CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Preface CradlePoint reserves the right to revise this publication and to make changes in the content thereof without obligation to notify any person or organization of any revisions or changes. Manual Revisions Revision Date Description Author 1.0 Mar. 14, 2013 Initial release for Firmware version 4.2 Jeremy Cramer 1.1 Sept. 2, 2013 Updates for Firmware version 4.4 Jeremy Cramer 2.0 Nov. 21, 2013 Updates for Firmware version 5.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Table of Contents 1 INTRODUCTION ................................................................. 3 1.1 1.2 1.3 1.4 PACKAGE CONTENTS ............................................................. 3 SYSTEM REQUIREMENTS ........................................................ 3 CBA750B OVERVIEW ..........................................................
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.7 SYSTEM SOFTWARE .......................................................... 151 9 GLOSSARY ..................................................................... 153 10 APPENDIX ...................................................................... 167 10.1 REGULATORY AND SAFETY INFORMATION ............................ 167 10.2 WARRANTY, LIABILITY, PRIVACY, ETC. .....
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 1 INTRODUCTION 1.1 Package Contents • • • • • • CradlePoint Cellular Broadband Adapter (CBA750B) AC power adapter (12V, 1.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 1.3 CBA750B Overview WIRELESS WAN CONNECTIVITY The CradlePoint CBA750B mobile broadband series adapters enable easy-to-install wireless WAN connectivity in fixedbusiness locations. For distributed enterprises like branch offices, retail stores, restaurants, and small businesses, the CBA750B provides 3G/4G wireless network connectivity to keep your business up and running.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 1.3.2 CradleCare – Access the Experts 24/7 CradlePoint understands how important and critical network uptime is to your business. We have a knowledgeable enterprise technical support staff that is available anytime via phone, chat, or email to protect your investment. Our experts will expedite issue resolution and provide flexible device-by-device solutions to help maximize operational efficiency.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 1.4 CradlePoint ARC CBA750B Series ARC Series includes a CradlePoint 3G/4G business-grade modem with the CBA750B and creates an effortless instant network from high-speed wireless broadband. CradlePoint integrated business-grade modems are specifically designed to provide the highest level of performance, reliability, and security for 24x7 business-critical applications. Modems can be located and oriented to receive the highest signal strength.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 CBA750B-LE-VZ 4G LTE/EVDO for Verizon Technology: LTE, EVDO Rev A Downlink Rates: LTE 100 Mbps, EVDO 3.1 Mbps (theoretical) Uplink Rates: LTE 50 Mbps, EVDO 1.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 CBA750B-LP-AT 4G LTE/HSPA+ for AT&T Technology: LTE, HSPA+ Downlink Rates: LTE 100 Mbps, HSPA+ 21.1 Mbps (theoretical) Uplink Rates: LTE 50 Mbps, HSPA+ 5.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 CBA750B-LP2-EU 4G LTE/HSPA+ for Europe Technology: LTE, HSPA+ Downlink Rates: LTE 50 Mbps, HSPA+ 21.1 Mbps (theoretical) Uplink Rates: LTE 50 Mbps, HSPA+ 5.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 CBA750B-LP 4G LTE/HSPA+ for Canada Technology: LTE, HSPA+ Downlink Rates: LTE 100 Mbps, HSPA+ 21.1 Mbps (theoretical) Uplink Rates: LTE 50 Mbps, HSPA+ 5.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 CBA750B-W 4G WiMAX for Sprint or Clear Technology: WiMAX 802.16e Wave 2 Downlink Rates: 10M bps peak, 6 Mbps average Uplink Rates: 5 Mbps peak, 1.2 Mbps average Frequency Band: 2,500 MHz band Power: 23.5 +/− 0.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 2 HARDWARE OVERVIEW © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 2.1 Ports, Buttons, and Switches 40 mm 130 mm USB 2.0 230 mm LAN Port USB 2.0 ExpressCard Lock ExpressCard Slot Power On/Off DC Power Port Reset 4G Router/Passthrough Switch PoE 3G 2G L E D S TAT U S I N D I C AT O R S LEFT SIDE RIGHT SIDE Modem Signal Strength © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Modem Signal Strength: The bar LEDs indicate the signal strength from the active 3G/4G modem (CradlePoint business-grade modem or USB/ExpressCard modem). Pushing this button toggles the display on and off. The signal strength is shown for 10 seconds if the modem does not support concurrent data connection and signal strength measurement. A blinking LED indicates ½ bar. LAN Port: The CBA750B has one Ethernet port for a local network connection.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 2.2 LEDs © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 3 QUICK START 3.1 Basic Setup 1) Connect a CradlePoint business-grade modem or USB/ExpressCard wireless broadband data modem with an active subscription. Integrated Business-Grade Modem (Optional) A) Purchase a data plan. Insert SIM if model requires. B) Connect modem to CBA750B. Insert screws on backside. C) Insert antennas (finger tight only). 2) Connect the 12v DC power adapter to the router and a power source.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 3.2 Accessing the Administration Pages The CBA750B can be used immediately without any configuration changes, but to configure any of the advanced features of the CBA750B, you need to log into the administration pages: • • • Access your router’s Administrator Login screen by opening a web browser window and typing “cp/” (your router’s default hostname) or the IP address “192.168.0.1” into the address bar. Enter your Default Password.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 3.3 Common Problems This section contains some of the most common issues faced by users of the CBA750B. Please visit CradlePoint Knowledge Base at http://knowledgebase.cradlepoint.com/ for more help and answers to your other questions. 3.3.1 You Cannot Connect to the Internet with a CradlePoint business-grade modem Make sure that you have an active data plan and that your modem has been activated.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 3.3.2 Your USB or ExpressCard Modem Does Not Work With the Router • If your USB or ExpressCard modem is not working with the router, check the list of supported devices at http://www.cradlepoint.com/modems to ensure you are using a supported device and carrier.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 pages and manually upload the firmware. Go to System Settings → System Software and click on “Manual Firmware Upload”. If you are still unable to access the Internet after following the above directions, contact CradlePoint Technical Support for further assistance. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 4 WEB INTERFACE -- ESSENTIALS The CBA750B has a Web interface for configuration and administration of all features. The interface is organized with 5 tabs at the top of the screen: • • • • • Getting Started Status Network Settings Internet System Settings Web Interface – Essentials contains the following sections to help you more quickly and easy navigate these administration pages: 4.1 Administrator Login 4.2 Getting Started – First Time Setup 4.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 4.1 Administrator Login To access the administration pages, open a Web browser and type the hostname “cp/” or IP address “http://192.168.0.1” into the address bar. The Administrator Login page will appear. Log in using your administrator password. Initially, this password can be found on the bottom of the CBA750B unit as the Default Password. This password is also the last eight digits of the unit’s MAC address. © 2013 CRADLEPOINT, INC.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 You may have changed the administrator password during initial setup using the First Time Setup Wizard. Log in using your personalized administrator password. If you have forgotten your personalized password, you can reset the CBA750B to factory defaults. When you reset the router, the administrator password will revert back to the Default Password. Press and hold the reset button on the router unit until the lights flash (approximately 10-15 seconds).
