Purpose
This guide shows how to configure a Nomadix device for Cloud4Wi.
Please note that the images contained in this article may contain outdated configuration data. Therefore, please check the data contained in the article "Parameters for the Solution" at the bottom of the page, as they are certainly up to date.
Prerequisites
The following device models are supported:
- AG 5800 series
This guide applies to the Solution only for the version 5.0.2 or later. Previous releases DO NOT support this device.
In order to correctly integrate a Nomadix controller with the Solution, it is necessary for this one:
- Connect the device to the Internet
- Have WAN and LAN interfaces correctly configured
It is also necessary to have a DHCP server correctly configured into the network, correctly assigning IP addresses to the access points.
Creating a RADIUS Service Profile
In order to configure the device, you must first access the web interface by using administrator login details and then access the Configuration > Realm-Based routing section, where it is possible to configure up to 10 RADIUS Service Profiles. In order to configure a RADIUS Service Profile, it is necessary to click the Add button.
You must set a unique name for the RADIUS Service Profile, to check the Enable RADIUS Authentication Service option and to set the following parameters:
- Authentication - Primary IP / DNS
- Authentication - Port
- Authentication - Secret Key
- Accounting - Primary IP / DNS
- Accounting - Port
- Accounting - Secret Key
The following picture has illustrative purposes, the correct values to assign are indicated in the last paragraph of this guide, called Parameters for the Solution.
RADIUS Client settings
Once configured the RADIUS Server options, it is necessary to set the controller to use the RADIUS Server. To do this it is necessary to access the Configuration > RADIUS Client section.
Here it is necessary to set the RADIUS Service Profile previously defined as Default RADIUS Service Profile, and the following Miscellaneous Options, that must be set as the picture below:
- Enable URL Redirection
- Send NAS identifier
- Send NAS IP
- Send NAS Port Type
- Send Goodbye URL
This page requires also to specify the NAS identifier. In the next step, we are going to tell you where you can retrieve this value
In order to retrieve the NAS identifier value, you have to open the Configuration > Summary section and check the value specified as NSE ID.
So please ensure that the NAS identifier value you specified in the Configuration > RADIUS Client section (in the previous step) is equal to the NSE ID.
AAA configuration
In this next step of the configuration, it is necessary to set AAA settings by accessing the Configuration > AAA section.
Set the following values:
- AAA Services: must be enabled.
- Logout IP: must be set to 1.1.1.1. Otherwise, end-users won't be able to log out properly.
Regarding the redirection to the Splash Page, it is necessary to enable the Internal Web Server option, set the Portal Page URL as indicated in the Parameters for the Solution paragraph and check the Parameter Passing option.
It is also possible to set the controller to use an SSL certificate.
At the end, click on the Submit button to apply changes.
Passthrough Address Settings
As the last step of the configuration, you can set the list of websites allowed also for unauthenticated end-users by accessing the Configuration > Passthrough Address Settings section. To enable this configuration, you must check the Passthrough Addresses - Enable option.
In order to configure the walled garden, please check the following articles:
- Walled garden for the Social Login (websites/domains to open)
- Walled garden for PayPal feature (websites/domains to open)
Allowing free access to the CDN
As explained in the article Enabling the CDN, you must add some IP addresses to the walled garden in order to support the access to the CDN.
The domains to add for this purpose are:
- c4wstatic.cloud4wi.com
- c4wstaticjs.cloud4wi.com
Entering the device details into the Cloud4Wi Dashboard
To integrate the controller with the Solution, it is necessary to enter its details into the Cloud4Wi Dashboard.
To get further information on how to do that, please see How to add an access point. Anyway, in the Cloud4Wi Dashboard, a field called Identifier will be required by the web interface. For Nomadix devices it corresponds to the value previously entered as NAS identifier (the NSE ID for the device).
Parameters for the Solution
The necessary parameters to integrate the device with the Solution are the following:
Authentication - Primary IP / DNS: 54.247.117.188 (or 79.125.111.180, as secondary RADIUS server)
Authentication - Port: 1812
Authentication - Secret Key: (it will be communicated by Cloud4Wi)
Accounting - Primary IP / DNS: 54.247.117.188 (or 79.125.111.180, as secondary RADIUS server)
Accounting - Port: 1812
Accounting - Secret Key: (it will be communicated by Cloud4Wi)
NAS identifier: (must be the NSE ID for the device)
Logout IP: 1.1.1.1
Portal Page URL: https://splashportal.cloud4wi.com?protocol=http
Please note that it is necessary to enter the Splash Page URL exactly as it is written above.
If you enter the Splash Page URL in different formats (e.g. https://splashportal.cloud4wi.com/c4wportal/mysplashportal), then the redirection will fail and the end-user will not be able to see the Splash Page.
If these parameters change in the future, we will promptly inform you about new values.