- No category
advertisement
USER MANUAL
Peplink Balance Series
21
System Settings
21.1 Admin Security
There are two user accounts available for accessing the Web Admin. Usernames are admin and user.
They represent two user levels- admin has full administration access, while user is a read-only account.
The read-only account can only access the device's status information and cannot make any change on the device.
Admin Account UI User Account UI
A web login session will be logged out automatically when it has been idle longer than the Web Session
Timeout. Before the session expires, you may click the Logout button in the Web Admin to exit the session
0 hours 0 minutes signifies an unlimited session time. This setting should be used only in special situations, as it will lower the system security level if users do not logout before closing the browser.
Default: 4 hours 0 minutes.
For security reason, after logging in to the Web Admin Interface for the first time, it is recommended to change the administrator password.
Configuring the administration interface to be accessible only from the LAN can further improve system security.
Administrative Settings configuration is located at: System >Admin Security
http://www.peplink.com
-151 / 199 - Copyright © 2013 Peplink
USER MANUAL
Peplink Balance Series
Admin Settings
Router Name
This field allows you to define a name for this Peplink Balance unit.
By default, Router Name is set as Balance_XXXX, where XXXX refers to the last 4 digits of the serial number of that balance unit.
Admin User Name
It is set as admin by default and is not customizable.
Admin Password
This field allows you to specify a new administrator password.
http://www.peplink.com
-152 / 199 - Copyright © 2013 Peplink
USER MANUAL
Peplink Balance Series
Confirm Admin
Password
This field allows you to verify and confirm the new administrator password.
Read-only User
Name
It is set as user by default and is not customizable.
User Password
This field allows you to specify a new user password. Once the user password is set, the feature of read-only user will be enabled.
Confirm User
Password
This field allows you to verify and confirm the new user password.
Web Session
Timeout
This field specifies the number of hours and minutes that a web session can remain idle before the balance terminate sits access to Web Admin Interface.
By default, it is set as 4 hours.
Authentication by
RADIUS
With this box is checked, Web Admin will authenticate using an external RADIUS server.
Authenticated users are treated as "admin" users with full read-write permission. Local
"admin" and "user" accounts will be disabled. When the device is not able to communicate with the external RADIUS server, local accounts will be enabled again for emergency access.
Authentication options will be available once this box is checked.
Auth Protocol
This specifies the authentication protocol used. Available options are MS-CHAP v2 and
PAP.
This specifies the access address of the external RADIUS server.
Auth Server
Auth Server
Secret
This is the secret for accessing the RADIUS server.
Auth Timeout
This option specifies the time value for authentication timeout.
Accounting Server
This specifies the access address of the external Accounting server.
Accounting Server
Secret
This is the secret for accessing the Accounting server.
Network
Connection
This option is for specifying the network connection which will be used for authentication connection. Users can choose from LAN, WAN and VPN connections.
Security
This option is for specifying the protocol(s) through which the Web Admin Interface can be accessible:
HTTP
HTTPS
HTTP/HTTPS
Web Admin Port
These fields are for specifying the port number at which the Web Admin Interface can be accessible.
Web Admin
Access
This option is for specifying the network interfaces through which the Web Admin Interface can be accessible:
LAN only
http://www.peplink.com
-153 / 199 - Copyright © 2013 Peplink
USER MANUAL
Peplink Balance Series
LAN/WAN
If LAN/WAN is chosen, a WAN Connection Access Settings form will be displayed.
WAN Connection Access Settings
This field allows you to restrict web admin access only from defined IP subnets.
Any - Allow web admin accesses to be from anywhere, without IP address restriction.
Allow access from the following IP subnets only - Restrict web admin access only from the defined IP subnets. When this is chosen, a text input area will be displayed beneath:
Allowed Source IP
Subnets
The allowed IP subnet addresses should be entered into this text area. Each IP subnet must be in form of w.x.y.z/m
Where w.x.y.z is an IP address (e.g. 192.168.0.0), and m is the subnet mask in CIDR format, which is between 0 and 32 inclusively. For example:
192.168.0.0/24
To define multiple subnets, separate each IP subnet one in a line.
