labels, screen names, field labels and field choices are all in bold font.
• A key stroke is denoted by square brackets and uppercase text, for example, [ENTER]
means the “enter” or “return” key on your keyboard.
• “Enter” means for you to type one or more characters and then press the [ENTER] key.
“Select” or “choose” means for you to use one of the predefined choices.
• A right angle bracket ( > ) within a screen name denotes a mouse click. For example,
Maintenance > Log > Log Setting means you first click Maintenance in the navigation
panel, then the Log sub menu and finally the Log Setting tab to get to that screen.
• Units of measurement may denote the “metric” value or the “scientific” value. For
example, “k” for kilo may denote “1000” or “1024”, “M” for mega may denote “1000000”
or “1048576” and so on.
• “e.g.,” is a shorthand for “for instance”, and “i.e.,” means “that is” or “in other words”.
• The example screens shown in the User’s Guide may differ slightly from the actual
screens on the LAN-Cell, depending on the firmware version the LAN-Cell is running.
20
LAN-Cell 2 User’s Guide
Document Conventions
Icons Used in Figures
Figures in this User’s Guide may use the following generic icons. The LAN-Cell icon is not an
exact representation of your device.
LAN-Cell Computer Notebook computer
Server Wi-Fi Access Point Firewall
Telephone Switch Router
LAN-Cell 2 User’s Guide
21
Safety Warnings
Safety Warnings
1 For your safety, be sure to read and follow all warning notices and instructions.
• Do NOT use this product near water, for example, in a wet basement or near a swimming
pool.
• Do NOT expose your device to dampness, dust or corrosive liquids.
• Do NOT store things on the device.
• Do NOT install, use, or service this device during a thunderstorm. There is a remote risk
of electric shock from lightning.
• Connect ONLY suitable accessories to the device.
• Do NOT open the device or unit. Opening or removing covers can expose you to
dangerous high voltage points or other risks. ONLY qualified service personnel should
service or disassemble this device. Please contact your vendor for further information.
• Make sure to connect the cables to the correct ports.
• Place connecting cables carefully so that no one will step on them or stumble over them.
• Always disconnect all cables from this device before servicing or disassembling.
• Use ONLY an appropriate power adaptor or cord for your device.
• Connect the power adaptor or cord to the right supply voltage (for example, 110V AC in
North America or 230V AC in Europe).
• Not to remove the plug and plug into a wall outlet by itself; always attach the plug to the
power supply first before insert into the wall.
• Do NOT allow anything to rest on the power adaptor or cord and do NOT place the
product where anyone can walk on the power adaptor or cord.
• Do NOT use the device if the power adaptor or cord is damaged as it might cause
electrocution.
• If the power adaptor or cord is damaged, remove it from the power outlet.
• Do NOT attempt to repair the power adaptor or cord. Contact your local vendor to order a
new one.
• Do not use the device outside, and make sure all the connections are indoors. There is a
remote risk of electric shock from lightning.
• CAUTION: RISK OF EXPLOSION IF BATTERY (on the motherboard) IS REPLACED
BY AN INCORRECT TYPE. DISPOSE OF USED BATTERIES ACCORDING TO
THE INSTRUCTIONS. Dispose them at the applicable collection point for the recycling
of electrical and electronic equipment. For detailed information about recycling of this
product, please contact your local city offi ce, your household waste disposal service or the
store where you purchased the product.
• Do NOT obstruct the device ventilation slots, as insufficient airflow may harm your
device.
22
LAN-Cell 2 User’s Guide
Safety Warnings
• Antenna Warning! This device meets ETSI and FCC certification requirements when
using the included antenna(s).
• If you wall mount your device, make sure that no electrical lines, gas or water pipes will
be damaged.
This product is recyclable. Dispose of it properly.
LAN-Cell 2 User’s Guide
23
Safety Warnings
24
LAN-Cell 2 User’s Guide
PART I
Introduction
Getting to Know Your LAN-Cell 2 (27)
Introducing the Web Configurator & Home Screen (35)
Tutorials: 3G Modem Setup & VPN Wizard (53)
25
26
CHAPTER 1
Getting to Know Your LAN-Cell 2
This chapter introduces the main features and applications of the LAN-Cell 2.
1.1 LAN-Cell 2: 3G Cellular Router + VPN + Firewall Overview
The LAN-Cell 2 is Proxicast’s second generation of enterprise-grade secure cellular gateways.
This model features customer accessible and removeable “3G” PC-Card (PCMCIA) cellular
modems -- the same ones commonly used to provide high-speed 3G cellular connectivity to
laptops. The 3G PC-Card modem seamlessly becomes a WAN interface for the LAN-Cell’s
router and is fully integrated with all of the LAN-Cell’s security, performance, and
management capabilities.
As in earlier LAN-Cell models, the LAN-Cell 2 is loaded with security features including
VPN, firewall and X.509 PKI certificates. The LAN-Cell 2’s De-Militarized Zone (DMZ)
increases LAN security by providing separate ports for connecting publicly accessible servers.
The LAN-Cell provide the option to change port roles from LAN to DMZ.
The LAN-Cell 2 adds bandwidth management, NAT, port forwarding, policy routing, DHCP
server, Cell-Sentry
and demanding applications.
The LAN-Cell 2 also has a built-in Wi-Fi access point that allows IEEE 802.11a, IEEE
802.11b or IEEE 802.11g compatible clients to securely communicate with the LAN-Cell and
access the wired network or Internet. You can use the Wi-Fi access point as part of the LAN,
DMZ or WLAN.
