Internet Subscriber Server II - PowerPoint PPT Presentation

1 / 51
About This Presentation
Title:

Internet Subscriber Server II

Description:

... II is a free-standing or rack-mounted ... Transparent HTTP Proxy ... A login is permitted only if a match is made with the list contained on the ISS-4000. ... – PowerPoint PPT presentation

Number of Views:258
Avg rating:3.0/5.0
Slides: 52
Provided by: Jack4
Category:

less

Transcript and Presenter's Notes

Title: Internet Subscriber Server II


1
InternetSubscriberServer II
  • Sales Department
  • Advanced Internet Access, LLC
  • TEL 425-814-2216
  • FAX 425-605-3549
  • Email sales_at_aiallc.com
  • www.InstantHotSpot.com

Ver 2.0
2
Just Plug in..and go to Internet
Users just want to simply plug in -- and go to
the Internet. No configuring. No network changes.
No software. The ISS-4000 helps solve
connectivity problems by offering
instant Internet access with no settings to
change, no IP addresses to alter, and no subnets
or gateways to negotiate to properly configure a
users laptop for the facilitys network, that
means without changing network settings, even if
they have a static IP address pre-set.
Users simply plug into the network and they are
immediately connected.
3
ISS-4000Internet Subscriber Server II
The Integrated Solution for medium to large Hot
Spots
The Instant HotSpot Internet Subscriber Server
II is a free-standing or rack-mounted intelligent
gateway with a 4-port switch, a serial port for
system management and administration, and a
dedicated PMS port for connecting the unit to a
customers Property Management System, and
capable of supporting up to 1024 simultaneous
users. Designed for use in the medium to large
environment such as large hotels, university
campuses and airports, the Internet Subscriber
Server II acts as an hotspot access controller
and provides instant Internet access, advanced
security and network management.
4
Whats Newer than ISS-2000
  • PMS Integration
  • 802.1Q Tag-based VLAN infrastructure support
  • Bandwidth Management
  • Enhanced Accounting System
  • Enhanced Billing System
  • Utilizes SSL Encryption
  • Syslog and SNMP v1/v2
  • Support exclusive account generator printer

New features are constantly being added to our
products. For a complete and up-to-date list of
features, contact our technical support team at
sales_at_aiallc.com
5
Key Features and Highlights
IP Plug and PlayZero Configuration Outgoing
E-mail Redirection Transparent HTTP Proxy AAA and
Billing Web-based Internet Access RADIUS AAA
Support Credit Card Ready Static
Accounts Dynamic Accounts 10 Billing
Profiles On-line Selective Service requires a
payment gateway service like
Security Layer 2 Isolation VPN Pass through SSL
Login Page/Administration Administration Access
Control Pass through IP/MAC Address Management LAN
Device Management Real-time Session List
Syslog SNMP
Marketing Service Customized Login Page Login
Page Redirection Advertisement Link Walled
garden Manage Bandwidth Equal Bandwidth Class of
Service Hotel PMS PMS Integration Port-Location
Mapping Lowest Total Cost Ownership Miscellanies P
ass Through IP/MAC address Multiple WAN
connections
6
IP Plug and Play
  • Zero Configuration Internet Access
  • Outgoing Email Redirection
  • Transparent HTTP Proxy

7
Key FeaturesZero Configuration Internet Access
Easy-to-Use, Plug-and-Play Internet AccessAIAs
unique IP Plug-and-Play (iPnP) technology allows
subscribers to connect with ease for broadband
access without having to re-configure any of
their device IP settings including DHCP, DNS,
Proxy and dynamic and static IP address
assignments.
ISS-4000
ADSL Modem
Wireless AP
Ethernet / VDSL / HomePNA Switch
Dynamic IP
Fixed Global IP
Fixed Private IP
DHCP Client
HTTP Proxy
8
Key Features Outgoing Email Redirection
The ISS-4000 will redirect subscribers original
message of E-mail according to SMTP rules and
sent it out via the specified SMTP server. This
function could help subscribers to send E-mail
via the local SMTP server when their default SMTP
server is out of work or dont allow connecting
from Internet.
Pre-installed Email Server 210.66.77.88
  • All SMTP packet from Subscribers will be
    re-directed to specified SMTP Server which
    pre-installed by service provider.
  • Relay function of this SMTP Server must be
    enabled.
  • Subscribers no need to modify the SMTP setting
    for their laptop.