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 4.2 Getting Started – First Time Setup The First Time Setup Wizard will help you configure your APN and failure check settings and change your administrator password to something you choose. 1) Open a browser window and type “cp/” or “192.168.0.1” into the address bar. Press enter/return.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6) Configuring Your Access Point Name (APN): If you are using a SIM-based modem (LTE/GSM/HSPA) with your CradlePoint router, you may need to configure the APN before it will properly connect to your carrier. Wireless carriers offer several APNs, so check with your carrier to confirm the appropriate one to use. Some examples include: • • • • • AT&T: "broadband" T-Mobile: "epc.tmobile.com" Rogers LTE: "lteinternet.apn" Bell: "inet.bell.ca" TELUS: "isp.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7) Modem Authentication: Some modems require a username and password to be entered to authenticate with a carrier. Do not fill in these fields unless you are sure your modem needs authentication. • • • Authentication Protocol – Set this only if your service provider requires a specific protocol and the Auto option chooses the wrong one. Select from: o Auto o Pap o Chap Username Password © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8) Configuring Failure Check: It is possible for a WAN interface to go down without the router recognizing the failure. (For example: the carrier for a cellular modem goes dormant.) Enable Failure Check to ensure that you can get out to the Internet via your primary WAN connection. This option is disabled by default because it may use data unnecessarily.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 9) Review the details and record your administrative password. Click APPLY to save the settings and update them to your router. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 4.3 Quick Links The CradlePoint logo in the upper left-hand corner of all the administration pages is a link to the Dashboard (Status → Dashboard), which displays fundamental information about the router. The black bar across the top provides quick access to important information and controls. Internet Connection This links to Status → Internet Connections where you can view in-depth information about your Internet sources.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 4.4 Configuration Pages The following table shows the navigation layout of the administration pages. Click on the tabs along the top bar to reveal the following dropdown menus.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 4.4.1 Network Settings vs. Internet When using the Web interface, it will be important to pay attention to the difference between the Internet source for your CBA750B and the network created by the CBA750B. The “Internet” tab broadly refers to the router’s source of Internet, while the “Network Settings” tab broadly refers to the network created by the router.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 4.5 Enterprise Cloud Manager Registration To register your device with CradlePoint Enterprise Cloud Manager, navigate to Getting Started → Enterprise Cloud Manager Registration. Input your ECM Username and ECM Password and click Register. You have now registered the device with Enterprise Cloud Manager. If you do not have ECM credentials, see http://www.cradlepoint.com/ecm for details or sign up at http://www.cradlepoint.com/ecm-signup.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 4.6 IP Passthrough Setup The CBA750B’s IP passthrough function takes the IP address of the attached modem and passes it through to the LAN. By default, the CBA750B is configured for IP passthrough – the device ships with the ROUTER/PASSTHROUGH SWITCH set to the I position (“O” is router mode; “I” is passthrough mode). Using IP passthrough disables some of the device’s other router functionality.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 router/passthrough switch. This option is listed in System Settings → Administration under the “Local Management” tab. Click on the “Disable IP Passthrough/Configuration mode switch” option. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5 STATUS The Status tab displays information about many different aspects of the router. It provides access to 7 submenu options: • • • • • • • Client List Dashboard GPS Internet Connections Routing Statistics System Logs © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5.1 Client List The Client List displays the Hostname, IP, and MAC of the device connected to your router. Hostname: The name by which each computer or device in a network is known. IP: The IP address, or “Internet Protocol address”, specifies a location for each device. MAC: This is the "MAC address", a factory-assigned identifier used to identify a specific attached computer or device. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5.2 Dashboard The Dashboard shows fundamental information about your router, divided into the following basic categories: • • • Router Information Internet Local Networks For more in-depth information and/or configuration options, click on the Detailed Info link beside the category title.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Router Information: “Detailed Info” links to System Settings → Administration.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Local Networks: “Detailed Info” links to Network Settings → Local Networks. • Clients: The number of current clients. For each network, the following information is displayed: • Network Name: IP Address/Netmask o Route Mode: NAT (Network Address Translation), Standard (NAT-less), IP Passthrough, or Disabled. o Access: Admin Access, LAN Isolation, UPnP (Universal Plug and Play), and/or DHCP.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5.3 GPS If GPS support is enabled and a modem capable of providing GPS coordinates is connected, this page shows a graphical view of your router's location. See the GPS section in System Settings → Administration to enable GPS support. GPS information is only displayed if 1) the modem supports GPS, 2) your carrier allows the GPS functionality, and 3) the modem has sufficient GPS signal strength.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5.4 Internet Connections The Internet Connections submenu option provides a list of attached WAN devices used as the Internet source for the CBA750B. Select one of these devices to see detailed information about that particular device. For each type of modem, different information will be included in the Device Information section.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5.4.1 LTE Modem (PANTECH UML290) Diagnostics • • • • • • • • • • • • • • • • • • Home Address MN-HA SPI Modem Firmware Version Battery Status MN-HA SS Network Address Identifier (NAI) Signal Strength(dBm) Rev Tun Battery Level Secondary Home Agent Service Display LTE Primary Home Agent Carrier Status Profile MN-AAA SPI PIN Status MN-AAA SS Connection State (connected, idle, etc.) © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 General Information • • • • • • • • Product PANTECH UML290 Protocol IP DHCP Unique Identifier ESN/IMEI Model UML290VW Type modem Port Manufacturer Pantech, Incorporated IP Information • • • Netmask IP Address Gateway Statistics • • • • Outgoing Bits/Second Incoming Bits/Second Incoming Bytes Outgoing Bytes © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5.4.2 HSPA+ Modem (Nokia Datacard) Diagnostics • • • • • • • • • • • Manufacturer Nokia Product Nokia Datacard Model Nokia Internet Stick CS-18 ESN/IMEI Modem Firmware Version Mobile Directory Number Carrier ID AT&T Carrier Status Signal Strength Signal Error Rate PIN Status General Information • • • • • Model Nokia Internet Stick CS-18 Unique Identifier Port Profiles 1-9 Type modem © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 IP Information • • • DNS Servers IP Address Gateway Statistics • • • Incoming Bytes Outgoing Bytes Connection Uptime (secs) © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5.4.3 WiMAX Modem (U300 – 4G) Diagnostics For a WiMAX modem, the CINR and Signal Strength values are important as they show how strong the signal is and that has significant effects on how much data the router can download or send. You can place the router in different locations to see where you get better signal. You can also see a LED display of the current signal strength.