Teltonika RUT500 Manual
Contents
1. a _ cae Fi oo Ba eer aal aTa ANANA NA U UU JUVU VO UTI RAA AAAAANA AANAND AAN t ale 010101019 5 0100k 0101910 re ot 7 falalalar 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 OOU QVUVOUVVUU1 U 1 ee 111 00000001 0000001 10000001 0000C poun a 1 01000000101 10101010000000001 O 000 0 0 00001 1010 wy yuuU 10 JUUUUU TUS 00000010R 0101000100001001 0K 0010M 0010101010 Ok meme 00101000K melele Legal notice Copyright 2012 TELTONIKA Ltd All rights reserved Reproduction transfer distribution or storage of part or all of the contents in this document in any form without the prior written permission of TELTONIKA Ltd is prohibited The manufacturer reserves the right to modify the product and manual for the purpose of technical improvement without prior notice Other product and company names mentioned herein may be trademarks or trade names of their respective owners Attention Before using the device we strongly recommend reading this user manual first Do not rip open the device Do not touch the device if the device block is broken All wireless devices for data transferring may be susceptible to interference which could affect performance 7 r AA The device is not water resistant Keep it dry Device is powered by low voltage 9V DC power adaptor 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 442. Diagnostics Contains Network Utilities used for testing network Network Utilities Fing Traceroute Nslookup Ping the utility used to test the reachability of a host on an Internet IP network and to measure the round trip time for messages sent from the originating host to a destination server Enter server IP address or hostname and click Ping Server echo response will be shown after few seconds if server is accessible Traceroute diagnostic tool for displaying the route path and measuring transit delays of packets across an Internet IP network Enter server IP address or hostname and click Traceroute Log containing route information will be shown after few seconds Nslookup network administration command line tool for querying the Domain Name System DNS to obtain domain name or IP address mapping or for any other specific DNS record Enter server hostname and click Nslookup Log containing specified server DNS lookup information will be shown after few seconds Full manual with all available Nslookup commands and parameters can be found in Linux manual page nslookup 1 Important notes e Note that DNS server must be configured correctly if you use server hostname instead of server IP address in address field Services PING Reboot PING Reboot function will periodically send PING command to server and waits for echo receive If no echo is received router will try again sending PING command
3. 0 1245 808299 1 UUU VUVUYUVOV7 U 1 111 00000001 0000001 10000001 0000C aa es 1 01000000101 10101010000000001 0 000 0 0 00001 1010 10 QOUUUUU 3e 6000000 00000001 000001 000 00000001 O 1 0000001 000 Table of Contents Lee NO E e E E E E E E E E E A 2 AO TO a T E A E E E A E E A E 2 SAFETY INFORMA TION eer erea E 5 M VULCT Mga cere t csc cee ect yeite dace eene deuce ianateceueadontoearetcncceedsstecaentcnuuencacenmeeneesseetaatebaccseuacaesnet teen escuouacteetoe oceuseeerencor sens 6 SOC CMC aU ONS e sonar eeuseevacataceaucdssacnetent sacar cbavacgnecentnuuatons i dabsoteweusancacatacsauedesacnetentaacarorarecanecet R 6 LAN Ve atest sees eres ea es esc eccato cee se tases dices ec ced dete Seem sige E ace eas ctan cattery esate see daca estacssaeeeek 6 HSUPA SOP ry IVES RUT SOO rerepi en E us ewnue atgecio E E E E nerd op uieacoteveuandentonetaes 6 SIG RS EG BO rennan E c es nace E coo once nan wene deo E E eras cetnns E 6 Electrical Mechanical amp Environmental cccccccccssccsscsccsccescceccesscscceseeeccesseeceeceeeceesseeseeseeeceeseeeseeceeeeeseeeeeeseeeeeaeees 7 SEEING UP VOUP FOULED errea E E N E E EE 8 a Oe E E E E 8 OCCIE eer E AEE E A 9 OS SEIN MOES e AT E nRe eeO 13 FUNCION EXPAN ON eas E onesantesayuaseamstdsetanatueeGerananssevarsseuaaesenanaraenesneee 14 SLEE LEU S PEE E A seas ip E A E E E A E E A E AE E A 14 NT OEN O er E E E E E E E A E SO 14 VS TWO EC TOFA O ee E E E O 15 ROUTO E E E E A A O 19 BASIC ILA
4. 0C e Operating Humidity 10 to 90 Non condensing e Storage humidity 5 to 95 Non condensing 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 001 VOU VUUUUUO7 U 1 111 00000001 0000001 10000001 00000 po 1 01000000101 10101010000000001 0 000 0 0 00001 1010 vi U 10 OUUUUU T88 0000000 00000001 000001 000 00000001 O 1 0000001 000 aa Setting up your router Installation After you unpack the box follow the steps documented below in order to properly connect the device For better Wi Fi performance put the device in clearly visible spot as obstacles such as walls and door hinder the signal 1 First assemble your router by attaching the necessary antennas and inserting the SIM card if you have bought the 3G version 2 To power up your router please use the power adapter included in the box IMPORTANT Using a different power adapter can damage and void the warranty for this product 3 If you have a wired broadband connection you will also have to connect it to the WAN port of the router Ethernet cable is not provided Front Panel 5 Resetbutton aaa a GSM LED 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 WU 010101010100 11 00000001 0000001 10000001 00000 1 01000000101 10101010000000001 0 000 0 0 00001 1010 ae se9UUU010 OUUU TO 0000000 00000001 000001 000 00000001 O 1 0000001 mele SIM Card 1 Remove b
5. 10 Teltonika solutions ww teltonika lt Field Name Sample value Explanation Teltonika Name of the router hostname of the routers system Router Model Teltonika Routers model RUT500 Firmware Version Shows the version of the firmware that is currently loaded in the router Newer versions might become available as new features are added Use this field to decide whether you need a firmware upgrade or not 3 2 15 The version of the Linux kernel that is currently running on the router 16 38 48 2012 because the router synchronizes it s time with an NTP server reset this timer to 0 Load Average 0 98 0 57 Indicates how busy the router is Let s examine some sample output 0 30 2 43 2 96 3 41 The first number 2 43 means that in the past minute there have been on average 2 43 processes running or waiting for a resource The second number show that in the past 10 minutes on average there have been 2 96 processes running or waiting for a resource The last number indicates the same on the last 15 minutes 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 01 UUU OUUU 1 U 1 a 11 00000001 0000001 10000001 00000 Saa 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 0000000 00000001 000001 000 00000001 O 1 0000001 000 __ Field Name Sample Value Total Available 14416 29964 Shows how much memory is available to maintain routers functionality Free 1476 29964 The amount of mem
6. MCS 4 20MHZ O03 ED Caaf 44 Master Teltonika_demo_ap T0 dBm 52 0 Mbits MCS 5 2OMHz 6 5 Mbits MOS 0 2ONMHz DHCP Leases If you have enabled a DHCP server this field will show how many devices have received an IP address and what those IP addresses are DHCP Leases Hostname IPv4 Address MAC Address Leasetime remaining android _b8594credt14b08 1927 168 1 101 bob FOfe aci45 11h 59m 40s The picture above shows a DHCP lease for an Android phone that is currently connecting to the routers Access Point Backup WAN When enabled this field will indicate the health of your primary connection Indicates that the connection is being used for main traffic Indicates that the connection is ready to take over network traffic if the other link should fail Indicates that the connection is down Backup WAN Status Backup WAN Status More on this see the main backup WAN section of this manual 18 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 00000001 0000001 10000001 0000C 101 01000000101 10101010000000001 0 000 0 0 00001 1010 amuua DUTT 00000000 00000001 000001 000 00000001 0 1 0000001 000 Routes Routes The following rules are currently active on this system ARP IPv4 Address MAC Address Interface 192 168 0350 POF Tbe 0c 78 5 br lan 192 16a 99 254 O0 00 00 00 00 00 eth Active IPvd Routes Network Target IPvd Gateway Metric wan 0 0 0 0 0 192 158 99 254 0
7. m Cipher auto Key TLLLLLI T The final step allows you to configure your wireless settings in order to set up a rudimentary Access Point 51 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 01 OUOU 0 0 010 010 0h meme 111 00000001 0000001 10000001 00000 COOH O0 1000000101 10101010000000001 0 000 0 0 00001 1010 viL 10 OUUUOO TON 6000000 00000001 000001 000 00000001 O 1 0000001 000 When you re done with the configuration wizard press Finish Administration Administration properties Administration password Enter your new administration password Re enter your new administration password Important notes e The only way to gain access to the web management if you forget the administrator password is to reset the device factory default settings Default administrator login Settings are User Name admin Password admin0O1 Logging System logs are divided into following groups e Info e Notice e Warning e Error e Critical e Alert e Emergency You can watch logs by choosing the group from dropdown list and clicking button show SSH Access control bine SSH can be enabled or disabled by choosing Enable or Disable from dropdown list 2 Port Specify port for SSH access Default port is 22 Remote SSH access If check box is selected users can access the router via SSH from the outside WAN When check box is not sele
8. server after time interval if echo retry will be done after defined time receive was unsuccessful interval Server to PING Server IP address or host name which If you use server host name instead of will receive PING from router the IP address you must configure DNS server first Important notes e Always check if your defined server responds to echo commands before using PING Reboot function Otherwise router keeps rebooting after unsuccessful PING echo receive You can test PING send at Network gt Diagnostics SMS Reboot It is possible to reboot router via SMS text message This function is useful when router does not respond and it is difficult to manually restart router by hand Common configuration Enable SMS Reboot SMS text Sender phone di number E e g 37012345678 Get status E Get detailed router connection information via SMS message after SMS reboot Field name sSY Field name sSY Description Notes ss sSsSSCSY Enable SMS Reboot This check box will enable and disable SMS reboot is disabled by default SMS reboot function 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 01 UUU OUUU 1 U 1 a 11 00000001 0000001 10000001 00000 Saa 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 0000000 00000001 000001 000 00000001 O 1 0000001 000 SMS text SMS text which will reboot router SMS text can contain letters numbers space
