SkyControl EMS Administration Guide TLT-CS-094-ADM-SkyControl Copyright © Trilliant, Inc. 2006–2010. All rights reserved. The products and services described in this document are products and services of Trilliant or its licensors. No part of this document may be used except for the express purposes intended by Trilliant, nor may it be distributed, reproduced, translated, transferred, disclosed, published, performed or derivative works created of it, nor may it otherwise be provided to third parties without the prior written consent of an officer of Trilliant. Trilliant reserves the right to make changes to this document or to any products and services described herein at any time with or without notice. Trilliant does not assume any responsibility or liability arising out of the application or use of this document or any product or service described herein, except as expressly agreed to in writing by Trilliant, nor does the purchase or use of a product or service from Trilliant convey a license under any patent rights, copyrights, trademark rights, or any other of the intellectual property rights of Trilliant or third parties. The products and services described in this document are private, commercial and proprietary to Trilliant and its licensors. Use, duplication, or disclosure by the U.S. Government is subject to all applicable. The software described in this document is only to be furnished under a separate license agreement or nondisclosure agreement, and no express or implied license to such software is intended by this document. The software may be used or reproduced only in accordance with the terms of the applicable agreement with Trilliant. It is a violation of Trilliant’s proprietary rights to reproduce the software on any medium except as specifically allowed in the license or nondisclosure agreement, or to otherwise use, distribute, reproduce, publish, display, perform or create derivative works of such software. Trilliant, SkyAccess, SkyConnector, SkyControl, SkyExtender, SkyGateway, SkyPilot, SkyPilot Networks, and the SkyPilot logo are trademarks of Trilliant, Inc. Any third-party mentioned in this document may be trademarks of their respective owners. SkyPilot EMS 1.6.2.4 Document Last Revised: July 30, 2010 Contents About This Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .vii Audience and Purpose . . . . . . . . . . . . . . . . . . . . . . . . . . . . viii How This Guide Is Organized . . . . . . . . . . . . . . . . . . . . . . . . viii Conventions Used in This Guide . . . . . . . . . . . . . . . . . . . . . . . ix Text Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ix Syntax Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . x Chapter 1 Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 System Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2 Hardware Components . . . . . . . . . . . . . . . . . . . . . . . . . . 2 Software Components. . . . . . . . . . . . . . . . . . . . . . . . . . . 5 About Operations, Administration, and Maintenance. . . . . . . . . . 6 OAM Tasks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7 OAM Tools and Resources . . . . . . . . . . . . . . . . . . . . . . . . 8 Using SkyPilot EMS. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9 Logging in to the EMS Web Client . . . . . . . . . . . . . . . . . . . 9 The SkyPilot EMS Interface . . . . . . . . . . . . . . . . . . . . . . . 10 Using the Display Pane . . . . . . . . . . . . . . . . . . . . . . . . . 11 Using the Menus . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15 Using the Toolbar Buttons . . . . . . . . . . . . . . . . . . . . . . . 18 Searching. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19 Chapter 2 Operations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .21 Provisioning Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22 Choosing a Device Provisioning Mode . . . . . . . . . . . . . . . 22 Provisioning Parameters Overview. . . . . . . . . . . . . . . . . . . . . 28 Required Provisioning Parameters . . . . . . . . . . . . . . . . . . . . . 30 Frequency . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31 Domains. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31 Virtual Local Area Networks (VLANs). . . . . . . . . . . . . . . . . 32 Ethernet Interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34 Optional Provisioning Parameters . . . . . . . . . . . . . . . . . . . . . 35 Proxy Proxy ARP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36 Radar Detection. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36 SNMP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38 Time Zones. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39 Quality of Service (QoS) . . . . . . . . . . . . . . . . . . . . . . . . . 40 Filtering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44 Access Points. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50 SkyControl EMS Administration Guide | iii General Provisioning Guidelines . . . . . . . . . . . . . . . . . . . . . . .61 Automatic Provisioning . . . . . . . . . . . . . . . . . . . . . . . . . . . .61 Automatically Provisioning All Network Devices. . . . . . . . . .61 Automatically Provisioning a Device . . . . . . . . . . . . . . . . .63 Manual Provisioning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .66 Manual Provisioning Procedure . . . . . . . . . . . . . . . . . . . .67 Choosing a Manual Provisioning Method . . . . . . . . . . . . . .68 Command-Line Interface Provisioning . . . . . . . . . . . . . . . .69 Device Web Interface Provisioning . . . . . . . . . . . . . . . . . .69 Chapter 3 Administration. . . . . . . . . . . . . . . . . . . . . . . . . . . .71 About Software Images . . . . . . . . . . . . . . . . . . . . . . . . . . . .72 Managing Software Change Schedules. . . . . . . . . . . . . . . . . . .73 Managing Customers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .75 Managing Access Control Lists . . . . . . . . . . . . . . . . . . . . . . . .77 Managing Network Security. . . . . . . . . . . . . . . . . . . . . . . . . .79 Managing Users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .79 Changing Passwords . . . . . . . . . . . . . . . . . . . . . . . . . . .80 About Reports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .81 About the SkyPilot MIB . . . . . . . . . . . . . . . . . . . . . . . . . .81 Data Collection Tasks . . . . . . . . . . . . . . . . . . . . . . . . . . .81 Chapter 4 Maintenance . . . . . . . . . . . . . . . . . . . . . . . . . . . . .83 Monitoring a Network’s Topology with SkyControl . . . . . . . . . . .84 Monitoring Events and Alarms . . . . . . . . . . . . . . . . . . . . . . . .85 Configuring Alarms . . . . . . . . . . . . . . . . . . . . . . . . . . . .86 Performance Threshold Operations . . . . . . . . . . . . . . . . . .87 Configuring Trap Parsers . . . . . . . . . . . . . . . . . . . . . . . . .88 Configuring Northbound Trap Receivers. . . . . . . . . . . . . . .90 Monitoring Link States . . . . . . . . . . . . . . . . . . . . . . . . . . . . .93 Managing IP Addresses. . . . . . . . . . . . . . . . . . . . . . . . . . . . .94 Adding Devices to the DHCP Configuration. . . . . . . . . . . . .95 Monitoring DHCP Activity . . . . . . . . . . . . . . . . . . . . . . . .95 Configuring DHCP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .95 DHCP Subnet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .96 DHCP Host . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .98 Using Utilities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .99 Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 100 Power-On Problems . . . . . . . . . . . . . . . . . . . . . . . . . . . 101 Ethernet Connectivity Problems . . . . . . . . . . . . . . . . . . . 102 IP Connectivity Problems. . . . . . . . . . . . . . . . . . . . . . . . 103 SkyGateway Transmission Problems . . . . . . . . . . . . . . . . 107 Link Failure Problems . . . . . . . . . . . . . . . . . . . . . . . . . . 109 Chapter 5 Provisioning With SkyControl . . . . . . . . . . . . . . . . .121 Configuring Domains. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 122 Configuring Access Point Profiles . . . . . . . . . . . . . . . . . . . . . 122 Access Point Radius Profile Operations . . . . . . . . . . . . . . . 123 Access Point SSID Profile Operations . . . . . . . . . . . . . . . . 123 Access Point AP Profile Operations . . . . . . . . . . . . . . . . . 123 Access Point SkyAccess Profile Operations. . . . . . . . . . . . . 125 iv | Contents Configuring Node Profiles . . . . . . . . . . . . . . . . . . . . . . . . . .126 Node Profile Elements. . . . . . . . . . . . . . . . . . . . . . . . . .126 Default Node Profile Elements. . . . . . . . . . . . . . . . . . . . .130 Node Profile Attribute Elements . . . . . . . . . . . . . . . . . . .135 Configuring Nodes. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .136 Configuring VLANs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .140 Configuring Proxy Proxy ARPs. . . . . . . . . . . . . . . . . . . . . . . .141 Proxy Proxy ARP Setting Elements . . . . . . . . . . . . . . . . . .141 Proxy Proxy ARP Exclusion Elements. . . . . . . . . . . . . . . . .142 Configuring SNMP Parameters . . . . . . . . . . . . . . . . . . . . . . .143 SNMP Community String Elements. . . . . . . . . . . . . . . . . .143 SNMP Trap Receiver Elements. . . . . . . . . . . . . . . . . . . . .144 Configuring QoS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .145 Configuring Web Servers. . . . . . . . . . . . . . . . . . . . . . . . . . .145 Appendix A Google Earth Management System (GEMS) Reference .147 Starting Google Earth Management System. . . . . . . . . . . . . . .148 Downloading and Installing Icons . . . . . . . . . . . . . . . . . . . . .149 Creating and Viewing Network Profiles . . . . . . . . . . . . . . . . . .151 Element View Profile. . . . . . . . . . . . . . . . . . . . . . . . . . .151 Topology View Profile . . . . . . . . . . . . . . . . . . . . . . . . . .155 Quick Launch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .158 Appendix B Configuring a Firewall for SkyPilot Operations . . . . . .161 Appendix C Access Point Command-Line Interface. . . . . . . . . . . .163 Checking VLAN Status. . . . . . . . . . . . . . . . . . . . . . . . . . . . .163 Accessing the Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . .163 Contents | v vi About This Guide This document contains guidelines for performing operations, administration, and maintenance tasks for SkyPilot™ network deployments. Topics discussed include using SkyControl™ to monitor a SkyPilot network and to provision SkyPilot devices, and troubleshooting. This chapter explains what’s in this guide and how it’s organized. Chapter Highlights (cid:32) Audience and purpose (cid:32) How this guide is organized (cid:32) Conventions used in this guide SkyControl EMS Administration Guide | vii Audience and Purpose This guide is intended for administrators who are responsible for managing a SkyPilot network. It explains ongoing operations, administration, and maintenance tasks, such as provisioning SkyPilot devices, customizing a SkyPilot network, and monitoring SkyPilot network status. This guide assumes administrator-level knowledge of IP networks, basic knowledge of wireless networking, and a familiarity with the information in Getting Started with the SkyPilot Network. Additionally, the procedures assume that SkyPilot devices have already been successfully installed according to the procedures in their installation guides. (Complete documentation is available on the Trilliant SkyPilot website at www.skypilot.trilliantinc.com/support/.) How This Guide Is Organized This guide is organized as follows: (cid:32) Chapter1, “Introduction,” describes the SkyPilot Networks hardware and software components; the operations, administration, and maintenance tasks that you can perform; and how to use the SkyPilot EMS Web interface application. (cid:32) Chapter2, “Operations,” describes how to provision SkyPilot devices (either manually or automatically) and provides guidelines for configuring SkyPilot devices. (cid:32) Chapter3, “Administration,” describes routine management tasks, such as managing software and customers, configuring security, and creating reports, and directs you to the corresponding detailed procedures. (cid:32) Chapter4, “Maintenance,” describes techniques for maintaining your SkyPilot network, as well as solutions to common troubleshooting issues. (cid:32) Appendix5, “Provisioning With SkyControl,” provides detailed instructions for configuring provisioning parameters for automatically provisioned devices, and for performing administrative and maintenance functions for your SkyPilot network. viii | About This Guide (cid:32) AppendixA, “Google Earth Management System (GEMS) Reference,” provides instructions for preparing network profiles for viewing in Google Earth. (cid:32) AppendixB, “Configuring a Firewall for SkyPilot Operations,” tells you which ports to open for data traffic from SkyPilot devices if your server is behind a firewall. (cid:32) AppendixC, “Access Point Command-Line Interface,” provides instructions for accessing an access point’s Linux command shell. Conventions Used in This Guide This section describes the text and syntax conventions used in this guide. Text Conventions This guide uses the following text conventions: (cid:32) Italic is used to introduce new terms. (cid:32) Bold is used to indicate what you click in a graphical user interface (for example, commands names). In examples showing user interaction with the command-line interface, bold is used to indicate user input as opposed to command output. (cid:32) A monospace font is used for code elements (variable names, data values, function names, and so forth), command lines, scripts, and source code listings. It is also used to indicate text to enter in a graphical user interface. (cid:32) Italic-monospace is used for replaceable elements and placeholders within code listings. Conventions Used in This Guide | ix Syntax Conventions This guide uses the following conventions when showing syntax: (cid:32) Angle brackets, “<“ and “>”, enclose mandatory elements. You must enter these elements. For example: ping <IP-address> (cid:32) Square brackets, “[“ and “]”, enclose optional elements. You can omit these elements. For example: show filter [filter-table-number] Square brackets are also used to show the current value of parameters in the output of some commands. (cid:32) A vertical bar, “|”, separates choices. For example: show bridge [cache | port] x | About This Guide