OMM BlueGate 1000, Administrator'S Manual

Page 1: ...iego CA 92121 Phone 858 453 8400 Fax 858 453 5735 Email Technical Support support widcomm com Information info widcomm com Media Access BlueGate 1000 Administrator s Guide May 8 2001 Document Number 010501 0619 BG AdminGuide Version 2 0 Confidential and Proprietary Information ...

Page 2: ...000 unit must be placed on a desk or table such that a minimum normal operating distance of 20 cm is maintained from the body at all times Copyright and Trademark Notices Copyright 2000 2001 Widcomm Inc Widcomm All rights reserved This documentation may be printed and copied solely in connection with developing products in accordance with the license agreement provided to you with this documentati...

Page 3: ...able 16 6 3 STATISTICS 16 6 3 1 IP 17 6 3 2 COM1 COM2 17 6 3 3 MAC 18 6 3 4 History of Active BT Connections 19 6 4 SHOW DHCP TABLE 19 6 5 PING 20 6 6 CONFIGURE BLUEGATE1000 20 6 6 1 Main Page 22 6 6 1 1 Please Enter Command Field 23 6 6 1 2 Setup BlueGate 23 6 6 1 2 1 Device Name 24 6 6 1 2 2 Service Name 24 6 6 1 2 3 IP Addr 24 6 6 1 2 4 Gateway 25 6 6 1 2 5 Subnet Mask 25 6 6 1 2 6 Primary DNS ...

Page 4: ...BlueGate 1000 Table of Contents May 8 2001 WIDCOMM Inc Proprietary and Confidential iii 6 6 1 7 Reset 34 6 6 1 8 Help 36 ...

Page 5: ... 7 21SERVICENAME 40 7 22STATISTICS 41 7 23SUBNET 41 7 24USERLOGIN 41 7 25USERNAME 41 7 26VERSION 41 8 TROUBLESHOOTING 42 8 1 GENERAL 42 8 2 ADMINISTRATIVE PASSWORD LOST 42 8 3 BLUETOOTH DEVICE ADDRESS ISMISSING 42 8 4 BT LIGHT DOES NOT BLINK 42 8 5 CAN T LOG ON AS ADMINISTRATOR 42 8 6 CANNOT CONNECT TO THE LAN ACCESS PROFILE SERVICE 43 8 7 CANNOT DISCOVER SERVICES 43 8 8 CLIENT DISPLAYS A SECURITY...

Page 6: ...IP internal Web page 17 Figure 14 The Statistics MAC internal Web page 18 Figure 15 Statistics History of Active BT Connections internal Web page 19 Figure 16 The Show DHCP Table internal Web page 19 Figure 17 The Ping internal Web page and the results inset of pinging a remote device 20 Figure 18 The logon screen 21 Figure 19 The Configuration internal Web page 22 Figure 20 The Configuration Setu...

Page 7: ... standard LAN Access Profile LAP portion of Bluetooth specification 1 0B Configuration information is saved in internal non volatile memory and preservedeven when power is lost An on board Web server is accessed to set up diagnose and configure BlueGate 1000 Microsoft Internet Explorer version 5 0 or later is used to access the internal Web server from a computer on the same network subnet From th...

Page 8: ...lueGate 1000 kit includes A BlueGate 1000 network access point An external power adapter A standard Ethernet cable with an RJ 45 connector on each end A compact disc that contains the BlueGate 1000 documentation and support software A Start Here quick start guide Figure 1 BlueGate 1000 box and contents ...

Page 9: ... where or how to establish a physical connection to the network Route the network cable away from other cables that may cause electrical interference Avoid routing the cable through areas where it will be stepped on tripped over or damaged in any way NOTE Telephone connections often use the RJ 45 connector some wall plates especially in office environments have both telephone and network jacks in ...

Page 10: ... name and password are restored to the factory default settings BlueGate 1000 can store up to seven user names and their associated passwords The first name in the list is Admin The remaining user names password entries are numbered User one through User six Admin holds the administrator s user name and password The information that it contains can be re configured see Section 6 6 1 4 The Admin fa...

