Link Gateway Initial Configuration Manual

Similar documents
Link Gateway ISO Installation Manual

ISO Installation Guide. Version 1.2 December 2015

Link Platform Manual. Version 5.0 Release Jan 2017

Pexip Infinity and Amazon Web Services Deployment Guide

Deploy the ExtraHop Trace 6150 Appliance

Desktop LP - Connect Guide. Version 2.1 February 2016

ACE Live on RSP: Installation Instructions

How to open ports in the DSL router firmware version 2.xx and above

D-Link (Europe) Ltd. 4 th Floor Merit House Edgware Road London HA7 1DP U.K. Tel: Fax:

Installation and Configuration Guide

Copyright 2016 NetLinkz. All Rights Reserved.

Device LinkUP + VIN. Service + Desktop LP Guide RDP

Deploy the ExtraHop Explore 5100 Appliance

Endian Proxy / Firewall

Deploy the ExtraHop Trace 6150 Appliance

Deploy the ExtraHop Discover Appliance 1100

Lab - Connect to a Router for the First Time

Xcalenets Console Setup Guide. Xcalenets Console Setup Guide (Standalone version)

F5 WANJet 200. Quick Start Guide. Quick Start Overview

Installing Cisco StadiumVision Director Software from a DVD

SOA Software API Gateway Appliance 6.3 Administration Guide

Pexip Infinity and Amazon Web Services Deployment Guide

Plexxi HCN Plexxi Connect Installation, Upgrade and Administration Guide Release 3.0.0

Installing and Configuring vcloud Connector

Deploy the ExtraHop Discover 3100, 6100, 8100, or 9100 Appliances

Quick Start Guide. Manual Legal Docs Other important documentation

FieldView. Management Suite

Table of Contents 1 V3 & V4 Appliance Quick Start V4 Appliance Reference...3

Intel Small Business Extended Access. Deployment Guide

KeyNexus Hyper-V Deployment Guide

Parallels Remote Application Server

akkadian Global Directory 3.0 System Administration Guide

Appliance Installation Guide

Plexxi Control Installation, Upgrade and Administration Guide Releases 2.3.x, 2.4.x, 3.0.x, 3.1.0

Horizon DaaS Platform 6.1 Service Provider Installation - vcloud

Storage Made Easy Cloud Appliance installation Guide

MAC Address Filtering Setup (3G18Wn)

Installation and Configuration Guide

Quick Start Guide. Manual Legal Docs Other important documentation

Collaboration Management Suite. Installation manual

Installing and Configuring vcloud Connector

On-demand target, up and running

Plexxi Control Installation, Upgrade and Administration Guide Releases 2.3.x, 2.4.x, 3.0.x, 3.1.0

dctrack Quick Setup Guide Virtual Machine Requirements Requirements Requirements Preparing to Install dctrack

Aruba Quick Start Guide

HySecure Quick Start Guide. HySecure 5.0

Pexip Infinity and Google Cloud Platform Deployment Guide

Parallels Remote Application Server

6.1. Getting Started Guide

Dominion KX II-101-V2

OUTDOOR IR NETWORK CAMERA Series

Quick Note 05. Configuring Port Forwarding to access an IP camera user interface on a TransPort LR54. 7 November 2017

Management Software AT-S79. User s Guide. For use with the AT-GS950/16 and AT-GS950/24 Smart Switches. Version Rev.

OpenVPN Access Server v1.3 System Administrator Guide. Rev 1.0

Securely manage data center and network equipment from anywhere in the world.

Silver Peak EC-V and Microsoft Azure Deployment Guide

Getting Started. About the ASA for Firepower How the ASA Works with the Firepower 2100

VIN Service: Multiple Connections. Mac

Installing and Configuring VMware Identity Manager Connector (Windows) OCT 2018 VMware Identity Manager VMware Identity Manager 3.

Parallels Remote Application Server

16/24-Port 10/100/1000T 802.3at PoE + 2-Port 100/1000X SFP Managed Switch GS P2S GS P2S. Quick Installation Guide

Implementing DVN. directpacket Product Guide

SecurEnvoy Microsoft Server Agent

Software Installation Manual

MOVEit Transfer on Azure Marketplace Quickstart Guide. How to deploy and use MOVEit Transfer from Microsoft Azure Marketplace

KYOCERA Device Manager Installation and Upgrade Guide

Plexxi Control Installation, Upgrade and Administration Guide Release 3.2.0

Redhat OpenStack 5.0 and PLUMgrid OpenStack Networking Suite 2.0 Installation Hands-on lab guide

Getting Started. Getting Started with Your Platform Model. Factory Default Configurations CHAPTER

Deploy the ExtraHop Discover 3100, 6100, 8100, or 9100 Appliances

VII. Corente Services SSL Client

AOS-W 6.4. Quick Start Guide. Install the Switch. Initial Setup Using the WebUI Setup Wizard