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 • • • Type WiMAX Port Manufacturer Franklin Wireless Corporation Statistics • • • • Outgoing Bits/Second Incoming Bits/Second Incoming Bytes Outgoing Bytes © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5.4.4 GSM Modem (Nokia Datacard) Diagnostics • • • • • • • • Signal Error Rate Modem Firmware Version Battery Status Battery Level Carrier Status Signal Strength(dBm) PIN Status Connection State (connected, idle, etc.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 • • • Incoming Bits/Second Incoming Bytes Outgoing Bytes © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5.4.5 EVDO Modem: (MC760 Comcast) Diagnostics • • • • • • • Modem Firmware Version PRL Version Service Display EVDO Carrier Status Signal Strength(dBm) Connection Type CDMA Connection State (connected, idle, etc.) General Information • • • • • • • • Product MC769 COMCAST Protocol PPP Unique Identifier ESN/IMEI Model MC760 COMCAST Type modem Port Manufacturer Novatel Wireless Inc.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5.5 Routing System Routes displays routes associated with networks connected to the router. Static Routes displays user-specified routes configured in Network Settings → Routing, © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5.6 Statistics The Statistics submenu option displays basic traffic statistics. Wireless Statistics: View the signal strength and other wireless modem information. The wireless device’s signal strength will only be displayed as long as it supports “Live Diagnostics.” Sample rate and size can be adjusted from the dropdown boxes. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Data Usage: A measure of amount of information that is currently being sent or received through the network. Sample rate and size can be adjusted from the dropdown boxes. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Failover/Failback/Load Balance: An easy way to view current connective states of the devices plugged into the router as compared to the past. Sample rate and size can be adjusted from the dropdown boxes. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 5.7 System Logs The router automatically logs (records) events of possible interest in its internal memory. If there is not enough internal memory for all events, logs of older events are deleted, but logs of the latest events are retained. The log options allow you to filter the router logs so you can easily find relevant messages.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6 NETWORK SETTINGS The Network Settings tab provides access to 7 submenu options for administering the following functions/tasks. These functions are all related to controlling the LAN (Local Area Networks), the networks you set up with the CBA750B. • • • • • • • Content Filtering DHCP Server DNS Firewall Local Networks MAC Filter / Logging Routing © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.1 Content Filtering You have two main options for filtering content in a network created by your router. 1) Network WebFilter Rules: Create a list of websites that will be either disallowed or allowed. Customize the filter settings for each network. (These rules will not block HTTPS websites.) 2) OpenDNS Content Filtering: Allows several options for filtering rules using OpenDNS, a third party service. 6.1.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Click Add or Edit to open the Filter Rule Editor. • • • • • Assigned Network: Select either “All Networks” or one of your LAN networks from the dropdown list. Domain/URL/IP: Enter the Domain Name or URL (address) of the website you wish to control access for, e.g. www.google.com. To make sure the full domain is blocked, enter the most inclusive domain (e.g. google.com will effectively block www.google.com as well as maps.google.com and images.google.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.1.2 Default Filter Settings Use Default Network Filter Settings together with Network WebFilter Rules to control website access. All of your networks are set to allow website access by default. Select a network and click Edit to change the default filter settings.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.1.3 Cloud Based Filtering/Security Select a third-party Cloud Provider from the dropdown list. • Disabled • Umbrella by OpenDNS Umbrella by OpenDNS Umbrella by OpenDNS is a cloudbased web filtering and security solution that protects you online by filtering websites. Go to http://www.opendns.com/businesssecurity/ for information about Umbrella. Enter your Umbrella account information in order to use these content filtering settings.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.2 DHCP Server DHCP stands for Dynamic Host Configuration Protocol. The built-in DHCP server automatically assigns IP addresses to the computers and other devices on each local area network (LAN). In this section you can view a list of assigned IP addresses and reserve IP addresses for particular devices. Active Leases: A list of devices that have been provided DHCP leases. The DHCP server automatically assigns these leases.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.3 DNS DNS, or Domain Name System, is a naming system that translates between domain names (www.cradlepoint.com, for example) and Internet IP addresses (206.207.82.197). A DNS server acts as an Internet phone book, translating between names that make sense to people and the more complex numerical identifiers.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.3.2 Dynamic DNS Configuration The Dynamic DNS feature allows you to host a server (Web, FTP, etc.) using a domain name that you have purchased (www.yourname.com) with your dynamically assigned IP address. Most broadband Internet Service Providers assign dynamic (changing) IP addresses. When you use a Dynamic DNS service provider, you can enter your host name to connect to your server, no matter what your IP address is.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.3.3 Advanced Dynamic DNS Settings Update period (hours). (Default: 576) The time between periodic updates to the Dynamic DNS if your dynamic IP address has not changed. The timeout period is entered in hours so valid values are from 1 to 8760. Override External IP. The external IP is usually configured automatically during connection.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.4 Firewall The router automatically provides a firewall. Unless you configure the router to the contrary, the router does not respond to unsolicited incoming requests on any port, thereby making your LAN invisible to cyber attackers. However, some network applications cannot run with a tight firewall. Those applications need to selectively open ports in the firewall to function correctly.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 • • • Local Port(s): The port number(s) that corresponds to the service (Web server, FTP, etc) on a local computer or device. For example, you might input “80” in the Local Port(s) field to open a port for a Web server on a computer within your network. The Internet Port(s) field could then also be 80, or you could choose another port number that will be used across the Internet to access your Web server.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.4.2 Network Prefix Translation (Advanced) Network Prefix Translation is used in IPv6 networks to translate one IPv6 prefix to another. IPv6 prefix translation is an experimental specification (RFC 6296) trying to achieve address independence similar to NAT in IPv4. Unlike NAT, however, NPT is stateless and preserves the IPv6 principle that each device has a routable public address. But it still breaks any protocol embedding IPv6 addresses (e.g.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.4.3 IP Filter Rules (Advanced) An "Incoming" IP filter rule restricts remote access to computers on your local network. "Outgoing" filter rules prevent computers on your local network from initiating communication to the address range specified in the rule. This feature is especially useful when combined with port forwarding and/or DMZ to restrict remote access to a specified host or network range.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 • that is NOT in the specified port range. Port(s): Use for a single port or a range of ports. Fill in the left side for a single port. Use Network IP, Netmask, and Port(s) to specify the ports and addresses for which the rule applies. You can specify a range of ports or a single port. Similarly, the netmask can be used to define either a range of addresses (i.e. 255.255.255.0) or a single address (255.255.255.255).