9. 1 sag re Co ee nee wee an oR Pane er 19 PSTN ON cece ces ss a stv nance sos a eign atra E E ac seo ee ese egeastnate eee 24 BG se err wpe eas see en eae a nce eee ps se nace cee eee yes ne a tage sme eee yeccee roa tees ne oats eastaaes 24 MIN cece EN PEE E T staccato E sence recent N TEE EA asec EN T T E 26 LPN E bate AR TE E A A E EE E E O AE E E E O AT T E wepdacencentaeos en 30 MOUS S o eee adetet see sedcaeeasvaaadeureatecciuue cece duseesdatsatneanndetecqorns decadge veadcuateeneetoseeesesetceveisaccsaute 32 BR IN E coteceosenene tee waa uodinn see veecseean hese tus ee asatn speaee nace teanaconsan tee usinectosmeeeeeosesncees 35 PMG e EEE E E EE E EE P E E EEEE E EE A AE A EEE EE E EEA EEEN 37 S214 5 0 0 Os eee E E A A ee ee ee ee 39 EAE OSS aio teseecnc E E AE EA E A E E 40 EEE a een T E AA A A E ee ee ee eer 40 PING PRED Ol eases a cccatoetedecatcserssuza enon ceeccceeet 40 SM Ss RE DOO si ccaneentnecetmornassceusssstaessaaseeenbaccienemene sade sbaasuaumnpetaesabeesuepaepadetuasaastaeataadacseibeesuaseaasiatascudeaentaadinns soos sudesseasaiaeeats 41 ee LD CFs LE se ee ee ee ee 42 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 VOU VUUUUUUT 11 00000001 0000001 10000001 0000C i 1 0100001 0101 10101010000000001 0 000 0 0 00001 1010 yy yuuU 10 JVUUUUU TRE 000000 00000001 000001 000 00000001 0 1 0000001 000 aa SUS ceo pce 2 4c T vtec ee iuers Geese E E E S 50 COnN EUr C
10. 808295 Fax 44 0 1245 808299 Cele ele eee eleh mem 111 00000001 0000001 10000001 0000C a _ _ _ _ 1 01000000101 10101010000000001 O 000 0 0 00001 1010 vel yuuU10 JOUUUUU TUS 00000100N 01010101001 0K O01001 OK O01000 01010100K meme melelelelelen melele step LAN Here we will configure the basic settings of a typical LAN configuration The wizard will cower 2 basic configurations static IP address LAN and DHCP client Common Configuration Proto cal Static address al Fw address 192 168 0 161 Fv netmask 255 255 255 0 P IFwel gateway Fw broadcast Use custom ONS ca Se me fe DHCP Server Disable E Start 100 Limit 150 Le asetimme 2h Bi Expiry time of leased addresses minimum is 2 Minutes C 2m Next you are given the chance to configure your LAN and DHCP server options For a detailed explanation see LAN under Network Step 4 Wifi Step Wireless Mow let s configure your wireless radio Note ityou are currently connecting via wireless and you change parameters like SSID encryption etc your connection will be dropped and you will have to reconnect with a new set of parametes Device Configuration Wireless network is Disable enabled B Important note Do not disable ifthe only way to reach the router is your wireless network Channel 6 2 437 GHz Mode 802 119 se Country Code LT Lithuania seal Interface Configuration ESSID Teltonika_demo Hide ESSID Encryption vWPA2 PSK
11. Remote CIDR Specify remote LAN Subnet CIDR value 7 MTU Specify the maximum transmission unit MTU of a communications protocol of a layer in bytes 49 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 Cele 000010100 111 00000001 0000001 10000001 0000C a iii 1 01000000101 10101010000000001 O 000 0 0 00001 1010 vy y YUUU 10 DOUUTI TON 00000100R 0101010100 0K 00101010K Melero nm eleleleleleley Meme E00 01010 0K melele Systems Configuration Wizard The configuration wizard provides a simple way of quickly configuring the device in order to bring it up to basic functionality The wizard is comprised out of 4 steps and they are as follows Step 1 Password change Step Password First let s change your router password from the default one Password Confirmation First the wizard prompts you to change the default password Simply enter the same password into both Password and Confirmation fields and press Next Note At this point you can also Skip the wizard Step 2 3G Step 3G Net let s configure your 3G settings so you can start using internet right away 3G Configuration APN PIN number 3G authentication none method Prefered network auto M Next we have to enter your 3G configuration On a detailed instruction on how this should be done see the 3G Section under Network Step 3 LAN 50 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245
12. Save and wait until all the settings are applied The configuration is complete and you should now be able to access the internet LAN This page is used to configure the LAN network where all your devices and computers that you connect to the router will reside LAN n this page you can configure your LAN settings Common Configuration General Setup Advanced settings Frotocol static address BA IPv4 address 9 192 160 0161 IPvd netmask 255 2655 455 0 BA IPvd gateway IFv4 broadcast a Use custom ONS il Servers IP Aliases fs section contains no valves yet Add The common configuration and IP aliasing sections are identical to the ones found in WAN so for an explanation on how they work please follow through there DHCP Server The DHCP server is the router side service that can automatically configure the TCP IP settings of any device that requests such a service If you connect a device that has been configured to obtain IP address automatically the DHCP server will lease an address and the device will be able to fully communicate with the router 30 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 J 01 QUU VUUVOUVON7 OV 4 111 00000001 0000001 10000001 00000 ee Emme 00 401 01000000101 10101010000000001 0 000 0 0 00001 1010 1 sue sUUU10 COUT 1900000 00000001 000001 000 00000001 0 1 0000001 000 DHCP Server General Setup Advanced Settings Disable E Stat 100
13. can set up a rule that would allow a website that is being hosted on 192 168 99 156 to be reached from the outside by entering http routersExternallp 12345 1 localWebsite Name of the rule Used purely to make it easier to manage rules 2 TCP UDP TCP UDP Other Type of protocol of incoming packet 3 External Port 1 65535 From what port on the WAN network will the traffic be forwarded Internal IP address IPv4 address of some The IP address of the internal machine that hosts some service 5 Internal port 1 65535 To what port on the internal machine would the rule redirect the traffic Additional note Notice how the external port is 12345 and not 80 It is perfectly fine to define the external port as 80 but then the routers configuration interface would not reachable unless you change the web access port from remote management When you click edit you can fine tune a rule to near perfection if you should desire that Traffic Rules The traffic rule page contains a more generalised rule definition With it you can block or open ports alter how traffic is forwarded between LAN and WAN and many more things 38 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 1010 meme1010m010 0 0 00 Oh meme 141 00000001 0000001 10000001 00000 ee em 040 401 01000000101 10101010000000001 0 000 0 0 00001 1010 4 nsyy10 OUTOON 5000000 00000001 000001 000 00000001 0 1 0000001 000 Name ruleNam
14. connection As Wireless Network Connection a Disabled Piil Intel R PRO Wireless 33 gt Enable Status Diagnose Create Shortcut Delete Rename Properties 10 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 VOU VUUUUUU7 OU 4 111 00000001 0000001 10000001 00000 po pee 1 01000000101 10101010000000001 0 000 0 0 00001 1010 uau U0 D00000 TO 19000000 00000001 000001 000 00000001 0 1 0000001 000 aa 5 Select Internet Protocol Version 4 TCP IPv4 and then click Properties i Wireless Network Connection Properties Networking Sharing Connect using a Intel R PRO Wireless 394546G Network Connection This connection uses the following items o Client for Microsoft Networks 5 QoS Packet Scheduler a File and Printer Sharing for Microsoft Networks GCT WiMax Protocol Driver Internet Protocol Version 6 TCP IP v6 a Intemet Protocol Version 4 TCP IP 4 Link Layer Topology Discovery Mapper 1 0 Driver Link Layer Topology Discovery Responder Install Uninstall Properties Description Transmission Control Protocol Internet Protocol The default wide area network protocol that provides communication across diverse interconnected networks 6 By default the router is going to have DHCP enabled which means that if you select Obtain an IP address automatically and Obtain DNS server addre
15. defined number times after defined time interval If no echo is received after the defined number of unsuccessful retries router will reboot It is possible to turn of the router rebooting after defined unsuccessful retries Therefore this feature can be used as Keep Alive function when router PINGs the host unlimited number of times 40 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 01 OUOU 0 0 010 010 0h meme 111 00000001 0000001 10000001 00000 _ 01 01000000101 10101010000000001 0 000 0 0 00001 1010 i 10 OVUUUU TSS Oo ve eemielelelelelelen 0000000100010000 0k meme meleleleleleh melee i lt Common configuration Enable PING Reboot M Reboot routerifno M echo received Interval between 30 FINGSs min 2 Minimum 5 minutes Retry count 45 Server to PING 127 0 0 1 e g 192 158 1 1 or www host com if ONS server configured correctly Enable PING Reboot This check box will enable or disable PING Reboot is disabled by default PING reboot feature Reboot router if no echo received This check box will disable router This check box must be unselected if rebooting after the defined number of you want to use PING Reboot feature unsuccessful retries as Keep Alive function Interval between PINGs Time interval in minutes between two Minimum time interval is 5 minutes PINGs Retry count Number of times try sending PING to Minimum retry number is 1 Second
16. internet This can either be Wired 3G or Wi Fi DHCP Specifies the type of connection This can either be static or DHCP 10 12 104 103 The IP address that the routers uses to connect the internet 4 Netmask 255 255 255 240 Indicates the networks netmask 5 Gateway 10 12 104 97 Indicates the default gateway an address where traffic destined for the internet is routed to 6 DNS 8 8 8 8 1h 57m 25s The amount of time before the routers DHCP lease expires 8 Connected 0h 2m 2s How long the connection has been successfully maintained LAN LAN IFv4 address 192 166 1 161 Metmask 255 255 255 0 Connected Oh bm 145 __ FieldName Sample Value IPv4 address 192 168 1 161 Address that the router uses on the LAN network 255 255 255 0 Indicates the networks netmask Oh 6m 14s How long LAN has been successfully maintained Wireless Wireless can work in two modes AP or Client AP is when the wireless radio is used to create an Access Point that other devices can connect to Client is when the radio is used to connect to an Access Point via WAN Client Wireless ull soll teltonika rnd division ap Mode Client Channel b 2 44 GHZ BSSID CEJA 35 02 FC Bo Encryption WPAZ PSK COMP Bit rate 65 0 MBits Country LT 16 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 001 VOU 00000001 U 1 _ pA 111 00000001 0000001 10000001 01001010 M Bet 101 01000000101 1010
17. results to pop up 9 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 a WUUUUYU 00000001 0000001 10000001 00001 ave 101 01000000101 10101010000000001 0 000 0 0 00001 1010 aesae JUUU 10 QOUUUUU 0000000 1010101000 K i 0 0 0 0 0h 01010 000000 Ok m O mmel0010100n mele 4 See more results network connection x Control Panel 19 Find and fix networking and connection problems ue set up a connection or network SE Setup a virtual private network WPM connection SE View network connections a Manage network passwords zE Add awireless device to the network S Connect to a network SE Identify and repair network problems Files 9 ncilint Ci wireshark dictionary usr Cisco dictionary Th Uservianual DPH401 en wt UservManual DPH411 en af hy a See more results network connection Control Panel i10 ue View network status and tasks Lk g o ee View network connections Lk i i S View network computers af Network and sharing Center View devices and printers View network connections Lk cE Manage wireless networks 4 Then right click on your wireless device that you use to connect to other access points It is the one with the name Wireless Network Connection and has signal bars on its icon CIOL ug gt Control Panel Network and Internet Network Connections Organize v Disable this network device Diagnose this
