Quick Start Guide
© 2013 Celestix Networks, Inc. All rights reserved. The example companies, organizations, products, domain names, e-mail addresses, logos, people, places, and events depicted herein are fictitious. No association with any real company, organization, product, domain name, e-mail address, logo, person, place, or event is intended or should be inferred. Celestix and Celestix logo are trademarks of Celestix Networks, Inc.
Contents Introduction ................................................................................................................................................. 1 Quick Start Guide Usage Notes ............................................................................................................2 Verify Package Contents ........................................................................................................................3 Appliance Hardware Features ............................
Introduction Celestix Networks delivers an exceptional combination of perimeter security features, scalability, and simplicity in cost-efficient appliances. Ready-to-deploy security solutions offer reduced product complexity and ease of management. Your new appliance provides the best solution for today's demanding remote access needs. Celestix DAX appliance delivers always on VPN connectivity to the corporate network with Microsoft Windows Server 2012 DirectAccess.
Quick Start Guide Usage Notes This Quick Start Guide (QSG) is intended to help system administrators install and configure a new appliance with a base level setup as quickly as possible. The instructions cover steps for a common deployment scenario. The guide does not provide extensive reference information. Please consult online help for more information about your appliance.
Web User Interface The web UI is a management tool to access the most common features of your Celestix appliance. Initially, you will use it to quickly set up your DAX. Subsequently, you can use the web UI to access administrative features for both Comet and the TMG application. See the Appendix topic Web User Interface Content Overview for features included in the web UI. See the help topic Web User Interface Overview for more information about using the web UI (Help|Contents|Web UI Overview).
Appliance Series 6200 8200 Documentation CD CAT6 Ethernet Cable Power Cable 2 2 RJ45 Connector Cable Mounting Brackets & Hardware Rack Mounting Slides & Hardware Contents - included - not included If an item is missing from the package, contact Celestix Networks via e-mail: Support1@celestix.
5 | Page Celestix DAX Series Quick Start Guide
Overview: Using Your Celestix Appliance The Celestix DAX appliance allows remote users to securely access internal network file shares, Web sites, and applications without connecting to a virtual private network (VPN). An internal network is also known as a private network or intranet. DirectAccess establishes bi-directional connectivity with an internal network every time a DirectAccess-enabled computer connects to the Internet, even before the user logs on.
Appliance Installation The QSG provides a system administrator with concise instructions for a Celestix appliance base deployment. It covers common installation requirements and is not intended to be comprehensive. Your installation may require additional configuration. Installation instructions first cover assumptions the guide takes into account for a common deployment. Assumptions are followed by the network information worksheet.
Instructions to access the web user interface (web UI) cover a client computer running Internet Explorer 7.0® or higher. Note: IE running on a Windows computer is required to access the web UI’s full functionality. You have static IP addresses reserved for LAN and WAN adapters that you can assign during set up. Network Information Worksheet It will be helpful if you gather and verify your network information before you begin appliance installation and setup.
Lowercase letters Number Non-alphanumeric characters (for example, !, $, #, %) Note: The default user name is “administrator” and the default password is “[Celest1x]” (case sensitive, brackets included). The system administrator should change the default password in the Quick Setup steps. This information is needed in: Quick Setup : Administrator Password Workgroup or Domain name Record the name of the Workgroup or Domain that will be joined during setup.
Range - IP Range, e.g. 192.168.1.1 to 192.168.1.10 Subnet - A Subnet Range, e.g. 192.168.1.0/255.255.255.0 Multiple combinations of the above may be defined. This information is needed in: Configure : Front Panel Controls… : Configure Remote Management… Active Directory Server PKI IP Address: Hostname: IP Address: This information may be needed for application setup. IP Address: This information may be needed for application setup.
a screw (not provided) for each of the holes on each of the brackets. For example: Caution: Do not place the appliance on the floor. Keep it in an upright position. Place it in a well-ventilated area that is out of direct sunlight. Connect Your Appliance to the Network As mentioned previously, these instructions assume that your network is configured for DHCP.
Note: Your appliance hardware may look somewhat different from the example, but the general principle applies. Network Interface LED indicators: Each of the network adaptors contains a pair of lights to help identify connection speed and usage. See below for details (listed by model number: 6200 Right light – displays connection speed (unlit 10Mbps, green 100 Mbps, orange 1000 Mbps). Left light – displays activity (blinking indicates traffic, unlit indicates no traffic).
Power On/Off Your Appliance Power on and boot the appliance by pressing the Jog Dial. Power off your appliance by pressing the Jog Dial for 5 seconds. Note: To power off the appliance gracefully, use the Shutdown option from the front panel display menu.
Front Panel Controls The front panel contains an LED display and Jog Dial. These controls allow you to view system information and to directly manage some configuration settings on the appliance. Front Panel Display The front panel display operates in two modes: Idle mode – the default mode; status screens cycle through display.