Lenovo ThinkAgile XClarity Integrator for Nutanix Installation and User's Guide

ScopTEL TM IP PBX Software. DNS Server Configuration Wizard

Configuring General Settings for the EN-4000

Chapter 10 Configure Clientless Remote Access SSL VPNs Using ASDM

VMware vsphere 5.5: Install, Configure, Manage Lab Addendum. Lab 3: Configuring VMware ESXi

IPMI Configuration Guide

Deploying Cisco UCS Central

VMware vfabric Data Director Installation Guide

XCONNECT 2018 GATEWAY USER MANUAL

Network Configuration Example

CounterACT 7.0. Quick Installation Guide for a Single Virtual CounterACT Appliance

Dolby Conference Phone. Configuration guide for Avaya Aura Platform 6.x

IVE Quick Startup Guide - OS 4.0

Quick Start Guide. Remote Console Manager

CHAPTER 7 ADVANCED ADMINISTRATION PC

NetExtender for SSL-VPN

User Manual. SSV Remote Access Gateway. Web ConfigTool

VMware Identity Manager Cloud Deployment. Modified on 01 OCT 2017 VMware Identity Manager

VMware Identity Manager Cloud Deployment. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager

Port Forwarding Setup (NB7)

Quick Start Guide. Remote Console Manager Quick Start Guide

SonicWALL Security Appliances. SonicWALL SSL-VPN 200 Getting Started Guide

Port Forwarding Technical Support Guide

Grandstream Networks, Inc. GWN7000 Command Line Guide

48-Port 10/100/1000Base-T with 4 Shared SFP. Managed Gigabit Switch WGSW Quick Installation Guide

Management Security Switch SGSD-1022 / SGSD-1022P SGSW-2840 / SGSW-2840P. Quick Installation Guide

Installing the Cisco Virtual Network Management Center

Getting Started. Task Flow. Initial Configuration. Task Flow, on page 1 Initial Configuration, on page 1 Accessing the FXOS CLI, on page 4

Transcription:

Link Gateway Initial Configuration Manual

Copyright 2016 NetLinkz. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language in any form or by any means without the written permission of NetLinkz as provided by the explicit terms and conditions of our license agreement. Basic Rights of Use Thank you for choosing NetLinkz. For more information visit us at http://www.netlinkz.com. Trademarks Microsoft, Windows, Windows NT, and Vista are registered trademarks of Microsoft Corporation. Other brand and product names are registered trademarks or trademarks of their respective holders. Statement of Conditions To ensure proper operational function and/or reliability of the product is maintained, NetLinkz reserves the right to make changes to the product described within this document, via electronic means or otherwise, without notice. NetLinkz does not assume any liability that may occur due to the use, or application of, the product described herein.

Table of Contents Link Gateway Initial Configuration Manual... 1 Table of Contents... 3 Introduction... 4 Assumptions... 4 Determine the IP address... 4 Default configuration... 4 Custom configuration...5 Log in via web browser... 6 Set password... 8 Set hostname... 9 Network configuration... 11 Manual configuration of external interface (optional)... 12 Follow invitation... 15 Configure via Platform... 16 Appendix A... 17 Connecting to Link Gateway admin UI via SSH... 17 SSH tunnel to your local machine... 17 Using the tunnel... 20 Text browser via SSH... 20 Connecting to Link Gateway console via serial cable... 21

Introduction The purpose of this document is to show how to perform the initial Link Gateway configuration and follow an invitation to a Link Network. It follows on from the Link Gateway ISO Installation manual and should be followed by the Link Platform manual. The Link Gateway Admin UI is a configuration user interface running as a web service on TCP port 443 over HTTPS. HTTP connections are redirected to HTTPS. Once initial configuration has been completed and the machine rebooted, then TCP ports 80 and 443 ingress are blocked by the Link Gateway firewall on the external interface while TCP port 7712 ingress remains open. Thus, further access to the Link Gateway Admin UI can only take place via the external interface over SSH or an SSH tunnel as described in the section Connecting to Link Gateway admin UI via SSH below. The Link Gateway Admin UI can still be accessed over HTTPS via the internal interface. Assumptions 1. A Link Platform has been set up with a Link Network configured. 2. The following egress traffic is not blocked between the Link Gateway and the Link Platform: TCP 443 UDP 7718 UDP 7719 3. UDP port 7719 egress is not blocked between any of the Link Gateways. Determine the IP address Default configuration The default Link Gateway configuration is as follows: External interface enabled and configured to receive its networking configuration via DHCP. Internal interface enabled and configured with a static IP address of 192.168.1.1. DHCP service running on the internal interface to assign IP addresses on the 192.168.1.0/24 network. Connect the external interface into a secure network with a DHCP server and access to the Internet.

