AirLive IAS-2000 V2 User Manual

IAS-2000 v2 Internet Access Gateway User’s Manual 1

IAS-2000 v2 User’s Manual . 3request for the access. In the meantime, IAS-2000 v2 will also continue blocking the user from accessing the network. If

IAS-2000 v2 User’s Manual . 93 ¾ Bandwidth: Choose one bandwidth limit for that particular policy.

IAS-2000 v2 User’s Manual . 94 ¾ Maximum Concurrent Sessions: The concurrent sessions for each user; it can be restricted by administrator. When a us

IAS-2000 v2 User’s Manual . 955.3.3 Black List Configuration The administrator can add, delete, or edit the black list for user access control. Each

IAS-2000 v2 User’s Manual . 96 If the administrator wants to remove a user from the black list, just select the user’s “Delete” check box and then

IAS-2000 v2 User’s Manual . 97 ¾ Import Black List: Click this to enter the Upload black List Account – (Blacklist1) page. Click the Browse button to

IAS-2000 v2 User’s Manual . 985.3.4 Guest User Configuration This function can permit guests to log into the system. Select “Enable Guest User” and c

IAS-2000 v2 User’s Manual . 995.3.5 Additional Configuration y User Control: Functions under this section applies for all general users. ¾ Idle T

IAS-2000 v2 User’s Manual . 100y Customize Login Pages 1. Certificate: The administrator can upload a new private key and a customer certificate. Cl

IAS-2000 v2 User’s Manual . 101 b. Choose Template Page to make a customized login page here. Click Select to pick up a color and then fill in all of

IAS-2000 v2 User’s Manual . 102c. Choose Uploaded Page and upload a login page. Click the Browse button to select the file to upload. Then click Submi

IAS-2000 v2 User’s Manual . 4

IAS-2000 v2 User’s Manual . 103 The user-defined login page must include the following HTML codes to provide the necessary fields for username and pas

IAS-2000 v2 User’s Manual . 104 d. Choose the External Page selection and get the login page from the specific website. Enter the website address in t

IAS-2000 v2 User’s Manual . 105 3. Logout Page: The users can apply their own logout page here. The process is similar to that of Login Page. T

IAS-2000 v2 User’s Manual . 1064. Login Success Page for On-Demand: The administrator can use the default login success page for On-Demand or get the

IAS-2000 v2 User’s Manual . 107 b. Choose Template Page to make a customized login success page for On-Demand here. Click Select to pick up a color an

IAS-2000 v2 User’s Manual . 108 c. Choose Uploaded Page and get the login success page for On-Demand by uploading. Click the Browse button to select t

IAS-2000 v2 User’s Manual . 109 After the image file is uploaded, the file name will show on the “Existing Image Files” field. Check the file and cli

IAS-2000 v2 User’s Manual . 110 b. Choose Template Page to make a customized login success page here. Click Select to pick up a color and then fill i

IAS-2000 v2 User’s Manual . 111 c. Choose Uploaded Page and get the login success page to upload. Click the Browse button to select the file for the l

IAS-2000 v2 User’s Manual . 112 After the image file is uploaded, the file name will show on the “Existing Image Files” field. Check the file and cli

IAS-2000 v2 User’s Manual . 5Chapter 3. Hardware Installation 3.1 Panel Function Descriptions Front Panel LED Color Status Description POWER G

IAS-2000 v2 User’s Manual . 113 6. Logout Success Page: The administrator can use the default logout success page or get the customized logout succes

IAS-2000 v2 User’s Manual . 114 c. Choose Uploaded Page and get the logout success page to upload. Click the Browse button to select the file for the

IAS-2000 v2 User’s Manual . 115 Then, enter or browse the filename of the images to upload in the Upload Images field on the Upload Images Files page

IAS-2000 v2 User’s Manual . 116 y Credit Reminder: The administrator can enable this function to remind the on-demand users before their credit run o

IAS-2000 v2 User’s Manual . 117 y Enhance User Authentication: With this function, only the users with their MAC addresses in this list can log into

IAS-2000 v2 User’s Manual . 1185.4 Utilities This section provides four utilities to customize and maintain the system including Change Password, Back

IAS-2000 v2 User’s Manual . 1195.4.1 Change Password The administrator can change passwords here. Please enter the required fields marked with red ast

IAS-2000 v2 User’s Manual . 1205.4.2 Backup/Restore Setting This function is used to backup/restore the IAS-2000 v2 settings. Also, IAS-2000 v2 can be

IAS-2000 v2 User’s Manual . 1215.4.3 Firmware Upgrade The administrator can download the latest firmware from the website and upgrade the system here.

