Fortress Technologies BreadCrumb Wireless Network manual AES-256 Encryption with AirFortress

Page 44

Chapter 5. Using BCAdmin™

These buttons allow individual devices to be added to or removed from the currently selected device list.

Note: The BreadCrumbs and Administrators tabs in the ACL are automatically merged into the Permitted Devices and Forbidden Devices lists. Separate tabs are only provided in order to ensure that the administrator has fully considered the ramifications of setting an ACL.

Warning

Be sure to include the BCAdmin workstation in the ACL so that you can continue administering the network!

AES-256 Encryption with AirFortress

Fortress Technologies provides FIPS 140-2-certified encryption via its AirFortress secure client software. This can be installed on any number of client devices without any modifications whatsoever to the BCWN configuration. However, in order for client devices to receive IPv4 addresses from the BreadCrumb devices’ embedded DHCP servers, or for an AirFortress-encrypted workstation to communicate to a BreadCrumb device using BCAdmin, Rajant provides support for AirFortress encryption within the BreadCrumb devices themselves.

Contact your Rajant Account Representative to obtain the AirFortress secure client software for your laptops and handheld computers.

Important: When a BreadCrumb device is running with AirFortress enabled internally, only clients using the AirFortress client may communicate over the BCWN.

Tip: For more information about the AirFortress secure client, visit http://www.fortresstech.com.

Registering AirFortress

In order to enable AirFortress support on a BreadCrumb device, its internal driver must be activated via a one-time registration process. To do this, right-click on a BreadCrumb device in BCAdmin and choose Diagnostics and Maintenance, then Register AirFortress Encryption. If this menu option is not presented, Fortress is already registered on that BreadCrumb device.

38

Image 44
Contents For the BreadCrumb Wireless Network Release Rajant CorporationPage Table of Contents Configuration Examples Using BCAdminTroubleshooting List of Tables List of FiguresUser Information PrefacePurpose and Scope What is a BreadCrumb? IntroductionMobility through Meshing Mesh a DefinitionBreadCrumb Devices Mesh by Channel and Essid ExampleMeshing Example 1 Full Connectivity New Features Performance / Process Improvements Issues ResolvedKnown Issues Upgrading to VersionUpgrading to Version Installing / Upgrading BCAdminUpgrading BreadCrumb Firmware Flash Update Procedure for Version 2 and Version 3 Systems Version 3 Power InputUpgrading to Version Models XLV XLEAvailable BreadCrumb Models BreadCrumb MEModels External Connectors BreadCrumb WEBreadCrumb WE External Connectors BreadCrumb SEBreadCrumb SE External Connectors BreadCrumb XLBreadCrumb XL External Connector BreadCrumb XLVBreadCrumb XLV External Connectors BreadCrumb XLEBreadCrumb XLE External Connectors front Deployment Considerations AddressingChannel Assignments BreadCrumb Device AddressesDeployment Considerations Physical Placement and Other ConsiderationsLine Of Sight Distance Device power To Device power DistanceBest-Case Distances by Radio Power Altitude WeatherInterference Using BCAdmin Screen LayoutUsing BCAdmin Topology AreaAnatomy of the BreadCrumb Box BreadCrumb Device NameTime Since Last Update Anatomy of the Client BoxNumber of Peers Number of ClientsAnatomy of a Connection Line 802.11b Channel Line ColorBCAdmin Line Styles Legend Info Area Redundant Connection ExampleConfiguring Individual BreadCrumbs Link Detail TabsGeneral Settings NameType LocationUsing BCAdmin Color Battery Warning minutesManual GPS Settings Latitude and Longitude AirFortress Encryption AES-256 and Set Access IDRadio Settings Access PointChannel MeshReachback Settings Reachback InterfaceNone EthernetUsing BCAdmin Radio Radio 2 ad hocMode AutomaticUsing BCAdmin Gateway Ingress DisabledAlternate Gateway WEP KeyForwarding Settings 11. BreadCrumb Properties Forwarding TabSecurity Example Port Forwarding Configuration for a Web ServerKey Access Control Lists ACLsWEP Deny by default allow only permitted devices Allow by default deny only forbidden devicesAES-256 Encryption with AirFortress Registering AirFortressSetting the Access ID 14. Set Access ID WindowEncrypting Wired Traffic Zeroizing the Access IDHarris SecNET11 Enabling/Disabling AirFortress EncryptionBreadCrumb inactivity threshold seconds BCAdmin PreferencesSecNet11 Key Filling Mapping with Fugawi Tracker Connecting Remote Wired LANs Configuration ExamplesUnencrypted Point-to-Multipoint Encrypted Point-to-PointConvoy with UAV-Based Camera for Forward Observation Configuration ExamplesEncrypting a Video Feed Configuration Examples Troubleshooting BreadCrumb Wireless NetworkIndividual BreadCrumbs Sporadic Network ConnectivitySporadic Network Connectivity Issues BreadCrumb Device Cannot Connect to BcwnBCAdmin Restoring Default Settings Factory ResetTroubleshooting BreadCrumb-BCWN Connectivity IssuesFactory Reset Button Case Study Military Exercise in Thailand Joint Exercise NetworkBCAdmin screen during exercise showing BreadCrumb network Case Study Military Exercise in ThailandBalloon with Camera and BreadCrumb BCAdmin Glossary802.11b BreadCrumb / BreadCrumb DevicePending peer MAC AddressPeer Reachback Table A-1. LED Status Indications Appendix A. Status Indicator LEDColor Blinking/Solid Status Table B-1 .11b Channel Frequency Table Appendix B. Radio Frequencies802.11b Channel Frequency GHz Appendix C. Customer Service