Setting up your ClearAccess
Quick Guide and Navigating the Control Panel

Quick Guide

To access your Clearvision Management System control panel go to:
https://clearvision118.clearaccess.com/user/hn.jsp

Your login information is:

Username: The last six characters of the MAC address, e.g. 0FFD12

Password: The password is the first six numbers and upper case letters of the Mac address.

NAVIGATING THE GATEWAY CONTROL PANEL

The Gateway Control Panel is another tool in the managers toolbox to help support customers by modifying their wireless settings, changing firewall and port forwarding settings, creating static IP address's, enabling time blocking, and managing their content filter. In this chapter you will learn how to do each task to better support your customers.

ACCESSING THE CONTROL PANEL

There are two ways for an end user to access the Control Panel:

1. Through a computer that is directly connected to the gateway following the steps below:

a. Open a Web Browser and type the IP address 192.168.50.1 (or http://clearview.home) into the navigation bar and hit the enter/return key.

b. A prompt for ClearView credentials will pop up on the screen.

c. ClearView credentials are based on the gateway’s MAC address as follows:
  • Username: The last six characters of the MAC address, e.g. 0FFD12
  • Password: The password is the first six numbers and upper case letters of the Mac address.

Navigating the Control Panel

Once you have been granted access into the Control Panel, all the network elements connected to the ClearAccess gateway, as well as the available services for these devices will show up on your web browser screen in the form of icons, as depicted on the list and picture below:

  • A Gateway icon
  • A Reserve Static IP icon
  • An Internet Filter icon
  • One icon per each device connected to the gateway

 

MANAGING INTERNET ACCESS RULES

If the customer has time blocking and content filtering enabled in their subscription, then you can manage those features using the Internet Filter.

Configuring Time Blocking

The time blocking feature in the control panel allows customers to set time blocking rules and monitor how much time the internet has been used.

Customers can set individual blocks of time throughout the week to be blocked, they can limit the amount of time the internet can be accessed each day, and they can limit the amount of time it can be accessed each week. They can also use the 'Egg Timer' feature to override the normal schedule and add timed access starting immediately for a set amount of time.

As an example lets block a section of time every Wednesday from 6 a.m. to 10:30 p.m., as well as limit internet access to 2 hours per day and 20 hours per week.

How to Add Blocked Time

  1. From the Control Panel main menu, open the Internet Filter toolbox.
  2. Select Time Blocking, this will open a time calendar.
  3. Under Start select the day – Wednesday.
  4. Set the time to 6 a.m.
  5. Under Stop set the ending time to 10:30 p.m.
  6. If you want to block Internet access during this period of time, then click on the Block button. If you want to allow Internet access during this period of time AND block Internet access for the rest of that day, then click on the Allow button.

How to Add Time Limits

Once you have configured a time window to be blocked or allowed for Internet Access, it is possible to complement the schedule with additional Time Limit settings on a per day or weekly basis. In order to add these parameters follow the extra steps below:

  1. Within the Time Limits section, select the maximum amount of time allowed on a given day. In the example below we set the daily limit to 2hr and the weekly limit to 20hr
  2. Click Set Time Limit
  3. Click Finish. This action will take you back to the Control Panel main menu
    1. From the icons on the right hand side of the screen, chose to which
    2. computer would you like the Time Blocking schedule recently configured to be applied to.
  4. Click on that particular computer and check the Time Limit box
  5. Click Apply
  6. Click Logout on the upper right corner of the Control Panel

The blocked time will be reflected on the weekly chart on the screen. You can also click this chart to view what time limits have been set and have the option to remove them.

The 'Set Time Limit' button allows you to reset how much time is available this week for internet usage. For instance, if there has already been 1 hour used out of the 2 hours available, you can press 'Reset' to reset the amount of time available to 2 hours.

How to Delete Time Blocking Rules

  1. From the Control Panel main menu, open the Internet Filter toolbox.
  2. Select Time Blocking
  3. In the calendar on the left hand side, click on the colored block representing the time schedule that you want to remove. This will show the details for that rule and will present a Remove option on the right hand side of the screen, as depicted in the figure below:
  4. Click on the Remove button associated to the Time Blocking rule on the right hand side of the screen.
  5. Click Finish

CONFIGURING CONTENT FILTERING RULES

In order to access and manage Content Filtering rules, you need to click on the Internet Filter icon on the upper left corner on the Control Panel main page. The rules configured through this functionality will then be enabled or disabled on each computer connected to the gateway through the Internet Filter functionality on each particular device as explained below.

