User Manual WiMAX Modem Manual Version: 1.3 Manual Date: Feb. 20 2009 Software Version: R4.6.0.0-17743-v5.7.0 Software Date: Feb.
CONTENTS Chapter 1 Overview ..................................................................1-1 1.1. Indoor CPE............................................................................................. 1-1 1.2. Outdoor CPE.......................................................................................... 1-2 Chapter 2 WEB-GUI.................................................................2-3 2.1. System Configuration Login..................................................................
FIGURES Figure 1-1 Figure 1-2 Figure 2-1 Indoor CPE Front Panel LED ............................................... 1-1 Outdoor CPE installation ...................................................... 1-2 Login Page ............................................................................ 2-3 Figure 2-2 Figure 2-3 Figure 2-4 Figure 2-5 WiMAX Status ...................................................................... 2-4 WiMAX Status-Service Flow ...............................................
Figure 2-34 Reboot Confirmation.........................................................
Chapter 1 Overview This chapter describes the panel function and installation procedure for the CPE. 1.1. Indoor CPE Front Panel LED Power LED: ON: power on LAN LED: ON: connect OFF: power fail OFF: disconnect Blinking: data transmit When the CPE powers on, the LED indicates the CPE states as follow.
Rear Panel Power jack: DC 12V / 1.5A LAN port: 10/100Base-TX Reset button: To reboot the CPE 1.2. Outdoor CPE Power Injector – Power Over Ethernet 802.
Chapter 2 WEB-GUI This chapter describes how to configure the CPE in order to connect to the base station. 2.1. System Configuration Login The CPE will enable a DHCP server by default. Computers or network devices connected to its LAN side can get IP address automatically from CPE. If you disable CPE’s DHCP server by yourself, set the IP address, net mask, and gateway as following. IP address: 10.1.1.x, 1 ≤ x ≤ 253 Netmask: 255.255.255.0 Gateway: 10.1.1.254 Connect to http://10.1.1.
If there is no error, the user can login into the Status Page, and WiMAX Status, Network Status, and Device Status are as shown in Figure 2-2, Figure 2-3, Figure 2-4, and Figure 2-5.
Figure 2-4 Figure 2-5 Network Status Device Status 2-5
2.2. System Logout Press the “Logout” button as shown in Figure 2-6 to logout of the system and go back to the “Login” page as shown in Figure 2-1.
2.3. Account Personalization Account The Account page is for changing the password of the WEB-UI account as shown in Figure 2-7. After setting the configurations of these fields, press the “Apply” button to write the new configurations into the CPE and the new configurations will take effect.
2.4. Date Personalization Date If the system date is not in the valid duration of the uploaded certificate file, the CPE will not pass the authentication from the base station. The system date of a CPE can be synchronized with the PC that is connected to its LAN side by clicking the “Synchronize with PC” button. The system date of a CPE can also be automatically updated by synchronizing time with an NTP server assigned manually by the user or from the DHCP server.
2.5. Language Personalization Language The Language page allows users to select one of the languages in the drop-down list for viewing the WEB-GUI as shown in Figure 2-9. After selecting the desired language, press the “Apply” button to view the WEB-GUI in the selected language.
2.6. Scanner WiMAX Scanner (can only be accessed by administrator) The Scanner page allows users to stop or start WiMAX connection with a BS by simply clicking the “start” or “stop” button in the “Start/Stop WiMAX” section. The “Channel Table” section lists all the channels that are stored in the channel table along with channel status associated to the channel used to connect the CPE to a BS. Please refer to Figure 2-10 more detail.
2.7. Authentication WiMAX Authentication (can only be accessed by administrator) Users can enable or disable the authentication by selecting one of the two methods supported, EAP-TLS and EAP-TTLS, or by selecting none in “Phase 1” field. Users can also choose one of five key encoding methods listed in “Phase 2”. Identity, username, and password should be entered respectively as agreed upon with the BS, if authentication is required.
Figure 2-12 Authentication-View Certificates 2-12
2.8. Bridge Mode Networking Bridge/NAT Mode Bridge mode is enabled by simply selecting “Bridge Mode” as shown in Figure 2-13. By selecting “Static” IP type, users can manually assign the “IP address” and “netmask”. The “IP address” and “netmask” can also be automatically assigned by the DHCP server by selecting “DHCP” IP type.
2.9. NAT Mode Networking Bridge/NAT Mode NAT mode is enabled by simply selecting “NAT Mode” as shown in Figure 2-14. By selecting “Static” WAN IP type, users can manually assign the “WAN IP address”, “WAN netmask”, and “WAN gateway”. The “WAN IP address”, “WAN netmask”, and “WAN gateway” can also be automatically assigned by the DHCP server by selecting “DHCP” WAN IP type. Users can also configure “LAN IP address”, “LAN netmask”, and “MTU”, which should be between 68 and 1500.
2.10. Firewall Networking Firewall (can only be accessed by administrator) The “CPE Access Control” section of this page gives users the ability to allow or deny web/telnet access from WAN. By enabling and identifying a DMZ host, an external attacker only has access to the DMZ host, rather than the entire private network at the CPE’s back end. Furthermore, the redirection of ICMP can also be enabled.
