RayTalk RA-5n5 User manual
User’s Manual
RayTalk RA-5n5
V1.00
IlprodottoRA‐5n5èconforme atuttiirequisitiprevistidalle
direttiveR&TTE1999/5/EC
AVVERTENZASifapresentechel’usodell’apparatoinesameèregolamentatoda:
1)D.Lgs1.8.2003,n.259,articoli104(attivitàsoggetteadautorizzazionegenerale)e105(liberouso),
perusoprivato;
2)D.M.28.5.03esuccessivemodifiche,perlafornituraalpubblicodell’accessoR‐LANalleretieai
serviziditelecomunicazioni.
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
ii
Table of Contents
1Before You Start..........................................................................................................1
1.1 Preface..................................................................................................................................................1
1.2 Document Conventions..................................................................................................................1
1.3 Package Checklist.............................................................................................................................2
2System Overview and Getting Started..........................................................3
2.1 Introduction of RA-5n5 ..................................................................................................................3
2.2 System Concept................................................................................................................................3
2.3 Hardware Descriptions ...................................................................................................................5
2.4 System Requirement ......................................................................................................................9
2.5 Installation Steps .............................................................................................................................9
2.6 Access Web Management Interface ........................................................................................11
3Combine RA-5n5 to the Network....................................................................13
3.1 Network Requirement...................................................................................................................13
3.2 Configure WAN Port.......................................................................................................................13
3.2.1 Static IP......................................................................................................................................................14
3.2.2 Dynamic .....................................................................................................................................................14
3.2.3 PPPoE...........................................................................................................................................................14
3.3 Internet Connection Detection..................................................................................................16
3.4 WAN Bandwidth Control ..............................................................................................................17
3.5 What is Zone ....................................................................................................................................18
3.5.1 Port Role Assignment ............................................................................................................................19
3.5.2 Planning Your Internet Network........................................................................................................20
3.5.3 Configure Zone Network ......................................................................................................................21
4Let Your Network to Be a Wireless Network...........................................23
4.1 System Wireless General Settings...........................................................................................23
4.2 Zone Wireless Settings.................................................................................................................25
4.3 Zone Wireless Security.................................................................................................................28
5Who Can Access the Network...........................................................................30
5.1 Type of Users ...................................................................................................................................30
5.1.1 Local .....................................................................................................................................................31
5.1.2 RADIUS................................................................................................................................................34
5.1.3 On-Demand Users...........................................................................................................................36
5.2 User Login .........................................................................................................................................44
5.2.1 Default Authentication...................................................................................................................44
5.2.2 Login with Postfix ............................................................................................................................44
5.2.3 An Example of User Login ............................................................................................................45
6Restrain the Users...................................................................................................47
6.1 Black List ...........................................................................................................................................47
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
iii
6.2 MAC Address Control ....................................................................................................................49
6.3 Policy ...................................................................................................................................................50
6.3.1 Firewall ................................................................................................................................................52
6.3.2 Routing ................................................................................................................................................55
6.3.3 Schedule .............................................................................................................................................57
6.3.4 QoS Profile .........................................................................................................................................58
6.3.5 Session Limit .....................................................................................................................................59
7Access Network without Authentication....................................................60
7.1 DMZ .....................................................................................................................................................60
7.2 Virtual Server...................................................................................................................................61
7.3 Privilege List .....................................................................................................................................62
7.3.1 Privilege IP ................................................................................................................................................63
7.3.2 Privilege MAC............................................................................................................................................64
7.4 Disable Authentication in Public Zone ....................................................................................65
8User Login and Logout ..........................................................................................66
8.1 Before User Login...........................................................................................................................66
8.1.1 Login with SSL .........................................................................................................................................66
8.1.2 Internal Domain Name with Certificate..........................................................................................67