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.4.4 DMZ: DeMilitarized Zone (Advanced) A DMZ host is effectively not firewalled in the sense that any computer on the Internet may attempt to remotely access network services at the DMZ IP address. Typical uses involve running a public Web server or sharing files. Input the IP Address of a single device in your network to create a DeMilitarized Zone for that device.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 • • FTP: To allow normal mode when using File Transfer Protocol. This is not needed for passive mode. This is enabled by default. IRC: For Direct Client to Client (DCC) transfer when using Internet Relay Chat. You may wish to forward TCP port 113 for incoming identd (RFC 1413) requests. 6.4.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Remote Administration Access Control Editor IP Address: The IP address that will be allowed to access administrative services through the WAN. Netmask (Optional): The netmask allows you to specify what IP address sets will be allowed access. If this field is left empty a netmask of 255.255.255.255 will be used, which means that only the single specified IP address would have remote administration access. © 2013 CRADLEPOINT, INC.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.5 Local Networks This section is used to configure the settings for networks created by your router. The user can set up multiple networks on the CBA750B, each with its own unique configuration and its own selection of interfaces. Each local network can be attached to either (or both) of the following types of interfaces: • • Ethernet VLAN © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.5.1 Local IP Networks Local IP Networks displays the following information for each network: • • • • • • • • Network Name and IP address/Netmask (along the top bar) Enabled (Yes/No) DHCP Mode (e.g.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.5.2 Local Network Editor Click Add or select a network and click Edit to open the Local Network Editor to make configure a LAN. The Local Network Editor contains the following tabs: General Settings, IPv4 Settings, IPv6 Settings, Interfaces, Access Control, IPv4 DHCP, IPv6 Addressing, and Schedule. General Settings: Enabled: Push to manually disable a network.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 IPv4 Settings: IP Address: This is the address used by the router for local area network communication. Changes to this parameter may require a restart to computers on this network. Each network must have a distinct IP address. Most users will want an address from one of the following private IP ranges: • 10.0.0.1 - 10.255.255.1 • 172.16.0.1 - 172.31.255.1 • 192.168.0.1 - 192.168.255.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 IPv6 Settings: IPv6 must be enabled through the WAN initially: go to Internet → Connection Manager to enable IPv6. IPv6 Address Source: By default, this is set to Delegated, which means the IPv6 address range for the LAN is passed through from the WAN side. Change this to Static to input your own IPv6 address range here, or select None to explicitly disable IPv6 LAN connectivity. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Interfaces: Select network interfaces to attach to this network. Choose from the Ethernet port and VLAN interfaces. Double-click on an interface shown on the left in the Available section to move them to the Selected section on the right (or highlight an interface and click the “+” button). To deselect an interface, double-click on an interface in the Selected section (or highlight the interface and click the “–“ button).
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Access Control: Tune the access control settings of this network to match the intended use. Simply select or deselect any of the following: • • • LAN Isolation: When checked, this network will NOT be allowed to communicate with other local networks. UPnP Gateway: Select the UPnP (Universal Plug and Play) option if you want to enable the UPnP Gateway service for computers on this network.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 IPv4 DHCP: Changing settings for the IPv4 DHCP server is optional. The default selections are almost always sufficient. DHCP Server: (Default: Enabled) When the DHCP server is enabled, users of your network will be able to automatically connect to the Internet without any special configuration. It is recommended that you leave this enabled.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Custom Options: Input a custom DHCP option by first clicking the Custom Options field to enable it and then clicking “Add” at the top of the table that appears. There are close to 200 possible DHCP options available. One of the more common uses is to assign a VoIP phone server using option 66 (Server name). • • Option: Select an option from the dropdown list or manually enter the number of an option. A complete list of options is available from IANA.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 IPv6 Addressing: Address Configuration Mode: SLAAC Only – SLAAC stands for stateless address autoconfiguration. The router regularly generates a router advertisement that includes network prefix and routing information, allowing clients to autogenerate an address and start communicating on the network. Clients utilize neighbor discovery protocols to ensure multiple clients on the subnet have not chosen an identical address.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Schedule: Set up a schedule for this network interface. This allows an interface to be enabled or disabled during specific hours of a day. For example, use this to limit the network to business hours. Schedule Service: (Default: Disabled.) Select to enable. This will open a configurable chart for setting the schedule. Each hour of the week is represented by a black or gray square. Black represents disabled, while gray represents enabled.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.5.3 Local Network Interfaces Each LAN type—Ethernet and VLAN—has a separate section with configuration options. Unless the default configuration is sufficient, YOU MUST CONFIGURE EACH INTERFACE SEPARATELY in order to create the desired interface options for a network. You can then select these interfaces to add to a network in the Local Network Editor (see above).