IAS-2000 v2 User’s Manual . 1225.4.4 Restart This function allows the administrator to safely restart IAS-2000 v2 and the process should take about th

IAS-2000 v2 User’s Manual . 6Rear Panel System Fan: Keep the machine cool. Power Fan: Keep the power cool. Power Socket: The power cord attaches h

IAS-2000 v2 User’s Manual . 1235.5 Status This section includes System Status, Interface Status, Current Users, Traffic History, Notification Con

IAS-2000 v2 User’s Manual . 124 5.5.1 System Status This section provides an overview of the system for the administrator.

IAS-2000 v2 User’s Manual . 125 The description of the table is as follows: ItemDescriptionCurrent Firmware Version The present firmware version of IA

IAS-2000 v2 User’s Manual . 126Syslog Server Enabled / Disabled stands for the current setting to allow or disallow recording logs at syslog server. E

IAS-2000 v2 User’s Manual . 1275.5.2 Interface Status Provide an overview of the interface for the administrator including WAN1, WAN2, LAN1 and LAN2.

IAS-2000 v2 User’s Manual . 128The description of the table is as follows: ItemDescriptionMAC Address The MAC address of the WAN1 port. IP Address Th

IAS-2000 v2 User’s Manual . 1295.5.3 Current Users In this function, each online user’s information including Username, IP, MAC, Pkts In, Bytes In, Pk

IAS-2000 v2 User’s Manual . 1305.5.4 Traffic History This function is used to check the history of IAS-2000 v2. The history of each day will be saved

IAS-2000 v2 User’s Manual . 131 Caution: Since the history is saved in the DRAM, if you need to restart the system and also keep the history, then pl

IAS-2000 v2 User’s Manual . 132 If the History Email has been entered under the Notification Configuration page, then the system will automatically s

IAS-2000 v2 User’s Manual . 73.4 Installation Steps Please follow the following steps to install IAS-2000 v2: 1. Connect the power cord to the power

IAS-2000 v2 User’s Manual . 133y Roaming Out Traffic History As shown in the following figure, each line is a roaming out traffic history record cons

IAS-2000 v2 User’s Manual . 134y Internal Service As shown in the following figure, the history record consists of 6 fields, DHCP Server, Syslog Serv

IAS-2000 v2 User’s Manual . 1355.5.5 Notification Configuration IAS-2000 v2 will save the traffic history and session logs into the internal DRAM. If

IAS-2000 v2 User’s Manual . 136 Session Log for the Entire System: y Syslog Server: Enter the IP and Port of the Syslog server. y Send Log (to Em

IAS-2000 v2 User’s Manual . 137¾ Password: Specify FTP account password. ¾ FTP Setting Test: Click “Send Test Log” button to send a test report to F

IAS-2000 v2 User’s Manual . 1385.5.6 Online Report This function provides real time on-line report of the IAS-2000 v2 system including System Status,

IAS-2000 v2 User’s Manual . 139y Network Interface Status As shown in the following figure, the online report consists of 5 fields, Interface, Speed-

IAS-2000 v2 User’s Manual . 1405.6 Help On the screen, the Help button is on the upper right corner. Click Help to the Online Help window and then c

IAS-2000 v2 User’s Manual 141Appendix A. External Network Access If all the steps are set properly, IAS-2000 v2 can be further connected to the mana

IAS-2000 v2 User’s Manual . 1424. An on-demand user can enter the username and password in the “User Login Page” and click Remaining button to know t

IAS-2000 v2 User’s Manual . 84. Connect an Ethernet cable to one LAN port with the user authentication function disabled on the front panel. The defa

