Fortress Technologies BreadCrumb Wireless Network manual Security

Page 41

Chapter 5. Using BCAdmin™

The checkbox marked "Enable" specifies whether a particular forward configuration is active. This allows an administrator to pre-configure port forwards and selectively enable or disable them in the future.

When a port forward has been configured, click the "Add" button to the right in order to add it to the current configuration.

You may add as many port forwards as necessary to a BreadCrumb.

Example: Port Forwarding Configuration for a Web Server

Suppose a web server exists somewhere within a BCWN, and one of the BCWN BreadCrumb devices is serving as a Gateway connected to the Internet. In order to allow users on the Internet to access the web server, the following port forward configuration is required:

1.Ext. Ports

We will allow Internet users to access the internal web server using port 80, the default for web traffic. The external port range is therefore 80-80.

2.Protocol

Web traffic uses TCP, not UDP, so only the TCP checkbox should be checked.

3.IP Address

This is the IP address of the web server on the BCWN. Note that this should be a fixed IP address, as addresses obtained via DHCP can change over time and thereby cause the port forwarding to fail.

4.To Ports

The web server on the BCWN is listening for connections on port 80, so the port range should be 80-80.

Once this port forward is enabled and saved to the BreadCrumb, Internet users may direct their web browsers to the Gateway BreadCrumb device’s external IP address in order to reach the web server on the BCWN.

Security

Several levels of security are available for the BreadCrumb Wireless Network, which may be used individually or in combination with one another. We are constantly adding security features, so please contact your Rajant Account Representative if you have specific needs not included in this section.

35

Image 41
Contents Rajant Corporation For the BreadCrumb Wireless Network ReleasePage Table of Contents Configuration Examples Using BCAdminTroubleshooting List of Figures List of TablesUser Information PrefacePurpose and Scope Introduction What is a BreadCrumb?Mesh a Definition Mobility through MeshingBreadCrumb Devices Mesh by Channel and Essid ExampleMeshing Example 1 Full Connectivity Issues Resolved New Features Performance / Process ImprovementsKnown Issues Upgrading to VersionUpgrading to Version Installing / Upgrading BCAdminUpgrading BreadCrumb Firmware Version 3 Power Input Flash Update Procedure for Version 2 and Version 3 SystemsUpgrading to Version XLV XLE ModelsAvailable BreadCrumb Models BreadCrumb MEModels BreadCrumb WE External ConnectorsBreadCrumb SE BreadCrumb WE External ConnectorsBreadCrumb XL BreadCrumb SE External ConnectorsBreadCrumb XLV BreadCrumb XL External ConnectorBreadCrumb XLE BreadCrumb XLV External ConnectorsBreadCrumb XLE External Connectors front Addressing Deployment ConsiderationsChannel Assignments BreadCrumb Device AddressesDeployment Considerations Physical Placement and Other ConsiderationsLine Of Sight Distance Device power To Device power DistanceBest-Case Distances by Radio Power Altitude WeatherInterference Screen Layout Using BCAdminTopology Area Using BCAdminBreadCrumb Device Name Anatomy of the BreadCrumb BoxAnatomy of the Client Box Time Since Last UpdateNumber of Peers Number of Clients802.11b Channel Line Color Anatomy of a Connection LineBCAdmin Line Styles Legend Redundant Connection Example Info AreaLink Detail Tabs Configuring Individual BreadCrumbsName General SettingsType LocationBattery Warning minutes Using BCAdmin ColorManual GPS Settings Latitude and Longitude AirFortress Encryption AES-256 and Set Access IDAccess Point Radio SettingsChannel MeshReachback Interface Reachback SettingsNone EthernetRadio 2 ad hoc Using BCAdmin RadioMode AutomaticDisabled Using BCAdmin Gateway IngressAlternate Gateway WEP Key11. BreadCrumb Properties Forwarding Tab Forwarding SettingsExample Port Forwarding Configuration for a Web Server SecurityKey Access Control Lists ACLsWEP Allow by default deny only forbidden devices Deny by default allow only permitted devicesRegistering AirFortress AES-256 Encryption with AirFortress14. Set Access ID Window Setting the Access IDZeroizing the Access ID Encrypting Wired TrafficHarris SecNET11 Enabling/Disabling AirFortress EncryptionBreadCrumb inactivity threshold seconds BCAdmin PreferencesSecNet11 Key Filling Mapping with Fugawi Tracker Configuration Examples Connecting Remote Wired LANsUnencrypted Point-to-Multipoint Encrypted Point-to-PointConfiguration Examples Convoy with UAV-Based Camera for Forward ObservationEncrypting a Video Feed Configuration Examples BreadCrumb Wireless Network TroubleshootingIndividual BreadCrumbs Sporadic Network ConnectivityBreadCrumb Device Cannot Connect to Bcwn Sporadic Network Connectivity IssuesRestoring Default Settings Factory Reset BCAdminTroubleshooting BreadCrumb-BCWN Connectivity IssuesFactory Reset Button Joint Exercise Network Case Study Military Exercise in ThailandCase Study Military Exercise in Thailand BCAdmin screen during exercise showing BreadCrumb networkBalloon with Camera and BreadCrumb Glossary BCAdmin802.11b BreadCrumb / BreadCrumb DevicePending peer MAC AddressPeer Reachback Table A-1. LED Status Indications Appendix A. Status Indicator LEDColor Blinking/Solid Status Table B-1 .11b Channel Frequency Table Appendix B. Radio Frequencies802.11b Channel Frequency GHz Appendix C. Customer Service