Verilink NetPath 2000 User Manual

NetPath

TM

2000

Reference Manual

September 2005
34-00343.A

i

FCC Requirements Verilink products have been assembled from tested components found to comply with the limits

for a Class A digital device, pursuant to Part 15 of the FCC Rules. These limits are designed to
provide reasonable protection against harmful interference when the equipment is operated in a
commercial environment. This equipment generates, uses, and can radiate radio frequency
energy and, if not installed and used in accordance with the reference manual, may cause harm­ful inte rference to radio c ommunicati ons. Opera tion of th is equipme nt in a res idential are a is
likely to cause ha rmful in terfe rence in which ca se the u ser will be requir ed to cor rect th e inter­ference at the user’s own expense.

Changes or modifications not expressly approved by Verilink could void the user’s authority to
operat e this equipm ent.

Safety P recauti ons When handling this equipment, follow these basic safety precautions to reduce the risk of elec-

tric shock and injury:

• Follow all warnings and instructions marked on the product and in the manual.

• Unplug the hardware from the wall outlet before cleaning. Do not use liquid cleaners or aerosol clean­ers. Use a slightly damp cloth for cleaning.

• Do not place this product on an unstable cart, stand, or table. It may fall, causing seri ous damage to
the product.

• Slots in the unit are provided for ventilation to protect it from overheating. These openings must not
be blocked or covered. Never place this product near a radiator or heat register.

• This product should be operated only from the type of power source indicated on the marking label
and manual. If you are unsure of the type of power supply you are using, consult your dealer or local
power company.

• Do not allow anything to rest on the power cord. Do not locate this product where the cord interferes
with the free movement of people.

• Do not overload wall outlets and extension cords, as this can result in fire or electric shock.

• Never push objects of any kind into the unit. They may touch dangerous voltage points or short out
parts that could result in fire or electric shock. Never spill liquid of any kind on this equipment.

• Unplug the equipment from the wall outlet and refer servicing to qualified service personnel under the
following conditions:

• When the power supply cord or plug is damaged or frayed.

• If liquid has been spilled into the product.

• If the product has been exposed to rain or water.

• If the product has been dropped or if the housing has been damaged.

Software License 1. General. The software, documentation and any fonts accompanying this License whether on

disk, in read only memory, on any other media or in any other form (collectively the “Soft­ware”) are licensed, not sold, to you by Verilink Corporation. (“Verilink”) for use only under the
terms of this License, and Verilink reserves all rights not expressly granted to you. The rights
granted herein are limited to Verilink’s intellectual property rights in the Verilink Software and
do not include any other patents or intellectual property rights. You own the media on which the
Verilink Software is recorded but Verilink and/or Verilink’s licensor(s) retain ownership of the
Softw are itse lf.

2. Permitted License Uses and Restrictions. This License allows you to use one (1) copy of the

Software on within the NetPath 2000 unit. This License does not allow the Software to exist on
more than one such device or computer at a time, and you may not make the Software available
over a network where it could be used by multiple devices or multiple computers at the same
time. Except as and only to the extent expressly permitted in this License or by applicable law,
you may not copy, decompile, reverse engineer, disassemble, attempt to derive the source code
of, modify, or create derivative works of the Software or any part thereof. Any attempt to do so
is a violation of the rights of Verilink and its licensors of the Software. If you breach this restric­tion, you may be subject to prosecution and damages. THE SOFTWARE IS NOT INTENDED
FOR USE IN WHICH THE FAILURE OF THE SOFTWARE COULD LEAD TO DEATH,
PERSONAL INJURY, OR SEVERE PHYSICAL OR ENVIRONMENTAL DAMAGE.

ii NetPath 2000

3. Transfer. You may not rent, lease, lend or sublicense the Software. You may, however, make a

one-time permanent transfer of all of your license rights to the Software to another party, pro­vided th at: (a) th e transf er must include al l of the S oftware , includ ing all it s compon ent part s,
original media, printed materials and this License; (b) you do not retain any copies of the Soft­ware, full or partial, including copies stored on a computer or other storage device; and (c) the
party re ceiving the Software reads and agrees to accept the terms and conditions of this Lic ense.

4. Termination. This License is effective until terminated. Your rights under this License will

termin ate au toma ticall y wi thout n otice from Verilink if y ou fa il to c omply with any term(s ) of
this License. Upon the termination of this License, you shall cease all use of the Verilink Soft­ware and destroy all copies, full o r partial, of the Verilink Software.