Boot the Link Gateway. There are two options for connecting to the Link Gateway Admin UI: Via the external interface - To determine the DHCP-assigned address of the external interface, log in at the console with username net and password password and run ip a. Enter the IP address of the external interface into a web browser of a computer on the same network. Via the internal interface - Plug a computer with its network interface configured to receive its networking configuration via DHCP into the internal interface. Enter 192.168.1.1 into the computer's web browser. Custom configuration If the internal interface is not available because the ISO image was installed with the internal interface disabled, then the Link Gateway configuration is as follows: External interface enabled and configured either manually or to receive its networking configuration via DHCP. Internal interface disabled. Connect the external interface into a secure network with access to the Internet. If the external interface was configured to receive its network configuration via DHCP, then DHCP server is also required on this network. Boot the Link Gateway. Connect to Link Gateway Admin UI via the external interface: If the external interface was manually configured during ISO installation, then use the IP address that was assigned. Otherwise, to determine the DHCP-assigned address of the external interface, log in at the console with username net and password password and run ip a. Enter the IP address of the external interface into a web browser of a computer on the same network.

Log in via web browser After following one of the two options above, your browser will be redirected to an HTTPS connection on the Link Gateway Admin UI. Note that the first time you connect, you will be presented with a warning that your connection is not secure or that the website is incorrectly configured. This is because the connection is over HTTPS with a self-signed certificate: Add a non-permanent security exception to continue (this step is browserdependent).

You should be presented with the login page of the Link Gateway Admin UI. Enter the username net and password password:

Set password You will then be prompted to set a secure password for user net:

Set hostname Clicking Next will get you to the hostname config page:

Set a unique, fully qualified hostname and then click Next:

Network configuration Clicking Next will get you to a page listing the external Ethernet interface: If you are content for the external interface to be configured via DHCP, then leave it as it is, otherwise follow the next step.

Manual configuration of external interface (optional) If you wish to configure the external interface manually, then click on the link Configure <ethernet_device_name> (e.g. Configure enp0s8 as in the screenshot above): Enter the following: IP address Prefix Gateway DNS1 DNS2 (optional)

Set Boot Protocol to static. Leave On Boot checked. Leave Default Route checked. Note that the DNS must be able to resolve the Platform address. Here is an example manual configuration of the external interface: Note that there is no need to set Netmask and Network - these are automatically calculated from IP address and Prefix. Click Save network config.

Check that the configuration is correct:

Follow invitation Click Next to apply the network configuration. Note that the network service is restarted at this point and the system initial state is saved - this process takes several seconds. The next page that should appear is the Follow Invitation page:

Enter the invitation URL (refer to Link Platform documentation for setting up a Link Network) and click Follow invitation: After several seconds, you should see a message such as: NOTICE: Successfully enrolled with platform.example.com Configure via Platform Once the Link Gateway has successfully enrolled with the Platform, all subsequent configuration of the Link Gateway is done from the Platform. Please refer the Link Platform manual to complete the Link Gateway configuration.

Appendix A Connecting to Link Gateway admin UI via SSH Once a 2-NIC Link Gateway has been configured and rebooted, TCP ports 80 and 443 ingress will be blocked on the external interface by the Link Gateway firewall. TCP ports 80 and 443 will still be open on the internal interface, so it is easy to connect to the Link Gateway Admin UI from the internal network via HTTPS. There are two ways to access the Link Gateway Admin UI via SSH on the external interface: 1. SSH tunnel to your local machine. 2. Text browser via SSH. SSH tunnel to your local machine Linux / Unix / MacOS An SSH tunnel can be established from the command line as follows: ssh -p 7712 -f net@link.gateway.address -L 8080:localhost:8000 -N where link.gateway.address resolves to either the internal or external IP address of the Link Gateway.

Windows On Windows you will need to install an external tool called "putty". It is available for free. Once opened you will need to configure the ssh options for controlling port forwarding. 1. Open PuTTY 2. Navigate to Connection -> SSH -> Tunnels 3. Configure the Source port to be 8080 4. Configure the Destination to be 127.0.0.1:8000

5. Click the Add button 6. Navigate to Session 7. Configure the Host Name to be the IP address or host name of the Link Gateway and the Port to be 7712 8. If you wish you can save this configuration by typing in a session name into Saved Sessions and Clicking Save 9. Click Open and authenticate yourself

Using the tunnel You can then securely access the Link Gateway Admin UI by entering the following URL in your web browser: http://localhost:8080 Text browser via SSH A text browser, Lynx, is installed on the Link Gateway, so you can SSH into the Link Gateway (or access the console directly) and configure it as follows: ssh -p 7712 net@link.gateway.address Once logged in, run: lynx localhost:8000 and you will end up in the Link Gateway Admin UI in Lynx: Use up and down arrows to move between fields and right-arrow to follow a link or 'click' a button. Use Enter to change the state of a checkbox. Type 'q' to quit.

Connecting to Link Gateway console via serial cable It is possible to connect to the Link Gateway console via serial cable on the first COM port (the one closest to the power button on the Shuttle DS57U). The serial communications parameters are 115200 baud, 8 data bits, no parity bit, one stop bit, software flow control.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback