XPort Pro User Guide
Contents
1. Syslog Settings 72 HTTP Settings 73 HTTP Statistics 73 HTTP Configuration 74 HTTP Authentication 76 RSS Settings 77 LPD Settings 78 LPD Statistics 78 LPD Configuration 79 10 Security Settings 81 SSH Settings 81 SSH Server Host Keys 82 SSH Server Authorized Users 83 SSH Client Known Hosts 85 SSH Client User 86 SSL Settings 88 SSL Cipher Suites 88 SSL Certificates 89 SSL RSA or DSA 89 SSL Certificates and Private Keys 89 SSL Utilities 90 OpenSSL 90 Steel Belted Radius 90 FreeRadius 90 SSL Configuration 91 11 Modbus 94 CP Control via Modbus 94 Serial Transmission Mode 96 Modbus Statistics 97 Modbus Configuration 98 12 Maintenance and Diagnostics Settings 99 Filesystem Settings 99 Filesystem Statistics 99 Filesystem Browser 100 Protocol Stack Settings 103 TCP Settings 103 IP Settings 104 ICMP Settings 105 ARP Settings 106 XPort Pro User Guide 6 SMTP Settings 107 IP Address Filter 108 Query Port 109 Diagnostics 110 Hardware 110 MIB II Statistics 111 IP Sockets 112 Ping 112 Traceroute 114 Log 115 Memory 117 Buffer Pools 117 Processes 118 System Settings 120 13 Advanced Settings 122 Email Settings 122 Email Statistics 122 Email Configuration 123 Command Line Interface Settings 125 CLI Statistics 125 CLI Configuration 125 XML Settings 127 XML Exp2. Enabled Disabled 80 MISSL3 MITLS1 0 MITLS1 1 10 seconds 40960 Enabled Disabled 50 h Bt Ar s B Referer UserAgent i 30 minutes 2 Enter or modify the following settings Table 9 13 HTTP Configuration State Port Secure Port Select Enabled to enable the HTTP server Enter the port for the HTTP server to use The default is 80 Enter the port for the HTTPS server to use The default is 443 The HTTP server only listens on the HTTPS Port when an SSL certificate is configured XPort Pro User Guide 74 9 Service Settings Secure Protocols Max Timeout Max Bytes Logging State Max Log Entries Log Format Authentication Timeout 3 Click Submit XPort Pro User Guide Select to enable or disable the following protocols SSL3 Secure Sockets Layer version 3 TLS1 0 Transport Layer Security version 1 0 TLS 1 0 is the successor of SSL3 as defined by the IETF TLS1 1 Transport Layer Security version 1 1 The protocols are enabled by default Note A server certificate and associated private key need to be installed in the SSL configuration section to use HTTPS Enter the maximum time for the HTTP server to wait when receiving a request This prevents Denial of Service DoS attacks The default is 10 seconds Enter the maximum number of bytes the HTTP server accepts when receiving a request The default is 40 kB this prevents DoS
3. Configuration from External file See Import Configuration from External File on page 131 XPort Pro User Guide 130 13 Advanced Settings e Configuration from Filesystem See Import Configuration from the Filesystem on page 132 Line s from single line Settings on the Filesystem See Import Line s from Single Line Settings on the Filesystem on page 134 Import Configuration from External File This selection shows a field for entering the path and file name of the entire external XCR file you want to import You can also browse to select the XCR file Figure 13 12 XML Import Configuration from External File Export Configuration Export Status Import Configuration XML Import Configuration Import configuration from entire external XCR file Browse XPort Pro User Guide 131 Import Configuration from the Filesystem 13 Advanced Settings This selection shows a page for entering the filesystem and your import requirements groups lines and instances Figure 13 13 XML Import from Filesystem Export Configuration Export Status Import Configuration XML Import Configuration Import configuration from the filesystem Filename Lines to Import Clear All Select All M1 network Whole Groups to Import Clear All Select All but Networking cli diagnostics execute host icmp ip filter ManageLinx query port smtp ssh client syslog
4. Text O Binary Queue Name XPort Pro User Guide 79 9 Service Settings 2 Enter or modify the following settings Table 9 20 LPD Configuration Banner Select Enabled to print the banner even if the print job does not specify to do so Selected by default Binary Select Enabled for the device to pass the entire file to the printer unchanged Otherwise the device passes only valid ASCII and valid control characters to the printer Valid control characters include the tab linefeed formfeed backspace and newline characters All others are stripped Disabled by default Start of Job Select Enabled to print a start of job string before sending the print data End of Job Select Enabled to send an end of job string Formfeed Select Enabled to force the printer to advance to the next page at the end of each print job Convert Newlines Select Enabled to convert single newlines and carriage returns to DOS style line endings SOJ String If Start of Job above is enabled enter the string to be sent to the printer at the beginning of a print job The limit is 100 characters Indicate whether the string is in text or binary format EOJ String If End of Job above is enabled enter the string to send at the end of a print job The limit is 100 characters Indicate whether the string is in text or binary format Queue Name To change the name of the print queue enter a new name
5. XPort Pro User Guide 28 Network 1 eth0 Interface Configuration 5 Network Settings This page shows the configuration settings for the Ethernet connection and lets you change these settings To view and configure network interface settings 1 Click Network 1 gt Interface gt Configuration at the top of the page The Network 1 eth0 Interface Configuration page appears Figure 5 2 Network 1 eth0 Interface Configuration Network 1 Interface Link Status Configuration Network 1 eth0 Interface Configuration BOOTP Client DHCP Client IP Address Default Gateway Hostname Domain DHCP Client ID Primary DNS Secondary DNS MTU Oon Sof on Oof lt None gt lt None gt Text O Binary lt None gt lt None gt 1500 2 Enter or modify the following settings Table 5 3 Network 1 eth0 Interface Configuration BOOTP Client XPort Pro User Guide Select On or Off At boot up the device will attempt to obtain an IP address from a BOOTP server Notes Overrides the configured IP address network mask gateway hostname and domain When DHCP is On the system automatically uses DHCP regardless of whether BOOTP Client is On 29 DHCP Client IP Address Default Gateway Hostname Domain DHCP Client ID Primary DNS Secondary DNS MTU 5 Network Settings Select On or Off At boot up the device will attempt to lease an
6. Duplex Select the Ethernet link duplex mode Default is Auto 3 Click Submit The changes take effect immediately Note The following section describes the steps to view and configure Line 1 settings these steps apply to other line instances of the device XPort Pro User Guide 31 Line and Tunnel Settings This chapter describes how to view and Note The number of lines and tunnels configure lines and tunnels It contains the available for viewing and configuration differ following sections Line Settings Tunnel Settings between Lantronix DeviceLinx products The screenshots in this manual represent one line and tunnel as available for example on an XPort Pro and EDS1100 However other device networking products such as EDS2100 EDS4100 XPort AR and EDS8 16 32PR Line Settings support additional lines and tunnels You can view statistics and configure the serial interfaces referred to as lines by using the Line web page When you click Line from the Main Menu Line 1 fields display The following sub menus can be used Line Statistics Displays statistics for the serial lines For example the bytes received and transmitted breaks flow control parity errors etc Line Configuration Enables the change of the name interface protocol baud rates and parity etc Line Command Mode Enables the types of modes wait time serial strings signon message etc The following sections d
7. Mode Always vi Local Port 10001 Protocol TCP TCP Keep Alive 45000 milliseconds Flush Serial O Enabled Disabled Block Serial O Enabled Disabled Block Network O Enabled Disabled Password lt None gt Email on Connect lt None gt Email on Disconnect lt None gt v CP Output Group 2 Enter or modify the following settings Table 6 13 Tunnel Accept Mode Mode Local Port Protocol TCP Keep Alive XPort Pro User Guide Select the method used to start a tunnel in Accept mode Choices are Disabled do not accept an incoming connection Always accept an incoming connection default Any Character start waiting for an incoming connection when any character is read on the serial line Start Character start waiting for an incoming connection when the start character for the selected tunnel is read on the serial line Modem Control Asserted start waiting for an incoming connection as long as the Modem Control pin DSR is asserted on the serial line until a connection is made Modem Emulation start waiting for an incoming connection when triggered by modem emulation AT commands Connect mode must also be set to Modem Emulation Enter the port number for use as the local port The defaults are port 10001 for Tunnel 1 Additional tunnels if supported increase sequentially Select the protocol type for use with Accept Mode The default protocol is TCP If you
8. Current Configuration Public RSA Key No RSA Key Configured Public DSA Key No DSA Key Configured 2 Enter or modify the following settings Table 10 2 SSH Server Host Keys Settings Upload Keys Private Key Enter the path and name of the existing private key you want to upload or use the Browse button to select the key Be sure the private key will not be compromised in transit This implies the data is uploaded over some kind of secure private network Public Key Enter the path and name of the existing public key you want to upload or use the Browse button to select the key Key Type Select a key type to use RSA use this key with SSH1 and SSH2 protocols DSA use this key with the SSH2 protocol Note RSA is more secure XPort Pro User Guide 82 10 Security Settings Create New Keys Key Type Select a key type to use for the new key RSA use this key with the SSH1 and SSH2 protocols DSA use this key with the SSH2 protocol Bit Size Select a bit length for the new key 512 768 1024 Using a larger bit size takes more time to generate the key Approximate times are 10 seconds for a 512 bit RSA Key 15 seconds for a 768 bit RSA Key 1 minute for a 1024 bit RSA Key 30 seconds for a 512 bit DSA Key 1 minute for a 768 bit DSA Key 2 minutes for a 1024 bit DSA Key Note Some SSH clients require RSA host keys to be at least 1024 bits long This device
9. Max Retrans to thwart denial of service attacks Max Timeout Enter the maximum time between retransmissions 4 Click Submit IP Settings 1 Click Protocol Stack on the menu bar 2 Click IP Figure 12 5 IP Protocol TCP IP ICMP ARP SMTP IP Configuration IP Time to Live 64 g l hops Multicast Time to Live 1 hops 3 Modify the following settings IP Time to Live This value typically fills the Time To Live in the IP header SNMP refers to this value as ipDefaultTTL Enter the number of hops to be transmitted before the packet is discarded Multicast Time to Live __ This value fills the Time To Live in any multicast IP header Normally this value will be one so the packet will be blocked at the first router It is the number of hops allowed before a Multicast packet is discarded Enter the value to be greater than one to intentionally propagate multicast packets to additional routers 4 Click Submit XPort Pro User Guide 104 12 Maintenance and Diagnostics Settings ICMP Settings To configure the ICMP network protocol 1 Click Protocol Stack on the menu bar 2 Click ICMP Figure 12 6 ICMP Protocol TCP IP ICMP ARP SMTP ICMP Configuration State Enabled Disabled 3 Select the appropriate state Table 12 7 ICMP Settings State The State selection is used to turn on off processing of ICMP messages This includes both incoming and outgoing messages Choose Enab
10. oo Yom wN NIPNITNMITNITN TN TR al e ef ae lf ef el el eo SO fF WOM OD OAH DH amp WN oO 28 99 07 0 14 0 44 0 00 0 01 0 00 0 00 0 00 0 00 0 00 0 00 0 55 0 00 0 00 0 00 0 00 0 15 0 00 0 00 0 00 0 00 0 00 0 00 0 00 0 00 0 00 Stack Size 392 2048 400 2048 1064 4096 264 2048 476 4096 664 3008 2568 7072 440 2048 564 3072 1924 5120 2476 13008 2532 13008 2520 13008 624 2512 856 3072 220 6000 600 8000 376 8000 348 9216 812 8192 408 2512 408 2512 368 10000 4568 61440 700 5120 10100 42000 Total processor load 0 93 O 49 Process Name Idle Task Timeout Server Event Server DNS Cache Ethernet Manager Snmp Agent Dynamic IP Daemon ethO FTP Server TFTP Server Syslog Http1 Http2 Http3 HttpO Query Port 7FE Network gt Serial Daemon Port 1 Serial gt Network Daemon Port 1 Accept Mode Daemon Part 1 Connect Mode Daemon Port 1 SMTP Client Telnet CLI Server SSH CLI Server Serial Command Interpreter Port 1 VIP Access LPD Daemon Math Task 50 74 E 75 100 CPU Load 3 second snapshots XPort Pro User Guide 119 System Settings 12 Maintenance and Diagnostics Settings The XPort Pro System web page allows for rebooting the device restoring factory defaults uploading new firmware configuring the short and long name and viewing the current system configuration To configure system settings 1 Click System on t
11. 25 4 Configuration Using Web Manager In the middle of many pages you can select or enter new configuration settings Some pages show status or statistics in this area rather than allow you to enter settings At the bottom of most pages the current configuration is displayed In some cases you can reset or clear a setting The information or help area shows information or instructions associated with the page A Logout link is available at the upper right corner of every web page In Chrome or Safari it is necessary to close out of the browser to logout If necessary reopen the browser to log back in The footer appears at the very bottom of the page It contains copyright information and a link to the Lantronix home page Navigating the Web Manager The Web Manager provides an intuitive point and click interface A menu bar on the left side of each page provides links you can click to navigate from one page to another Some pages are read only while others let you change configuration settings Note There may be times when you must reboot the XPort Pro for the new configuration settings to take effect The chapters that follow indicate when a change requires a reboot Table 4 3 Summary of Web Manager Pages Status Shows product information and network line and tunneling 32 settings CLI Shows Command Line Interface CLI statistics and lets you 125 change the current CLI confi
12. Accessing XPort Pro Using Devicelnstaller 21 Device Details Summary 21 4 Configuration Using Web Manager 23 Accessing Web Manager 23 Device Status Page 24 Web Manager Page Components 25 Navigating the Web Manager 26 4 XPort Pro User Guide 5 Network Settings 28 Network 1 ethO Interface Status 28 Network 1 ethO Interface Configuration 29 Network 1 Ethernet Link 31 6 Line and Tunnel Settings 32 Line Settings 32 Line Statistics 32 Line Configuration 33 Line Command Mode 35 Tunnel Settings 36 Tunnel Statistics 37 Tunnel Serial Settings 39 Tunnel Packing Mode 40 Tunnel Accept Mode 43 Tunnel Connect Mode 46 Connecting Multiple Hosts 50 Host List Promotion 50 Tunnel Disconnect Mode 51 Tunnel Modem Emulation 52 7 Terminal and Host Settings 55 Terminal Settings 55 Line Terminal Configuration 55 Network Terminal Configuration 57 Host Configuration 58 8 Configurable Pin Manager 59 Overview 59 Default Groups 59 Custom Groups 59 CPM CP Configurable Pins 59 View CPs 60 CPM Groups 62 View Groups 62 9 Service Settings 66 DNS Settings 66 PPP Settings 67 SNMP Settings 69 FTP Settings 70 TFTP Settings 71 XPort Pro User Guide
13. Disable Tunnel 1 Statistics Serial Settings Packing Mode AcceptMode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Packing Mode Disable Mode OTimeout Send Character XPort Pro User Guide 40 6 Line and Tunnel Settings Figure 6 9 Tunnel 1 Packing Mode Mode Timeout Tunnel 1 Statistics Serial Settings Packing Mode AcceptMode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Packing Mode Disable Mode S Timeout Send Character Threshold 512 bytes Timeout 1000 milliseconds Figure 6 10 Tunnel 1 Packing Mode Mode Send Character Tunnel 1 Statistics Serial Settings Packing Mode AcceptMode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Packing Mode O Disable Mode OTimeout 3 Send Character Threshold 512 bytes Send Character lt control gt M Trailing Character lt None gt 2 Enter or modify the following settings Table 6 11 Tunnel Packing Mode Mode Select Disable to disable Packing Mode completely Select Timeout to send data after the specified time has elapsed Select Send Character to send the queued data when the send character is received XPort Pro User Guide 41 6 Line and Tunnel Settings Threshold Appears for both Timeout and Send Character Modes Timeout Appears for Timeout Mode Send Character Appears for Send Character Mode Trailing Character Appears
14. Enter the stop character in ASCII hexadecimal or decimal notation Select lt None gt to disable Select Enabled to disconnect when the modem control pin is not asserted on the serial line Enter a time in milliseconds for the device to disconnect on a Timeout The value 0 zero disables the idle timeout Select Enabled to flush the serial data buffer on a disconnection 51 6 Line and Tunnel Settings Tunnel Modem Emulation A tunnel in Connect Mode can be initiated using modem commands incoming from the Serial Line This page enables you to configure the modem emulation settings when you select Modem Emulation as the Tunnel Connect Mode type The Modem Emulation Command Mode supports the standard AT command set For a list of available commands from the serial or Telnet login enter AT Use ATDT ATD and ATDP to establish a connection All of these commands behave like a modem For commands that are valid but not applicable to the XPort Pro an OK message is sent but the command is silently ignored The XPort Pro attempts to make a Command Mode connection as per the IP DNS port numbers defined in Connect Mode It is possible to override the remote address as well as the remote port number The following table lists and describes the available commands Table 6 19 Modem Emulation Commands and Descriptions Switches to Command Mode if entered from serial port during connection AT Help ATDT lt Address I
15. The name cannot have white space in it and is limited to 31 characters The default is LPDQueuexX for line number X 3 Click Submit XPort Pro User Guide 80 10 Security Settings The XPort Pro device supports Secure Shell SSH and Secure Sockets Layer SSL SSH is a network protocol for securely accessing a remote device SSH provides a secure encrypted communication channel between two hosts over a network It provides authentication and message integrity services Secure Sockets Layer SSL is a protocol that manages data transmission security over the Internet It uses digital certificates for authentication and cryptography against eavesdropping and tampering It provides encryption and message integrity services SSL is widely used for secure communication to a web server SSL uses certificates and private keys Note The XPort Pro supports SSLv3 and its successors TLS1 0 and TLS1 1 An incoming SSlv2 connection attempt is answered with an SSIv3 response If the initiator also supports SSLv3 SSLv3 handles the rest of the connection This chapter contains the following sections SSH Server Host Keys SSH Server Authorized Users SSH Client Known Hosts SSH Client User SSL Cipher Suites SSL Certificates SSL RSA or DSA SSL Certificates and Private Keys SSL Utilities SSL Configuration gt gt gt 2 SSH Settings SSH is a network protocol for securely accessing a remote device over an
16. To import all of the groups click the Select All but Networking link to import all groups To clear all the checkboxes click the Clear All link Text List Enter a string to import specific instances of a group The textual format of this string is lt g gt lt i gt lt g gt lt i gt Each group name lt g gt is followed by a colon and the instance value lt i gt and each lt g gt lt i gt value is separated by a semi colon If a group has no instance then specify the group name lt g gt only Use this option for groups other than those affected by Lines to Import 2 Click Import XPort Pro User Guide 133 13 Advanced Settings Import Line s from Single Line Settings on the Filesystem This selection copies line settings from the single line instance in the input file to selected lines The import file may only contain records from a single line instance this is done by selecting a single Line to Export when exporting the file To modify Single Line Settings on the Filesystem Figure 13 15 XML Import Line s from Single Line Settings on the Filesystem Export Configuration Export Status Import Configuration XML Import Configuration Import Line s from single line settings on the filesystem Filename Lines to Import Clear All Select All 1 network Whole Groups to Import Clear AIl Select All but Networking arp cli cp group device diagnostics email ether
17. gt For TCP TCP AES and Telnet use the TCP Keep Alive field to adjust the value gt For TCP AES enter the AES Encrypt and AES Decrypt Keys Both of keys may be set to the same value gt For UDP there are no additional fields to complete In this mode the device accepts packets from any device on the network and sends packets to the last device that sent it packets gt For UDP AES enter the AES Encrypt and AES Decrypt Keys SSH Username Displays configured username used only if SSH protocol is selected TCP Keep Alive Default is 45000 milliseconds Enter zero to disable and blank the value to restore the default AES Encrypt Decrypt Key Displays presence of key used only if protocol with AES is selected 48 6 Line and Tunnel Settings Reconnect Timer Flush Serial Data Block Serial Block Network Email on Connect Email on Disconnect CP Output Enter the reconnect time in milliseconds The device attempts to reconnect after this amount of time after failing a connection or exiting an existing connection This behavior depends upon the Disconnect Mode Note When you configure Tunnel Connect Mode you can specify a number of milliseconds to attempt to reconnect after a dropped connection has occurred The default is 1500 milliseconds The Reconnect Timer only applies if a Disconnect Mode is configured With a Disconnect Mode set the device server maintains a connection until the disco
18. 7864320 bytes Available Space 7 474250 Mbytes 7837320 bytes 99 Clean Space 7 336588 Mbytes 7692972 bytes 97 Dirty Space 140 964 Kbytes 144346 bytes 1 File amp Dir Space Used 26 367 Kbytes 27000 bytes 0 Data Space Used 22 650 Kbytes 23194 bytes Number of Files 0 Number of Dirs D Number of System Files 2 Opened Files 0 Locked Files D Opened for Sharing 0 Current Bank B FW Sectors 02 07 9 erase cycles Bank A Sectors 03 67 0 erase cycles Bank B Sectors 68 127 2 erase cycles Busy No Actions Compact Format XPort Pro User Guide 99 12 Maintenance and Diagnostics Settings To view filesystem statistics or to compact or format the filesystem 1 Back up all files as necessary 2 Click Filesystem on the menu bar The Filesystem page opens and shows the current filesystem statistics and usage 3 To compact the files click Compact in the Actions row Note The compact should not be needed under normal circumstances as the system manages this automatically 4 Back up all files before you perform the next Format step because all user files get erased in that step 5 Click Format in the Actions row The configuration gets retained Filesystem Browser To browse the filesystem 1 Click Filesystem on the menu bar and then Browse at the top of the page The Filesystem Browser page opens XPort Pro User Guide 100 12 Maintenance and Diagnostics Set
19. Ack Limit 3 packets Send Data Standard O Expedited Max Retrans 12 Max Retrans Syn Ack 2 Max Timeout 60 seconds Statistics Total Out RSTs Total In RSTs 5 3 Modify the following settings Send RSTs Ack Limit Send Data Max Retrans XPort Pro User Guide Click Enabled to send RSTs or Disabled to stop sending RSTs TCP contains six control bits with one or more defined in each packet RST is one of the control bits The RST bit is responsible for telling the receiving TCP stack to enda connection immediately Note Setting the RSTs may pose a security risk Enter a number to limit how many packets get received before an ACKgets forced If there is a large amount of data to acknowledge an ACK gets forced If the sender TCP implementation waits for an ACK before sending more data even though the window is open setting the Ack Limit to 1 packet improves performance by forcing immediate acknowledgements The Send Data selection governs when data may be sent into the network The Standard implementation waits for an ACK before sending a packet less than the maximum length Select Expedited to send data whenever the window allows it Enter the maximum number of retransmissions of a packet that will be attempted before failing 103 12 Maintenance and Diagnostics Settings Max Retrans Syn Ack Enter the maximum number of retransmissions of a SYN that will be attempted before failing It is lower than
20. Add Current State The IP Filter Table is empty so ALL addresses are allowed Note Be aware not to assign your network IP address as filtered Doing so will prevent you from accessing the XPort Pro You will have to then access the XPort Pro from a different computer to reset the configuration 2 Enter or modify the following settings Table 12 13 IP Address Filter Settings IP Address Enter the IP address to add to the IP filter table Network Mask Enter the IP address network mask in dotted notation 3 Click Add Note Inthe Current State table click Remove to delete any existing settings as necessary XPort Pro User Guide 108 12 Maintenance and Diagnostics Settings Query Port The query port 0x77FE is used for the automatic discovery of the device by the Devicelnstaller utility Only Ox77FE discover messages from Devicelnstaller are supported For more information on Devicelnstaller see Using Devicelnstaller on page 21 To configure the query port server 1 Click Query Port on the menu bar The Query Port page opens to display the current configuration Figure 12 14 Query Port Configuration Query Port Query Port Server On O Off Current Configuration and Statistics Query Port Status On running In Valid Queries 135 In Unknown Queries 124 In Erroneous Packets 0 Out Query Replies 135 Out Errors 0 Last Connection 172 19 229 50 28683 2 Select On to enable
