Lantronix EDS1100
Contents
1. For testing purposes you can send Server Port a Email immediately by pressing the Send Email button Local Port i or Random Priority O Urgent High O Normal O Low O VeryLow Current Configuration To lt None gt Cc lt None gt From lt None gt Reply To lt None gt Subject lt None gt File lt None gt Overriding Domain lt None gt Server Port 25 Local Port lt Random gt Delete Priority Normal Copyright Lantronix Inc 2007 2010 All rights reserved EDS1100 2100 User Guide 130 14 Advanced Settings 2 Enter or modify the fields in Table 14 1 Table 14 1 Email 1 Configuration Fields To Cc From Reply To Subject File Overriding Domain Server Port Local Port Priority Trigger Email Send 3 Click Submit Enter the email address to which the email alerts will be sent Multiple addresses are separated by semicolon Enter the email address to which the email alerts will be copied Multiple addresses are separated by semicolon Enter the email address to list in the From field of the email alert Enter the email address to list in the Reply To field of the email alert Enter the subject for the email alert Enter the path of the file to send with the email alert This file appears within the message body of the email Enter the domain name to override the current domain name in EHLO Extend2. lt ethernet lt exit cli lt host lt http server interface v ip filter Ipd query port K3 lt serial command mode J ssh client ssh server lt syslog lt telnet command mode lt tftp server lt tunnel connect lt tunnel modem x tunnel serial lt xml import control Lines to Import Clear All Select All v network Whole Groups to Import Clear All Select All but Networking K 4 9 K lt lt lt lt lt lt lt lt lt lt s s s s x cli email execute ftp server http authentication uri icmp ip line ppp rss snmp ssh command mode ssl tcp terminal tunnel accept tunnel disconnect tunnel packing vip Text List LANTRONIX EVOLUTION OS This page is used for importing system configuration from an XML file Import Configuration from External file picks up all the settings from the external file Import Configuration from Filesystem picks up settings from the selected Groups Lines and Instances Import Line s from single line Settings on the Filesystem copies lines settings from an the input file containing only one Line instance to all of th
3. Additional Documentation Chapter Summaries Table 1 1 lists and summarizes each chapter and appendixes Table 1 1 Chapter Appendix and Summary 2 Overview Main features of the product and the protocols it supports Includes technical specifications 3 Installation of EDS1100 4 Installation of EDS2100 Instructions for installing the EDS1100 Instructions for installing the EDS2100 5 Using Devicelnstaller Instructions for viewing the current configuration using Devicelnstaller 6 Configuration Using Web Manager Instructions for accessing Web Manager and using it to configure settings for the EDS1100 2100 7 Network Settings Instructions for using the web interface to configure Ethernet settings 8 Line and Tunnel Settings Instructions for using the web interface to configure lines and tunnels 9 Terminal and Host Settings Instructions for using the web interface to configure terminals and host settings 10 Services Settings Instructions for using the web interface to configure settings for DNS SNMP FTP and other services 11 Security Settings Description and configuration of SSH and SSL security settings and instructions for using the web interface to configure SSH and SSL security settings 12 VIP Information about Virtual IP VIP features available on the EDS1100 2100 and instructions for configuring a Virtual IP 13 Maintenance and Diag
4. Shows the EDS1100 2100 current IP address To change the IP address click the Assign IP button on the Devicelnstaller menu bar Displays dynamically if the EDS1100 2100 automatically received an IP address e g from DHCP Displays statically if the IP address was configured manually If the IP address was assigned dynamically the following fields appear Obtain via DHCP with values of True or False Obtain via BOOTP with values of True or False Shows the subnet mask specifying the network segment on which the EDS1100 2100 resides Shows the IP address of the router of this network There is no default Shows the number of serial ports on this EDS1100 2100 Shows False indicating that configurable pins are not available on the EDS1100 2100 Shows True indicating email triggers are available on the EDS1100 2100 Indicates whether Telnet is enabled on this EDS1100 2100 Shows the EDS1100 2100 port for Telnet sessions Indicates whether Web Manager access is enabled on this EDS1100 2100 Shows the EDS1100 2100 port for Web Manager configuration Shows True indicating the EDS1100 2100 firmware is upgradeable as newer versions become available 31 6 Configuration Using Web Manager This chapter describes how to configure the EDS1100 2100 by using Web Manager the Lantronix browser based configuration tool The configuration is stored in nonvolatile memory and is retained without power All changes take
5. DNS Cache Snmp Agent Dynamic IP Daemon eth0 AoE TA ii Query Port 77FE Network gt Serial Daemon Port 1 Serial gt Network Daemon Port 1 Accept Mode Daemon Port 1 Connect Mode Daemon Port 1 Network gt Serial Daemon Port 2 Serial gt Network Daemon Port 2 Accept Mode Daemon Port 2 Connect Mode Daemon Port 2 SMTP Client Telnet CLI Server SSH CLI Server Serial Command Interpreter Port 1 Serial Command Interpreter Port 2 LPD Daemon LPD Queue 1 LPD Queue 2 EVOLUTION OS CPU Load 3 second snapshots SVG plugin required to view graph Note The Adobe SVG plug in is required to view the CPU Load Graph EDS1100 2100 User Guide 126 13 Maintenance and Diagnostics Settings System The System web page enables the rebooting of the device restoring factory defaults uploading new firmware specifying the short and long name and viewing the current system configuration To configure system settings perform the following steps 1 Click System on the Main Menu Figure 13 18 shows the page that displays Figure 13 18 System Web Page EDS2100 Powered by Evolution OS System Reboot Device Restore Factory Defaults Factory Defaults Upload New Firmware Upload Name Short Name Long Name l Current Configuration Firmware Version 5 1 0 0R7 Short Name EDS2100 Long Name Lantronix EDS2100 LANTRONIX EVOLUTION OS When the device is rebooted your browser should b
6. The null modem cable is the best cable to connect the serial port to another DTE device The straight though modem cable is the best cable to connect the serial port to a DCE device Power up the device by using the Barrel power connector only The barrel power connector supports a power range of 9 to 30 VDC Note As soon as you plug the device into power the device powers up automatically the self test begins and Evolution OS starts Perform the following steps to install your device which are numbered in Figure 4 7 also 1 2 3 Connect a serial device to your unit Connect an Ethernet cable between the EDS2100 RJ45 port and your Ethernet network Plug the EDS2100 into the power outlet by using the power supply that was included in the packaging The required input voltage is 9 30 VDC center with1 5W maximum power required Power up the serial devices EDS1100 2100 User Guide 28 4 Installation of EDS2100 Figure 4 7 EDS2100 Connections a g Serial Devices Cat5 Ethernet Cable 10 100BASE T Ethernet EDS1100 2100 User Guide 29 M Using Devicelnstaller This chapter covers the steps for locating a EDS1100 2100 unit and viewing its properties and device details It contains the following sections e Accessing EDS1100 2100 using Devicelnstaller e Device Details Summary Devicelnstaller is a free utility program provided by Lantronix that discovers configures upgrades and manages La
7. DNS Lookup You can specify a DNS Hostname for a forward lookup or an IP address for a reverse lookup You can also perform a lookup for a Mail MX record by prefixing a DNS Hostname with Note A DNS server must be configured for DNS Lookup to work EDS1100 2100 User Guide 122 13 Maintenance and Diagnostics Settings To use forward or reverse DNS lookup perform the following steps 1 Click Diagnostics lt DNS Lookup Figure 13 14 shows the page that displays Figure 13 14 DNS Lookup Web Page E D S 2 1 0 0 LANTRONIX Powered by Evolution OS EVOLUTION OS Specify a DNS Hostname for a Hardware MIB II IP Sockets Torwar okup or ane Rodis x for a reverse lookup Additionally Ping Traceroute DNS Lookup you can perform a lookup for a Mail Memory Buffer Pools Processes We ese SATE Di Hostname with a Diagnostics DNS Lookup Host Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 13 7 Table 13 7 DNS Lookup Fields Host Perform one of the following e For reverse lookup to locate the hostname for that IP address enter an IP address e For forward lookup to locate the corresponding IP address enter a hostname e To look up the Mail Exchange MX record IP address enter a domain name prefixed with 3 Click Submit EDS1100 2100 User Guide 123 13 Maintenance and Diagnostics Settings Memory The Memory web page
8. Disabled SSH Port 22 SSH Max Sessions 3 Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 14 2 Table 14 2 CLI Configuration Fields Login Password Enter the password for Telnet access Enable Level Password Enter the password for access to the Command Mode Enable level There is no password by default Quit connect line Enter a string to terminate a connect line session and resume the CLI Type lt control gt before any key the user must press when holding down the Ctrl key An example of such a string is lt control gt L Inactivity Timeout Set an Inactivity Timeout value so the CLI session will disconnect if no data is received after the designated time period Default is 15 minutes Enter a value of 0 to disable Telnet State Select On to enable Telnet access Telnet is enabled by default Telnet Port Enter the Telnet port to use for Telnet access The default is 23 Telnet Max Sessions Maximum number of simultaneous Telnet sessions EDS1100 2100 User Guide 133 14 Advanced Settings Table 14 2 CLI Configuration Fields continued SSH State Select On to enable SSH access SSH is enabled by default SSH Port Enter the SSH port to use for SSH access The default is 22 SSH Max Sessions Maximum number of simultaneous SSH sessions 3 Click Submit XML Configuration The EDS1100 2100 enables configuration of devices by using XML configuration records XCRs You
9. If the tunnel is dropped due to conditions beyond the device server the device server attempts to re establish a failed connection when the specified reconnect interval reaches its limit Any network side disconnect is considered an error and a reconnect is attempted without regard to the Connect Mode settings Simultaneous Connect Mode connections require some Disconnect Mode configurations or the connections will never terminate See Disconnect Mode on page 61 for more information about the parameters fDisconnect Mode is disabled and the network connection is dropped then the re establishment of a tunnel connection is governed by the configured Connect Mode settings Select whether to flush the serial line when a connection is made Choices are Enabled Flush the serial line when a connection is made Disabled Do not flush the serial line This is the default Select On to block not tunnel serial data transmitted to the EDS1100 2100 Select On to block not tunnel network data transmitted to the EDS1100 2100 Select whether the EDS1100 2100 sends an email when a connection is made Select None if you do not want to send an email Otherwise select the Email profile to use Select whether the EDS1100 2100 sends an email when a connection is closed Select None if you do not want to send an email Otherwise select the Email profile to use Identifies a CP or CP Group whose value should change when a connect
10. Statistics Serial Settings Packing Mode and sent in larger chunks Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Packing Mode O Disable Mode Timeout O Send Character Threshold 512 bytes Timeout 1000 milliseconds Copyright Lantronix Inc 2007 2010 All rights reserved 3 Enter or modify the fields in Table 8 11 Table 8 11 Tunnel Packing Mode Timeout Fields Threshold Send the queued data when the number of queued bytes reaches the threshold Timeout Enter a time in milliseconds for the EDS1100 2100 to send the queued data after the first character was received 4 Click Submit 5 Click Send Character Figure 8 12 shows the page that displays EDS1100 2100 User Guide 50 8 Line and Tunnel Settings Figure 8 12 Tunnel 1 Packing Mode Send Character EDS2100 LANTRONK Powered by Evolution OS EVOLUTION OS Vhen Tunneling instead of sending Tunnel 1 Tunnel 2 data on the network immediately after being read on the Serial Line the data can be Packed queued Statistics Serial Settings Packing Mode and sent in larger chunks Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Packing Mode O Disable Mode OTimeout Send Character Threshold 512 bytes Send Character lt controM E Trailing Character lt None gt Copyright Lantronix Inc 2007 2010 All rights reserved 6 Enter or modify the fields in Table
11. To view the DNS status and cache perform the following steps 1 Click DNS on the Main Menu Figure 10 1 shows the page that displays EDS1100 2100 User Guide 72 10 Services Settings Figure 10 1 DNS Status and Cache Web Page EDS2100 Powered by Evolution OS LANTRONIX EVOLUTION OS This page displays the current status of the DNS subsystem The D N 5 primary and secondary DNS addresses come from the active interface The static addresses Current Status from the Network Interface Configuration page may be Primary DNS 172 19 1 1 DHCP overridden by DHCP or BOOTP Secondary DNS 172 19 1 2 DHCP When a DNS name is resolved using a forward lookup the results DNS Cache are temporarily stored in the DNS cache This cache is consulted first when performing forward lookups Each item in the cache will eventually timeout and be removed There are no entries in the cache after a certain period of time or can be deleted manually Copyright Lantronix Inc 2007 2010 All rights reserved PPP Configuration The Point to Point Protocol PPP establishes a direct connection between two nodes It defines a method for data link connectivity between devices using physical layers such as serial lines The EDS1100 2100 supports two types of PPP authentication Password Authentication Protocol PAP and Challenge Handshake Authentication Protocol CHAP Both of these authentication methods require the c
12. device configuration transparent to users and administrators XML is easily editable with a standard text or XML editor Refer to the EDS1100 2100 Command Reference Guide for instructions and available commands EDS1100 2100 User Guide 18 2 Overview Addresses and Port Numbers Hardware Address The hardware address is also referred to as the Ethernet address or MAC address The first three bytes of the Ethernet address are fixed and read 00 20 4A identifying the unit as a Lantronix product The fourth fifth and sixth bytes are unique numbers assigned to each unit The following sample shows a hardware address 00 20 4A 14 01 18 or 00 20 4A 14 01 18 IP Address Every device connected to an IP network must have a unique IP address This address references the specific unit Port Numbers Every TCP connection and every UDP datagram is defined by a destination and source IP address and a destination and source port number For example a Telnet server commonly uses port number 23 The following is a list of the default server port numbers running on the EDS1100 2100 TCP Port 22 SSH Server Command Mode configuration TCP Port 23 Telnet Server Command Mode configuration TCP Port 80 HTTP Web Manager configuration TCP Port 4483 HTTPS Web Manager configuration UDP Port 161 SNMP TCP Port 21 FTP UDP Port 68 TFTP UDP Port 30718 LDP Lantronix Discovery Protocol port TCP UDP Port 10001 Tunnel 1 TCP UDP