8.1.3 Walled Garden..........................................................................................................................................69
8.1.4 Walled Garden AD List ..........................................................................................................................70
8.2 After User Login ..............................................................................................................................71
8.2.1 Portal URL after successful login.......................................................................................................71
8.2.2 Idle Timer ..................................................................................................................................................72
8.2.3 Multiple Login ...........................................................................................................................................73
9Networking Features of a Gateway...............................................................74
9.1 IP Plug and Play ..............................................................................................................................74
9.2 Dynamic Domain Name Service (DDNS) ..............................................................................75
9.3 Port and IP Redirect ......................................................................................................................76
10 System Management and Utilities .................................................................77
10.1 System Time ................................................................................................................................77
10.2 Management IP...........................................................................................................................78
10.3 User Log Access IP Address...................................................................................................79
10.4 SNMP...............................................................................................................................................80
10.5 Three-Level Administration....................................................................................................81
10.6 Change Password.......................................................................................................................83
10.7 Backup / Restore and Reset to Factory .............................................................................85
10.8 Firmware Upgrade .....................................................................................................................86
10.9 Restart............................................................................................................................................87
10.10 Network Utility ............................................................................................................................88
10.10.1 Wake-on-LAN.......................................................................................................................................88
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
iv
10.10.2 Ping .........................................................................................................................................................88
10.10.3 Trace Route ..........................................................................................................................................89
10.10.4 Show ARP Table..................................................................................................................................89
10.11 Monitor IP Link............................................................................................................................90
10.12 Console Interface.......................................................................................................................91
11 System Status and Reports................................................................................94
11.1 View the Status ..........................................................................................................................94
11.1.1 System Status .......................................................................................................................................94
11.1.2 Interface Status....................................................................................................................................96
11.1.3 Routing Table .........................................................................................................................................98
11.1.4 Current Users.........................................................................................................................................99
11.1.5 User Log.................................................................................................................................................100
11.1.6 Local User Monthly Network...........................................................................................................102
11.2 Notification .................................................................................................................................103
11.2.1 E-Mail ......................................................................................................................................................104
11.2.2 SYSLOG ..................................................................................................................................................105
11.2.3 FTP ...........................................................................................................................................................106
11.2.4 Event Log ..............................................................................................................................................107
12 Advanced Applications........................................................................................108
12.1 Upload/Download Local Users Accounts .........................................................................108
12.2 RADIUS Advanced Settings..................................................................................................110
12.3 Roaming Out ..............................................................................................................................111
12.4 Customizable Pages ................................................................................................................112
Appendix A. Network Configuration on PC & User Login....................................114
Appendix B. Policy Priority....................................................................................................127
Appendix C. WDS Management ..........................................................................................128
Appendix D. RADIUS Accounting.......................................................................................129
Appendix E. On-demand Account types & Billing Plan.........................................138
Appendix F. External Payment Gateways....................................................................147
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
1
1Before You Start
1.1 Preface
This manual is for WLAN service providers or network administrators to set up a network environment
using the RA-5n5 system. It contains step-by-step procedures and graphic examples to guide MIS
staff or individuals with slight network system knowledge to complete the installation.
1.2 Document Conventions
Caution: Represents essential steps, actions, or messages that should not be ignored.
Note: Contains related information that corresponds to a topic.
Indicates that clicking this button will return to the homepage of this section.
Indicates that clicking this button will exit the system.
Indicates that clicking this button will apply all of your settings.
Indicates that clicking this button will clear what you have set before these settings
are applied.
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
2
1.3 Package Checklist
The standard package of RA-5n5 includes:
yRA-5n5 x 1
yCD-ROM (with User’s Manual and QIG) x 1
yQuick Installation Guide (QIG) x 1
yConsole Cable x 1
yEthernet Cable x 1
yPower Adapter (DC 12V) x 1
yRubber Antenna x 2
yMounting Kit x 1
yGround Cable x 1
Caution:
It is highly recommended to use all the supplies in the package instead of substituting any
components by other suppliers to guarantee best performance.