21. Configuration table delete currently stored settings as necessary XPort Pro User Guide 87 10 Security Settings SSL Settings Secure Sockets Layer SSL is a protocol for managing the security of data transmission over the Internet It provides encryption authentication and message integrity services SSL is widely used for secure communication to a web server Certificate Private key combinations can be obtained from an external Certificate Authority CA and downloaded into the unit Self signed certificates with associated private key can be generated by the device server itself For more information regarding Certificates and how to obtain them see SSL Certificates and Private Keys on page 89 SSL uses digital certificates for authentication and cryptography against eavesdropping and tampering Sometimes only the server is authenticated sometimes both server and client The XPort Pro can be server and or client depending on the application Public key encryption systems exchange information and keys and set up the encrypted tunnel Efficient symmetric encryption methods encrypt the data going through the tunnel after it is established Hashing provides tamper detection Applications that can make use of SSL are Tunneling Secure Web Server and WLAN interface The XPort Pro supports SSlv3 and its successors TLS1 0 and TLS1 1 Note An incoming SSiv2 connection attempt is answered with an SSIv3 response If the initiato
22. ID 2 bytes 0 Modbus protocol Length 2 bytes Number of following bytes includes the unit identifier Address 1 byte Identification of remove slave CP Control via Modbus Default groups are mapped to Modbus registers CPs added to groups will result in the CP being read and written based on the reading or writing to the register which maps to that CP group Default Modbus group names include e Modbus_Ctl_In e Modbus _Ctl_Out Note Refer to Chapter 8 CPM Groups on page 62 for instructions on adding a CP to a Group When the Modbus slave address is set to OxFF the message is addressed to the internal default groups and thus processed by the XPort Pro The Modbus local slave supported functions are listed in the table below Table 11 2 Modbus Local Slave Functions Query Read Coils 0x01 0x00 0x00 0x02 0x00 0x01 0x03 Starting CP No of CPs to CP1 CP3 output Read Input 0x02 0x00 0x00 0x02 0x00 0x01 0x03 N A N A status Starting CP No of CPs to CP1 CP3 output Read Holding 0x03 0x00 0x00 0x02 0x00 0x01 0x03 N A N A Registers Starting CP No of CPs to CP1 CP3 output Read Input 0x04 0x00 0x00 0x02 0x00 0x01 0x03 N A N A Registers Starting CP No of CPs to CP1 CP3 output XPort Pro User Guide 94 11 Modbus Force Single Coil 0x05 0x00 0x00 0x02 Oxff set CPx 0x00 Output CP to 1 0 CP1 CP3 0x00 fad CPx to 0 Preset Single 0x06 0x00 0x00 0x02 0x00 0x00 or0x01 N A N A Register CP1 CP3 Force Mul
23. IP address from a DHCP server and maintain the lease at regular intervals Note Overrides BOOTP the configured IP address network mask gateway hostname and domain Enter the device static IP address You may enter it alone in CIDR format or with an explicit mask The IP address consists of four octets separated by a period and is used if BOOTP and DHCP are both set to Off Changing this value requires you to reboot the device Note When DHCP is enabled the device tries to obtain an IP address from DHCP If it cannot the device uses an AutolP address in the range of 169 254 xxx xxx Enter the IP address of the router for this network Or clear the field appears as lt None gt This address is only used for static IP address configuration Enter the device hostname It must begin with a letter continue with a sequence of letters numbers and or hyphens and end with a letter or number Enter the device domain name Enter the ID if the DHCP server uses a DHCP ID The DHCP server s lease table shows IP addresses and MAC addresses for devices The lease table shows the Client ID in hexadecimal notation instead of the device MAC address IP address of the primary name server This entry is required if you choose to configure DNS Domain Name Server servers IP address of the secondary name server When DHCP is enabled the MTU size is usually provided with the IP address When not provided by the DHCP server or us
24. Internet Terminal Server Device Management Remote offices can have routers PBXs servers and other networking equipment that require remote management from the corporate facility The XPort Pro easily attaches to the serial ports on a server Private Branch Exchange PBX or other networking equipment to deliver central remote monitoring and management capability Troubleshooting Capabilities The XPort Pro offers a comprehensive diagnostic toolset that lets you troubleshoot problems quickly and easily Available from the Web Manager CLI and XML interfaces the diagnostic tools let you e View critical hardware memory MIB II buffer pool and IP socket information e Perform ping and traceroute operations e Conduct forward or backup DNS lookup operations View all processes currently running on the XPort Pro including CPU utilization and total stack space available Configuration Methods After installation the XPort Pro requires configuration For the unit to operate correctly on a network it must have a unique IP address on the network There are four basic methods for logging into the XPort Pro and assigning IP addresses and other configurable settings Devicelnstaller Configure the IP address and related settings and view current settings on the XPort Pro using a Graphical User Interface GUI on a PC attached to a network See Using Devicelnstaller on page 21 Web Manager Through a web browser configure the X
25. Length Severity Level MIB II Traceroute Buffer Pools grevens IP Sockets Log Processes XPort Pro User Guide 115 12 Maintenance and Diagnostics Settings Figure 12 25 Diagnostics Log Line 1 Hardware MIB II IP Sockets Ping Traceroute Log Memory Buffer Pools Processes Diagnostics Log Configuration Output Severity Level Notice vi 3 Ifyou selected Filesystem or Line1 Output types also complete additional selections Max Length for Filesystem only limits the size in Kbytes of the log log txt e Severity Level specifies the level of system message to be logged 4 Click Submit XPort Pro User Guide 116 12 Maintenance and Diagnostics Settings Memory This read only web page shows the total memory and available memory in bytes along with the number of fragments allocated blocks and memory status To display memory statistics 1 Click Diagnostics on the menu bar and then Memory at the top of the page The Diagnostics Memory page appears Figure 12 26 Diagnostics Memory Hardware MIB II IP Sockets Ping Traceroute Log Memory Buffer Pools Processes Diagnostics Memory Main Heap Total Memory bytes 6313920 Available Memory bytes 3132304 Number Of Fragments 9 Largest Fragment Avail 3123056 Allocated Blocks 1680 Number Of Allocs Failed 0 Status OK Buffer Pools Several parts of the XPort Pro system use private buffer pools
26. Line and Tunnel Settings Instructions for using the web interface to configure line and tunnel settings Chapter 7 Terminal and Host Settings Instructions for using the web interface to configure terminal and host settings Chapter 8 Configurable Pin Manager Information about the Configurable Pin Manager CPM and how to set the configurable pins to work with a device Chapter 9 Service Settings Instructions for using the web interface to configure settings for DNS SNMP FTP and other services Chapter 10 Security Settings Instructions for using the web interface to configure SSH and SSL security settings Chapter 11 Modbus Instructions for using the web interface to configure Modbus Chapter 12 Maintenance and Diagnostics Settings Instructions for using the web interface to maintain the device view statistics files and logs and diagnose problems Chapter 13 Advanced Settings Instructions for using the web interface to configure email CLI and XML settings Chapter 14 VIP Settings Information about Virtual IP VIP features available on the device and instructions for using the web interface to configure the VIP settings Chapter 15 Branding the XPort Pro Instructions for customizing the device Chapter 16 Updating Firmware Instructions for obtaining the latest firmware and updating the device Appendix Technical Support Instructions for contac
27. M ssh server M ssl M tcp M telnet V tftp server V tunnel accept M tunnel disconnect M tunnel modern MV tunnel serial M vip xml import control 2 Enter or modify the following settings Table 13 8 XML Export Configuration Export to browser Select this option to export the XCR data in the selected fields to a web browser Export to local file Select this option to export the XCR data to a file on the device If you select this option enter a file name for the XML configuration record Export secrets Only use this with extreme cauton If selected secret password and key information will be exported Use only with a secure link and save only in secure locations XPort Pro User Guide 128 13 Advanced Settings Lines to Export Select the instances you want to export in the line LPD PPP tunnel and terminal groups Groups to Export Check the configuration groups that are to be exported to the XML configuration record 3 Click Export The groups display if exporting the data to the browser If exporting the data to a local file the file is stored on the file system Note view the raw XML choose the view file source feature of your browser XML Export Status To export the system status On this page you can export the current system status in XML format The XML data can be exported to the browser page or to a file on the file system 1 Click XML on menu bar and th
28. PC and is not visible on other PCs or laptops using Devicelnstaller Comments Configurable field Enter comments for the XPort Pro Double click the field type in the value and press Enter to complete This description or comment is local to this PC and is not visible on other PCs or laptops using Devicelnstaller Device Family Shows the XPort Pro device family type as XPort Type Shows the device type as XPort Pro XPort Pro User Guide 21 ID Hardware Address Firmware Version Extended Firmware Version Online Status IP Address IP Address was Obtained Subnet Mask Gateway Number of Ports Supports Configurable Pins Supports Email Triggers Telnet Enabled Telnet Port Web Enabled Web Port Firmware Upgradable XPort Pro User Guide 3 Using Devicelnstaller Shows the XPort Pro ID embedded within the unit Shows the XPort Pro hardware MAC address Shows the firmware currently installed on the XPort Pro Provides additional information on the firmware version Shows the XPort Pro status as Online Offline Unreachable the XPort Pro is on a different subnet or Busy the XPort Pro is currently performing a task Shows the XPort Pro current IP address To change the IP address click the Assign IP button on the Devicelnstaller menu bar Displays Dynamically if the XPort Pro automatically received an IP address e g from DHCP Displays Statically if the IP address was confi
29. XPort Pro using SSH For XPort Pro User Guide 83 10 Security Settings instance these accounts can be used to SSH into the CLI or open an SSH connection to a device port Every account must have a password The user s public keys are optional and only necessary if public key authentication is required Using public key authentication allows a connection to be made without the password being asked Under Current Configuration User has a Delete User link and Public RSA Key and Public DSA Key have View Key and Delete Key links If you click a Delete link a message asks whether you are sure you want to delete this information Click OK to proceed or Cancel to cancel the operation To configure the SSH server for authorized users 1 Click SSH on the menu bar and then Server Authorized Users at the top of the page The SSH Server Authorized Users page appears Figure 10 3 SSH Server Authorized Users SSH Server Host Keys SSH Client Known Hosts SSH Server Authorized Users SSH Client Users SSH Server Authorized Users Username Password Public RSA Key Public DSA Key Current Configuration No Authorized Users are currently configured for the SSH Server 2 Enter or modify the following settings Table 10 4 SSH Server Authorized User Settings Username Enter the name of the user authorized to access the SSH server Password Enter the password associated with the username Publi
30. a list of the default server port numbers running on the XPort Pro TCP Port 22 SSH Server Command Mode configuration TCP Port 23 Telnet Server Command Mode configuration TCP Port 80 HTTP Web Manager configuration TCP Port 443 HTTPS Web Manager configuration UDP Port 161 SNMP TCP Port 21 FTP UDP Port 69 TFTP UDP Port 30718 LDP Lantronix Discovery Protocol port TCP UDP Port 10001 Tunnel 1 gt 2 Product Information Label The product information label on the unit contains the following information about the specific unit e Bar Code Product ID name e Product Revision XPort Pro User Guide 19 2 Introduction e Part Number Hardware Address MAC Address or Serial Number Figure 2 2 Product Label XINOXLNVI LANTRONIX Xrortrro Product ID name 00 20 4A 82 5B 84 MAC Address Part Number XPP1002000 01R Rev A11 Patents 6 881 096 amp 4 972 470 T Revision Made in China 09W30 XPort Pro User Guide 20 3 Using Devicelnstaller This chapter covers the steps for locating a device and viewing its properties and details Devicelnstaller is a free utility program provided by Lantronix that discovers configures upgrades and manages Lantronix Device Servers It can be downloaded from the Lantronix website at www lantronix com support downloads html For instructions on using Devicelnstaller to configure the IP addres related settings or for more advanced feat
31. and port number For example lt ipaddress gt lt port gt The port number cannot be entered on its own For ATDT and ATDP commands less than 255 characters the XPort Pro replaces the last segment of the IP address with the configured Connect Mode remote station address It is possible to use the last two segments also if they are under 255 characters For example if the address is 100 255 15 5 entering ATDT 16 6 results in 100 255 16 6 When using ATDT and ATDP enter 0 0 0 0 to switch to the Command Line Interface CLI Once the CLI is exited by using the CLI exit command the XPort Pro reverts to modem emulation mode By default the characters are not passed through the connection Turn on this capability using the modem echo pluses command To configure modem emulation 1 Select Tunnel gt Modem Emulation at the top of the page The Tunnel 1 Modem Emulation page appears Figure 6 20 Tunnel 1 Modem Emulation Tunnel 1 Statistics Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Modem Emulation WARNING Tunnel Connect Mode is not Modem Emulation Configuration Status Echo Pluses O Enabled Disabled Echo Commands Enabled Disabled Enabled Verbose Response Enabled Disabled Enabled Response Type a Text enor Unknow O Enabled Disabled Disabled Commands Disabled Incoming Connection Automatic Disabled O Manual Connec
32. both address fields for ARP cache 5 Remove entries from the ARP cache as desired Click Remove All to remove all entries in the ARP cache OR Click Remove beside a specific entry to remove it from the ARP cache SMTP Settings SMTP is configuration for a basic SMTP proxy An SMTP proxy in this sense is a simple forwarding agent Note Lantronix does not support SMTP AUTH or any other authentication or encryption schemes for email To configure the SMTP network protocol 1 Click Protocol Stack on the menu bar 2 Click SMTP Figure 12 10 SMTP TCP IP ICMP ARP SMTP SMTP Configuration Relay Address Remote Port 25 3 Modify the following settings Table 12 11 SMTP Settings Relay Address Address of all outbound email messages through a mail server Can contain either a hostname or an IP address Remote Port Port utilized for the delivery of outbound email messages 4 Click Submit XPort Pro User Guide 107 12 Maintenance and Diagnostics Settings IP Address Filter The IP address filter specifies the hosts and subnets permitted to communicate with the XPort Pro Note If using DHCP BOOTP ensure the DHCP BOOTP server is in this list To configure the IP address filter 1 Click IP Address Filter on the menu bar The IP Address Filter page opens to display the current configuration Figure 12 12 IP Address Filter Configuration IP Address Filter IP Address Network Mask
33. configurable local port is the port the remote device connects to for this connection There is no remote port or address The default local port is 10001 for serial port 1 and increases sequentially for each additional serial port if supported Accept Mode supports the following protocols SSH the XPort Pro is the server in Accept Mode When using this protocol the SSH server host keys and at least one SSH authorized user must be configured SSL TCP AES encryption over TCP Telnet The XPort Pro supports IAC codes It drops the IAC codes when Telnetting and does not forward them to the serial port Accept Mode has the following states e Disabled never a connection Enabled always listening for a connection e Active if it receives any character from the serial port Active if it receives a specific configurable character from the serial port same start character as Connect Mode s start character e Modem control signal e Modem emulation To configure the tunnel s Accept Mode 1 Click Tunnel gt Accept Mode at the top of the page The Tunnel 1 Accept Mode page appears Note The CP Output option displayed in the screenshot is only supported in XPort Pro and XPort AR XPort Pro User Guide 43 6 Line and Tunnel Settings Figure 6 12 Tunnel 1 Accept Mode Tunnel 1 Statistics Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Accept Mode
34. data to the browser If exporting the data to a local file system the file is stored on the file system Note Most browsers will interpret and display the XML data without the XML tags To view the raw XML choose the view file source feature of your browser XML Import Configuration Here you can import a system configuration from an XML file The XML data can be imported from a file on the file system or uploaded using HTTP The groups to import can be specified by toggling the respective group item or entering a filter string When toggling a group item all instances of that group will be imported The filter string can be used to import specific instances of a group The text format of this string is lt g gt lt i gt lt g gt lt i gt Each group name lt g gt is followed by a colon and the instance value lt i gt Each lt g gt lt i gt value is separated with a semicolon If a group has no instance specify the group name lt g gt only To import a system configuration 1 Click XML on the menu bar and then Import Configuration at the top of the page The XML Import Configuration web page appears Figure 13 11 XML Import Configuration Export Configuration Export Status Import Configuration XML Import Configuration Import Configuration from External file Configuration from Filesystem Line s from single line Settings on the Filesystem 2 Click one of the following radio buttons
35. generates keys up to 1024 bits long It can work with larger keys up to 2048 bit if they are imported or otherwise created 3 Click Submit Note SSH keys may be created on another computer and uploaded to the XPort Pro For example use the following command using Open SSH to create a 1024 bit DSA key pair ssh keygen b 1024 t dsa SSH Keys from other programs may be converted to the required XPort Pro format Use Open SSH to perform the conversion To convert from RFC 4716 format ssh keygen i For more options look at the help from Open SSH ssh keygen 1 Ifthe keys do not exist select the Key Type and the key s Bit Size from the Create New Keys section Click Submit to create new private and public host keys Note Generating new keys with a large bit size results in longer key generation times 2 Click SSH gt SSH Server Authorized Users at the top of the page The SSH Server Authorized Users page appears Enter the Username and Password for authorized users 4 If available locate the Public RSA Key or the Public DSA Key file by clicking Browse Configuring a public key results in public key authentication this bypasses password queries Note When uploading the security keys ensure the keys are not compromised in transit SSH Server Authorized Users On this page you can change SSH server settings for Authorized Users SSH Server Authorized Users are accounts on the XPort Pro that can be used to log into the
36. network link using PPP over a serial line Turn off Connect Mode Accept Mode and Command mode before enabling PPP The XPort Pro device acts as the server side of the PPP link it can require authentication and assign an IP address to the peer Upon PPP configuration IP packets are routed between Ethernet and PPP interfaces The XPort Pro does not perform network address translation NAT between the serial side network interface and the Ethernet WLAN network interface Therefore to pass packets through the XPort Pro a static route must be configured on both the PPP Peer device and the remote device it wishes to communicate with The static route in the PPP Peer device must use the PPP Local IP Address as its gateway and the static route in the remote device must use the network interface IP Address of the XPort Pro as its gateway XPort Pro User Guide 67 9 Service Settings Note The following section describes the steps to configure PPP 1 PPP on serial line 1 these steps also apply to any line instance of the device To configure PPP 1 Click PPP on the menu bar and Line1 at the top of the page The PPP on Line 1 Configuration page appears Figure 9 2 PPP Configuration Settings Line 1 Username Password PPP on Line 1 Configuration WARNING Serial protocol is not PPP Local IP Address lt None gt Peer IP Address lt None gt Authentication Mode Configuration ONone PAP OCHAP OM
37. on the Devicelnstaller window To access Web Manager perform the following steps 1 Open a standard web browser Lantronix supports the latest version of Internet Explorer Mozilla Suite Mozilla Firefox Safari Chrome or Opera 2 Enter the IP address of the XPort Pro in the address bar The IP address may have been assigned manually using Devicelnstaller see the XPort Pro Quick Start Guide or automatically by DHCP 3 Enter your username and password The factory default username is admin and the factory default password is PASS The Device Status web page shown in Figure 4 1 displays configuration network settings line settings tunneling settings and product information Note The Logout button is available on any web page Logging out of the web page would force re authentication to take place the next time the web page is accessed XPort Pro User Guide 23 4 Configuration Using Web Manager Device Status Page The Device Status page is the first page that appears after you log into the Web Manager It also appears when you click Status in the Main Menu Figure 4 1 Web Manager Home Page Xrortrro EVSi UTION os Device Status Uptime 5 days 202138 Interface Leh Link Auto 10 100 Mbps Auto HalfFull 100 Mbps Half MAC Address 00 20 4a bc fb 71 Hostname lt None gt IP Address 72 19 100 199 16 DHCP Default Gateway 72 19 0 1 DHCP Domain eng lantronix cor DHCP Primary DNS 72 19 1 1
38. select TCP AES you will need to configure the AES keys Enter the time in seconds the device waits during a silent connection before checking if the currently connected network device is still on the network If the unit then gets no response after 8 attempts it drops that connection 44 Flush Serial Data Block Serial Data Block Network Password Email on Connect Email on Disconnect CP Output 3 Click Submit 6 Line and Tunnel Settings Select Enabled to flush the serial data buffer on a new connection Select On to block or not tunnel serial data transmitted to the device Select On to block or not tunnel network data transmitted to the device Enter a password that clients must send to the device within 30 seconds from opening a network connection to enable data transmission The password can have up to 31 characters and must contain only alphanumeric characters and punctuation When set the password sent to the device must be terminated with one of the following a Ox0A LF b 0x00 c OxOD Ox0A CR LF or d OxOD 0x00 Select whether the device sends an email when a connection is made Select None if you do not want to send an email Otherwise select the Email profile to use for sending Select whether the device sends an email when a connection is closed Select None if you do not want to send an email Otherwise select the Email profile to use for sending Identifies a CP or CP Group whose valu
39. separated with a semicolon If a group has no instance specify the group name lt g gt only Note The number of lines available for importing and exporting differ between Lantronix DeviceLinx products The screenshots in this manual represent one line as available for example on an XPort Pro and EDS1100 However other device networking products such as EDS2100 EDS4100 XPort AR and EDS8 16 32PR support additional lines and tunnels XML Export Configuration On this web page you can export the current system configuration in XML format To export the system configuration 1 Click XML on the menu bar The XML Export Configuration page appears XPort Pro User Guide 127 Figure 13 7 XML Export Configuration 13 Advanced Settings Export Configuration Export Status XML Export Configuration Export to browser Export to local file Lines to Export Clear All Select All Import Configuration C Export secrets use only with extreme caution C Comments cp group email host icmp ip filter ManageLinx query port smtp ssh client syslog terminal tunnel connect tunnel packing M 1 network Groups to Export Clear All Select All but Networking V arp M cli V device M diagnostics V ethernet ethO M ftp server v inan eeii uri Y http server C interface eth0 MI ip M line M ipd M modbus M ppp F rss M serial command mode MI snmp M ssh