13. 2100 User Guide 129 14 Advanced Settings 2 Click the Log Clear link to clear the log Email Configuration The EDS1100 2100 allows you to view and configure email alerts relating to the events occurring within the system To configure email settings perform the following steps 1 Click Email gt Email 1 gt Configuration Figure 14 2 shows the page that displays Figure 14 2 Email 1 Configuration Web Page EDS2100 LANTRONIX Powered by Evolution OS EVOLUTION OS When configuring the Email Email1 Email2 Email3 Email 4 subsystem for delvery ct Email notifications at the very least the a To and From fields must be Statistics Configuration Send Email configured The File field is used to specify a file on the filesystem that must be S sent with all notification Email Email 1 Configuration nerea This Gs erea the message text not as an attachment J The Overriding Domain is used to Cc forge the sender Domain Name in a J the outgoing Email message This From might be necessary for example if L J this device is located behind a firewall whose IP Address resolves Reply To J to a different Domain Name than this EER Y device For SPAM protection many S njaci L J SMTP servers perform reverse File lookups on the sender IP Address F to ensure the Email message is Overtiding Domain really from who it says it s from
14. 8 13 Table 8 13 Tunnel Packing Mode Send Character Fields Threshold Send the queued data when the number of queued bytes reaches the threshold Send Character Enter the send character Upon receiving this character the EDS1100 2100 sends out the queued data Trailing Character Enter the trailing character This character is sent immediately following the send character 7 Click Submit Accept Mode In Accept Mode the EDS1100 2100 waits for a connection from the network The configurable local port is the port the remote device connects to for this connection There is no remote port or address The default local port is 10001 for serial port 1 and 10002 for serial port 2 EDS1100 2100 User Guide 51 8 Line and Tunnel Settings Accept Mode supports the following protocols SSH EDS1100 2100 acts as the server When using SSH the SSH server host keys and at least one SSH authorized user must be configured SSL TCP AES encryption over TCP Telnet EDS1100 2100 supports IAC codes It drops the IAC codes when Telnetting and does not forward them to the serial port Accept Mode has the following states Disabled never a connection Enabled always listening for a connection Active if it receives any character from the serial port Active if it receives a specific configurable character from the serial port same start character as Connect Mode s start character Mod
15. A working power outlet if the unit will be powered from an AC outlet Hardware Components The EDS1100 has a female DB25 serial port that supports RS 232 RS 422 and RS 485 serial devices The default serial port settings are 9600 baud 8 bits no parity 1 stop bit no flow control Figure 3 1 shows the front panel Figure 3 1 EDS1100 DB25 Female Serial Port EDS1100 2100 User Guide 20 3 Installation of EDS1100 Figure 3 2 shows the RS 232 pinout configuration Figure 3 2 EDS1100 RS 232 Pinouts 9 30VDC DTR DSR CTS RX out out in in 13 25 DCD in Figure 3 3 shows the RS 422 4 wire pinout configuration Figure 3 3 EDS1100 RS 422 4 wire Pinouts 9 30VDC Unreg in RX TX in out Optional Power Connection Figure 3 3 shows the RS 485 2 wire pinout configuration Figure 3 4 EDS1100 RS 485 2 wire Pinouts GND 25 14 TX RX TX RX EDS1100 2100 User Guide 21 3 Installation of EDS1100 Back Panel On the EDS1100 back panel there is a power plug reset button and an RJ45 10 100 Ethernet port as shown in Figure 3 5 Figure 3 5 EDS1100 Back Panel RJ45 Ethernet Port Power Plug Reset Button The Ethernet port has two LEDs that indicate the status of the connection Left LED Green ON 100Mbps Link Green Blink 100Mbps Activity Orange ON 10Mbps Link Orange Blink 10Mbps Activity Right LED Green ON Full Duplex OFF Half Duplex The Ethernet
16. Customization 144 Short and Long Name Customization 144 16 Updating Firmware 146 A Technical Support 147 EDS 1100 2100 User Guide 6 B Binary to Hexadecimal Conversions Converting Binary to Hexadecimal Table of Contents 148 148 Conversion Table 148 Scientific Calculator 149 C Compliance Index EDS1100 2100 User Guide 150 153 List of Figures Figure 3 1 EDS1100 DB25 Female Serial Port Figure 3 2 EDS1100 RS 232 Pinouts Figure 3 3 EDS1100 RS 422 4 wire Pinouts Figure 3 4 EDS1100 RS 485 2 wire Pinouts Figure 3 5 EDS1100 Back Panel Figure 3 6 EDS1100 Top LEDs Figure 3 7 EDS1100 Connections Figure 4 1 EDS2100 Male DB9 DTE Serial Ports Figure 4 2 EDS2100 Pinout Configuration for RS 232 Figure 4 3 EDS2100 Pinout Configuration for RS 422 4 wire Figure 4 4 EDS2100 Pinout Configuration for RS 485 2 wire Figure 4 5 EDS2100 Ethernet RJ45 Port Reset Button and Power Plug Figure 4 6 EDS2100 Top LEDs Figure 4 7 EDS2100 Connections Figure 6 1 Web Manager Home Page Figure 6 2 Components of a Typical Web Manager Page Figure 7 1 Network1 eth0 Interface Status Web Page Figure 7 2 Network 1 eth0 Interface Configuration Web Page Figure 7 4 Network1 ethO Ethernet Link Web Page Figure 8 1 Line 1 Statistics Web Page Figure 8 2 Line 1 Configuration Web Page Figure 8 4 Line 1 Command Mode Web Page Fi
17. Figure 14 10 Import Lines from Single Line Settings on the Filesystem Web Page EDS2100 Powered by Evolution OS Export Configuration Export Status Import Configuration XML Import Configuration Import Line s from single line settings on the filesystem Filename Lines to Import Clear All Select All M1 M 2 network Whole Groups to Import Clear All Select All but Networking M arp M cli v device v email v ethernet v execute v exit cli v ftp server v host v http authentication uri v http server v icmp interface v ip v ip filter v line x Ipd lv ppp Vi query port vi rss serial command mode snmp F ssh client V ssh command mode V ssh server M ssl T syslog tcp telnet command mode Y terminal V tftp server V tunnel accept 7 tunnel connect tunnel disconnect tunnel modem E tunnel packing E tunnel serial M vip E xml import control LANTRONIX EVOLUTION OS This page is used for importing system configuration from an XML file Import Configuration from External file picks up all the settings from the external file Import Configuration from Filesystem picks up settings from the selected Groups Lines and Instances Import Line s from sing
18. Lantronix Inc 2007 2010 All rights reserved EDS1100 2100 User Guide 104 12 VIP 2 Enter or modify the fields in Table 12 1 Table 12 1 VIP Statistics Fields DSM IP Address Local DNA ID Tunnel User Tunnel Port List Current Tunnel Port Conduit Status Conduit Uptime Time of Last Replication Config Name Network Interfaces VIP Configuration Address of the Device Services Manager DSM from the bootstrap file Identity of this device from the bootstrap file username of this device from the bootstrap file DSM listening ports from the bootstrap file DSM port currently used by the conduit Indicates the status of the secure communications channel to the ManageLinx DSM Amount of time the XPort has had conduit established Time and date when configuration information was last received from a ManageLinx DSM The name used by the ManageLinx DSM to identifies the EDS1100 2100 VIPs that can be used in Connect Mode VIP tunnels To configure VIP perform the following steps 1 Click VIP gt Configuration from the Main Menu Figure 12 2 shows the page that displays EDS1100 2100 User Guide 105 12 VIP Figure 12 2 VIP Configuration Web Page EDS2100 Powered by Evolution 0S LANTRONIX EVOLUTION OS Enable the VIP State to allow Zeti P Virtual IP addresses to be used in Statistics Configuration T Ce O aa incoming Virtual IP connection requests to any local listeni
19. Status Shows product information and network line and tunneling 33 settings CLI Shows Command Line Interface CLI statistics and lets you 131 change the current CLI configuration settings Diagnostics Lets you perform various diagnostic procedures 107 DNS Shows the current configuration of the DNS subsystem and the 73 DNS cache Email Shows email statistics and lets you clear the email log configure 129 email settings and send an email Filesystem Shows file system statistics and lets you browse the file system 108 to view a file create a file or directory upload files using HTTP copy a file move a file or perform TFTP actions FTP Shows statistics and lets you change the current configuration for 77 the File Transfer Protocol FTP server Host Lets you view and change settings for a host on the network 70 HTTP Shows HyperText Transfer Protocol HTTP statistics and lets 81 you change the current configuration and authentication settings IP Address Filter Lets you specify all the IP addresses and subnets that are 115 allowed to send data to this device Line Shows statistics and lets you change the current configuration 42 and Command mode settings of a serial line LPD Shows LPD Line Printer Daemon Queue statistics and lets you 87 configure the LPD and print a test page Network Shows status and lets you configure the network interface oF PPP Lets you configure a network link using Point to Point Protocol 74 PPP ov
20. a BOOTP server Notes Overrides the configured IP address network mask gateway hostname and domain When DHCP is On the system automatically uses DHCP regardless of whether BOOTP Client is On EDS1100 2100 User Guide EVOLUTION OS This page is used to configure the Network interface on the device To see the effect of these items after a reboot view the Status page The following items require a reboot to take effect BOOTP Client On Off DHCP Client On Off IP Address DHCP Client ID If BOOTP or DHCP is turned on any configured IP Address Network Mask Gateway Hostname or Domain will be ignored BOOTP DHCP will auto discover and eclipse those configuration items If both BOOTP and DHCP are turned on DHCP will run but not BOOTP Ahen BOOTP or DHCP fails to discover an IP Address a new address will automatically be generated using AutolP This address will be within the 169 254 x x space IP Address may be entered alone in CIDR form or with an explicit mask 192 168 1 1 default mask 192 168 1 1 24 CIDR 192 168 1 1 255 255 255 0 explicit mask Hostname must begin with a letter continue with letter number or hyphen and must end with a letter or number 7 Network Settings Table 7 3 Network 1 Interface Configuration Fields continued DHCP Client Select On or Off At boot up the EDS1100 2100 will attempt to lease an IP address from a DHCP server and maintain the l
21. are checked except some pertaining to the network configuration this is so that import will not break your network connectivity You may check or uncheck any group to include or omit that group from import Selection of Lines to Import fiters instances to be imported in the line Ipd ppp serial tunnel and terminal groups This affects both Whole Groups to Import and Text List selections Use the Text List string to import specific instances of a group The textual format of this string is gi lt i gt 5 lt gei sie Each group name lt g gt is followed by colon and the instance value lt i gt and each lt g lt i gt value is separated by a semi colon If a group has no instance then only the group name lt g gt should be specified Copyright Lantronix Inc 2007 2010 All rights reserved 3 Enter the path and file name of the external XCR file you want to import or browse to select the XCR file Go back to the Import Configuration web page Click Configuration from Filesystem Figure 14 9 shows the page that displays EDS1100 2100 User Guide 139 Figure 14 9 Import Configuration from Filesystem Web Page 14 Advanced Settings EDS2100 Powered by Evolution OS Export Configuration Export Status Import Configuration XML Import Configuration Import configuration from the filesystem Filename L M1 M2 lt arp lt device
22. browser Exportto local file Lines to Export Clear All Select All ups to Export m v lt JH EK lt J a EK 4 lt S S This page is used for exporting the By default all Groups to Export are checked you may omit groups from export by unchecking them Selection of Lines to Export filters instances to be exported in the line Ipd and tunnel groups M2 E network Clear All Select All buffer pool email filesystem hardware http log interface eth0 ip sockets Ipd processes rss ssh tcp tftp udp xsr 2 Enter or modify the fields in Table 14 4 Table 14 4 XML Export Status Fields Export to browser Export to local file Lines to Export Groups to Export Select this option to export the XML status record to a web browser Select this option to export the XML status record to a file on the device If you select this option enter a file name for the XML status record Select the instances you want to export in the line LPD PPP tunnel and terminal groups Check the configuration groups that are to be exported into the XML status record 3 Click Export The groups display if exporting to the browser If exporting to the file system the EDS1100 2100 requests a filename EDS1100 2100 User Guide 137 Import Configuration To import a system configuration perform
23. connection is still valid Default is 45000 milliseconds AES Encrypt Decrypt Key Displays presence of key used only if protocol with AES is selected When setting AES encryption both the encrypt key and the decrypt key must be specified The encrypt key is used for data sent out The decrypt key is used for receiving data Both of the keys may be set to the same value Note For UDP the EDS1100 2100 accepts packets from any device on the network It send packets to the last device that sent it packets EDS1100 2100 User Guide 57 8 Line and Tunnel Settings Table 8 17 Tunnel Connect Mode Fields continued Reconnect Timer Flush Serial Data Block Serial Data Block Network Data Email on Connect Email on Disconnect CP Output 3 Click Submit Multiple Hosts Enter the reconnect time in milliseconds The EDS1100 2100 attempts to reconnect after the specified amount of time when a connection fails or when exiting an established connection This behavior depends upon the Disconnect Mode Notes When you configure Tunnel Connect Mode you can specify a number of milliseconds to attempt to reconnect after a dropped connection has occurred The default is 1500 milliseconds The Reconnect Timer only applies if a Disconnect Mode is configured With a Disconnect Mode set the device server maintains a connection until the disconnect mode condition is met at which time the device server closes the connection
24. displays total and available memory in bytes along with the number of fragments allocated blocks and memory status To display memory statistics perform the following steps 1 Click Diagnostics gt Memory Figure 13 15 shows the page that displays Figure 13 15 Memory Web Page EDS2100 Powered by Evolution OS LANTRONIX EVOLUTION OS This chart shows the total amount Hardware MIB I IP Sockets primemo avalahia andino carent amount of memory available Ping Traceroute DNS Lookup Memory Buffer Pools Processes Diagnostics Memory Main Heap Total Memory bytes 4160224 Available Memory bytes 881760 Number Of Fragments 5 Largest Fragment Avail 869216 Allocated Blocks 2412 Number Of Allocs Failed 0 Status OK Copyright Lantronix Inc 2007 2010 All rights reserved Buffer Pools Private buffer pools ensure deterministic memory management To display the buffer pools perform the following steps 1 Click Diagnostics gt Buffer Pools Figure 13 16 shows the page that displays EDS1100 2100 User Guide 124 13 Maintenance and Diagnostics Settings Figure 13 16 Buffer Pools Web Page EDS2100 LANTRONIX Powered by Evolution OS EVOLUTION OS These charts show the current Hardware MIB II IP Sockets graos o ie piratene pon f Private buffer pools are used in Ping Traceroute DNS Lookup E E aeticatin Memory Buffer Pools Processes ensure deterministic m