For example:
192.168.0.0/24
10.8.0.0/16
This is to choose which WAN IP address(es) the web server should listen on.
Allowed WAN IP
Address(es) http://www.peplink.com
-154 / 199 - Copyright © 2013 Peplink
advertisement
Related manuals
advertisement
Table of contents
- 5 INTRODUCTION AND SCOPE
- 6 GLOSSARY
- 7 PRODUCT COMPARISON CHART
- 11 PRODUCT FEATURES
- 11 Supported Network Features
- 12 Other Supported Features
- 14 PACKAGE CONTENTS
- 14 Peplink Balance
- 15 PEPLINK BALANCE OVERVIEW
- 15 Peplink Balance
- 38 INSTALLATION
- 38 Preparation
- 38 Constructing the Network
- 39 Configuring the Network Environment
- 40 BASIC CONFIGURATION
- 40 Connecting to Web Admin Interface
- 41 Configuration with Setup Wizard
- 43 Advanced Setup
- 45 CONFIGURATION OF LAN INTERFACE
- 49 DROP‐IN MODE
- 52 CONFIGURATION OF WAN INTERFACE(S)
- 54 Connection Method(s)
- 60 Physical Interface Settings
- 62 WAN Health Check
- 65 Bandwidth Allowance Monitor
- 66 Additional Public IP Settings
- 67 Dynamic DNS Settings
- 69 Settings
- 73 Peplink Balance Behind NAT Router
- 74 Status
- 75 IPSEC VPN
- 75 IPsec VPN Settings
- 78 IPsec Status
- 78 MANAGEMENT OF OUTBOUND TRAFFIC TO WAN
- 78 Outbound Policy
- 80 Custom Rules for Outbound Policy
- 86 INBOUND ACCESS
- 86 Definition of Port Forwarding
- 88 Definition of Servers on LAN
- 89 Inbound Access Services
- 103 Reverse Lookup Zones
- 106 DNS Record Import Wizard
- 109 NAT MAPPINGS
- 111 WLAN CONTROLLER
- 111 WLAN Information
- 116 AP Management
- 117 Wireless Networks
- 122 Captive Portal Management
- 129 AP Profile
- 132 User Groups
- 133 Bandwidth Control
- 134 Application
- 136 FIREWALL
- 136 Outbound and Inbound Firewall Rules
- 142 Web Blocking
- 143 MISCELLANEOUS SETTINGS
- 143 High Availability
- 146 PPTP Server
- 148 Service Forwarding
- 150 Service Passthrough
- 151 SYSTEM SETTINGS
- 151 Admin Security
- 155 Firmware Upgrade
- 157 Email Notification
- 159 Remote Syslog
- 162 InControl
- 163 Configuration
- 164 Reboot
- 164 TOOLS
- 164 Ping Test
- 166 Traceroute Test
- 166 Test
- 167 CLI (Command Line Interface Support)
- 168 STATUS
- 168 Device
- 169 Active Sessions
- 171 Client List
- 172 Access Point
- 172 WINS Client
- 172 Status
- 173 Event Log
- 174 Bandwidth
- 179 APPENDIX A. RESTORATION OF FACTORY DEFAULTS
- 180 APPENDIX B. ROUTING UNDER DHCP, STATIC IP, AND PPPOE
- 180 Routing via Network Address Translation (NAT)
- 181 Routing via IP Forwarding
- 182 APPENDIX C. CASE STUDIES
- 182 Performance Optimization
- 184 Maintaining the Same IP Address throughout a Session
- 185 Bypassing the Firewall to Access Hosts on LAN
- 186 Inbound Access Restriction
- 187 Outbound Access Restriction
- 188 APPENDIX D. TROUBLESHOOTING
- 190 APPENDIX E. PRODUCT SPECIFICATIONS
- 190 Peplink Balance 20 and
- 191 Peplink Balance 210 and
- 192 Peplink Balance
- 198 APPENDIX F. DECLARATION