Page 11: ... the new C BGPolicy directory 3 Run Microsoft Internet Explorer version 5 0 or higher and open BGIPLookup html from the C BGPolicy directory If the Java Run time Environment is not installed on your system you will be prompted to download and install JRE from the Sun Microsystem s Web site see Java Run time Environment Section 5 1 1 After completing the Java Run Time Environment installation retur...

Page 12: ... to download JRE and follow the on screen instructions 2 Close Internet Explorer 3 Open C ProgramFiles JavaSoft JRE 1 3 lib security java security in a text editor 4 Insert a blank line after the line policy url 2 file user home java policy 5 On the blank line enter policy url 3 file C BGPolicy BGPolicy This line points to the BGPolicy file in the C BGPolicy directory 6 Save the file The Java Run ...

Page 13: ...ernal Web Server May 8 2001 WIDCOMM Inc Proprietary and Confidential 7 Figure 3 The serial number label located on the bottom of BlueGate 1000 Figure 4 JRE applet and the IE dialog box inset that displays the IP address ...

Page 14: ...P address create a two node private network between a single computer and BlueGate 1000 1 Connect BlueGate 1000 and the computer see Figure 5 Solution One use standard Ethernet cables to establish a connection through a switch or hub Solution Two use a crossover cable to create a direct connection Figure 6 shows the connections for a crossover cable 2 Configure the computer Static IP address of 19...

Page 15: ...BlueGate 1000 Internal Web Server May 8 2001 WIDCOMM Inc Proprietary and Confidential 9 Figure 5 Two node private network options ...

Page 16: ...onnections 8 7 6 5 4 3 2 1 1 2 3 4 5 6 7 8 Jack Female Looking at the cavity in the wall Plug Male Looking at the connector with the cable running away from you Ethernet 10Base T and 100Base T use pairs 2 4 Pins 1 2 and 3 6 1 2 3 4 5 6 7 8 8 7 6 5 4 3 2 1 To Jack To Jack Plug 1 Plug 2 Ethernet 10 100 Crossover Cable ...

Page 17: ... In a non DHCP private network environment see section 5 2 for details about setting up a private network 1 Run Internet Explorer 2 Enter http 192 168 0 1 in the address area 3 Click Go or press the ENTER key BlueGate 1000 s internal home page opens in Internet Explorer In the figures in this section the Java applet BGIPLookup html was used to obtain the DHCP server assigned IP address and open th...

Page 18: ...lution Protocol entries Routing Table the active routing entries NS Lookup a list of recently accessed IP addresses and the host names associated with them Authentication Table the Bluetooth authentication level security table 6 2 1 BG Configuration The Status BG Configuration internal Web page Figure 8 displays Bluetooth and network settings including Bluetooth security configuration settings Aut...

Page 19: ...BlueGate 1000 Internal Web Server May 8 2001 WIDCOMM Inc Proprietary and Confidential 13 Figure 8 Status BG Configuration internal Web page ...

Page 20: ... 2 2 ARP Table The Status ARP Table internal Web page Figure 9 displays the active Address Resolution Protocol ARP entries in BlueGate 1000 including Entries for Ethernet devices communicating with BlueGate 1000 Proxy entries for Bluetooth devices Figure 9 Status ARP Table internal Web page ...

Page 21: ...ble internal Web page displays the active routing entries for loop back gateway and other network node Figure 10 Status Routing Table internal Web page 6 2 4 NS Lookup The Status NS Lookup internal Web page displays recently accessed IP addresses and the host names associated with them Figure 11 Status DNS Lookup internal Web page ...

Page 22: ...isplays the fixed Pin Code if a fixed Pin Code is enabled for all devices Figure 12 Status Authentication Table internal Web page 6 3 STATISTICS The statistics hyperlink displays an internal Web page that provides access to additional Web pages The additional pages contain read only information related to the network and the Bluetooth settings of BlueGate 1000 These functions display a snapshot of...