5. Disclaimer of Warranties. YOU EXPRESSLY ACKNOWLEDGE AND AGREE THAT USE

OF THE SOFTWARE IS AT YOUR SOLE RISK AND THAT THE ENTIRE RISK AS TO
SATISFACTORY QUALITY, PERFORMANCE, ACCURACY AND EFFORT IS WITH YOU.
EXCEPT FOR THE LIMITED WARRANTY AND TO THE MAXIMUM EXTENT PERMIT­TED BY APPLICABLE LAW, THE SOFTWARE IS PROVIDED “AS IS”, WITH ALL
FAULTS AND WITHOUT WARRANTY OF ANY KIND, AND DANGER AND DANGER’S
LICENSORS (COLLECTIVELY REFERRED TO AS “DANGER” FOR THE PURPOSES OF
SECTIONS 5 AND 6) HEREBY DISCLAIM ALL WARRANTIES AND CONDITIONS
WITH RESPECT TO THE SOFTWARE, EITHER EXPRESS, IMPLIED OR STATUTORY,
INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES AND/OR CONDI­TIONS OF MERCHANTABILITY, OF SATISFACTORY QUALITY, OF FITNESS FOR A
PARTICULAR PURPOSE, OF ACCURACY, OF QUIET ENJOYMENT, AND NONIN­FRINGEMENT OF THIRD PARTY RIGHTS. DANGER DOES NOT WARRANT AGAINST
INTERFERENCE WITH YOUR ENJOYMENT OF THE SOFTWARE, THAT THE FUNC­TIONS CONTAINED IN THE SOFTWARE WILL MEET YOUR REQUIREMENTS, THAT
THE OPERATION OF THE SOFTWARE WILL BE UNINTERRUPTED OR ERRORFREE,
OR THAT DEFECTS IN THE SOFTWARE WILL BE CORRECTED. NO ORAL OR WRIT­TEN INFORMATION OR ADVICE GIVEN BY DANGER SHALL CREA TE A WARRANTY.
SHOULD THE SOFTWARE PROVE DEFECTIVE, YOU ASSUME THE ENTIRE COST OF
ALL NECESSARY SERVICING, REPAIR OR CORRECTION. SOME JURISDICTIONS DO
NOT ALLOW THE EXCLUSION OF IMPLIED WARRANTIES OR LIMITATIONS ON
APPLICABLE STATUTORY RIGHTS OF A CONSUMER, SO THE ABOVE EXCLUSION
AND LIMITATIONS MAY NOT APPLY TO YOU.

6. Limitation of Liability. TO THE EXTENT NOT PROHIBITED BY LAW, IN NO EVENT-

SHALL DANGER BE LIABLE FOR PERSONAL INJURY, OR ANY INCIDENTAL, SPE­CIAL, INDIRECT OR CONSEQUENTIAL DAMAGES WHATSOEVER, INCLUDING,
WITHOUT LIMITATION, DAMAGES FOR LOSS OF PROFITS, LOSS OF DATA, BUSI­NESS INTERRUPTION OR ANY OTHER COMMERCIAL DAMAGES OR LOSSES, ARIS­ING OUT OF OR RELATED TO YOUR USE OR INABILITY TO USE THE SOFTWARE,
HOWEVER CAUSED, REGARDLESS OF THE THEORY OF LIABILITY (CONTRACT,
TORT OR OTHERWISE) AND EVEN IF DANGER HAS BEEN ADVISED OF THE POSSI­BILITY OF SUCH DAMAGES. SOME JURISDICTIONS DO NOT ALLOW THE LIMITA­TION OF LIABILITY FOR PERSONAL INJURY, OR OF INCIDENTAL OR
CONSEQUENTIAL DAMAGES, SO THIS LIMITATION MAY NOT APPLY TO YOU. In no
event s hall Verilin k’s total li ability to you for al l damages ( other tha n as may be r equired by
applicable law in cases involving personal injury) exceed the amount of fifty dollars ($50.00).
The foregoing limitations will apply even if the above stated remedy fails of its essential pur­pose.

7. Export Law Assurances. You may not use or otherwise export or reexport the Software except

as authorized by United States law and the laws of the jurisdiction in which the Software was
obtained. In particular, but without limitation, the Software may not be exported or re-exported
(a) into (or to a national or resident of) any U.S. embargoed countries (currently Cuba, Iran,
Iraq, Libya, North Korea, Sudan and Syria) or (b) to anyone on the U.S. Treasury Department’s
list of Specially Designated Nationals or the U.S. Department of Commerce Denied Person’s
List or Entity List. By using the Software, you represent and warrant that you are not located in,
under con trol of, or a national or resident of any such country o r on any such list.

8. Government End Users. The Software and related documentation are “Commercial Items”, as

that term is defined at 48 C.F.R. §2.101, consisting of “Commercial Computer Software” and

iii

“Commercial Computer Software Documentation”, as such terms are used in 48 C.F.R. §12.212
or 48 C.F.R. §227.7202, as applicable. Consistent with 48 C.F.R. §12.212 or 48 C.F.R.

§227.7202-1 through 227.7202-4, as applicable, the Commercial Computer Software and Com-

mercial Computer Softw are Documentation are being licensed to U.S. Government end users (a)
only as Commercial Items and (b) with only those rights as are granted to all other end users
pursuant to the terms and conditions herein. Unpubl ished-rights reserved under the copyright
laws of the United S tates.