18. 00000 SS iO 101 01000000101 10101010000000001 0 000 0 0 00001 1010 ey OOUUU TO 19090000 00000001 000001 000 00000001 0 1 0000001 000 The establishment of the Security Association IPsec SA between two peers is needed for IPsec communication It can be done by using manual or automated configuration Note router starts establishing tunnel when data from router to remote site over tunnel is sent For automatic tunnel establishment used tunnel keep alive feature Automatic IPSec Key exchange Description Enable IPsec IPSec key exchange Auto Key IKE mode Mode aggressive Enable NAT traversal E Enable initial contact El My identifier type address B My identifier we Preshare Key 123496704 Length 6 32 Remote WPN endpoint 51 51 51 81 IF address Enable IPSec Check box to enable IPSec IPSec key exchange mode Select the Manual or Automatic Key exchange Enable NAT traversal Enable this function if client to client applications will be used hone Enable initial contact Enable this to send an INITIAL CONTACT message Peers identifier type Choose fqdn or user fqdn accordingly to your IPSec server configuration Mode Select Main or Aggressive mode accordingly to your IPSec server configuration My identifier Set the device identifier for IPSec tunnel Preshare key specify the authentication secret string Secret s length depends on selected algorithm eg 128 bit long se
19. 00000000003 mem a 111 00000001 0000001 10000001 01001010 m pie 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 TEI 10 OUUU 6000000 00000001 000001 000 00000001 O 1 0000001 000 ra Backup WAN Status WAN Wired IM USE Backup WARN 3G READY If you witness the above sequence your backup link is working Firewall In this section we will look over the various firewall features that come with rut500 General Settings The routers firewall is a standard linux iptables package which uses routing chains and policies to facilitate control over inbound and outbound traffic General Settings Enable S M flood protection Drop invalid packets C Input accept Output accept BA Forward reject BA Fieldname Sample value Explanation 1 Enable SYN flood Checked Unchecked When checked the router becomes more resistant against SYN protection flood attacks Drop Invalid packets Checked Unchecked A Drop action is performed on a packet that is determined to be invalid DEFAULT action that is to be performed for packets that pass through the Input chain a A E through the Output chain 5 Forward Reject Drop Accept DEFAULT action that is to be performed for packets that pass DEFAULT When a packet goes through a firewall chain it is matched against all the rules for that specific chain If no rule matches said packet an according Action either Drop or Reject or Accept is perform
20. 00001 0 1 KOO 0N Melee Lefer ey E0000 0H 0001010 _ j 01 01000000101 10101010000000001 0 000 0 0 00001 1010 viL 10 OUUUUU T888 000010010 mielelelelelelen 0000 0K O00 E0100 000 0k mek meleleleleleh melee 3G Configuration Here you can configure your als settings 3G Configuration APR bangapro PIN number 5555 3G authentication CHAF method Username user T Password teret Frefered network UMTS Teltonika solutions www teltonika It The configuration is simple and straightforward Here we will gloss over all the fields Fieldname Possible values Explanation 1 APN bangapro Access Point Name APN is a configurable network identifier used by a mobile device when connecting to a GSM carrier 2 PIN Number 5555 or any A personal identification number is a secret numeric password shared number that falls between a user and a system that can be used to authenticate the user between 0000 and to the system 9999 3G authentication CHAP PAP or none Authentication method that your carrier uses to authenticate new method connections a user Your username and password that you would use to connect to your carriers network These field become available when you select an authentication method i e authentication method is not none Preferred network GSM UMTS or Your network preference If your local mobile network supports both auto GSM and UMTS you can specify
21. 1010000000001 0 000 0 0 00001 1010 1 yyuU10 COUT Oe eee 5E0100 0101 010k 0000 0k melelemeleleleleleleh meme melelelelelen melele d N m Field Name Sample Value Explanation SSID teltonika_rnd_division_ap The SSID that the AP to which the routers is connected to uses some local AP 3 Channel 6 2 44 GHz The channel that the AP to which the routers is connected to uses Your wireless radio is forced to work in this channel in order to maintain the connection 4 BSSID C8 3A 53 02 FC BO The MAC address of the access points radio WPA2 PSK CCMP The AP to which the router is connected to dictates the type of encryption Bit rate 65 0 MBit s The physical maximum possible throughput that the routers radio can handle Keep in mind that this value is cumulative The bitrate will be shared between the router and other possible devices that connect to the local AP AP Wireless ull signal quality 100 Soll Teltonika demo Mode Master Channel b 2 44 GHz BSSID 00 00 43 350 50 38 Encryption WPAS PSK CCMP Bit rate 1 0 MBit s Country LT Field Name Sample Value Explanation Signal Quality 100 The quality between routers radio and some other device that is connecting to the router Will show 0 if no devices are trying to connect or are currently maintaining a connection Teltonika_demo The SSID that is being broadcast Other devices will see this and will be able to use to connect to your wireless network Co
22. 168 55 145 Delete Add Save _ Fieldname Vale Explanation The zone where the Target resides IPv4 address The source of the traffic 3 IPv4 Netmask IPv4 mask Mask that is applied to the Target to determine to what actual IP addresses the routing rule applies 4 IPv4 Gateway IPv4 address To where the router should send all the traffic that applies to the rule 5 Metric integer Used as a sorting measure If a packet about to be routed fits two rules the one with the higher metric is applied Additional note on Target amp Netmask You can define a rule that applies to a single IP like this Target some IP Netmask 255 255 255 255 Furthermore you can define a rule that applies to a segment of IPs like this Target some IP that STARTS the segment Netmask Netmask that defines how large the segment is E g 192 168 55 161 255 255 255 255 Only applies to 192 168 55 161 192 168 55 0 255 255 255 0 Applies to IPs in range 192 168 55 0 192 168 55 255 39 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 001 UUU VUUUUUUUT 0 1 111 00000001 0000001 10000001 00000 aAA 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 0000000 00000001 000001 000 00000001 0 1 0000001 000 192 168 55 240 255 255 255 240 Applies 192 168 55 240 192 168 55 255 192 168 55 161 255 255 255 0 192 168 55 0 192 168 55 255 192 168 0 0 255 255 0 0 192 168 0 0 192 168 255 255
23. 5 808295 Fax 44 0 1245 808299 UVOUU0 VUUUUUUT is 0101010101010 mm 01010101010 mar O101010 010K 0010100 a i 1 0100001 0101 10101010000000001 0 000 0 0 00001 1010 vel yuuU10 OOUUUU TON 000000 00000001 000001 000 00000001 0 1 0000001 000 Internet Protocol Version 4 TCP IP 4 Properties General You can get IF settings assigned automatically if your network supports this capability Otherwise you need to ask your network administrator For the appropriate IP settings Obtain an IP address automatically Use the Following IF address IF address 192 Subnet mask 255 Default gateway 197 Obtain CNS server address automatically Use the Following DNS server addresses Preferred DNS server 192 168 Alternate DNS server Validate settings upon exit Right click on the Wireless network icon and select Connect Disconnect A list should pop up with all available wireless networks Select Teltonika and click connect A Wireless Network Connection Connect Disconnect Diagnose Bridge Connections Create Shortcut Rename Then we launch our favourite browser and enter the routers IP into the address field SF 192 168 11 Press enter If there are no problems you should be greeted with a login screen such as this 12 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 m 91010101010 1 00000001 0000001 10000001 0000 1
24. 7706 192 166 99 30 539 613 44 KB 0338 Fkts Fd UDP 192 bees dar 192 168 0 255 137 T24 KB 4 Pkts IFP UDP 192 1656 0 19 135 192 166 0 255 138 5 20 KB 44 Pkts IP v 4 hee 194 169 0 156 52547 173 194 70 139 560 3 30 KB 11 Pkts IFP TGP 192 166 0 156 55821 199 127 194 50 50 1 97 KB 17 Pkts IFP UDP 192 165 19 67 Nala 259 a n ala 1 13 KB 2 Pkts FP TGP 192 166 0 156 42797 209 65 146 145 00 930 00 6 6 Pkts IP v 4 TCP 192 168 0 30 55664 192 168 0 161 50 703 00 B 3 Pkts F UDP 0 0 0 0 68 255 295 255 259 57 600 00 B 2 Pkts FP UDP 192 168 0 5 67 259 295 209 259 60 604 00 B 2 Pkts FP UDP 192 166 0 156 54245 0 0 0 0 55 142 00 B 2 Pkts IP v 4 UDP 192 168 0 156 41391 0 0 0 8 53 66 00 B fl Fkts On the same page you can also analyse a detailed list of all active connections that the router maintains Each entry consist of a type of network IPV4 protocol TCP UDP ICMP the source address an IPv4 address the source port the destination address an IPv4 address the destination port and how much traffic has gone through that particular connection it s size in Bytes and the amount of packets Network 3G IF you have purchased a 3G version of the RUT500 router OR the RUT5XXU and some supported 3G dongle you will have to configure the 3G settings so the router could successfully connect to a 3G network 24 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 001 000 000
25. 940 101 01000000101 10101010000000001 0 000 0 0 00001 1011 auuu COTTON M0000000 00000001 000001 000 00000001 0 1 0000001 00 QS TELTONIKA Authorization Required Please enter your username and password Username admin Password Login Reset Teltonika solutions way teltonika It Enter the default password which is admin0O1 into the Password field and then either click Login with your mouse or press the Enter key You have now successfully logged into the router and should see the Status page System information System Router Mame Teltonika Router Model Teltonika RUTSAx Firmware version RUTSAX T 00 00 246 Kernel Version 3 2 15 Local Time Wed Aug 8 13 10 47 2012 Uptime Th 36m 51s Load Average 0 16 0 11 0 15 Memory Total Available 40476 kB s 30012 kB 34 Free i 1672 KBs 30012 KB 5 Cached o B456 KA 30012 KB 21 Buffered B 2348 KB 30012 kB Ere From here on out you can configure almost any aspect of your router Operation Modes The RUT500 router supports various operation modes It can be connected to the internet WAN via 3G standard Ethernet cable or via a wireless network If you connect to the internet via an Ethernet cable of Wi Fi you may also backup your connection with 3G for added stability On every case except when you connect to the internet via Wi Fi you can distribute your internet via an Ethernet cable 3 ports and or a wireless network When you connect via Wi Fi you cannot ha