Send mail
Send mail
Original SMTP Server Setting 192.168.100.3
Original SMTP Server Setting mail.aiallc.com
9
Key Features Transparent HTTP Proxy
Supports common proxies acting as a proxy server.
This function could help subscribers without
changing proxy settings to eliminate support
calls related to client proxy settings. (only
support HTTP proxy)
ISS-4000
HTTP
Even subscribers browser has proxy server
setting, the ISS-4000 could work as proxy server
to serve this laptop. Subscriber do not need to
change the proxy setting of his laptop.
Proxy Server Enable
Proxy Server Disable
10
AAA and Billing
  • Web-based Internet Access
  • RADIUS Support
  • Static Accounts
  • Dynamic Accounts
  • 10 Billing Profiles
  • On-line Selective Service

11
Key Features Web-based Internet Access
The Login page displays prompting the
subscriber to enter the username and password for
the first time Internet access. Subscribers
without valid username and password cannot access
Internet.
ISS-4000
ADSL /Cable Modem
Wireless AP
Blocked
Login Page
Login Page
Login Page
User B
WITH valid credential
WITH valid credential
WITHOUT valid credential
12
Key Features RADIUS AAA Support
  • The system supports Remote Authentication Dial-In
    User Service (RADIUS). RADIUS is an
    authentication and accounting system used by many
    Internet Service Providers (ISPs). RADIUS enables
    ISPs to maintain a very large central database of
    users.
  • Some of the key benefits of supporting RADIUS
    include
  • Authentication and Accounting service
  • Secondary RADIUS redundancy
  • VSA (vendor specific attribute) support

ISS-4000
Subscriber
RADIUS Server
Internet Access Request (Open Browser)
Send Login Page to subscriber
Authentication Request
Enter username and password
Authentication Reply
Access Allow or Deny
13
Key Features 10 Billing Profiles
The administrator can define up to 10 billing
profiles. The billing time base can be minute,
hour, day, week, month and unlimited.
14
Key Features On-line Selective Service
Subscribers can choose from the pre-defined
service selections (billing profiles) when login
if PMS implemented.
Administrator can define 10 billing profiles
Subscriber can choose one billing profile when
login
15
Key Features Static Accounts
Static Accounts can be created and managed by a
series of specific number like hotel rooms.
Static Accounts can be used for PMS billing
without 802.1Q tag-based VLAN infrastructure or
Port-Location Mapping Infrastructure. Static
accounts reside in the flash memory all the time.
You have three ways to create static accounts,
batch create or import from the stored accounts
or manually.
Subscribers can login with username (room number)
and password, and the ISS-4000 can post charges
for Internet access directly to a guests hotel
bill
16
Key Features Dynamic Accounts
Dynamic Accounts can be created randomly and have
expired duration. It is designed for provisional
usage. You have three ways to operate the
accounts 1. Clicking a button on the thermal
printer connected with ISS-4000 console port 2.
Clicking the 4 pre-defined buttons from the
Web-based Dynamic Account Operator and print the
receipt out from PC-Connected printer. 3. Allow
guests to use a credit card to sign-on (requires
optional service by
)
2. From the Web-based dynamic account operator
1. From the connected AG-100
AG-100
Can choose from 10 billing profiles
17
Security
  • Layer 2 Isolation
  • VPN Passthrough
  • SSL Login Page and Administration
  • Administration Access Control