9. Controlling Law and Severability and Choice of Forum. This License will be governed by

and construed in accordance with the laws of the State of Colorado, as applied to agreements
entered into and to be performed entirely within Colorado between Colorado residents, that is,
without giving any effect to the choice of laws provisions of the State of Colorado. This License
shall not be governed by the United Nations Convention on Contracts for the International Sale
of Goods, the application of which is expressly excluded. If for any reason a court of competent
jurisdiction finds any provision, or portion thereof, to be unenforceable, the remainder of this
License shall continue in full force and effect. You agree that the only courts in which you will
bring lawsuits concerning the application or enforcement of this License are courts of competent
jurisdiction located in the State of Colorado and you consent to the exercise of jurisdiction by
any such court. This paragraph shall survive in full force and effect regardless of any termina­tion of this License.

10. Third Party Notices and Conditions. The Software may include or utilize certain software

which is owned by the Open Source Foundation, the source code of which is available under the
GPL License (the “GPL”). Verilink may make modifications to this GPL Code. The license for
the GPL Code is included here as Exhibit A. Those terms are fully applicable to the use of those
portions of the Software that consist of or are derived from the GPL Code.

iv NetPath 2000

Table of Contents

Preface

About th i s Ma n u al ....... .. ... ......... .. ......... .. ......... .. ......... ... ......... .. .. ......... .. ......... ... ......... .. ..........................v

Manual Organization ........................................................................................................................v

Typographic Conventions ................................................................................................................v

Customer Service and Technica l Support ........... ............................ .................... .................... .............. vi

Support from Verilink ................. ........... .................... .................... .................... ............................ vi

Telephone ................................................................................................................................ vi

E-mail ...................................................................................................................................... vi

Intern et ..... ......... ......... ....... ......... ......... ......... ......... ....... ......... ......... ......... ....... ......... ................. vi

Returning a Unit to Verilink ................................................................................................................. vi

Chapter 1 About NetPath 2000

Introduction ......................................................................................................................................... 1-1

NetPath 2000 Backup Operation ........................................................................................................ 1-1

NetPa th 2 000 S ecure Pri m a ry W A N Op e r at i o n . .. ......... ... ......... .. ......... .. ......... .. ... ......... .. ......... .. .. 1-2

Front Panel ...................................................................................................................................1-3

Rear Pan el .. .. .. ......... ... ......... .. .. ......... .. ......... ... ......... .. ......... .. ......... .. ......... ... ......... .. .. .................... 1-4

NetPa th 2 000 I n t er faces .... ......... .. ......... ... ......... .. .. ......... .. ......... ... ......... .. ......... .. ......... .. ....... .. 1-4

Chapter 2 Installation

Unpacking and Inspection .................................................................................................................. 2-1

Supplied Materials ........ .................... ..................................... ........... .................... .............................. 2-1

Additional Requirements .................................................................................................................... 2-2

Unpac king ....... ...... ....... ..... ...... ....... ....... .... ....... ....... ....... ...... ..... ....... ...... ....... ..... ...... ..... ...................... 2-2

Connecting for Configur ation ....... .................... .................... ..................................... ......................... 2-2

Connecting to an External Router for Wireless Backup Operation ............. ........... .................... ........2-3

Chapter 3 Configuration

Web Ac cess Authentica ti o n .. ......... .. ......... ... .. ......... .. ......... .. ......... ... ......... .. ......... .. ......... .. ....... ........... 3-1

Status - O n l y Di s pl ay . .. ......... .. ......... .. ......... ... ......... .. ......... .. ......... .. ... ......... .. ......... .. ......... .. . ................. 3-2

Admin i st ration-L evel Stat u s an d Co n fi g u r at i o n Di s p la y .. .. ......... ... ......... .. ......... .. ......... .. ......... ... ...... 3-3

Modify C o n fi g u r at i o n ......... ......... .. ......... .. ......... .. ......... ... ......... .. .. ......... .. ......... ... ......... .. ............. 3-4

Wireless Network Interface ................................................................................................... 3-6

Router In t e rface .............. .. ......... .. ......... ... ......... .. .. ......... .. ......... ... ......... .. ......... .. ......... .. .. .......3-6

Local Management Interface ................................................................................................. 3-6

VPN .......................................................................................................................................3-7

v

Applying Configuration Changes ................................................................................................ 3-8

Code U p d at e ... ... ......... .. .. ......... .. ......... ... ......... .. ......... .. ......... .. ......... ... ......... .. .. ......... .. .................. 3-8

Restar t W i re l es s .... .. ... ......... .. ......... .. ......... .. ......... ... .. ......... .. ......... .. ......... ... ......... .. ...................... 3-9

Reset U n i t ... ......... .. ......... .. ......... ... ......... .. ......... .. .. ......... ... ......... .. ......... .. ......... .. ......... . ................. 3-9

Acces s Po i n t Names (APN s ) .................. .. ......... ... ......... .. .. ......... .. ......... ... ......... .. ......... .. ......... ......... 3-10

Appendix A Specifications

Routing .............................................................................................................................................. A-1

VPN ................................................................................................................................................... A-1

Management ...................................................................................................................................... A-1

Hardw a r e In t e rfaces ... ......... .. .. ......... ... ......... .. ......... .. ......... .. ......... ... ......... .. ......... .. .. ......... . ................ A-2

Wireless Network Interface ............................................................................................................... A-2

Power ................................................................................................................................................. A-2

Mecha nic al . ..... .... ..... .. .... ..... .... ... .... ..... .... .. ..... .... ..... .... ... .... ..... .... .. ..... .... ..... .. ..... .... ..... .. ..................... A-2

Enviro n mental . .. ......... .. ......... .. ... ......... .. ......... .. ......... .. ......... ... ......... .. ......... .. ......... .. ... ....................... A-2

Industry Listings ................................................................................................................................ A-2

vi NetPath 2000

About this Manual

This reference guide for the NetPath 2000 describes unit features and
specifications, configuration, and installation.