40. should match the name of the server used as the Remote Address in Connect mode tunneling Public RSA Key Enter the path and name of the existing public RSA key you want to use with this known host or use the Browse button to select the key Public DSA Key Enter the path and name of the existing public DSA key you want to use with this known host or use the Browse button to select the key Note These settings are not required for communication They protect against Man In The Middle MITM attacks 3 Click Submit 4 Inthe Current Configuration table delete currently stored settings as necessary XPort Pro User Guide 85 10 Security Settings SSH Client User On this page you can change SSH client settings for users To configure the XPort Pro as an SSH client an SSH client user must be both configured and also exist on the remote SSH server SSH client known users are used by all applications that play the role of an SSH client specifically tunneling in Connect Mode At the very least a password or key pair must be configured for a user The keys for public key authentication can be created elsewhere and uploaded to the device or automatically generated on the device If uploading existing keys be sure the private key will not be compromised in transit This implies the data is uploaded over some kind of secure private network Note If you are providing a key by uploading a file make sure that the key is not passwo
41. to ensure deterministic memory management To display the buffer pools 1 Click Diagnostics on the menu bar and then Buffer Pools at the top of the page The Diagnostics Buffer Pools page opens XPort Pro User Guide 117 12 Maintenance and Diagnostics Settings Figure 12 27 Diagnostics Buffer Pools Hardware MIB II IP Sockets Ping Traceroute Log Memory Buffer Pools Processes Diagnostics Buffer pools Network Stack Buffer Pool Total Free Used MaxUsed Buffer Headers 512 510 2 11 Cluster Pool Size 2048 a E Ethernet Driver Buffer Pool Total Free Used MaxUsed Buffer Headers 2048 1984 64 70 Cluster Pool Size 2048 1024 960 64 69 Processes The Processes web page shows all the processes currently running on the system It shows the Process ID PID the percentage of total CPU cycles a process used within the last three seconds the total stack space available the maximum amount of stack space used by the process since it started and the process name To display the processes running and their associated statistics 1 Click Diagnostics on the menu bar and then Processes at the top of the page Note The Adobe SVG plug in is required to view the CPU Load Graph XPort Pro User Guide 118 12 Maintenance and Diagnostics Settings Figure 12 28 Diagnostics Processes Hardware Ping Memory MIB II IP Sockets Traceroute Log Buffer Pools Processes Diagnostics Processes PID CPU
42. use the Browse button to select the key Note If the user public key is known on the remote SSH server the SSH server does not require a password The Remote Command is provided to the SSH server upon connection It specifies the application to execute upon connection The default is a command shell Note Configuring the SSH client s known hosts is optional It prevents Man In The Middle MITM attacks Key Type Select the key type to be used Choices are RSA use this key with the SSH1 and SSH2 protocols DSA use this key with the SSH2 protocol Create New Keys Username Enter the name of the user associated with the new key Key Type Select the key type to be used for the new key Choices are RSA use this key with the SSH1 and SSH2 protocols DSA use this key with the SSH2 protocol Bit Size Select the bit length of the new key 512 768 1024 Using a larger Bit Size takes more time to generate the key Approximate times are 10 seconds for a 512 bit RSA Key 15 seconds for a 768 bit RSA Key 1 minute for a 1024 bit RSA key 30 seconds for a 512 bit DSA key 1 minute for a 768 bit DSA key 2 minutes for a 1024 bit DSA key Note Some SSH clients require RSA host keys to be at least 1024 bits long This device generates keys up to 1024 bits long It can work with larger keys up to 2048 bit if they are imported or otherwise created 3 Click Submit 4 Inthe Current
43. 0 OK 120 15 49 MAIL FROM lt skuppuswamyGlantronix com gt 120 15 49 250 2 1 0 skuppuswamyGlantronix com Sender OK 120 15 49 RCPT TO lt skuppuswamyG lantronix com gt 120 15 49 250 2 1 5 skuppuswamyG lantronix com 120 15 49 DATA 120 15 49 354 Start mail input end with lt CRLF gt lt CRLF gt 120 15 49 120 15 49 250 2 6 0 lt ZPUTTmopQeXr0kaKkSGr00000ZachZputt int lantronix com gt Queued m 120 15 49 QUIT Figure 13 1 Email Statistics XPort Pro User Guide 122 Email Configuration 13 Advanced Settings The XPort Pro allows you to view and configure email alerts relating to the events occurring within the system To configure email settings 1 Click Email on the menu bar and then Email 1 and Configuration at the top of the page The Email 1 Configuration page opens to display the current Email configuration Figure 13 2 Email Configuration Email1 Email2 Email3 Email4 To cc From Reply To Subject Message File Overriding Domain Server Port Local Port Priority Trigger Email Send Email 1 Configuration Statistics Configuration Send Email 25 lt Randam gt O Urgent OHigh Normal O Low O Very Low CP Group Note The Trigger Email Send option displayed in the screenshot is only supported in XPort Pro and XPort AR 2 Enter or modify the following settings Table 13 3 Email Configuration To cc From XPort Pro User Gu
44. 3 SSH State Enabled Disabled SSH Port 22 SSH Max Sessions 3 Statistics Configuration Enabled Disabled 2 Enter or modify the following settings Table 13 6 CLI Configuration Login Password Enable Level Password Quit Connect Line Inactivity Timeout Telnet State Telnet Port Telnet Max Sessions SSH State SSH Port SSH Max Sessions 3 Click Submit XPort Pro User Guide Enter the password for Telnet access Enter the password for access to the Command Mode Enable level There is no password by default Enter a string to terminate a connect line session and resume the CLI Type lt control gt before any key the user must press when holding down the Ctrl key An example of such a string is lt control gt L Set an Inactivity Timeout value so the CLI session will disconnect if no data is received after the designated time period Default is 15 minutes Enter a value of 0 to disable Select Disabled to disable Telnet access Telnet is enabled by default Enter the Telnet port to use for Telnet access The default is 23 Maximum number of simultaneous Telnet sessions Select Disabled to disable SSH access SSH is enabled by default Enter the SSH port to use for SSH access The default is 22 Maximum number of simultaneous SSH sessions 126 13 Advanced Settings XML Settings The XPort Pro allows for the configuration of devices by using XML configuration records XC
45. 5 Syslog 16 Syslog Configuration 72 System 140 System Branding 140 System Contact 69 System Description 69 System Location 69 System Name 69 System Settings 120 T TCP 16 TCP Keep Alive 44 TCP Server State 98 TCP Settings 103 TCP IP 94 Technical Support 142 Telnet 16 Telnet Max Sessions 126 Telnet Port 126 Telnet State 126 Terminal Server 18 Settings 55 Terminal Type 56 57 Text List 133 TFTP 16 141 TFTP Configuration 71 Threshold 42 Timeout 42 113 TLS 16 Traceroute 114 Trailing Character 42 Traps Primary Destination 69 150 Traps Secondary Destination 70 Traps State 69 Troubleshooting 18 Troubleshooting Capabilities 18 Tunnel Accept Mode 43 Tunnel Connect Mode 46 Tunnel Disconnect Mode 51 Tunnel Packing Mode 40 Tunnel 1 Statistics 37 Tunnel Settings Connect Mode 46 Modem Emulation Command Mode 52 Packing Mode 40 Tunnel Settings 36 Type 93 U UDP 16 Uniform Resource Identifier 76 Updating Firmware 141 Upload Authority Certificate 92 Upload Certificate 92 Upload Keys 82 Upload New Firmware 121 URI 76 Username 68 87 V VIP Access 17 VIP Configuration 138 VIP Statistics 137 VIP Settings 136 Voltage Dips and Interrupts 145 W Web Manager Device Status Web Page 24 Navigating 26 Page Components 25 Page Summary 26 Web Manager Customization 139 Web Manager 23 Web Based Configuration 17 Whole Groups to Import 133 135 WLAN Settings Network 1 Ethernet L
46. 718 172 19 220 50 32770 TCP 0 0 172 19 100 199 23 255 255 255 255 0 TCP 0 0 172 19 100 199 22 255 255 255 255 0 TCP 0 4 172 19 100 199 80 172 19 250 250 1844 State LISTEN ESTABLISHED LISTEN ESTABLISHED LISTEN LISTEN ESTABLISHED Ping XPort Pro uses 56 bytes of data in a ping packet Ping size is not configurable To ping a remote device or computer 1 Click Diagnostics on the menu bar and then Ping at the top of the page The Diagnostics Ping page opens Figure 12 19 Diagnostics Ping Memory Hardware MIB II Ping Diagnostics Ping IP Sockets Traceroute Log Buffer Pools Processes Host Count 3 i Timeout 5 seconds XPort Pro User Guide 112 12 Maintenance and Diagnostics Settings 2 Enter or modify the following settings Table 12 20 Diagnostics Ping Host Enter the IP address or host name for the device to ping Count Enter the number of ping packets the device should attempt to send to the Host The default is 3 Timeout Enter the time in seconds for the device to wait for a response from the host before timing out The default is 5 seconds 3 Click Submit The results of the ping display in the page XPort Pro User Guide 113 12 Maintenance and Diagnostics Settings Traceroute Here you can trace a packet from the XPort Pro to an Internet host showing how many hops the packet requires to reach the host and how long each hop takes If
47. DHCP Secondary DNS 72 19 1 2 DHCP VIP Conduit R5232 9600 None 8 1 None Disabled Copyright Lantronix Inc 2007 2010 All rights reserved XPort Pro User Guide 24 4 Configuration Using Web Manager Web Manager Page Components The layout of a typical Web Manager page is below Figure 4 2 Components of the Web Manager Page Logout button Items to configure Links to subpages Header Xrort rro Statistics Configuration Command Mode _ m m e e u u ua 7 LANTRONIX EVOLUTION l ee when Command Mode is enabled the Command Line Interface CLI is attached to the Serial Line l Command Mode can be enabled in a a number of ways I The Always choice immediatel Line 1 Command Mode Veeco l Configuration Serial Line l and or The Use Serial String choice Use Serial String Status A enables Command Mode when the Ouse CP Group atus Area Serial String is read on the Serial Line during boot time O Use both Serial String and CP Group O Disabled Menu Bar O Always Mode The Use CP Group choice enables Command Mode based on the status of a CP Group When the value matches the current value of the group Command Mode is Text O Binary in on the Serial Line Wait Time milliseconds Serial String Echo Serial String Yes ONo CP Group l l The Wait Time specifies the amount of time to wait during boot l l l Gr
48. Data 45 BOOTP 16 29 Branding 139 Web Manager Customization 139 Break Duration 56 XPort Pro User Guide Cc Challenge Handshake Authentication Protocol 67 CHAP 67 CLI 17 CLI Configuration 125 CLI Statistics 125 Command Line Interface Settings 125 Command Mode 18 Command Line Interface 17 Common Name 93 Compliance 145 Configurable Pin Manager 59 Configuration Methods 18 Configuration Settings 66 Configured As 61 Configuring Tunnels to Use VIP 137 Connect Mode 36 Connect Mode 46 Connection Value 45 Controller 15 Convert Newlines 80 Count 113 CP 61 CP Output 45 49 CPM 59 Create New Keys 87 Create New Self Signed Certificate 92 Custom Groups 59 D Default Gateway 30 Default Groups 59 Default Server Port Numbers 19 Device Control 17 Device Details 21 Device Details Summary 21 Device Management 18 Devicelnstaller 21 DHCP 16 30 Diagnostic Toolset 18 Diagnostics 110 Buffer Pools 117 Hardware 110 IP Sockets 112 Memory 117 MIB II Statistics 111 Ping 112 Processes 118 Diagnostics Log 115 Diagnostics Settings 99 Direct amp Indirect ESD 145 147 Disconnect Mode 36 Disconnect Mode 51 Disconnection Value 45 DNS 16 30 DNS Settings 66 E Echo 56 57 Electrical 145 Electrical Fast Transient Burst Immunity 145 Email on Connect 45 49 Email on Disconnect 45 49 Enable Level Password 126 Encryption 18 End of Job 80 Enterprise Grade Security 17 EOJ String 80 Ethernet 15 Ethernet ad
49. Groups Current Configuration Group Name Shows the CP group s name State Indicates whether the group is enabled or disabled CP Info Indicates the number of CPs assigned to this particular group To display the status of a CPs Groups specific group 1 Click CPM gt Groups CPM Groups 2 Click the CP group name in Changed the configuration of CP2 to Output with Assert High the Current Configuration Added CP2 to group Demo table Current Configuration Group Name State CP Info Demo Enabled 1 CP Assigned Diagnostic_Mode Disabled 0 CPs Assigned Line1_Modem_Ctl_In Enabled 1 CP Assigned Line1_Moderm_Ctl_Out Enabled 1 CP Assigned Line1_RS485_HDpx Disabled 0 CPs Assigned Line1_RS485_Select Disabled 0 CPs Assigned Line1_RS485_TxEnable Disabled 1 CP Assigned Linel_RTS_CTS Disabled 2 CPs Assigned Link_Status Disabled 0 CPs Assigned Modbus_Ctl_In Disabled 0 CPs Assigned Modbus_Ctl_Out Enabled 0 CPs Assigned Create Group pee Group Status l l Name Demo X l tate nabile isanie I s Enabled Disabl l l Value 0 0x0 l I Bit 2 1 0 l I Level l l 1 0 0 I l Logic l l Binary x x l l cP l Figure 8 6 CPM Group Status l l p LAdd_ CPt y at bit 1 v as input _ El Assert Low i Remove CP M L i m l XPort Pro User Guide 63 8 Configurable Pin Manager Table 8 7 Group Status Name Shows the CP Group name State Shows the current state of the CP group Lo
50. H client Ensure the XPort Pro SSH client username is configured on the remote SSH server before using it with the XPort Pro SSL UDP Is only available in Connect Mode because it is a connectionless protocol For Connect Mode using UDP the XPort Pro accepts packets from any device on the network It will send packets to the last device that sent it packets Telnet Note The Local Port in Connect Mode is independent of the port configured in Accept Mode There are six different connect modes Note While in the Any Character or Start e Disable Character connection modes the XPort Pro No connection is attempted waits and retries the connection if the connection cannot be made Once it makes Always a connection and then disconnects it will A connection is always attempted not reconnect until it sees another character or the start character again depending on Any Character A connection is attempted if it detects any character from the serial port the configured setting Start Character A connection is attempted if it detects a specific and configurable character from the serial port XPort Pro User Guide 46 Modem Control Asserted A connection is attempted when the modem control pin is asserted in the serial line Modem Emulation A connection is attempted by an ATD command To configure Tunnel 1 Connect Mode 1 Select Tunnel gt Connect Mode at the top of the page The Tunnel 1 Connect
51. LANTRONIX XPort Pro User Guide Revision rr _ 201 Copyright amp Trademark 2011 Lantronix All rights reserved No part of the contents of this book may be transmitted or reproduced in any form or by any means without the written permission of Lantronix Printed in the United States of America Ethernet is a trademark of XEROX Corporation UNIX is a registered trademark of The Open Group Windows 95 Windows 98 Windows 2000 and Windows NT are trademarks of Microsoft Corp Warranty For details on the Lantronix warranty replacement policy please go to our web site at www lantronix com support warranty Contacts Lantronix Corporate Headquarters 167 Technology Drive Irvine CA 92618 USA Phone 949 453 3990 Fax 949 450 7249 Technical Support Online www lantronix com support Sales Offices For a current list of our domestic and international sales offices go to the Lantronix web site at www lantronix com about contact Disclaimer Note This product has been designed to comply with the limits for a Class A digital device pursuant to B digital device pursuant to Part 15 of FCC and EN55022 1998 Rules when properly enclosed and grounded These limits are designed to provide reasonable protection against radio interference in a residential installation This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with this guide may cause interference to radio co
52. Mode The connections on one serial port are separate from those on another serial port Connect Mode the XPort Pro actively makes a connection The receiving node on the network must listen for the Connect Mode s connection Connect Mode is disabled by default Accept Mode the XPort Pro listens for a connection A node on the network initiates the connection Accept Mode is enabled by default e Disconnect Mode this mode defines how an open connection stops the forwarding of data The specific parameters to stop the connection are configurable Once the XPort Pro Disconnect Mode observes the defined event occur it will disconnect both Accept Mode and Connect Mode connections on that port When any character comes in through the serial port it gets copied to both the Connect Mode connection and the Accept Mode connection if both are active XPort Pro User Guide 36 6 Line and Tunnel Settings You can view statistics and configure two tunnels by using the Tunnel web page When you click Tunnel from the Main Menu Tunnel 1 fields display To go to Tunnel 2 click the Tunnel 2 button There are six sub menus listed at the top of the Tunnel web page that you can use as follows Tunnel Statistics Tunnel Serial Settings Tunnel Packing Mode Tunnel Accept Mode Tunnel Connect Mode Tunnel Disconnect Mode UM Tunnel Modem Emulation Tunnel Statistics Displays statistics f
53. Mode page appears Note The CP Output option displayed in the screenshot is only supported in XPort Pro and XPort AR Figure 6 14 Tunnel 1 Connect Mode Tunnel 1 Statistics Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Connect Mode Mode Local Port Host 1 Reconnect Timer Flush Serial Data Block Serial Block Network Email on Connect Email on Disconnect CP Output Disable v lt None gt 15000 milliseconds O Enabled Disabled O Enabled Disabled O Enabled Disabled lt None gt lt None gt Group XPort Pro User Guide 6 Line and Tunnel Settings 47 6 Line and Tunnel Settings 2 Enter or modify the following settings Table 6 15 Tunnel Connect Mode Mode Local Port Host Note If security is a concern it is highly recommended that SSH be used When using SSH both the SSH Server Host Keys and SSH Server Authorized Users must be configured XPort Pro User Guide Select the method to be used to attempt a connection to a remote host or device Choices are Always a connection is attempted until one is made If the connection gets disconnected the XPort Pro retries until it makes a connection default Disable an outgoing connection is never attempted Any Character a connection is attempted when any character is read on the serial line Start Character a c
54. P Access is ready to go This chapter also contains the following VIP sections e Virtual IP VIP Statistics Virtual IP VIP Counters Virtual IP VIP Configuration Obtaining a Bootstrap File The ManageLinx XML bootstrap file is an XML file that contains the information required to contact and authenticate to aDSM This file must be generated and sent to you by the DSM administrator See the ManageLinx documentation for more details Importing the Bootstrap File To configure an XPort Pro to use VIP Access import the bootstrap file as you would any XML Configuration Record XCR For instructions on importing XCRs see Advanced Settings on page 122 XPort Pro User Guide 136 14 VIP Settings Enabling VIP Once the bootstrap file has been imported VIP Access can be enabled and a conduit with the DSM will be established The VIP Statistics shows the current state of the conduit When configured correctly a conduit with the DSM will be maintained at all times Configuring Tunnels to Use VIP Configuring Connect Mode tunnels to use VIP is a simple matter of configuring a tunnel as is normally done but also enabling VIP in the Tunnel Host settings and using a VIP Name for the address VIP Accept Mode tunnels do not require special configuration If VIP access is enabled in the VIP configuration page then VIP Accept Mode requests from a ManageLinx device will be accepted Virtual IP VIP Statistics To view the XPort Pr
55. P Statistics To view HTTP statistics This page shows various statistics about the HTTP server 1 Click HTTP on the menu bar and then Statistics at the top of the page The HTTP Statistics page appears Figure 9 11 HTTP Statistics 200 301 400 401 404 408 413 500 501 Work Logs Statistics Configuration Authentication HTTP Statistics Rx Bytes Tx Bytes OK Moved Permanently Bad Request Authorization Required Not Found Request Timeout Request Too Large Internal Error Not Implemented Status Unknown Queue Full Socket Error Memory Error 26295 198244 15 0 0 ian OFOoO o o o o o o o 42 entries 6291 bytes View Clear Note The HTTP log is a scrolling log with the last Max Log Entries cached and viewable You can change the maximum number of entries that can be viewed on the HTTP Configuration XPort Pro User Guide Page 73 HTTP Configuration On this page you may change HTTP configuration settings To configure HTTP 9 Service Settings 1 Click HTTP on the menu bar and then Configuration at the top of the page The HTTP Configuration page opens Figure 9 12 HTTP Configuration State Port Secure Port Secure Protocols Max Timeout Max Bytes Logging State Max Log Entries Log Format Authentication Timeout Statistics Configuration 443 Authentication HTTP Configuration
56. Port Pro settings using the Lantronix Web Manager See Configuration Using Web Manager on page 23 Command Mode There are two methods for accessing Command Mode CLI making a Telnet connection or connecting a terminal or a PC running a terminal emulation program to the unit s serial port See the XPort Pro Command Reference Guide for instructions and available commands XPort Pro User Guide 18 2 Introduction XML The XPort Pro supports XML based configuration and setup records that make device configuration transparent to users and administrators XML is easily editable with a standard text or XML editor See the XPort Pro Command Reference Guide for instructions and commands Addresses and Port Numbers Hardware Address The hardware address is also referred to as the Ethernet address or MAC address The first three bytes of the Ethernet address are fixed and read 00 20 4A identifying the unit as a Lantronix product The fourth fifth and sixth bytes are unique numbers assigned to each unit Figure 2 1 Sample Hardware Address 00 20 4A 14 01 18 or 00 20 4A 14 01 18 IP Address Every device connected to an IP network must have a unique IP address This address references the specific unit Port Numbers Every TCP connection and every UDP datagram is defined by a destination and source IP address and a destination and source port number For example a Telnet server commonly uses port number 23 The following is
57. Rs You can export an existing configuration for use on other XPort Pro devices or import a saved configuration file On the XML Export Configuration web page you can export the current system configuration in XML format The generated XML file can be imported later to restore a configuration It can also be modified and imported to update the configuration on this XPort Pro unit or another The XML data can be exported to the browser window or to a file on the file system By default all groups are selected except those pertaining to the network configuration This is so that if you later import the entire XML configuration it will not break your network connectivity You may select or clear the checkbox for any group In the XML Import System Configuration Page you can import a system configuration from an XML file The XML data can be imported from a file on the file system or uploaded using HTTP The groups to import can be specified by toggling the respective group item or entering a filter string When toggling a group item all instances of that group will be imported The filter string can be used to import specific instances of a group The text format of this string is lt g gt lt i gt j lt g gt lt i gt For example if you only wanted to import the line 1 setting from an XCR use a filter string of line 1 Each group name lt g gt is followed by a colon and the instance value lt i gt Each lt g gt lt i gt value is
58. S CHAP OMS CHAPV2 lt None gt 2 Enter or modify the following settings Table 9 3 PPP Configuration Local IP Address Peer IP Address Authentication Mode Username Password 3 Click Submit XPort Pro User Guide Enter the IP address assigned to the device s PPP interface Enter the IP address assigned to the peer when requested during negotiation Choose the authentication mode None no authentication is required PAP Password Authentication Protocol CHAP Challenge Handshake Authentication Protocol MS CHAP Microsoft Challenge Handshake Authentication Protocol MS CHAPV2 Microsoft Challenge Handshake Authentication Protocol Version 2 Enter a username if authentication is to be used on the PPP interface The peer must be configured to use the same username Enter a password if authentication is to be used on the PPP interface The peer must be configured to use the same password 68 SNMP Settings 9 Service Settings Simple Network Management Protocol SNMP is a network management tool that monitors network devices for conditions that need attention The SNMP service responds to SNMP requests and generates SNMP Traps This page is used to configure the SNMP agent To configure SNMP 1 Click SNMP on the menu bar The SNMP page opens and shows the current SNMP configuration Figure 9 4 SNMP Configuration SNMP State Read Community Write Community Syste