Figure 2-16 Firewall Filter 2-16
2.11. DHCP Server Networking DHCP Server DHCP server will automatically start up when the CPE is powered on if “DHCP server” is enabled. If enabled, this page shows the previous configuration of the DHCP server as shown in Figure 2-17; otherwise, it shows that the DHCP server is disabled as shown in Figure 2-18. Note that “Primary DNS” and “Domain Name” are required for DHCP server settings, and “Max lease time (seconds)” is between 1 and 99999999.
Figure 2-18 DHCP Server Disabled 2-18
2.12. NAT ALG Networking NAT ALG (can only be accessed by administrator) By selecting or deselecting the checkbox, users can enable or disable BSID authorization of SIP ALG as shown in Figure 2-19. With it enabled, BSID can be used in SIP authentication to decide if the ATA is within the service area. Please note that NAT ALG is only applicable when the CPE is in NAT mode.
2.13. Port Forwarding Networking Port Forwarding Port forwarding redirects incoming network traffic from pre-defined “WAN Port” range to pre-defined “LAN IP Address” and “LAN Port” range. Users are allowed to add, remove, edit, enable, and disable port forwarding rules here as shown in Figure 2-20. Please note that port forwarding is only applicable when the CPE is in NAT mode.
2.14. Port Trigger Networking Port Trigger Port trigger dynamically opens port forwarding from a pre-defined WAN “Forwarding Port” range to a pre-defined LAN “Forwarding Port” range when a client on the local network makes an outgoing connection to a predetermined “Trigger Port” range. Users are allowed to add, remove, edit, enable, and disable port trigger mappings here as shown in Figure 2-21. Please note that port trigger is only applicable when the CPE is in NAT mode.
2.15. DDNS Networking DDNS By selecting or deselecting the checkbox, users can enable or disable DDNS as shown in Figure 2-22 and Figure 2-23. To enable DDNS, registration with at least one of the seven service providers is required, and can be done by clicking the “Sign Up” hyperlink and following the procedures. Enter the hostname, username, and password you have registered with the service provider and press the “Apply” button to save the changes into the CPE.
Figure 2-23 DDNS Disabled 2-23
2.16. TR-069 Management TR-069 (can only be accessed by administrator) TR-069 client will automatically start up when the CPE is operational if the “TR-069 Active Flag” is enabled. The “ACS Server URL” is the URL used by TR-069 client to connect to the ACS server, and TR-069 client uses the “ACS Username” and “ACS Password” to login the ACS Server. When the “Inform Enable” is enabled, TR-069 client will periodically query the ACS server according to the “Inform Interval”.
Figure 2-24 Figure 2-25 TR-069 TR-069-Certificate File Upload 2-25
2.17. SNMP Management SNMP (can only be accessed by administrator) This page is used to enable disable SNMP server as shown in Figure 2-26 and Figure 2-27. When SNMP is enabled, the community string of the SNMP server can be changed. After setting the configurations of these fields, press the “Apply” button to write the new configurations into the CPE and press “Reboot” as shown in Figure 2-34, to reboot the system in order for the new configurations to take effect.
2.18. Log Management Log (can only be accessed by administrator) This page displays the system message log as shown in Figure 2-28.
2.19. Upgrade Management Upgrade (can only be accessed by administrator) To perform web upgrade, press the “Brows…” button to choose the firmware file in the computer in the “Web Upgrade” section, and press the “Upload” button to upload the file into the CPE. Please refer to Figure 2-29 for more details. After the firmware file is uploaded, the summary will be displayed as shown in Figure 2-30. Then press the “Apply” button to upgrade the firmware.
Figure 2-30 Web Upgrade Summary Figure 2-31 TFTP Upgrade 2-29
2.20. Recovery Management Recovery (can only be accessed by administrator) Both current firmware version and previous firmware version are shown in the “Firmware Rollback” section. Firmware rollback can be performed by pressing the “Rollback” button. Device configuration file that includes files such as, .configdb and ddns.conf, can be uploaded from PC to CPE as well as downloaded from CPE to PC.
2.21. Reboot Press the “Reboot” and “Yes” buttons to reboot the system. Please refer to Figure 2-34 and Figure 2-34 for more details.
Figure 2-34 Reboot Confirmation Industry Canada statement: This device complies with RSS-192, RSS-195, and RSS-197 of the Industry Canada Rules. Operation is subject to the following two conditions: (1) This device may not cause harmful interference, and (2) this device must accept any interference received, including interference that may cause undesired operation.
This equipment has been tested and found to comply with RSS-197 and RSS-192 of the Industry Canada Rules (for 3.x GHz bandwidth) and the limits for a class B digital device, pursuant to ETSI EN 301 489-1 and Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a residential environment notwithstanding use in commercial, business and industrial environments.
following two conditions: (1) This device may not cause harmful interference, and (2) this device must accept any interference received, including interference that may cause undesired operation. IMPORTANT NOTE: Radiation Exposure Statement: This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment. This equipment should be installed and operated with minimum distance 50 cm between the radiator & your body.