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Ethernet Port Group Editor A Port Group represents a logical grouping of Ethernet ports. Any computers physically connected to ports in a group will be allowed to freely communicate with each other. Since the CBA750B has only 1 Ethernet port, this feature will rarely be necessary. The only use is to switch the port to a different local network.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 VLAN Interfaces A virtual local area network, or VLAN, functions as any other physical LAN, but it enables computers and other devices to be grouped together even if they are not physically attached to the same network switch. To enable a VLAN, select a VID (virtual LAN ID) and an Ethernet port group through which users can access the VLAN. Then go back up to the Local Network Editor to attach your new VLAN to a network.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.6 MAC Filter / Logging A MAC (Media Access Control) address is a unique identifier for a computer or other device. This page allows you to manage clients by MAC address. You can filter clients by MAC addresses and/or keep a log of devices connected to your router. 6.6.1 Filter Configuration The MAC Filter allows you to create a list of devices that have either exclusive access (whitelist) or no access (blacklist) to your LAN.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.6.2 MAC Logging Configuration Enable MAC Logging: Enabling MAC Logging will cause the router to log MAC addresses that are connected to the router. MAC addresses that you do not want to have logged (addresses that you expect to be connected) should be added to the “Ignored MAC Addresses” list. You can configure the router to send an alert if a connected device has a MAC address that the router doesn’t recognize.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6.7 Routing Add a new static route to the IP routing table or edit/remove an existing route. Static routes are used in networks with more than one layer, such as when there is a network within a network so that packet destinations are hidden behind an additional router. Adding a static route is a way of telling the router about an additional step that packets will need to take to reach their destination. Click Add to create a new static route.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7 INTERNET The Internet tab provides access to 3 submenu items for managing a variety of Internet connection options. • • • Connection Manager Data Usage WAN Affinity / Load Balancing © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.1 Connection Manager The router can establish an uplink via any modems plugged into a modem port. If there is more than one modem attached and the primary connection fails, the router will automatically attempt to bring up a new link on another device. This feature is called failover. If Load Balance is enabled, multiple WAN devices establish a link at the same time. 7.1.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.1.2 Device Configuration Clicking on a device reveals the following information: • • • • • • • • State (Connected, Available, etc.) Port UID (Unique identifier. This could be a name or number/letter combination.) IP Address Gateway Netmask Stats: bytes in, bytes out Uptime Click “Edit” to view configuration options for the selected device. Click “Control” to view options to activate or update the device. © 2013 CRADLEPOINT, INC.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.1.3 • • • • • • General Settings Enabled: Select/deselect to enable/disable. Force NAT: Normally the LAN Route Mode controls the use of NAT (network address translation). When this option is selected the router will always perform NAT when traffic is sent out from this device. Priority: This number controls failover and failback order. The lower the number, the higher the priority and the more use the device will get.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 IPv4 Failure Check (Advanced) If this is enabled, the router will check that the highest priority active WAN interface can get to the Internet even if the WAN connection is not actively being used. If the interface goes down, the router will switch to the next highest priority interface available.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 IPv6 Failure Check (Advanced) These settings match IPv4 Failure Check; the only difference in the UI is that the ping address uses IPv6. Failback Configuration (Advanced) This is used to configure failback, which is the ability to go back to a higher priority WAN interface if it regains connection to its network. Usage: Fail back based on the amount of data passed over time.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.1.4 IP Overrides IP overrides allow you to override IP settings after a device’s IP settings have been configured. Only the fields that are filled out will be overridden. Override any of the following fields: • • • • • IP Address Subnet Mask Gateway IP Primary DNS Server Secondary DNS Server © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.1.5 IPv6 Settings The IPv6 (http://en.wikipedia.org/wiki/IPv6) configuration allows you to enable and configure IPv6 for a WAN device. These settings should be configured in combination with the IPv6 LAN settings (go to Network Settings → Local Networks, select the LAN under Local IP Networks, and click Edit) to achieve the desired result. This is a dual-stacked implementation of IPv6, so IPv6 and IPv4 are used alongside each other.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Enable IPv6 and select the desired IPv6 connection method for this WAN interface. • • • • • • Disabled (default) – IPv6 disabled on this interface. Auto – IPv6 will use automatic connection settings (if available). Static – Input a specific IPv6 address for your WAN connection. This is provided by the ISP if it is supported. 6to4 Tunnel (http://en.wikipedia.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Auto IPv6 auto-configuration mode uses DHCPv6 and/or SLAAC to configure the IPv6 networks. When you select Auto, all of the following settings are optional (depending on your provider’s requirements): • • • • • PD Request Size – Prefix Delegation request size. This is the size of IPv6 network that will be requested from the ISP to delegate to LAN networks.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Static As with IPv4, static configuration is available for situations where the WAN IPv6 topology is fixed. • • • • • • IPv6 Address/CIDR – Input the IPv6 static IP address and mask length provided by your ISP (see http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing for an explanation of CIDR). IPv6 Gateway IP – Input the IPv6 remote gateway IP address provided by your ISP.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6to4 Tunnel Out of the box, 6to4 is the simplest mode to enable full end-to-end IPv6 connectivity in an organization if the upstream ISP properly routes packets to and from the 6to4 unicast relay servers. • • • • Primary IPv6 DNS Server – (optional) Depending on your provider, this may be required. This only takes effect if the default global DNS setting on the Network Settings → DNS page is "Automatic".
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6in4 Tunnel The 6in4 tunnel mode utilizes explicit IPv4 tunnel endpoints and encapsulates IPv6 packets using 41 as the specified protocol type in the IP header. A 6in4 tunnel broker provides a static IPv4 server endpoint, decapsulates packets and provides routing for both egress and ingress IPv6 packets. Most tunnel brokers provide a facility to request delegated networks for use through the tunnel.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 6rd Tunnel IPv6 Rapid Deployment (6rd) is a method of IPv6 site configuration derived from 6to4. It is different from 6to4 in that the ISP provides explicit 6rd infrastructure that handles the IPv4 ↔ IPv6 translation within the ISP network. 6rd is considered more reliable than 6to4 as the ISP explicitly maintains infrastructure to support tunneled IPv6 traffic over their IPv4 network.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.1.6 Modem Settings Not all modems will have all of the options shown below; the available options are specific to the modem type. On Demand: Typically modem connections are not always on. When this mode is selected a connection to the Internet is made as needed. When this mode is not selected a connection to the Internet is always maintained.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 CDMA Technology Auto ARC CBA750B-LE (Sierra Wireless MC7750) ✔ Auto 3G Force 4G Force 3G (module auto selects) (<= 3G) LTE 1xEVDOAe (EHRPD) ✔ ✔ ✔ Auto 3G Force 4G Force 3G (module auto selects) (<= 3G) LTE HSPA+ (4G/3.5G) HSPA (3G) EDGE (2.75G) GPRS (2.5G) 1xEVDO-A 1xEVDO-0 (HRPD) (3G) (HRPD) (3G) ✔ ✔ Force 2G 1xRTT (2.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Network Selection Mode: Wireless carriers are assigned unique network identifying codes known as PLMN (Public Land Mobile Network). To manually select a particular carrier, select the Manual radio button and enter the network PLMN. Functional Mode: Selects the functional mode of the modem. IPPT mode causes the modem to act as a transport, passing Internet data and IP address information between the modem and the Internet directly.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.1.7 WiMAX Settings WiMAX Realm: Select from the following dropdown options: • • • • • • • Clear – clearwire-wmx.net Rover – rover-wmx.net Sprint 3G/4G – sprintpcs.com Xohm –xohm.com BridgeMAXX – bridgeMAXX.com Time Warner Cable – mobile.rr.com Comcast – mob.comcast.net TTLS Authentication Mode: TTLS inner authentication protocol.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.1.8 CDMA Settings These settings are usually specific to your wireless carrier’s private networks. You should not set these unless directed to by a carrier representative. If a field below is left blank, that particular setting will not be changed in the modem. You should only fill in fields that are required by your carrier.