59. TP Settings Syslog Settings HTTP Settings RSS Settings LPD Settings interface The static addresses from the Network Interface Configuration page may be overridden by DHCP or BOOTP The DNS web page enables you to view the status and cache When a DNS name is resolved using a forward lookup the results are stored in the DNS cache temporarily The XPort Pro checks this cache when performing forward lookups Each item in the cache eventually times out and is removed automatically after a certain period or you can delete it manually To view the DNS status 1 Click DNS on the menu bar The DNS page appears Figure 9 1 DNS Settings DNS Current Status Domain eng lantronix cam Primary DNS 172 19 1 1 DHCP Secondary DNS 172 19 1 2 DHCP ecu Cache Entries There are no entries in the cache Remove All XPort Pro User Guide 66 9 Service Settings To find a DNS Name or IP Address 1 Enter either a DNS name or an IP address 2 Click Lookup When a DNS name is resolved the results appear in the DNS cache When an IP address is resolved the results appear in a text below the Lookup field To clear cache entries 1 Click Remove All to remove all listed cache entries 2 Click Delete next to a specirfic cache entry to remove only that one PPP Settings Point to Point Protocol PPP establishes a direct connection between two nodes It defines a method for data link connectivity be
60. VIP Configuration page displays Figure 14 4 VIP Configuration Page Status Counters Configuration Virtual IP VIP Configuration State Enabled Disabled 2 Click Enabled Disabled to use turn off VIP addresses in Tunnel Accept Mode and Tunnel Connect Mode The default is disabled 3 Click Submit save a changed state XPort Pro User Guide 138 15 Branding the XPort Pro This chapter describes how to brand your XPort Pro by using Web Manager and Command Line Interface CLI It contains the following sections on customization Web Manager Customization Short and Long Name Customization Web Manager Customization Customize the Web Manager s appearance by modifying index html and style css The style fonts colors and spacing of the Web Manager is controlled with style css and the text and graphics are controlled with index html The Web Manager files are hidden and are incorporated directly into the firmware image but may be overridden by placing the appropriate file in the appropriate directory on the XPort Pro file system Web Manager files can be retrieved and overridden with the following procedure FTP to the XPort Pro device Make a directory mkdir and name it http config Change to the directory cd that you created in step 2 http config Get the file by using get lt filename gt Modify the file as required or create a new one with the same name Put the file by using put lt file
61. a binary value for example 0100 1100 to a hexadecimal representation treat the upper and lower four bits separately to produce a two digit hexadecimal number in this case 4C Use the following table to convert values from binary to hexadecimal Table 18 1 Binary to Hexadecimal Conversion Table 0000 0001 0010 0011 0100 0101 0110 0111 1000 1001 1010 1011 12 1100 13 1101 14 1110 15 1111 O MONI OD oO HR w ny A o XPort Pro User Guide 143 Scientific Calculator Another simple way to convert binary to hexadecimal is to use a scientific calculator such as the one available on the Windows operating systems For example 1 On the Windows Start menu click Programs gt Accessories gt Calculator 2 On the View menu select Scientific The scientific calculator appears 3 Click Bin Binary and type the number you want to convert of xj Edit wiew Help 1001100 C Hes Dee C Oct Bin e Qword C Dword C Wod C Byte F ine T Hyp a CE C Pid a E Tex Hex C Dec C Oct C Bin e Qword Dword Wod C Byte XPort Pro User Guide 144 Appendix Compliance According to ISO IEC Guide 17050 1 17050 2 and EN 45014 Manufacturer s Name amp Address Lantronix 167 Technology Drive Irvine CA 92618 USA Product Name Model XPort Pro Embedded Device Server Conforms to the following standards or other no
62. alf duplex mode the CP that is driving that signal chosen by the engineer designing the circuit is added to the default group named Line1_RS485_HDpx The XPort Pro asserts the CP at the correct time via the default group Custom Groups The email tunneling and CLI features can interact with CPs This is accomplished by creating a custom group and adding CPs of your choice into that group Once a CP group is created and populated with one or more CPs actions can be triggered when the CPs match a specified value CPs can be placed in any bit position within a group allowing for sophisticated use of the available CPs CP Configurable Pins Each CP is associated with an external hardware pin CPs can trigger an outside event like sending an email message or starting Command Mode on a serial Line The CPM web page is used to experimentally configure the state of the CPs CPs can be changed to be a digital input or a digital output and whether it is asserted high or low Changes made on this page do not persist through a reboot XPort Pro User Guide 59 8 Configurable Pin Manager Rules for configuring a CP are as follows A CP e Can be in any number of groups e Can be only in one active group Two groups with the same CP cannot be enabled at the same time e Becomes locked and is not configurable if it is in an enabled group Disable the group to change the CP configuration When you are ready to permanently configure the CP
63. and Host 3 2 The selected Host s exchanges its place with the Host above it 3 Click Submit The hosts change sequence XPort Pro User Guide 50 6 Line and Tunnel Settings Tunnel Disconnect Mode Relates to the disconnect of a tunnel Disconnect Mode ends Accept Mode and Connect Mode connections When disconnecting the XPort Pro shuts down connections gracefully The following settings end a connection The XPort Pro receiv es the stop character e The timeout period has elapsed and no activity is going in or out of the XPort Pro Both Accept Mode and Connect Mode must be idle for the time frame The XPort Pro observes the modem control inactive setting Note To clear data out of the serial buffers upon a disconnect enable Flush Serial Data To configure the tunnel Disconnect Mode 1 Click Tunnel gt Disconnect Mode at the top of the page The Tunnel 1 Disconnect Mode page appears Figure 6 17 Tunnel 1 Disconnect Mode Tunnel 1 Statistics Serial Settings Packing Mode AcceptMode Connect Mode Disconnect Mode Tunnel 1 Disconnect Mode Stop Character lt None gt Modem Control O Enabled Disabled Timeout 0 milliseconds Flush Serial Data O Enabled Disabled Modem Emulation 2 Enter or modify the following settings Table 6 18 Tunnel Disconnect Mode Stop Character Modem Control Timeout Flush Serial Data 3 Click Submit XPort Pro User Guide
64. antronix Windows based utility to create secure virtual com ports XPort Pro User Guide 14 2 Introduction The XPort Pro embedded Ethernet Device Server is a complete network enabling solution in a 13 50 0 531 X 16 25 0 640 X 33 90 1 335 package This miniature device server empowers original equipment manufacturers OEMs to go to market quickly and easily with Ethernet networking and web page serving capabilities built into their products DIMS mm in This chapter contains the following sections Key Features Applications Evolution OS Additional Features Configuration Methods Addresses and Port Numbers Product Information Label Key Features Power Supply Regulated 3 3V input required There is a step down converter to 1 5 volts for the processor core All voltages have LC filtering to minimize noises and emissions Controller A Lantronix DSTni FX 32 bit microprocessor running at 166 MHZ internal bus and 83 MHz external bus Memory 16 MB Flash and 8 16 MB SDRAM Please contact your sales representative if you need larger memory sizes Ethernet 10 100 Mbps Ethernet transceiver Serial Ports RS232 supporting high speed serial port with all hardware handshaking signals Baud rate is software selectable 300 bps to 921600 bps Note The standard baud rate of 460800 bps is not supported for XPort Pro Configurable IO Pins CPs Up to three pins are configurable as g
65. ar lt contre lt control gt S Gap Timer lt None gt milliseconds Threshold 5e o bytes 2 Enter or modify the following settings Table 6 3 Line 1 Configuration Name If the Terminal Login Menu feature is being used enter the name for the line Leaving this field blank will disable this line from appearing in the Terminal Login Menu The default Name is blank See Terminal and Host Settings on page 55 for related configuration information Interface Select the interface type from the drop down menu The default is RS232 State Indicates whether the current line is enabled To change the status select Enabled or Disabled from the drop down menu Protocol Select the protocol from the drop down menu The default is Tunnel Baud Rate Select the baud rate from the drop down menu The default is 9600 XPort Pro User Guide 33 6 Line and Tunnel Settings Parity Data Bits Stop Bits Flow Control Xon Char Xoff Char Gap Timer Threshold 3 Click Submit Select the parity from the drop down menu The default is None Select the number of data bits from the drop down menu The default is 8 Select the number of stop bits from the drop down menu The default is 1 Select the flow control from the drop down menu The default is None Specify the character to use to start the flow of data when Flow Control is set to Software Prefix a decimal character with or a hexadecimal character with Ox or provide a s
66. aracter typed 3 Click Submit to save changes XPort Pro User Guide 57 7 Terminal and Host Settings Host Configuration This Host web page is where you may view and modify current settings for a remote host To configure a remote host perform the following steps 1 Click Host on the menu and then click the desired host at the top of the web page Configuration is automatically selected Host 1 is the default Host Configuration page appears Figure 7 5 Host Configuration Host 1 v Host 1 Configuration Host 1 Configuration Name Protocol Telnet OSSH Remote Address Remote Port lo 2 Enter or modify the following settings Table 7 6 Host Configuration Name Enter a name for the host This name appears on the Login Connect Menu To leave a host out of the menu leave this field blank Protocol Select the protocol to use to connect to the host Choices are Telnet SSH Note SSH keys must be loaded or created on the SSH page for the SSH protocol to work SSH Username Appears if you selected SSH as the protocol Enter a username to select a pre configured Username Password Key configured on the SSH Client Users page or leave it blank to be prompted for a username and password at connect time Remote Address Enter an IP address for the host to which the device will connect Remote Port Enter the port on the host to which the device will connect 3 C
67. attacks Select Enabled to enable HTTP server logging Sets the maximum number of HTTP server log entries Only the last Max Log Entries are cached and viewable Set the log format string for the HTTP server Follow these Log Format rules a remote IP address could be a proxy b bytes sent excluding headers B bytes sent excluding headers 0 h remote host same as a h i header contents from request h header string m request method p ephemeral local port value used for request q query string prepend with or empty t timestamp HH MM SS same as Apache H M S t or T t u remote user could be bogus for 401 status U URL path info r first line of request same as m U q lt version gt s return status The timeout period applies if the selected authentication type is either Digest or SSL Digest After this period of inactivity the client must authenticate again 75 9 Service Settings HTTP Authentication HTTP Authentication enables you to require usernames and passwords to access specific web pages or directories on the XPort Pro s built in web server To configure HTTP authentication settings 1 Click HTTP on the menu bar and then Authentication at the top of the page The HTTP Authentication page opens Figure 9 14 HTTP Authentication Statistics Configuration Authentication HTTP Authenticati
68. c RSA Key Enter the path and name of the existing public RSA key you want to use with this user or use the Browse button to select the key If authentication is successful with the key no password is required Public DSA Key Enter the path and name of the existing public DSA key you want to use with this user or use the Browse button to select the key If authentication is successful with the key no password is required 3 Click Submit XPort Pro User Guide 84 10 Security Settings SSH Client Known Hosts On this page you can change SSH client settings for known hosts Note You do not have to complete the fields on this page for communication to occur However completing them adds another layer of security that protects against Man In The Middle MITM attacks To configure the SSH client for known hosts 1 Click SSH on the menu bar and then Client Known Hosts at the top of the page The SSH Client Known Hosts page appears Figure 10 5 SSH Client Known Hosts SSH Server Host Keys SSH Client Known Hosts SSH Server Authorized Users SSH Client Users SSH Client Known Hosts Server Public RSA Key Browse Public DSA Key Browse Current Configuration No Known Hosts are currently configured for the SSH Client 2 Enter or modify the following settings Table 10 6 SSH Client Known Hosts Server Enter the name or IP address of a known host If you enter a server name the name
69. ca Phone 33 13 930 4172 Email eu_techsu lantronix com or eu_support lantronix com Firmware downloads FAQs and the most up to date documentation are available at http www lantronix com support When you report a problem please provide the following information Your name and your company name address and phone number Lantronix model number Lantronix serial number Firmware version on the first screen shown when you Telnet to the device and type show Description of the problem 6 6M Status of the unit when the problem occurred please try to include information on user and network activity at the time of the problem e Additionally it may be useful to export and submit the XML Configuration and XML Status files XPort Pro User Guide 142 Appendix Binary to Hexadecimal Conversions Many of the unit s configuration procedures require you to assemble a series of options represented as bits into a complete command represented as a byte The resulting binary value must be converted to a hexadecimal representation Use this chapter to learn to convert binary values to hexadecimals or to look up hexadecimal values in the tables of configuration options The tables include e Command Mode serial string sign on message AES Keys Converting Binary to Hexadecimal Conversion Table Hexadecimal digits have values ranging from 0 to F which are represented as 0 9 A for 10 B for 11 etc To convert
70. cked groups are Lantronix default groups and cannot be deleted Use the button in this field to enable or disable the group Value Shows the CP group s current value Bit Displays the individual bit positions for the available CPs Level Indicates the voltage level of the CP A plus sign indicates the CP bit is asserted the voltage is high A minus sign indicates the CP voltage is low I O Indicates the current status of the pin input O output lt blank gt unassigned Logic Indicates the logic level of the CP An I indicates the CP is inverted A blank field indicates that the CP is not inverted Binary Shows the assertion value of the corresponding bit An X means that the group is disabled or the bit is unassigned in the group CP Shows the configurable pin number and its bit position in the CP group To create a custom CP group 1 2 3 Click CPM gt Groups Enter a group name in the Create Group field Click Submit To add a CP to a Group 1 oa FF OQ Click CPM gt Groups Click a specific Group Name to select it The Group Status information for the group appears in a table below the current configuration Select a CP from the drop down list beneath the Group Status table Select a bit position from the drop down list Select Input or Output from the drop down list Check the Assert Low checkbox to specify negative logic inverted assertion as desired This box is unc
71. copied After you specify a source and destination click Copy to copy the file Move Source Enter the location where the file you want to move resides Destination Enter the location where you want the file moved After you specify a source and destination click Move to move the file TFTP Action Select the action that is to be performed via TFTP Get a get command will be executed to store a file locally Put a put command will be executed to send a file to a remote location Mode Select a TFTP mode to use Choices are ASCII Binary Local File Enter the name of the local file on which the specified get or put action is to be performed Remote File Enter the name of the file at the remote location that is to be stored locally get or externally put Host Enter the IP address or name of the host involved in this operation Port Enter the number of the port involved in TFTP operations on which the specified TFTP get or put command will be performed Click Transfer to perform the TFTP transfer XPort Pro User Guide 102 12 Maintenance and Diagnostics Settings Protocol Stack Settings In the Protocol Stack web page you can configure TCP IP ICMP SMTP and ARP TCP Settings To configure the TCP network protocol 1 Click Protocol Stack on the menu bar 2 Click TCP Figure 12 4 TCP Protocol TCP IP ICMP ARP SMTP TCP Configuration Send RSTs Enabled Disabled
72. dress 19 Evolution OS 16 Evolution OS 16 Exit Connect Menu 56 57 Expires 93 Export Secrets 128 Export to Browser 128 130 Export to Local File 128 130 F File System Browser 100 Statistics 99 Filename 133 135 Filesystem 26 141 Firewall 136 Firmware 141 Flush Serial Data 45 49 Formfeed 80 FreeRadius 90 FTP 16 141 FTP Configuration 70 G Groups to Export 129 130 XPort Pro User Guide H Hardware Address 19 20 Hazardous Substance 146 Help Area 25 Hex 144 Hexadecimal 143 Host 48 102 113 114 Host Configuration 58 Host Configuration 58 Host IP Promotion 50 Hostname 30 HTTP 16 Authentication 76 Change Configuration 74 Configuration 73 Statistics 73 1 0 61 ICMP 16 ICMP Settings 105 Immunity 145 Import Configuration from External File 131 Import Configuration from the Filesystem 132 Import Line s from Single Line Settings on the File system 134 Inactivity Timeout 126 Interface Signals 15 IP 16 Address 19 Address Filter 108 Settings 104 ISO IEC Guide 145 K Key Features 15 Key Length 93 Key Type 83 87 L Label 19 Lantronix Discovery Protocol 19 Level 61 Line 1 Configuration 33 Statistics 32 Line Settings 32 148 Lines to Export 129 130 Lines to Import 133 135 Loading New Firmware 141 Local IP Address 68 Local Port 44 48 Logic 61 Login Connect Menu 56 57 Login Password 126 Logout 25 Long Name 140 LPD Configuration Page 79 Settings 78 LPD Statistics 78 MAC Addre
73. e Note The URI realm username and password are user specified free form fields The URI must match the directory created on the XPort Pro file system RSS Settings Really Simple Syndication RSS sometimes referred to as Rich Site Summary is a method of feeding online content to Web users Instead of actively searching for XPort Pro configuration changes RSS feeds permit viewing only relevant and new information regarding changes made to the XPort Pro via an RSS publisher The RSS feeds may also be stored to the file system cfg_log txt file To configure RSS settings 1 Click RSS on the menu bar The RSS page opens and shows the current RSS configuration XPort Pro User Guide 77 9 Service Settings Figure 9 16 RSS RSS Configuration RSS Feed Oon Soff Persistent Oon off Max Entries 100 Statistics Data O entries 0 bytes View Clear 2 Enter or modify the following settings Table 9 17 RSS RSS Feed Select On to enable RSS feeds to an RSS publisher Persistent Select On to enable the RSS feed to be written to a file cfg_log txt and to be available across reboots Max Entries Sets the maximum number of log entries Only the last Max Entries are cached and viewable Click Submit 4 Inthe Current Status table view and clear stored RSS Feed entries as necessary LPD Settings The XPort Pro device acts as a print server if a printer gets connected to one of its serial ports Clicking t
74. e 5 3 Network 1 ethO Interface Configuration Table 5 5 Network 1 Ethernet Link Table 6 2 Line 1 Configuration Table 6 3 Line 1 Configuration Table 6 5 Line 1 Command Mode Table 6 11 Tunnel Packing Mode Table 6 13 Tunnel Accept Mode Table 6 15 Tunnel Connect Mode Table 6 18 Tunnel Disconnect Mode Table 6 19 Modem Emulation Commands and Descriptions Table 6 21 Tunnel Modem Emulation Table 7 2 Terminal on Line 1 Configuration Table 7 4 Terminal on Network Configuration Table 7 6 Host Configuration Table 8 2 CPM CPs Current Configuration Table 8 3 CPM CPs Status Table 8 7 Group Status Table 9 3 PPP Configuration Table 9 5 SNMP Table 9 8 TFTP Server Table 9 10 Syslog Table 9 13 HTTP Configuration Table 9 15 HTTP Authentication Table 9 17 RSS Table 9 20 LPD Configuration Table 10 2 SSH Server Host Keys Settings Table 10 4 SSH Server Authorized User Settings Table 10 6 SSH Client Known Hosts Table 10 8 SSH Client Users Table 10 9 Supported Cipher Suites Table 10 11 SSL Table 11 1 6 Byte Header of Modbus Application Protocol Table 11 2 Modbus Local Slave Functions Query Table 11 3 Modbus Local Slave Functions Response Table 11 4 Modbus Transmission Modes Table 11 7 Modbus Configuration Table 12 3 Filesystem Browser Table 12 5 TCP Settings Table 12 7 IP Set
75. e must start with BEGIN CERTIFICATE and end with END CERTIFICATE Some Certificate Authorities add comments before and or after these lines Those need to be deleted before upload Create New Self Signed Certificate Country 2 Letter Code Enter the 2 letter country code to be assigned to the new self signed certificate Examples US for United States and CA for Canada State Province Enter the state or province to be assigned to the new self signed certificate Locality City Enter the city or locality to be assigned to the new self signed certificate Organization Enter the organization to be associated with the new self signed certificate Example If your company is called Widgets and you are setting up a web server for the Sales department enter Widgets for the organization Organization Unit Enter the organizational unit to be associated with the new self signed certificate Example If your company is setting up a web server for the Sales department enter Sales for your organizational unit XPort Pro User Guide 92 10 Security Settings Common Name Enter the same name that the user will enter when requesting your web site Example If a user enters http www widgets abccompany com to access your web site the Common Name would be www widgets abccompany com Expires Enter the expiration date in mm dd yyyy format for the new self sign
76. e should change when a connection is established and dropped Connection value Specifies the value to set the CP Group to when a connection is established Disconnection value Specifies the value to set the CP Group to when the connection is closed 4 Repeat these steps to configure additional tunnels as applicable XPort Pro User Guide 45 6 Line and Tunnel Settings Tunnel Connect Mode Connect Mode defines how the device makes an outgoing connection When enabled Connect Mode is always on and attempting a network connection if the connection mode condition warrants it For Connect Mode to function it must Be enabled e Have a remote host configured e Have a remote port is configured Enter the remote host address as an IP address or DNS name The XPort Pro device will make a connection only if it can resolve the address For DNS names the XPort Pro will re evaluate the address after being established for 4 hours If re evaluation results in a different address it will close the connection Connect Mode supports the following protocols TCP AES encryption over TCP and UDP When setting AES encryption both the encrypt key and the decrypt key must be specified The encrypt key is used for data sent out The decrypt key is used for receiving data Both of the keys may be set to the same value SSH To configure SSH the SSH client username must be configured In Connect Mode the XPort Pro is the SS
77. ed certificate Example An expiration date of May 9 2010 is entered as 05 09 2010 Key length Select the bit size of the new self signed certificate Choices are 512 bits 768 bits 1024 bits The larger the bit size the longer it takes to generate the key Approximate times are 10 seconds for a 512 bit RSA key 30 seconds for a 768 bit RSA key 1 minute for a 1024 bit RSA key 30 seconds for a 512 bit DSA key 2 minutes for a 768 bit DSA key 6 minute for a 1024 bit DSA key Type Select the type of key RSA Public Key Cryptography algorithm based on large prime numbers invented by Rivest Shamir and Adleman Used for encryption and signing DSA Digital Signature Algorithm also based on large prime numbers but can only be used for signing Developed by the US government to avoid the patents on RSA 3 Click Submit XPort Pro User Guide 93 11 Modbus Modbus ASCII RTU based serial slave devices can be connected via the ethernet through an existing Modbus TCP IP network Any device having access to a given Modbus implementation will be able to perform full range of operations that the implementation supports Modbus TCP use a reserved TCP port of 502 and include a single byte function code 1 255 preceded by a 6 byte header Table 11 1 6 Byte Header of Modbus Application Protocol Transaction ID 2 bytes Identification of request response transaction copied by slave Protocol
78. ediate authority certificate You can build up a chain of intermediate authority certificates and the last certification will always be a trusted root certificate An authority that signs another certificates is also called a Certificate Authority CA The last in line is then the root CA VeriSign is a famous example of such a root CA Its certificate is often built into web browsers to allow verifying the identity of website servers which need to have certificates signed by VeriSign or another public CA Since obtaining a certificate signed by a CA that is managed by another company can be expensive it is possible to have your own CA Tools exist to generate self signed CA certificates or to sign other certificates A certificate request is a certificate that has not been signed and only contains the identifying information Signing it makes it a certificate A certificate is also used to sign any message transmitted to the peer to identify the originator and prevent tampering while transported When using HTTPS SSL Tunneling in Accept mode and or EAP TLS the XPort Pro needs a personal certificate with a matching private key to identify itself and sign its messages When using SSL Tunneling in Connect mode and or EAP TLS EAP TTLS or PEAP the XPort Pro needs the authority certificate that can authenticate users with which it wishes to communicate SSL RSA or DSA As mentioned above the certificates contain a public key Different key excha