25. effect immediately unless otherwise noted It contains the following sections e Accessing Web Manager e Web Manager e Navigating the Web Manager Accessing Web Manager Note You can also access the Web Manager by selecting the Web Configuration tab on the Devicelnstaller window To access the Web Manager perform the following steps 1 Open a standard web browser Lantronix supports the latest version of Internet Explorer Mozilla Suite Mozilla Firefox or Opera 2 Enter the IP address of the EDS1100 2100 in the address bar The IP address may have been assigned manually using Devicelnstaller or the serial port see the EDS1100 2100 Quick Start Guide or automatically by DHCP 3 Enter your username and password The factory default username is admin and the factory default password is PASS The Device Status web page shown in Figure 6 1 displays configuration network settings line settings tunneling settings and product information Device Status Page The Device Status page is the first page that appears after you log into the Web Manager It also appears when you click Status in the Main Menu EDS1100 2100 User Guide 32 6 Configuration Using Web Manager Figure 6 1 Web Manager Home Page EDS2100 Powered by Evolution 0S LANTRONIX EVOLUTION OS Device Status SerialNumber 0S Uptime Permanent Config Seed Inerface eth MAC Address H IP Address Domain englantonixcom
26. enter a long name up to 64 characters 145 16 Updating Firmware Obtain the most up to date firmware and release notes for the EDS1100 2100 from the Lantronix Web site http Avww lantronix com or by using anonymous FTP ftp ftp lantronix com To upload new firmware perform the following steps 1 Click System in the Main Menu Figure 16 1 shows the page that displays Figure 16 1 System Web Page EDS2100 Powered by Evolution OS System Reboot Device Restore Factory Defaults Factory Defaults Upload New Firmware Ene Upload Name Short Name Long Name Current Configuration Firmware Version 5 1 0 0R7 Short Name EDS2100 Long Name Lantronix EDS2100 LANTRONIX EVOLUTION OS When the device is rebooted your browser should be refreshed and redirected to the main status page after 30 seconds Note that the redirect will not work as expected if the IP Address of the device changes after reboot After setting the configuration back to the factory defaults the device will automatically be rebooted Be careful not to power off or reset the device while uploading new firmware Once the upload has completed and the new firmware has been verified and flashed the device will automatically be rebooted Copyright Lantronix Inc 2007 2010 All rights reserved 2 Click Browse in the Upload New Firmware section The Choose File window displays Highlight th
27. factory default settings to the configuration and reboots the unit Top LEDs Figure 4 6 shows the top of the EDS2100 Table 4 1 lists and describes the LEDs Figure 4 6 EDS2100 Top LEDs wy Py OOL OL EDS2100 Serial 2 Serial 1 RS232 RS485 RS232 RS485 Table 4 1 EDS2100 LEDs and Descriptions Power blue ON EDS is receiving power TX Serial 1 green Blinking EDS is transmitting data on serial port 1 RX Serial 1 yellow Blinking EDS is receiving data on serial port 1 EDS1100 2100 User Guide 27 4 Installation of EDS2100 Table 4 1 EDS2100 LEDs and Descriptions continued TX Serial 2 green Blinking EDS is transmitting data on serial port 2 RX Serial 2 yellow Blinking EDS is receiving data on serial port 2 Diagnostic ON EDS firmware has completed booting Blinking 1x sec EDS firmware is booting Blinking 2x sec EDS is writing a file to flash Blinking 4x sec EDS is compacting the file system Blinking 5x sec EDS is restoring factory defaults Installing the EDS2100 Be sure to place the device on a flat horizontal or vertical surface The device comes with mounting brackets for mounting the device vertically for example on a wall If using AC power avoid outlets controlled by a wall switch Observe the following guidelines when connecting the serial devices The EDS2100 serial ports support RS 232 422 485 devices
28. for the selected tunnel is read on the serial line Modem Control Asserted Start waiting for an incoming connection as long as the Modem Control pin DSR is asserted on the serial line until a connection is made Modem Emulation Start waiting for an incoming connection when EDS1100 2100 User Guide triggered by modem emulation AT commands Connect mode must also be set to Modem Emulation 53 8 Line and Tunnel Settings Table 8 15 Tunnel Accept Mode Fields continued Local Port Protocol TCP Keep Alive Flush Serial Data Block Serial Data Block Network Data Password Email on Connect Email on Disconnect CP Output 3 Click Submit Connect Mode Enter the port number for use as the local port The defaults are port 10001 for Tunnel 1 and port 10002 for Tunnel 2 Select the protocol type for use with Accept Mode The default protocol is TCP If you select TCP AES you will need to configure the AES keys Enter the time in seconds the EDS1100 2100 waits during a silent connection before checking if the currently connected network device is still on the network If the unit then gets no response after 8 attempts it drops that connection Select Enabled to flush the serial data buffer on a new connection Select On to block or not tunnel serial data transmitted to the EDS1100 2100 Select On to block or not tunnel network data transmitted to the EDS1100 2100 Enter a password that c
29. gt x lt None gt y Copyright Lantronix Inc 2007 2010 All rights reserved EDS1100 2100 User Guide 55 8 Line and Tunnel Settings 2 Enter or modify the fields in Table 8 17 Table 8 17 Tunnel Connect Mode Fields Mode Select the method to be used to attempt a connection to a remote host or device Choices are Always A connection is attempted until one is made If the connection gets disconnected the EDS1100 2100 retries until it makes a connection default Disable An outgoing connection is never attempted Any Character A connection is attempted when any character is read on the serial line Start Character A connection is attempted when the start character for the selected tunnel is read on the serial line Modem Control Asserted A connection is attempted as long as the Modem Control DSR is asserted until a connection is made Configure the Modem Control Asserted setting for DSR or DTR to start a connection when the signal is asserted The EDS1100 2100 will try to make a connection indefinitely If the connection closes it will not make another connection unless the signal is asserted again Modem Emulation A connection is attempted when triggered by modem emulation AT commands Note For the any character or specific character modes the EDS1100 2100 waits and retries the connection Once it makes a connection and disconnects it cannot reconnect unti
30. mp_cert pem outform der out mp_cert der Note With SBR when the identity information includes special characters such as dashes and periods SBR changes the format it uses to store these strings and becomes incompatible with the current EDS1100 2100 release We will add support for this and other formats in future releases e Free Radius Linux open source Radius server It is versatile but complicated to configure SSL Configuration To configure SSL perform the following steps 1 Click SSL from the Main Menu Figure 11 5 shows the page that displays EDS1100 2100 User Guide 99 Figure 11 5 SSL Web Page EDS2100 Powered by Evolution OS SSL Upload Certificate 11 Security Settings LANTRONIX EVOLUTION OS New Certificate Browse New Private Key Browse Upload Authority Certificate Authority Browse Country 2 Letter Code Create New Self Signed Certificate State Province Locality City Organization Organization Unit Common Name Expires 01 01 2010 Key length Type O512 bit O768 bit mimidd yyyy 1024 bit ORSA ODSA lt None gt lt None gt Current SSL Certificates Current Certificate Authorities An SSL Certificate must be configured in order for the HTTP Server to listen on the HTTPS Port This certificate can be created elsewhere and up
31. of M2M networks The EDS1100 2100 supports XML based configuration setup records that make device configuration transparent to users and administrators The XML is easily editable with a standard text or XML editor Really Simple Syndication RSS The EDS1100 2100 supports Really Simple Syndication RSS for streaming and managing on line content RSS feeds all the configuration changes that occur on the device An RSS aggregator then reads polls the feed More powerful than simple email alerts RSS uses XML as an underlying Web page transport and adds intelligence to the networked device while not taxing already overloaded email systems Enterprise Grade Security Evolution OS provides the EDS1100 2100 the highest level of networking security possible This data center grade protection ensures that each device on the M2M network carries the same level of security as traditional IT networking equipment in the corporate data center By protecting the privacy of serial data transmitted across public networks users can maintain their existing investment in serial technology while taking advantage of the highest data protection levels possible SSH and SSL can e Verify the data received came from the proper source Validate that the data transferred from the source over the network has not changed when it arrives at its destination shared secret and hashing e Encrypt data to protect it from prying eyes and nefarious indivi
32. perform Private Key Enter the name of the existing private key you want to use with this SSH client user You can either enter the path and name of the key or use the Browse button to select the key Public Key Enter the path and name of the existing public key you want to use with this SSH client user or use the Browse button to select the key Key Type Select the key type to be used Choices are RSA wuse this key with the SSH1 and SSH2 protocols e DSA Us e this key with the SSH2 protocol EDS1100 2100 User Guide 96 Table 11 4 SSH Client Users Fields continued 11 Security Settings Create New Keys 3 Click Submit Note You can delete stored settings when the Delete link displays in the Current Configuration table SSL Cipher Suites The SSL standard defines only certain combinations of certificate type key exchange method Username Enter the name of the user associated with the new key Key Type Select the key type to be used for the new key Choices are e RSA Use this key with the SSH1 and SSH2 protocols DSA Use this key with the SSH2 protocol Bit Size Select the bit length of the new key 512 768 1024 Note Using a larger Bit Size takes more time to generate the key Approximate times are 10 seconds for a 512 bit RSA Key 15 seconds for a 768 bit RSA Key 1 minute for a 1024 bit RSA key 30 seconds for a 512 bit DSA key 1 minute for a 768 bit DSA key 2 minutes for a 10
33. the following steps 14 Advanced Settings 1 Click XML gt Import Configuration Figure 14 7 shows the page that displays Figure 14 7 Import Configuration Web Page EDS2100 Powered by Evolution OS Export Configuration Export Status Import Configuration Import XML Import Configuration Configuration from External file Configuration from Filesystem O Line s from single line Settings on the Filesystem LANTRONIX EVOLUTION OS This page is used for importing system configuration from an XML file Import Configuration from External file picks up all the settings from the external file Import Configuration from Filesystem picks up settings from the selected Groups Lines and Instances Import Line s from single line Settings on the Filesystem copies lines settings from an the input file containing only one Line instance to all of the selected Lines When selecting a Whole Groups to Import item all instances of that group will be imported Notice that by default all groups are checked except some pertaining to the network configuration this is so that import will not break your network connectivity You may check or uncheck any group to include or omit that group from import Selection of Lines to Import fitters instances to be imported in the line Ipd ppp serial tunnel and terminal groups This affects both Whole Groups to Import and Text List selections
34. the following sub menus Statistics Viewing statistics such as bytes received and transmitted bad requests authorizations required etc Configuration Configuring and viewing the current configuration Authentication Configuring and viewing the authentication HTTP Statistics To view HTTP statistics perform the following steps 1 Click HTTP gt Statistics Statistics is the default Figure 10 7 shows the page that displays Figure 10 7 HTTP Statistics Web Page EDS2100 Powered by Evolution OS LANTRONIX EVOLUTION OS This page displays the various Statistics Configuration Authentication HTTP Server statistics The HTTP Log is a scrolling log in that only the last Max Log Entries HTTP Statistics ae eae modified on the HTTP Confiquration Rx Bytes 257405 page Tx Bytes 2513036 200 OK 341 400 Bad Request 13 401 Authorization Required 49 404 Not Found 0 408 Request Timeout 0 413 Request Too Large 0 501 Not Implemented 0 Status Unknown 0 Work Queue Full 0 Socket Error 0 Memory Error 0 Logs 50 entries 8046 bytes View Clear Copyright Lantronix Inc 2007 2010 All rights reserved EDS1100 2100 User Guide 81 10 Services Settings Note The HTTP log is a scrolling log with the last Max Log Entries cached and viewable You can change the maximum number of entries that can be viewed on the HTTP Configuration Web Page HTTP Confi
35. to be made without a password Under Current Configuration User has a Delete User link and Public RSA Key and Public DSA Key have View Key and Delete Keylinks If you click a Delete link a message asks whether you are sure you want to delete this information Click OK to proceed or Cancel to cancel the operation To configure the SSH server for authorized users perform the following steps 1 Click SSH gt Server Authorized Users Figure 11 2 shows the page that displays EDS1100 2100 User Guide 92 11 Security Settings Figure 11 2 SSH Server Authorized Users Web Page EDS2100 LANTRONX Powered by Evolution OS EVOLUTION OS The SSH Server Authorized Users SSH Server Host Keys SSH Client Known Hosts are used by all applications that play the role of an SSH Server SSH Server Authorized Users SSH Client Users Specifically the Command Line Interface CLI and Tunneling in Accept Mode SSH Server Authorized Users Every user account must have a Password The user s Public Keys are Username optional and only necessary if public key authentication is wanted Password Using public key authentication will i allow a connection to be made Public RSA Key Browse _ without the password being asked s at that time Public DSA Key Browse Add Edit Current Configuration No Authorized Users are currently configured for the SSH Server Copyright Lantronix Inc 2007 2010 Al
36. your terminal echoes in which case you will see double of each character typed Copyright Lantronix Inc 2007 2010 All rights reserved Enter or modify the fields in Table 9 4 Table 9 4 Terminal on Line 1 Configuration Fields Terminal Type Enter text to describe the type of terminal The text will be sent to a host via interpret as command IAC Note IAC is a method to send commands over the network such as send break or start echoing Login Connect Menu Select the interface to display when the user logs in Choices are Enabled Shows the Login Connect Menu e Disabled Shows the CLI Exit Connect Menu Select whether to display a choice for the user to exit the Login Connect Menu and reach the CLI Choices are Enabled A choice allows the user to exit to the CLI Disabled There is no exit to the CLI EDS1100 2100 User Guide 69 9 Terminal and Host Settings Table 9 4 Terminal on Line 1 Configuration Fields continued Send Break Enter a Send Break control character e g lt control gt Y or blank to disable When the Send Break control character is received from the network on its way to the serial line it is not sent to the line instead the line output is forced to be inactive the break condition Break Duration Enter how long the break should last in milliseconds Echo Applies only to Connect Mode Telnet connections not to Accept Mode Only disa
