Black Box ServSwitchTM manual Networking issues, Positioning Wizard IP Plus in the network

Page 22

Networking issues

Thanks to its robust security the Wizard IP Plus offers you great flexibility in how it integrates into an existing network structure. The Wizard IP Plus is designed to reside either on an internal network, behind a firewall/router or alternatively with its own direct Internet connection.

Positioning Wizard IP Plus in the network

Every network setup is different and great care needs to be taken when introducing a powerful device such as the Wizard IP Plus into an existing configuration. A common cause of potential problems can be in clashes with firewall configurations. For this reason the Wizard IP Plus is designed to be intelligent, flexible and secure. With the minimum of effort the Wizard IP Plus can reside either behind the firewall or alongside with its own separate Internet connection.

Internet

Internet

Firewall/ router

Firewall/ router

Placing Wizard IP Plus behind a router or firewall

A possible point of contention between the Wizard IP Plus and a firewall can occasionally arise over the use of IP ports. Every port through the firewall represents a potential point of attack from outside and so it is advisable to minimise the number of open ports. The Wizard IP Plus usually uses two separate port numbers, however, these are easily changeable and can even be combined into a single port.

IMPORTANT: The correct configuration of routers and firewalls requires advanced networking skills and intimate knowledge of the particular network. Black Box cannot provide specific advice on how to configure your network devices and strongly recommend that such tasks are carried out by a qualified professional.

Port settings

As standard, the Wizard IP Plus uses two ports to support its two types of viewer:

Port 80 for users making contact with a web browser, and

Port 5900 for those using the VNC viewer.

When these port numbers are used, VNC viewers and web browsers will locate the Wizard IP Plus correctly using only its network address. The firewall/router must be informed to transfer traffic, requesting these port numbers, through to the Wizard IP Plus.

When a web server is also on the local network

Port 80 is the standard port used by web (HTTP) servers. If the Wizard IP Plus is situated within a local network that also includes a web server or any other device serving port 80 then, if you want to use the web browser interface from outside the local network environment, the HTTP port number of the Wizard IP Plus must be changed.

When you change the HTTP port to anything other than 80, then each remote

®

  

BLACK BOX 724-746-5500

LOC REM VNC 100 LNK PWR

KVM link to host system

BLACK BOX 724-746-5500

LOC REM VNC 100 LNK PWR

 

Local

 

 

KVM link to

 

network

 

 

 

 

 

host system

Local

connection

 

 

 

 

 

 

 

 

 

network

 

 

 

 

connection

 

 

 

 

 

 

 

 

 

browser user will need to specify the port address as well as the IP address. For instance, if you set the HTTP port to ‘8000’ and the IP address is ‘192.168.47.10’ then browser users will need to enter:

http://192.168.47.10:8000

(Note the single colon that separates the IP address and the port number).

The firewall/router would also need to be informed to transfer all traffic to the new port number through to the Wizard IP Plus.

If you need to change the VNC port number

 

Wizard IP Plus situated

Wizard IP Plus situated

behind the firewall

alongside the firewall

IMPORTANT: When the Wizard IP Plus is accessible from the public Internet or dial up connection, you must ensure that sufficient security measures are employed.

If you change the VNC port to anything other than 5900, then each VNC viewer user will need to specify the port address as well as the IP address. For instance, if you set the VNC port to ‘11590’ and the IP address is ‘192.168.47.10’ then VNC viewer users will need to enter:

192.168.47.10::11590

(Note the double colons that separate the IP address and port number).

The firewall/router would also need to be informed to transfer all traffic to the new port number through to the Wizard IP Plus.