79. egisters Read 0x17 0x02 0x06 Max 6 Write 4X Quantity of 0x00 Ox0Y Registers Read 2 0x00 0x0Y 0x00 0x0Y Y 0Oor1 Serial Transmission Mode Evolution products can be set up to communicate on standard Modbus networks using either RTU or ASCII Users select the desired mode and serial port communication parameters baud rate parity mode etc during the line configuration Table 11 4 Modbus Transmission Modes Address 8 bits 0 to 247 decimal 0 is used Address 2 CHARS for broadcast Function 2 CHARS Function 8 bits 1 to 255 0 is not valid Data N CHARS N 0 to 252 CHARS Data N X 8 bits N 0 to 252 bytes LRC Check 2 CHARS CRC Check 16 bits The Modbus web pages allow you to check Modbus status and make configuration changes This chapter contains the following sections Modbus Statistics Modbus Configuration XPort Pro User Guide 96 11 Modbus Modbus Statistics This read only web page displays the current connection status of the Modbus servers listening on the TCP ports When a connection is active the remote client information is displayed as well as the number of PDUs that have been sent and received Additionally a Kill link will be present which can be used to kill the connection To view modbus statistics 1 Click Modbus on the menu bar and click Statistics at the top of the page The Modbus Statistics page appears Figure 11 5 Modbus Statistics Statistics Con
80. el 1 Packing Mode Mode Disable Figure 6 9 Tunnel 1 Packing Mode Mode Timeout Figure 6 10 Tunnel 1 Packing Mode Mode Send Character Figure 6 12 Tunnel 1 Accept Mode Figure 6 14 Tunnel 1 Connect Mode Figure 6 16 Host 1 Host 2 Host 3 Exchanged Figure 6 17 Tunnel 1 Disconnect Mode Figure 6 20 Tunnel 1 Modem Emulation Figure 7 1 Terminal on Line 1 Configuration Figure 7 3 Terminal on Network Configuration Figure 7 5 Host Configuration Figure 8 1 CPM CPs Figure 8 4 CPM Groups Figure 8 5 CPM Groups Current Configuration Figure 8 6 CPM Group Status Figure 9 1 DNS Settings Figure 9 2 PPP Configuration Settings Figure 9 4 SNMP Configuration Figure 9 6 FTP Configuration Figure 9 7 TFTP Configuration Figure 9 9 Syslog Figure 9 11 HTTP Statistics Figure 9 12 HTTP Configuration Figure 9 14 HTTP Authentication Figure 9 16 RSS Figure 9 18 LPD Statistics Figure 9 19 LPD Configuration Figure 10 1 SSH Server Host Keys Figure 10 3 SSH Server Authorized Users Figure 10 5 SSH Client Known Hosts Figure 10 7 SSH Client Users Figure 10 10 SSL Figure 11 5 Modbus Statistics Figure 11 6 Modbus Configuration Figure 12 1 Filesystem Statistics Figure 12 2 Filesystem Browser Figure 12 4 TCP Protocol Figure 12 6 IP Protocol Figure 12 8 ICMP Protocol XPort Pro Us
81. elect whether to allow the creation of new files stored on the TFTP server Specifies whether or not the TFTP Server is allowed to accept a firmware update for the device An attempt to update firmware is recognized based on the name of the file Note TFTP cannot authenticate the client so the device is open to malicious update Specifies whether the TFTP server is allowed to accept an XML configuration file for update An attempt to import configuration is recognized based on the name of the file Note TFTP cannot authenticate the client so the device is open to malicious update 71 Syslog Settings 9 Service Settings The Syslog web page shows the current configuration and statistics of the system log To configure the Syslog Note The syslog file is always saved to local storage but it is not retained through reboots Saving the syslog file to a server that supports remote logging services see RFC 3164 allows the administrator to save the complete syslog history The default port is 514 1 Click Syslog on the menu bar The Syslog page opens to display the current configuration Figure 9 9 Syslog Syslog Configuration State Enabled Disabled Host 172 19 39 23 Local Port 514 Remote Port 514 Severity Log Level Debug v Statistics Status Running Messages Sent 484 Messages Failed 0 2 Enter or modify the following settings Table 9 10 Syslog State Host Local Port Rem
82. en Export Status at the top of the page The XML Export Status page appears 2 Enter or modify the following settings XPort Pro User Guide Most browsers will interpret and display the XML data without the XML tags To Export Configuration Export Status XML Export Status Export to browser Import Configuration Export to local file Lines to Export Clear All Select All 1 network Groups to Export Clear All Select All arp buffer pool cps device email log filesystem hardware http icmp interface eth0 ip sockets line memory modbus local slave modbus tcp processes serer permanent rss sessions syslog tcp tftp tunnel vip xsr cp group email ftp http log ip Ipd modbus tcp server additional query port ssh telnet udp Figure 13 9 XML Export Status 129 13 Advanced Settings Table 13 10 XML Export Status Export to browser Select this option to export the XML status record to a web browser Export to local file Select this option to export the XML status record to a file on the device If you select this option enter a file name for the XML status record Lines to Export Select the instances you want to export in the line LPD PPP tunnel and terminal groups Groups to Export Check the configuration groups that are to be exported into the XML status record 3 Click Export The groups display if exporting the
83. en source set of SSL related command line utilities It can act as server or client It can generate or sign certificate requests It can convert all kinds of formats Executables are available for Linux and Windows To generate a self signed RSA certificate key combo use the following commands in the order shown openssl req x509 nodes days 365 newkey rsa 1024 keyout mp_key pem out mp_cert pem Note Signing other certificate requests is also possible with OpenSSL See www openssl org or www madboa com geek openssl for more information Steel Belted Radius Commercial radius server by Juniper Networks that provides a GUI administration interface It also provides a certificate request and self signed certificate generator The self signed certificate has extension sbrpvk and is in the PKCS12 format OpenSSL can convert this into a PEM format certificate and key by using the following commands in the order shown openssl pkcs12 in sbr_certkey sbrpvk nodes out sbr_certkey pem The sbr_certkey pem file contains both certificate and key If loading the SBR certificate into XPort Pro as an authority you will need to edit it 1 Open the file in any plain text editor Delete all info before the following BEGIN CERTIFICATE x Delete all info after the following END CERTIFICATE 5 2 3 4 Save as sbr_cert pem SBR accepts trusted root certificates in the DER format 5 A
84. encrypted channel This protocol manages the security of internet data transmission between two hosts over a network by providing encryption authentication and message integrity services Two instances require configuration when the XPort Pro is the SSH server and when it is an SSH client The SSH server is used by the CLI Command Mode and for tunneling in Accept Mode The SSH client is for tunneling in Connect Mode To configure the XPort Pro as an SSH server there are two requirements Defined host keys both private and public keys are required These keys are used for the Diffie Hellman key exchange used for the underlying encryption protocol Defined users these users are permitted to connect to the XPort Pro SSH server This page has four links at the top for viewing and changing SSH server host keys SSH server authorized keys SSH client known hosts and SSH client users XPort Pro User Guide 81 10 Security Settings SSH Server Host Keys To configure the SSH server host keys 1 Click SSH on the menu bar and SSH Server Host Keys at the top of the page The SSH Server Host Keys page appears Figure 10 1 SSH Server Host Keys SSH Server Host Keys SSH Client Known Hosts SSH Server Authorized Users SSH Client Users SSH Server Host Keys Upload Keys Private Key Browse Public Key Browse Key Type ORSA ODSA Create New Keys Key Type ORSA ODSA Bit Size O512 O768 1024
85. eneral purpose I Os if no DTR or DCD is used on serial ports Not 5V tolerant e Interface Signals 3 3V level interface signals e Temperature Range Operates over an extended temperature range of 40 C to 85 C Applications The XPort Pro device server connects serial devices such as those listed below to Ethernet networks using the IP protocol family ATM machines CNC controllers Data collection devices XPort Pro User Guide 15 2 Introduction Universal Power Supply UPS management unit Telecommunications equipment Handheld instruments Data display devices Security alarms and access control devices Modems Time attendance clocks and terminals Protocol Support The XPort Pro device server contains a full featured TCP IP stack Supported protocols include ARP IP UDP TCP ICMP BOOTP DHCP AutolP Telnet DNS FTP TFTP HTTP HTTPS SSH SSL TLS SNMP SMTP RSS PPP and Syslog for network communications and management TCP UDP TCP AES UDP AES Telnet SSH and SSL TLS for tunneling to the serial port TFTP FTP and HTTP for firmware upgrades and uploading files Evolution OS The XPort Pro incorporates The Lantronix Evolution OS Key features of the Evolution OS include e Built in Web server for configuration and troubleshooting from Web based browsers CLI configurability SNMP management XML data transport and configurability Really Simple Syndicat
86. eous A tunnel will connect to all hosts accepting a connection Simultaneous connections occur at the same time to all listed hosts The device can support a maximum of 64 total aggregate connections Host List Promotion 6 Line and Tunnel Settings Tunnel 1 Statistics Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Connect Mode Changed Host 1 Address to 172 19 100 6 Changed Host 2 Address to 172 19 100 5 Changed Host 3 Address to 172 19 100 7 The changes have been written to Flash Mode Always v Local Port lt Random gt Host 1 172 19 100 5 lt None gt TCP 45000 msec Host 2 172 19 100 6 lt None gt TCP 45000 msec Host 3 172 19 100 7 lt None gt TCP 45000 msec Host 4 lt None gt Host Mode Sequential Simultaneous Reconnect Timer 15000 milliseconds Flush Serial Data Block Serial O Enabled Disabled O Enabled Disabled Block Network Email on Connect Email on Disconnect CP Output O Enabled Disabled lt None gt x lt None gt Group Figure 6 16 Host 1 Host 2 Host 3 Exchanged Note The CP Output option displayed in the screenshot is only supported in XPort Pro and XPort AR This feature allows Host IP promotion of individual hosts in the overall sequence To promote a specific Host 1 Click the icon in the desired Host field for example Host 2
87. er Guide Figure 12 10 ARP Protocol Page 106 Figure 12 12 SMTP 107 Figure 12 14 IP Address Filter Configuration 108 Figure 12 16 Query Port Configuration 109 Figure 12 17 Diagnostics Hardware 110 Figure 12 18 MIB II Network Statistics 111 Figure 12 20 IP Sockets 112 Figure 12 21 Diagnostics Ping 112 Figure 12 23 Diagnostics Traceroute 114 Figure 12 25 Diagnostics Log 115 Figure 12 26 Diagnostics Log Filesystem 115 Figure 12 27 Diagnostics Log Line 1 116 Figure 12 28 Diagnostics Memory 117 Figure 12 29 Diagnostics Buffer Pools 118 Figure 12 30 Diagnostics Processes 119 Figure 12 31 System 120 Figure 13 1 Email Statistics 122 Figure 13 2 Email Configuration 123 Figure 13 4 CLI Statistics 125 Figure 13 5 CLI Configuration 126 Figure 13 7 XML Export Configuration 128 Figure 13 9 XML Export Status 129 Figure 13 11 XML Import Configuration 130 Figure 13 12 XML Import Configuration from External File 131 Figure 13 13 XML Import from Filesystem 132 Figure 13 14 XML Import Configuration from Filesystem 133 Figure 13 15 XML Import Line s from Single Line Settings on the Filesystem 134 Figure 14 1 VIP Status 137 Figure 14 2 VIP Counters 138 Figure 14 4 VIP Configuration Page 138 Figure 15 1 System Branding 140 Figure 16 1 Update Firmware 141 XPort Pro User Guide 10 List of Tables Table 4 3 Summary of Web Manager Pages Tabl
88. escribe the steps to vew and configure Line 1 settings These instructions also apply to additional line menu options Line Statistics This read only web page shows the status and statistics for the serial line selected at the top of this page 1 Select Line on the menu bar The Line Statistics page appears XPort Pro User Guide Figure 6 1 Line 1 Statistics Line 1 Statistics Configuration Command Mode Line 1 Statistics Receiver Transmitter Bytes 0 0 Breaks 0 0 Flow control N A N A Parity Errors 0 Framing Errors 0 Overrun Errors 0 No Rx Buffer Errors 0 Queued Receive Bytes 0 Queued Transmit Bytes 0 CTS input not asserted RTS output asserted DSR input not asserted DTR output not asserted 32 6 Line and Tunnel Settings Line Configuration This page shows the configuration settings for the serial line selected at the top of the page and lets you change the settings for that serial line To configure Line 1 1 Click Line 1 gt Configuration at the top of the page The Line 1 Configuration page appears Table 6 2 Line 1 Configuration Line 1 Statistics Configuration Command Mode Line 1 Configuration Configuration Status Name Interface RS232 v State Enabled Enabled Protocol Tunnel vj Tunnel Baud Rate 9600 v 9600 Parity None None Data Bits 8M 8 Stop Bits 1 1 Flow Control None Nj None Xon Char lt control gt Q Xoff Ch
89. figuration Modbus Statistics TCP Server State Up Port 502 Last Connection local 502 lt 172 19 205 10 3903 Uptime 0 days 02 38 20 Total PDUs In 0 Total PDUs Out D Total Connections 1 local 502 lt 172 19 205 10 3903 Kill Current Connections Uptime 0 days 02 36 48 PDUs In 0 PDUs Out 0 Additional TCP Server State Up Port 505 Last Connection lt None gt Uptime 0 days 02 35 53 Total PDUs In 0 Total PDUs Out 0 Total Connections 0 Current Connections lt None gt Local Slave Total PDUs In 0 Total PDUs Out 0 Exception Count D XPort Pro User Guide 97 11 Modbus Modbus Configuration This web page shows the current negotiated Modbus settings and allows configuration changes To view and configure the Modbus Server 1 Click Modbus on the menu bar and then click Configuration at the top of the page The Modbus Configuration page appears Figure 11 6 Modbus Configuration Statistics Configuration Modbus Configuration TCP Server State Oon of Additional TCP Server Port ore Response Timeout 3000 milliseconds RSS Trace Input Oon Sof 2 Enter or modify the following settings Table 11 7 Modbus Configuration TCP Server State If On the Modbus server is active on TCP 502 Additional TCP Server Port If present is used in addition to TCP port 502 Response Timeout The number of milliseconds to wait for a response on the serial side The device ret
90. for Send Character Mode 3 Click Submit XPort Pro User Guide Send the queued data when the number of queued bytes reaches the threshold When the buffer fills to this specified amount of data in bytes and the timeout has not elapsed the device packs the data and sends it out applies only if the Packing Mode is not Disabled Enter a time in milliseconds for the device to send the queued data after the first character was received Specifies the time duration in milliseconds applies only if the Packing Mode is Timeout Enter the send character single printable or control Upon receiving this character the device sends out the queued data The data is packed until the specified send character is encountered Similar to a start or stop character the device packs the data until it sees the send character The device then sends the packed data and the send character in the packet Applies only if the Packing Mode is Send Character Enter the trailing character single printable or control This character is sent immediately following the send character This is an optional setting If a traling character is defined this character is appended to data put on the network immediately following the send character 42 6 Line and Tunnel Settings Tunnel Accept Mode Controls how a tunnel behaves when a connection attempt originates from the network In Accept Mode the XPort Pro waits for a connection from the network The
91. gain OpenSSL can convert any format into DER by using the following commands in the order shown openssl x509 inform pem in mp_cert pem outform der out mp_cert der Note With SBR when the identity information includes special characters such as dashes and periods SBR changes the format it uses to store these strings and becomes incompatible with the current XPort Pro release We will add support for this and other formats in future releases Free Radius Linux open source Radius server It is versatile but complicated to configure FreeRadius Free Radius is a Linux open source Radius server It is versatile but complicated to configure XPort Pro User Guide 90 10 Security Settings SSL Configuration To configure SSL settings 1 Click SSL from the main menu The SSL page appears Figure 10 10 SSL SSL Upload Certificate New Certificate New Private Key Upload Authority Certificate Authority Create New Self Signed Certificate Country 2 Letter Code State Province Locality City Organization Organization Unit Common Name Expires 01 01 2010 mmi dd yyyy Key length O512 bit 768 bit 1024 bit Type ORSA ODSA Current SSL Certificates lt None gt Current Certificate Authorities lt None gt XPort Pro User Guide 91 10 Security Settings 2 Enter or modify the following settin
92. gs Upload Certificate Table 10 11 SSL New Certificate This certificate identifies the device to peers It is used for HTTPS and SSL Tunneling Enter the path and name of the certificate you want to upload or use the Browse button to select the certificate RSA or DSA certificates with 512 to 1024 bit public keys are allowed The format of the file must be PEM The file must start with BEGIN CERTIFICATE and end with END CERTIFICATE Some Certificate Authorities add comments before and or after these lines Those need to be deleted before upload New Private Key Enter the path and name of the private key you want to upload or use the Browse button to select the private key The key needs to belong to the certificate entered above RSA PRIVATE KEY and end with END RSA PRIVATE KEY Read DSA instead of RSA in case of a DSA key Some Certificate Authorities add comments before and or after these lines Those need to be deleted before upload Upload Authority Certificate Authority One or more authority certificates are needed to verify a peer s identity It is used for SSL Tunneling These certificates do not require a private key Enter the path and name of the certificate you want to upload or use the Browse button to select the certificate RSA or DSA certificates with 512 to 1024 bit public keys are allowed The format of the file must be PEM The fil
93. guration settings CPM Shows information about the Configurable Pins Manager CPM 59 and how to set the configurable pins and pin groups to work with a device Diagnostics Lets you perform various diagnostic procedures 110 DNS Shows the current configuration of the DNS subsystem and the 66 DNS cache Email Shows email statistics and lets you clear the email log configure 122 email settings and send an email Filesystem Shows file system statistics and lets you browse the filesystem to 99 view a file create a file or directory upload files using HTTP copy a file move a file or perform TFTP actions FTP Shows statistics and lets you change the current configuration for 70 the File Transfer Protocol FTP server Host Lets you view and change settings for a host on the network 58 HTTP Shows HyperText Transfer Protocol HTTP statistics and lets you 73 change the current configuration and authentication settings XPort Pro User Guide 26 4 Configuration Using Web Manager IP Address Filter Lets you specify all the IP addresses and subnets that are allowed 7108 to send data to this device Line Shows statistics and lets you change the current configuration and 32 Command mode settings of a serial line LPD Shows LPD Line Printer Daemon Queue statistics and lets you 78 configure the LPD and print a test page Modbus Shows the current connection status of the Modbus ser
94. gured manually If the IP address was assigned dynamically the following fields appear Obtain via DHCP with values of True or False Obtain via BOOTP with values of True or False Shows the subnet mask specifying the network segment on which the XPort Pro resides Shows the IP address of the router of this network There is no default Shows the number of serial ports on this XPort Pro Shows True indicating configurable pins are available on the XPort Pro Shows True indicating email triggers are available on the XPort Pro Indicates whether Telnet is enabled on this XPort Pro Shows the XPort Pro port for Telnet sessions Indicates whether Web Manager access is enabled on this XPort Pro Shows the XPort Pro port for Web Manager configuration Shows True indicating the XPort Pro firmware is upgradable as newer versions become available 22 4 Configuration Using Web Manager This chapter describes how to configure the XPort Pro using Web Manager the Lantronix browser based configuration tool The unit s configuration is stored in nonvolatile memory and is retained without power All changes take effect immediately unless otherwise noted It contains the following sections e Accessing Web Manager Web Manager Page Components Navigating the Web Manager Table 4 3 Summary of Web Manager Pages Accessing Web Manager Note You can also access the Web Manager by selecting the Web Configuration tab
95. he Line Printer Daemon LPD link in the Main Menu displays the LPD web page The LPD web page has three sub menus for viewing print queue statistics changing print queue configuration and printing a test page Because the LPD lines operate independently you can specify different configuration settings for each LPD Statistics This read only page shows various statistics about the LPD server To view LPD statistics 1 Click LPD on the menu bar and then select the line and Statistics at the top of the page The LPD page shows LPD statistics XPort Pro User Guide 78 9 Service Settings Figure 9 18 LPD Statistics LPD 1 Statistics Configuration Print Test Page LPD 1 Statistics Jobs Printed 0 Bytes Printed 0 Current Client No device is connected Last Client No device has connected LPD Configuration Here you can change LPD configuration settings To configure LPD settings 1 Click LPD on the menu bar select the LPD line and click Configuration The LPD Configuration page appears Figure 9 19 LPD Configuration LPD 1 Statistics Configuration Print Test Page LPD 1 Configuration WARNING Serial protocol is not LPD Banner Enabled Disabled Binary O Enabled Disabled Start of Job O Enabled Disabled End of Job O Enabled Disabled Formfeed O Enabled Disabled Convert Newlines O Enabled Disabled SOJ String Text O Binary EOJ String
96. he menu bar The System page opens Figure 12 29 System System Reboot Device Factory Defaults Restore Factory Defaults Upload New Firmware Name Short Name Long Name Current Configuration Firmware Version 5 2 0 0R12 Short Name my_device_server Long Name Lantronix DeviceLinx 2 Configure the following settings Table 12 30 System Reboot Device Click Reboot to reboot the device The system refreshes and redirects the browser to the device home page Restore Factory Defaults Click Factory Defaults to restore the device to the original factory settings All configurations will be lost The device automatically reboots upon setting back to the defaults XPort Pro User Guide 120 12 Maintenance and Diagnostics Settings Upload New Firmware Name XPort Pro User Guide Click Browse to locate the firmware file location Click Upload to install the firmware on the device The device automatically reboots upon the installation of new firmware Note Close and reopen the web manager browser upon a firmware update Enter a new Short Name and a Long Name if necessary The Short Name maximum is 32 characters The Long Name maximum is 64 characters Click Submit Changes take place upon the next reboot 121 13 Advanced Settings This chapter describes the configuration of Email CLI and XML It contains the following sections Email Settings Command Line Inte
97. hecked by default Click Add to complete adding the CP to the group To delete a custom CP group 1 2 Click CPM gt Groups Select a custom CP Group Name from the drop down list beside the current configuration table Click the red X next to the corresponding Name in the Group Status table XPort Pro User Guide 64 8 Configurable Pin Manager To enable or disable a CP group 1 Click CPM gt Groups 2 Select the Group name in the table representing the group you wish to enable The Group Status information for this group appears in a table below Click Enable to enable as appropriate 4 Click Disable to disable as appropriate To set a CP group s value 1 Create a custom group and add a CP to it 2 Click CPM gt Groups 3 Select the custom group from the current configuration table 4 Enter a Group Status Value 5 Click Set To remove a CP from a Group 1 Click CPM gt Groups 2 Select a the group in the Group Name column that contains the CP to be removed 3 Select the CP from the drop down list beside the Remove button 4 Click Remove XPort Pro User Guide 65 9 Service Settings This chapter describes the available services and how to configure each It contains the following sections gt gt DNS Settings The primary and secondary domain name system DNS addresses come from the active DNS Settings PPP Settings SNMP Settings FTP Settings TF