26. C Filter ESSID Teltonika Hide ESSID Here you can see the Overview of the wireless configuration It is divided into two main sections device and interface One is dedicated to configuring hardware parameters other software Device General Device Configuration General Setup Advanced Settings Wireless network is Disable enabled E Donttorgetto save before toggling the wireless radio on and off Channel 11 2 482 GHz ia Here you can toggle the availability of the wireless radio and the physical channel frequency Important note As seen in the picture you should always Save before toggling the radio on and off 32 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 01 UUU OUUU 1 U 1 ee 111 00000001 0000001 10000001 00000 e AAO 01000000101 10101010000000001 0 000 0 0 00001 1010 10 000O0OT TOR 19000000 00000001 000001 000 00000001 0 1 0000001 000 a DaS Ne s Advanced Device Configuration General Setup Advanced Settings Mode 802 11g n HT mode 20MHz Country Code OO World E Use ISQWEC 3166 alpha country codes Distance Optimization jJ Distance to farthest network member in meters Fragmentation Threshold RT amp CTS Threshold Here you can configure more advanced parameters Fieldname Sample value Explanation 1 Mode Auto b g g n Different modes provide different throughput and security options 2 Country Code Any I
27. Limit 150 Leasetine 12h E Expiry time ofleased addresses minimum is 2 Minutes 2m _ Field Name Sample value Checked unchecked Check to DISABLE the DHCP server Start The starting address of the range that the DHCP server can use to give out to devices E g if your LAN IP is 192 168 2 1 and your subnet mask is 255 255 255 0 that means that in your network a valid IP address has to be in the range of 192 168 2 1 192 168 2 254 192 168 2 0 and 192 168 2 255 are special unavailable addresses If the Start value is set to 100 then the DHCP server will only be able to lease out addresses starting from 192 168 2 100 How many addresses the DHCP server gets to lease out Continuing on the above example if the start address is 192 168 2 100 then the end address will be 192 168 2 254 100 150 1 254 Lease time 12h How long can a leased IP be considered valid An IP address after the specified amount of time will expire and the device that leased it out will have to request for a new one Advanced settings You can also define some advanced options that specify how the DHCP server will operate on your LAN network DHCP Server meneral Setup Advanced Settings Dynamit DHCP Force E B Force DHCP on this network even if another server is detected IPv4 netmask DHCP Options E B Define additional DHCP options for example 6 192 168 2 1 192 168 2 2 which advertises different ONS servers to clients Zz Field Name Sa
28. SO IEC 3166 Selecting this will help the wireless radio configure its internal alpha2 country code parameters to meet your countries wireless regulations Distance Optimization Distance to farthest network member in meters Frag Threshold The smallest packet size that can be fragmented and transmitted by multiple frames In areas were interference is a problem setting a lower fragment threshold might help reduce the probability of unsuccessful packet transfers thus increasing speed 5 RTS CTS Threshold 2346 Request to send threshold It can help resolve problems arising when several access points are in the same area contending Interface General Interface Configuration General Setup Wireless Security MAC Filter ESSID Teltanika_dermo Hide ESSID E ESSID Your wireless networks identification string This is the name of your Wi Fi network When other Wi Fi capable computers or devices scan the area for Wi Fi networks they will see your network with this name Hide ESSID Will render your SSID hidden from other devices that try to scan the area 33 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 OOU QVUQVOUVUOU1 U 1 111 00000001 0000001 10000001 0000C aa _ a i 1 01000000101 10101010000000001 O 000 0 0 00001 1010 vy auuUU10 0101010 0lv anaa 00000010R 01000000K O01001 0K 0010M 0010101010 OK meme 00010100K 01010 Security Interface Configuration General setup
29. VO VV Vi Olena ers vanterscsioncss E E E acne oea urs ve venation ones eewaetcossee 50 AAMU Gh NOUN secede pe ctsesaeotteaece E EO 52 Admineration Ol OFS eo Sacatassscecsccscansscesdacncoessaanccancadsensceeaaieescecsasedccesannecateyoscsaas iausetasncoessteegunieeenncneonearessniaencss 52 Bae KUHIO LBV I IRIN O ecb es ecamencee cnet sieesecsyantees ese cnmmesee cman wares usectecs esos eaneuicccasetsoseeeersessecessssaeneseee nen saveseeinnnceeeetecanen 52 Bi S18 910 eee ee ee ee eee 53 OI gece etree er ec bares ecm nae voy E nes EE E eaten EE AE E O E E ET E O E E 53 O E E A E E oseneaseneatee eens 53 4 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 001 OUO VUUUUUVLU7I 0 1 a 111 00000001 0000001 10000001 00000 m0 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 10 000000 TO 19000000 00000001 000001 000 00000001 0 1 0000001 000 one x SAFETY INFORMATION In this document you will be introduced on how to use a RUT500 router safely We suggest you to adhere to the following recommendations in order to avoid personal injuries and or property damage You have to be familiar with the safety requirements before using the device To avoid burning and voltage caused traumas of the personnel working with the device please follow these safety requirements The device is intended for supply from a Limited Power Source LPS that power consumption should not exceed 15VA and current rating of
30. Wireless Security MAC Filter Encryption WWPRAZ PSK BA Cipher auto BA key ccccrcee te Encryption There are many modes of encryption though two distinctive classes have to pointed out WEP Encryption EF Open system A Used Key Slot Key 1 Key 1 2 Key He z Key 3 2 Key 4 z Enter the keys that will be used as passphrase for connecting computers and then specify which key will be preferred above the remaining It s sufficient to enter one key and then specify it as the preferred one Length is important as well 10 or 26 characters in length in hex mode OR 5 or 13 in ASCII mode A hex key may only contain numbers 0 through 9 and letters a through f WPA Encryption WPA PSK l Fal Ez Cipher auto key TILLIT First select an encryption method TKIP CCMP TKIP amp CCMP auto Note Some authentication methods won t support TKIP and TKIP amp CCMP encryption After you ve selected your encryption method you should enter your passphrase which must be at least 8 characters long 34 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 101 QUO VUUL0U07 OU 4 a 111 00000001 0000001 10000001 OO000C e wii 1 01000000101 10101010000000001 0 000 0 0 00001 1010 10 OUUUUU S8 00000010R 001010100 0K 00100 0KO 01000010010 0k meme melelelelelen melee MAC Filter Interface Configuration General Setup Wireless Security MAC F ilter MAC Addre
31. ack panel and insert SIM card which was given by your ISP Internet Service Provider Correct SIM card orientation is shown in the picture Attach GSM main and Wi Fi antennas 3 Connect the power adapter to the socket on the front panel of the device Then plug the other end of the power adapter into a wall outlet or power strip 4 Connect to the device wirelessly SSID Teltonika or use Ethernet cable and plug it into any LAN Ethernet port Logging in After you re complete with the setting up as described in the section above you are ready to start logging into your router and start configuring it This example shows how to connect on Windows 7 On windows Vista click Start gt Control Panel gt Network and Sharing Center gt Manage network Connections gt Go to step 4 On Windows XP Click Start gt Settings gt Network Connections gt see step 4 gt You wont s see Internet protocol version 4 TCP IPv4 instead you ll have to select TCP IP Settings and click options gt Go to step 6 We first must set up our network card so that it could properly communicate with the router 1 Press the start button 7 Calculator shipping Tool k H ae sticky Notes eF Faint he HPS Viewer Sa Windows Fax and Scan A Remote Desktop Connection a gG COMODO Antivirus ie All Programs Search programs and files D 2 Type in network connections wait for the
32. ally update router local time Common configuration 42 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 VOU VUUUUVUU7 OU 4 111 00000001 0000001 10000001 00000 pou _ 1 01000000101 10101010000000001 0 000 0 0 00001 1010 peas UU10 OOOO TO 19000000 00000001 000001 000 00000001 0 1 0000001 000 aa System Properties Local Time Wed Aug 8 08 32 11 2012 Syne with browser Hostname Teltonika Timezone LTC Time Synchronization Enable builtin WTP M NTP server candidates U europe pool ntp org Ee 3 europe pool ntp org Sync with browser button will synchronize local router time with computer browser time tocalTime Localtime ofrouter Jooo o Hostname Hostname ofrouter o Timezone Timezone ofyourcountry J o S O Enable builtin NTP This check box will turn on automatic When check box is selected you time synchronizing with defined NTP must enter one or more working servers NTP servers Otherwise time sync feature will not work NTP server candidates NTP server hostname You can add as many servers as you need by clicking add button at the end of server hostname field Dynamic DNS Dynamic DNS DDNS is a domain name service allowing to link dynamic IP addresses to static hostname To start using this feature firstly you should register to DDNS service provider You are provided with add delete buttons to manage and use different DDNS configurations at the sam
33. cret is 16 characters in length 128 bits 8 bits one character 16 Remote VPN Endport set remote IPSec server IP address 47 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 QUU QVUVULDUU1I OU 4 aa 111 00000001 0000001 10000001 0000C a 1 01000000101 10101010000000001 0 000 0 0 00001 1010 r ITIITI 19000000 00000001 000001 000 00000001 0 1 0000001 000 Phase 1 Encryption Ides Hash shal Dh group modp1024 Phase 2 PFS group modp1024 Encryption Jdes E E E Authentication himac_ shat Remote network secure group IP address 192 168 2 0 Subnet mask 24 Number 0 32 Phase 1 and Phase 2 must be configured accordingly to the IPSec server configuration Remote Network Secure Group Set the remote network Secure Policy Database information Tunnel keep alive Enable keep alive E Ping IP address Ping period seconds 1 Tunnel keep alive Allows sending ICMP echo request ping utility to the remote tunnel network This function may be used to automatically start the IPSec tunnel Ping IP address Enter IP address to which ICMP echo requests will be sent Ping period seconds Set sent ICMP request period in seconds GRE Tunnel GRE Generic Routing Encapsulation RFC2784 is a solution for tunneling RFC1812 private address space traffic over an intermediate TCP IP network such as the Internet GRE tunneling does not use encryption it simply encaps