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
3
2System Overview and Getting Started
2.1 Introduction of RA-5n5
The RA-5n5 is the most economical and feature rich Wireless Hotspot Gateway, targeting
mini-size stores that want to provide small, single-point wireless Internet access service. RA-5n5 is a
perfect choice for beginners to run hotspot businesses. It does not cost much compared to buying a
pile of equipments, nor does it take the skills of an expert to glue multiple applications out of multiple
freeware. Feature-packed for hotspot operation, RA-5n5 comes with built-in 802.11 n/b/g MIMO
access point, web server and web pages for clients to login, easy logo-loading for branding
a hotspot store, simple user/visitor account management tool, payment plans, multiple
credit card gateways, traffic logs, IP sharing and etc. RA-5n5 also brings in an extra advantage
- the wall-mountable, dust-proof (IP50) metal housing.
2.2 System Concept
RA-5n5 is capable of managing user authentication, authorization and accounting. The user account
information is stored in the local database or a specified external RADIUS database server. Featured
with user authentication and integrated with external payment gateway, RA-5n5 allows users to easily
pay the fee and enjoy the Internet service using credit cards through a variety of payment gateways
including Authorize.Net, PayPal, SecurePay, and WorldPay. Furthermore, RA-5n5 introduces the
concept of Zones – Private Zone and Public Zone, each with its own definable access control profiles.
Private Zone means clients are not required to be authenticated before using the network service. On
the other hand, clients in Public Zone are required to get authentication before using the network
service. This is very useful for hotspot owners seeking to deploy wireless network service for clients
and manage the network as well. The following diagram is an example of RA-5n5 set to manage the
Internet and network access services at a hotspot venue.
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
【Example: A typical Hotspot network】
4
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
5
2.3 Hardware Descriptions
Front Panel
1 USB For future usage only.
2 WES Press to start running WES (WDS Easy Setup)
process.
3 Console Attach the RS-232 console cable here, for
management use only.
4 LAN1/LAN2 Attach Ethernet cables here for connecting to the
wired local network. LAN1 maps to Private Zone and
requires no user authentication, LAN2 maps to Public
Zone and by default requires user authentication.
5 WAN (PoE) Attach the wired external network here. This port
supports Power over Ethernet (PoE) for flexible
installation.
6 Reset This is hardware reset button. Press once to restart
the system.
7 Power Socket
(12VDC/1A)
For connecting to external power supply via the
power adapter.
Rear Panel
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
6
Antenna Connector Attach antennas here. RA-5n5 supports 1 RF
interface with 2 SMA connectors.
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
7
Top LED Panel
1 LED ON indicates power on; OFF indicates power off.
2 LED ON indicates WAN connection; OFF indicates no
connection; BLINKING indicates transmitting data.
3 LED ON indicates LAN1/LAN2 connection; OFF indicates no
connection; BLINKING indicates transmitting data.
4 LED ON indicates wireless ready.
5 LED ON indicates WAN port is connected to the internet.
6 For indicating WES status during WES setup:
Master Slave
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
WES Start LED BLINKING SLOWLY LED BLINKING QUICKLY
WES Negotiate LED BLINKING SLOWLY LED BLINKING QUICKLY
WES Fail (Negotiate
Timeout)
LED OFF LED OFF
WES Success LED ON for over 5 seconds
LED ON for over 5 seconds
(after Master displays WES
Success)
7 For future usage only.
8
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
9
2.4 System Requirement
yStandard 10/100BaseT including network cables with RJ-45 connectors
yAll PCs need to install the TCP/IP network protocol
2.5 Installation Steps
Please follow the steps below to install RA-5n5:
Please follow the steps mentioned below to install the hardware of RA-5n5:
1. Place the RA-5n5 at a best location.
The best location for RA-5n5 is usually at the center of your wireless network.
2. Connect RA-5n5 to your outbound network device.
Connect one end of the Ethernet cable to the WAN port of RA-5n5 on the front panel. Depending
on the type of internet service provided by your ISP, connect the other end of the cable to the
ATU-Router of an ADSL, a cable modem, a switch or a hub. The WAN LED indicator should be ON to
indicate a proper connection.
3. Connect RA-5n5 to your network device.
Connect one end of the Ethernet cable to the LAN1 port of RA-5n5 on the front panel. Connect the
other end of the cable to a PC for configuring the system. The LAN1 LED indicator should be ON to
indicate a proper connection.
Note:
RA-5n5 has two virtaul zones Private and Public which are mapped to
LAN1(192.168.1.254) and LAN2(192.168.11.254) respectively.
