Nomadix AG3100 User Manual

Provides an overview of the Access Gateway's functionality and features for system administrators.

Introduces the features and benefits of the Nomadix Access Gateway.

Provides instructions for installing the hardware and software components of the Access Gateway.

Covers procedures for system administrators to manage and administer the Access Gateway.

Details the Access Gateway's subscriber interface, authorization, and billing processes.

Contains product reference information organized by topic for quick access.

Offers guidance on resolving common hardware and software problems.

Provides information on how to obtain technical support from Nomadix.

Explains terms directly related to Nomadix product technology.

Explains the role of Nomadix Service Engine (NSE) software in Access Gateway products.

Highlights the Access Gateway's design as a network appliance for maximum uptime.

Details the Portal Page feature for user sign-up and login redirection.

Explains the Dynamic Address Translation (DAT) for seamless network access.

Ensures network security by controlling access until user authentication is complete.

Discusses iNAT™ for VPN tunnels and Session Rate Limiting (SRL) for DoS protection.

Outlines a methodology for customizing the service provider's branding.

Manages administrator access to network interfaces and incorporates a master access control list.

Optimizes bandwidth usage for subscribers, ensuring fair distribution and quality of experience.

Enables sending copies of billing records to external servers for backup and security.

Provides unconditional network access, making the Access Gateway transparent to the network.

Allows defining user classes for bandwidth prioritization and guaranteed minimum bandwidth.

A character-based interface for system administration and configuration.

Configures system time with support for regional time zones and daylight savings adjustments.

Directs HTTP/HTTPS proxy requests through an internal proxy transparently to subscribers.

Manages simultaneous user counts, with options for platform-dependent upgrades.

Allows customers to use their own content for a richer subscriber environment.

Provides a two-step process for facility guests to authenticate using their Facebook account.

Intelligently supports multiple VPN connections simultaneously for seamless access.

Offers an embedded web server for delivering stored web pages and custom branding.

Allows definition of displayed text in multiple languages for the Internal Web Server.

Enables administrators to set up different DHCP pools for revenue generation opportunities.

Creates dynamic port groupings to increase throughput and provide link redundancy.

Provides a pop-up window for explicit logout functions.

Enhances access control by blocking malicious users based on their MAC address.

Differentiates access levels between managers and operators for secure administration.

Supports independently configurable WAN interfaces for ISP resource allocation and load balancing.

Allows internet access billing to be managed via PayPal accounts or credit cards.

Contains logic for redirecting pages before or after the authentication process.

Provides an effortless method for configuring devices using existing RADIUS infrastructure.

Offers an integrated RADIUS client for tracking and billing users based on connection data.

Provides NAI routing capabilities for multiple service providers sharing a HotSpot location.

Stores login cookies and RADIUS credentials for seamless reconnections without re-login.

Utilizes IPSec tunneling with strong data encryption for secure network device management.

Allows user administration and processing of XML commands from external sources.

Limits user sessions to reduce the risk of Denial of Service attacks.

Supports authentication mechanisms used by various Smart Client providers.

Allows viewing and managing SNMP objects on the Access Gateway.

Sets up port mapping to forward packets to a specific IP and port number on the subscriber side.

Offers multiple authentication models for flexibility in end-user and operator support.

Restricts access to specified websites based on administrator-defined URLs.

Allows remote management of Access Gateways via a graphical web interface.

Allocates bandwidth proportionally to users or groups, providing a fallback for over-subscription.

Balances Internet traffic across multiple WAN/ISP connections for optimized distribution and failover.

Provides interfaces for Property Management Systems (PMS) for in-room guest billing.

Offers enhanced network uptime and service availability through Fail-Over functionality.

Explains how to determine the resident gateway for a given MAC address within a cluster.

Defines Load Balancing, Link Aggregation, and Link Failover processes.

Factors influencing ISP selection for outgoing traffic in load balancing scenarios.

Compares user-based ISP selection with random selection based on load conditions.

Balances traffic between links based on subscriber numbers and ISP connection speeds.

Details actions taken when a previously failed ISP link becomes available again.

Discusses key factors to consider when implementing load balancing and failover.

Utilizes a low-cost wireless backup ISP service only when the main circuit is unavailable.

Uses the Admin network as a backup link if the Guest HSIA ISP link fails.

Connects multiple ISP links to share aggregate bandwidth between guest and admin networks.

Provides a flowchart detailing the steps for installing and configuring the Access Gateway.

Details the procedure for establishing a direct cable connection and powering up the system.

Locates product user manuals, documentation, and support files available online.

Describes the system information displayed on the Access Gateway's LCD panel.

Guides through configuring the WAN port with static IP address settings.

Guides through configuring the WAN port using DHCP client settings.

Guides through configuring a PPPoE connection with dynamic IP address assignment.

Guides through configuring a PPPoE connection with static IP address assignment.

Details required location information for obtaining the license key.

Explains the process of accepting the EULA to retrieve the license key from the server.

Covers disabling subscriber-side HTTP to enable Web Management Interface access.

Details the configuration of the Access Gateway's DHCP Server settings.

Explains how to make menu selections and input data using the Command Line Interface (CLI).

Describes the organization of menus within the Web Management Interface (WMI).

Guides on assigning unique login user names and passwords for secure administration.

Details setting up SNMP communities and identifiers for network management.

Provides step-by-step instructions to configure the main WAN interface.

Explains how to enable system and AAA logging for error messages and activity records.