37. 0 5 Syslog Fields 80 Table 10 6 HTTP Configuration Fields 82 Table 10 7 HTTP Authentication Fields 84 Table 10 8 RSS Fields 86 Table 10 9 LPD Configuration Fields 88 Table 11 1 SSH Server Host Keys Fields 91 Table 11 2 SSH Server Authorized Users Fields 93 Table 11 3 SSH Client Known Hosts Fields 94 Table 11 4 SSH Client Users Fields 96 Table 11 1 Supported Cipher Suites 97 Table 11 5 SSL Fields 101 Table 12 1 VIP Statistics Fields 105 Table 13 1 Filesystem Browser Fields 110 Table 13 2 TCP Fields 111 Table 13 3 ARP Web Page Fields 114 Table 13 4 IP Address Filter Fields 115 EDS 1100 2100 User Guide 10 List of Tables Table 13 5 Ping Fields 121 Table 13 6 Traceroute Fields 122 Table 13 7 DNS Lookup Fields 123 Table 13 8 System Fields 127 Table 14 1 Email 1 Configuration Fields 131 Table 14 2 CLI Configuration Fields 133 Table 14 3 XML Export Configuration Fields 135 Table 14 4 XML Export Status Fields 137 Table 14 5 Import Configuration from Filesystem Fields 140 Table 14 6 Import Lines from Single Line Settings Fields 142 Table B 1 Conversion Values 148 Table C 1 Lantronix Product Family Names and Toxic Hazardous Substances and Elements _151 EDS1100 2100 User Guide 11 1 About This Guide This guide describes how to configure use and update the EDS1100 2100 It is for software developers and system integrators This chapter contains the following sections Chapter Summaries e Conventions
38. 00 2100 User Guide SSH the EDS1100 2100 is the SSH client 54 UDP available only in Connect Mode because it is a connectionless protocol e Telnet Note The Local Port in Connect Mode is independent of the port configured in Accept Mode 8 Line and Tunnel Settings Connect Mode has six modes used to initiate and maintain a connection Modem control signal 6M Modem emulation Disabled no connection Enabled always makes a connection Active if it sees any character from the serial port Active if it sees a specific configurable character from the serial port To configure Tunnel 1 Connect Mode perform the following steps 1 Select Tunnel 1 gt Connect Mode Figure 8 16 shows the page that displays Figure 8 16 Tunnel Connect Mode Page EDS2100 Powered by Evolution OS LANTRONIX EVOLUTION OS Statistics Tunnel1 Tunnel 2 Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel Connect Mode controls how a tunnel behaves when a connection attempt originates locally Mode Local Port Host 1 Reconnect Timer Flush Serial Data Block Serial Block Network Email on Disconnect Tunnel 1 Connect Mode Disable lt Random gt lt None gt iso00 o milliseconds Email on Connect O Enabled Disabled O Enabled Disabled Enabled Disabled lt None
39. 100 User Guide 112 3 Click Submit ICMP To set the ICMP perform the following steps 1 Click Protocol Stack lt ICMP Figure 13 5 shows the page that displays Figure 13 5 ICMP Web Page EDS2100 Powered by Evolution OS LANTRONIX EVOLUTION OS TCP IP ICMP ARP This page contains lower level ICMP Network Stack specific configuration tems ICMP State O Enabled Disabled The State boolean is used to turn onoff processing of ICMP messages This includes both incoming and outgoing messages Copyright Lantronix Inc 2007 2010 All rights reserved 2 Click Enabled 3 Click Submit ARP 1 Click Protocol Stack gt ARP Figure 13 6 shows the page that displays EDS1100 2100 User Guide 13 Maintenance and Diagnostics Settings 113 Figure 13 6 ARP Web Page 13 Maintenance and Diagnostics Settings EDS2100 Powered by Evolution OS TCP IP ICMP ARP ARP 11 hours ARP Timeout i minutes 0 seconds ARP Cache IP Address 172 19 100 200 MAC Address Add Current State Remove All Age Address Sec MAC Address 172 19 1 1 Remove 172 19 100 79 Remove 0 0 00 25 11 3f 47 4d Type Dynamic Interface 9 6 00 1b 21 0e 3d f4 Dynamic 1 1 LANTRONIX EVOLUTION OS This page contains lower level ARP Network Stack specific configuration items ARP The ARP Timeout specifies how long a
40. 24 bit DSA key Note Some SSH clients require RSA host keys to be at least 1024 bits gt gt o long symmetric encryption and hash method Such a combination is called a cipher suite Table 11 1 lists the supported cipher suites Table 11 1 Supported Cipher Suites DSA RSA RSA RSA RSA RSA RSA RSA EDS 1100 2100 User Guide DHE RSA RSA RSA RSA 1024 bits RSA 1024 bits RSA 1024 bits RSA 3DES 128 bits AES Triple DES 128 bits RC4 128 bits RC4 56 bits RC4 56 bits RC4 40 bits RC4 SHA1 SHA1 SHA1 MD5 SHA1 MD5 SHA1 MD5 97 11 Security Settings Whichever side is acting as server decides which cipher suite to use for a connection It is usually the strongest common denominator of the cipher suite lists supported by both sides SSL Certificates The goal of a certificate is to authenticate its sender It is analogous to a paper document that contains personal identification information and is signed by an authority for example a notary or government agency The principles of Security Certificate required that in order to sign other certificates the authority uses a private key The published authority certificate contains the matching public key that allows another to verify the signature but not recreate it The authority s certificate can be signed by itself resulting in a self signed or trusted root certificate or by another higher authority resulting in an intermediate authority c
41. 3 Installation of EDS1100 20 Package Contents 20 User Supplied Items 20 Hardware Components 20 Back Panel 22 Reset Button 22 Top LEDs 22 Installing the EDS1100 23 3 Table of Contents 4 Installation of EDS2100 25 Package Contents 25 User Supplied Items 25 Hardware Components 25 Back Panel 26 Reset Button 27 Top LEDs 27 Installing the EDS2100 28 5 Using Devicelnstaller 30 Accessing EDS1100 2100 using Devicelnstaller 30 Device Details Summary 30 6 Configuration Using Web Manager 32 Accessing Web Manager 32 Device Status Page 32 Web Manager 33 Navigating the Web Manager 34 7 Network Settings 37 Network 1 Interface Status 37 Network 1 Interface Configuration 38 Network 1 Ethernet Link 39 8 Line and Tunnel Settings 41 Line Settings 41 Line Statistics 41 Line Configuration 42 Line Command Mode 44 Tunnel Settings 46 Tunnel Statistics 47 Serial Settings 47 Packing Mode 49 Accept Mode 51 Connect Mode 54 Multiple Hosts 58 Host List Promotion 61 Disconnect Mode 61 Modem Emulation 63 Command Mode 63 EDS1100 2100 User Guide 4 Table of Contents 9 Terminal and Host Settings 67 Terminal Settings 67 Network Terminal Configuration 67 Line Terminal Configuration 68 Host Configuration 70 10 Services Settings 72 DNS Status and Cac
42. 3 2 TCP Fields continued Ack Limit Enter a number to limit how many packets get received before an ACK gets forced If there is a large amount of data to acknowledge an ACK gets forced If the sender TCP implementation waits for an ACK before sending more data even though the window is open setting the Ack Limit to 1 packet improves performance by forcing immediate acknowledgements Send Data The Send Data selection governs when data may be sent into the network The Standard implementation waits for an ACK before sending a packet less than the maximum length Select Expedited to send data whenever the window allows it 3 Click Submit IP To change the IP settings perform the following steps 1 Click Protocol Stack gt IP Figure 13 4 shows the page that displays Figure 13 4 IP Web Page EDS2100 EVOLUTION OS Powered by Evolution OS This page contains lower level IP TCP IP ICMP ARP Network Stack specific configuration items The Multicast Time To Live value P fills the Time To Live in the IP header Normally this value will be one so the packet will be blocked at the first router Set this value to Multicast Time to Live 3 hops greater than one to intentionally m propagate multicast packets to additional routers Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter the number of hops a multicast packet can complete before it is terminated as a Multicast Time to Live EDS1100 2
43. 4 6 Table 14 6 Import Lines from Single Line Settings Fields Filename Provide the name of the file on the EDS1100 2100 local to its file system that contains XCR data EDS1100 2100 User Guide 142 14 Advanced Settings Table 14 6 Import Lines from Single Line Settings Fields continued Lines to Import Whole Groups to Import EDS1100 2100 User Guide Select the line s whose settings you want to import Click the Select All link to select all the serial lines and the network lines Click the Clear All link clear all of the checkboxes By default all serial line instances are selected Select the configuration groups to import from the XML configuration record Note By default all groups are checked except those pertaining to the network configuration this is so that import will not break your network connectivity You may check or uncheck any group to include or omit that group from import To import all of the groups click the Select All but Networking link to import all groups To clear all the checkboxes click the Clear All link 143 15 Branding the EDS1100 2100 This chapter describes how to brand your EDS1100 or EDS2100 by using Web Manager and Command Line Interface CLI It contains the following sections Web Manager Customization Short and Long Name Customization Web Manager Customization Customize the Web Manager appearance by modifying index html and style css The style fonts c
44. 724910022023 255 255 255 255 0 LISTEN Tee o o 17219100 220 22 255 255 255 255 0 LISTEN tce o lo 17219100 220 10002 255 255 255 255 0 LISTEN Tee o 0 172 19 100 220 10001 255 255 255 255 0 LISTEN tee o 4 1724910022080 17219 10079 1463 ESTABLISHED Copyright Lantronix Inc 2007 2010 All rights reserved Ping To ping a remote device or computer perform the following steps 1 Click Diagnostics gt Ping Figure 13 12 shows the page that displays EDS 1100 2100 User Guide 120 13 Maintenance and Diagnostics Settings Figure 13 12 Ping Web Page EDS2100 Powered by Evolution OS LANTRONIX EVOLUTION OS Specify either a DNS Hostname or Hardware MIB I IP Sockets IP Aadrosswhen pngna a network host Additionally the Count Ping Traceroute DNS Lookup specifies the number of ping Memory Buffer Pools Processes parasia SACRE eT specifies how long to wait for a response for each ping packet sent Diagnostics Ping Host Count 3 Timeout 5 seconds Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 13 5 Table 13 5 Ping Fields Host Enter the IP address or host name for the EDS1100 2100 to ping Count Enter the number of ping packets EDS1100 2100 should attempt to send to the Host The default is 3 Timeout Enter the time in seconds for the EDS1100 2100 to wait for a response from the host b
45. CLI and Tunneling in Accept Mode These keys can be created elsewhere and uploaded to the SS H Se rve r H ost Keys device or automatically generated on the device Upload Keys If uploading existing keys take care to ensure the Private Key will not be compromised in transit This implies Private Key the data is uploaded over some kind Public Key ie secure private network WARNING When generating new Key Type ORSA ODSA Keys using a larger Bit Size will result in a longer key generation time Tests on this hardware have shown it can take upwards of 10 seconds for a 512 bit RSA Key Create New Keys 15 seconds for a 768 bit RSA Key 1 minute for a 1024 bit RSA key 1 minute for a 512 bit DSA Key Key Type ORSA ODSA 2 minutes for a 768 bit DSA Key Bit Size O512 O768 1024 3 minutes for a 1024 bit DSA key ea Note that some SSH Clients require RSA Host Keys to be at least 1024 bits in size Current Configuration Public RSA Key No RSA Key Configured Public DSA Key No DSA Key Configured Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 11 1 Table 11 1 SSH Server Host Keys Fields Upload Keys Private Key Enter the path and name of the existing private key you want to upload or use the Browse button to select the key Be sure the private key will not be compromised in transit This implies the data is uploaded over s
46. DS2100 Pinout Configuration for RS 232 RX DTR in out RTS out Figure 4 3 shows the pinout configuration for RS 422 4 wire Figure 4 3 EDS2100 Pinout Configuration for RS 422 4 wire RX Figure 4 4 shows the pinout configuration for RS 485 2 wire Figure 4 4 EDS2100 Pinout Configuration for RS 485 2 wire TX RX GND TX RX Back Panel On the EDS2100 back panel there is a power plug reset button and an RJ45 10 100 Ethernet port as shown in Figure 4 5 Figure 4 5 EDS2100 Ethernet RJ45 Port Reset Button and Power Plug RJ45 Ethernet Port Power Plug Reset Button EDS1100 2100 User Guide 26 4 Installation of EDS2100 The Ethernet port has two LEDs that indicate the status of the connection as follows Left LED Green ON 100Mbps Link Green Blink 100Mbps Activity Orange ON 10Mbps Link Orange Blink 10Mbps Activity Right LED Green ON Full Duplex OFF Half Duplex The Ethernet port can connect to an Ethernet 10 Mbps or Fast Ethernet 100 Mbps network Reset Button You can reset the EDS2100 to factory defaults including clearing the network settings The IP address gateway and netmask are set to 00s To reset the unit to factory defaults perform the following steps 1 Place the end of a paper clip or similar object into the reset opening and press for a minimum of 3 seconds 2 Remove the paper clip to release the button The firmware restores
47. Data Bits 8 m 8 The driver forwards received serial bytes after the Gap Timer delay Stop Bits 11 55 1 from the last character received By default the delay is four character Flow Control None v None periods at the current baud rate gt minimum 1 ms Xon Char lt control gt Q The driver will also forward received characters after Xoff Char lt control gt S Threshold bytes have been received Gap Timer lt None gt milliseconds Threshold 56 bytes Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 8 3 Table 8 3 Line 1 Configuration Fields Name Enter a name for the line Interface Select the interface type from the drop down menu The default is RS232 State Indicates whether the current line is enabled To change the status select Enabled or Disabled from the drop down menu Protocol Select the protocol from the drop down menu The default is Tunnel Note All protocols work in Connect and Accept Mode except the LPD or Tunnel protocol option which is supported only in Accept Mode Baud Rate Select the baud rate from the drop down menu The default is 9600 Parity Select the parity from the drop down menu The default is None Data Bits Select the number of data bits from the drop down menu The default is 8 Stop Bits Select the number of stop bits from the drop down menu The default is 1 EDS1100 2100 User Guide 43 8 Line and Tunne
48. EDS1100 2100 replaces the last segment of the IP address with the configured Connect Mode remote station address It is possible to use the last two segments also if they are under 255 characters For example if the address is 100 255 15 5 entering ATDT 16 6 results in 100 255 16 6 When using ATDT and ATDP enter 0 0 0 0 to switch to the Command Line Interface CLI Once the CLI is exited by using the CLI exit command the EDS1100 2100 reverts to modem emulation mode By default the characters are not passed through the connection Turn on this capability using the modem echo pluses command To configure modem emulation perform the following steps 1 Select Tunnel 1 gt Modem Emulation Figure 8 23 shows the page that displays EDS1100 2100 User Guide 64 8 Line and Tunnel Settings Figure 8 23 Tunnel 1 Modem Emulation Web Page EDS2100 Powered by Evolution OS LANTRONIX EVOLUTION OS Tunnel connections can be initiated and accepted using Modem 4T commands incoming from the Serial Line Tunnel1 Tunnel 2 Statistics Accept Mode Serial Settings Connect Mode Modem Emulation Packing Mode Disconnect Mode Tunnel 1 Modem Emulation Configuration Status Echo Pluses O Enabled Disabled Echo Commands Enabled Disabled Enabled Verbose Response Enabled O Disabled Enabled Response Type keat Text iar O Enabled Disabled Disabled Disabled Incoming Connection Automat
