Configuring HP-Procurve/Colubris gateways

Avatar
Indio Support
Follow

Purpose of this document

  • This document should be used in conjunction with Procurve user guide for configuring your Procurve gateways in WiOS. Please refer to WiOS administrator guide and Procurve user guide for detail information.It assumes that the user has basic knowledge of networking including configuring subnet mask, RADIUS setting, default gateway and DNS configuration.

  • In order to configure Procurve you will need a public IP address, Subnet mask, default gateway and DNS information given to you by your Internet Service Provider. Please keep this information handy while setting up your gateway.

  • Configuring WiOS you will need the WAN public IP address, MAC address, RADIUS secret and serial number  of your Procurve gateway.

  • You need an active WiOS account. Please contact Wifi-soft sales to create your WiOS account.

WiOS Setup

Add New Network:

  1. Open a web browser and type https://wios.wifi-soft.com/index.php and press Enter. Welcome screen of WiOS Cloud appears.

  2. Click the Networks link under Network Administration section.

  3. Click on the + sign in the top right corner tab. The New Network page appears.

cn-1.png

Fields and Buttons

Description

Network Name

Enter the name of your network/hotspot

Device Type

Select the device type (HP Procurve/Colubris) of your hotspot gateway or controller

Venue

Select the type of venue

Address

Displays the address of the network. You need to use the map to locate your address on the map. If you know the address, type the address in the search box on the map and click on search button. The map will display the marker for the address. If you unable to find the exact address, drag the map so the marker is pointing to correct location on the map.

Country

The country where the hotspot is located.

Latitude

The latitude of the network location

Longitude

The longitude of the network location

Submit

Click Submit button to save the changes.

Once the network is added, go back to the List Network page and locate the network that you have recently added.

Then, click on the edit button for the given network.

At the bottom of the page, you will find the Enable hotspot option.

Check this option to enable hotspot for this network. The hotspot settings appear below the form.

step-2.png

Fields & Buttons

Description

Enable hotspot

Check this option if you want to enable hotspot service for this network.

Autologin

Enable autologin for this location. Autologin helps end users connect to hotspot automatically without having to login each time. The MAC address of the device is used to identify the device on the network and system automatically validates the MAC address of the device and authenticates it. Please note that you need to enable Mac Authentication feature in the HP gateway settings.

Validity Period

The time period for autologin to remain active. After the given period, the autologin entry is deleted and user will have to relogin.

Auto MAC Capture

Instructs the system to capture the user's MAC address automatically during first login. This option will ensure that user will remain online even if he has disconnected on the network for some time.

NAS ID

Auto generated NAS ID for the gateway. This NAS Id should be added to the gateway so it can authenticate with the system. You need to copy the NAD ID and enter it in the gateway settings.

Secret

Shared secret between gateway and RADIUS server. You need to add the secret to the gateway. The secret is used to encrypt the communication between gateway and RADIUS server. You need to copy the shared secret and enter it in the RADIUS settings of the gateway.

IP Address

Enter the Public IP address of the gateway if you know it. Otherwise use the default one.

Plan

Select the plan based on your requirements. The plan will restrict the number of concurrent devices allowed on the network.

Interim Interval

Enter the interim interval for the accounting packets in seconds. Sometime this setting needs to be done on the gateway.

Once the hotspot is enabled, WiOS will be ready to start accepting AAA requests from the gateway/controller. When the hotspot is added, WiOS will automatically add a default captive portal for the hotspot. You may go an edit the captive portal and customize it as per your requirements.

Now you will need to design a captive portal for your hotspot and generate a URL that can be configured in the gateway/controller's settings.

Please refer to the captive portal design guide for steps to design your custom captive portal.

 

 

Colubris/HP Setup

It is assumed that that you have properly connected your Colubris/HP gateway with a broadband connection, which has a static or dynamic public IP address. Your Colubris/HP gateway admin interface is accessible either via LAN interface or via the public WAN interface.

Open web browser, and enter the Colubris/HP web address. And press Enter. Colubris/HP Welcome screen appears.

WelcomeScreen-ColubrisHP.png

Step 2) Configure RADIUS profile.