Manual Organization

The chapters and appendices in this manual are arranged for quick reference
when you need it.

• Chapter 1, "About NetPath 2000" – This chapter describes product fea tures

and capabilities.

• Chapter 2, "Installation" – This chapter describes unit port connections and

powering informatio n.

• Chapter 3, "Configuration" – This chapter describes the menu screens and

configuration parameters accessed through the Web server interface.

• Appendix A, "Specifications" − This appendix defines the specifications for

the NetPath 2000.

C

HAPTER

0

P

REFACE

Typog raphic Conv entions

The following table lists the graphic conventions used throughout this guide.

Convention Description

A Notice calls attentions to important feature s or in st ructions.

A Caution alerts you to s erious risk of data loss or other
results that may c aus e you or the unit trouble i f the warnin g is
not heeded.

A Warning alerts you to the risk of serious damage to the unit
or injury and possible death to the end user.

Preface vii

Customer Service and Technical Support

Verilink provides easy access to customer support through a variety of
services. Thi s section describes thes e services.

Support from Verilink

If you are unable to receive support from your service provider or want to
contact us directly, Verilink offers worldwide customer support by telephone,
e-mail, and through Verilink’s Internet Web site.

Telephone

Customer support is available by telephone 24 hours a day, 7 days a week. To
speak directly with a Verilink customer service representative, you may dial
one of the following numbers:

•Sales and Marketing: 800-VERILINK (837-4546)

•Technical Support: 800-285-2755 (toll-fre e)

1-256-32 7-2255 (int ernational)

E-mail

You can request sales and marketing information or pose a technical support
question about your Verilink product by contacting us at the e-mail addresses
provided below. Verilink will respond to e-mailed requests for support during
regular business hours (8–5 CST, Monday–Friday).

•Sales and Marketing: info@verilink.com

•Technical Support: support@verilink.com

Internet

Visit Verilink’s Web site to access the latest Verilink product information,
technical publications, news releases, contact information, and more:

If this reference manual is revised to reflect code changes or other updates,
the most recent version will be posted to the Verilink Web site.

Returning a Unit to Verilink

If for any reason you must return your Verilink product, it must be returned
with the shipping prepaid, and pac kaged to t he best commer cial stand ard for
electronic equipment. Verilink will pay shipping charges for delivery on
return. You are responsible for mode and cost of shipment to Verilink.

http://www.verilink.com

viii NetPath 2000

You must have a Return Material Authorization (RMA) number marked on
the shipping package. Products sent to Verilink without RMA numbers will be
returned to the sender unopened, at the sender’s expense.

A product sent directly to Verilink for repair must first be assigned an RMA
number. You may obtain an RMA number by calling Customer Service at
800-926-0085, extension 3002 (international number: 1-800-256-327-2255).

When calling Verilink for an RMA, please have the following information
available:

• Model number and serial number for each unit

• Reason for return and symptoms of problem

• Purchase order number to cover charge s for out-of-warranty items

• Name and phone number of per son we can conta ct i f we have quest ions about

the unit(s)

The address for you to use when returning a unit to Verilink will be provided
when the RMA is issued. The standard delivery method for return shipments
is Standard Ground for domestic returns and International Economy for
international returns (unless otherwise specified).

Preface ix

x NetPath 2000

Introduction

C HAPTER

1

C

HAPTER

1

A

BOUT

The NetPath 2000 enables a branch office to maintain network connectivity in
case of a disruption in service due to an outage of the main network
connection. The NetPath 2000 uses Cingular’s wireless data network as an
alternate path to route mission-critical information.

N

ETPATH

2000

NetPath 2000 Backup Operation

In a typica l custom er netwo rk (see F igure 1.1) , the br anch offices a re
connected to their headquarters using Cisco 17xx routers via a T1 frame relay
network s ervice to a central r outer lo cated at their hea dquarters. The Ne tPath
2000 and the Cingular wireless network provide a fail-over mechanism by
creating a backup connection in the event this main connection (T1 frame
relay network connection) has a disruption in service. The branch office router
connects to the NetPath 2000 via a cross-over Ethernet cable. Dynamic Host
Configuration Protocol (DHCP) address assignment may be configured on this
NetPath 2000 Ethernet port (branch router Ethernet interface).