34. cted users can access the router only from LAN Note The router has 2 users admin for webUI and root for SSH When loging in via SSH use root Web Access control HTTP Web server port specify a port number for routers web management via HTTP protocol Default port is 80 2 Remote HTTP access if check box is selected users can access the router via the HTTP WEB Interface from the outside WAN When check box is not selected users can access the router only from LAN 443 A ude WAND When checkbox nt sled wer E the ote ni fom AN outside WAN When check box is not selected users can access the router only from LAN Backup and Firmware Router firmware backup upgrade and settings reset to their factory defaults 52 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 OOU QVUVOUVVUU1 U 1 ee 111 00000001 0000001 10000001 0000C pomm 1 01000000101 10101010000000001 O 000 0 0 00001 1010 aaraa OUUU Ta 00000010 RR 0101001010 0K O00010 K Melero M0010100 OOK meme 00010100K 01010 Backup and reset configuration Backup archive download current router settings file to personal computer Reset to defaults reset router settings to their defaut values Restore configuration Restore backup upload and restore router settings file from personal computer Firmware upgrade Keep settings when check box is selected router will keep saved user configuration setti
35. e Used to make rule management easier Only IPv4 is currently supported TCP UDP Other Protocol of the packet that is being matched against traffic rules 4 Source IPv4 address The source of the packet Action Drop Accept Reject Action to be taken on the packet if it matches the rule You can also define een chain additional additional options like limiting packet volume and defining to which chain the rules rule belongs deleted but it also will not be loaded into the firewall When a packet arrives it gets checked for a matching rule If there are several rules that match the rule the first one is applied i e the order of the rule list impacts how your firewall operates therefore you are given the ability to sort your list as you wish Custom Rules Here you have the ultimate freedom in defining your rules you can enter them straight into the iptables program Just type them out into the text field ant it will get executed as a linux shell script If you are unsure of how to use iptables check the internet out for manuals examples and explanations Static Routes Static routes provide a way of entering custom entries in the internal routing table of the router Routes Routes specify over which interface and gateway a certain host or network can be reached Static IPv4 Routes Interface Target IPv4 Netmask IPv4 Gateway Metric ost IP or Network if target is a network lan 192 168 55 0 255 255 255 0 192
36. e 5 43 KBit s Peak 11 7 Kbit s 0 66 KB yte s 0 65 KB yte s 1 46 KByte s Outbound 0 94 KBit s Average 15 33 KBit s Peak 109 69 KBit s 0 12 KBytes 1 92 KBytes 13 71 KBytes Indicates how much traffic has been passed through your Ethernet LAN network 21 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 00000001 0000001 10000001 001 101010000000001 0 000 0 0 00001 101 0 eee 01 0000000 00001 000001 000 00000001 0 1 0000001 OI T WAN x Realtime Traffic Bridge LAMPAAN LAM WAM vv ired JG VIF I O27 E Bitis 0 03 EBytels 0 18 EBitis 0 02 EBytels 0 09 E Bitis 0 01 KEytels a minute window 3 second interval Inbound 0 KBit s Average U KBit s Peak U KBit s 0 KBytes 0 KBytes 0 KBytes Outbound 0 33 KBit s Average 0 26 KBit s Peak 0 33 Kbit s 0 04 KByte s 0 05 KByte s 0 04 KByte s Graphs the amount of traffic which passed through the current active WAN connection Wi Fi Realtime Traffic Bridge LAMAAN LAN WAN Mired 3G WiFi 5 36 WIBitis 683 79 KBytes 3 57 WBitls 457 2 EBytels 1 79 WWIBitls 222 6 EBrytels 3 minute window 3 second interval Inbound 2 44 KBit s Average 34 05 KBit s Peak 6 49 MBit s 0 5 KBytes 10 51 KByte s 831 26 KBytes Outbound 0 Kbit s Average 3 26 KBit s Peak 266 17 KBit s 0 KBytes 0 41 KByte s 3 27 KBytes Shows the amount of traffic that has been sent and received through the wireless
37. e time 43 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 Om mel 010m 0 0 0 0 0 0 05 meme a 111 00000001 0000001 10000001 OO000C emma AAA 101 01000000101 10101010000000001 0 000 0 0 00001 1010 7 a 10 OCOUUUT 10000000 00000001 000001 000 00000001 0 1 0000001 000 Dynamic DNS Dynamic DNS allows that your router can be reached with a fixed hostname while having a dynamically changing IP address DEMO Enable Status MIA Service dvndns arq Hostname mypersonaldoamain dyadns org Username MmyUsername Password eeeeeaee IF renew interval 10 imini Force IP renew min T2 Delete Add Enables current DDNS configuration 2 status o Service Your dynamic DNS service provider selected from the list 1 dydns org 2 3322 org 3 no ip com 4 easydns com 5 zoneedit com In case your DDNS provider is not present from the ones provided please feel free to use custom and add hostname of the update URL 4 Hostname Domain name which will be linked with dynamic IP address Name of the user account 6 Password Password of the user account Time interval in minutes to check if the IP address of the device have changed interval 8 Force IP renew Time interval in minutes to force IP address renew OpenVPN VPN Virtual Private Network is a method for secure data transfer through unsafe public network This section explains how to confi
38. ed Accept Packet gets to continue down the next chain Drop Packet is stopped and deleted Reject Packet is stopped deleted and differently from Drop an ICMP packet containing a message of rejection is sent to the source of the dropped packet 37 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 01 OOU 0 0 0010 0 Oh mem 111 00000001 0000001 10000001 01001010 piel 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 10 OUUUOOTON 0000000 00000001 000001 000 00000001 O 1 0000001 000 DMZ DMZ configuration Enabled E OMZ hostiP address By enabling DMZ for a specific internal host for e g your computer you will expose that host and its services to the routers WAN network i e internet Port Forwarding Here you can define your own port forwarding rules Firewall Port Forwarding Port forwarding allows remote computers on the Internet to connect to a specific computer or service within the private LAN Port Forwarding Name Protocol Source Via Destination Enable Sort localvYebsite TCP From any host in wan To any router IP at port Forward to IP 792 763 99 756 port 80 in Edit Delete 12545 lan New port forward Mame Protocal External port Internal IF address Internal port localvWebsite TCP UDP e 12345 192 168 99 156 980 Add You can use port forwarding to set up servers and services on local LAN machines The above picture shows how you
39. gher value if your i connection has high latency or high jitter latency spikes connection to be declared DOWN for good connection to be declared UP DNS Servers Define custom DNS servers Has meaning when you select DNS as your Health Monitor ICMP HOST 7 Backup ICMP host IPv4 address This is where the address of an ICMP host that will be used to check the health of your 3G backup link goes This has to be a ping able host How do I set up a backup link First we must pick a main link Wired or Wi Fi and ensure that the link is working Configure your WAN settings to use that link and see whether you have internet access If the main link is working we can continue configuring our Backup Link Now go to Backup WAN page and configure the settings to your liking Click Save and wait until the settings are applied Now in the Status gt Network Information page there should be a status indication for the backup WAN If everything is working correctly you should see this Backup WAN Status WAN Wired IM USE Backup WAN 3G READY The above picture shows the status for Backup WAN configured on a wired main link You can now simulate a downed link by simply unplugging your Ethernet WAN cable When you ve done so you should see this And if you plug the cable back in you should again see this Backup WAN Status 36 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 10
40. gure OpenVPN which is implementation of VPN supported by the RUT500 router 44 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 VOU QUVUUU0V07 U 1 M 111 00000001 0000001 10000001 OO000C SS wee 101 01000000101 10101010000000001 0 000 0 0 00001 1010 110 OOUUUT TOR 9000000 00000001 000001 000 00000001 0 1 0000001 000 OpenVPN OpenVPN instances Below is a list of configured OpenVPN instances and their current state Tunnel Name Tun Tap Protocol Port Status This section contains no values yet Role Client New configuration name Add New A picture above demonstrates default OpenVPN configurations list which is empty so you have to define a new configuration to establish any sort of OpenVPN connection To create it enter desired configuration name in New configuration name field select device role from Role drop down list For example to create a OpenVPN client with configuration name Demo select client role name it Demo and press Add New button as shown in the following picture Role Client Mew configuration name Demo Add New A new configuration entry has appeared in the list and it is populated with default OpenVPN client settings Tunnel Name Tun Tap Protocol Port Status client_Demo 1194 Disabled Edit Delete You could select a server in previous step to create server default configuration To see at specific configuration settings p
41. ic of that entry DHCP Common Configuration General Setup Advanced Settings Bring Up on boot Disable MAT B If checked router will not perform NAT Masquerade on this interface Use broadcast flag B Required for certain ISPs e g Charter with DOCSIS 3 Use default gateway B If unchecked no default route is configured a aO O K Use DMS servers advertised by peer E lf unchecked the advertised ONS server addresses are ignored Use gateway metric Client ID to send when requesting Ela lee Vendor Class to Send when requesting DHCP Override MAC address Override Wt 28 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 01 VUU VUUUNUVN7 OU 4 a 111 00000001 0000001 10000001 00000 _ iD 101 01000000101 10101010000000001 0 000 0 0 00001 1010 10 OOUDUT se 0000000 00000001 000001 000 00000001 O 1 0000001 000 a IP Aliases IP aliases are a way of defining or reaching a subnet that works in the same space as the regular network IP Aliases SUBNETSS General setup Advanced Settings IPvd Address 192 160 565 161 IPv4 Netmask 255 255 255 0 IPvt Gateway 192 166 556 153 Delete Add As you can see the configuration is very similar to the static protocol only in the example a 55 th subnet is defined Now if some device has an IP in the 55 subnet 192 168 55 xxx and the subnets gateway metric is higher and the device is trying to reach the interne
42. ink is alive ICMP host 8 6 4 4 The majority of the options consist of timing and other important parameters that help determine the health of your primary connection Regular health checks are constantly performed in the form of ICMP packets PINGs on the your primary connection When the connections state starts to change READY gt NOT READY and vice versa a necessary 35 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 J01 QUU VUUOVOUVON7 OV 4 111 00000001 0000001 10000001 00000 pn 99 40 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 auuu OOUT TON 1900000 00000001 000001 000 00000001 0 1 0000001 000 tb amount of failed or passed health checks has to be reached before the state changes completely This delay is instituted so as to mitigate spikes in connection availability but it also extends the time before the backup link can be brought up or down _ Field Name Sample value Ce k Health Monitor Interval Dsb 5 10 20 30 60 120 Seconds The interval at which health checks are performed 1 2 Health Monitor ICMP HOST Dsb DNS WAN GW Custom Where to PING for a health check As there is no definitive way to determine when the connection to internet is down for good you ll have to define a host whose availability that of the internet as a whole 3 Health Monitor ICMP Timeout 3 4 5 10 Seconds How long to wait for an ICMP request to come back Set a hi