18
Key Features Layer 2 VLAN Isolation
Layer 2 VLAN Isolation prevents every wireless or
wired subscriber from communicating with each
other, even if they are within same subnet. They
can see the Internet, but not each other. This is
the best security solution for hotspots -
preventing a guest (or drive-by user) from
hacking into your other guests laptops from
within the network.
ISS-4000
ADSL /Cable Modem
X
X
19
Key Features VPN Passthrough
VPN Passthrough provides the subscribers who want
to run his VPN or secure tunneling client
software to connect to his/her companys VPN
server Interoperability List AVAYA(IPSec),
Cisco(IPSec), Nortel(IPSec), CheckPoint(IPSec) Sym
antec(IPSec), Microsoft Win2000 RRAS(PPTP, L2TP)
PPTP VPN Server
Mail
FTP
Company A
VPN Client PPTP
L2TP VPN Server
Secure Tunnel
Mail
FTP
VPN Client L2TP
The ISS-4000 supports only Encapsulating Security
Payload (ESP) tunnel mode. This is the most
common mode of establishing IPSec tunnels. In the
rare case that a subscriber is using one of the
other methods, then it would be necessary for
this user to be given a public IP address. Other
IPSec methods are Authentication Header (AH)
transport and tunnel mode and ESP transport mode.
Company C
IPSec VPN Server
Mail
FTP
Company B
VPN Client IPsec
20
Key Features SSL Login Page/Administration
We use Secure HTML Login Page through SSL to
protect username and password while LAN users
login. That enables security authentication
within the network, preventing wireless snoops
from seeing your guests wireless keystrokes and
data.
ISS-4000
ADSL /Cable Modem
Wireless AP
X
(((((((((((((((((((((((
Login Page
Username ???????? Password ?????????
Wireless Airopeak
Subscriber Logins Username/Password are
encrypted, therefore even the packets are
captured ,hackers still uneasily to know the
username/password
User B
SSL Secure Login Page and Administrative Page
21
Key Features Administration Access Control
The ISS-4000 integrates a secure administration
access control list that checks the source (IP
address) of administrator logins. A login is
permitted only if a match is made with the list
contained on the ISS-4000. If a match is not
made, the login is denied, even if a correct
login name and password are supplied.
Specified IP Address For Administration
IP Address without in the list
22
Management
  • LAN Device Management
  • Real-time Session List
  • Syslog
  • SNMP

23
Key Features LAN Device Management
The administrator can directly remote control the
devices under the LAN via ISS-4000 and check the
status(OK/Fail) of the LAN devices.
LAN Devices Management
Global IP 210.66.37.22
10.59.1.60
60001
10.59.1.65
60006
10.59.1.66
60007
Administrator
http//210.66.37.2260006
HPNA Switch
Private IP 10.59.1.60
WAP Wireless AP
WAP Wireless AP
Private IP 10.59.1.66
Private IP 10.59.1.65
24
Key Features Real-time Session List
The remote site administrator could monitor the
real time usage status of ISS-4000 via Session
list page.
Administrator
Network Management PC
Global IP 210.66.37.22
PS 1
AP 1
AP 2
HPNA Switch
WAP Wireless AP
WAP Wireless AP
25
Key Features System Logs
ISS-4000 provide 5 categories of logs which will
send to specified Syslog server. Network manager
can know the network status according to the
following logs. 1. System category System
information System Boot Notice System Manager
Activity information 2. Accounting Account
Created Subscriber Trace Logged-in Users 3.
Billing Billing Log 4. LAN Devices
Management LAN Devices Information LAN Devices
Alarm 5. Alert Administration Access Fail
Syslog Server
ADSL /Cable Modem
26
Key Features SNMP MIB I/II Standard
The ISS-4000 supports SNMP (Simple Network
Management Protocol). Each unit acts as an SNMP
agent so that the network connecting status and
configuration information may be accessed
remotely through the SNMP manager, which enables
centralized traffic and fault monitoring.
SNMP Port 161 1. Get 2. Get Next 3. Get Bulk 4.
Set
Port 162 UDP Packet 1. Port Enable/Disable 2.
Boot Up 3. Reset
MIB Browser
SNMP Agent
MIB-II Standard Support
27
Marketing Service
  • Customized Login Page
  • Login Page Redirection
  • Advertisement Link
  • Walled Garden

28
Key Features Customized Login Page
The ISS-4000 provides the standard login page for
subscribers to input username and password.
However, some service providers like hotels,
coffee shops and airports may want to show their
customized page or redirect their hosted page for
promotion or corporate image, therefore ISS-4000
allows service provider or venue owner to specify
or modify the login page.
Up Frame
Connect to the specified web page
Down Frame
Provided by ISS-4000 in order to enter the
username and password
http//210.208.100.1/hotel/hilton.htm
29
Key Features Login Page Redirection
Web Server
Login Page
Login Page
ISS-4000 provides Integration sample code, so you
can make your own html login page
http//208.55.224.160/hl/okeanos/authentication.ht
ml
30
Key Features Advertisement Link
Allow Service Provider to enter 10 URL for
Advertisement Link purpose. Every time after user
login successful, ISS-4000 will redirect the home
page to specified URL link. (Random redirection)
www.yahoo.com www.msn.com www.aiallc.com
31
Key Features Walled Garden
Walled Garden feature allows non-subscribers
access to specific advertising URLs, without
authentication.
32
Manage Bandwidth
  • Equal Bandwidth
  • Class of Service