IAS-2000 v2 User’s Manual . 143Appendix B. Console Interface Configuration Via this port to enter the console interface for the administrator to han

IAS-2000 v2 User’s Manual . 144y Utilities for network debugging The console interface provides several utilities to assist the Administrator to chec

IAS-2000 v2 User’s Manual . 145¾ Print the kernel ring buffer: It is used to examine or control the kernel ring buffer. The program helps users to pr

IAS-2000 v2 User’s Manual . 146Appendix C. Specifications a. Hardware Specification y Dimensions: 42.6cm(W) x 4.4cm(H) x 27cm(D) y Weight: 6kg y

IAS-2000 v2 User’s Manual . 147y User Management Supports at least 500 on-line users concurrently Supports Local, POP3 (+SSL), RADIUS, and LDAP LAN

IAS-2000 v2 User’s Manual . 148Appendix D. Proxy Setting for Hotspot HotSpot is a place such as a coffee shop, hotel, or a public area where provide

IAS-2000 v2 User’s Manual . 149 3. Click the Proxy Server Properties from left menu and the homepage of the Proxy Server Properties will appear. 4.

IAS-2000 v2 User’s Manual . 1505. Enable Built-in Proxy Server in Internal Proxy Server Setting. 6. Click Apply to save the settings.

IAS-2000 v2 User’s Manual . 151Appendix E. Proxy Setting for Enterprise Enterprises usually isolate their intranet and internet by using more elabor

IAS-2000 v2 User’s Manual . 152 Gateway setting 1. Login Gateway by using “admin”. 2. Click the Network Configuration from top menu and the homepag

IAS-2000 v2 User’s Manual . 9Chapter 4. Network Configuration on PC After IAS-2000 v2 is installed, the following configurations must be set up on t

IAS-2000 v2 User’s Manual . 153 3. Click the Proxy Server Properties from left menu and the homepage of the Proxy Server Properties will appear. 4.

IAS-2000 v2 User’s Manual . 1545. Disable Built-in Proxy Server in Internal Proxy Server Setting. 6. Click Apply to save the settings. Warning：I

IAS-2000 v2 User’s Manual . 155 Client setting It is necessary for clients to add default gateway IP address into proxy exception information so the

IAS-2000 v2 User’s Manual . 156z For Firefox

IAS-2000 v2 User’s Manual . 103. Click Next when Welcome to the New Connection Wizard screen appears. 4. Choose “Connect to the Internet” a

IAS-2000 v2 User’s Manual . 116. Choose “Connect using a broadband connection that is always on” and then click Next. 7. Finally, click Fi

IAS-2000 v2 User’s Manual . 124.2. TCP/IP Network Setup If the operating system of the PC in use is Windows 95/98/ME/2000/XP, keep the default setting

ClauseDescription EN 55022:1998 Limits and methods of measurement of radio disturbancecharacteristics of information technology equipmen EN 61000-3-

IAS-2000 v2 User’s Manual . 13 3. Select “General” label and choose “Internet Protocol (TCP/IP)” and then click Properties. Now, choose to use DHCP or

IAS-2000 v2 User’s Manual . 14 y Please choose “Use the following IP address:” and enter the information given from the network administrator in “IP a

IAS-2000 v2 User’s Manual . 15 y Choose the “IP Settings” label and click “Add” below the “Default gateways” column and the “TCP/IP Gateway Address” w

IAS-2000 v2 User’s Manual . 16Chapter 5. Web Interface Configuration This chapter will present further detailed settings. The following table shows

IAS-2000 v2 User’s Manual . 17 Caution: If you can’t get the login page, you may have incorrectly set your PC to obtain an IP address automatically f

IAS-2000 v2 User’s Manual . 185.1 System Configuration This section includes the following functions: Configuration Wizard, System Information, WAN1 C

IAS-2000 v2 User’s Manual . 195.1.1 Configuration Wizard (Also served as Quick Installation) There are two ways to configure the system: using Config

IAS-2000 v2 User’s Manual . 20Then, click on Configuration Wizard and click the Run Wizard button to start the wizard. y Running the Wizard A wel

IAS-2000 v2 User’s Manual . 21 y Step 2: Choose System’s Time Zone Select a proper time zone via the pull-down menu. Click Next to continue.