Page 23: ...e Statistics IP internal Web page displays the number of IP packets transmitted and received by BlueGate 1000 on the Ethernet and Bluetooth connections The CLEAR IP button resets the counters to zero Figure 13 The Statistics IP internal Web page 6 3 2 COM1 COM2 Reserved for use by WIDCOMM technicians ...

Page 24: ...COMM Inc Proprietary and Confidential 18 6 3 3 MAC The Statistics MAC internal Web page displays statistics related to the MAC Media Access Control layer The CLEAR MAC button resets the counters to zero Figure 14 The Statistics MAC internal Web page ...

Page 25: ... Statistics History of Active BT Connections internal Web page 6 4 SHOW DHCP TABLE The Show DHCP Table hyperlink displays the IP addresses assigned by the DHCP server for use by BlueGate 1000 and its clients If Network Address Translation NAT is enabled this page displays a single entry that corresponds to IP address of BlueGate 1000 If NAT is disabled this page displays multiple entries that corr...

Page 26: ...nging a remote device 6 6 CONFIGURE BLUEGATE 1000 The Configuration hyperlink provides access to the internal BlueGate 1000 configuration Web pages A logon screen Figure 18 appears when Configuration is clicked To logon 1 Enter the user name widcomm 2 Enter the password admin 3 Click the OK button to display the Configuration main page NOTE The administrator s user name and password are re configu...

Page 27: ...BlueGate 1000 Internal Web Server May 8 2001 WIDCOMM Inc Proprietary and Confidential 21 Figure 18 The logon screen ...

Page 28: ...tion displays an internal Web page used to setup the user names and passwords of authorized Bluetooth users IP Addresses for BT Devices displays an internal Web page that provides a means to enter IP addresses in three ranges Download displays an internal Web page that is used by customer support and other WIDCOMM technical personnel to download software to BlueGate 1000 Reset Resets BlueGate 1000...

Page 29: ...ter command field See Sections 6 6 1 1 and 7 for more information The available options are Bluetooth Settings User friendly Device Name Service Name Encryption Point to Multipoint Authorization Authentication Network Settings IP address Gateway Subnet Mask Primary Secondary DNS Server DHCP Enabled Disabled NAT Enabled Disabled Make changes to the configuration of BlueGate 1000 by entering informa...

Page 30: ...name Example LAN Access 6 6 1 2 3 IP Addr IP Addr is the IP address of BlueGate 1000 This box contains two fields Active IP Addr the IP address in use by the BlueGate 1000 If DHCP is enabled this is the address assigned to BlueGate 1000 by the network DHCP server the last time BlueGate 1000 was started or reset If DHCP is disabled this is the fixed IP address that was in non volatile memory the la...

Page 31: ...startup To change the gateway address Highlight the existing address and type the new one in dotted decimal notation Click the Update button Reset BlueGate 1000 Example 100 140 0 1 6 6 1 2 5 Subnet Mask The Subnet Mask is used to identify the subnet to which an IP address belongs This box contains two fields Active Subnet Mask the subnet mask in use by BlueGate 1000 If DHCP is enabled it is the su...

Page 32: ...ne in dotted decimal notation Click the Update button Reset BlueGate 1000 Example 100 140 10 1 6 6 1 2 7 Secondary DNS Secondary DNS is the IP address of the secondary Domain Name System server The secondary DNS server is used if the primary DNS server is either unavailable or unable to translate a submitted host name to an IP address This box contains two fields Active Secondary DNS the IP addres...

Page 33: ...CP is enabled Bluetooth devices get their IP address from the DHCP server DHCP is disabled the IP address for each Bluetooth device must be configured in BlueGate 1000 s NVRAM The table at the bottom of the Configuration Setup BlueGate internal Web page shows the possible combinations of DHCP and NAT enabled disabled 6 6 1 2 10 Encryption Encryption is the translation of data into a secret code En...