Configure This section provides instructions for the appliance setup configuration that is required for all deployments.
ranges, and/or subnets from which you will access the appliance. Examples of remote management include RDP connections and the administration web UI. Note: The Remote Management front panel control feature will add the IP address information you enter to the TMG Remote Management Computers Computer Set. To add remote management IP address sets: 1. Press the Jog Dial and scroll to > Remote Management <. 2. Press the Jog Dial again to select. 3.
for your appliance. Initially, this IP address is normally assigned through DHCP by default. If you cannot use DHCP for the initial IP address setting, the Jog Dial and front panel display can be used to enter a static IP address for the LAN adapter. If you enter the internal network adapter IP address through the front panel, you will not need to do it in the later section, Quick Setup Steps : Interfaces.
Note: You may see a certificate warning when you access the site because it uses a self-signed certificate. You will need to accept the certificate to access your appliance administration. You will be prompted to enter your administrative credentials. Before going through the Quick Setup process, the credentials to login are: User name: administrator Password: [Celest1x] Notes: The password is case-sensitive and the brackets are included.
Configuration – indicates either a DHCP or Static IP address. Status – indicates Up for adapters with connected cables; indicates Down for either an unused adapter or a connection issue. General Properties Select a connector to enable the General Properties button. Use this function to assign DHCP or static address configurations.
Click the OK button to save your settings, click Cancel to return to the Maintenance screen without saving changes. Administrator Password Your appliance ships with a default administrator password. You should change the password when you set up your appliance as this password is public knowledge. This section provides a brief description of the configuration settings in the Administrator Password web UI feature and how to access them.
1. Navigate to Network|Server Name. 2. Enter information for the following fields: Server Name – specify a name for your appliance. DNS suffix – optional; this field sets the primary DNS suffix. Specify the DNS suffix to create a fully qualified server name. Change primary DNS suffix when domain membership changes – check this box if you want to update the primary DNS suffix when the appliance domain membership is changed (for example, at Network|Server Membership).
2. Select the Domain option and enter your network domain name in the text field. 3. Enter a User name and Password in the text fields provided. 4. Click OK. 5. You will be prompted to reboot your appliance to complete the above changes: Click OK to proceed with restarting your appliance. Click Cancel to skip restarting your appliance. (You will need to restart the appliance later to complete the membership changes to Network |Server Membership.
2. Select Enable alert email. 3. Select the check boxes for the alert levels (error, warning, critical) you want email to be sent. 4. Enter a recipient address in the To field. 5. Enter a send address in the From field. 6. Enter your network’s SMTP gateway name or IP address in the With field. 7. To test the email delivery, click Test Settings. Note: The alert email function will indicate whether a test email was sent.
DirectAccess (DA) Configuration Now that your appliance is up and running, you need to configure DirectAccess for your environment. Please refer to Microsoft Windows Server 2012: DirectAccess administrator’s guide for more information. The following instructions explain how to use the web UI to access the DA management console (MMC). You will be accessing the MMC through an RDP session in your browser. The first time you launch the console, the Getting Started Wizard will open automatically.
Now that you have completed the configuration for your appliance, you should use the Last Good Version feature to create a system copy that can help to resolve issues that may result from configuration changes. See the next section for information.
Last Good Version (LGV) Last Good Version (LGV) takes a snapshot of a currently running system which can then be used if configuration changes or other events compromise system performance or functionality. LGV provides another tool to protect your system in addition to regular backups. It is recommended that you create an LGV after you complete the setup for your appliance. The LGV image is created in the recovery system process where the main operating system is not running.
The Saving System Image screen will show a progress indicator and an estimated time to completion for the image copy process. After the image has been created, the system will reboot. DO NOT ACCESS OR TURN OFF THE APPLIANCE DURING THIS PROCESS. The appliance will shut down when the LGV process is complete. Now that you have completed the configuration and Last Good Version setup steps, you should check for appliance software updates. See the next section for information.
Software Updates The Software Update Service allows administrators to keep appliance software current through hotfixes, service packs, and upgrades. Software updates include the following applications: Windows Server® Celestix Comet After you have configured your appliance and created an LGV, use the Software Update Service to ensure you have the latest application patches for all your appliance software. Access the update service through the web UI (Maintenance|Software Updates).
Appendices Use the links to jump to a topic: 29 | P a g e Safety Precautions Product Reclamation and Recycling Network Information Worksheet Form Celestix DAX Series Quick Start Guide
Safety Precautions Do not overload the AC supply branch circuit that provides power to the server. Do not disable the power cord grounding plug. The grounding plug is an important safety feature. Plug the power cord into a grounded electrical outlet that is easily accessible at all times. Unplug the power cord from the inlet on the appliance rear panel to disconnect power to the server. Do not place anything on the power cords or cables.
Product Reclamation and Recycling Celestix Networks is committed to environmentally responsible behavior. As part of this commitment, we work to comply with environmental standards such as the European Union’s Waste Electrical and Electronic Equipment (WEEE) Directive and the Restriction of Hazardous Substances (RoHS) Directive.
Network Information Worksheet Form Property Network Information Computer Name Administrator Password [Celest1x] (default – change during setup) Workgroup or Domain name Workgroup / Domain Name IP Address: Subnet Mask: Default Gateway: LAN Information (Eth 0) Private or Internal Network Interface Primary/Secondary DNS Server: Static Routes: Network Address: Gateway Address: IP Address: Subnet Mask: WAN Information (Eth 1) Public or External Network Interface Default Gateway: Primary/Secondary DNS S
