Kiwire 3.0 Administrator - Device & Controller Setup Guide
Kiwire 3.0 Administrator - Device & Controller Setup Guide
Cambium Networks Configuration for Kiwire Hotspot
Cambium Networks Configuration for Kiwire Hotspot
Prerequisites
Before integrating the controller with Kiwire, it is necessary that the controller and access point:
-
are connected to the Internet
-
are reachable on the network
-
have an IP address assigned to the a through DHCP or static
Note:
-
Kiwire-hostname or Kiwire-ip can be obtain by contacting our technical support for our cloud customer. For enterprise client the ip will be on premises Kiwire ip address.
-
Social network hostname list can be obtained from Social network whitelist guide
Part 1: Cambium cnMaestro configuration
-
Login to your Cambium cnMaestro controller
-
Go to WLANs > Configuration > AAA Servers
-
Authentication Server
-
Host: Kiwire-hostname or Kiwire-Ip
-
Secret: create a secret pass phrase
-
Port: 1812
-
Timeout: 3 seconds
-
Attempts: 1
-
-
Accounting Server
-
Host: Kiwire-hostname or Kiwire-ip
-
Secret: secret same as authentication server
-
Port: 1813
-
Timeout: 3 seconds
-
Attempts: 1
-
Accounting Mode: Start-Interim-Stop
-
Accounting Packet: ticked
-
Interim Update Interval: 1800 seconds
-
-
Advanced Settings
-
NAS-Identifier: AP MAC address with capital letters and colon
-
Dynamic Authorization: ticked
-
Dynamic VLAN: ticked
-
Called Station ID: AP-MAC:SSID
-
-
Omaya 3.0 Administrator > Quick Setup > Dashboard
Documentation
Tanaza
Configure Protection on Tanaza devices
To use Tanaza web content filtering by follow these steps:
IMPORTANT: before proceeding, it is necessary to update the Tanaza firmware, in order to avoid problems of integration with the filter.
If you are not registered, please complete the form at this link: Click here to register
Download this file:
user.sh
1. Open that file, using a text editor like Notepad for Windows OS, and search a string like this one:
URL=”/nic/update?hostname=&myip=&wildcard=NOCHG&username=&password=”
2. Change and with your account credentials, for example:
URL=”/nic/update?hostname=&myip=&wildcard=NOCHG&username=tanaza&password=tanazapassword”
IMPORTANT: You have to replace and with your credentials without the characters < and >.
3. Upload the edited script file (user.sh) into any AP you want to use with your web content filtering license.
To do so, connect to the selected AP by SSH (for example, you can use Putty).
Upload the file user.sh into the AP with this command (change device_IP_address with the AP IP address):
Windows OS: pscp -scp user.sh admin@device_IP_address:/overlay/
Linux OS: scp user.sh admin@device_IP_address:/overlay/
If prompted, enter the password tanaza.
4. Enter this command to let the Tanaza firmware execute the file:
chmod +x /overlay/user.sh
5. Reboot the AP (e.g. from the Tanaza cloud or powering OFF the device).
6. Now you need to configure the content filter’s DNS (see below) in every AP on which you want to use your filtering license (i.e. every AP on which the script has been uploaded correctly):
Primary DNS server: 185.236.104.104
Secondary DNS server: 185.236.105.105
To do that, open your AP settings in your Tanaza cloud account and change the main DNS servers of the AP as shown below:
Alternatively, if you are using an SSID into a NAT, change the DNS servers of the AP as shown below:
