Controller Management

Controller Management - Setup & Provisioning - 1

PRONTO SERVICE CONTROLLER (PN-CPP-A-1422) 2

PSC Key Features Fully interoperable with IEEE802.11b/g compliant products External AP support and management SSID/VLAN based Customization Enhanced authentication and security Remote management via SOAP/HTTPS, CLI (Telnet), SNMP and Alert notification Roaming with ipass, GRIC and Boingo PSC Front View Easy to configure or manage the device remotely 3

PSC Key Features Multiple SSID support Inter-WISP roaming Zero Configuration and Auto Authentication for clients with URL preservation PSC Back View 4

CONTROLLER TEMPLATE 5

Controller Template What is Controller Template? Macros used for repetitive controller setup What are its benefits? Simplifies the task of Controller Setup Saves setup time What are its features? Describes the method to define templates Create and store as many templates as possible with different parameter combinations Only NOC level access is permitted 6

How to Create a Controller Template? Select Setup & Customization > Controller Template Click Add Template to view the Controller Basic Configuration window 7

Controller Basic Configuration Enter relevant values in the Controller Basic Configuration window AC Types are of the following types: 3AP-Silver PSC PSG Click Next to view the PHC Configuration window 8

PSC Configuration Provide the details for the controller configuration MAX Concurrent Users Allowed: The maximum number of concurrent user connections permitted on a controller at any given time. Click Next to view the Configuration of the Radius Client window 9

Configuration of the Radius Client Configuration of RADIUS Client helps the Client at the location to communicate to Pronto s RADIUS Server It authenticates the end users It accounts their usage by transmitting the user session details to the OSS This option is not currently applicable to PSC/PSG This is not a mandatory step, Click No to view WEP Key Encryption Configuration window 10

WEP Key Encryption Configuration Wired Equivalent Privacy (WEP) is a symmetric encryption mechanism It uses the same key to encrypt and decrypt data Access is denied to those who do not have the secret key Prevents the decoding of any captured network traffic without the secret key This option is not applicable to Pronto Service Gateway (PSG) This is not a mandatory step. Click No to view the AP Wireless LAN parameters Configuration window 11

AP Wireless LAN parameters Configuration AP Wireless LAN parameters sets the data transfer rate Not applicable to Pronto Service Gateway(PSG) Not mandatory. Click No during setup to view Define Network Interfaces window 12

Defining Network Interfaces At least one, each of the LAN, WAN and WLAN interfaces has to be added The Interface Type and associated Interface ID are shown below Interface Type LAN WAN WLAN Interface ID ETH1 ETH0 WLAN0 & WLAN1 Enter relevant values Click Add to List Click Next to view Define SSID window 13

Defining Network Interfaces - For LAN Set Interface Type to lan and Interface ID to eth1 Click Add to List Click on Modify Network Parameter to set Network parameters for the selected eth1 Interface ID 14

Defining Network Interfaces - For LAN Add the Interface IP Details for LAN & click Apply Click Next to view Define SSID window 15

Defining Network Interfaces - For WAN Set Interface Type to wan and Interface ID to eth0 Click Add to List Click on Modify Network Parameter to set Network parameters for the selected eth0 Interface ID 16

Defining Network Interfaces - For WAN Modify the network parameter interface as described in the fields below 1. Define Internet Connections 2. WAN Speed Parameters 3. WAN HTTP Proxy 4. Auto Detect Internet Connection Parameters 17

1. Define Internet Connections Choose the Internet connection type: Select the type of connection available at the hotspot from the following options: DHCP, Static IP, PPPoE or PPTP User Id & Password: If PPPoE or PPTP type of Internet connectivity is chosen then a User Id and Password has to be specified Primary WAN Interface: Check this box to define this as the primary WAN interface. If any other WAN interfaces are defined, then they will be considered as secondary WAN interfaces. (Generally the WAN interface with ETH0 ID is considered as the primary interface) Enable Interface: Mark this box to enable/disable this interface 18

Defining Network Interfaces - For WAN Choose any one of the 3 Internet Connections Available: a. DHCP: Broadband Connection, b. PPPoE: Telephone line connection. c. Static IP: Broadband connection 19