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.1.9 SIM/APN/Auth Settings SIM PIN: PIN number for a GSM modem with a locked SIM. Authentication Protocol: Set this only if your service provider requires a specific protocol and the Auto option chooses the wrong one. Choose from Auto, PAP, and CHAP and then input your username and password. Access Point Configuration: Some wireless carriers provide multiple Access Point configurations that a modem can connect to. Some APN examples are ‘isp.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.1.10 Update/Activate a Modem Some 3G/4G modems can be updated and activated while plugged into the router. Updates and activation methods vary by modem model and service provider. Possible methods are: PRL Update, Activation, and FUMO. All supported methods will be displayed when you select your modem and click “Control”. If no methods are displayed for your device then you will need to update and activate your device externally.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Process Timeout: If the process fails an error message will display. Activation has a 3-minute timeout, PRL update has a 4-minute timeout, and FUMO has a 10-minute timeout. Update Modem Firmware Click on the Firmware button to open the Modem Firmware Upgrade window. This will show whether there is new modem firmware available. If you select Automatic (Internet) the firmware will be updated automatically.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.1.11 Configuration Rules (Advanced) This section allows you to create general rules that apply to the Internet connections of a particular type. These can be general or very specific. For example, you could create a rule that applies to all WiMAX modems, or a rule that only applies to an Internet source with a particular MAC address. The Configuration Rules list shows all rules that you have created, as well as all of the default rules.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 WAN Configuration Rule Editor After clicking “Add” or “Edit,” you will see a popup with the following tabs: • • • • • • • • • Filter Criteria General Settings IP Overrides IPv6 Settings Ethernet Settings Modem Settings WiMAX Settings CDMA Settings SIM/APN/Auth Settings Filter Criteria. Begin by setting the Filter Criteria if you are creating a new rule.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 • Unique ID: Select by ID. This is generated by the router and displayed when the device is connected to the router. Condition: Select “is,” “is not,” “starts with,” “contains,” or “ends with” to create your condition’s statement. Value: If the correct values are available, select from the dropdown list. You may need to manually input the value.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.2 Data Usage Data Usage Management & Alerts allows you to create and manage rules that help control the data usage of a modem. If you have a limited data plan or a price increase on your plan after a certain amount of usage, a Data Usage Rule can help you track these amounts. You can set a rule to shut down use of a modem and/or send a message when you reach a data usage amount you set. Enable Data Usage: Enabled/Disabled. (Default: Disabled.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.2.1 Data Usage Rules The Date Usage Rule display shows basic information for each rule you have created (including rules created with a template). The following information is displayed: • • • • • • Rule Name Enabled: True/False Date for Rule Reset Cycle Type: Daily, Weekly, or Monthly Cap: Amount in MB. Current Usage: Shown as an amount in MB, as a percentage of the cap, and in a bar graph. Click Add to configure a new Data Usage Rule.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 keep all interfaces with these rules at a similar percentage utilization of data (e.g. 10%, 50%, 90%) as the cycle progresses, rather than quickly using 100% of a fast 1GB capped interface while using only a fraction of a slow 10GB capped interface, thus leaving the rest of the cycle with only the slow interface. The Data Usage algorithm on the Load Balancing page must be selected or this checkbox has no effect.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.2.2 Template Configuration Templates allow you to control multiple WAN devices with the same rule. Each WAN device that matches a template will automatically have its own rule created. For example, you can set a template rule for all mobile data modems that causes your router to send an alert after 1000 MB of usage in a month.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 7.3 WAN Affinity and Load Balancing WAN affinity and load balancing both require multiple WAN devices, which is not typical usage Load Balance Select the Load Balance Algorithm from the following dropdown options: • • • • Round-Robin: Evenly distribute each session to the available WAN connections. Rate: Distribute load based on the current upload and download rates.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Name: Give a name for your rule that is meaningful to you. DSCP (DiffServ): Differentiated Services Code Point is the successor to TOS (Type of Service). Use this field to select traffic based on the DSCP header in each IP packet. This field is sometimes set by latency sensitive equipment such as VoIP phones. If you know specific DSCP values, you can input one here.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 • Source Netmask: 255.255.255.0 Failover: (Default: Selected.) When this is selected and traffic from the chosen WAN device for this rule is interrupted, the router will fail over to another available WAN device. Deselect this option to restrict this traffic to only the selected WAN interface. WAN Binding Type: You have several options for specifying the type of WAN interface(s) you want associated with your rule.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 • • Spillover: This was the default algorithm in older (version 3) firmware. Load is always given to devices with the most available bandwidth. The estimated bandwidth rate is based on a combination of the upload and download configuration values and the observed capabilities of the device. Data Usage: This mode works in concert with the Data Usage feature (Internet → Data Usage).
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8 SYSTEM SETTINGS The System Settings tab has the following submenu items that provide access to tools for broad administrative control of the CBA750B: • • • • • • • Administration Device Alerts Enterprise Cloud Manager Serial Redirector SNMP Configuration System Control System Software © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.1 Administration Select the Administration submenu item in order to control any of the following functions: • • • • • • • • Router Security System Clock Local Management Remote Management GPS SMS System Logging Router Services 8.1.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Advanced Security Mode When you enable Advanced Security Mode, you have three different options for the Authentication Mode: • • • Local Users TACACS+ RADIUS Local Users Create users with administrative privileges by inputting usernames and passwords in the Advanced User Management table. TACACS+ TACACS+ stands for “Terminal Access Controller Access-Control System plus”.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 "host.domain.com". Only lower case letters are allowed for a DNS name. Port: Port 49 is default for TACACS+. Shared Secret RADIUS RADIUS stands for “Remote Authentication Dial In User Service”. The router will use a RADIUS server (or two, optionally) to authorize administration.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.1.2 System Clock Enabling NTP will tell the router to get its system time from a remote server on the Internet. If you do not enable NTP then the router time will be based on when the router firmware was built, which is guaranteed to be wrong. Whenever the Internet connection is reestablished and once a week thereafter the router will ask the server for the current time so it can correct itself.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.1.3 Local Management Enable Internet Bounce Pages: Bounce pages show up in your web browser when the router is not connected to the Internet. They inform you that you are not connected and try to explain why. If you disable bounce pages then you will just get the usual browser timeout. In the normal case when the router is connected to the Internet you don't see them at all.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.1.4 Remote Management Allows a user to enable incoming WAN pings or to change settings for the router from the Internet using the router's Internet address. Allow WAN pings: When enabled the functionality allows an external WAN client to ping the router. Allow Remote Web Administration: When remote administration is enabled it allows access to these administration web pages from the Internet.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.1.5 GPS If you have an attached device with GPS support, you can enable a graphical view of your router’s location which will appear in Status → GPS. Users can also configure GPS NMEA GGA format sentence reporting, available through a router-based server and/or a remote server. NOTE: Some carriers disable GPS support in otherwise supported modems. If you encounter issues with obtaining a fix, contact your carrier and ensure that GPS is supported.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 $GPGGA – Essential fix data including 3D location and accuracy information Example: $GPGGA,1753405,4916.450,N,12311.127,W,2,06,1.5,117.3,M,−26.574,M,6.0,0138*47 1753405 4916.450,N 12311.127,W 2 06 1.5 117.312,M −26.574,M 6.0 0138 *47 © 2013 CRADLEPOINT, INC. Time of fix – 17:34:05 UTC Latitude 49 deg. 16.450 min North Longitude 123 deg. 11.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.1.6 SMS SMS (Short Message Service, or text messaging) requires a cellular modem with an active data plan. SMS is not designed to be a full remote management feature: SMS allows you to connect to the router for a few simple queries or commands with a text messaging service (e.g., from your phone).