Here we will be configuring RADIUS profile that would be used everywhere.
1) Click on Security >> RADIUS profile >> Add New Profile

colubris-security.png

Please make changes as per the screenshot. The Primary RADIUS server is 3.20.135.30.
ID: Change the NAS ID to the one created in WIOS under hotspot section. Click on SAVE.

cn-2.png

Fields & Buttons

Description

Profile Name

  

Profile Name

Enter a unique name in the Profile Name field.

Settings

  

Authentication Port

Enter authentication port 1812 in Authentication Port field.

Accounting Port

Enter accounting port 1813 in Accounting Port field.

Retry Interval

Enter Retry Interval to 15 seconds in Retry Interval field.

Retry Timeout

Select Retry Timeout check box, and enter retry timeout seconds in the Retry Timeout field.

Authentication Method

Select CHAP authentication method from the Authentication Method drop down menu.

NAS ID

Select the NAS ID check box and enter NAS ID number in NAS ID field.

You need to copy the NASID entry from  Edit Network section under Network Management in WiOS.

Primary RADIUS Server

  

Server Address

Enter the primary RADIUS server IP address in Server Address field. Please enter 3.20.135.30 unless different one is specified by Wifisoft

Secret

Enter the RADIUS server secret in the RADIUS Server Secret field. The secret should match the secret of Network configured in WiOS. You need to copy the secret from the Edit Network section in WiOS.

Confirm Secret

Re-enter the secret in Confirm Secret field.

Secondary RADIUS Server (Optional)

  

Server Address

Enter the secondary RADIUS server IP address in the Server Address field if given by Wifisoft

Secret

Enter the RADIUS server secret in the RADIUS Server Secret field. The secret should match the secret of WiFiLan.

Confirm Secret

Re-enter the secret in Confirm Secret field.

RADIUS Attributes in Colubris

Click Attributes tab under Public Access tab. Access control page will appear.

colubris-public-access.png

Select Unsecure Authentication HTTP port radio button for unsecure login authentication. And Enter HTTP port number in the field.

Click on Public Access >> Attributes.

colubris-public-access-attributes.png

Don't enter any parameters for the top-level options.

You need to configure attributes under the Configured Attributes section as shown below

colubris-walled-gardens.png

Add the following list of attributes. Use the table below for the fields and their values to be used.

Attribute Name

Value

Session-Url

http://portal.wios.wifi-soft.com/pin/ses.htm

Transport-Url

http://portal.wios.wifi-soft.com/pin/tran.htm

Fail-Url

http://portal.wios.wifi-soft.com/pin/fail.htm

Logo-Url

http://portal.wios.wifi-soft.com/pin/logo.gif

Login-URL

This should be URL for your captive portal.

Please check captive portal design for details

use-access-list

ws

access-list

ws,accept,all,wios.wifi-soft.com,all

access-list

ws,accept,all,portal.wios.wifi-soft.com,all

access-list

ws,accept,all,rad01.wios.wifi-soft.com,all

welcome-url

http://www.google.com or any other URL you want the user to view on successful login.

login-err-url

Enter your login URL and append the following string to the login URL

&msg=%r
   

NOTE - Consult with Wifi-soft support team for correct URLs. There is a high possibility that your URLs will be different from above.

VSC Settings

To set up VSC settings

  1. Click VSC tab (left top corner). Virtual Services Communities page appears.


colubris-wlan.png

Name your VSC Profile as per your preference.

colubris-vsc.png

  1. Select HTML-based user logins check box.
  2. Unselect Local Authentication check box.
  3. Select RADIUS Authentication check box.
  4. Select the RADIUS profile you created from the RADIUS Profile drop down menu.
  5. Enter authentication timeout in Authentication Timeout
  6. Select RADIUS Accounting check box.
  7. Select the RADIUS profile you created from the RADIUS Profile drop down menu.

colubris-vsc-2.png

Click on SAVE. You may get an error that the SSID is already in use, please change the SSID to the HOTSPOT name on WifiLAN and delete any other existing SSID profile.

Restart the controller

Click on Home

colubris-home.png

Restart Controller

colubris-restart.png

 

 

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.