49. HCP Primary ONS 172181100 SS Linet R5232 9600 None 8 1 None R5232 9600 None 8 1 None Disabled Disabled Copyright Lantronix Inc 2007 2010 All rights reserved Web Manager Figure 6 2 shows the components of a typical Web Manager page EDS1100 2100 User Guide 33 Figure 6 2 Components of a Typical Web Manager Page Heer EDS2100 Powered by Evolution OS Links to SubPages Line 1 Line 2 Statistics Configuration Command Mode Line 1 Command Mode O Always Mode O Use Serial String O Disabled Menu Bar Wait Time milliseconds Serial String Text O Binary Echo Serial String O Yes ONo Text OBinary Configuration amp Status Area Current Configuration Mode Disabled Inactive Wait Time 5000 milliseconds Serial String lt None gt Echo Serial String On Signon Message lt None gt Footer gt Copyright Lantronix Inc 2007 2010 All rights reserved 6 Configuration Using Web Manager LANTRONIX EVOLUTION OS The Wait Time specifies the amount of time to wat during boot time for the Serial String This timer starts right after the Signon Message has been sent on the Serial Line The Serial String is a string of bytes thst must be read on the Serial Line during boot tme in order to enable Command Mode t may The Signon Message is a siring of bytes that is sent on the Serial Line during boot time Information instructions and Help The Menu Bar orange alway
50. ICMP ARP Network Stack specific i configuration items The Send RSTs boolean is used to TC P turn on off sending of TCP RST messages The Ack Limit specifies how many packets must be received before an Send RSTs Enabled Disabled Mernetoreaein ihete is alarga Tii f amount of data to acknowledge an Ack Limit 3 packets ACK will be forced before this Send Data Standard O Expedited If the sender TCP implementation waits for an ACK before sending more data even though the window Current Statistics is open setting Ack Limit to 1 packet will improve performance by forcing immediate Total Out RSTs 11 acknowledgements Total In RSTs 12 The Send Data selection governs when data may be sent into the network The Standard implementation waits for an ACK before sending a packet less than the maximum length Select Expedited to send data whenever the window allows it Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 13 2 Table 13 2 TCP Fields Send RSTs Click Enabled to send RSTs or Disabled to stop sending RSTs TCP contains six control bits with one or more defined in each packet RST is one of the control bits The RST bit is responsible for telling the receiving TCP stack to end a connection immediately Caution Setting the RSTs may pose a security risk EDS1100 2100 User Guide 111 13 Maintenance and Diagnostics Settings Table 1
51. IP Address Table Definitions for IP Forwarding IP Net To Media Table IP Forward Group IP Forward Table ICMP Group TCP Group TCP Connection Table UDP Group UDP Table System Group Copyright Lantronix Inc 2007 2010 All rights reserved 2 Click any of the links to open the corresponding table and statistics Note For more information refer to the following Requests for Comments RFCs RFC 1213 MIB II definitions RFC 2011 Updated definitions for IP and ICMP e RFC 2012 Updated definitions for TCP e RFC 2013 Updated definitions for UDP e RFC 2096 Definitions for IP forwarding IP Sockets To display all open IP sockets perform the following steps 1 Click Diagnostics gt IP Sockets Figure 13 11 shows the page that displays EDS1100 2100 User Guide 119 Figure 13 11 IP Sockets Web Page 13 Maintenance and Diagnostics Settings EDS2100 Powered by Evolution OS LANTRONIX EVOLUTION OS This page lists all the currently open Hardware MIB II IP Sockets network sockets on the device Ping Traceroute DNS Lookup Memory Buffer Pools Processes IP Sockets UDP o 0 17249 100 220161 255 255 255 255 0 tcp o o 17249 400 220 21 255255 255 255 0 LISTEN uo o lo 17219100 220 69 255 255 255 255 0 tce o lo 172149100 220 80 255 255 255 255 0 LISTEN up o o 172 19 100 220 30718 255 255 255 255 0 Tee o o 1
52. L path info r Rirst line of request same as m U q lt version gt s Return status 83 10 Services Settings HTTP Authentication To configure HTTP authentication perform the following steps 1 Click HTTP gt Authentication Figure 10 9 shows the page that displays Figure 10 9 HTTP Authentication Web Page EDS2100 amon Powered by Evolution OS EVOLUTION OS The HTTP Server can be configured Statistics Configuration Authentication with many different authentication Se directives The authentication is hierarchical in that any URI can be a m given an authentication directive in HTTP Authentication order to override a parent URI authentication directive The URI must begin with to refer URI tothe filesystem The different AuthType values offer various levels of security O None O Basic O Digest From the least to most secure i i Hone OsSsSL O SSLBasic O SS8UDigest on ee Username Basic encodes passwords using Base64 Digest encodes passwords using MDS SSL page can only be accessed over SSL no password Current Configuration SSLBasic page can only be accessed over URI Delete SSL encodes passwords using Base64 SSLDigest AuthType Digest page can only be accessed over r SSL encodes passwords usini Users admin Delete a j 2 Realm p AuthType Password Realm config Note that SSL by itself does not require a password but all data
53. LANTRONIX EDS1100 2100 User Guide Part Number 900 567 Revision A March 2010 Copyright and Trademark 2010 Lantronix All rights reserved No part of the contents of this book may be transmitted or reproduced in any form or by any means without the written permission of Lantronix Printed in the United States of America Ethernet is a trademark of XEROX Corporation UNIX is a registered trademark of The Open Group Windows 95 Windows 98 Windows 2000 and Windows NT are trademarks of Microsoft Corp Netscape is a trademark of Netscape Communications Corporation Warranty For details on the Lantronix warranty replacement policy please go to our web site at www lantronix com support warranty Contacts Lantronix Corporate Headquarters 167 Technology Drive Irvine CA 92618 USA Toll Free 800 526 8766 Phone 949 453 3990 Fax 949 450 7249 Technical Support Online www lantronix com support Sales Offices For a current list of our domestic and international sales offices go to the Lantronix web site at www lantronix com about contact Disclaimer and Revisions The information in this guide may change without notice The manufacturer assumes no responsibility for any errors that may appear in this guide For the latest revision of this product document please check our online documentation at www lantronix com support documentation Compliance This product has been designed to comply with the limits for a Class A di
54. MAC Address will remain in the cache before being removed ARP Cache The ARP Cache can be manipulated manually by adding new entries and deleting existing ones Added entries are dynamic for test purposes only Copyright Lantronix Inc 2007 2010 All rights reserved 1 Enter the fields in Table 13 3 Table 13 3 ARP Web Page Fields ARP Timeout remains in the cache IP Address MAC Address Current State Remove All 2 Click Submit for ARP or click Add for ARP Cache Note EDS1100 2100 User Guide Enter hours minutes and seconds This is the maximum duration an address Enter the IP address for the ARP cache Enter the MAC address to add to the ARP cache Removes all entries in the ARP cache or click Remove in the specific table entry to remove that entry Both the IP and MAC addresses are required for the ARP cache 114 13 Maintenance and Diagnostics Settings IP Address Filter The IP address filter allows specified hosts and subnets to communicate with the EDS1100 2100 Note If using DHCP BOOTP ensure the DHCP BOOTP server IP address is in the list To configure the IP address filter perform the following steps 1 Click the IP Address Filter on the Main Menu Figure 13 7 shows the page that displays Figure 13 7 IP Address Filter Web Page EDS2100 LANTRONIX Powered by Evolution OS EVOLUTION OS The IP Address Filter table contains all the IP Addresses and Subnets IP Address Filter
55. Port 10002 Tunnel 2 gt gt 2 Product Information Label The bottom of each unit not shown has a product information label The label contains the following information Product ID name Product description Bar code Part number Serial number which is the hardware address also referred to as Ethernet or MAC address 6 Agency certifications EDS1100 2100 User Guide 19 99 Installation of EDS1100 This chapter describes how to install the EDS1 100 device server It contains the following sections Package Contents User Supplied Items Hardware Components Installing the EDS1100 Package Contents The EDS1100 package includes the following items One EDS1100 device One DB25M to DB9F serial cable Power Cube 100 240 VAC with international adapters Power cord restraint Printed Quick Start Guide User Supplied Items To complete your installation you need the following items RS 232 422 485 serial device that requires network connectivity A serial cable as in the following list for your serial device One end of the cable must have a male DB25 connector for the serial port A null modem cable to connect the serial port to a DCE device A straight through modem cable such as the one supplied in the package to connect the serial port to a DTE device An available connection to your Ethernet network and an Ethernet cable
56. S1100 2100 Group Configurable field Enter a group to categorize the EDS1100 2100 Double click the field type in the value and press Enter to complete This group name is local to this PC and is not visible on other PCs or laptops using Devicelnstaller Comments Configurable field Enter comments for the EDS1100 2100 Double click the field type in the value and press Enter to complete This description or comment is local to this PC and is not visible on other PCs or laptops using Devicelnstaller EDS1100 2100 User Guide 30 5 Using Devicelnstaller Table 5 1 Current Settings and Description continued Device Family Type ID Hardware Address Firmware Version Extended Firmware Version Online Status IP Address IP Address was Obtained Subnet Mask Gateway Number of Ports Supports Configurable Pins Supports Email Triggers Telnet Enabled Telnet Port Web Enabled Web Port Firmware Upgradeable EDS1100 2100 User Guide Shows the EDS1100 2100 device family type as EDS Shows the device type as either EDS1100 or 2100 Shows the EDS1100 or 2100 ID embedded within the unit Shows the EDS1100 2100 hardware MAC address Shows the firmware currently installed on the EDS1100 2100 Provides additional information on the firmware version Shows the EDS1100 2100 status as Online Offline Unreachable the EDS1100 2100 is on a different subnet or Busy the EDS1100 2100 is currently performing a task
57. SL certificate is configured Select to enable or disable the following protocols SSL3 Secure Sockets Layer version 3 TLS1 0 Transport Layer Security version 1 0 TLS 1 0 is the successor of SSL3 as defined by the IETF TLS1 1 Transport Layer Security version 1 1 The protocols are enabled by default Note A server certificate and associated private key needs to be installed in the SSL configuration section to use HTTPS Enter the maximum time for the HTTP server to wait when receiving a request This prevents Denial of Service DoS attacks The default is 10 seconds Enter the maximum number of bytes the HTTP server accepts when receiving a request The default is 40 kB this prevents DoS attacks Select On to enable HTTP server logging Sets the maximum number of HTTP server log entries Only the last Max Log Entries are cached and viewable Set the log format string for the HTTP server Follow these Log Format rules a Remote IP address could be a proxy b Bytes sent excluding headers B Bytes sent excluding headers 0 h Remote host same as a h i Header contents from request h header string m Request method p Ephemeral local port value used for request q Query string prepend with or empty t Timestamp HH MM SS same as Apache H M S t or T t u Remote user could be bogus for 401 status U UR
58. To configure a line to support an attached terminal perform the following steps 1 Click Terminal on the Main Menu Figure 9 3 shows the page that displays EDS1100 2100 User Guide 68 Figure 9 3 Terminal on Line 1 Configuration Web Page 9 Terminal and Host Settings EDS2100 Powered by Evolution OS Network Line 1 Line 2 Configuration Terminal Type UNKNOWN Login Connect Menu Enabled Disabled Exit Connect Menu O Enabled Disabled Terminal on Line 1 Configuration Send Break lt None gt Break Duration 500 milliseconds Echo Enabled O Disabled LANTRONIX EVOLUTION OS The text in Terminal Type will be sent to a host via IAC Selecting Login Connect Menu will bring the user to a menu rather than to the command line interface CLI upon logging in The menu displays hosts and named lines Selecting Exit Connect Menu allows a user to reach the command line interface CLI from the Connect Menu When the Send Break control character is received from the network on its way to a Serial Line it will not be sent to the Line instead the line output will be forced inactive Example setting controls Y Blank the field to set to None The Break Duration specifies how long the spacing condition will be placed on the line when a break is sent Echo applies only to Connect Mode Telnet connections not to Accept Mode Only disable Echo if
59. Use the Text List string to import specific instances of a group The textual format of this string is lt g gt i gt sga irs Each group name g gt is followed by colon and the instance value lt i gt and each lt g gt lt i gt value is separated by a semi colon If a group has no instance then only the group name lt g gt should be specified Copyright Lantronix Inc 2007 2010 All rights reserved 2 Click Configuration from External file Figure 14 8 shows the page that displays EDS1100 2100 User Guide 138 Figure 14 8 Import Configuration from External File Web Page 14 Advanced Settings EDS2100 Powered by Evolution OS Export Configuration Export Status Import Configuration XML Import Configuration Import configuration from entire external XCR file LANTRONIX EVOLUTION OS This page is used for importing system configuration from an XML tile Import Configuration from External file picks up all the settings from the external file Import Configuration from Filesystem picks up settings from the selected Groups Lines and Instances Import Line s from single line Settings on the Filesystem copies lines settings from an the input file containing only one Line instance to all of the selected Lines When selecting a Whole Groups to Import item all instances of that group will be imported Notice that by default all groups