98. ide Enter the email address to which the email alerts will be sent Multiple addresses are separated by semicolon Required field if an email is to be sent Enter the email address to which the email alerts will be copied Multiple addresses are separated by semicolon Enter the email address to list in the From field of the email alert Required field if an email is to be sent 123 13 Advanced Settings Reply To Subject Message File Overriding Domain Server Port Local Port Priority Trigger Email Send 3 Click Submit Enter the email address to list in the Reply To field of the email alert Enter the subject for the email alert Enter the path of the file to send with the email alert This file appears within the message body of the email Enter the domain name to override the current domain name in EHLO Extended Hello Enter the SMTP server port number The default is port 25 Enter the local port to use for email alerts The default is a random port number Select the priority level for the email alert Configure this field to send an email based on a CP Group trigger The device sends an email when the specified Value matches the current Group s value 4 To test your configuration you can send an email immediately by clicking Send Email at the top of the page Refer back to the Statistics page for a log of the transaction XPort Pro User Guide 124 13 Advanced Settings Com
99. ing a static configuration this value is used The MTU size can be from 576 to 1500 bytes 3 Click Submit to save changes Some changes to the following settings require a reboot for the changes to take effect BOOTP Client DHCP Client IP Address gt DHCP Client ID Note If DHCP or BOOTP fails Auto P intervenes and assigns an address A new DHCP negotiation is attempted every 5 minutes to obtain a new IP address When the DHCP is enabled any configured static IP address is ignored XPort Pro User Guide 30 5 Network Settings Network 1 Ethernet Link This page shows the current negotiated Ethernet settings and lets you change the speed and duplex settings To view and configure the Ethernet link 1 Click Network on the menu bar and then click Network 1 gt Link at the top of the page The Network 1 ethO Ethernet Link page appears If coming from another Network page click Network 1 gt Link at the top of the page Figure 5 4 Network 1 Ethernet Link Network 1 Interface Link Network 1 eth0 Ethernet Link Status Speed 100 Mbps Duplex Half Configuration Speed Auto O10Mbps 100Mbps Duplex Auto O Half The Status table shows the current negotiated settings The Configuration table shows the current range of allowed settings 2 Enter or modify the following settings Table 5 5 Network 1 Ethernet Link Speed Select the Ethernet link speed Default is Auto
100. ingle printable character The default Xon char is 0x11 Specify the character to use to stop the flow of data when Flow Control is set to Software Prefix a decimal character with or a hexadecimal character with Ox or provide a single printable character The default Xoff char is 0x13 The driver forwards received serial bytes after the Gap Timer delay from the last character received By default the delay is four character periods at the current baud rate minimum 1 ms The driver will also forward received characters after Threshold bytes have been received 4 Repeat above steps as desired according to additional line s available for your product XPort Pro User Guide 34 Line Command Mode Setting Command Mode enables the CLI on the serial line To configure Line 1 Command Mode 1 Click Line 1 gt Command Mode at the top of the page The Line 1 Command Mode page appears Note TheCP Group option displayed in the screenshot is only supported in XPort Pro and XPort AR 6 Line and Tunnel Settings Figure 6 4 Line 1 Command Mode Line 1 Statistics Configuration Command Mode Line 1 Command Mode O Always O Use Serial String O Use CP Group O Use both Serial String and CP Group O Disabled Wait Time milliseconds Serial String Text O Binary Echo Serial String Signon Message Text O Binary Current Configuration Mode Wait Time Serial String Disabled Inact
101. ink 31 XPort Pro User Guide Write Community 69 X XML 19 Export Configuration 127 Export Status 129 Import System Configuration 130 XML Settings 127 XML Based Architecture 17 151
102. ion RSS information feeds Enterprise grade security with SSL and SSH 6M Comprehensive troubleshooting tools Additional Features Modem Emulation In modem emulation mode the XPort Pro can replace dial up modems The unit accepts modem AT commands on the serial port and then establishes a network connection to the end device leveraging network connections and bandwidth to eliminate dedicated modems and phone lines XPort Pro User Guide 16 2 Introduction Web Based Configuration and Troubleshooting Built upon Internet based standards the XPort Pro enables you to configure manage and troubleshoot through a browser based interface accessible anytime from anywhere All configuration and troubleshooting options are launched from a web interface You can access all functions via a Web browser for remote access As a result you decrease downtime using the troubleshooting tools and implement configuration changes using the configuration tools Command Line Interface CLI Making the edge to enterprise vision a reality the XPort Pro with the Evolution OS uses industry standard tools for configuration communication and control For example the Evolution OS uses a Command Line Interface CLI whose syntax is very similar to that used by data center equipment such as routers and hubs VIP Access Virtual IP Access is the Lantronix technology that solves the access through firewall problem With VIP Acce
103. ive 5000 milliseconds lt None gt Echo Serial String On CP Group Signon Message lt None gt lt None gt 2 Enter or modify the following settings Table 6 5 Line 1 Command Mode Mode Select the method of enabling Command Mode or choose to disable Command Mode Always immediately enables Command Mode for the serial line Use Serial String enables Command Mode when the serial string is read on the serial line during boot time Use CP Group enables Command Mode based on the status of a CP Group When the value matches the current value of the group Command Mode is enabled on the serial line Use both Serial String and CP Group the serial string and the value of the CP group must be matched to enable Command Mode Disabled turns off Command Mode Wait Time XPort Pro User Guide Enter the wait time for the serial string during boot up in milliseconds 35 6 Line and Tunnel Settings Serial String Enter the serial string characters Select a string type Text string of bytes that must be read on the Serial Line during boot time to enable Command Mode It may contain a time element in x milliseconds in the format x to specify a required delay Binary string of characters representing byte values where each hexadecimal byte value starts with Ox and each decimal byte value starts with Echo Serial String Select Yes to enable echoing of the serial string at boot up CP Grou
104. lect whether the device sends an email when a connection is closed Select None if you do not want to send an email Otherwise select the Email profile to use Identifies a CP or CP Group whose value should change when a connection is established and when it is dropped Connection value Specifies the value to set the CP Group to when a connection is established Disconnection value Specifies the value to set the CP Group to when the connection is closed 3 Click Submit The host is configured A second host appears underneath the newly configured host 4 Repeat these steps to configure additional hosts as necessary XPort Pro supports configuration of up to sixteen hosts XPort Pro User Guide 49 Connecting Multiple Hosts If more than one host is configured a Host Mode option appears Host Mode controls how multiple hosts will be accessed For XPort Pro the Connect Mode supports up to sixteen Hosts Hosts may be accessed sequentially or simultaneously Sequential Sequential host lists establish a prioritized list of tunnels The host specified as Host 1 will be attempted first If that fails it will proceed to Host 2 3 etc in the order they are specified When a connection drops the cycle starts again with Host 1 and proceeds in order Establishing the host order is accomplished with host list promotion see Host List Promotion on page 50 Sequential is the default Host Mode Simultan
105. led or Disabled 4 Click Submit XPort Pro User Guide 105 12 Maintenance and Diagnostics Settings ARP Settings To configure the ARP network protocol 1 Click Protocol Stack on the menu bar 2 Click ARP Figure 12 8 ARP Protocol Page TCP IP ICMP ARP SMTP Configuration 0 hours ARP Timeout 1 _ minutes 0 _ seconds ARP Cache IP Address MAC Address Add Age Address can MAC Address Type Interface 172 19 100 3 Remove 8 0 00 16 76 b1 e3 50 Dynamic 1 172 19 217 2 Remove 43 3 00 25 11 6b c1 f3 Dynamic 1 172 19 39 20 Remove 41 8 00 04 23 0e 19 36 Dynamic 1 172 19 1 1 Remove 18 4 00 1b 21 0e 3d f4 Dynamic 1 172 19 0 1 Remove 7 7 00 d0 04 02 c0 00 Dynamic 1 172 19 250 250 Remove 0 0 00 25 11 3f47 4d Dynamic 1 172 19 100 181 Remove 15 7 00 15 17 4a 6d 51 Dynamic 1 172 19 39 23 Remove 6 2 00 17 31 47 19 71 Dynamic 1 Remove All 3 Modify the following settings Table 12 9 ARP Settings ARP Timeout This is the maximum duration an address remains in the cache Enter the time in hours minutes and seconds IP Address Enter the IP address to add to the ARP cache XPort Pro User Guide 106 12 Maintenance and Diagnostics Settings Table 12 9 ARP Settings MAC Address Enter the MAC address to add to the ARP cache Note Both the IP and MAC addresses are required for the ARP cache 4 Click Submit for ARP or Add after supplying
106. lick Submit to save changes XPort Pro User Guide 58 8 Configurable Pin Manager The Configurable Pin Manager is responsible for assignment and control of the configurable pins CPs available on the XPort Pro There are three configurable pins on the XPort Pro You can configure the CPs by making them part of a group A CP Group may consist of one or more CPs This increases flexibility when incorporating the XPort Pro into another system This chapter contains the following sections Overview CPM CP Configurable Pins CPM Groups Overview CPM Each CP is associated with an external hardware pin CPs can be configured and used as digital inputs or outputs When used as input device functionality can be triggered based on the state of a CP For example an email can be sent when a CP is asserted to a preconfigured level When used as an output logic levels of the CP can be manipulated when a preconfigured event occurs on the device server such as when a tunnel connection is accepted CPs are configured and manipulated within a group Each group is named and is referenced in the feature that is triggering a CP or being triggered by a CP Sophisticated use of CPs can be accommodated by adding more than one CP into a group Default Groups XPort Pro has several predefined CP groups used to assign a CP to a needed function For instance when working with an RS485 driver that requires a signal to be asserted when in h
107. lnet Protocol RFC2217 saying that the remote DSR is asserted Asserted while connected asserted whenever either a connect or an accept mode tunnel connection is active Continuously asserted asserted regardless of the status of a tunnel connection 3 Click Submit XPort Pro User Guide 39 6 Line and Tunnel Settings Tunnel Packing Mode Packing Mode takes data from the serial port packs it together and sends it over the network Packing can be configured based on threshold size in bytes timeout milliseconds or a single character Size is set by modifying the threshold field When the number of bytes reaches the threshold a packet is sent immediately The timeout field is used to force a packet to be sent after a maximum time The packet is sent even if the threshold value is not reached When Send Character is configured a single printable character or control character read on the Serial Line forces the packet to be sent immediately There is an optional trailing character parameter which can be specified It can be a single printable character or a control character To configure the Tunnel Packing Mode 1 Select Tunnel gt Packing Mode at the top of the page The Tunnel 1 Packing Mode page appears Depending on the Mode selection different configurable parameters are presented to the user The following figures show the display for each of the three packing modes Figure 6 8 Tunnel 1 Packing Mode Mode
108. long name for the device up to 64 characters Click Submit 140 16 Updating Firmware Obtaining Firmware Obtain up to date firmware and release notes for the unit from the Lantronix web site http www lantronix com support downloads or by using anonymous FTP ftp ftp lantronix com Loading New Firmware Reload the firmware using the device web manager Filesystem page To upload new firmware 1 Click System in the menu bar The Filesystem page appears Figure 16 1 Update Firmware System Reboot Device Restore Factory Defaults Factory Defaults Upload New Firmware Browse Name Short Name Long Name 2 Click Browse to browse to the firmware file Highlight the file and click Open 4 Click Upload to install the firmware on the XPort Pro The device automatically reboots on the installation of new firmware 5 Close and reopen the web manager internet browser to view the device s updated web pages Note Alternatively firmware may be updated by sending the file to the XPort Pro over a FTP or TFTP connection XPort Pro User Guide 141 Appendix Technical Support If you are unable to resolve an issue using the information in this documentation please contact Technical Support Technical Support US Check our online knowledge base or send a question to Technical Support at http www lantronix com support Technical Support Europe Middle East Afri
109. m Contact System Name System Location Traps State Traps Primary Destination Traps Secondary Destination System Description Enabled Disabled lt Configured gt lt Configured gt i xport_pro lt Default gt Lantronix XPort Pro V5 2 0 0R12 07092877 T7 DGFL Enabled Disabled 2 Enter or modify the following settings Table 9 5 SNMP State Read Community Write Community System Contact System Name System Description System Location Traps State Traps Primary Destination XPort Pro User Guide Select Enabled to enable SNMP Enter the SNMP read only community string Enter the SNMP read write community string Enter the name of the system contact Enter the system name Enter the system description Enter the system location Select Enabled to enable the transmission of SNMP Traps The Cold Start trap is sent on device boot up and the Linkdown trap is sent when the device is rebooted from software control Enter the primary SNMP trap host 69 9 Service Settings Traps Secondary Enter the secondary SNMP trap host Destination 3 Click Submit FTP Settings The FTP web page shows the current File Transfer Protocol FTP configuration and various statistics about the FTP server To configure FTP 1 Click FTP on the menu bar The FTP page opens to display the current configuration Figure 9 6 FTP Configuration FTP Configura
110. mand Line Interface Settings The Command Line Interface CLI web page enables you to view statistics about the CLI servers listening on the Telnet and SSH ports and to configure CLI settings CLI Statistics This read only page shows the current connection status of the Sinica eutn CLI servers listening on the Telnet and SSH ports When a i M display A Telnet Remote client information Server Status Waiting e Number of bytes that have Last Connection lt None gt been sent and received Uptime O days 19 20 38 A Kill link to terminate the Total Bytes In 0 connection Total Bytes Out 0 To view the CLI Statistics SEn Connections lt None gt 1 Click CLI on the menu bar Server Status Waiting Tea Line Interface Last Connection lt None gt Geena emma Uptime 0 days 19 20 38 Total Bytes In 0 Total Bytes Out 0 Current Connections lt None gt CLI Configuration Figure 13 4 CLI Statistics On this page you can change CLI settings To configure the CLI 1 Click CLI on the menu and then Configuration at the top of the page The Command Line Interface Configuration page appears XPort Pro User Guide 125 13 Advanced Settings Figure 13 5 CLI Configuration Command Line Interface Configuration Login Password lt None gt Enable Level Password lt None gt Quit Connect Line lt control gt L Inactivity Timeout 15 minutes Telnet State Telnet Port 23 Telnet Max Sessions
111. mmunications See Appendix Compliance on page 145 for additional information The information in this guide may change without notice The manufacturer assumes no responsibility for any errors that may appear in this guide For the latest revision of this product document please check our online documentation at www lantronix com support documentation html XPort Pro User Guide 2 Revision History September 2009 A Initial Document December 2010 B Updated for firmware version 5 2 0 0R20 Added support for Modbus protocol configurable MTU and additional VIP tunnel connect protocols as well as improvements to SNMP logging and SSL March 2011 C Updated SDRAM information XPort Pro User Guide Table of Contents 1 List of Figures 9 List of Tables 11 About This Guide 13 Chapter and Appendix Summaries 13 Additional Documentation 14 2 Introduction 15 Key Features 15 Applications 15 Protocol Support 16 Evolution OS 16 Additional Features 16 Modem Emulation 16 Web Based Configuration and Troubleshooting 17 Command Line Interface CLI 17 VIP Access 17 SNMP Management 17 XML Based Architecture and Device Control 17 Really Simple Syndication RSS 17 Enterprise Grade Security 17 Terminal Server Device Management 18 Troubleshooting Capabilities 18 Configuration Methods 18 Addresses and Port Numbers 19 Hardware Address 19 IP Address 19 Port Numbers 19 Product Information Label 19 3 Using Devicelnstaller 21
112. n There is no active connection There is no active connection There is no active connection XPort Pro User Guide 38 6 Line and Tunnel Settings Tunnel Serial Settings Serial line settings are configurable for the corresponding serial line of the selected tunnel Configure the buffer size to change the maximum amount of data the serial port stores For any active connection the device sends the data in the buffer The modem control signal DTR on the Line may be continuously asserted or asserted only while either an Accept Mode tunnel or a Connect Mode tunnel is connected To configure serial settings 1 Click Tunnel gt Serial Settings at the top of the page The Tunnel 1 Serial Settings page appears Figure 6 7 Tunnel 1 Serial Settings Tunnel 1 Statistics Serial Settings Packing Mode AcceptMode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Serial Settings Line Settings R5232 921600 None 8 1 Hardware Protocol Tunnel O Unasserted O TruPort Asserted while connected O Continuously asserted DTR 2 View or modify the following settings Line Settings Current serial settings for the line display only Protocol The protocol being used on the line In this case Tunnel display only DTR Select when to assert DTR Unasserted never asserted TruPort asserted whenever either a connect or an accept mode tunnel connection is active with the Te
113. n FLASH Instead these settings are used when the CP is added to a CP Group When the CP Group is saved its CP settings are saved with it Thus a particular CP may be defined as Input in one group but as Output in another Only one group containing a particular CP may be enabled at once Groups The CP Groups page allows for the adding removing and managing of CP groups Groups can be created or deleted CPs can be added to or removed from groups A group based on its state can trigger outside events such as sending email messages Only an enabled group can be a trigger View Groups 1 Click CPM on the menu bar and then Groups at the top of the page The CPM Groups page appears Figure 8 4 CPM Groups CPs Groups CPM Groups Current Configuration Group Name State CP Info Diagnostic_Mode Disabled 0 CPs Assigned Line1_Modem_Ctl_In Enabled 1 CP Assigned Line1_Moderm_Ctl_Out Enabled 1 CP Assigned Line1_RS485_HDpx Disabled 0 CPs Assigned Line1_RS485_Select Disabled 0 CPs Assigned Line1_RS485_TxEnable Disabled 1 CP Assigned Line1_RTS_CTS Disabled 2 CPs Assigned Link_Status Disabled 0 CPs Assigned Modbus_Ctl_In Disabled 0 CPs Assigned Modbus_Ctl_Out Disabled D CPs Assigned Create Group Group Status Click on a Group Name above to view or change XPort Pro User Guide 62 8 Configurable Pin Manager 2 The Current Configuration table shows the current settings for each CP group Figure 8 5 CPM
114. name gt Type quit The overriding files appear in the file system s http config directory Restart any open browser to view the changes Oo ON OOP ON o gt If you wish to go back to the default files in the firmware image simply delete the overriding files from the file system Short and Long Name Customization You can customize the short and long names in Web Manager The names display in the CLI show command and in the System web page in the Current Configuration table The short name is used for the show command Both names display in the CLI Product Type field in the following example enable show The long and short names appear in the Product Type field in the following format Product Type lt long name gt lt short name gt For example enable show XPort Product Information Product Type Lantronix XPort Pro XPort XPort Pro User Guide 139 15 Branding the XPort Pro To change the short and long names with the web manager 1 Click System in the menu bar The System page opens Figure 15 1 System Branding System Reboot Device Restore Factory Defaults Factory Defaults Upload New Firmware Bowes peaa Name Short Name Long Name a oe O N XPort Pro User Guide Click Reboot to display the names In the Short Name field enter the new short name for the device up to 32 characters In the Long Name field enter the new
115. net execute exit cli ftp server host http authentication uri http server icmp O interface ip ip filter line Ipd ManageLinx modbus ppp query port rss a eo command smtp snmp ssh ssh client ssh server ssl syslog tcp telnet terminal tftp server tunnel accept tunnel connect tunnel disconnect tunnel modem tunnel packing tunnel serial vip xml import control XPort Pro User Guide 134 13 Advanced Settings 1 Enter of modify the following settings Table 13 16 XML Import Line s from Single Line Settings Filename Provide the name of the file on the device local to its file system that contains XCR data Lines to Import Select the line s whose settings you want to import Click the Select All link to select all the serial lines and the network lines Click the Clear All link clear all of the checkboxes By default all serial line instances are selected Whole Groups to Import Select the configuration groups to import from the XML configuration record Note By default all groups are checked except those pertaining to the network configuration this is so that import will not break your network connectivity You may check or uncheck any group to include or omit that group from import To import all of the groups click the Select All but Networking link to import all groups To clear all the checkboxes click the Clear All link 2 Click Import XPort Pro User Guide 135 14 VIP Se
116. nfiguration and status records and import 127 XML configuration records XPort Pro User Guide 27 5 Network Settings This chapter describes how to access view and configure network settings from the Network web page The Network web page contains sub menus that enable you to view and configure the Ethernet network interface and link This chapter contains the following sections Network 1 eth0 Interface Status Network 1 ethO Interface Configuration Network 1 Ethernet Link Network 1 eth0 Interface Status This page shows the status of the Ethernet network interface To view the network interface status 1 Click Network on the menu 2 Then click Network 1 Interface and Status at the top of the page The Network 1 eth0 Interface Status page appears Figure 5 1 Network 1 eth0 Interface Status Network 1 Interface Link Status Configuration Network 1 eth0 Interface Status BOOTP Client DHCP Client IP Address Network Mask Default Gateway Hostname Domain DNS Suffix Search List DHCP Client ID MTU Current Off On Renew 172 19 100 199 DHCP 255 255 0 0 DHCP 172 19 0 1 DHCP lt None gt eng lantronix cam DHCP eng lantronix cam int lantronix cam lantronix com Oxde 0x01 1500 After Reboot Off On lt DHCP gt lt DHCP gt lt DHCP gt lt DHCP gt lt DHCP gt lt DHCP gt lt None gt lt DHCP gt
117. nfo gt Establishes the TCP connection to socket lt paddress gt lt port gt ATDP lt Address Info gt See ATDT ATD Like ATDT Dials default Connect Mode remote address and port ATD lt Address Info gt Sets up a TCP connection A value of 0 begins a command line interface session ATO Switches to data mode if connection still exists Vice versa to ATEn Switches echo in Command Mode off 0 on 1 ATH Disconnects the network session ATI Shows modem information ATQn Quiet mode 0 enable results code 1 disable results code ATVn Verbose mode 0 numeric result codes 1 text result codes ATXn Command does nothing and returns OK status ATUn Accept unknown commands n value of 0 off n value of 1 on AT amp V Display current and saved settings AT amp F Reset settings in NVR to factory defaults AT amp W Save active settings to NVR ATZ Restores the current state from the setup settings ATSO n Accept incoming connection N value of 0O Disable N value of 1 Connect automatically N value of 2 Connect with ATA command ATA Answer incoming connection if ATSO is 2 or greater XPort Pro User Guide 52 6 Line and Tunnel Settings Table 6 19 Modem Emulation Commands and Descriptions continued Al Repeat last valid command For commands that can take address information ATD ATDT ATDP the destination address can be specified by entering the IP Address or entering the IP Address
118. nge methods require different public keys and thus different styles of certificate The XPort Pro supports key exchange methods that require a RSA style certificate and key exchange methods that require a DSA style certificate If only one of these certificates is stored in the XPort Pro only those key exchange methods that can work with that style certificate are enabled RSA is sufficient in most cases SSL Certificates and Private Keys You can obtain a certificate by completing a certificate request and sending it to a certificate authority that will create a certificate key combo usually for a fee Or generate your own A few utilities exist to generate self signed certificates or sign certificate requests The XPort Pro also has the ability to generate its own self signed certificate key combo You can use XML to export the certificate in PEM format but you cannot export the key Hence the internal certificate generator can only be used for certificates that are to identify that particular XPort Pro Certificates and private keys can be stored in several file formats Best known are PKCS12 DER and PEM Certificate and key can be inthe same file or in separate files The key can be enaypted with a password or not The XPort Pro currently only accepts separate PEM files The key needs to be unencrypted XPort Pro User Guide 89 10 Security Settings SSL Utilities Several utilities exist to convert between the formats OpenSSL Op