By clicking on the Content Filter button above, the Content Filtering parameters will pop up on a new page as depicted below: There are three ways to block content using the Content Filter:

  • Disable Content Filtering – This option disables all content filtering except for sites that have been explicitly chosen in the Blocked Site List.
  • Allow Only Kidz Sites – This option only allows sites known to be safe for kids. These sites are presets managed by ClearAccess. This option also blocks sites chosen in the Blocked Site List.
  • Block Sites by Category – This option blocks all the categories checked in the Categories List. This option also blocks sites chosen in the Blocked Site List.

Through the content filtering tool you can track which websites were blocked as well as set which websites should be allowed past the filter policy. By using check-boxes it is possible to enable or disable the filter settings, blocked list, allowed list, and blocked site tracking.

Let's enable and disable some content blocked by category as well as turn off Track Blocked Sites. Let's turn off blocking for the category Hosting Sites and turn on blocking for Travel and Web Log.

How to Block Sites by Category

  1. Open the Internet Filter toolbox.
  2. Select Content Filter.
  3. Select Block Sites By Category to only block sites enabled in the Categories List.
  4. Disable the Track Blocked Sites feature.
  5. Under Customize Filter Settings click Show Categories. By clicking this button you will see a list of the categories that can be blocked and allowed.
  6. Click the check box next to Hosting Sites to disable the category blocking of Hosting Sites.
  7. Click the check box next to Travel and Weblog to enable blocking for all sites associated with Travelling and Weblog's.
  8. Click Apply to save your settings. You will be redirected to the Control Panel main page.
  9. From the icons on the right hand side of the screen, chose to which computer would you like the content filter recently configured to be applied to.
  10. 10.Click on that particular computer and uncheck the Internet Filtering box
  11. 11.Click Apply
  12. 12.Repeat steps 5,6 &7 this time checking the Internet Filtering box
  13. 13.Click Logout on the upper right corner of the Control Panel

CREATING A STATIC IP ADDRESS

Your ClearAccess gateway will hand out IP addresses on the LAN side dynamically by default. For some networks element that cannot receive an IP address via DHCP, it is possible to create and assign a static IP address through the Control Panel as well.

How To Assign a Static IP Address

  1. Open the Control Panel of your gateway
  2. Open the Reserve Static IP toolbox on the bottom right corner.
  3. Choose a name for the computer or network element that you will assign the fixed IP address to.
  4. Assign a static IP Address – Ex. 192.168.50.xxx, XXX must be greater than 1. Figure 23: Open toolbox
  5. Assign the MAC Address the computer or network element that you will assign the fixed IP address to – Ex. 00:0e:12:45:a2:6b
  6. Click Finish.

You can now access your new network element from the Control Panel’s main menu to view its connection status, settings, and modify filtering/time blocking parameters as described in the previous sections.

VIEWING AND MODIFYING WIRELESS SETTINGS

The Gateway toolbox allows you to view a gateway's parameters as well as modify it's wireless settings. Through the Gateway toolbox you can view:

  • Gateway Model – Ex. ClearAccess AG10W
  • Gateway Type – This field indicates the hardware that the gateway uses. Ex. 6348gw11_CAP: 6348 – Broadcom chip product number gw – Indicates a 'gateway wireless' 11 – Uses 802.11
  • MAC Address
  • External Name
  • External IP – IP address seen by the WAN
  • Internal IP – IP address seen by the LAN
  • WEP – Indicates the status of WEP security (Ex. On/Off)
  • ESSID – A unique name to identify the gateway to any computer which would want to wirelessly connect to it. (Ex. Jack's Wireless)
  • WEP Key – If WEP is enabled the key will be displayed here. This is useful if the customer forgets their WEP key and needs it recovered.

Using the Gateway toolbox you can modify your wireless settings, such as changing your WEP Key, enabling/disabling wireless, changing the wireless broadcast channel, and enabling/disabling the broadcast of your SSID.

Let's enable some security settings to make the gateway more secure. Let's change the network name to SpeedyISP, change the WEP Key to a 13 digit password Sp33dee123456, and disable the broadcast of the wireless SSID.