Page 34: ...13 Authentication Authentication is part of the process of granting or denying access to a resource Computer security systems are frequently based on a two step process Authentication ensures that a user is who he claims to be Authorization allows access to resources based on the user s identity Authentication in this context applies only to access to BlueGate 1000 it does not necessarily permit a...

Page 35: ...BlueGate 1000 Internal Web Server May 8 2001 WIDCOMM Inc Proprietary and Confidential 29 Figure 20 The Configuration Setup BlueGate internal Web page ...

Page 36: ...0 Internal Web Server May 8 2001 WIDCOMM Inc Proprietary and Confidential 30 Figure 21 The Configuration Setup BlueGate update page appears when the Update button is pressed to implement changes from the setup page ...

Page 37: ... Code can be assigned to each of up to seven Bluetooth devices To enter a Pin Code for an individual device Select the device number in the Select BT Device No drop down menu Enter the Bluetooth Device Address in the BD Addr field Enter the Pin Code in the PinCode field Click the Update button NOTE Individual PIN codes are only used if Require individual PinCode for each device is selected on the ...

Page 38: ...each authorized Bluetooth user In addition to the administrator up to seven users can be entered User names and passwords are case sensitive if Tony is the valid password and tony is entered access will be denied The first item in the drop down list Admin contains the user name and password that is allowed to access the BlueGate 1000 internal Web server Figure 23 The Configuration Authorization in...

Page 39: ...ote These IP addresses are only used when DHCP and NAT are both disabled see Sections 6 6 1 2 8 and 6 6 1 2 9 Valid IP addresses must be in the same subnet as BlueGate 1000 To enter an IP address range 1 Type the beginning IP address in dotted decimal notation in the Range Starting From field 2 Enter the number of IP address to allocate in the No of IP Addresses in this range field 3 Click the Upd...

Page 40: ...k OK in the dialog box to reset BlueGate 1000 Figure 25 The Configuration Reset confirmation dialog box The internal Web page shown in Figure 26 appears Click the IP address hyperlink after ten seconds to return to BlueGate 1000 s internal home page When BlueGate 1000 is reset it disconnects from the DHCP server The server may assign a different IP address to BlueGate 1000 when it reconnects If th...

Page 41: ...BlueGate 1000 Internal Web Server May 8 2001 WIDCOMM Inc Proprietary and Confidential 35 Figure 26 The internal Web page that appears after confirming a system reset ...

Page 42: ...Confidential 36 6 6 1 8 Help The Configuration Help internal Web page displays a list of commands that can be entered directly into the Please enter command field For information about how to use these commands see Section 7 Figure 27 The Configuration Help internal Web page ...

Page 43: ...for configuration changes to take affect 7 1 OR HELP Displays a list of the commands that may be entered in the Please enter command field and provides a brief description of each command 7 2 ARP Displays the active Address Resolution Protocol ARP table entries for BlueGate 1000 7 3 AUTHENTICATE Sets the authentication level Format AUTHENTICATE n n is 0 1 or 2 0 disables authentication 1 enables t...

Page 44: ...characters in length Format DEVICENAME ASCII string ASCII string is the actual user friendly name of the device Example DEVICENAME My BlueGate Network Access Point 7 8 DNS Sets the Domain Name System DNS Primary Secondary Server IP addresses Format DNS n aa bb cc dd n is 0 or 1 0 sets the primary DNS server IP address 1 sets the secondary DNS server IP address aa bb cc dd is the IP address in dott...

Page 45: ...It is only used when DHCP is disabled Format IPADDR n aa bb cc dd n must be 0 aa bb cc dd is the dotted decimal notated IP address of BlueGate 1000 Example IPADDR 0 192 168 0 50 7 14 MULTIPOINT Enables disables point to multipoint Format Multipoint n n is 0 or 1 1 enables point to multipoint 0 disables point to point Example Multipoint 1 7 15 NSLOOKUP Displays the DNS lookup table i e mapping of H...