About NetPath 2000 1-1

Branch Offices

Branch Offices

Branch Offices

Branch Offices

Branch Office

Branch Office

Router

Router

Branch Offices

Branch Offices

Branch Offices

Branch Offices

Branch O f fice

Branch O f fice

Router

Router

Figure 1.1

Fram e Re la y T1

Fram e Re la y T1

Typical Customer Network Configuration.

Wireless

Wireless

Carrier

Carrier

Network

Network

Corporate He ad quarter s

Corporate He ad quarter s

Corporate He ad quarter s

Corporate He ad quarter s

Back-end

Back-end

Fram e Re l ay

Fram e Re l ay

or

or

VPN co nnect i o n

VPN co nnect i o n

Fram e Relay T1

Fram e Relay T1

Frame Relay T1s

Carrier Frame

Carrier Frame

Relay Service

Relay Service

Frame Relay T1s

Servers

Servers

The simplest fail-over configuration uses a static secondary default or subnet
route in the branch office router via the NetPath 2000’s interface. When the
branch office router detects a failure of the primary default or headquarters
route over the T1 frame relay network, it switches its routing to the backup
Ethernet port and the NetPath 2000. The NetPath 2000 automatically connects
to the Cingular wireless network and routes traffic to the corporate
headquarters using the alternative wireless network.

When the main ne twork co nnection is restored , the bra nch offic e router fa lls
back to using only this Frame Relay Network and ceases sending traffic via
the NetPath 2000. The NetPath 2000 continuously monitors and maintains its
wireless connection via periodic keep-alive packets in the event it is required
to provide network connectivity. While the main network connection is
providing connectivity, the branch office router should not send any idle or
keep-alive WAN traffic to the NetPath 2000 to avoid creating unnecessary
wireless traffic, but it may ping the NetPath 2000 local interface.

NetPath 2000 Secure Primary W AN Operation

The NetPath 2000 offers a method for secure network connectivity (see Figure

1.2). It uses Cingular’s 3G wireless data network as the primary means to
route mission-critical information employing internal Virtual Private Network
(VPN) functionality to maintain end-to-end security.

In a typical customer network, the branch offices are connected to their
headquarters through the NetPath 2000 and the Cingular wireless network.
The Cingular wireless network assigns the NetPath 2000 a network IP address
via a Point-to-Point Protocol (PPP) connection. The NetPath 2000, using
Network Address Translation (NAT) and DHCP, provides private address

1-2 NetPath 2000

assignment to the branch off ice’s local network over its branch office router
Ethernet i nterface.

Figure 1.2

NetPath 2000’s Met hod for Secure Network Connectivit y

Front Panel

The NetPath 2000 front panel is shown in Figure 1.3.

Figure 1.3

NetPath 2000 Front Panel

Power Switch with Light

About NetPath 2000 1-3

Rear Panel

Wireless Card Inserte d into PCMCIA SLOT

The front panel’s power switch LED is illuminated with the unit is on.

The NetPath 2000 rear panel is shown in Figure 1.4.

Figure 1.4

Power Connect or

NetPath 2000 Rear Panel

Local
Mgmt Router

The NetPath 2000 rear panel has three interfaces described in detail below.

NetPath 2000 Interfaces

The NetPath 2000 has the following interfaces:

Local Management Ethernet Interface

This is a direct Ethernet connection for local management and configuration.
The default IP address is 192.168.100.1, and this address is configurable.
DHCP can be configured ON or OFF for this interface.

Branch Router Ethernet Interface

This is a connection to the branch office router. The default IP address is

192.168.1.1, and this address is configurable. DHCP can be configured ON or
OFF for this interfa ce.

PCMCIA Slot

This connection (slot) lets you use a PCMCIA wireless card.

1-4 NetPath 2000

This chapter describes the contents of your NetPath shipment and provides
information on connecting and installing the unit.

Unpacking and Inspection

The NetPath 2000is shipped in cardboard cartons with foam inserts for shock
and vibration protection. When your shipment arrives, inspect the shipping
container and contents, and compare all items with those on the packing list.

C HAPTER

2

C

HAPTER

2

I

NSTALLATION

If the contents of the shipment are incomplete or if there is mechanical
damage or defect, notify Verilink. (Refer to Support from Verilink on page vi. )
If the shipping container or cushioning material is damaged, notify the carrier
and Verilink immediately and make a notation on the delivery receipt that the
container was damaged. (If possible, obtain the signature and name of the
person making delivery.) Retain the packaging material until the contents of
the shipment have been checked for completeness and the unit has been
checked b oth mech anically and elect rically.

Supplied Materials

The NetPath 2000 ships with the following standard items:

• NetPath 2000

• External Power Supply

• AC Power Cord

• Cross-over CAT5 Ethernet Cable

The contents of the shipment are shown in Figure

Installation 2-1

Figure 2.1

Contact Verilink Technical Support (page vi) for assistance.

Shipment Contents

Additional Requirements

The NetPath 2000 has been designed to work with one of the following
wireless PCMCIA cards inserted:

• Novatel Merlin U520 UMTS

• Sony Ericsson GC83 EDGE

• Sierra Wireless AC775 EDGE

Unpacking

Remove the NetPath 2000 from the packing carton and place on a flat, stable
surface.