43. inside the device 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 01 OUOU 0 0 010 010 0h meme _ 111 00000001 0000001 10000001 00000 W040 401 01000000101 10101010000000001 0 000 0 O 00001 1010 TTT oaa 19090000 00000001 000001 000 00000001 0 1 0000001 000 Introduction Thank you for purchasing a RUT500 3G router RUT500 is part of the RUT5xx series of compact mobile routers with high speed wireless and Ethernet connections This router is ideal for people who d like to share their internet on the go as it is not restricted by a cumbersome cable connection Unrestricted but not forgotten the router still supports internet distribution via a broadband cable simply plug it in to the wan port set the router to a correct mode and you are ready to browse Specifications LAN and Wi Fi e Wireless AP Router 4 Port Switch and Firewall in one device e High performance 320 MHz CPU with 256 Mbits SDRAM e JEEE 802 11b g n IEEE 802 3 IEEE 802 3u standards e 64 128 bit WEP WPA WPA2 WPA amp WPA2 encryption methods e 3xLAN 10 100Mbps Ethernet ports e 1xWAN 10 100Mbps Ethernet port e Supports Auto MDI MDIX e Remote local Web management e 1x 5dBi wireless antenna e SSID stealth mode and access control based over MAC address e System log to record the status of the Router e Auto negotiation manual mode for IEEE 802 11b g n e Dynamic DNS e LAN access control over Internet connectio
44. iption 1 Wired An Ethernet cable connected to the WAN port of the router The router will be able to connect to a local wireless access point and reach the internet through it 1 3 3G The router will connect to your local mobile network for 3G access Available for RUT500 and RUT5XXU SL Sipponesuseagaonge ene ers Tor 3 estes Aine for RUT3OO nen Important notes When you select a mode you have to press Switch Mode in order for further options to load ven if you do not have to configure any additional options after a mode switch you still have to Save the settings After pressing Mode Switch the new mode does not get completely applied until you press Save Common configuration Common configuration allows you to configure your TCP IP settings for the wan network Common Configuration General Setup Protocol DHCP client BA Really switch Switch protocol protocol You can switch between the Static and DHCP protocol by selecting the protocol that you want to use and then pressing Switch Protocol General This area is dedicated for protocol specific options Static 26 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 10000000100100 meme 11 00000001 0000001 10000001 00000 0101 01000000101 10101010000000001 0 000 0 0 00001 1010 yuu DOUTO TON 19000000 00000001 000001 000 00000001 0 1 0000001 000 n Common Configuration General Setup Advanced settings Pro
45. irtual local network interface applicable only for point to point connections endpoint Remote tunnel IP address of virtual remote network interface endpoint Remote IP address of remote virtual network network IP address y y WW m m ad Remote Subnet mask of remote virtual network network IP netmask After setting any of these parameters press Save button Some of selected parameters will be shown in the configuration list table You should also be aware of the fact that router will launch separate OpenVPN service for every configuration entry if it is defined as active of course so the router has ability to act as server and client at the same time IPsec The IPsec protocol client enables the router to establish a secure connection to an IPsec peer via the Internet IPsec is supported in two modes transport and tunnel Transport mode creates secure point to point channel between two hosts Tunnel mode can be used to build a secure connection between two remote LANs serving as a VPN solution IPsec system maintains two databases Security Policy Database SPD which defines whether to apply IPsec to a packet or not and specify which how IPsec SA is applied and Security Association Database SAD which contain Key of each IPsec SA 46 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 Om mn 01010m010 010 0 00h meme 11 00000001 0000001 10000001
46. lan 192 160 0 0 244 0 0 0 0 0 wan 192 160 99 Of24 0 0 0 0 0 Teltonika solutions wwe teltonika It ARP Shows the routers active ARP table An ARP table contains recently cached MAC addresses of every immediate device that was communicating with the router Active IPv4 Routes Shows the routers routing table The routing table indicates where a TCP IP packet with a specific IP address should be directed to Realtime Graphs Real time graphs show how various statistical data changes over time Load Realtime Load a minute window 3 second interval 1 Minute Load 1 59 Average 1 59 Peak 1 66 5 Minute Load 0 95 Average 0 98 Peak 0 98 15 Minute Load 1 59 Average 0 93 Peak 0 93 19 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 QU VUVUULUUUI 11 00000001 0000001 10000001 00000 i Q401 01000000101 10101010000000001 0 000 0 0 00001 1010 wees UU 10 OUUUUU TS 0 e olelelelemmeteleleletetey Melelelerey Melero melelelelele ley mem E0010 0100k mele This tri graph illustrates average system load over the course of 3 minutes each new measurement is taken every 3 seconds The graph consists out of three colour coded graphs each one corresponding to the average system load over 1 red 5 orange and 15 yellow most recent minutes Although not graphed the page also displays peak loads over 1 5 and 15 minutes Traffic Bridge Realtime Traffic Bridge LARVA fy LAN WAN Ai
47. ls if you are unsure of how to alter these attributes it is highly recommended to leave them to a trained professional Static 27 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 QOU QUUUUULU7I 0 1 111 00000001 0000001 PRT 000010 02 101 01000000101 10101010000000001 0 000 0 0 00001 1010 10 OOUCUT se 0000000 00000001 000001 000 00000001 O 1 0000001 000 a Aesi Common Configuration General Setup Advanced Settings Bring up on boot Disable NAT O If checked router will not perform NAT Masquerade on this interface Override MAC address Override WT Use gateway metric a Sample value Explanation Bring up on boot Specifies whether the interface will be configured and brought up when the router boots up Disabling will render your WAN connection non functional 2_ Disable NAT__ On Of_ Toggle NAT on and off _ Override MAC address 00 0C 43 30 50 38 Override MAC eddies of the WAN interface If your ISP gives you a Static IP address it might also bind it to your computers MAC address i e that IP will only work with your computer In this field you can enter your computers MAC address and fool the gateway in thinking that it is communicating with your computer 4 Override e Maximum transmission unit specifies the largest possible size of a data packet 5 Meeenermers O iment youranerthemeticethatenty With this field you can alter the metr
48. mple Value Explanation 1 Dynamic DHCP Checked Unchecked Dynamically allocate client addresses if set to 0 only clients present in the ethers files are served Same network segment think it s serving a larger or a smaller network than it actually is 31 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 OOU QVUUUNVU1I VU 4 n 111 00000001 0000001 10000001 00000 Wab40 101 01000000101 10101010000000001 0 000 0 0 00001 1010 10 0000 TON 9000000 00000001 000001 000 00000001 0 1 0000001 000 DHCP Options 6 192 168 2 1 192 168 2 2 Additional options to be added for this DHCP server For example with 26 1470 26 1470 or option mtu 1470 you can assign an MTU per DHCP option mtu 1470 Your client must accept MTU by DHCP for this to work Wireless On this page you can configure your wireless settings Depending on whether your WAN mode is set to Wifi or not the page will display either the options for configuring an Access Point or options for configuring a connection to some local access point Access Point Wireless Access Point Here you can configure your wireless settings like radio frequency mode encrtion etc Device Configuration General Setup Advanced Settings Wireless networkis Disable enabled E Donttorgetto save before toggling the wireless radio on and off Channel 11 2 462 GHz e Interface Configuration General Setup Wireless Security WMA
49. n e Virtual server e Auto wireless channel selection e OpenVPN e Dynamic DNS e Backup WAN e SMS and Ping reboot HSUPA HSDPA UMTS RUT500 e 850 900 1900 2100 MHz e Power Class 3 0 25 W 24 dBm for UMTS e UMTS mode 384 Kbps DL 384 Kbps UL e HSDPA mode 14 4 Mbps Cat 10 downlink speed e HSUPA mode 5 76 Mbps Cat 6 uplink speed e 3dBi antenna GSM GPRS EDGE RUT500 e 850 900 1800 1900 MHz e Power Class 4 2 W 33 dBm for GSM GPRS 850 900 MHz bands e Power Class 1 1 W 30 dBm for GSM GPRS 1800 1900 Mhz bands e Power Class E2 0 5 W 27 dBm for EDGE 850 900 MHz bands e Power Class E2 0 4 W 26 dBm for EDGE 1800 1900 MHz bands e GSM 14 4 Kbps DL 14 4 Kbps UL e GPRS 85 6 Kbps DL 42 8 Kbps UL class 10 e EDGE 236 8 Kbps DL 118 4 Kbps UL class 10 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 QU VUUUUVUUUT ee 11 00000001 0000001 10000001 0000C _ 101 01000000101 10101010000000001 0 000 0 0 00001 1010 vey yuUU10 OUUTE 0000000 00000001 000001 000 00000001 0 1 0000001 E010 Electrical Mechanical amp Environmental e Dimensions H x W x D 100mm x 85mm x 36mm e Weight 210 260g e Power Supply 100 240 VAC gt 9 VDC wall adapter e Input voltage range 9 12 V e Power Consumption lt 7W e Antenna connectors 2 x SMA for 3G 1 x RP SMA for WiFi e Indicators 4 x Ethernet LEDs 1 x Power LED 1 x 3G LED e Operating Temperature OC to 50C e Storage temperature 20C to
50. ngs after firmware upgrade When check box is not selected all router settings will be restored to factory defaults after firmware upgrade Image router firmware upgrade file Firmware upgrade Verify Firmware upgrade Verify The flash image was uploaded Below is the checksum and file size listed compare them with the original file to ensure data integrity Click Proceed below to start the flash procedure Checksum 446e4c7S5bf7ess 642aabb5b6le37 94 Size 4 50 MB 69 MIB available Configuration files will be kept Compare firmware file checksum to ensure data integrity If checksum is correct click Proceed button below Wait until upgrade process completes Important notes e Leaving Keep settings check box unselected before upgrade process will change IP address of router to default value 192 168 1 1 and you may need to configure router again please read chapter Logging in at page 9 Warning Do not ever remove router power supply and do not press reset button during upgrade process This will totally damage your router and it won t be accessible If you have any problems related to firmware upgrade you should always consult with local dealer Reboot Reboot router by pressing button Reboot Logout Log out from router management WEB interface Glossary WAN Wide Area Network is a telecommunication network that covers a broad area i e any network that links across metrop