2. WAN Speed Parameters Specified Speed BW: Mark this flag to accept the WISP specified bandwidth Actual Speed BW: Mark this flag to accept the actual bandwidth measured at the location Upstream Bandwidth (kbps): The available upstream bandwidth for the controller to use Downstream Bandwidth (kbps): The available downstream bandwidth for the controller to use WAN BW IP Address & Port: This is the host/port to which the server will connect and measure the actual bandwidth at the location 20

3. WAN HTTP Proxy WAN HTTP Proxy IP Address & Port: PSC needs this proxy server address and port to connect to the internet directly. All the gsoap messages is communicated through this server WAN HTTP Proxy User Name and Password: User name and password to access this proxy server 21

4. Auto Detect Internet Connection Parameters Initial Wait Time of Internet Detection: Time period for which the controller will wait to acquire the IP address for an Internet connectivity type, say, DHCP. Default value is 30 seconds Incremental Value: Incremental time period after which the controller will try to acquire the IP again for the same connectivity type, say, DHCP. Default value is 10 seconds Max. Wait Time for Internet Connection: Maximum time period for which the controller will try to acquire the IP address for one connectivity type, say, DHCP. This value should be greater than Fallback Start Time value. Default value is 300 seconds 22

Defining Network Interfaces - For WAN Click Apply Click Next to view Define SSID window Click Apply 23

SSID The SSID logically defines and separates the users and access points in the wireless network Correct SSID is required to access the PSC Multiple SSID support is also provided 24

Define SSID Enter relevant values To enable SSID at the location check Enable Click Next to view the Finish page 25

Finish Click finish to view the confirmation of the PSC creation 26

Confirmation Click OK to view the Modify DHCP Configuration window 27

DHCP Settings Avoids IP address clash in the network Improves end user connectivity on to the network Provides the option to exclude/include IP address ranges reserved for certain static devices on the network DHCP is a parameter in the PSC. 28

Modify the DHCP Configuration Select the Interface ID & click Setup DHCP to view the DHCP Configuration window 29

DHCP Configuration Enter relevant details Click Apply to view the newly added configuration in Modify DHCP Configuration window Click Save to view the Externally Connected Devices window 30

Externally Connected Devices Apart from PSC, location(s) can have External devices like Access Points, routers etc. Aids in expanding the location s coverage PSC must be reinitialized for every addition of external device External devices is configured with the MAC address in the OSS PSC gets the IP address of the external device when it goes live External devices is a parameter in the PSC 31

Externally Connected Devices Setup Enter relevant values Click Add to List to view the newly added device Click Save to view the Walled Garden Site window 32

GW Layer3 Layer 3 Support on LAN allows the PSC/PSG to support large number of users on LAN interface Clients can be either in same LAN segment as ETH1 or in a different segment Supports scalability for easier network management Offers full sub-netting support Provides a stable network for data transmission 33

Setup GW Layer3 Enter relevant values Click Add to List Click Save to view the Walled Garden Sites window This setup is not mandatory To skip, click Save directly 34

Gateway Walled Garden Sites Walled Garden Sites (a.k.a., white listed sites) are the sites that do not require any authentication for the end user. Setup the Walled Garden Sites and click Add to List After adding the required number of walled garden sites, click Save to setup Access Control List 35

ACL (Access Control Lists) Allow/deny access to attached devices located on LAN or WLAN0 network from the WAN network Support for attached devices like printers, Scanners, Point of Sale systems etc Does not require authentication Uses a concept called Port Forwarding The above image can be explained with the following example 36

Port Forwarding- Example EXAMPLE: On the PSC, a rule is setup saying all connections to the WAN port of the PSC (port 80/tcp) should be redirected to port 20 on 10.0.0.2 (access point on the internal network) The incoming web connection would be labeled as: Source: 168.158.1.2 Destination: 190.160.1.1/80 (PSC's IP address / port number) This would be forwarded on to the internal host as: Source: 163.158.1.2 / 550 Destination: 12.0.0.1 / 20 (AP's IP address / port number) 37

ACL for Attached Devices Enter relevant field values, Click Add to List Click Save to setup VLAN Configurations 38

VLAN Configurations The PSC/PSG provides multiple VLANs through external APs Helps the WISP to provide different branding based upon SSIDs Identifies the users with different SSIDs Serves appropriate login splash page 39

Attached VLAN Enter the values & click Add to List Click Save to view the Controller List window with the newly added controller 40

Controller List Newly added Controller Template appears in the List It s details can be viewed/modified View Details Modify Details 41