The LAN-Cell 2’s all metal construction coupled with its unique Card-Lock
TM
Guard
secure, reliable and rugged cellular router is required.
See Chapter 44 on page 575 for a complete list of features.
systems make it the perfect choice for applications where a high-performance,
TM
data budgeting and many other powerful features required for complex
1.2 Ways to Manage the LAN-Cell
Use any of the following methods to manage the LAN-Cell.
• Web Configurator. This is recommended for everyday management of the LAN-Cell
using a (supported) web browser.
• SMT. System Management Terminal is a text-based configuration menu that you can use
to configure your device.
• FTP for firmware upgrades and configuration backup/restore.
TM
and Card-
LAN-Cell 2 User’s Guide
27
Chapter 1 Getting to Know Your LAN-Cell 2
• Command Line Interface. Line commands are mostly used for troubleshooting by service
engineers and also provide access to some of the LAN-Cell’s more advanced features.
• SNMP. The device can be monitored by an SNMP manager. See the SNMP chapter in this
User’s Guide.
1.3 Good Habits for Managing the LAN-Cell
Do the following things regularly to make the LAN-Cell more secure and to manage the LANCell more effectively.
• Change the password. Use a password that’s not easy to guess and that consists of
different types of characters, such as numbers and letters.
• Write down the password and put it in a safe place.
• Back up the configuration (and make sure you know how to restore it). Restoring an
earlier working configuration may be useful if the device becomes unstable or even
crashes. If you forget your password, you will have to reset the LAN-Cell to its factory
default settings. If you backed up an earlier configuration file, you would not have to
totally re-configure the LAN-Cell. You could simply restore your last configuration.
1.4 Applications for the LAN-Cell
Here are some examples of what you can do with your LAN-Cell.
1.4.1 3G WAN Applications
Insert a 3G PC-Card modem to have the LAN-Cell wirelessly access the Internet via a 3G
celluar network. Use this connection to provide Internet access to LAN devices such as PCs
and ATMs, or to provide access to remote equipment such as weather stations and security
systems. See Section 5.4 on page 114 for more information about 3G Cellular WAN support.
Figure 1 3G WAN Application
28
LAN-Cell 2 User’s Guide
Chapter 1 Getting to Know Your LAN-Cell 2
1.4.2 Redundant Secure Broadband Internet Access via Ethernet or Cellular
Connect the LAN-Cell’s Ethernet WAN port to your existing Internet access gateway
(company network, or your cable or DSL modem for example). Connect computers or servers
to the LAN, DMZ or WLAN ports for shared Internet access.
With both the primary WAN (physical WAN port) and 3G WAN connections enabled, you
can set one of the WAN connections as an automatic fail-over backup connection or use load
balancing to improve quality of service and maximize bandwidth utilization.
The LAN-Cell guarantees not only high speed Internet access, but secure internal network
protection and traffic management as well.
Figure 2 Redundant Internet Access via Ethernet or Cellular
1.4.3 VPN Application
The LAN-Cell’s built-in VPN feature is an ideal cost-ef fective way to securely connect branch
offices, business partners and telecommuters over the Internet without the need (and expense)
for leased lines between sites. You can make connections via the LAN-Cell’s cellular, wired
WAN, or dial-backup interfaces to ensure VPN connectivity regardles s of the communication
service available.
Figure 3 VPN Application
LAN-Cell 2 User’s Guide
29
Chapter 1 Getting to Know Your LAN-Cell 2
1.5 Front Panel Indicators
Figure 4 Front Panel
The following table describes the LAN-Cell’s front panel indicator lights.
Table 1 Front Panel Lights
LED COLOR STATUS DESCRIPTION
PWR Off The LAN-Cell is turned off.
Green On The LAN-Cell is ready and running.
Flashing Power-on Self Test is in progress. (approximately 60 sec)
Red On The power to the LAN-Cell is too low.
LAN/DMZ 1-4 Off The LAN/DMZ is not connected.
Green On The LAN-Cell has a successful 10Mbps Ethernet
Flashing The 10M LAN is sending or receiving packets.
Orange On The LAN-Cell has a successful 100Mbps Ethernet
Flashing The 100M LAN is sending or receiving packets.
WAN Off The WAN connection is not ready, or has failed.
Green On The LAN-Cell has a successful 10Mbps WAN connection.
Flashing The 10M WAN is sending or receiving packets.
Orange On The LAN-Cell has a successful 100Mbps WAN connection.
Flashing The 100M WAN is sending or receiving packets.
AUX Green Off The dial backup port is not connected to a remote server.
On The dial backup port is connected to a remote server.
Flashing The dial backup port is sending or receiving packets.
WLAN Green Off The wireless LAN is not ready, or has failed.
On The wireless LAN is ready.
Flashing The wireless LAN is sending or receiving packets.
CELL Off There is no 3G card inserted in the LAN-Cell.
Green Flashing 3G card is initializing OR is not registered on the carrier
On A 3G card ready to make a connection (dial).
Orange On The 3G WAN connection is established.
Flashing The 3G WAN is sending or receiving packets.
Green/
Orange
Flashing Cellular signal strength or quality is Poor. Connections may
connection.
connection.
network OR there is no compatible cellular service available.
be unreliable.
30
LAN-Cell 2 User’s Guide
Loading...