Figure1-1 NG-UTM Interface Ports and Indicator Light¶
【LCD Display Panel】:
After completing boot-up, the LCD display exhibits the local model, IP address, and the activation status of various services.
Additionally, it provides basic device commands such as enabling SSH, resetting management account passwords and IP addresses, rebooting, and shutting down the device.
【MGMT】:
The default management interface serves as an internal LAN interface, and it cannot be modified to function as a WAN, HA, or Bridge interface.
【Console Port】:
Utilizing RS-232 connectivity to access the system, providing basic device management commands such as viewing network interfaces, restoring factory settings, and resetting to default management account and password.
【USB Port】:
Using USB to save configuration files, in case of device malfunction, preventing abnormal operation.
【Power LED】:
When the LED emits a steady green light, it indicates that the system is in the boot-up phase, which typically takes about one minute to complete.
【HardDisk LED】:
When the LED flashes a green light, it indicates the system is reading from or saving data to the built-in hard disk.
【Port 1~8】:
The network zones can be customized. If a zone requires multiple switch ports, these ports can be grouped together into a UTM with switch functionality, eliminating the need for an additional switch.
When NG-UTM is shipped, it comes with default IP addresses and login credentials. Administrators need to configure their computer’s IP address to be in the same network segment as the NG-UTM, and then use the default login credentials to access the device.
Subsequently, they can configure new IP addresses based on the usage environment.
Note
After accessing the device for the first time, it is recommended for administrators to change the default password of the admin account.
Additionally, administrators get to limit the permissions of the default admin account after completing the configuration.
The administrator privilege settings can be adjusted from “System Settings > Administrators.”
First-time Network Setup
• Connect the administrator’s computer and the NG-UTM labeled as MGMT to the same hub or switch, then use a browser (IE, Firefox, or Chrome) to access to the NG-UTM management interface.
• The default IP address of NG-UTM is https://192.168.1.1, so the IP address of the administrator’s computer must be one of 192.168.1.2 to 192.168.1.254, with a subnet mask of 255.255.255.0.
1. The browser will ask for a username and password. Enter the administrator’s username and password:
- username: admin
- password: admin
- You can choose “Remember account and password” so that you don’t need to enter the username and password again on the same computer and browser next time.
- Click “Login” to enter the management interface.
2. NG-UTM will automatically detect the language of the administrator’s browser and switch the language accordingly.
For example, if the administrator’s browser is set to Traditional Chinese, the interface will automatically switch to Traditional Chinese upon login.
The management interface supports Traditional Chinese, Simplified Chinese, and English. If the browser language is not any of the option above, the interface will automatically switch to English.
3. After logging in, you can navigate to the homepage, log out, or switch the language of the management interface in the top right corner of the management interface. This area will also display the administrator’s logged-in IP address and how many administrators are online.
Figure1-2 The display of upper right area of the management interface.¶
NG-UTM provides two types of operational interfaces: one is the management interface used by administrators, and the other is the Dashboard mode which is suitable for monitoring network activities.
All actions such as settings, management, and log-in are handled in the management interface. In addition to real-time online monitoring, as for Dashboard mode, it can not only support online in-time monitoring, but also generate reports.
Administrators can choose the mode in “Configuration > Basic Setting > Homepage Message.” The chosen mode will be default upon the next login.
The management interface is divided into 5 main sections: Logo area, Title area, IP address switch (IPv4/v6), Main Menu area, and Settings area.
Except for the Main Menu and Settings areas, which may display different configuration options based on the administrator’s privilege, every administrator sees the same content in other sections.
1.【Logo Section】: By changing the icon here, it not only facilitates device recognition but also highlights the overall image of the enterprise. The image format should be 150 * 90 pixels.
You can go to “Configuration > Basic Setting > General Setting > Upload Logo” to upload the image. Supporting formats include gif, png, jpeg.
2.【Title Section】: There are three blocks in this area: Homepage Title, Port Information, and Administrator Information.
In the Homepage Title area. To recognize the device, enter the title text. 1-4-2. Port Information Port Information displays the status of all hardware ports, 1-4-3. Administrator Information Administrator Information displays the data of the logged-in administrator.
The path for setting the homepage title is “Configuration > Basic Settings > General Setting”.
3.【IP Address Switching】: NG-UTM is a multi-functional UTM device that supports both IPV4 and IPV6. IPV4 and IPV6 have some differences in network security and management.
For example, rejecting IPV4 web usage does not equal to rejecting IPV6 web usage at the same time, so the two IP addressing modes are managed separately.
Administrators can switch addresses here, and all management interface addresses will be switched together.
4.【Main Menu】: The main menu of the management interface is divided into two layers: main menu and sub-menu.
After selecting a sub-menu under the main menu, the setting area will display page menus for detailed function settings.
Description of Figure 1-4: 1. Main items 2. sub-items 3. tab items
In general, settings that apply to the entire NG-UTM and belong to the system management level will be found under the main menu of “Configuration” Then, depending on the specific setting requirement, users will choose the corresponding sub-menu and page menu.
