How USG will impliment on a Small/Middle scale Network

How USG will impliment on a Small/Middle scale Network

Listed type of networks are compatible with our proposed gateway solution. Initially we design this work with both Wired and Wireless network. Since this unit is develop targeting middle and small scale organization such as Schools, Institute, Hotels and middle-scale organization device will not be compatible with high-end enterprise class networks. Below is the sample network diagram which works with Universal Service Gateway;

According to this basic network architecture our gateway has main 3 Ethernet ports considering gateway implementation and considering at head office security as per above network diagram.
Port allocations are as below:

1 x Gigabit Ethernet or Fast Ethernet - Demilitarized Zone (DMZ) / LAN1
1 x Gigabit Ethernet or Fast Ethernet - In Side Zone / LAN2
1 x Gigabit Ethernet or Fast Ethernet – Out Side Zone / WAN1

Features Of USG

Main Proposed Features

We will develop our new Universal Service Gateway in one box with ability to manage more concurrent users bundle with many features which other gateways doesn’t available.


Main proposed features of the Universal Service Gateway – USG, are describe as below

Authentication and User management features

Ability to maintain local database of users and authenticate as Prepaid, Postpaid, Permanent.
Create random password for guest/visitor base users according to his requirement.
Facilitate external authentication integrating with Active Directory, Radius Server

Subscriber management features

Bandwidth limitation and on demand bandwidth allocation for user and group wise.
Support Manual logout, Idle disconnect Service time out and force logout.
Facilitate or Block concurrent logging session according to the location policies.
Provide secured web based interface to login
Ability to add intranet and unrestricted site as wall garden

Zero configuration features

Provide “Connect, Authenticate and Access” environment with zero configuration to users.
Support dynamic port pass and transparent proxy with client browser.
Support both static and dynamic IP address.
Adaptive Domain Name Service (DNS) support.
Facilitate mail relay with Transparent Send Mail Transfer Protocol (SMTP).

Compatibility and Reliability features

OS independent (Compatibles with Windows, Solaris, Linux, Mac OS, and BeOS etc.)
Browser independent (works with Internet Explorer, Fire Fox, Opera, Netscape, Safari etc.)
Works with many applications (NetMeeting, FTP, RealAudio and Video, Messengers etc.)
Hardware independent (works with PCs, Note Books, Some Mobile Phones, PDAs, etc.)
Compatibles with both Wired and Wireless Networks.


Subscriber content features

Provide location base secured web based interface to login.
Provide self care portal to facilitate check availability, usage and status of account/s.
Location and User account base contain delivery.
Facilitate to customize login portal page and content according to the location.


Security and access control features

Ability to filter Uniform Resource Locator (URL), IP and MAC address.
Support for creating POSIX.1e Access Control Lists (ACL) to manage network traffic.
Configurable Role-based Firewall facility to reduce threats.
Facility to filter web site content and file blocking according to the file extensions.
Ability to add intranet and unrestricted site and IP’s as a wall garden.
Protect Virus threats coming from HTTP, FTP, POP3, SMTP protocols.
Pattern base Anti-spyware blocking at the gateway level.


Billing and Accounting features

Facilitate to purchase Internet access accounts according to the user requirement.
Ability to customize package time, rates, etc according to the location requirement.
Location owners can provide token to user with mentioning username, password, price, etc.
Location owners can view online active users, Query usage history and total usage, etc.


Reporting and Administration features

Secure Web-based interface to administrate, configure gateway.
Real time device, session, network and bandwidth monitoring.
Facilitate to view historical usage, Subscriber account details and generate report, etc.
Ability to Remote management, and troubleshooting via Telnet/Secure Shell (SSH) client.
Can monitor web page access logging, Device access logs, Session logs, etc


Operational features

In build proxy server and web cache daemon.
In build Mail server, Postfix – Optional
Facilitate Centralized or Location Base, Deployment environment.


Implementing a Universal Service Gateway with above feature to a Wired and wireless infrastructure, allows small and medium organization to enjoy with all IT related activates on their LAN or WLAN, with more secured and easily. We hope it will be a reason for increase productivity, reliability and hassles free benefit for location network administrators, managers.

Universal Service Gateway (USG)

USG Group Email Address:
usg_cdap@googlegroups.com
cdap2009@gmail.com)

While in communication between Local Area Network (LAN) and Wide Area Network (WAN) we need to use a point of entry or exit to networks, and this point we called as “Gateway”. The Gateway is basically controls access to another computers or networks to increase privacy and miss-use network resources. The design of the gateway underlying the International Organization for Standardization - Open Systems Interconnection (ISO - OSI) reference model (7 Layers) for different type of communication network.

In current situation, to implement well managed Information and Communication Technology (ICT) gateway platform, we need to bundle different types of hardware and software solutions with paying separate licensing and subscription charges. Implementation of these types of solutions is very costly, complicated and required supports of IT professionals due to the difficulty of configure, administrate, troubleshoot and monitor the network.
With innermost intentions of avoiding number of disadvantages that the organization faces with incomplete ICT solutions in the present situation, we have been proposed to develop a complete gateway level solution which will highly collaborate to perform all related activities to a highly standard level when compared to complicated and costly gateway solutions available. Even though many general gateways of this nature are currently present in the market we have been unsuccessful in finding a commercial gateway that would make any reliable, comprehensive. Thus we would like to develop a gateway that can be used to overcome above drawbacks.

Our unique, comprehensive solution we address as Universal Service Gateway (USG). We are intending to develop a single product which include hardware and software, will be based on the most advance techniques in information technology. This unit bundle with more features to provide well manage IT platform considering low cost and easy maintenance with zero configuration environment for the end users. We hope this will be benefits for Schools, Institute, Hotels and any type of middle-scale organization to manage their location based network services productively.

A complete study and analysis of the existing products will be done before designing and developing a universal service gateway, to overcome above summarized major drawbacks.

We decide to build single platform to overcome the above issues.
This new product is Universal Service Gateway (USG) ©.

It Include following customizable main key features:

> Manage and billing network user accounts (Permanent and Guest/Visitor Base)
> Authentication facility with internal or external (Active Directory, Radius and LDAP Integration)
> Routing and network address translation (NAT) feature
> Allocate bandwidth according to the user and group categorization.
> Firewall and Creating Access Control List (ACL) to manage inbound and outbound network traffics [3].
> Contain and URL filtering to avoid accessing unwanted and pornographic web sites
> MAC address and Internet Protocol (IP) address filtering
> File blocking and SPAM filtering to avoid use of bandwidth unnecessarily
> Wall garden and White listening to increase performance of use.
> VPN pass through to Secured VPN access
> Facilitate zero level configuration to users and support unlimited concurrent users
> Support both wired and wireless network, any type of Operating System (OS) or any web browser.
> Easy configuration, management with administrative Graphical User Interface (GUI)
> Monitoring, logs and reporting facility of the network, etc…


Product Team Members:

Saranga Panapitiya

saranga@gamail.com

Niroshan Illangasingha
niroshail@gmail.com

Sanjeewa Kumara
snk.kumara@gmail.com

Sajan Dilhara.
sajandilhara@gmail.com

Punsara Atthiligoda
punsaraatthiligoda@yahoo.co.uk