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Enable SMS support SMS support is enabled by default on the router. Deselect this to disable. Password By default, the password is the last 8 characters of the router’s MAC address (i.e., the Default Password on the product label). You can change this password to anything between 1 and 16 characters. It should be long enough to be useful for security but short enough to easily type into your phone (or other texting client).
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 How to Send an SMS Message You can send SMS messages to the router via phone or email. The key elements are: 1. the modem’s MDN 2. the SMS password (defined above) 3. the command You must know the MDN (Mobile Directory Number) of the modem to send SMS messages to the router. This is a phone number that can be found under Status → Internet Connections in the router administration pages (or under Devices → Network Interfaces in Enterprise Cloud Manager).
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 SMS Commands Below is a list of supported SMS messages and the syntax format. Due to security concerns, the set of commands are intentionally limited to those that can configure a modem’s connection, but cannot lock the administrator out due to malicious modem changes. Therefore, if an unsolicited request adjusts the modem’s configuration via SMS, an administrator can still access the modem via SMS.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 This command returns info about the router along with the port names for ports with attached modems. These port names may be helpful for using the commands that follow. Example of response: uptime: 0:35:13 FW: v4.4.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 apn: Set the APN on the modem (for SIM-based modems)* • • • Syntax: ,apn,,[port,] Example: 1234,apn,myapn@apn.com, Example: 1234,apn,myapn@apn.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Sample Debug Session The following is an example of a debug session to discover a modem’s APN is misconfigured and needs to be set.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.1.7 System Logging Logging Level: Setting the log level controls which messages are stored or filtered out. A log level of Debug will record the most information while a log level of Critical will only record the most urgent messages. Each level includes all messages from all of the levels below it on the list (e.g. “Warning” includes all “Error” and “Critical” messages as well).
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.1.8 Router Services By default, router services (Enterprise Cloud Manager, NTP, etc.) connect to the router via the WAN. In some setups it makes sense to use the LAN instead. For example, if your router is used strictly for 3G/4G failover behind another router, you may not want to use 3G/4G data unnecessarily. Select Use LAN Gateway to set your router services to connect via the LAN.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.2 Device Alerts The Device Alerts submenu choice allows you to receive email notifications of specific system events. YOU MUST ENABLE AN SMTP EMAIL SERVER TO RECEIVE ALERTS. Alerts can be included for the following: • • • • • • • • Firmware Upgrade Available: A firmware update is available for this device. System Reboot Occurred: This router has rebooted. This depends on NTP being enabled and available to report the correct time.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Each SMTP server will have different specifications for setup, so you have to look those up separately. The following is an example using Gmail: • • • • • • • Server Address: smtp.gmail.com Server Port: 587 (for TLS, or Transport Layer Security port; the CBA750B does not support SSL). Authentication Required: For Gmail, mark this checkbox.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.3 Enterprise Cloud Manager CradlePoint ECM is a cloud-based management service for configuring, monitoring, and organizing your CradlePoint routers. Key features include: • • • • Group based configuration management Health monitoring of router connectivity and data usage Remote management and control of routers Historical record keeping of device logs and status Visit http://cradlepoint.com/ecm to learn more about CradlePoint ECM.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.3.1 • • • • • 8.3.2 Enterprise Cloud Manager Settings (Advanced) Enabled: Enable the ECM client to contact the server. While this box is unchecked, the ECM client will never attempt to contact the server. (Default: Enabled) Server Host:Port: The DNS hostname and port number for your ECM server. (Default: stream.cradlepoint.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.4 Serial Redirector A single USB Serial device can be used to establish a serial link to a host port on the router. The USB Serial device can also be accessed by running "serial" from an SSH session. 8.4.1 Telnet to Serial Configuration Enabled: Enabling Telnet to Serial will start a Telnet server that passes its connection to the serial adapter. Enabling this service is not necessary when accessing serial through SSH.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 • • • • • • 1200 1800 2400 4800 9600 19200 Byte Size: The number of bits in a byte. Select from: 5, 6, 7, and 8. Parity: Change this value to enable parity bit checking. Select from the following dropdown options: • • • • • None: No parity checking. (Default) Even: parity bit will always be even. Odd: parity bit will always be odd. Mark: parity bit will always be odd and always 1. Space: parity bit will always be even and always 0.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.5 SNMP Configuration SNMP, or Simple Network Management Protocol, is an Internet standard protocol for remote management. You might use this instead of CradlePoint Enterprise Cloud Manager if you want to remotely manage a set of routers that include both CradlePoint and non-CradlePoint products. Enable SNMP: Selecting “Enable SNMP” will reveal the router’s SNMP configuration options.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 SNMPv3: SNMP version 3 includes all prior features with security available. SNMPv3 is the most secure setting for SNMP. If you wish to configure traps then you must use SNMP version 3. Get community string: The “Get community string” is used to read SNMP information from the router. This string is like a password that is transmitted in regular text with no protection.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Trap community string: The trap notifications will be returned to the trap server using this SNMPv1 trap community name. Address for trap server: Enter the address of the host system that you want trap alerts sent to. Trap server port #: Enter the port number that the remote host will be listening for trap alerts on. (Default: 162) 8.5.2 System Information System information via SNMP is Read-Writable by default.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.6 System Control Restore to Factory Defaults: This changes all settings back to their default values. Reboot The Device: This causes the router to restart. Advanced: System Automatic Reboot and Ping Test Scheduled Reboot: This causes the router to restart at a user-determined time. Watchdog Reboot: This causes the router to automatically restart when it determines an unrecoverable error condition has occurred.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.7 System Software 8.7.1 Firmware Upgrade This allows the administrator to load new firmware onto the router to add new features or fix defects. If you are happy with the operation of the router, you may not want to upgrade just because a new version is available. Check the firmware release notes (www.cradlepoint.com/firmware) for information to decide if you should upgrade.