119. nges XPort Pro User Guide 56 7 Terminal and Host Settings Network Terminal Configuration To configure menu features applicable to CLI access via the network 1 Click Terminal gt Network at the top of the page Configuration is automatically selected The Terminal on Network Configuration page appears Figure 7 3 Terminal on Network Configuration Network Line 1 Configuration Terminal on Network Configuration Terminal Type UNKNOWN Login Connect Menu O Enabled Disabled Exit Connect Menu O Enabled Disabled Echo Enabled Disabled 2 Enter or modify the following settings Table 7 4 Terminal on Network Configuration Terminal Type Enter text to describe the type of terminal The text will be sent to a host via IAC Note IAC means interpret as command It is a way to send commands over the network such as send break or start echoing Login Connect Menu Select the interface to display when the user logs in Choices are Enabled shows the Login Connect Menu Disabled shows the CLI Exit Connect Menu Select whether to display a choice for the user to exit the Login Connect Menu and reach the CLI Choices are Enabled a choice allows the user to exit to the CLI Disabled there is no exit to the CLI Echo Applies only to Connect Mode Telnet connections not to Accept Mode Only disable Echo if your terminal echoes in which case you will see double of each ch
120. nnect mode condition is met at which time the device server closes the connection If the tunnel is dropped due to conditions beyond the device server the device server attempts to re establish a failed connection when the specified reconnect interval reaches its limit Any network side disconnect is considered an error and a reconnect is attempted without regard to the Connect Mode settings Simultaneous Connect Mode connections require some Disconnect Mode configurations or the connections will never terminate See Tunnel Disconnect Mode on page 51 for more information about the parameters fDisconnect Mode is disabled and the network connection is dropped then the re establishment of a tunnel connection is governed by the configured Connect Mode settings Select whether to flush the serial line when a connection is made Choices are Enabled flush the serial line when a connection is made Disabled do not flush the serial line default Select Enabled to block not tunnel serial data transmitted to the device This is a debugging tool that causes serial data sent to the device to be ignored Select Enabled to block not tunnel network data transmitted to the device This is a debugging tool that causes network data sent to the device to be ignored Select whether the device sends an email when a connection is made Select None if you do not want to send an email Otherwise select the Email profile to use Se
121. o VIP Statistics 1 Click VIP from the main menu The VIP Status page appears Figure 14 1 VIP Status Status Counters Configuration Virtual IP VIP Status Config Name ED82100 213 200 Current DSM IP Address Current Tunnel Port 0 DSM IP Address List 172 19 38 1 Tunnel Port List 22 80 443 Conduit Status Disabled Conduit Uptime Time of Last Replication Replication Period Tunnel Proxy Host Tunnel Proxy Port 0 days 00 00 00 Fri Oct 22 10 41 51 PDT 2010 900 seconds VIP Pools 0 EDS2100 Network Interfaces EDS32PR EDS4100 Local Dna ID dna dev rnd d6642facf Tunnel User TUNS8baf Tunnel HTTP Port List 80 443 XPort Pro User Guide 137 Virtual IP VIP Counters To view XPort Pro VIP settings 1 Click VIP gt Counters from the main menu The VIP Counters page displays Figure 14 2 VIP Counters Status Counters Virtual IP VIP Counters Configuration Receive Transmit Data Bytes 0 0 UDP Packet Queue N A 0 UDP Packets 0 0 14 VIP Settings Table 14 3 VIP Counters Data Bytes Total bytes in the TCP packets not the UDP packets UDP Packet Queue UDP Packets The number of packets queued for transmission The number of packets transmitted Note UDP counts are packet based and do not record the number of data bytes Virtual IP VIP Configuration To configure the XPort Pro VIP settings 1 Click VIP gt Configuration from the main menu The
122. on URI Realm ONone OBasic O Digest AuthType mye Oss OssuBasic O SSUDigest Username Password Current Configuration URI Delete Realm config AuthType Digest Users admin Delete 2 Enter or modify the following settings Table 9 15 HTTP Authentication URI Enter the Uniform Resource Identifier URI Note The URI must begin with 7 to refer to the filesystem Realm Enter the domain or realm used for HTTP Required with the URI field XPort Pro User Guide 76 9 Service Settings Auth Type Select the authentication type None no authentication is necessary Basic encodes passwords using Base64 Digest encodes passwords using MD5 SSL the page can only be accessed over SSL no password is required SSL Basic the page is accessible only over SSL and encodes passwords using Base64 SSL Digest the page is accessible only over SSL and encodes passwords using MD5 Note When changing the parameters of Digest or SSL Digest authentication it is often best to close and reopen the browser to ensure it does not attempt to use cached authentication information Username Enter the Username used to access the URI More than one Username per URI is permitted Click Submit and enter the next Username as necessary Password Enter the Password for the Username 3 Click Submit 4 To delete the URI and users click Delete in the current configuration tabl
123. onnection is attempted when the start character for the selected tunnel is read on the serial line Modem Control Asserted a connection is attempted as long as the Modem Control pin DSR is asserted until a connection is made Modem Emulation a connection is attempted when triggered by modem emulation AT commands Enter the port for use as the local port A random port is selected by default Once you have configured a number click the Random link in the Current Configuration to switch back to random Click lt None gt in the Host field to configure the Host parameters VIP Enabling the VIP directs the tunnel to connect to a remote Lantronix Virtual IP identified by the VIP Name When VIP is enabled the Host 2 field displays Default is Disabled VIP Name Displays configured VIP name used only if VIP is enabled Address Enter the remote Host Address as an IP address or DNS name It designates the address of the remote host to connect to Displays configured IP address or DNS address used only if VIP is disabled Port Enter the port for use as the Host Port It designates the port on the remote host to connect to Displays configured Port Protocol Select the protocol type for use with Connect Mode The default protocol is TCP Additional fields may need to be completed depending on protocol chosen for the host gt For SSH also enter an SSH Username gt For SSL there are no additional fields to complete
124. or the available lines For example Completed Accepts Completed Connects Disconnects Dropped Accepts Dropped Connects etc The XPort Pro logs statistics for tunneling The Dropped statistic shows connections ended by the remote location The Disconnects statistic shows connections ended by the XPort Pro To display the tunnel statistics perform the following steps 1 Click Tunnel on the menu bar The Statistics page for Tunnel 1 appears XPort Pro User Guide 37 6 Line and Tunnel Settings Figure 6 6 Tunnel 1 Statistics Serial Settings Packing Mode AcceptMode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Statistics Completed Accepts Completed Connects Disconnects Dropped Accepts Dropped Connects Octets forwarded from Serial Octets forwarded from Network Accept Connection Time 0 days 00 00 00 0 days 00 00 00 0 days 00 00 00 0 days 00 00 00 0 days 00 00 00 0 days 00 00 00 0 days 00 00 00 0 days 00 00 00 0 days 00 00 00 Connect 1 Connection Time Connect 2 Connection Time Connect 3 Connection Time Connect 4 Connection Time Connect 5 Connection Time Connect 6 Connection Time Connect 7 Connection Time Connect 8 Connection Time Connect DNS Address Changes Connect DNS Address Invalids There is no active connection There is no active connection There is no active connection There is no active connection There is no active connection There is no active connectio
125. ort Configuration 127 XML Export Status 129 XML Import Configuration 130 Import Configuration from External File 131 Import Configuration from the Filesystem 132 Import Line s from Single Line Settings on the Filesystem 134 14 VIP Settings 136 Obtaining a Bootstrap File 136 Importing the Bootstrap File 136 Enabling VIP 137 Configuring Tunnels to Use VIP 137 Virtual IP VIP Statistics 137 Virtual IP VIP Counters 138 Virtual IP VIP Configuration 138 15 Branding the XPort Pro 139 Web Manager Customization 139 Short and Long Name Customization 139 XPort Pro User Guide 7 16 Updating Firmware 141 Obtaining Firmware 141 Loading New Firmware 141 Appendix Technical Support 142 Technical Support US 142 Technical Support Europe Middle East Africa 142 Appendix Binary to Hexadecimal Conversions 143 Converting Binary to Hexadecimal 143 Conversion Table 143 Scientific Calculator 144 Appendix Compliance 145 Index 147 XPort Pro User Guide 8 List of Figures Figure 2 1 Sample Hardware Address Figure 2 2 Product Label Figure 4 1 Web Manager Home Page Figure 4 2 Components of the Web Manager Page Figure 5 1 Network 1 ethO Interface Status Figure 5 2 Network 1 ethO Interface Configuration Figure 5 4 Network 1 Ethernet Link Figure 6 1 Line 1 Statistics Figure 6 4 Line 1 Command Mode Figure 6 6 Tunnel 1 Statistics Figure 6 7 Tunnel 1 Serial Settings Figure 6 8 Tunn
126. ote Port Severity Log Level 3 Click Submit XPort Pro User Guide Select to enable or disable the syslog Enter the IP address of the remote server to which system logs are sent for storage Enter the number of the local port on the device from which system logs are sent Enter the number of the port on the remote server that supports logging services The default is 514 From the drop down box select the minimum level of system message the device should log This setting applies to all syslog facilities The drop down list is in descending order of severity e g Emergency is more severe than Alert 72 HTTP Settings 9 Service Settings Hypertext Transfer Protocol HTTP is the transport protocol for communicating hypertext documents on the Internet HTTP defines how messages are formatted and transmitted It also defines the actions web servers and browsers should take in response to different commands HTTP Authentication enables the requirement of usernames and passwords for access to the XPort Pro device This page has three links at the top for viewing statistics and for viewing and changing configuration and authentication settings e HTTP Statistics Viewing statistics such as bytes received and transmitted bad requests authorizations re HTTP Configuration Configuring and viewing the current configuration quired etc HTTP Authentication Configuring and viewing the authentication HTT
127. oup Value Text O Binary time for the Serial String This timer starts right after the Signon Message has been sent on the Serial Line The Serial String is a string of bytes that must be read on the Serial Line during boot time in order to enable Command Mode It may l Signon Message Current Configuration Footer Mode Wait Time Serial String Echo Serial String CP Group Signon Message o o o a Disabled Inactive 5000 milliseconds lt None gt On lt None gt lt None gt EE Copyright Lantronix Inc 2007 2010 All rights reserved contain atime element to specify a required delay in milliseconds x formed as x The Signon Message is a string I of bytes that is sent on the Serial Line during boot time I ktd form is one or more byte l values seperated by commas Each byte value may be decimal or Hexadecimal Start Hexadecimal l values with 0x l Information and Help Area The menu bar always appears at the left side of the page regardless of the page shown The menu bar lists the names of the pages available in the Web Manager To bring up a page click it in the menu bar The main area of the page has these additional sections Atthe very top many pages such as the one in the example above enable you to link to sub pages On some pages you must also select the item you are configuring such as a line or a tunnel XPort Pro User Guide
128. p XPress DR SecureBox 1101 amp 2101 WiBox UBox MatchPort SLC XPort WiPort SLB SLP SCS SLS DSC ODI1OlSOLOLSOLOLSOLSO SO SOlSO O O O O0O 0 oO ojojojojojojojojojojojojojojojojo ojojojojojojojojojojojojojojojojo OIOI O GI OIOI OIl O OGOOGO GOGO GO oj ojojojojojojojojojojojojojojojo ojojojojojojojojojojojojojojojojo O toxic or hazardous substance contained in all of the homogeneous materials for this part is below the limit requirement in SJ T11363 2006 X toxic or hazardous substance contained in at least one of the homogeneous materials used for this part is above the limit requirement in SJ T11363 2006 XPort Pro User Guide 146 Index A Accept Mode 36 Accept Mode 43 Accessing XPort b g Pro 21 Additional Documentation 14 Additional TCP Server Port 98 Address Ethernet 19 Hardware 19 20 IP 19 MAC 19 20 Advanced Settings Email Configuration 123 XML Configuration 127 Advanced Settings 122 AES 16 Allow Firmware Update 71 Allow TFTP File Creation 71 Allow XCR Import 71 Applications 15 ARP 16 ARP Settings 106 107 ASCII 94 Auth Type 77 Authentication Mode 68 Authentication Type 77 Authority 92 AutolP 16 B Banner 80 Bar Code 19 Bin 144 Binary 61 80 143 Binary to Hexadecimal Conversions 143 Binary to Hexadecimal Conversions 143 Bit 61 64 Block Network 45 49 Block Serial 49 Block Serial
129. p Enter the name and decimal value of the CP Group When the value matches the current value of the group Command Mode is enabled on the Serial Line Signon Message Enter the boot up signon message Select a string type Text string of bytes sent on the serial line during boot time Binary one or more byte values separated by commas Each byte value may be decimal or hexadecimal Start hexadecimal values with Ox Note This string will be output on the serial port at boot regardless of whether command mode is enabled or not 3 Click Submit Tunnel Settings Note The number of lines and tunnels available for viewing and configuration differ between Lantronix DeviceLinx products The screenshots in this manual represent one line and tunnel as available for example on an XPort Pro and EDS1100 However other device networking products such as EDS2100 EDS4100 XPort AR and EDS8 16 32PR support additional lines and tunnels Tunneling allows serial devices to communicate over a network without being aware of the devices which establish the network connection between them Tunneling parameters are configured using the Web Manager or Command Mode Tunnel Menu See Configuration Using Web Manager on page 23 or the XPort Pro Command Reference for the full list of commands The XPort Pro supports two tunneling connections simultaneously per serial port One of these connections is Connect Mode the other connection is Accept
130. play the status of that pin The CP Status table shows the information about the CP Table 8 3 CPM CPs Status Name State Type Value Bit Level 1 0 Logic Binary CP Groups Shows the CP number Shows the current enable state of the CP Indicates whether the CP is set for input or output Shows the last bit in the CP current value Visual display of the 32 bit placeholders for a CP A symbol indicates the CP is asserted the voltage is high A indicates the CP voltage is low Indicates the current status of the pin input O output lt blank gt unassigned An P indicates the CP is inverted Shows the assertion value of the corresponding bit Shows the CP number Lists the groups in which the CP is a member Note To modify a CP all groups in which it is a member must be disabled To change a CP output value 1 Select the CP number in CP column from the current configuration table 2 Enter the CP value in the CP Status table 3 Click Set The changed CP value appears in the current configuration table XPort Pro User Guide 61 CPM 8 Configurable Pin Manager To change a CP configuration 1 Select the CP number in CP column from the current configuration table 2 Select the CP configuration from the Type drop down list in the CP Status table 3 If necessary Select the Assert Low checkbox 4 Click Change Note These changes to a CP are not saved i
131. public networks users can maintain their existing investment in serial technology while taking advantage of the highest data protection levels possible SSH and SSL are able to do the following e Verify the data received came from the proper source e Validate that the data transferred from the source over the network has not changed when it arrives at its destination shared secret and hashing XPort Pro User Guide 17 2 Introduction Encrypt data to protect it from prying eyes and nefarious individuals e Provide the ability to run popular M2M protocols over a secure SSH or SSL connection In addition to keeping data safe and accessible the XPort Pro has robust defenses to hostile Internet attacks such as denial of service DoS which can be used to take down the network Moreover the XPort Pro cannot be used to bring down other devices on the network You can use the XPort Pro with the Lantronix Secure Com Port Redirector SCPR to encrypt COM port based communications between PCs and virtually any electronic device SCPR is a Windows application that creates a secure communications path over a network between the computer and serial based devices that are traditionally controlled via a COM port With SCPR installed at each computer computers that were formerly hard wired by serial cabling for security purposes or to accommodate applications that only understood serial data can instead communicate over an Ethernet network or the
132. r also supports SSLv3 SSLv3 handles the rest of the connection SSL Cipher Suites The SSL standard defines only certain combinations of certificate type key exchange method symmetric encryption and hash method Such a combination is called a cipher suite Supported cipher suites include the following Table 10 9 Supported Cipher Suites DSA DHE 3DES SHA1 RSA RSA 128 bits AES SHA1 RSA RSA Triple DES SHA1 RSA RSA 128 bits RC4 MD5 RSA RSA 128 bits RC4 SHA1 RSA 1024 bits RSA 56 bits RC4 MD5 RSA 1024 bits RSA 56 bits RC4 SHA1 RSA 1024 bits RSA 40 bits RC4 MD5 Whichever side is acting as server decides which cipher suite to use for a connection It is usually the strongest common denominator of the cipher suite lists supported by both sides XPort Pro User Guide 88 10 Security Settings SSL Certificates The goal of a certificate is to authenticate its sender It is analogous to a paper document that contains personal identification information and is signed by an authority for example a notary or government agency The principles of Security Certificate required that in order to sign other certificates the authority uses a private key The published authority certificate contains the matching public key that allows another to verify the signature but not recreate it The authority s certificate can be signed by itself resulting in a self signed or trusted root certificate or by another higher authority resulting in an interm
133. rd protected To configure the SSH client users 1 Click SSH on the menu bar and then SSH Client Users at the top of the page The SSH Client Users page appears Figure 10 7 SSH Client Users SSH Server Host Keys SSH Client Known Hosts SSH Server Authorized Users SSH Client Users SSH Client Users Username Password Remote Command Private Key _Browse Public Key i Browse Key Type ORSA ODSA Add Edit Create New Keys Username i EES 7 Key Type ORSA ODSA Bit Size 512 O768 1024 Current Configuration No Users are currently configured for the SSH Client XPort Pro User Guide 86 10 Security Settings 2 Enter or modify the following settings Table 10 8 SSH Client Users Username Enter the name that the device uses to connect to a SSH server Password Enter the password associated with the username Remote Command Enter the command that can be executed remotely Default is shell which tells the SSH server to execute a remote shell upon connection This command can be changed to anything the remote host can perform Private Key Enter the name of the existing private key you want to use with this SSH client user You can either enter the path and name of the key or use the Browse button to select the key Public Key Enter the path and name of the existing public key you want to use with this SSH client user or
134. reak lt None gt Break Duration 500 milliseconds Echo Enabled Disabled 2 Enter or modify the following settings XPort Pro User Guide 55 7 Terminal and Host Settings Table 7 2 Terminal on Line 1 Configuration Terminal Type Enter text to describe the type of terminal The text will be sent to a host via IAC Note IAC means interpret as command It is a way to send commands over the network such as send break or start echoing Login Connect Menu Select the interface to display when the user logs in Choices are Enabled shows the Login Connect Menu Disabled shows the CLI Exit Connect Menu Select whether to display a choice for the user to exit the Login Connect Menu and reach the CLI Choices are Enabled a choice allows the user to exit to the CLI Disabled there is no exit to the CLI Send Break Enter a Send Break control character e g lt control gt Y or blank to disable When the Send Break control character is received from the network on its way to the serial line it is not sent to the line instead the line output is forced to be inactive the break condition Break Duration Enter how long the break should last in milliseconds Echo Applies only to Connect Mode Telnet connections not to Accept Mode Only disable Echo if your terminal echoes in which case you will see double of each character typed 3 Click Submit to save cha
135. rface Settings XML Settings Email Settings The XPort Pro allows you to view Email 1 Email 2 Email 3 Email 4 and configure email alerts Te relating to the events occurring Statistics Configuration Send Email within the system Email 1 Statistics Note The following section describes the steps to configure Sent successfully 1 Email 1 these steps also apply to Retilexe o the other Email instances Not sent due to excessive errors 0 ae In transmission queue 0 Email Statistics This read only page shows Log Clear various statistics and current 120 15 49 220 Zputt int lantronix com Microsoft ESMTP MAIL Service Version 6 0 3 usage information about the 120 15 49 EHLO eng lantronix com email subsystem When you 120 15 49 250 Zputt int lantronix com Hello 172 19 100 129 transmit an email the rete ee pies transmission to the SMTP server 120 15 49 250 ETRN gets logged and displayed in the 120 15 49 250 PIPELINING bott rti fth 120 15 49 250 DSN ottom portion ot the page 120 15 49 Z50 ENHANCEDSTATUSCODES d 120 15 49 250 8bitmime 1 Click Email 1 and Statistics 120 15 49 250 BINARYMIME at the top of the page to view 120 15 49 250 CHUNKING 120 15 49 250 VRFY its statistics 120 15 49 250 X EXPS GSSAPI NTLM LOGIN 120 15 49 250 X EXPS LOGIN 2 Click Clear to clear the log 120 15 49 250 AUTH GSSAPI NTLM LOGIN 120 15 49 Z50 AUTH LOGIN 120 15 49 Z50 K LINKZSTATE 120 15 49 250 XEXCH50 120 15 49 25
136. rmative documents Radiated and Conducted Emissions CFR Title 47 FCC Part 15 Subpart B and C Industry Canada ICES 003 Issue 4 2004 CSPR 22 2005 Information Technology Equipment VCCI V 3 2007 04 AS NZS CISPR 22 2006 EN55022 1998 A1 2000 A2 2003 EN61000 3 2 2000 A2 2005 EN61000 3 3 1995 A1 2001 A2 2005 Immunity EN55024 1998 A1 2001 A2 2003 Direct amp Indirect ESD EN61000 4 2 1995 RF Electromagnetic Field Immunity EN61000 4 3 2002 Electrical Fast Transient Burst Immunity EN61000 4 4 2004 Surge Immunity EN61000 4 5 2006 RF Common Mode Conducted Susceptibility EN61000 4 6 1996 Power Frequency Magnetic Field Immunity EN61000 4 8 1994 Voltage Dips and Interrupts EN61000 4 11 2004 Safety UL 60950 1 CAN CSA C22 2 No 60950 1 03 EN 60950 1 2001 Low Voltage Directive 73 23 EEC XPort Pro User Guide 145 Manufacturer s Contact Lantronix 167 Technology Drive Irvine CA 92618 USA Tel 949 453 3990 Fax 949 450 7249 RoHS Notice All Lantronix products in the folowing families are China RoHS compliant and free of the following hazardous substances and elements Product Family Name Toxic or hazardous Substances and Elements Lead Pb Mercury Hg Cadmium Cd Hexavalent Chromium Cr VI Polybrominated biphenyls PBB Polybrominated diphenyl ethers PBDE UDS1100 and 2100 0 EDS MSS100 IntelliBox XPress DR am
137. s use the CPM Groups web page SeeCPM Groups on page 62 View CPs 1 Click CPM on the menu bar and then CPs at the top of the page The CPM CPs page appears Figure 8 1 CPM CPs CPs Groups CPM CPs Current Configuration CP Ref Configured As Value Groups Active In Group CP1 Pin6 Output Olnv 3 Line1_Modem_Ctl_Out CP2 Pin Input 1 0 lt available gt CP3 Pin Input Olnv 2 Line1_Modem_Ctl_In CP Status Name CP1 State Enabled AND Locked Type Output Value 0 0x0 Bit 2 1 Level Vo Logic Binary x x CP ol lo lo Linel_RS485_TxEnable Groups Linel_Modem_Ctl_Out The Current Configuration table shows the current settings for each CP XPort Pro User Guide 60 8 Configurable Pin Manager Table 8 2 CPM CPs Current Configuration CP Ref Configured As Value Groups Active In Group Indicates the configurable pin number Indicates the hardware pin number associated with the CP Shows the CP configuration A CP configured as Input is set to read input A CP configured as Output drives data out of the device Indicates the current status of the CP 1 asserted 0 de asserted Inv the CP logic is inverted Indicates the number of groups in which the CP is a member Shows the group in which the CP is active A CP can be a member of several groups However it may only be active in one group 2 Clicka CP number CP column in the Current Configuration table to dis