5.【Setting Area】: All detailed function settings and records for the system can be set up in this area.
The Dashboard interface provides various statistical information and consolidates threats, allowing administrators to quickly understand the status of the device or identify abnormal users through graphical interfaces, and generate reports for export.
For detailed instructions on operating the Dashboard interface, please refer to Chapter 16. Dashboard 。
1-4. Homepage Information of Management Interface¶
After logging into NG-UTM, the system provides information for administrators to understand the current operational status of the device.
Display the current time, time zone and even boot time of the device. It also shows the current usage of important resources such as CPU, RAM, Flash, HDD, etc.
Administrators can use this information to determine if the device is overloaded.
Here are the explanations for each system resource item:
【Current number of sessions】: The total number of connections (Concurrent Sessions) that NG-UTM is currently handling.
【Maximum number of sessions】: The maximum number of connections (Maximum Sessions) that the device has ever processed. NG-UTM also marks the time when it occurred.
Administrators can use this data to infer the peak loading time of the system. The time can also be detected once the system’s attacked.
Note
The information here is real-time data. To look up historical connection information, please go to “Status > System Status > History Status”.
Check the option for total connections and select the desired time range for inquiry.
【New sessions per second】: The number of new connections created per second.
【Server Model/Version】: The model and firmware version of NG-UTM.
Firmware versions are periodically released, and administrators can configure the upgrade method in “Configuration > Signature Update”:
· Manual Upgrade: Download the firmware version from the ShareTech official website and upload it to the device.
· Automatic Upgrade: There are full-automatic and semi-automatic modes.
| In full-automatic mode, the system automatically checks for new firmware release, downloads them, and upgrades the firmware at the time set by the administrator.
| In semi-automatic mode. As for semi-automatic mode, the firmware is downloaded in the device, but the upgrade action needs to be performed manually by the administrator.
For more information, please refer to 2-4. Upgrade
【Server Uptime】: Record the time span since the last reboot. Whether in the situation that the administrator reboots the device or due to a power outage, the time will be recalculated.
In the title area of the management interface, there is a hidden feature called “Port Information”, which instantly displays the connection status of all ports in the current device.
By default, it is in a closed state, you can click “Port Information” to expand it.
Selecting any port will display an information box and will automatically bring up the network configuration page in the settings area:
If a port is displayed in green, it indicates it is in use and successfully connected to other devices. At the same time, the information box will display the speed of the device’s connection.
If a port is displayed in red, it indicates that it is not in use.
In “Configuration > AP Management”, ports within the same network interface area are indicated by the same color block. This allows administrators to clearly identify which ports are bound or operating independently.
1. The port numbers displayed here are the same as those on the actual device. However, the physical locations may vary. Therefore, when administrators configure network zones, they must do it based on the port numbers.
2. In the NG-UTM software version, the number of ports displayed may exceed the actual quantity. Thus, it is very crucial to base configurations on the port numbers.
This area is located on the right side of the title area in the management interface. It displays the IP address and the current number of administrators logged in. Administrators can perform actions such as language switching and logging out.
【Administrator and Login IP Address】: Displays the source IP address and username of the administrator logged in.
【Current Online Users】: Indicate the number of users currently accessing the system. Clicking on the displayed number to open a new page to show the currently logged-in administrators, their login time, source IP address, and actions.
To view the historical records of administrator operations, you can go to “Content Record”.
【Switch Language】: The system automatically detects the language used by the administrator’s browser and displays the same language. Administrators can also manually switch languages.
The system currently supports Traditional Chinese, Simplified Chinese, and English. If the browser is not set to one of these languages, it will automatically switch to English.
【Home / Logout】: Provides quick links to return to the homepage or log out of the system.
Display network interface information and real-time traffic for all areas in “Network Settings > Local Settings”. Administrators can switch to view all, connected, or customized areas.
Customization requires selecting areas in “Configuration > Basic Setting > General Setting > Homepage Setting”
Real-time traffic dynamically presents upload and download traffic for the past 60 seconds.
: means offline, : means online.
Figure 1-7 Real-time traffic of network interface¶
The blue one represents Zone Out (TX) traffic , the green one represents Zone In (RX) traffic.
Upload refers to traffic leaving the device (Zone Out), while download refers to traffic entering the device (Zone In)
For interfaces connecting to the Internet, such as WAN interfaces (e.g., PPPOE), the upload and download traffic direction aligns with the perspective of general users.
However, for interfaces connecting to internal devices, like LAN interfaces, the upload and download traffic direction is opposite from the user’s perspective. Upload traffic from LAN interfaces is considered download traffic from the user’s perspective.
The traffic information displayed on the homepage is real-time, with a duration of only 60 seconds. If administrators need to access traffic data for a longer period, they can find more options in “Status”:
A. 3-minute Traffic Graph: “Status > System Status > Timely Flow”
This provides information about real-time traffic for specific interfaces over a period.
B. Historical Traffic Graph: “Status > System Status > History Status”
This stores device data, offering longer-term records. Historical traffic graphs can be displayed based on the desired network interface and time range.
: means offline, 
: means online.