Remove the external power supply from the packing carton and plug the 4-pin
connector into the NetPath 2000 rear panel, making sure the flat portion of the
cable connector is facing the top of the unit.

Plug the AC cord into the external power supply.
Plug the AC cord into a standard AC wall outlet or power strip.
Look at the NetPath 2000 front panel. If the Power switch is not lit, press the

front panel Power switch once until lit.

Connecting for Configuration

2-2 NetPath 2000

To configure your NetPath 2000, connect one end of the crossover CAT5
cable (supplied) to the local management interface of the NetPath 2000.
Connect the other end of the CAT5 cable to a PC. The local management
Ethernet interface has a default IP address of 192.168.100.1, a subnet mask of

255.255.255.0, and comes DHCP enabled. Either enable DHCP under your
PC’s network settings, or configure your PC to an appropriate IP address such
as 192.168.100.2, subnet mask 255.255.255.0. For further information on
configuring your NetPath 2000, refer to Chapter 3, Configuration,.

Connecting to an External Router for Wireless Backup Oper ation

For wireless backup, connect a straight-through CAT5 cable from the branch
router Eth ernet inter face to t he bran ch office ro uter.

Installation 2-3

2-4 NetPath 2000

The NetPath 2000’s GUI is accessible from all three physical interfaces: the
local management Ethernet port, the branch router Ethernet port, or the
PCMCIA slo t with card inserted. (Re fer to NetPath 2000 Interfaces as
described on page 1-4 for more information on these interfaces.)

Web Acces s Authentica tion

C HAPTER

3

C

HAPTER

3

C

ONFIGURATION

Access your PC’s Web browser and type in the NetPath 2000’s IP address,

192.168.100.1, to view the screen shown in Figure 3.1.

Figure 3.1

NetPath 2000 Access Screen

Configuration 3-1

NOTICE: You may need to disable personal firewalls or security programs to

The NetPath 2000 permits two levels of access. The first provides a status­only display, and the second provides full status and configuration capability.

The default password for status-only access is “view.” This password is case­sensitive.

Status-Only Display

After you enter the password, a status screen similar to that shown in Figure

3.2 will appear.

access this screen.

Card Service

Link Status

Figure 3.2

The status display headings, a description of each, and parameters, where
appropriate, are listed below.

Automatically detects and displays the type of PCMCIA wireless network
card inserted and type of wireless network service operation.

Values: AC775GC82/U520

Displays the communication state of the inserted PCMCIA wireless network
card. “Down” indicates the card is searching to find the specific wireless
service. “Up” indicates the card and network are in service. “Restarting”
indicates the NetPath 2000 is attempting to recover from a communication
error with the card. “Unknown” indicates the NetPath 2000 cannot
communi cate with t he wirel ess netw ork card.

Values: Down, Up, Restarting, Unknown

Sample Status Screen

EDGE/UMTS

Signal Strength

Keep-Alive

Poll-Cnt

Poll-Err

3-2 NetPath 2000

Displays the RSSI in dBm’s if the Link Status indicates anything other than
UP. Locate the NetPath 2000 where a signal is available. When the Link
Status indicates UP, the Signal Strength will display N/A.

Values: Dbm or N/A

Displays the numbers of minutes between Keep-Alive transmissions.

Values: 1−60 min

Displays the number of polls.

Displays the number of polling errors.

Link-Recovery

Displays the number of times the PCMCIA card has lost connection and the
NetPath 2000 has had to reestablish connection to the wireless network.

Sys-Uptime

NAT

SNMP-Mgt

Interface

IP-address

Net-Mask

DHCP-Serving

Displays the time since reboot or power cycle. This is router operational time,
not wireless connection time.

NOTICE: Sys-Uptime indicates router operational time, not wireless connection

time.

Indicates w hether N AT is e nabled o n the Bran ch Rou ter inter face.

Values: ON, OFF

Indicates whether the NetPath 2000 can be configured and monitored from the
wireless network.

Values: ON, OFF

Lists the NetPath 2000 interfaces.

Values: Local-Mgt, Router, VPN, Wireless

Displays the IP ad dress of each interfac e.

Displays the net mask address of each interface.

Displays the current DHCP setting for the two Ethernet interfaces.

Values: ON, OFF, N/A

RX-OK

RX-ERR

RX-DRP

RX-OVR

TX-OK

TX-ERR

TX-DRP

TX-OVR

Displays t he numb er of recei ve pack ets with out errors.

Displays t he numb er of recei ve pack ets with errors.

Displays the num ber of receive packet s missing.

Displays the number of receive overruns.

Displays the number of transmit packets without errors.

Displays t he numb er of trans mit pa ckets wit h errors.

Displays the num ber of transmit packet s missing.

Displays the number of transmit overruns.

Administration-Level Status and Configuration Display

Configuration control is permitted only at the administration-access level. The
default administration password is “admin.” This password is case sensitive.

Configuration 3-3

After you enter the password, a screen similar to that shown in Figure 3.3 will
appear.