IAS-2000 v2 User’s Manual . 22 ¾ Static IP Address: Set WAN1 Port’s Static IP Address Enter the “IP Address”, “Subnet Mask” and “Default Gateway” pro

AirLive IAS-2000 v2 CE Declaration Statement Country Declaration Country Declaration cs Česky [Czech] OvisLink Corp. tímto prohlašuje, že tento AirL

IAS-2000 v2 User’s Manual . 23 y Step 5: Set LAN1 DHCP Server If Enable DHCP Server option is selected, fields marked with red asterisk must be fille

IAS-2000 v2 User’s Manual . 24 ¾ Local User- Add User A new user can be added to the local user data base. To add a user here, enter the Username (e.

IAS-2000 v2 User’s Manual . 25 ¾ LDAP User- Authentication Method-LDAP Add a new user to the LDAP user data base. Enter the “LDAP Server”, “Server P

IAS-2000 v2 User’s Manual . 26 If Windows AD binding type is selected, please enter the domain name of Windows AD to access the LDAP server. Click Ne

IAS-2000 v2 User’s Manual . 27y During IAS-2000 v2 restart, a “Restarting now. Wait for a minute.” message will appear on the screen. Please do not i

IAS-2000 v2 User’s Manual . 285.1.2 System Information These are some main information about IAS-2000 v2. Please refer to the following description

IAS-2000 v2 User’s Manual . 29y System Time: IAS-2000 v2 supports NTP communication protocol to synchronize the network time. Please specify the IP a

IAS-2000 v2 User’s Manual . 305.1.3 WAN1 Configuration There are 3 methods that WAN1 Port supports: Static IP Address, Dynamic IP Address, and PPPoE C

IAS-2000 v2 User’s Manual . 31 y Dynamic IP address: It is only applicable for the network environment where the DHCP Server is available in

IAS-2000 v2 User’s Manual . 32y PPPoE Client: When selecting PPPoE to connect to the network, please enter the “Username” and “Password”. There is a

This device uses software which is partly or completely licensed under the terms of the GNU General Public License. The author of the software does no

IAS-2000 v2 User’s Manual . 335.1.4 WAN2 & Failover There are 3 methods of obtaining an IP address for the WAN2 Port: None, Static IP Address, and

IAS-2000 v2 User’s Manual . 34 y Dynamic IP Address: Select this when WAN2 Port can obtain IP address automatically, such as a DHCP Server available

IAS-2000 v2 User’s Manual . 35 For Dynamic IP Address, WAN Failover and Fallback to WAN1 when possible also can be enabled like as the function for St

IAS-2000 v2 User’s Manual . 365.1.5 LAN1 Configuration User authentication can be chosen to enable or disable in LAN1 port. In this part, you can set

IAS-2000 v2 User’s Manual . 37y DHCP Server Configuration ¾ Disable DHCP Server: Disable the function of the DHCP Server. ¾ Enable DHCP Server:

IAS-2000 v2 User’s Manual . 38  Reserved IP Address List: Click on the Reserved IP Address List on the management interface to fill in the reserved

IAS-2000 v2 User’s Manual . 39 y Enable VLAN: If you want to split LAN1 to several VLANs, please select the Enable VLAN. After Enable VLAN is selecte

IAS-2000 v2 User’s Manual . 40y Enable User Authentication (on this individual VLAN): ¾ Enable: Enable this VLAN segment. ¾ Enable User Authen

IAS-2000 v2 User’s Manual . 41y VLAN DHCP Configuration ¾ Disable DHCP Server: Disable the function of the DHCP Server of IAS-2000 v2. ¾ Enabl

IAS-2000 v2 User’s Manual . 42  Reserved IP Address List: If you want to use the reserved IP address function, click on the Reserved IP Address List

IAS-2000 v2 User’s Manual . 1Copyright The contents of this publication may not be reproduced in any part or as a whole, stored, transcribed in an inf