60. VOLUTION OS This page shows the basic Hardware MIB II IP Sockets oo information for the Ping Traceroute DNS Lookup Memory Buffer Pools Processes Diagnostics Hardware Current Configuration CPU Type DSTniFX CPU Speed 166 666666 MHz CPU Instruction Cache 4 000 Kbytes 4096 bytes CPU Data Cache 4 000 Kbytes 4096 bytes RAM Size _ 8 000000 Mbytes 8368608 bytes Flash Size 8 000000 Mbytes 8388608 bytes Flash Sector Size 64 000 Kbytes 65536 bytes Flash Sector Count 128 i l Flash ID ox20 Copyright Lantronix Inc 2007 2010 All rights reserved The MIB II Network Statistics page shows the available SNMP MIBs To display MIB II statistics perform the following steps 1 Click Diagnostics gt MIB II at the top of the page Figure 13 10 shows the page that displays EDS1100 2100 User Guide 118 13 Maintenance and Diagnostics Settings Figure 13 10 MIB II Web Page EDS2100 LANTRONIX Y Powered by Evolution OS EVOLUTION OS ji Here you can view the various Hardware MIB I IP Sockets SNMP served MIBs available on the device The details for these MIBs Ping Traceroute DNS Lookup can be found in Memory Buffer Pools Processes RFC 1213 Original MIB II definitions RFC 2011 H H dated definitions for IP and ICMP MIB II Network Statistics aa Updated definitions for TCP Interface Group RFC 2013 Interface Table Updated definitions for UDP IP Group RFC 2096
61. able on the Windows operating systems For example 1 On the Windows Start menu click Programs gt Accessories gt Calculator 2 On the View menu select Scientific The scientific calculator appears 3 Click Bin Binary and type the number you want to convert Figure B 2 Scientific Calculator Per Edit view Help 1001100 Hex Dec C Oct Bin Ca ee ea ee E K A a ff of JE 4 Click Hex The hexadecimal value appears Figure B 3 Hex Display Calculator S x Edit view Help 4C C Bin EDS1100 2100 User Guide 149 C Compliance The following meet the ISO IEC Guide 17050 1 17050 2 and EN 45014 compliances Manufacturer Name amp Address Lantronix Inc 167 Technology Irvine CA 92618 USA Product Name Model EDS1100 2100 Device Server Conforms to the following standards or other normative documents Radiated and conducted emissions FCC Part 15 Subpart B Industry Canada ICES 003 Issue 4 2004 CISPR 22 2005 Information Technology Equipment VCCI V 3 2009 04 AS NZS CISPR 22 2006 EN55022 2006 EN61000 3 2 2006 EN61000 3 3 1995 A1 2001 A2 2005 Immunity EN55024 1998 A1 2001 A2 2003 Direct amp Indirect ESD EN61000 4 2 1995 A2 2001 RF Electromagnetic Field Immunity EN61000 4 3 2006 A1 2008 Electrical Fast Transient Burst Immunity EN61000 4 4 2004 Surge Immunity EN61000 4 5 2006 RF Commo
62. ace upon the next reboot 3 Click Submit EDS1100 2100 User Guide 128 14 Advanced Settings This chapter describes advanced configuration of Email CLI and XML It contains the following sections Email Statistics e Email Configuration Command Line Interface e XML Configuration Email Statistics The Email Statistics web page displays when you click Email from the Main Menu It shows statistics and current usage information about the email subsystem When you transmit an email the transimission to the SMTP server gets logged and displayed in the bottom portion of the page To view the statistics perform the following steps 1 Click Email on the Main Menu Figure 14 1 shows the page that displays Figure 14 1 Email Statistics Web Page EDS2100 Powered by Evolution OS _Email1 Email2 Email3 Email 4 Statistics Configuration Send Email Email 1 Statistics Sent successfully w retries o o Not sent due to excessive errors 0 In transmission queue 0 Log Clear No log data available LANTRONIX EVOLUTION OS This page displays various statistics and current usage information of the Email subsystem Mhen transmitting an Email message the entire conversation with the SMTP server is logged and displayed here This is a scrolling log in that only the last 100 lines are cached and viewable Copyright Lantronix Inc 2007 2010 All rights reserved EDS1100
63. ains the following sections Line Settings e Tunnel Settings Line Settings You can view statistics and configure the serial interfaces referred to as lines by using the Line web page When you click Line from the Main Menu Line 1 fields display To go to Line 2 click the Line 2 button The following sub menus you can use Line Statistics Displays statistics for the two lines For example the bytes received and transmitted breaks flow control parity errors etc Line Configuration Enables the change of the name interface protocol baud rates and parity etc Line Command Mode Enables the types of modes wait time serial strings signon message etc Line Statistics To display the line statistics perform the following steps 1 Click Line on the Main Menu Figure 8 1 shows the page that displays EDS1100 2100 User Guide 41 Figure 8 1 Line 1 Statistics Web Page EDS2100 Powered by Evolution 0S Line 1 Line2 Statistics Configuration Command Mode Line 1 Statistics Receiver Transmitter Bytes 0 0 Breaks 0 i Flow control NA N A Parity Errors 0 Framing Errors 0 Overrun Errors 0 No Rx Buffer Errors 0 Queued Receive Bytes 0 Queued Transmit Bytes 0 CTS input g not asserted RTS output asserted DSR input not asserted DTR output not asserted 8 Line and Tunnel Settings LANTRONIX EVOLUTION OS This page displays the current Status and
64. ble Echo if your terminal echoes in which case you will see double of each character typed 1 Click Submit Host Configuration You can configure a remote host by using the Host web page To configure a remote host perform the following steps 1 Click Host gt Host 1 or Host 2 Figure 9 5 shows the page that displays Figure 9 5 Host Configuration Web Page E D S 2 1 0 0 LANTRONIX Powered by Evolution OS EVOLUTION OS The text in Name will appear in the Host 1 Host 2 Login Connect Menu if enabled Set it blank to leave it out of the menu Configuration If Protocol is SSH either supply a value in SSH Username to select a pre configured Username i i Password Key in SSH Client Host 1 Configuration Users or leave it blank to be prompted for Username and Password at connect time The Remote Address may be either an IP address or a DNS Protocol Telnet OSSH address It specifies the remote Remote Address host to connect to The Remote Port specifies the Remote Port 0 port to connect to on the remote host Copyright Lantronix Inc 2007 2010 All rights reserved EDS1100 2100 User Guide 70 9 Terminal and Host Settings 2 Enter or modify the fields in Table 9 6 Table 9 6 Host Configuration Fields Name Protocol SSH Username Remote Address Remote Port 3 Click Submit EDS1100 2100 User Guide Enter a name for the host This name appears on the Login Connect M
65. can export an existing configuration for use on other EDS1100 2100s or import a saved configuration file On the XML Export Configuration web page you can export the current system configuration in XML format The generated XML file can be imported later to restore a configuration It can also be modified and imported to update the configuration on this EDS1100 2100 unit or another The XML data can be exported to the browser window or to a file on the file system By default all groups are selected except those pertaining to the network configuration Ethernet and WLAN This is so that if you later import the entire XML configuration it will not break your network connectivity You may select or clear the checkbox for any group In the XML Import System Configuration Page you can import a system configuration from an XML file The XML data can be imported from a file on the file system or uploaded using HTTP The groups to import can be specified by toggling the respective group item or entering a filter string When toggling a group item all instances of that group will be imported The filter string can be used to import specific instances of a group The text format of this string is KGP ISS pK GS isi Sh as For example if you only wanted to import the line 1 setting from an XCR use a filter string of line 1 Each group name lt g gt is followed by a colon and the instance value lt i gt Each lt g gt lt i gt value is separate
66. ce See also the Line page Statistics Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Serial Settings Line Settings R5232 9600 None 8 1 None Protocol Tunnel Buffer Size 2048 bytes O Unasserted DTR O TruPort Asserted while connected O Continuously asserted Copyright Lantronix Inc 2007 2010 All rights reserved 2 View or modify the fields in Table 8 8 Table 8 8 Tunnel 1 Serial Settings Fields Line Settings Display only field Current serial settings for the line Protocol Display only field The protocol being used for the tunnel Buffer Size Enter the buffer size used for the tunneling of serial data received Requires reboot to take effect DTR Select when to assert DTR Unasserted TruPort Asserted whenever a connect mode or an accept mode tunnel connection is active with the Telnet Protocol RFC2217 The remote DSR is asserted Asserted while connected Asserted whenever a connect or an accept mode tunnel connection is active Continuously asserted Asserted regardless of the status of a tunnel connection EDS1100 2100 User Guide 48 8 Line and Tunnel Settings 3 Click Submit Packing Mode Packing Mode takes data from the serial port packs it together and sends over the network Packing can be configured based on threshold size in bytes or timeout milliseconds Size is set by modifying the threshold
67. cify different configuration settings for each LPD Statistics To view LPD statistics perform the following steps 1 Click LPD on the Main Menu Figure 10 11 shows the page that displays Figure 10 11 LPD Web Page EDS2100 Powered by Evolution OS LPD1 LPD 2 Statistics Configuration Print Test Page LANTRONIX EVOLUTION OS This page displays various statistics and current usage information of the LPD subsystem When a document is printed the remote client information is displayed as well as the number of Last Client LPD 1 Statistics Jobs Printed 0 Bytes Printed 0 Current Client No device is connected No device has connected print jobs printed since boot up and the total number of bytes printed If a client is printing a Kill link is displayed next to the client information The link will force the LPD server to kill abort any current active print jobs Copyright Lantronix Inc 2007 2010 All rights reserved LPD Configuration To configure LPD perform the following steps 1 Click LPD gt Configuration Figure 10 12 shows the page that displays EDS1100 2100 User Guide 87 10 Services Settings Figure 10 12 LPD Configuration Web Page EDS2100 Powered by Evolution OS Statistics Configuration Print Test Page Enabling Binary will pass the entire LANTRONIX EVOLUTION OS Enabling Banner will force the LPD 1 LPD 2 bann
68. ct Enabled to enable the TFTP server Allow TFTP File Select whether to allow the creation of new files stored on the TFTP server Creation Allow Firmware Update Specifies whether or not the TFTP Server is allowed to accept a firmware update for the device An attempt to update firmware is recognized based on the name of the file Note TFTP cannot authenticate the client so the device is open to malicious updates 3 Click Submit Syslog In the Syslog web page you can configure settings and view statistics and status To configure the Syslog perform the following steps Note The Syslog file gets saved to IRAM and gets discarded when the EDS1100 2100 reboots Saving the Syslog file to a server that supports remote logging services see RFC 3164 allows the administrator to save the complete Syslog history The default port is 514 1 Click Syslog on the Main Menu Figure 10 6 shows the page that displays EDS1100 2100 User Guide 79 10 Services Settings Figure 10 6 Syslog Web Page EDS2100 Powered by Evolution OS LANTRONIX EVOLUTION OS This page displays the current configuration and statistics for Sys l og Syslog The Severity Log Level field is used to specify which level of Configuration system message should be logged A to the Syslog Host This setting State O Enabled Disabled applies to all syslog facilities None Host shuts off logging Debug enables ost all logging Emerge
69. d with a semicolon If a group has no instance specify the group name lt g gt only EDS1100 2100 User Guide 134 14 Advanced Settings XML Export Configuration To export a system configuration record perform the following steps 1 Click XML on the Main Menu Figure 14 5 shows the page that displays Figure 14 5 XML Export Configuration Web Page EDS21 00 LANTRONIX Powered by Evolution OS EVOLUTION OS This page is used for exporting the Export Configuration Export Status Import Configuration Current system configuration in XML format as XCR records The generated XML file can be imported at a later time to restore the XML Export Configuration configuration Caution The http authentication uri group must be exported with Export to browser export secrets enabled if it is to be used to later restore the Export to local file configuration The exported XML file can be Export secrets use only with extreme caution modified and imported to update the configuration on this device or Lines to Export Clear All Select All another The XML data can be exported to v 1 M2 network the browser window or to a file on the filesystem Groups to Export Clear All Select All but Networking Caution Only export secrets over a secure connection and make v arp M cli sure that the data goes only to ing N n sec
70. duals e Provide the ability to run popular M2M protocols over a secure SSH or SSL connection In addition to keeping data safe and accessible the EDS1100 2100 has robust defenses to hostile Internet attacks such as denial of service DoS which can be used to take down the network Moreover the EDS1100 2100 cannot be used to bring down other devices on the network EDS1100 2100 User Guide 17 2 Overview You can use the EDS1100 2100 with the Lantronix Secure Com Port Redirector SCPR to encrypt COM port based communications between PCs and virtually any electronic device SCPR is a Windows application that creates a secure communications path over a network between the computer and serial based devices that are traditionally controlled via a COM port With SCPR installed at each computer computers that were formerly hard wired by serial cabling for security purposes or to accommodate applications that only understood serial data can instead communicate over an Ethernet network or the Internet Terminal Server Device Management Remote offices can have routers PBXs servers and other networking equipment that require remote management from the corporate facility The EDS1100 2100 easily attaches to the serial ports on a server Private Branch Exchange PBX or other networking equipment to deliver central remote monitoring and management capability Troubleshooting Capabilities The EDS1100 2100 offers a comprehensive diagnostic
71. e then VIP Accept Mode requests from a ManageLinx device will be accepted VIP Statistics To view the VIP statistics perform the following steps 1 Click VIP from the Main Menu Figure 12 1 shows the page that displays Figure 12 1 VIP Statistics Web Page EDS2100 LANTRONIX Powered by Evolution OS EVOLUTION OS l Virtual IP VIP uses a conduit to isti ti communicate with a Device Statistical Configure seal Services Manager DSM The conduit carries multiple simultaneous YIP sessions Virtual IP VIP Statistics E EEE conduit is up With VIP enabled the DSM IP Address conduit is kept up if possible even if no YIP session is active If your Local Dna ID conduit does not come up you may m need to go to your DSM to create a Tunnel User bootstrap file then import it as Tunnel Port List XML Current Tunnel o Conduit Uptime shows the Port elapsed time that the conduit has remained up Conduit Status Down Time of Last Replication is the Conduit Uptime 0 days 00 00 00 time as seen on the DSM that VIP configuration data last changed dime of Last Config Hame is the name of this Replication device as seen on the DSM Config Name Hetwork Interfaces is the list of Network defined VIP names from the DSM A Interfaces lt None gt VIP name may be used under Tunnel Connect Mode for a Host by enabling VIP for that host and providing the VIP name Copyright