The configuration information contained in this chapter assumes the use of the
local management Ethernet port.

NOTICE: The configuration information shown in the menus below assumes the

use of the local management Ethernet port.

Figure 3.3

This screen is ident ical to the Status-On ly access screen excep t for the
configuration buttons at the bottom of the screen. These buttons let you
change the NetPath 2000’s configuration, software, and passwords. Each of
these buttons is described below.

Sample Adminis tr a tion-Level Sta tus and Configuration Screen

Modify Configuration

The “Modify Configuration” button displays the screen shown in Figure 3.4
and lets you change the NetPath 2000’s configuration.

3-4 NetPath 2000

Figure 3.4

Modify Configuration Scree n

Configuration 3-5

Wireless Network Interface

The wireless network inter face settings are described bel ow.

Keep Alive

APN Mode

Remote/Echo Address

Override

Login/Password/

Confirm Password

IP Address

Select OFF or ON for packet transmiss ions and select a range from 1−60
minutes. Suggested value is 14 minutes.

Four APNs are available: proxy, internet, public, and custom. Use “Custom”
to custom-name an APN. (For detailed APN information, please refer to
Access Point Names (APNs) as described on page 3-10).

Select OFF or ON. When ON, this feat ure overri des a remo te/echo address to
prevent illegal PPP termination addresses on the service provider’s network.
This may be required if the NetPath 2000 cannot communicate with the
network termination.

Values: OFF, ON

Not all networks require a user name and password. Your service provider
will provide these to you if necessary.

Router Interface

The branch router interface settings are described below.

Sets the IP address of the NetPath 2000’s Ethernet interface. The factory­default setting is 192.168.1.1.

Subnet Mask

DHCP Serving

Serve Range From

To

IP Address

Sets the address m ask that d elineates local s ubnet rang e. In mo st case s, the
factory-default range of 255.255.255.0 will suffice.

Enables D HCP. If enabled, the user must ent er an I P address range to be
served.

Values: OFF, ON

Sets the first address of the connected equipment served.

Sets the las t addres s of th e co nnected equi pmen t serv ed. W hen com bined w ith
“Serve Range From,” determines the number of addresses served.

Local Management Interface

Use this interf ace to connect a PC directly to the Net Path 2000 to configure and/
or check status. Settings are described below.

NOTICE: You will lose communication if the NetPath 2000’s IP addre ss is not

configured correctly or if the IP address is unknown.

Sets the IP address of the NetPath 2000’a Ethernet interface. The factory­default setting is 192.168.100.1.

3-6 NetPath 2000

Subnet Mask

Sets the address m ask that d elineates local s ubnet rang e. In mo st case s, the
factory-default range of 255.255.255.0 will suffice.

DHCP Serving

Serve Range From

To

Mode

Interface

Gateway

Enables D HCP. If enabled, the user must ent er an I P address range to be
served.

Values: OFF, ON

Sets the first address of the connected equipment served.

Sets the las t addres s of th e co nnected equi pmen t serv ed. W hen com bined w ith
“Serve Range From,” determines the number of addresses served.

VPN

The VPN settings are described below.

Enables VPN to initiate or respond automatically upon usage (Normal) or
force responder mode (Listen) or initiate a tunnel (Initiate).

Values: Disabled, Normal, Listen, Initiate

Selects which interface supports VPN tunneling. Set to Wireless, unless in
Test Mode.

Values: Wireless, Local -Mgt, Router

Sets Gateway address. Leave blank when using the wireless interface since, in
this case, the Gateway is provided through the PPP link.

Remote VP N Add re ss

Gateway

Remote LAN Subnet

Net-Mask

Local LAN Subnet

Local LAN Net-Mask

PFS Mode

Key Life

Sets the address of the remote VPN unit. This address must match the remote
VPN termination device.

Sets the IP address of the routable Gateway to the remote terminating VPN
device.

Sets the remote subnet address on the unencrypted remote side of the tunnel.

Sets the remote LAN net-mask to narrow the range of remote ne twork clients
contacted.

Sets the local subnet address on the unencrypted local LAN side of the tunnel.
This address must match the router interface address described above.

Sets the local LAN net-mask to narrow the range of local network clients
connected to the tunnel.

Enables o r disables the Per fect Forw ard Se crecy (PFS ) mode.

Values: OFF, ON

Sets the PFS Key Life update period in seconds. The default is 28800
seconds.

Configuration 3-7

New Shared Secret

(PSK)

Sets the shared secret password for authentication. This password is case
sensitive.

Confirm

SNMP Management

Name

Location

Contact

Community

NAT

Confirms the previously set shared-secret password. This character string is
case sens itive and must mat ch the previously set shar ed secret .

System

The system-level confi guration lets you modify the system-leve l networking
capabilitie s, inc luding remote management via SNMP and NAT between the
Ethernet and wireless por ts.

Enables SNMP.

Values: OFF, ON

Sets SNM P name .

Sets SN MP l oca tion .

Sets SNMP contact name.

Sets SNMP community delimiter.