138. ss the XPort Pro can act as a ManageLinx DSC and provide direct access to your equipment behind a firewall SNMP Management The XPort Pro supports full SNMP management making it ideal for applications where device management and monitoring are critical These features allow networks with SNMP capabilities to correctly diagnose and monitor XPort Pro XML Based Architecture and Device Control XML is a fundamental building block for the future growth of M2M networks The XPort Pro supports XML based configuration setup records that make device configuration transparent to users and administrators The XML is easily editable with a standard text or XML editor Really Simple Syndication RSS The XPort Pro supports Really Simple Syndication RSS for streaming and managing on line content RSS feeds all the configuration changes that occur on the device An RSS aggregator then reads polls the feed More powerful than simple email alerts RSS uses XML as an underlying Web page transport and adds intelligence to the networked device while not taxing already overloaded email systems Enterprise Grade Security Evolution OS provides the XPort Pro the highest level of networking security possible This data center grade protection ensures that each device on the M2M network carries the same level of security as traditional IT networking equipment in the corporate data center By protecting the privacy of serial data transmitted across
139. ss 19 20 Maintenance and Diagnostics Settings Protocol Stack 103 Maintenance Settings 99 ManageLinx 136 Manufacturer s Contact 146 Manufacturers Name amp Address 145 Max Entries 78 Max Length 116 Memory 15 Modbus Configuration 98 Modbus Statistics 97 Modbus 94 Modbus_Ctl_In 94 Modbus_Ctl_ Out 94 Mode 48 Modem Emulation 16 Modem Emulation 52 MTU 30 Multiple Hosts 50 N Name 121 NAT 67 Network 1 eth0 Interface Configuration 29 Network 1 Ethernet Link 31 Network Address Translation 67 Network Settings Network 1 Interface Configuration 29 Network 1 Interface Status 28 Network Settings 28 New Certificate 92 New Private Key 92 XPort Pro User Guide O Obtaining a Bootstrap File 136 Obtaining Firmware 141 Organization Unit 92 P Packing Mode 40 PAP 67 Part Number 20 Password 45 68 87 Password Authentication Protocol 67 PBX 18 Peer IP Address 68 Persistent 78 Point to Point Protocol 67 Port 19 102 Port Numbers 19 Ports Serial and Telnet 18 Power Frequency Magnetic Field Immunity 145 Power Supply 15 PPP 16 PPP Peer Device 67 PPP Settings 67 Private Branch Exchange 18 Private Key 82 87 Product ID 19 Product Information Label 19 Product Name Model 145 Product Revision 19 Protocol 44 58 Protocol Support 16 Public Key 82 87 Q Query Port 109 Queue Name 80 Quit Connect Line 126 R Radiated and Conducted Emissions 145 Read Community 69 Really Simple Syndication 17 Reboo
140. t Device 120 Reconnect Timer 49 Ref 61 Remote Address 58 149 Remote Command 87 Remote Port 58 Response Timeout 98 Restore Factory Defaults 120 RF Common Mode Conducted Susceptibility 145 RF Electromagnetic Field Immunity 145 RFC1334 67 RoHS Notice 146 RSS 16 17 RSS Feed 78 RSS Settings 77 RSS Trace Input 98 RTU 94 S Safety 145 Scientific 144 Scientific Calculator 144 SCPR 18 Secure Com Port Redirector 18 Secure Shell 81 Secure Sockets Layer 81 88 Security Enterprise Grade 17 Settings 81 Security Settings 81 SSL Certificates and Private Keys 89 SSL Cipher Suites 88 SSL RSAor DSA 89 SSL Utilities 90 Send Break 56 Send Character 42 Serial Port 15 Serial Settings 39 Serial Transmission Mode 96 Services Settings 66 CHAP Authentication 67 LPD 78 Severity Level 116 Short and Long Name Customization 139 Short Name 140 SMTP 16 SNMP 16 SNMP Configuration 69 SNMP Management 17 SOJ String 80 SSH 16 81 Client Known Hosts 85 Server Authorized Users 83 Server Host Keys 82 Settings 81 SSH Client Known Hosts 85 XPort Pro User Guide SSH Client User Configuration 86 SSH Max Sessions 126 SSH Port 126 SSH Server Authorized Users 83 SSH Server Host Keys 82 SSH State 126 SSH Username 58 SSL 16 81 88 Settings 88 SSL Certificates 89 SSL Cipher Suites 88 SSL Configuration 91 SSL RSA or DSA 89 SSL Utilities 90 Start of Job 80 State 105 Steel Belted Radius 90 Surge Immunity 14
141. t String Display Remote IP O Enabled Disabled 2 Enter or modify the following settings XPort Pro User Guide 53 6 Line and Tunnel Settings Table 6 21 Tunnel Modem Emulation Echo Pluses Echo Commands Verbose Response Response Type Error Unknown Commands Incoming Connection Connect String Display Remote IP 3 Click Submit XPort Pro User Guide Select Enabled to echo when entering modem Command Mode Select Enabled to echo the modem commands to the console Select Enabled to send modem response codes out on the serial line Select the type of response code Text or Numeric Select whether an ERROR or OK response is sent in reply to unrecognized AT commands Choices are Enabled ERROR is returned for unrecognized AT commands Disabled OK is returned for unrecognized AT commands Default is Disabled Select whether Incoming Connection requests will be disabled answered automatically or answered manually Default is Disabled Enter the connect string This modem initialization string prepares the modem for communications It is a customized string sent with the CONNECT modem response code Selects whether the incoming RING sent on the Serial Line is followed by the IP address of the caller Default is Disabled 54 7 Terminal and Host Settings This chapter describes how to view and configure the Terminal Login Connect Menu and associated Host configuration It contains
142. terminal tunnel connect tunnel packing xml import control cp group email exit cli http authentication uri C interface line modbus rss snmp ssh server tcp tftp server tunnel disconnect tunnel serial arp device ethernet ftp server http server ip Ipd ppp serial command mode ssh ssl telnet tunnel accept tunnel modem vip Text List 1 Enter or modify the following settings XPort Pro User Guide 132 13 Advanced Settings Figure 13 14 XML Import Configuration from Filesystem Filename Enter the name of the file on the device local to its filesystem that contains XCR data Lines to Import Select the lines or network whose settings you want to import Click the Select All link to select all the serial lines and the network lines Click the Clear All link to clear all of the checkboxes By default all line instances are selected Only the selected line instances will be imported in the line LPD PPP tunnel and terminal groups Whole Groups to Import Select the configuration groups to import from the XML configuration record This option imports all instances of each selected group unless it is one of the Lines to Import Note By default all groups are checked except those pertaining to the network configuration this is so that import will not break your network connectivity You may check or uncheck any group to include or omit that group from import
143. the following sections Terminal Settings Host Configuration The Terminal Login Connect Menu feature allows the XPort Pro device to present a menu of predefined connections when the device is accessed via telnet ssh or a serial port From the menu a user can choose one of the presented options and the device automatically makes the predefined connection The Terminal page controls whether a Telnet SSH or serial port connection presents the CLI or the Login Connect Menu By default the CLI is presented when the device is accessed When configured to present the Login Connect Menu the hosts configured via the Hosts page and named serial lines are presented Terminal Settings This page shows configuration settings for each terminal connection method You can configure whether each serial line or the telnet SSH server presents a CLI or a Login Connect menu when a connection is made Line Terminal Configuration To configure a line to support an attached terminal 1 Click Terminal on the menu and then select the line that is connected to the terminal you want to configure The default is Line 1 Configuration is automatically selected The Terminal on Line 1 Configuration page appears Figure 7 1 Terminal on Line 1 Configuration Network Line 1 Configuration Terminal on Line 1 Configuration Terminal Type UNKNOWN Login Connect Menu O Enabled Disabled Exit Connect Menu O Enabled Disabled Send B
144. the query port server 3 Click Submit XPort Pro User Guide 109 Diagnostics 12 Maintenance and Diagnostics Settings The XPort Pro has several tools to perform diagnostics and view device statistics These include information on e Hardware MIB II IP Sockets Ping Traceroute Log Memory gt gt Processes Hardware This read only page shows the current device s hardware configuration Buffer Pools To display hardware diagnostics 1 Click Diagnostics on the menu bar The Diagnostics Hardware page opens and shows the current hardware configuration Figure 12 15 Diagnostics Hardware Hardware MIB II IP Sockets Ping Traceroute Log Memory Buffer Pools Processes Diagnostics Hardware Current Configuration CPU Type DSTniFX CPU Speed 166 666666 MHz CPU Instruction Cache 4 000 Kbytes 4096 bytes CPU Data Cache 4 000 Kbytes 4096 bytes RAM Size 8 000000 Mbytes 8388608 bytes Flash Size 16 000000 Mbytes 16777216 bytes Flash Sector Size 128 000 Kbytes 131072 bytes Flash Sector Count 128 Flash ID 0x1 XPort Pro User Guide 110 12 Maintenance and Diagnostics Settings MIB Il Statistics The MIB II Network Statistics page shows the various SNMP served Management Information Bases MIBs available on the XPort Pro To view MIB II statistics 1 Click Diagnostics on the menu bar and then MIB II at the top of the page menu The MIB II Network Sta
145. ting Lantronix Technical Support Appendix Binary to Hexadecimal Conversions Instructions for converting binary values to hexadecimals Appendix Compliance Lantronix compliance information XPort Pro User Guide 13 1 About This Guide Additional Documentation Visit the Lantronix web site at www lantronix com support documentation for the latest documentation and the following additional documentation XPort Pro Integration Guide Information about the XPort Pro hardware testing the XPort Pro using the demonstration board and integrating the XPort Pro into your product XPort Pro Command Reference Instructions for accessing Command Mode the command line interface using a Telnet connection or through the serial port Detailed information about the commands Also provides details for XML configuration and status XPort Pro Universal Demo Board Quick Start Instructions for getting the XPort Pro demonstration board up and running XPort Pro Universal Demo Board User Guide Information for using the XPort Pro on the demo board Devicelnstaller Online Help Instructions for using the Lantronix Windows based utility to locate the device and to view its current settings Com Port Redirector Quick Start and Online Help Instructions for using the Lantronix Windows based utility to create virtual com ports Secure Com Port Redirector User Guide Instructions for using the L
146. tings Table 12 9 ICMP Settings Table 12 11 ARP Settings Table 12 13 SMTP Settings Table 12 15 IP Address Filter Settings Table 12 19 Requests for Comments RFCs Table 12 22 Diagnostics Ping Table 12 24 Diagnostics Traceroute Table 12 32 System Table 13 3 Email Configuration Table 13 6 CLI Configuration XPort Pro User Guide Table 13 8 XML Export Configuration Table 13 10 XML Export Status Table 13 16 XML Import Line s from Single Line Settings Table 14 3 VIP Counters Table 18 1 Binary to Hexadecimal Conversion Table XPort Pro User Guide 128 130 135 138 143 12 About This Guide This guide provides the information needed to configure use and update the XPort Pro It is intended for software developers and system integrators who are embedding the XPort Pro in their designs Chapter and Appendix Summaries A summary of each chapter is provided below Chapter 2 Introduction Main features of the product and the protocols it supports Includes technical specifications Chapter 3 Using Devicelnstaller Instructions for viewing the current configuration using Devicelnstaller Chapter 4 Configuration Using Web Manager Instructions for accessing Web Manager and using it to configure settings for the device Chapter 5 Network Settings Instructions for using the web interface to configure Ethernet settings Chapter 6
147. tings Figure 12 2 Filesystem Browser Statistics Browse Filesystem Browser Create File Directory Upload File Browse Copy File Source Destination Move Source Destination Move TFTP O Get O Put O ascii O Binary Action Mode Local File Remote File Host Port Transfer 2 Click a filename to view the contents 3 is empty 4 Enter or modify the following settings Note Click the X next to a filename to delete the file or directory You can only delete a directory if it Changes apply to the current directory view To make changes within other folders click the folder or directory and then enter the parameters in the settings listed below XPort Pro User Guide 101 12 Maintenance and Diagnostics Settings Table 12 3 Filesystem Browser Create File Enter the name of the file you want to create and then click Create Directory Enter the name of the directory you want to create and then click Create Upload File Enter the path and name of the file you want to upload by means of HTTP HTTPS or use the Browse button to select the file and then click Upload Copy File Source Enter the location where the file you want to copy resides Destination Enter the location where you want the file
148. tion State Enabled Disabled Admin Username admin Admin Password lt Configured gt Statistics Status Running Connections Rejected 0 Connections Accepted 0 Active Connections 0 Last Client No device has connected 2 Enter or modify the following settings State Select Enabled to enable the FTP server Admin Username Enter the username to use when logging in via FTP Admin Password Enter the password to use when logging in via FTP 3 Click Submit XPort Pro User Guide 70 TFTP Settings 9 Service Settings In the TFTP web page you can configure the server and view the statistics about the Trivial File Transfer Protocol TFTP server To configure TFTP 1 Click TFTP on the menu bar The TFTP page opens to display the current configuration Figure 9 7 TFTP Configuration Last Client TFTP Server Configuration State Enabled Disabled Allow File Creation O Enabled Disabled Allow Firmware Update O Enabled Disabled Allow XCR Import O Enabled Disabled Statistics Status Running Files Downloaded 0 Files Uploaded 0 File Not Found Errors 0 File Read Errors 0 File Write Errors 0 Unknown Errors 0 No device has connected 2 Enter or modify the following settings Table 9 8 TFTP Server State Allow TFTP File Creation Allow Firmware Update Allow XCR Import 3 Click Submit XPort Pro User Guide Select Enabled to enable the TFTP server S
149. tiple 0x0F 0x00 0x00 0x02 0x00 0x01 0x03 0x01 0B00000xyz Coils Starting CP No of CPs to CP values Lo CP1 CP3 set CP in low bit Preset Multiple 0x10 0x00 0x00 0x02 0x00 0x01 0x03 0x02 0x06 Max 6 Registers Starting CP NoofCPsto NoofCPs 0x00 Ox0Y CP1 CP3 set to set 2 0x00 Ox0Y 0x00 Ox0Y Y Oor1 Read Write 4X 0x17 0x00 0x00 0x02 0x00 0x01 0x03 0x00 0x00 0x02 Registers Starting CP Quantity to Starting CP CP1 CP3to read CP1 CP3 to read write 0x00 0x01 0x03 0x02 0x06 Max 6 Quantity to Quantity to 0x00 Ox0Y write write 2 0x00 OxO0Y 0x00 Ox0Y Y Oor1 Table 11 3 Modbus Local Slave Functions Response Read 0x01 0x01 0B00000xyz Coils CP output values Lo CP in high bit Read 0x02 0x01 0B00000xyz N A N A N A N A N A Input CP output status values Lo CP in high bit Read 0x03 0x02 0x06 0x00 Starting CP 0x00 Next CP or 0x00 End CP value Holding Value End CP value 0x00 or 0x01 Registers 0x00 or 0x01 0x00 or 0x01 Read 0x04 0x02 0x06 0x00 Starting CP 0x00 Next CP or 0x00 End CP value Input Value End CP value 0x00 or 0x01 Registers 0x00 or 0x01 0x00 or 0x01 Force 0x05 Echo query Echo query Echo query Echo N A N A N A Single query Cell Preset 0x06 Echo query Echo query Echo query Echo N A N A N A Single query Register XPort Pro User Guide 95 11 Modbus Force OxOF Echo query Echo query Echo query Echo Multiple query Coil Preset 0x10 Echo query Echo query Echo query Echo N A N A N A Multiple query R
150. tistics page opens Figure 12 16 MIB II Network Statistics Hardware MIB II IP Sockets Ping Traceroute Log Memory Buffer Pools Processes MIB II Network Statistics Interface Group Interface Table IP Group IP Address Table IP Net To Media Table IP Forward Group IP Forward Table ICMP Group TCP Group TCP Connection Table UDP Group UDP Table System Group 2 Click any of the available links to open the corresponding table and statistics For more information refer to the table below Table 12 17 Requests for Comments RFCs RFC 1213 Original MIB II definitions RFC 2011 Updated definitions for IP and ICMP RFC 2012 Updated definitions for TCP RFC 2013 Updated definitions for UDP RFC 2096 Definitions for IP forwarding XPort Pro User Guide 111 IP Sockets To display open IP sockets 1 Click Diagnostics on the menu bar and then IP Sockets at the top of the page The IP Sockets page opens and shows all of the open IP sockets on the device 12 Maintenance and Diagnostics Settings Figure 12 18 IP Sockets Hardware MIB II IP Sockets Ping Traceroute Log Memory Buffer Pools Processes IP Sockets Protocol RxQ TXQ LocalAddr Port RemoteAddr Port UDP O 0 17219 100 199 161 255 255 255 255 0 TCP O 0 17219100 199 21 255 255 255 255 0 UDP O 0 17219100 199 69 255 255 255 255 0 UDP O 0 17219100 199 514 172 19 39 23 514 TCP 0 0 172 19 100 199 80 255 255 255 255 0 UDP 0 0 172 19 100 199 30
151. ttings VIP Virtual IP takes advantage of the Lantronix ManageLinx technology that solves the access through firewall problem ManageLinx utilizes existing network infrastructure to create a virtual device network VDN The VDN provides direct access to only authorized equipment behind firewalls from anywhere via the net ManageLinx is a secure and totally transparent remote access solution The VDN technology enables you to create dedicated TCP IP connections between any two devices using easily deployed hardware appliances There is no client software to install No changes are required to network software or applications at either end of the connection The VDN hardware consists of a publicly accessible Device Services Manager DSM and individual Device Services Controller DSC appliances in multiple locations Together these two components enable you to set up and manage individual Virtual IP VIP addresses and routes The XPort Pro with VIP enabled takes the place of a DSC and provides direct access to your equipment The XPort Pro supports both Accept and Connect Mode tunneling through VIPs Configuring an XPort Pro to use VIP Access involves Obtaining a Bootstrap File Importing the Bootstrap File Enabling VIP Configuring Tunnels to Use VIP Once the XPort Pro is configured and enabled to use VIPs it will immediately attempt to establish a conduit with the ManageLinx DSM Once the conduit is up tunneling via VI
152. tween devices using physical layers such as serial lines The XPort Pro supports two types of PPP authentication Password Authentication Protocol PAP and Challenge Handshake Authentication Protocol CHAP Both of these authentication methods require the configuration of a username and password PAP authentication offers a straightforward method for the peer to determine its identity Upon the link establishment the user ID and password are repeatedly sent to the authenticator until it is acknowledged or the connection is terminated However PAP is not a strong authentication process There is no protection against trial and error attacks The peer is responsible for the frequency of the authentication communication attempts CHAP is a more secure method than PAP It works by sending a challenge message to the connection requestor Using a one way hash function the requestor responds with its value If the value matches the server s own calculations authentication is provided Otherwise the connection is terminated Note RFC1334 defines both CHAP and PAP The XPort Pro also supports authentication scheme of None when no authentication is required during link negotiation Since the XPort Pro does not support Network Address and Port Translation NAPT static routing table entries must be added to the serial side and network side devices both of which are external devices Use the XPort Pro Web Manager or CLI to configure a
153. ures see the Devicelnstaller online help Note AutolP generates a random IP address in the range of 169 254 0 1 to 169 254 255 254 if no BOOTP or DHCP server is found Accessing XPort Pro Using Devicelnstaller Note Make note of the MAC address It is needed to locate the XPort Pro using Devicelnstaller 1 Click Start gt All Programs gt Lantronix gt Devicelnstaller gt Devicelnstaller When Devicelnstaller starts it will perform a network device search To perform another search click the Search button 2 Expand the XPort Pro folder by clicking the symbol next to the XPort Pro folder icon The list of available Lantronix XPort Pro devices appears 3 Select the XPort Pro unit by expanding its entry and clicking on its hardware MAC address to view its configuration 4 On the right page click the Device Details tab The current XPort Pro configuration appears This is only a subset of the full configuration the complete configuration may be accessed via Web Manager CLI or XML Device Details Summary Note The settings are Display Only in this table unless otherwise noted Name Name identifying the XPort Pro DHCP Device Name Shows the name associated with the XPort Pro s current IP address if the IP address was obtained dynamically Group Configurable field Enter a group to categorize the XPort Pro Double click the field type in the value and press Enter to complete This group name is local to this
154. urns exception code 11 to the network master controller if the slave serial device fails to reply within this time out RSS Trace Input If On each PDU received on the Modbus serial line creates a non persistent descriptive item in the RSS feed 3 Click Submit The changes take effect immediately Note The serial line protocol must also be configured for Modbus in addition to configuring the Modbus server See Chapter 6 Line and Tunnel Settings on page 32 for details XPort Pro User Guide 98 12 Maintenance and Diagnostics Settings This chapter describes maintenance and diagnostic methods and contains the following sections e Filesystem Settings e Protocol Stack Settings IP Address Filter Query Port Diagnostics e System Settings Filesystem Settings The XPort Pro uses a flash filesystem to store files Use the Filesystem option to view current file statistics or modify files There are two subsections Statistics and Browse The Statistics section of the Filesystem web page shows current statistics and usage information of the flash filesystem In the Browser section of the Filesystem web page you can create files and folders upload files copy and move files and use TFTP Filesystem Statistics This page shows various statistics and current usage information of the flash filesystem Figure 12 1 Filesystem Statistics Statistics Browse Filesystem Statistics Filesystem Size 7 500000 Mbytes
155. vers 94 listening on the TCP ports and lets you configure the Modbus settings Network Shows status and lets you configure the network interface 28 PPP Lets you configure a network link using Point to Point Protocol 67 PPP over a serial line Protocol Stack Lets you perform lower level network stack specific activities 103 Query Port Lets you change configuration settings for the query port 109 RSS Lets you change current Really Simple Syndication RSS if settings SNMP Lets you change the current Simple Network Management 69 Protocol SNMP configuration settings SSH Lets you change the configuration settings for SSH server host 81 keys SSH server authorized users SSH client known hosts and SSH client users SSL Lets you upload an existing certificate or create a new self signed 88 certificate Syslog Lets you specify the severity of events to log and the server and 72 ports to which the syslog should be sent System Lets you reboot device restore factory defaults upload new 120 firmware and change the device long and short names Terminal Lets you change current settings for a terminal 55 TFTP Shows statistics and lets you change the current configuration for 71 the Trivial File Transfer Protocol TFTP server Tunnel Lets you change the current configuration settings for a tunnel 36 VIP Lets you configure Virtual IP addresses to be used in Tunnel 136 Accept Mode and Tunnel Connect Mode XML Lets you export XML co
156. you visit a web site whose pages appear slowly you can use traceroute to determine where the longest delays are occurring To use Traceroute 1 Click Diagnostics on the menu bar and then Traceroute at the top of the page The Diagnostics Traceroute page opens Figure 12 21 Diagnostics Traceroute Hardware MIB II IP Sockets Ping Traceroute Log Memory Buffer Pools Processes Diagnostics Traceroute Host Traceroute Results 1 172 19 0 1 2ms 2 Enter or modify the following setting Table 12 22 Diagnostics Traceroute Host Enter the IP address or DNS hostname This address is used to show the path between it and the device when issuing the traceroute command 3 Click Submit The results of the traceroute display in the page XPort Pro User Guide 114 Log 12 Maintenance and Diagnostics Settings Here you can enable a diagnostics log of configuration items To use diagnostics logging 1 Click Diagnostics on the menu bar and then Log at the top of the page The Diagnostics Log page opens Figure 12 23 Diagnostics Log Hardware Ping Memory Diagnostics Log Configuration Output MIB II Traceroute Buffer Pools Disable v IP Sockets Log Processes 2 Click the Output type and select one of the following e Disable default Filesystem e Line1 Figure 12 24 Diagnostics Log Filesystem Hardware Ping Memory Diagnostics Log Configuration Output Max
Download Pdf Manuals
Related Search