72. e number of times the device has been rebooted since the factory defaults were last loaded The resulting HH MM S is the time since the device booted up This somewhat cryptic scheme is used because no Real Time Clock is available The RSS Feed is a scrolling feed in that only the last Max Entries entries are cached and viewable Simply register the RSS Feed within your favorite RSS aggregator and you will automatically be notified of any configuration changes that occur Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 10 8 Table 10 8 RSS Fields RSS Feed Select On to enable RSS feeds to an RSS publisher Persistent Select On to enable the RSS feed to be written to a file cfg_log txt and to be available across reboots Max Entries Sets the maximum number of log entries Only the last Max Entries are cached and viewable 3 Click Submit Note You can view and clear settings in the Current Status table by clicking View or Clear EDS1100 2100 User Guide 86 LPD 10 Services Settings The EDS1100 2100 acts as a print server if a printer gets connected to one of its serial ports Clicking the Line Printer Daemon LPD link in the Main Menu displays the LPD web page The LPD web page has three sub menus for viewing print queue statistics changing print queue configuration and printing a test page Because the LPD lines operate independently you can spe
73. e selected Lines When selecting a Whole Groups to Import item all instances of that group will be imported Notice that by default all groups are checked except some pertaining to the network configuration this is so that import will not break your network connectivity You may check or uncheck any group to include or omit that group from import Selection of Lines to Import filters instances to be imported in the line Ipd ppp serial tunnel and terminal groups This affects both Whole Groups to Import and Text List selections Use the Text List string to import specific instances of a group The textual format of this string is gr s lt i gt a aE a Each group name lt g gt is followed by a colon and the instance value lt i gt and each lt g gt lt i gt value is separated by a semi colon If a group has no instance then only the group name lt g gt should be specified Copyright Lantronix Inc 2007 2010 All rights reserved 6 Enter the fields shown in Table 14 5 Table 14 5 Import Configuration from Filesystem Fields Filename contains XCR data EDS1100 2100 User Guide Enter the name of the file on the EDS1100 2100 local to its filesystem that 140 14 Advanced Settings Table 14 5 Import Configuration from Filesystem Fields continued Lines to Import Select the lines or network whose settings you want to import Click the Select All link to select all the serial li
74. e 142 EDS1100 2100 User Guide 8 List of Figures Figure 15 1 EDS System Web Page 145 Figure 16 1 System Web Page 146 Figure B 2 Scientific Calculator 149 Figure B 3 Hex Display 149 EDS1100 2100 User Guide 9 List of Tables Table 1 1 Chapter Appendix and Summary 12 Table 1 2 Conventions Used in This Book 13 Table 3 1 EDS1100 LEDs and Descriptions 23 Table 4 1 EDS2100 LEDs and Descriptions 27 Table 5 1 Current Settings and Description 30 Table 6 3 Summary of Web Manager Pages 35 Table 7 3 Network 1 Interface Configuration Fields 38 Table 7 5 Network 1 eth0 Ethernet Link Fields 40 Table 8 3 Line 1 Configuration Fields 43 Table 8 5 Line 1 Command Mode Fields 45 Table 8 8 Tunnel 1 Serial Settings Fields 48 Table 8 11 Tunnel Packing Mode Timeout Fields 50 Table 8 13 Tunnel Packing Mode Send Character Fields 51 Table 8 15 Tunnel Accept Mode Fields 53 Table 8 17 Tunnel Connect Mode Fields 56 Table 8 22 Tunnel Disconnect Mode Fields 62 Table 8 1 Modem Emulation Commands and Descriptions 63 Table 8 24 Tunnel Modem Emulation Fields 65 Table 9 2 Terminal on Network Configuration Fields 68 Table 9 4 Terminal on Line 1 Configuration Fields 69 Table 9 6 Host Configuration Fields 71 Table 10 1 PPP Configuration Fields 75 Table 10 2 SNMP Fields 76 Table 10 3 FTP Fields 78 Table 10 4 TFTP Server Fields 79 Table 1
75. e address and port ATD lt Address Info gt Sets up a TCP connection A value of 0 begins a command line interface session ATO Switches to data mode if connection still exists Vice versa to EDS1100 2100 User Guide 63 8 Line and Tunnel Settings Table 8 1 Modem Emulation Commands and Descriptions continued ATEn Switches echo in Command Mode off 0 on 1 ATH Disconnects the network session ATI Shows modem information ATQn Quiet mode 0 enable results code 1 disable results code ATVn Verbose mode 0 numeric result codes 1 text result codes ATXn Command does nothing and returns OK status ATUn Accept unknown commands n value of 0 off n value of 1 on AT amp V Display current and saved settings AT amp F Reset settings in NVR to factory defaults AT amp W Save active settings to NVR ATZ Restores the current state from the setup settings ATS0 n Accept incoming connection N value of 0 Disable N value of 1 Connect automatically N value of 2 Connect with ATA command ATA Answer incoming connection if ATSO is 2 or greater A Repeat last valid command For commands that can take address information ATD ATDT ATDP the destination address can be specified by entering the IP Address or entering the IP Address and port number For example lt paddress gt lt port gt The port number cannot be entered on its own For ATDT and ATDP commands less than 255 characters the
76. e deleted before upload New Private Key Enter the path and name of the private key you want to upload or use the Browse button to select the private key The key needs to belong to the certificate entered above Note The format of the file must be PEM The file must start with KEY Read DSA instead of RSA in case of a DSA key Some Certificate Authorities add comments before and or after these lines Those need to be deleted before upload Upload Authority Authority One or more authority certificates are needed to verify a peer s Certificate identity It is used for SSL Tunneling These certificates do not require a private key Enter the path and name of the certificate you want to upload or use the Browse button to select the certificate RSA or DSA certificates with 512 to 1024 bit public keys are allowed Note The format of the file must be PEM The file must start with Some Certificate Authorities add comments before and or after these lines Those need to be deleted before upload Create New Self Signed Country 2 Letter Code Enter the 2 letter country code to be assigned to Certificate the new self signed certificate Examples US for United States and CA for Canada State Province Eniter the state or province to be assigned to the new self signed certificate Locality City Enter the city or locality to be assigned to the new self signed certificate Organization Enter the orga
77. e file and click Open Click Upload to install the firmware The device automatically reboots on the installation of new firmware Alternatively firmware can be updated by sending the file to the EDS1100 2100 over a FTP or TFTP connection EDS1100 2100 User Guide 146 A Technical Support If you are unable to resolve an issue by using the information in this user guide please contact Technical Support at the following web site or phone numbers Technical Support US Check our online knowledge base or send a question to Technical Support at http Awww lantronix com support Technical Support Europe Middle East Africa Phone 33 13 930 4172 Email eu_techsupp lantronix com or eu_support lantronix com Firmware downloads FAQs and the most up to date documentation are available at http Awww lantronix com support When you report a problem please provide the following information Your name and your company name address and phone number Lantronix model number Lantronix serial number Firmware version on the first screen shown when you Telnet to the device and type show Description of the problem gt o Status of the unit when the problem occurred please try to include information on user and network activity at the time of the problem e Additionally it may be useful to export and submit the XML Configuration and XML Status files EDS1100 2100 User Guide 147 B Binary to Hexadecimal Con
78. e for the XML configuration record Export secrets Only use this with extreme caution If selected secret password and key information will be exported Use only with a secure link and save only in secure locations Lines to Export Select the instances you want to export in the line LPD PPP tunnel and terminal groups Groups to Export Check the configuration groups that are to be exported to the XML configuration record 3 Click Export The groups display if exporting to the browser If exporting to the file system the EDS1100 2100 requests a filename for the XML configuration record Export Status To export system status in XML format perform the following steps 1 Click XML gt Export Status Figure 14 6 shows the page that displays EDS1100 2100 User Guide 136 14 Advanced Settings Figure 14 6 XML Export Status Web Page EDS2100 owered by Evolution OS LANTRONIX EVOLUTION OS v 1 arp device email lag ftp http icmp ip line memory query port sessions syslog THR ERR telnet tunnel vip wI vi Copyright Lantronix Inc 2007 2010 All rights reserved Export Configuration Export Status Import Configuration current system status in XML ee format as XSR records The XML data can be exported to the browser window or to a file on XML Export Status ies Hiseystean Export to
79. e over a network without being aware of the devices which establish the network connection between them When any character is transmitted to the serial port it gets copied to the network connection Tunneling parameters are configured using the Web Manager see Tunnel Settings on page 46 or CLI Tunnel Menu refer to the EDS1100 2100 Command Reference for the full list of commands The EDS1100 2100 supports two connections simultaneously per serial port One of the connections is Connect Mode and the other connection is Accept Mode The connections on one serial port are separate from those on the other serial port e Connect Mode Makes an active connection The receiving node on the network must listen for the Connect Mode connection Connect Mode is disabled by default e Accept Mode Listens for a connection A node on the network initiates the connection Accept Mode is enabled by default e Disconnect Mode Defines how an open connection stops the forwarding of data The specific parameters to stop the connection are configurable Once a defined event occurs the EDS1100 2100 disconnects Accept Mode and Connect Mode connections on that port You can view statistics and configure two tunnels by using the Tunnel web page When you click Tunnel from the Main Menu Tunnel 1 fields display To go to Tunnel 2 click the Tunnel 2 button There are six sub menus that you can use as follows Statistics Displays statistics for t
80. e refreshed and redirected to the main status page after 30 seconds Note that the redirect will not work as expected if the IP Address of the device changes after reboot After setting the configuration back to the factory defaults the device will automatically be rebooted Be careful not to power off or reset ithe device while uploading new firmware Once the upload has completed and the new firmware has been verified and flashed the device will automatically be rebooted Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 13 8 Table 13 8 System Fields Reboot Device Click Reboot to reboot the system The system refreshes and redirects the browser to the home page EDS1100 2100 User Guide 127 13 Maintenance and Diagnostics Settings Table 13 8 System Fields continued Restore Factory Click Factory Defaults to restore the EDS1100 2100 to the original factory Defaults settings All configurations will be lost The EDS1100 2100 automatically reboots upon setting back to the defaults Upload New Firmware Click Browse to locate the firmware file location Click Upload to install the firmware on the EDS1100 2100 The device automatically reboots upon the installation of new firmware Name Enter a new Short Name and a Long Name if necessary The Short Name maximum is 32 characters The Long Name maximum is 64 characters Changes take pl
81. e srecna 103 CONFIQUIATIONS ooo ee eeeeeeeeeeeeeneeeeeneeeteneeeeeneeeeee 105 configure tunnels for VIP ooo ee eeeeseeeeseeeeeneeeeee 104 enable VIP ies cccscsne cyte aieseceeect peeve eee tava 104 importing a bootstrap file ieee 103 SUAliStGS cccciecccctescacts cipi poepoe nnani ects 104 web manager ACCESSING asic we aie iis 32 components of typical web page cee 33 CONPIQUIATION sieniin nnan si 32 device status web page ssssscssiiesereerirerrreerri 32 MAVIQATING MA ETE 34 MAVIQATION ic pcsicecccced neaka lads natai 34 summary Of WED pages ceeeeeeseeteeeeeeeneeteeeteaees 35 web based configuration 16 155 Index X xml 18 xml configuration 134 EDS1100 2100 User Guide 156
82. ease at regular intervals Note Overrides BOOTP the configured IP address network mask gateway hostname and domain IP Address Enter the EDS1100 2100 static IP address You may enter it alone in CIDR format or with an explicit mask The IP address is used if BOOTP and DHCP are both set to Off Changing this value requires you to reboot the EDS1100 2100 Note When DHCP is enabled the EDS1100 2100 tries to obtain an IP address from DHCP If it cannot AutolP a server less method of selecting the IP address when the DHCP server is unavailable assigns an address in the range of 169 254 xxx xxx Default Gateway Enter the IP address of the router for this network Or clear the field appears as lt None gt This address is only used for static IP address configuration Hostname Enter the EDS1100 2100 hostname It must begin with a letter continue with a sequence of letters numbers and or hyphens and end with a letter or number Domain Enter the domain name DHCP Client ID Enter the ID if the DHCP server uses a DHCP ID The DHCP server lease table shows IP addresses and MAC addresses for devices The lease table shows the Client ID in hexadecimal notation instead of the EDS1100 2100 MAC address Primary DNS IP address of the primary name server This entry is required if you choose to configure a DNS Domain Name Server Secondary DNS IP address of the secondary DNS 4 Click Submit Changes to the following
83. ed Hello Enter the SMTP server port number The default is port 25 Enter the local port to use for email alerts The default is a random port number Select the priority level for the email alert Configure this field to send an email based on a CP Group trigger The EDS1100 2100 sends an email when the specified Value matches the current Group s value 4 Test your configuration by sending an email by clicking Send Email Return to the Statistics web page for a log of the transmission Note You can delete stored settings in the Current Configuration table by clicking on the Delete link Command Line Interface The Command Line Interface CLI web page enables you to view statistics about the CLI servers listening on the Telnet and SSH ports and to configure CLI settings When a connection is active the following display Remote client information Number of bytes that have been sent and received Kill link to terminate the connection CLI Statistics To view the CLI Statistics perform the following steps 1 Click CLI on the Main Menu Figure 14 3 shows the page that displays EDS1100 2100 User Guide 131 14 Advanced Settings Figure 14 3 CLI Statistics Web Page EDS2100 Powered by Evolution OS LANTRONIX EVOLUTION OS Statistics Configuration Command Line Interface Statistics This page displays the current connection status of the CLI servers list