51. nnection mode Master indicates that you router is an access point Channel 6 2 44 GHz The channel which is used to broadcast the SSID and to establish new connections to devices Encryption WPA2 PSK The type of encryption that the router will use to authenticate establish and E Eme ieme mamamacomecion nn nema estaben and 7 Bit rate 1 0 MBit s The bitrate will be shared between all devices that connect to the routers Ae a lee T 8 Country T Country code o O Additional note MBit s indicates the bits not bytes To get the throughput in bytes divide the bit value by 8 for e g S4MBits s would be 6 75MB s Mega Bytes per second Associated Stations Outputs a list of all devices and their MAC addresses that are maintain a connection with your router right now This can either be the information of the Access Point that the router is connecting to in Client Mode OR a list of all devices that are connecting to the router in Access Point mode 17 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 UUU QVUVUUUUT l 111 00000001 0000001 10000001 0000C aa es ENY 1 01000000101 10101010000000001 0 000 0 0 00001 1010 z vuuu10 OUUUUU TOE 0000001000010100 0K 00101010K Melero mele leleleleleh meme mele lelelelen melele z oe Associated Stations MAC Address Network Signal RX Rate THX Rate BC TR FO FE AC 45 Waster Teltonika_demo_ap 48 dBm 2 2 Mbits MoS 7 20MHz 43 3 hibits
52. nt DNS Domain Name Resolver A server that translates names such as www google lt to their respective IPs In order for your computer or router to communicate with some external server it needs to know it s IP its name www something com just won t do There are special servers set in place that perform this specific task of resolving names into IPs called Domain Name servers If you have no DNS specified you can still browse the web provided that you know the IP of the website you are trying to reach 54 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299
53. olitan regional or national boundaries Here we use the term WAN to mean the external network that the router uses to reach the internet LAN A local area network LAN is a computer network that interconnects computers in a limited area such as a home school computer laboratory or office building 53 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 QUU QVUVUVDVUU1 OU 4 aa 111 00000001 0000001 10000001 010101010 pounne Q101 01000000101 10101010000000001 O 000 0 0 00001 1010 ww YUUU 10 JUUUUU TUS 6000000 00000001 000001 000 00000001 O 1 0000001 000 DHCP The Dynamic Host Configuration Protocol DHCP is a network configuration protocol for hosts on Internet Protocol IP networks Computers that are connected to IP networks must be configured before they can communicate with other hosts The most essential information needed is an IP address and a default route and routing prefix DHCP eliminates the manual task by a network administrator It also provides a central database of devices that are connected to the network and eliminates duplicate resource assignments ETHERNET CABLE Refers to the CAT5 UTP cable with an RJ 45 connector In other words the most common internet cable ever AP Access point An access point is any device that provides wireless connectivity for wireless clients In this case when you enable Wi Fi on your router your router becomes an access poi
54. or UDP port number make sure that this port allowed by firewall D LZO This setting enables LZO compression With LZO compression your VPN connection will generate less network traffic however this means higher router CPU loads Use it carefully with high rate traffic or low CPU resources Authentication Sets authentication mode used to secure data sessions Two possibilities you have here Static means that OpenVPN client and server will use the same secret key which must be uploaded to the router using Static pre shared key option Tis authentication mode uses X 509 type certificates Depending on your selected OpenVPN mode client or server you have to upload these certificates to the router For client Certificate Authority CA Client certificate Client key For server Certificate Authority CA Server certificate Server key and Diffie Hellman DH certificate used to key exchange through unsafe data networks All mention certificates can be generated using OpenVPN or OpenSSL utilities on any type host machine Certificate generation and theory is out of scope of this user manual address before generating service exception Keep alive Defines two time intervals one is used to periodically send ICMP request to OpenVPN server and another one defines a time window which is used to restart OpenVPN service if no ICPM request is received during the window time slice 7 10 Local tunnel IP address of v
55. ory that is completely free Should this rapidly decrease or get close to O0 it would indicate that the router is running out of memory which could cause crashes and unexpected reboots accessed data Oe ee another location Network Information This page is much like the status page previously described though dedicated to data associated with networking 3G Statistics for the 3G modem and the connection 3G a State connected IMEI 356143040066795 oim card state OK Signal strength T3 dBm Operator BITE Connection type 303 COMA Bytes recieved a424 Bytes sent 4710 FieldName Explanation o O 6 Signal strength Indicates connection strength S 8 Connection type Indicates the connection type SS 9 Bytesreceived How any bytes were received via 3G S WAN Statistics on the routers WAN connection 15 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 Om mn 61010 0 0 0 0 0101 0s mere a 11 00000001 0000001 10000001 00000 m tO 101 01000000101 10101010000000001 0 000 0 0 00001 1010 10 QUUUTU se 0000001000010100 0K Meleleleley melelemeleleleleleleh meme 000010 0k melee WAN Interface SG Type DHCP IPv4 address 10 12 104 1053 Metmask 255 255 255 240 Gateway 10 122 104 97 DNS 1 6 6 8 8 Expires Th 57m 265 Connected Oh 2m 34s Lo Field Name Sample Value Explanation 1 Interface 3G Specifies through what medium the router is connecting to the
56. overcurrent protective device should not exceed 2A The highest transient overvoltage in the output secondary circuit of used PSU shall not exceed 71V peak The device can be used with the Personal Computer first safety class or Notebook second safety class Associated equipment PSU power supply unit LPS and personal computer PC shall comply with the requirements of standard EN 60950 1 Do not mount or service the device during a thunderstorm To avoid mechanical damages to the device it is recommended to transport it packed in a damage proof pack Protection in primary circuits of associated PC and PSU LPS against short circuits and earth faults of associated PC shall be provided as part of the building installation gt gt eepe To avoid mechanical damages to the device it is recommended to transport it packed in a damage proof pack While using the device it should be placed so that its indicating LEDs would be visible as they inform in which working mode the device is and if it has any working problems Protection against overcurrent short circuiting and earth faults should be provided as a part of the building installation Signal level of the device depends on the environment in which it is working In case the device starts working insufficiently please refer to qualified personnel in order to repair this product We recommend forwarding it to a repair centre or the manufacturer There are no exchangeable parts
57. radio 22 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 010101010 1OOQOQOQOUI 10000000001 0 000 0 0 00001 01 000001 000 00000001 0 1 000000 s WUUU U Wireless Realtime Wireless wlan i3 minute window 3 second interval Signal 49 dBm SNR 206 dBm Average 45 dBm SNR 206 dBm Peak 45 dBm SNR 210 dBm Noise 255 dBm Average 255 dBm Peak 255 dBm This graph illustrates how signal strength and the amount of noise change over time de WIBitls 42 WIBitls 16 MBitis a minute window 3 second interval Phy Rate 59 MUBit s Average 59 MBit s Peak 59 MBit s This graph illustrates how the physical rate of wireless changes over time Connections 23 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 anaana IIIT OUUU Active Connections 00001 0000001 10000001 00 101010000000001 0 000 0 0 00001 10 1001 000001 000 00000001 0 1 0000001 OI 3 minute window 3 second interval UDP 4 Average 3 Peak 5 TCP 4 Average 3 Peak 6 Other Average U Peak 2 This graph shows a concise history of the amount of connections that the router maintained Blue graph indicates UDP connections green TCP and red other types ICMP etc Other values indicate each respective graphs average and peak connection amounts over 3 minutes Network Protocol Source Destination Transfer Pd TCP 192 166 0 156 5
58. red 3G VIF i 20 93 KBitis 11 37 EBsytels 60 62 KBitis 1 58 KEytels 30 31 KEitis 3 79 KEytels 3 minute window 3 second interval Inbound 5 61 KBit s Average 4 72 KBitfs Peak 33 54 KDit s 0 7 KBytes 0 59 KBytes 4 17 KBytes Outbound 0 94 KBit s Average 5 11 Kbit s Peak 110 22 KBit s 0 12 KBytes 1 01 KBytes 13 78 KBytes Cumulative graph which encompasses wired Ethernet LAN and the wireless network 20 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 UU UUVUUUUU 1 00000001 0000001 10000001 00000 4 01000000101 10101010000000001 0 000 0 0 00001 1010 vvs s9 UU10 OUUUUU FSS 00000000000100 0K mi oleleleleh mele lem O01000 00K mem 00100100K mele LAN WAN Realtime Traffic Bridge LARVA LAM WAN Aired JG WiFi 91 54 EBitis 11 44 KEytels 61 02 EBitls 7 63 Bytes 30 51 EBitls 3 81 EBytels 3 minute window 3 second interval Inbound 10 4 KBitis Average 5 59 KBit s Peak 36 57 KBit s 1 3 KBytes 1 07 KBytes 4 57 KBytes Outbound 27 01 KBit s Average 43 25 KBit s Peak 110 95 KBit s 3 30 KByte s 5 41 KBytes 13 57 KByte s Graphs the total traffic that passes through both WAN and LAN network interfaces LAN Realtime Traffic Bridge LANVWAN LAN WAN Mired IG WiFi 90 49 KEBitis 11 41 ER Bytels 60 33 KBitls 7 54 KEytels 40 16 EBitls 3 77 KEytels 3 minute window 3 second interval Inbound 6 0 7 KBit s Averag
59. ress edit button located in newly created configuration entry A new page with detailed configuration appears as shown in the picture below OpenVPN instance client_Demo Main settings Enable TurnTap Tunftunnel A Type of used device Protocol Udp A Pot 1194 TCRAUDP port for both local and remote Lo P Use fast LZO compression Authentication Tis l Remote host IP address Resolve Retry infinite Mo Bind Keep alive Client Certificate authority Client certificate Client key You can set custom settings here according to your VPN needs Below is summary of parameters available to set 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 E Do not bind to local address and port Helper directive to simplify the expression of ping and ping restart A PO Brows P Brows fp Brows 45 001 000 00000001 0 1 1111 00000001 0000001 10000001 00000 ee A1 01000000101 10101010000000001 0 000 0 0 00001 1010 1 i wuuu10 JO00OO TS J000000 00000001 000001 000 00000001 0 1 0000001 000 Enabled Switches configuration on and off This must be selected to make configuration active 2 TUN TAP Selects virtual VPN interface type TUN is most often used in typical IP level VPN connections however TAP is required to some Ethernet bridging configurations Defines a transport protocol used by connection You can choose here between TCP and UDP 4 Port oo defines TCP
