Manualshelf

User manual

ManualsBrandsUnbranded ManualsWLANStreaming box Black Box Coalesce Wireless Collaboration System
31323334353637383940
877-877-2269 | blackbox.com/Coalesce
Page 36
Appendix D: Coalesce Security
Appendix D. Coalesce Security
D.1 Network, Configuration Options
The Coalesce has two network interface cards, one for Ethernet and one for the wireless antenna. These devices can be enabled
and disabled independently. This flexibility allows the Coalesce to be deployed either on the corporate network or as a standalone
device.
Network settings are accessed in the Coalesce configuration panel. Administrators are able to select a network setting and
configure the appropriate network interface. This configuration panel can be locked to other users by adding an administrative
password. This will disallow users from modifying a network setup of selecting a different network mode.
When a mode is selected, the appropriate settings for one or more of the network interfaces will be made available in the
configuration panel. Settings such as DHCP or fixed IP address, DNS server, and SSID Name (for wireless), can be managed in this
panel.
The four network modes described below are mutually exclusive. Only one mode can be active at a time.
Wireless Access Point Mode Only: This mode is useful for environments that cannot support on-network deployment or use
cases that involve large numbers of visitors. Wireless Access Point (WAP) mode enables supports wireless peer-to-peer traffic
only. Users will connect to the configured SSID and share items directly to the Coalesce over the standalone network. In this
mode, the Ethernet adapters are disabled to disallow bridging.
Ethernet Network Deployment: The Coalesce can be deployed directly on the exiting network to support direct access from any
user who is connected to that network. This mode of deployment is ideal for environments where an Ethernet connection to
the network is available and users will primarily already be on the existing network. DHCP or static IP configuration options are
available. In this mode, the wireless antenna is disabled and cannot be accessed to disallow bridging.
Dual-Network Deployment: This mode enables both the Ethernet and Wireless capabilities of the Coalesce simultaneously. This
mode is ideal for environments that will involve users who are connected to the enterprise network and guest users who cannot
access that network. Each interface is configured independently in this configuration. Black Box recommends the Coalesce be
attached to the primary enterprise network via Ethernet. Then the Coalesce can be attached to a second guest network as a
wireless client or the wireless access point capabilities can be enabled, creating a second independent hotspot network for guest
users. For security reasons, Dual-Network deployment implements a firewall between the two network interfaces. This firewall
can be configured into two modes:
- Complete Firewall: No traffic from the wireless antenna is able to reach the Ethernet network and vice versa. All ports are
blocked.
- Internet Bridge: Internet traffic is allowed to pass between the wireless antenna and the Ethernet network. This mode is useful
when the Ethernet network has internet access and you also want to provide guest users internet access while connected to the
WAP SSID. Ports 80 and 443 are open between the two network interfaces in this configuration.
Wireless Client Mode: In this mode, the Coalesce can connect to an existing network via the wireless adaptor. This mode is only
recommended for environments where access to the existing network via Ethernet cable is not possible. Ethernet is disabled in
this mode to disallow bridging.