Adder Technology AVX4016IP Placing AdderView CATx IP behind a router or firewall, Port settings

Page 43

Placing AdderView CATx IP behind a router or firewall

A possible point of contention between the AdderView CATx IP and a firewall can occasionally arise over the use of IP ports. Every port through the firewall represents a potential point of attack from outside and so it is advisable to minimise the number of open ports. The AdderView CATx IP usually uses two separate port numbers, however, these are easily changeable and can even be combined into a single port.

IMPORTANT: The correct configuration of routers and firewalls requires advanced networking skills and intimate knowledge of the particular network. Adder Technology cannot provide specific advice on how to configure your network devices and strongly recommend that such tasks are carried out by a qualified professional.

Port settings

As standard, the AdderView CATx IP uses two ports to support its two types of viewer:

Port 80 for users making contact with a web browser, and

Port 5900 for those using the VNC viewer.

When these port numbers are used, VNC viewers and web browsers will locate the AdderView CATx IP correctly using only its network address. The firewall/ router must be informed to transfer any traffic requesting these port numbers through to the AdderView CATx IP.

When a web server is also on the local network

If you need to change the VNC port number

If you change the VNC port to anything other than 5900, then each VNC viewer user will need to specify the port address as well as the IP address. For instance, if you set the VNC port to ‘11590’ and the IP address is ‘192.168.47.10’ then VNC viewer users will need to enter:

192.168.47.10::11590

(Note the double colons that separate the IP address and port number).

The firewall/router would also need to be informed to transfer all traffic to the new port number through to the AdderView CATx IP.

Addressing

When the AdderView CATx IP is situated within the local network, you will need to give it an appropriate local IP address, IP network mask and default gateway. This is achieved most easily using the DHCP server option which will apply these details automatically. If a DHCP server is not available on the network, then these details need to be applied manually in accordance with the network administrator.

The firewall/router must then be informed to route incoming requests to port 5900 or port 80 (if available) through to the local address being used by the AdderView CATx IP.

  

Port 80 is the standard port used by web (HTTP) servers. If the AdderView CATx IP is situated within a local network that also includes a web server or any other device serving port 80 then, if you want to use the web browser interface from outside the local network environment, the HTTP port number of the AdderView CATx IP may need to be changed.

When you change the HTTP port to anything other than 80, then each remote browser user will need to specify the port address as well as the IP address. For instance, if you set the HTTP port to ‘8000’ and the IP address is ‘192.168.47.10’ then browser users will need to enter:

http://192.168.47.10:8000

(Note the single colon that separates the IP address and the port number).

The firewall/router would also need to be informed to transfer all traffic to the new port number through to the AdderView CATx IP.

AdderView CATx IP has a local address and net mask, i.e.

IP address: 192.168.0.3

Net mask: 255.255.255.0

Remote user with VNC viewer accesses IP address: 129.7.1.10 and automatically uses port 5900.

Firewall/router address: 129.7.1.10

The firewall routes the request from the VNC viewer on port 5900 through to the AdderView CATx IP at local address 192.168.0.3

 