IAS-2000 v2 User’s Manual . 435.1.6 LAN2 Configuration User authentication can be chosen to enable or disable in LAN2 port. In this part, you can set

IAS-2000 v2 User’s Manual . 44y DHCP Server Configuration ¾ Disable DHCP Server: Disable the function of the DHCP Server. ¾ Enable DHCP Server: E

IAS-2000 v2 User’s Manual . 45  Reserved IP Address List: Click on the Reserved IP Address List on the management interface to fill in the reserved

IAS-2000 v2 User’s Manual . 46y Enable VLAN: If you want to split LAN2 to several VLANs, please select the Enable VLAN. After Enable VLAN is selected

IAS-2000 v2 User’s Manual . 47¾ Enable: Enable this VLAN segment. ¾ Enable User Authentication: Choose to enable or disable user authentication for

IAS-2000 v2 User’s Manual . 48  Reserved IP Address List: If you want to use the reserved IP address function, click on the Reserved IP Address List

IAS-2000 v2 User’s Manual . 495.2 Network Configuration This section includes the following functions: Network Address Translation, Privilege List,

IAS-2000 v2 User’s Manual . 505.2.1 Network Address Translation There are three parts, DMZ, Virtual Servers and Port and IP Redirect, need to be set.

IAS-2000 v2 User’s Manual . 51y Virtual Servers This function allows the administrator to set 40 virtual servers at most, so that the computers not b

IAS-2000 v2 User’s Manual . 52

IAS-2000 v2 User’s Manual . iContents Chapter 1. Before You Start ...

IAS-2000 v2 User’s Manual . 535.2.2 Privilege List There are two parts, Privilege IP Address List and Privilege MAC Address List, need to be set. y

IAS-2000 v2 User’s Manual . 54y Privilege MAC Address List In addition to the IP address, the MAC address of the workstations that need to access the

IAS-2000 v2 User’s Manual . 55 ¾ Import List: Select an Access Gateway and then click Import List to enter the Upload Privilege MAC Address List inte

IAS-2000 v2 User’s Manual . 565.2.3 Monitor IP List The system will send out a packet periodically to monitor the connection status of the IP address

IAS-2000 v2 User’s Manual . 57 y Auth Method: The system provides four authentication methods, PLAIN, LOGIN, CRAM-MD5 and NTLMv1, or “NONE” to use no

IAS-2000 v2 User’s Manual . 585.2.4 Walled Garden List This function provides some free services to the users to access websites listed here before l

IAS-2000 v2 User’s Manual . 595.2.5 Proxy Server Properties IAS-2000 v2 supports Internal Proxy Server and External Proxy Server functions. Please per

IAS-2000 v2 User’s Manual . 605.2.6 Dynamic DNS IAS-2000 v2 provides a convenient DNS function to translate the IP address of WAN port to a domain nam

IAS-2000 v2 User’s Manual . 615.2.7 IP Mobility y IP PNP Clients can use any IP address to connect to the system. Regardless of what the IP addres

IAS-2000 v2 User’s Manual . 625.3 User Authentication This section includes the following functions: Authentication Configuration, Policy Configurati

IAS-2000 v2 User’s Manual . ii5.3.2 Policy Configuration...

IAS-2000 v2 User’s Manual . 635.3.1 Authentication Configuration This function is to configure the settings for different authentication servers. The

IAS-2000 v2 User’s Manual . 645.3.1.1 Local Server This server is only for “Local User” and the authentication method can not be changed for this serv

IAS-2000 v2 User’s Manual . 65Click the Local User Setting hyperlink for further configuration. y Edit Local User List: Click this to enter the “L

IAS-2000 v2 User’s Manual . 66Click Apply to complete adding the user or users ¾ Import User: Click this to enter the Upload User Account page. C

IAS-2000 v2 User’s Manual . 67 The uploading file should be a text file and the format of each line is "ID, Password, MAC, Policy, Remark" o

IAS-2000 v2 User’s Manual . 68¾ Export List: Click this to create a .txt file and then save it on disk. ¾ Refresh: Click this to refresh the list

IAS-2000 v2 User’s Manual . 69 ¾ Search: Enter a keyword of a username to be searched in the text filed and click this button to perform the search.