How to change Gateway Security Settings

  1. Open the Gateway toolbox, by clicking the Gateway icon on the Control Panel.
  2. Click Wireless Setup.
  3. Click Advanced.
  4. Select the Network Name of your preference. This name will show up on wireless computers as an available secured wireless network. In the example below, we set the Network Name to SpeedyISP.
  5. In order to change the WEP key value to one other than what is automatically generated by the gateway, type the new WEP key into the WEP Key field. Please note that if using 128 bit encryption, the length of the WEP keys must be 13 characters long (alpha-numeric), if the encryption level has been set to 64, then the WEP key has to be 5 characters long. In this example type Sp33dee123456 into the WEP Key field.
  6. In order to change the channel on which the radio broadcasts its signal, please choose a channel number from 1 to 14 by clicking on the scroll down menu. This functionality is useful if the gateway's radio is interfering with other wireless devices in your environment or vice versa (other wireless devices affecting the gateway’s ability to transmit wireless signals properly).
  7. Check the Hide SSID check-box to disable broadcasting the wireless SSID. This functionality adds greater security to your wireless connection by hiding the wireless network name. Once you have your computer connected to the secure wireless network you can add this extra security step.
  8. Click Apply to save your gateway security settings.
  9. Logout from the Control Panel

CONFIGURING PORT FORWARDING RULES

A powerful feature of the Control Panel is the ability to remotely configure port forwarding settings for specific network elements connected behind the gateway on the local area network (LAN).

In a Network Address Translation (NAT) environment, where multiple network elements connect to the WAN (outside network) by sharing one public IP address belonging to the gateway (using NAT), it is sometimes necessary to configure Port Forwarding rules in order for external hosts to be able to communicate with devices behind the gateway on the local area network (LAN). A ‘port forward’ command consists of a rule which configures the gateway’s firewall to map a particular TCP or UDP port (or range of ports) to one particular device on its LAN side. This enables the gateway to know which private IP address on the LAN to send certain data packets to when it receives data from the WAN over a specific logical port.

Port forwarding is usually necessary to play online games or deploy VoIP services behind a NAT enabled gateway. In this section you will learn how to configure Port Forwarding rules through the Control Panel.

How to configure Port Forwarding via the Control Panel

  1. Login into the Control Panel.
  2. Click on the computer or network element of interest on the right hand side of the screen.
  3. Click on Manage Firewall. A new page with the firewall parameters will popup as depicted on the figure below.

    Port Forwarding rules can be automatically configured for this network element by selecting the appropriate template from any of the four categories listed:

      • Media Devices – A list of media related devices that can be configured to be forwarded through the gateway, such as a Playstation2, or Net2Phone.
      • Messaging – A list of instant messaging applications which can be forwarded through the firewall, such as AOL Instant Messenger, MSN Messenger, and ICQ Messenger.
      • PC Games – This contains a list of games which can be forwarded through the firewall.
      • Remote Access – Remote access applications that would need to be forwarded through the firewall, such as VPN and SSH applications.

  4. Select the particular ‘Template’ of interest and click the Add Selection button
  5. Click the Home button
  6. Click the Apply button
  7. Logout from the Control Panel
  8. The Port Forwarding setting will start working immediately for that particular device

If an application is not listed in the one of the four templates’ scroll down menus, then you can set the port forwarding for that application manually by following the steps below:

  1. From the Manage Firewall page from step 3 above click on Define Rule. This will open the following menu:
  2. Choose UDP or TCP from the Protocol drop-down menu.
  3. Enter the Port number (or first Port in the range of Ports you are trying to forward) as the Start port. e.g. 2200
  4. If you are configuring port forwarding for just one port, then enter the same Start Port as End Port. If you are configuring a range of ports, then enter the final port on the range as the End Port, e.g. 5000
  5. If you are trying to configure the ports on the LAN side of the gateway to be mapped into the same Port number on the WAN side, then enter the Start Port number as the Relocate value. If you are trying to relocate the port or range of ports into another port or range of ports in the WAN side, then select the first port of the new range as the Relocate value. Example, if you would like to configure port forwarding rule for all the UDP Ports between 2200 and 5000 (both ends included), on the LAN side and map them starting on port 110 on the WAN side (which will run from port 110 until port 2911) then the configuration will look as depicted below:
  6. Click the Add Rule button.
  7. Click on Home
  8. Click on Apply
  9. Logout from Control Panel

© Copyright 2008 ETEX Telephone Cooperative. All Rights Reserved. Site by Media Quest