Enables NAT between the wireless network interface and the branch router
and local management interfaces.

Values: OFF, ON

Applying Configuratio n Change s

The following buttons appear at the bottom of the Configuration screen.

Apply

Cancel

Restore Defaults

This button applies the configuration changes. You must apply the changes
before they will take effect. After selecting “Apply,” the changes are made
and the browser will revert to the Status Display screen.

This button cancels any configuration changes. After selecting “Cancel,” all
changes are canceled and the browser will show the Status Display screen.

This button will restore all configurable entries to the factory default settings.
Select “Apply” to complete this action.

Code Update

To update the NetPath 2000’s operating software, select the “Code Update
button. The NetPath 2000 will displa y the screen shown in Figure 3.5.

3-8 NetPath 2000

Figure 3.5

Type the file location or select the “Browse” button to find the location of the
file that contains the code update. Select your file and press “OK.”

Select “Install Code” to initiate the file transfer and update the code, or select
the “Cancel” button to cancel the update.

Code Update Screen

Restart Wireless

Select the “Restart Wireless” button to restart the PCMCIA wireless network
card. This immediately disconnects any existing wireless link, clears the card
services statistics, an d rest arts the wi reless card acqui sition pro cess.

Reset Unit

Select the “Reset Unit” button to display the screen shown in Figure 3.6.

Figure 3.6

Reset Confir mation Screen

Configuration 3-9

Select the “Proceed” button to reset the NetPath 2000 unit. The unit will
reboot. Select the “Cancel” button to abort the reset and return to the Display
Status scre en.

Access Point Names (APNs)

APNs are a mechanism for the wireless service provider to specify what IP
address options are available, how the wireless device links with external
networks, what fixed-end connections a re available, and any other services the
wireless device may permit. APNs are defined as part of a wireless carrier’s
subscriber account and are provisioned by the carrier. Some are general­purpose APNs such as public and proxy, while others are custom. All IP
addresses are dynamically assigned to the NetPath 2000 wireless interface
based on the APN type and capabilities as provisioned by the wireless service.

The NetPath 2000 offers four basic types of APN services: Proxy, Internet,
Public, and Custom. Each of these options is described in the table below.

APN Type IP Address Service Provider Network

Proxy Private Default APN. Network performs NAT.

Internet Public No NAT performed, nor required.

Public Public No NAT performed, nor required.

Custom Usually Public (Private

Available under special
circumstances.

Supports only mobile-originated IP­based communications to the Internet.
Does not allow communica tion with
customer-dedicat ed, fixed-end
connections. Note: there are other

options for mobil e-terminated
communications, includ ing Wireless
Application Prot ocol (WAP) push
mechanisms and Short Mess age Service.

Supports only mobile-originated, IP­based communications to the Internet.
Communication wit h customer­dedicated, fixed-end connections
permitted.

Supports only mobile-originated, IP­based communications to the Internet.
Does not allow communica tion with
customer-dedicat ed, fixed-end
connections.

Used with dedicated-customer, fixed­end connections. Provides routing and
securit y op tions. Enables mobile-
terminated appli cations if desired.

3-10 NetPath 2000

Routing

VPN

A PPENDIX

A

A

PPENDIX

A

S

PECIFICATIONS

• Routes IP packets betwee n wireless network card and branch router Ethernet

interface.

• DHCP server optional for all Ether net interfaces.

Management

• IPSEC tunnel mode

• VPN server or client, initiate, listen, or normal modes

• IKE auto-keying

• Main mode negotiation

• Pre-shared keys (PSK/sha red secrets)

• ESP 3DES encryption

• ESP HMAC-MD-5 or HMAC-SHA1 authentication

• PFS group 2/5

• Configurable sessi on keylife in seconds

• Web GUI

• Local management

• Ethernet port

• Optional remote management thr ough wireless network card

• Command line interface

• Local management

• Local management Ethernet interface − SSH an d SCP

• Optional remote management thr ough wireless network card − SSH and SCP

• SNMP monitoring

• RFC1213 MIB2

• SSH access

Specifications A-1

Hardware Interfaces

• Local management Ethernet interface − management interface: RJ-45

• Branch router Ethernet interface − branc h rou ter int er face : RJ- 45

• Serial port − DB-9, 9600/8/n/1

Wireless Network Interface

• Novatel Merlin U520 UMTS

• Sony Ericsson GC82/GC83 EDGE

• Sierra Wireless AC775 EDGE

Power

Voltage: 120 VAC
Frequency: 50−60 Hz
Dissipation: 60 W

Mechanical

Mounting: Standalone
Dimensions: Width 10.7 in. (??? cm)

Weight: ??? pounds (??? kg)

Height 2 in. (??? cm)
Depth 6.7 in. (??? cm)

Environmental

Indust r y L is t ings

Operating Temp: 32 to 1104 °F (0 to 40 °C)
Stor ag e Temp : − 13 to 140 °F (−25 to 60 ° C)
Humidity: 90 % maximum (non - condensing)

EMI: FCC Part 15, Class A

A-2 NetPath 2000