Guides on setting up AAA (Authentication, Authorization, and Accounting) service options.

Allows creation of flexible IP pool solutions to meet demands of complex networks.

Provides a summary listing of all current configuration settings for review.

Accesses menus for monitoring network connections, routings, protocols, and statistics.

Accesses menus for managing port-location assignments, including VLAN tags.

Accesses menus for managing subscriber profiles and connections.

Accesses menus for defining the subscriber interface appearance and content.

Accesses menus for managing login names, passwords, and system configurations.

Provides a powerful and flexible web interface for network administrators.

Allows remote management using an SNMP client manager (e.g., HP OpenView).

Provides simple terminal emulation for interacting with the Command Line Interface (CLI).

Guides on setting up AAA (Authentication, Authorization, and Accounting) service options.

Allows the Access Gateway to accept and process XML commands from external sources.

Supports Driverless Print servers for subscriber room billing for printing documents.

Enables 802.1x authentication support, requiring AAA and RADIUS to be enabled.

Enables Origin Server parameter encoding for Portal Page and External Web Server features.

Allows failover to Internal Web Server Authentication if Portal Page/External Web Server is unreachable.

Allows individual configuration of billing methods and plans for each port.

Adds a security exception to the browser to allow certificate validity for HTTPS redirection.

Redirects subscriber login requests to an external server in EWS mode for authentication.

Allows entry of Telnet Port and HTTP or HTTPS Port for configurable network access.

Provides options to block Telnet, Web Management, FTP, and SSH access for network interfaces.

Provides options to block Telnet, Web Management, FTP, and SSH access for subscriber interfaces.

Allows SSLv2 and SSLv3, with TLS always permitted.

Drives automatic configuration of Nomadix devices via RADIUS and FTP for fast roll-outs.

Manages subscriber bandwidth, defined in Kbps for upstream and downstream transmissions.

Assigns a common bandwidth rate limiting policy to a group of subscriber devices.

Explains how the NSE maintains and applies group bandwidth policies based on RADIUS ID.

Displays the group bandwidth policy ID in the Current Subscribers table.

Sends copies of billing records to external servers for backup and transaction security.

Guides on enabling and configuring Class-Based Queueing for bandwidth management.

Explains the four methods for assigning users to a particular class.

Guides on enabling NSE Clustering by configuring the total number of gateways and gateway number.

Provides DNS-triggered redirection of HTTP requests to one or more configured portal page URLs.

Configures DHCP services, including DHCP Server and DHCP Relay settings for IP assignment.

Allows configuration of DHCP options as defined in RFC 2132 for subscriber network configuration.

Enables or disables DHCP dynamic enable and disable functionality without requiring a reboot.

Sets up DNS parameters, including host name, domain, and primary/secondary DNS servers.

Adds authentication and integrity capability to DNS systems using DNSSEC support.

Sets up Dynamic DNS (DDNS) options for automatic IP address updates.

Enhances overall system throughput and bandwidth with Fast Forwarding mode.

Guides on adding a new IPSec tunnel peer or modifying existing ones.

Allows adding or modifying IPSec security policies from the IPSec Tunnel Settings screen.

Configures load balancing settings, including failover modes and link availability criteria.

Sets up the system location information for network configuration.

Enables system logging using the standard SYSLOG protocol to send message logs.

Enables AAA logging for AAA functions, sending activity logs to a specified server.

Sets properties for each room from the subscriber side of the Access Gateway.

Guides on adding a port-location assignment for rooms, apartments, or buildings.

Details how to update existing port-location assignments by modifying their fields.

Exports current port-location assignments to a “location.txt” file for backup.

Finds port-location assignments based on their unique description for review.

Finds port-location assignments based on their specified location for review.

Finds port-location assignments based on their specified port (VLAN ID) for review.

Deletes particular port-location assignments from the system.

Enables Facebook login for a specific port location for authentication.

Adds subscriber profiles to the database for authorized user management.

Adds a device profile to the subscriber database for management.

Adds a group account profile to the subscriber database for management.

Deletes a subscriber profile from the database based on its user name.

Lists currently active DHCP leases on the system's DHCP server.

Finds a subscriber profile based on its user name for statistics review.

Displays a list of authorized subscriber profiles based on user names and MAC addresses.

Establishes various billing plans and rates, including messages and appearance settings.

Configures how the Information and Control Console (ICC) is displayed to subscribers for options.

Blocks ICMP traffic from pending or non-authenticated users for network security.

Allows configuration of static routes and selection of WAN interfaces for specific network destinations.

Sets up or deletes static port-mapping schemes for forwarding packets to specific internal devices.

Provides an overview of the Subscriber Interface and its role in authorization and billing.

Enables plug-and-play access to broadband networks with powerful billing support functionality.

Explains the Authentication, Authorization, and Accounting (AAA) module's functionality.

Describes Web servers acting as login interfaces for subscribers and the network.

Supports multiple Asian and European languages for the subscriber interface and web management.

Configures redirection of valid subscribers to a Web portal or home page.

Outlines models for managing subscribers, including Free Access, MAC Address, and User Name.

Lists and explains menus within the Access Gateway's Web Management Interface.

Lists and describes items found within the Configuration menu.

Lists and describes items found within the Network Info menu.

Lists and describes items found within the Port-Location menu.

Lists and describes items found within the Subscriber Administration menu.

Lists and describes items found within the Subscriber Interface menu.

Lists menu items alphabetically with their corresponding menu location.