33
Key Features Equal Bandwidth
The function enables administrator to limit
bandwidth usage on a per user basis (MAC
address). That prevents users from consuming a
disproportionately large amount of bandwidth so
every user gets a fair share of the available
bandwidth.
ADSL /Cable Modem
Up64kbps Down128kpbs
Up64kbps Down128kpbs
Up64kbps Down128kpbs
Up64kbps Down128kpbs
34
Key Features Class of Service
The function enables administrator to limit
bandwidth usage according to the RADIUS
vendor-specific attribute (RADIUS authentication)
or billing profile setting (Built-in
authentication). This allows every user to have a
different service quality for Internet bandwidth.
ADSL /Cable Modem
Up16kbps Down64kpbs
Up16kbps Down64kpbs
Up128kbps Down128kpbs
Up512kbps Down512kpbs
35
Hotel PMS
  • PMS Integration
  • Port-Location Mapping
  • Lowest Total Cost Ownership

36
Key Features PMS Integration
Many hotels use a Property Management System to
perform in-room billing of many services they
provide their guests including room service,
mini-bar, telephone usage as well as Internet
Access service. For example, by integrating with
a hotels PMS, the ISS-4000 can post charges for
Internet access directly to a guests hotel bill.
The ISS-4000 outputs a call accounting record to
the PMS system whenever a subscriber purchase
Internet service and decides to post the charges
to their room. The ISS-4000 has a dedicated PMS
port for connecting the unit to a customers
Property Management System. The ISS-4000 offers
support for the major brand PMS system, Micros
Fidelio and Marriot PMS, to enable Hotels to
perform in-room billing.
37
Key Features Port-Location Mapping
The ISS-4000 supports 802.1Q Tag-based VLAN
infrastructure. The ISS-4000 uses a Port-Location
Mapping table to manage the assigned ports and
ensure accurate billing for service used by a
particular port. In-Room port-location mapping
can be achieved by defining what Location/VLAN
IDs to listen for and what billing profile to
associate with it. It is used to have the
ISS-4000 automatically identify what port a
machine is connecting on.
ADSL /Cable Modem
Ethernet / VDSL / HomePNA Switch
Port (VLAN ID)
Port 1
Port 2
Port 3
Port 4
Port-Location Mapping Table
Location
Room 1001
Room 1002
Room 1003
Room 1004
38
Key Features Lowest Total Cost Ownership
In general, the high-costly 802.1Q Tag-based VLAN
infrastructure is a MUST to be accompanied with
other ISS-4000-like products. However, ISS-4000
also can work with PMS without costly 802.1Q
Tag-based VLAN infrastructure. AIAs VDSL /
HomePNA / Ethernet product series are
port-location mapping infrastructure, which are
the best and lowest TCO and partner with
ISS-4000, to replace the costly 802.1Q Tag-based
VLAN infrastructure. In conclusion, the ISS-4000
is the most flexible access controller with PMS
and infrastructure in the world.
PMS
PMS
PMS
Scenario A
Scenario A
Scenario B
VDSL Switch
HomePNA Switch
Ethernet Switch
AIA Port-location mapping infrastructure
General Infrastructure
802.1Q Tag-based VLAN Infrastructure
Subscriber login without username and password
Subscriber login with username and
password (static accounts are created as room
numbers)
Subscriber login without username and password
39
Miscellanies
  • Pass Through IP/MAC address
  • Multiple WAN Connections

40
Key Features Pass Through IP/MAC
Pass Through IP/MAC address is useful for VIP
users without authentication and for devices that
do not have a web browser (cash registers, for
example) or that are connected with LAN port
(wireless access points, for example).
ISS-4000
Built-in Auth. / RADIUS Auth. Enabled
ADSL /Cable Modem
Guest or Subscriber
Guest or Subscriber
Guest or Subscriber
Hotel Staff
Hotel Manager
VIP Guest or Subscriber
No Authentication required
Username and Password required
41
Key Features Multiple WAN connections
The system provides alternative WAN connection
such as PPPoE, DHCP Client or Static IP for
service provider to establish their service
networking quickly and easily.
PPPoE
DHCP Client
Static IP
42
User Experience
  • Subscriber Login Scenario A
  • Subscriber Login Scenario B
  • Subscriber Login Scenario C