Page 46: ...t default 32 bytes wTIMEOUT the length of time to wait for a response from the remote machine default 5 seconds iTTL the lifetime in seconds of the ping packet This value is contained in the IP Packet After TTL seconds the packet is removed from the network default 255 seconds f enables packet fragmentation if the packet size is greater than the maximum size allowed on the network The only require...

Page 47: ...00 is connected Format SUBNET aa bb cc dd aa bb cc dd is the decimal notated IP address of the subnet mask of the LAN gateway Example SUBNET 255 255 0 0 7 24 USERLOGIN Format USERLOGIN n n is 0 or 1 1 enables authorization 0 disables authorization Example USERLOGIN 1 7 25 USERNAME Sets the user name of the administrator and individual remote users of BlueGate 1000 The user name is limited in lengt...

Page 48: ... perform a service discovery on it 6 Select the LAN Access Using PPP service 7 Initiate a connection to the LAN Access Using PPP service on your BlueGate 1000 8 Test the connection using ping FTP an Internet browser or a similar network enabled utility The remainder of this section deals with specific problems 8 2 ADMINISTRATIVE PASSWORD LOST See Section 4 for information about how to restore the ...

Page 49: ...as all security turned OFF the connection will fail Check the encryption settings on both client and server if the client has encryption turned ON and BlueGate 1000 has encryption turned OFF or vice versa the connection may fail 8 9 DIFFERENTIATING BETWEEN MULTIPLE BLUEGATE 1000 DEVICES Multiple BlueGate 1000 units are installed in the same Bluetooth Neighborhood how can they be told apart Check t...

Page 50: ...upport Make sure the MAC address was entered correctly Make sure that your local DHCP server is on line and accessible If no DHCP server is available at power up BlueGate 1000 defaults to a static IP address of 192 168 0 1 Verify that there is not a network router between BlueGate 1000 and the computer running the Java applet BGIPLookup html Contact the network administrator for assistance The Jav...

Page 51: ...tion Before a connection is established one device must request a connection with another The second device accepts or rejects the connection The originator of the request is known as the client The device that accepts or rejects the request is known as the server Bluetooth devices can act as both client and server A client Bluetooth device runs a software program that requests a connection to ano...

Page 52: ...aptop John Q Public s PDA User friendly names make it easier to recognize the devices in the Bluetooth Neighborhood However because the name is easily changed it is not reliable for security purposes back Security Bluetooth offers five types or levels of security None all Bluetooth devices are allowed to connect Authorization the local device operator must authorize a remote device connection usua...

Page 53: ...ity back Authentication Authentication requires a passkey from the remote device attempting to access the local device An audible and or visual warning notifies the local operator that a remote device is attempting to access the system The local operator can open a dialog box that provides Name level security information the user friendly name of the device attempting access Device level security ...

Page 54: ...rvices are disabled the local computer is unable to accept connections from a remote computer The local machine can still initiate outgoing connections to other Bluetooth units but incoming connections will not be allowed Advantages of service level security Strong security Disadvantages of service level security It is non selective it shuts out all incoming Bluetooth connections for a particular ...

Page 55: ...services are started automatically when the computer boots The services then run as background tasks Typical Bluetooth services include Local Area Network access Dial Up networking File transfer between computers Object exchange between computers Serial port emulation FAX device support File system synchronization back NOTE BlueGate only supports one service Local Area Network access using PPP ...

Page 56: ...tooth devices within range The list can also be updated as necessary by selecting an on screen option back Service Discovery Even though a device is within radio range the local device will not be able connect to it if the remote device does not provide the requested service Service Discovery is the process of determining which Bluetooth services are available on the devices within radio range Con...

Page 57: ...ss service 3 Joe s PC sends a network connection request to Ann s Computer 4 Ann s Computer evaluates the request and determines that Joe s PC is permitted to use the network connection service PROVIDED THE CORRECT PASSWORD IS SUBMITTED 5 Ann s Computer queries Joe s PC for the password Authentication 6 Joe s PC returns the correct password and the network connection is established 7 Joe s PC uses...