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 8.7.2 System Config Save/Restore Backup Current Settings: Click on “Save to disk” to save your current settings to a file on a computer. Restore Settings: Click on “Upload from file” to restore your previous settings from a file on a computer. 8.7.3 Firmware Upgrade and System Config Restore Load new firmware and restore your previous settings from a file on a computer without rebooting between steps. © 2013 CRADLEPOINT, INC.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 9 GLOSSARY 802.11 Alphanumeric A family of specifications for wireless local area networks (WLANs) developed by a working group of the Institute of Electrical and Electronics Engineers (IEEE). Characters A-Z and 0-9. Access Control List ACL. This is a database of network devices that are allowed to access resources on the network. Access Point AP. Device that allows wireless clients to connect to it and access the network.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Authentication BOOTP To provide credentials, like a Password, in order to verify that the person or device is really who they are claiming to be. Bootstrap Protocol. Allows for computers to be booted up and given an IP address with no user intervention. Automatic Private IP Addressing A time during processes when something causes the process to slowdown or stop all together. APIPA.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Client DB-25 A program or user that requests data from a server. A 25-pin male connector for attaching External modems or RS-232 serial devices. Collision When do two devices on the same Ethernet network try and transmit data at the exact same time. DB-9 Cookie dBd Information that is stored on the hard drive of your computer that holds your preferences to the site that gave your computer the cookie. Decibels related to dipole antenna.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 DHCP DSL Dynamic Host Configuration Protocol: Used to automatically assign IP addresses from a predefined pool of addresses to computers or devices that request them. Digital Subscriber Line. High connection over telephone lines. Digital certificate Sending and Receiving data transmissions at the same time. An electronic method of providing credentials to a server in order to have access to it or a network.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Ethernet FTP The most widely used technology for Local Area Networks. File Transfer Protocol. Easiest way to transfer files between computers on the Internet. Fiber optic Full-duplex A way of sending data through light impulses over glass or plastic wire or fiber. Sending and Receiving data at the same time. File server The amount an amplifier boosts the wireless signal.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Hashing IGMP Transforming a string of characters into a shorter string with a predefined length. Hexadecimal Internet Group Management Protocol is used to make sure that computers can report their multicast group membership to adjacent routers. Characters 0-9 and A-F. IIS Hop Internet Information Server is a WEB server and FTP server provided by Microsoft. The action of data packets being transmitted from one router to another.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Internet Protocol Security Java IPsec provides security at the packet processing layer of network communication. A programming language used to create programs and applets for web pages. Internet Service Provider Kbps An ISP provides access to the Internet to individuals or companies. Kilobits per second. Intranet Kilobyte. A private network. L2TP Intrusion Detection Layer 2 Tunneling Protocol.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 LPR/LPD MPPE “Line Printer Requestor”/”Line Printer Daemon”. A TCP/IP protocol for transmitting streams of printer data. Microsoft Point-to-Point Encryption is used to secure data transmissions over PPTP connections. MAC Address MTU A unique hardware ID assigned to every Ethernet adapter by the manufacturer. Mbps Maximum Transmission Unit is the largest packet that can be transmitted on a packet-based network like the Internet.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Network Interface Card NIC. A card installed in a computer or built onto the motherboard that allows the computer to connect to a network. Network Layer The third layer of the OSI model which handles the routing of traffic on a network. Network Time Protocol Used to synchronize the time of all the computers in a network. NIC routers in the network as opposed to sending the entire routing table at a regular interval, which is how RIP functions.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 channel) but can have multiple ports (logical channels) each identified by a number. PPP Point-to-Point Protocol is used for two computers to communicate with each over a serial interface, like a phone line. PPPoE Point-to-Point Protocol over Ethernet is used to connect multiple computers to a remote server over Ethernet. PPTP Point-to-Point Tunneling Protocol is used for creating VPN tunnels over the Internet between two networks.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Session key SSH An encryption and decryption key that is generated for every communication session between two computers. Secure Shell is a command line interface that allows for secure connections to remote computers. Session layer SSID The fifth layer of the OSI model which coordinates the connection and communication between applications on both ends. Service Set Identifier is a name for a wireless network.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 TFTP Upload Trivial File Transfer Protocol is a utility used for transferring files that is simpler to use than FTP but with less features. To send a request from one computer to another and have a file transmitted from the requesting computer to the other. Throughput UPnP The amount of data that can be transferred in a given time period. Universal Plug and Play.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Wake on LAN WiFi Protected Access Allows you to power up a computer through it’s Network Interface Card. An updated version of security for wireless networks that provides authentication as well as encryption. WAN Wide Area Network Wide Area Network. The larger network that your LAN is connected to, which may be the Internet itself, or a regional or corporate network. WCN Windows Connect Now.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Yagi antenna A directional antenna used to concentrate wireless signals on a specific location. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 10 APPENDIX 10.1 Regulatory and Safety Information Read all operating instructions and the safety information below and before using the CBA750B device to avoid injury. FEDERAL COMMUNICATION COMMISSION INTERFERENCE STATEMENT This equipment has been tested and found to comply with the limits for a Class B digital device, pursuant to Part 15 of the FCC Rules.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 Industry Canada Statement This device complies with RSS-210, RSS-102, and RSS-Gen of the Industry Canada Rules. Operation is subject to the following two conditions: (1) This device may not cause harmful interference, and (2) this device must accept any interference received, including interference that may cause undesired operation.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 10.3 Specifications MODEL NAME CBA750B Cellular Broadband Adapter WAN 3G/4G via three modem ports (2 USB 2.
CRADLEPOINT CBA750B | USER MANUAL Firmware version 5.0 http://www.cradlepoint.com/ Copyright © 2013 by CradlePoint, Inc. All rights reserved. © 2013 CRADLEPOINT, INC. PLEASE VISIT HTTP://KNOWLEDGEBASE.CRADLEPOINT.