4. There are two ways to supply power over to RA-5n5.
(a) Connect the DC power adapter to the RA-5n5 power socket on the front panel.
(b) RA-5n5 is capable of transmitting DC current via its WAN PoE port. Connect an IEEE
802.3af-compliant PSE device, e.g. a PoE-switch, to the WAN port of RA-5n5 with the
Ethernet cable.
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
10
Now, the hardware installation is completed.
Caution:
Please only use the power adapter supplied with the RA-5n5 package. Using a different power adapter
may damage this system.
Caution:
To double verify the wired connection between RA-5n5 and your switch/router/hub, please check the
LED status indication of these network devices.
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
11
2.6 Access Web Management Interface
RA-5n5 supports Web Management Interface (WMI) configuration. Upon the completion of hardware
installation, RA-5n5 can be configured via web browsers with JavaScript enabled such as Internet
Explorer version 6.0 and above or Firefox.
Default LAN interface IP address:
LAN1 (192.168.1.254) is mapped to Private Zone with no authentication is required for users.
LAN2 (192.168.11.254) is mapped to Public Zone, by default authentication is required for users.
Note: The instructions below are illustrated with the administrator PC connected to LAN1.
To access the web management interface, connect a PC to the LAN Port, and then launch a browse.
Make sure you have set DHCP in TCP/IP of your PC to get an IP address dynamically. The
default gateway IP address is the default gateway IP address of Private Zone: “192.168.1.254”.
Next, enter the gateway IP address of RA-5n5 at the address field. The default gateway IP address
from LAN Port is“https://192.168.1.254” (“https” is used for a secured connection).
The administrator login page will appear. Enter “admin”, the default username, and “admin”, the
default password, in the User Name and Password fields. Click LOGIN to log in.
After a successful login, a “Home” page with four main buttons will appear on the screen.
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
For the first time, if RA-5n5 is not using a trusted SSL certificate, there will be a “Certificate
Error”, because the browser treats RA-5n5 as an illegal website. Please press “Continue to this
website” to continue.
Caution:
If you can’t get the login screen, the reasons may be: (1) The PC is set incorrectly so that the PC can’t
obtain the IP address automatically from the LAN port; (2) The IP address and the default gateway
are not under the same network segment. Please set your PC with a static IP address such as
192.168.1.xx in your network and then try it again. For the configuration on PC, please refer to
Appendix A. Network Configuration on PC.
12
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
13
3Combine RA-5n5 to the Network
3.1 Network Requirement
In the general network environment, the main role of RA-5n5 is a gateway that manages all the
network access from internal network to Internet. Thus, the first step is to prepare an Internet
connection from your ISP (Internet Service Provider) and connect it to the WAN port of RA-5n5.
3.2 Configure WAN Port
There are 3 connection types for the WAN Port: Static, Dynamic and PPPoE. These connection types
are enough to support most ISP.
Now, let us discuss how to configure WAN port. Go to: System >> WAN Configuration.
The parameters related to each connection method are described in the following page.
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
14
3.2.1 Static IP
Static: Manually specifying the IP address of the WAN Port. The fields with red asterisks are
mandatory.
zIP Address: The IP address of the WAN port.
zSubnet Mask: The subnet mask of the WAN port.
zDefault Gateway: The gateway of the WAN port.
zPreferred DNS Server: The primary DNS Server of the system.
zAlternate DNS Server: The substitute DNS Server of the system. This is an optional field.
3.2.2 Dynamic
Dynamic: It is only applicable for the network environment where the DHCP server is available
upstream of the system. Click the Renew button to get an IP address automatically.
3.2.3 PPPoE
PPPoE: When selecting PPPoE to connect to the network, please set the “User Name”, “Password”,
“MTU” and “Clamp MSS”. There is a Dial on demand function under PPPoE. If this function is
enabled, a Maximum Idle Time will be available for input a value. When the idle time is reached, the
system will automatically disconnect itself.
User’s Manual
RA-5n5 Wireless Hotspot Gateway ENGLISH
15
Table of contents
Other RayTalk Gateway manuals