43
User Experience Subscriber Login - Scenario A
The login procedure shows the PMS integration
with port-location mapping infrastructure or
802.1Q tag-based VLAN infrastructure.
Subscriber Login
Popup Information Window after login successfully
44
User Experience Subscriber Login - Scenario B
The login procedure shows the PMS integration
without port-location mapping infrastructure or
802.1Q tag-based VLAN infrastructure.
Subscriber Login
Popup Information Window after login successfully
45
User Experience Subscriber Login - Scenario C
The login procedure shows the standard login
without PMS integration and port-location mapping
infrastructure.
Subscriber Login
Popup Information Window after login successfully
46
Conclusion
ISS-4000 can help you
47
ISS-4000 can help you
Integrated Solution for rapid deployment The
ISS-4000 is a complete access controller for
medium to large hot-spots. It can serve up to
1024 simultaneous users and it is an ideal
hotspot solution to be deployed in the hotels,
coffee shops, airports and other sites that
commonly host business travelers and offers
instant high-speed Internet connections. It is
perfect for Hotspot application! Deliver instant
PnP connectivity service With its IP Plug and
Play technology, the ISS-4000 helps solve
connectivity problems by offering instant
Internet access without the need for
configuration changes to the client computer or
any resident client-side software and allows
guests to send E-mail as usual without changing
E-mail SMTP server settings even if their
configured mail server is unavailable or behind a
corporate firewall. Complete user authentication
and accounting The ISS-4000 works with
industry-standard RADIUS server that is allowed
administer to control user's login name and
password to fully support AAA (Authentication,
Accounting and Authorization). Ready to accept
credit cards, even without RADIUS The ISS-4000
Instant HotSpot Server comes with built-in hooks
for leading payment gateways like

48
ISS-4000 can help you
Sophisticated Remote Management The ISS-4000
enables you to manage all your underlying network
devices with Syslog messaging, SNMP and LAN
devices Management to reduce maintenance
overhead. Comprehensive security The ISS-4000
provides a fully-secure operating environment
with VPN pass through, SSL certificate, and Layer
2 Isolation V-LAN Security. Enhance Local and
Personalized Service The login and logout pages
are fully customizable. The ISS-4000 has the
ability to let you redirect end users to your
advertising web pages, increase your potential
for revenue and customize locations where
end-users can visit free (walled garden). Hotel
PMS Integration The ISS-4000 works with hotel
Micros Fidelio PMS billing system that is allowed
hotel to fully support PMS billing system of
Internet Access. Built-in AAA/Billing System The
ISS-4000 has built-in AAA and billing system that
is allowed manager to control user for Internet
access and billing mechanism individually without
any external AAA server and billing server.
49
Wi-Fi Hot SpotISS-4000 for Large Scale Hotspot
Solution
Large Scale
ADSL / Cable Modem
RADIUS Server
Billing Server
Service Server
ISS-4000 Hotspot Gateway
Network Operation Center
Ethernet Switch / PoE Switch
Wireless STA
50
Hotel VDSL Phoneline SolutionISS-4000 and VDSL
infrastructure (WiredWireless)
2F
Room201
Guest Rooms
Notebook with Ethernet Interface
VM-120 VDSL Modem
Wireless STA
Enjoy Internet with freedom
1F
Open Area
Lobby Pool Coffee shop Restaurants Gardens
VM-120 VDSL Modem
Wireless AP
Control Center
Hotel PMS System
RADIUS Server (Optional)
DSLAM/PBX
Internet
ADSL / Cable Modem
ISS-4000 Internet Subscriber Server II
VS-1200 VDSL switch
51
Hotel HomePNA Phoneline SolutionISS-4000 and
HomePNA infrastructure (WiredWireless)
2F
Room201
Guest Rooms
Notebook with Ethernet Interface
PEC-120 HomePNA Converter
Wireless STA
Enjoy Internet with freedom
1F
Open Area
Lobby Pool Coffee shop Restaurants Gardens
PEC-120 HomePNA Converter
Wireless AP
Control Center
Hotel PMS System
RADIUS Server (Optional)
DSLAM/PBX
Internet
ADSL / Cable Modem
ISS-4000 Internet Subscriber Server II
PS-80 HomePNA switch
Write a Comment
User Comments (0)
About PowerShow.com