IAS-2000 v2 User’s Manual . 70 y Radius Roaming Out / 802.1x Authentication: These 2 functions can be enabled or disabled by checking the radio butto

IAS-2000 v2 User’s Manual . 715.3.1.2 POP3 Server POP3, RADIUS, LDAP and NT Domain Server can be chosen to be the authentication method. Choose “POP3”

IAS-2000 v2 User’s Manual . 72 Click the hyperlink of POP3 Setting for further configuration. Enter the related information for the primary server and

IAS-2000 v2 User’s Manual . 1Chapter 1. Before You Start 1.1 Audience This manual is for Hotspot owners or administrators in enterprises to set up n

IAS-2000 v2 User’s Manual . 735.3.1.3 Radius Server Choose “Radius” in the Authentication Method field, the hyperlink beside the pull-down menu will b

IAS-2000 v2 User’s Manual . 74Click the hyperlink of RADIUS Setting for further configuration. The Radius server sets the external authentication for

IAS-2000 v2 User’s Manual . 755.3.1.4 LDAP Server Choose “LDAP” in the Authentication Method field, the hyperlink beside the pull-down menu will becom

IAS-2000 v2 User’s Manual . 76 Click the hyperlink of LDAP Setting for further configuration. Enter the related information for the primary server and

IAS-2000 v2 User’s Manual . 77 ¾ Anonymous: Access the LDAP servers without requiring authentication but only select one Account Attribute (UID, CN o

IAS-2000 v2 User’s Manual . 785.3.1.5 NT Domain Server Choose “NTDomain” in the Authentication Method field, the hyperlink beside the pull-down menu

IAS-2000 v2 User’s Manual . 795.3.1.6 On Demand User This is for the customer’s need in a store environment. When the customers need to use wireless

IAS-2000 v2 User’s Manual . 80y Users List: Click to enter the On-demand User List screen. In the On-demand User List, detailed information will be d

IAS-2000 v2 User’s Manual . 81 y Billing Configuration: Click this to enter the Billing Configuration screen. In the Billing Configuration page, Admi

IAS-2000 v2 User’s Manual . 82y Create On-demand User: Click this to enter the On-demand User Generate page. ¾ Pressing the Create button for the

IAS-2000 v2 User’s Manual . 2Chapter 2. Overview 2.1 Introduction of IAS-2000 v2 IAS-2000 v2 is a Network Access Control System specially designed

IAS-2000 v2 User’s Manual . 835.3.1.7 PMS User The system integrates a hotel in-door billing system, PMS, developed by Micros Fidelio, and it is usual

IAS-2000 v2 User’s Manual . 84 ¾ Search: Enter a keyword of a username to be searched in the text filed and click this button to perform the search

IAS-2000 v2 User’s Manual . 85¾ Status: Select to enable or disable this billing plan. ¾ Hr. Purchased: This is the duration of time that the user p

IAS-2000 v2 User’s Manual . 86 By default, the PMS user database is empty. After entering “Room Number” and “Maximum User” then pressing Create button

IAS-2000 v2 User’s Manual . 875.3.2 Policy Configuration There are ten policies that IAS-2000 v2 supports and a Global policy. Every Policy has three

IAS-2000 v2 User’s Manual . 88  Rule Item: This is the rule selected.  Rule Name: The rule name can be changed here.  Enable this Rule: After c

IAS-2000 v2 User’s Manual . 89 ¾ Specific Route Profile: Click the hyperlink of Setting for Specific Route Profile, the Specific Route Profile page w

IAS-2000 v2 User’s Manual . 90 ¾ Maximum Concurrent Sessions: The concurrent sessions for each user; it can be restricted by administrator. When a us

IAS-2000 v2 User’s Manual . 91  Rule Item: This is the rule selected.  Rule Name: The rule name can be changed here.  Enable this Rule: Afte

IAS-2000 v2 User’s Manual . 92 Source/Destination Interface: There are five interfaces to choose, ALL, WAN1, WAN2, LAN1 and LAN2.  Source/Destinat