42

Page 42 Page 44
Image 43
Page 42 Page 44
Contents AdderView CATx Contents Re-synchronise mouse Auto calibrateIndex Introduction Front panel buttons AdderView CATx features front and rearWhat you may additionally need What’s in the boxRack brackets MountingConnections Cascading Multiple units Remote switching ControlConnections Modem Multiple video Isdn port Head connectionsTo connect the local user port Local userCable lengths for remote user locations Remote user via X100/X200 extenderTo connect a remote user To connect the Global user IP network port Global user IP network portTo connect a computer system Computer system via CAMComputer video compensation for details To connect a modem or Isdn adapter Modem/ISDN portTo connect the power supply Power in connectionTo connect and address the switch boxes Power control portSystem, called Adder Port Direct Cascading multiple unitsSee also How cascade connections operate CA02 Addressing computers in a cascadeTips for successful cascading Connecting AdderView CATx units in cascadeTo connect units in cascade Testing specific links to cascaded computers Using cascaded computersTo test a specific link Multiple video head connections Host computer port/channel Video off Remote switching controlOverall initial configuration Hotkeys Configuration menusTo access the configuration menu local and remote users To access the configuration menu global usersTo set an Admin password General security and configuration stepsConfiguration menus layout To enable general securityRegistering users edit user list Access to all computers Press Access to no computers PressTo create/edit user accounts Registering computers edit computer list Tips when creating/editing computer entriesTo create/edit computer entries Video compensation See Remote user skew adjustment for detailsTo apply computer video compensation Computer video compensationIf the image controls cannot provide a crisp image Remote user video compensationTo display a suitable high contrast image To apply remote user video compensationCreating a skew test pattern Remote user skew adjustmentTo use skew adjustment Using the supplied skew patternNum Lock for Red, Caps Lock for Green To define an autoscan list To select an autoscan modeAutoscanning To select an autoscan periodPreparations for configuration save/load Saving and restoring configuration settingsTo transfer configuration settings Hints for editing To edit the configuration settingsConfiguration screens What to do if the Admin password has been forgottenTo reset AdderView CATx models To reset the AdderView CATx IP modelsRecognising an IntelliMouse-style mouse Which restore setting do I use?To restore mouse operation when hot plugging Hot plugging and mouse restorationTo use the initial IP-configuration sequence Initial IP configurationTo configure IP-specific settings To configure IP details from a global user location IP configuration by global userUser Accounts AdderView CATx IP encryption settings Encryption settingsViewer encryption settings Positioning AdderView CATx IP in the network Networking issuesPlacing AdderView CATx IP behind a router or firewall Port settingsAddressing DNS addressing To discover a DHCP-allocated IP addressPorts By configuration page via viewerPlacing AdderView CATx IP alongside the firewall Ensuring sufficient securityTo control two or more ports simultaneously Power switching configurationPower control sequences To configure the power sequences for each host computerKvmadmin -setusers users.csv Kvmadmin utilityKvmadmin command ip address parameters Kvmadmin -getconfig kvm1.cfgTo use the KVM Firmware Uploader utility Performing upgradesItems required to use the upgrade utility Upgrading AdderView CATx models and CAMsIssues to consider when performing flash upgrades Select the items to be upgradedSelect the upgrade file to be used Commence the upgradeUpgrading AdderView CATx IP models To upgrade AdderView CATx IP modelsAdderView CATx IP models Accessing the AdderView CATxFront panel controls AdderView CATx modelsSelecting a computer Local and remote user accessTo gain access as a local or remote user To select a computer using the front panel controlsKeep Pressed down until all other Numbers have been entered To select a computer using hotkeysStandard hotkeys Above or for even longer cascaded computersTo select a computer using mouse buttons To select a computer using the on-screen menuTo select a computer using mouse buttons Advanced method Selecting cascaded computers Logging in and outConfirmation box Routing status To change banner colours or disable the bannerTo use the Routing status feature Reminder bannerTo switch a computer on or off Power switching via configuration menuUser preferences and functions Global user access To access via the VNC viewer Global user access via VNC viewerTo download the VNC viewer To access via your web browser Global user access via web browserWhen using the viewer window Using the viewer windowMenu bar To select a host ConfigureMouse pointers Host selectionRe-synchronise mouse Access mode shared/privatePower switching via viewer Auto calibrateResync Mouse Single Mouse ModeControls Mouse ControlKeyboard Control When entering codesVideo Settings KVM switch menuSystem information Using automatic configurationsIncreased by 50% when a slow link is detected Setting the Threshold manuallyTo enter a port number in a Web browser Access via dial up modem or Isdn linkIf you need to enter a port number To initiate a dial up linkLinux Viewer encryption settingsSupported web browsers WindowsUS +1 888 275 TroubleshootingWhen logging on using VNC viewer, I cannot enter a username Getting assistanceTo access the configuration menus Appendix 1 Configuration menusConfigure IP port Functions User Preferences Screen Saver Mouse SwitchingAutoscan Mode Global PreferencesMouse Type User TimeoutOSD Dwell Time RS232 Mouse TypeExclusive Use Setup OptionsKeypad Controls LanguageAdd Computers Settings AUTO, ManualAutomatic Logout AudioDDC Options DDC Source Settings AUTO, LOCAL, DefaultDDC Refresh Settings AT START, Disabled Advanced OptionsForce Mode Settings DISABLED, Enabled Country Code Settings AUTO, MANUAL, DisabledDefault Country Setup OptionsBaud rate, initialisation string, etc Configure IP portIP admin password, encryption settings, etc IP address, net mask, VNC port, etcUnit Configuration Network Configuration Modem Configuration What is IP access control? Clearing IP access controlReset Configuration To reset the AdderView CATx IP configurationTo access the remote configuration pages Appendix 2 Configuration pages via viewerUser accounts Firmware Version Unit configurationAdmin Password Hardware VersionAdvanced unit configuration Time & date configuration IP Gateway Network configurationIP Access Control IP Network MaskTo edit/remove access control entries Setting IP access controlTo define a new IP access control entry To reorder access control entriesPower control port Serial port configurationModem port To create a new host entry Host configurationErase Host Configuration Add entry for unrecognised hostAdder Port Direct Port/host addressing using Adder Port DirectExamples For further details To get here Logging and statusTo copy and paste the log Syslog Server IP AddressPreferred encoding Appendix 3 VNC viewer connection optionsColour/Encoding Auto selectCustomise Enable all inputsDisable all inputs view-only mode InputsMisc ScalingLoad / Save Defaults ReloadDefaults Save IdentitiesAppendix 4 VNC viewer window options Encoding and colour level Appendix 5 Browser viewer optionsSecurity Want to know more? Appendix 6 Addresses, masks and portsIP addresses Net masksNet masks the binary explanation 154Address ranges Calculating the mask for IP access controlSingle locations All locationsPorts Security issues with portsPower switch to power switch daisy chain cable Appendix 7 Cable and connector specificationsRS232 serial flash upgrade cable Multi-head synchronisation cable Permissible key presses Appendix 8 Hotkey sequence codesCreating macro sequences Appendix 9 Supported video modes Safety information WarrantyGeneral Public License Linux End user licence agreement Canadian Department of Communications RFI statement Radio Frequency EnergyEuropean EMC directive 89/336/EEC FCC Compliance Statement United States111 Index 113 114
Top Page Image Contents