60. s and special symbols Capital letters also matters Sender phone number Phone number of person who can You can add as many phone numbers reboot router via SMS message as you need Dropdown list with additional rows will show up if you click on add icon at the end of phone number row Get status Check this to receive connection Disabled by default status via SMS after a reboot Status via SMS It is possible to get routers connection status via SMS text message Common configuration Enable SMS Status SMS text sender phone r number eg 37012345678 Notes SMS status function SMS text SMS text which will send routers SMS text can contain letters status numbers spaces and special symbols Capital letters also matters Sender phone number Phone number of person who can You can add as many phone numbers receive router status via SMS as you need Dropdown list with message additional rows will show up if you click on add icon at the end of phone number row Important Notes e 3G settings must be configured correctly If SIM card has PIN number you must enter it at Network gt 3G settings Otherwise SMS reboot function will not work e Sender phone number must contain country code You can check sender phone number format by reading the details of old SMS text massages you receiving usually NTP Hostname Network Time Protocol NTP and time zone configuration settings is needed to periodic
61. ss Filter Allow listed only A A MAC List ral Filter you can define a rule for what to do with the MAC list you ve defined You can either allow only the listed MACs or allow ALL but forbid only the listed ones Client Client mode is nearly identical to AP except for the fact that most for the options are dictated by the wireless access point that the router is connecting to Changing them can result in an interrupted connection to an AP In addition to standard options you can also click the Scan button to rescan the surrounding area and attempt to connect to a new wireless access point Backup WAN Backup WAN is function that allows you to back up your wired OR wireless connection in case they go down At the current moment you can only backup wired Wifi with 3G Backup Link Here you can setup your backup link If your conventional WAN connection such as wired Ethernet or wifi fails the backup link will enable and take over to keep the router connected Enable Timing amp other parameters Timing amp other parameters will indicate how and when it will be determined that your conventional connection has gone down Health Monitor 5 SEC Interval Health MonitorlcMP ONS Serverts iss Hostis Health Monitor EMP 1 sec mma Timeout Attempts Before el WAN Failover Attempts Before WAN Recovery DNS Serwers Auto el Backup ICMP host A remote host that willbe used to test wether your backup l
62. ss automatically the router should lease you an IP and you should be ready to login Internet Protocol Version 4 TCP Ph Properties General Alternate Configuration You can get IP settings assigned automatically iF your network supports this capability Otherwise you need to ask your network administrator For the appropriate IP settings Obtain an IP address automatically O Use the Following IP address IF address Subnet mask 6 Use the Following DNS server addresses Preferred DNS server Alternate DNS server Validate settings upon exit 7 Ifyou choose to configure manually here s what you do First select an IP address Due to the stock settings that your router has arrived in you can only enter an IP in the form of 192 168 1 XXX where XXX is a number in the range of 2 254 192 168 1 2 192 168 1 254 192 168 1 155 and so on are valid 192 168 1 0 192 168 1 1 192 168 1 255 192 168 1 699 and so on are not Next we enter the subnet mask this has to be 255 255 255 0 Then we enter the default gateway this has to be 192 168 1 1 Finally we enter primary and secondary DNS server IPs One will suffice though it is good to have a secondary one as well as it will act as a backup if the first should fail The DNS can be your routers IP 192 168 1 1 but it can also be some external DNS server like the one Google provides 8 8 8 8 11 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 124
63. t it will reroute it s traffic not to the gateway that is defined in common configurations but through the one that is specified in IP aliases IP Aliases SUBNETSS General Setup Advanced Settings IPyv4 Broadcast DNS Server Delete Add You may also optionally define a broadcast address and a custom DNS server How do I setup Wifi WAN First we must switch the mode to Wifi Do so by selecting Wifi from the list and clicking Switch mode Now you have a selection of protocols available for you Depending on whether the Access Point that you intend to connect to runs a DHCP server or not you will have to choose DHCP or Static AP runs a DHCP server DHCP Does not run Static When you ve configured your protocol settings press Save and await until the settings are applied Next goto the Network gt Wireless page and wait until it loads For the first time an automatic Site Survey will be initiated You should now see a list of available local Access Points Choose one and click Join Network 29 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 UVOUU YVUUUVOUU7I OU 4 111 00000001 0000001 10000001 0000C a puu Q101 01000000101 10101010000000001 0 000 0 0 00001 1010 wp YUUU 10 JUUUUU TOS 6000000 00000001 000001 000 00000001 O 1 0000001 000 Should you be asked enter the secret Encryption Key and click Submit Now you should be transported to the Wireless Station page Click
64. tacal static address BA IPv4 address 192 160 995 162 IFy4 netmask 295 255 259 0 A IPvd gateway 192 160 939 254 IPvwl broadcast Use custom ONS 0 0 0 0 e RE E This is the configuration setup for when you select the static protocol _ Filedname Sample Explanation o O IPv4 address 192 168 99 162 Your routers address on the WAN network IPv4 netmask 255 255 255 0 A mask used to define how large the WAN network is IPv4 gateway 192 168 99 254 Address where the router will send all the outgoing traffic IPv4 broadcast 192 168 99 255 Broadcast address autogenerated if not set It is best to leave this blank unless you know what you are doing 5 custom DNS servers 8 8 8 8 8 8 6 6 Usually the gateway has some predefined DNS servers As such the router when it needs to resolve a hostname www google com www cnn com etc to an IP address it will forward all the DNS requests to the gateway By entering custom DNS servers the router will take care of host name resolution You can enter multiple DNS servers to provide redundancy in case the one of the server fails DHCP Common Configuration General Setup Advanced settings Protocol DHCP client BA Hostname to send when requesting DHCP When you select the DHCP protocol you can use it as is because most networks will not require any additional advanced configuration Advanced These are the advanced settings for each of the protoco
65. to which network you wish to connect E g if you choose GSM the router will connect to a GSM network so long as itis available otherwise it will connect to a UMTS network If you select auto then the router will connect to the network that provides better connectivity Warning If an invalid PIN number was entered i e the entered PIN does not match the one that was used to protect the SIM card your SIM card will get blocked To avoid such mishaps it is highly advised to use an unprotected SIM If you happen to insert a protected SIM and the PIN number is incorrect your card won t get blocked immediately although after a couple of reboots OR configuration saves it will 25 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 01 OOU 0 0 010 010 0h meme 111 00000001 0000001 10000001 OO000C a m a01 01000000101 10101010000000001 0 000 0 0 00001 1010 10 OUUUUOTR 00000010R O01000 00K 001001 0K00 R000000 0k meme 0010010 0k 000 Wan WAN configuration is arguably the crux of the routers configuration as it determines how the router will connect to the internet Here is quick rundown of how the page looks and what each field means Operation Mode Operation mode Interface wired 9 3G G Viti Realy switch Switch mode modes Do notforgetto Save your settings when you re done First and foremost a mode of connection has to be defined Available selections _ Type Descr
66. ulates data and sends it over the WAN 48 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 QUU QVUVUVDVUU1 OU 4 aa 111 00000001 0000001 10000001 0000C 1 01000000101 10101010000000001 0 000 0 0 00001 1010 6000000 00000001 000001 000 00000001 O 1 0000001 000 WAN IP WAN IP A A A A B B B B Tunnel 10 0 0 1 24 Tunnel 10 0 0 2 24 LAN1 192 168 0 0 24 LAN1 192 168 1 0 24 Figure 1 Typical GRE tunnel application connecting two remote networks In the example network diagram Fig 22 two distant networks LAN1 and LAN2 are connected To create GRE tunnel the user must know the following parameters 1 Source and destination IP addresses From Fig 22 A A A A and B B B B 2 Tunnel local IP address 3 Distant network IP address and Subnet mask Enable GRE Tunnel E Tae E Value 0 255 PMTUJDO E Remote tunnel network address Remote CIDR B CIDR netmask value 0 32 Remote IF address MTL 1500 EB MTU value 0 1500 Enable GRE Tunnel Check the box to enable the GRE Tunnel function Specify the fixed time to live TTL value on tunneled packets 0 255 The O is a special value meaning that packets inherit the TTL value 3 PMTUD Check the box to enable the Path Maximum Transmission Unit Discovery PMTUD status on this tunnel Remote tunnel endpoint IP Set remote tunnel Endpoint IP address address Remote network IP address Specify remote LAN IP address 6
67. ve Wi Fi in your LAN LAN 3G Backup link Wi Fi oT G _ Y In later sections it will be explained bit by bit how to configure your router to work in a desired mode 13 4Gon www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299 QUU QVUVUVDVUU1I OU 4 aa 111 00000001 0000001 10000001 010101010 pn pee 1 01000000101 10101010000000001 0 000 0 0 00001 1010 yy YUU 10 JUUUUU TOS 6000000 00000001 000001 000 00000001 O 1 0000001 000 Function explanations The following sections contain a detailed explanation of every page tab and sub tab of the configuration interface in the order that they appear on the router Status The status section contains various information like current IP addresses of various network interfaces the state of the routers memory firmware version DHCP leases associated wireless stations graphs indicating load traffic etc and much more System Information The System Information tab contains data that pertains to the routers operating system CSTEL TONIKA Status WNetwork Services System Logout system information System Router Mame Teltonika Router Model Teltonika RUTSOO Firmware Version RITS T_O0 00 436 Kernel Version 3 2 15 Local Time Fri Jun 29 11 49 22 2012 Uptime Oh m 34s Load Average 0 23 0 25 0 40 Memory Total Available 144416 kB 25964 kB 48 Free 1476 kB 29964 kB 4 Cached OS65 kE 29964 kB S24 Buffered S072 kB 7 29964 kB
Download Pdf Manuals
Related Search