21

Page 21 Page 23
Image 22
Page 21 Page 23
Contents ServSwitch Wizard IP Plus Contents Index Introduction Wizard IP Plus features front and rear VNC links. Check with Black Box for availabilityWhat’s in the box What you may additionally need CD-ROMSingle unit rack brackets MountingDouble unit rack brackets Single host computer or many? ConnectionsHost computer links Keyboard and mouse To make a keyboard and mouse linksDigital video link Host computer links VideoTo make a video link Analogue video linkTo make an audio link Host computer links AudioHost computer links Virtual Media To make an Virtual Media linkLocal console. Why? Local console connections Keyboard and mouseTo connect a local keyboard and mouse PS/2 style keyboard and mouse connectionsTo connnect a local video monitor Local console connections VideoAnalogue video link Digital video link To connect local speakers Local console connections AudioIP network port To connect the IP network portModem/ISDN port Power supply connectionTo connect the power supply To connect a modem or Isdn portPower control port To connect and address the switch boxesPart 1 Local configuration Initial configurationPart 1 Local configuration Part 2 Remote configurationTime and Date To perform the initial local configurationAdmin password EncryptionViewer encryption settings Encryption settingsWizard IP Plus encryption settings EncryptionHot plugging and mouse restoration Which restore setting do I use?To restore mouse operation when hot plugging Recognising an IntelliMouse-style mouseTo invoke a configuration reset by switch Resetting the configurationWizard IP Plus asks for an unknown admin password Wizard IP Plus does not display the configuration sequencePart 2 Remote configuration To perform the remote configurationPositioning Wizard IP Plus in the network Networking issuesPort settings Placing Wizard IP Plus behind a router or firewallDNS addressing AddressingTo discover a DHCP-allocated IP address Firewall/router addressEnsuring sufficient security Placing Wizard IP Plus alongside the firewallPorts To configure the power sequences for each host computer Power switching configurationPower control sequences To control two or more ports simultaneouslyKvmadmin -getconfig kvm1.cfg Kvmadmin utilityKvmadmin command ip address parameters Kvmadmin -setusers users.csvConfigure network option Performing a flash upgradeTo perform a flash upgrade Important Wait until the upgrade is completeLocal connection Connecting to the Wizard IP PlusThen please contact the system administrator for details To make a local connectionRemote connections To avoid the ‘hall of mirrors’ effectRemote connection by VNC viewer To connect using the VNC viewerTo connect using your Web browser Remote connection by Web browserWhen using the viewer window Using the viewer windowMenu bar Host selection ConfigureMouse pointers To select a hostAuto calibrate Access mode shared/privatePower control Re-synchronise mouseResync Mouse Single Mouse ModeControls Refresh ScreenKeyboard Control When entering codesVideo Settings InfoSetting the Threshold manually When the screen contains only host system informationIncreased by 50% when a slow link is detected PhaseVirtual Media To remotely transfer files to a host computerDownloading VNC viewer from the Wizard IP Plus Connecting via dial up modem or Isdn linkIf you need to enter a port number Windows Viewer encryption settingsSupported web browsers LinuxGetting assistance TroubleshootingWhen logging on using VNC viewer, I cannot enter a username UK +44 0118 965Appendix 1 Local configuration menus To access the local configuration menusUnit configuration Network configuration Modem configuration Reset configuration To reset the Wizard IP Plus configurationWhat is IP access control? Clear IP access controlTo clear IP access control Auto select Appendix 2 VNC viewer connection optionsColour/Encoding Preferred encodingInputs Enable all inputsDisable all inputs view-only mode CustomiseScaling MiscIdentities Defaults ReloadDefaults Save Load / SaveAppendix 3 VNC viewer window options Encoding and colour level Appendix 4 Browser viewer optionsSecurity To access the remote configuration menus Appendix 5 Remote configuration menusMain configuration menu Logged on users User accounts Firmware Version Screensaver TimeoutHardware Version Host Keyboard LayoutAdvanced unit configuration Time & date configuration IP Network Mask IP Access ControlIP Gateway To reorder access control entries Setting IP access controlTo define a new IP access control entry To edit/remove access control entriesPower control port Serial port configurationModem port Host configuration To create a new host entryHotkey sequences Port/host addressing using Port DirectHotkey sequences and Port Direct Port DirectTo copy and paste the log Logging and statusSyslog Server IP Address IP addresses Appendix 6 Addresses, masks and portsNet masks Binary equivalent Net masks the binary explanationOperation with net mask Binary octet afterAll locations Calculating the mask for IP access controlSingle locations Address rangesSecurity issues with ports PortsPower switch to power switch daisy chain cable Appendix 7 Cable and connector specificationsWizard IP Plus to power switch cable 9pin D-type femalePermissible key presses Appendix 8 Hotkey sequence codesCreating macro sequences Appendix 9 Supported video modes Safety information General Public License LinuxEnd user licence agreement FCC Compliance Statement United States Radio Frequency EnergyEuropean EMC directive 89/336/EEC Canadian Department of Communications RFI statementFCC requirements for telephone-line equipment Certification notice for equipment used in CanadaNormas Oficiales Mexicanas NOM electrical safety statement Instrucciones de seguridad Index Connections BlackBox subsidiary contact details Country Web Site/Email Phone Fax
Top Page Image Contents