84. ed by Evolution OS EVOLUTION OS Statistics Browse Filesystem Browser X hte X test txt 15 bytes Create me Sd oer o A Upload File oe Copy File somes Sd TFTP Action OGet OPut Mode OASCII Binary ene canote Fe E e C Port E opyright Lantronix Inc 2007 2010 All rights reserved 2 Click a filename to view the contents EDS1100 2100 User Guide 109 13 Maintenance and Diagnostics Settings 3 Click the X next to a filename to delete the file and then you can delete the directory The directory has to be empty before you can delete it Note Changes apply to the current directory view To make changes within other folders click the folder or directory and then enter the parameters in the settings listed in Table 13 1 Files can be copied or moved by using the fields noted in Table 13 1 Table 13 1 Filesystem Browser Fields Create File Directory Upload File Copy File Source e Destination Move Source e Destination TFTP Action e Mode Local File Remote File e Host Port EDS 1100 2100 User Guide Enter the name of the file you want to create and then click Create Enter the name of the directory you want to create and then click Create Enter the path and name of the file you want to upload by means of HTTP S or use the Browse button to select the file and then click Upload Enter the location where the fi
85. efore timing out The default is 5 seconds 3 Click Submit Traceroute You can trace a packet route from the EDS1100 2100 to an Internet host showing how many hops the packet requires to reach the host and how long each hop takes If you visit a web site whose pages appear slowly you can use traceroute to determine where the longest delays are occurring To use traceroute perform the following steps 1 Click Diagnostics gt Traceroute Figure 13 13 shows the page that displays EDS1100 2100 User Guide 121 13 Maintenance and Diagnostics Settings Figure 13 13 Traceroute Web Page E D S 21 0 0 LANTRONIX Powered by Evolution OS EVOLUTION OS Specify either a DNS Hostname or Hardware MIB I IP Sockets Recaro Lea peur roses traceroute to a network host Ping Traceroute DNS Lookup Memory Buffer Pools Processes Diagnostics Traceroute Host Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 13 6 Table 13 6 Traceroute Fields Host Enter the IP address or DNS hostname This address is used to show the path between it and the EDS1100 2100 when issuing the traceroute command Count Enter the number of ping packets EDS1100 2100 should attempt to send to the Host The default is 3 attempts Timeout Enter the time in seconds for the EDS1100 2100 to wait for a response from the host before timing out The default is 5 seconds 3 Click Submit
86. em control signal Modem emulation To configure Accept Mode perform the following steps 1 Click Tunnel 1 gt Accept Mode Figure 8 14 shows the page displays EDS 1100 2100 User Guide 52 8 Line and Tunnel Settings Figure 8 14 Tunnel 1 Accept Mode Web Page EDS2100 LANTRONIX EVOLUTION OS Powered by Evolution OS Tunnel Accept Mode cortrols Tunnel1 Tunnel 2 how a tunnel behaves when a connection attempt originates from the network Statistics Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Mode Local Port Protocol TCP Keep Alive Flush Serial Block Serial Block Network Password Email on Connect Email on Disconnect Modem Emulation Tunnel 1 Accept Mode Always v 10001 TP M 45000 milliseconds O Enabled Disabled O Enabled Disabled O Enabled Disabled lt None gt lt None gt v lt None gt x Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 8 15 Table 8 15 Tunnel Accept Mode Fields Mode Select the method used to start a tunnel in Accept mode Choices are Disabled Do not accept an incoming connection e Always Accept an incoming connection default Any Character Start waiting for an incoming connection when any character is read on the serial line Start Character Start waiting for an incoming connection when the start character
87. emory PoE management thus eliminating any contention tor memory from the generic heap space Diagnostics Buffer pools Network Stack Buffer Pool Total Free Used MaxUsed Buffer Headers 512 510 2 11 Cluster Pool Size 2048 a o eOe 4 Ethernet Driver Buffer Pool Total Free Used MaxUsed Buffer Headers 2048 1984 64 70 Cluster Pool Size 2048 1024 960 64 69 Serial Driver Line 1 Buffer Pool Total Free Used MaxUsed Buffer Headers 12 6 6 6 Cluster Pool Size 1024 E p B G Serial Driver Line 2 Buffer Pool Total Free Used MaxUsed Buffer Headers 12 6 6 6 Cluster Pool Size 1024 B w ba e Copyright Lantronix Inc 2007 2010 All rights reserved Processes The Processes web page shows all the processes currently running on the system It shows the Process ID PID the percentage of total CPU cycles a process used within the last three seconds the total stack space available the maximum amount of stack space used by the process since it started and the process name To display the processes perform the following steps 1 Click Diagnostics gt Processes Figure 13 17 shows the page that displays EDS1100 2100 User Guide 125 Figure 13 17 Processes Web Page 13 Maintenance and Diagnostics Settings EDS2100 Powered by Evolution 0S Diagnostics Processes 4 s 8 000 g 0 00 10 0 00 Ea l 12 53 17 0 12 Ea l 2 21 22 23 0 24 26 00 0 28 0 00 i 60 0 0 Idle Task Timeout Server
88. ening on the Telnet and SSH ports When a connection is active the remote client information is displayed as well as the number of Telnet bytes that have been sent and aes poo received Additionally a Kill link will Sarvar Se aking be present which can be used to Last Connection lt None gt iterminate the connection Uptime 0 days 01 07 39 Total Bytes In 0 Total Bytes Out 0 Current Connections lt None gt SSH Server Status Waiting Last Connection lt None gt Uptime 0 days 01 07 39 Total Bytes In 0 Total Bytes Out io Current Connections lt None gt Copyright Lantronix Inc 2007 2010 All rights reserved CLI Configuration To configure the CLI perform the following steps 1 EDS1100 2100 User Guide Click CLI gt Configuration Figure 14 4 shows the page that displays 132 14 Advanced Settings Figure 14 4 CLI Configuration Web Page EDS2100 ro LANTRONIX Powered by Evolution OS EVOLUTION OS The Command Line Interface Statistics Configuration may be accessed via Telnet via SSH or via a serial line For the SSH server the SSH Server Command Line Interface ee e Configuration Login Password lt None gt Enable Level Password lt None gt Quit Connect Line lt control gt L o Inactivity Timeout 15 minutes Telnet State Enabled O Disabled Telnet Port 23 Telnet Max Sessions 3 SSH State Enabled
89. ent User Configuration You can configure SSH client settings for users SSH client known users are used by all applications that play the role of an SSH client specifically tunneling in Connect Mode Minimumally a password or key pair must be configured for a user The keys for public key authentication can be created on another device and uploaded to the EDS1100 2100 or automatically generated on the EDS1100 2100 If uploading existing keys be sure the private key does not get compromised in transit Upload the data over a secure private network If you are uploading a key ensure that it is not password protected To configure the SSH client users perform the following steps 1 Click SSH gt SSH Client Users Figure 11 4 shows the page that displays EDS1100 2100 User Guide 95 11 Security Settings Figure 11 4 SSH Client Users Web Page FDS2100 LANRONIX Powered by Evolution OS EVOLUTION OS The SSH Client Users are used by SSH Server Host Keys SSH Client Known Hosts ell applications thet pleythe role ct poe ee an SSH Client Specifically SSH Server Authorized Users SSH Client Users Tunneling in Connect Mode L At the very least a Password or Key Pair must be configured for a SSH Client Users user The keys for public key authentication can be created elsewhere and uploaded to the device or automatically generated Username on the device Password If uploading existing Keys take care to ensu
90. enu To leave a host out of the menu leave this field blank Select the protocol to use to connect to the host Choices are Telnet SSH Note SSH keys must be loaded or created on the SSH page for the SSH protocol to work Appears if you selected SSH as the protocol Enter a username to select a pre configured Username Password Key configured on the SSH Client Users page or leave it blank to be prompted for a username and password at connect time Enter an IP address for the host to which the XPort will connect Enter the port on the host to which the XPort will connect 71 10 Services Settings This chapter describes the available services and how to configure each It contains the following sections DNS Status and Cache PPP Configuration SNMP Configuration FIP TFTP Syslog HTTP RSS LPD DNS Status and Cache gt gt UM The primary and secondary domain name system DNS addresses come from the active interface The static addresses displayed on the Network Interface Configuration web page may be overridden by DHCP or BOOTP The DNS web page enables you to view the status and cache When a DNS name is resolved using a forward lookup the results get stored in the DNS cache temporarily The EDS1100 2100 checks the cache when performing forward lookups Each item in the cache eventually times out and gets removed automatically after a certain period or you can delete it manually
91. er a serial line Protocol Stack Lets you perform lower level network stack specific activities 111 Query Port Lets you change configuration settings for the query port 116 RSS Lets you change current Really Simple Syndication RSS 86 settings SNMP Lets you change the current Simple Network Management 76 Protocol SNMP configuration settings SSH Lets you change the configuration settings for SSH server host 91 EDS1100 2100 User Guide keys SSH server authorized users SSH client known hosts and SSH client users 35 6 Configuration Using Web Manager Table 6 3 Summary of Web Manager Pages continued SSL Syslog System Terminal TFTP Tunnel VIP XML EDS 1100 2100 User Guide Lets you upload an existing certificate or create a new self signed certificate Lets you specify the severity of events to log and the server and ports to which the syslog should be sent Lets you reboot the EDS1100 2100 restore factory defaults upload new firmware and change the EDS1100 2100 long and short names Lets you change current settings for a terminal Shows statistics and lets you change the current configuration for the Trivial File Transfer Protocol TFTP server Lets you change the current configuration settings for a tunnel Lets you configure Virtual IP addresses to be used in Tunnel Accept Mode and Tunnel Connect Mode Lets you export XML configuration and status records and import XML configurat
92. er page to be printed even if SS the incoming print job does not specify to do so file to the printer without removing LPD 1 Configuration any characters Disabled only valid ascii and control characters are passed all others are stripped Valid control characters include the SOJ String EOJ String Queue Name Copyright Lantronix Inc 2007 2010 All rights reserved WARNING Serial protocol is not LPD tab linefeed formfeed backspace and newline Enabling Formfeeds will force a Banner Enabled Disabled formfeed to be sent to the printer at the end of each print job Binary O Enabled Disabled Enabling Convert Newlines will convert single newlines and single Start of Job O Enabled Disabled EER returns into DOS style carriage return linefeed line Endoro O Enabled Disabled endings if carriage return and Formfeed OEnabled Disabled linefeed characters are already in Convert Newlines ithe correct DOS line ending order they will remain unchanged To send a Start Of Job SOJ or End Of Job EOJ string to the printer enter the appropriate string Text O Binary The SOJ and EOJ strings are limited to 100 characters each after possible conversion to binary The SOJ and EOF strings can be entered in Text or Binary form The Binary form allows square braces to enclose one or more character designations separated by co
93. ertificate You can build up a chain of intermediate authority certificates and the last certification will always be a trusted root certificate An authority that signs another certificates is also called a Certificate Authority CA The last in line is then the root CA VeriSign is a famous example of such a root CA Its certificate is often built into web browsers to allow verifying the identity of website servers which need to have certificates signed by VeriSign or another public CA Since obtaining a certificate signed by a CA that is managed by another company can be expensive it is possible to have your own CA Tools exist to generate self signed CA certificates or to sign other certificates A certificate request is a certificate that has not been signed and only contains the identifying information Signing it makes it a certificate A certificate is also used to sign any message transmitted to the peer to identify the originator and prevent tampering while transported When using HTTPS SSL Tunneling in Accept mode and or EAP TLS the EDS1100 2100 needs a personal certificate with a matching private key to identify itself and sign its messages When using SSL Tunneling in Connect mode and or EAP TLS EAP TTLS or PEAP the EDS1100 2100 needs the authority certificate that can authenticate users with which it wishes to communicate SSL RSA or DSA As mentioned above the certificates contain a public key Different key exchange methods
94. es how to install the EDS2100 device server It contains the following sections Package Contents User Supplied Items e Hardware Components Installing the EDS2100 Package Contents The EDS2100 package includes the following items One EDS2100 device One DB9F to DB9F serial null modem cable Power Cube 100 240 VAC with international adapters Power cord restraint Printed Quick Start Guide User Supplied Items To complete your installation you need the following items e RS 232 422 485 serial devices that require network connectivity A serial cable as listed below for each serial device One end of the cable must have a female DB9 connector for the serial port A null modem cable such as the one supplied in your EDS2100 package to connect the serial port to another DTE device A straight through modem cable to connect the serial port to a DCE device An available connection to your Ethernet network and an Ethernet cable A working power outlet if the unit will be powered from an AC outlet Hardware Components The EDS2100 has two male DB9 serial ports that support RS 232 422 485 Figure 4 1 shows the front of the device The default serial port settings are 9600 baud 8 bits no parity 1 stop bit no flow control Figure 4 1 EDS2100 Male DB9 DTE Serial Ports The RS 232 pinout configuration is shown in Figure 4 2 EDS1100 2100 User Guide 25 4 Installation of EDS2100 Figure 4 2 E
95. ewlines and carriage returns to DOS style line endings If Start of Job above is enabled enter the string to be sent to the printer at the beginning of a print job The limit is 100 characters Indicate whether the string is in text or binary format If End of Job above is enabled enter the string to send at the end of a print job The limit is 100 characters Indicate whether the string is in text or binary format To change the name of the print queue enter a new name The name cannot have white space in it and is limited to 31 characters The default is LPDQueuex for line number X 89 11 Security Settings The EDS1100 2100 supports Secure Shell SSH and Secure Sockets Layer SSL SSH is a network protocol for securely accessing a remote device SSH provides a secure encrypted communication channel between two hosts over a network It provides authentication and message integrity services Secure Sockets Layer SSL is a protocol that manages data transmissiong security over the Internet It uses digital certificates for authentication and cryptography against eavesdropping and tampering It provides encryption and message integrity services SSL is widely used for secure communication to a web server SSL uses certificates and private keys Note The EDS1100 2100 supports SSLv3 and its successors TLS1 0 and TLS1 1 An incoming SSIv2 connection attempt is answered with an SSIv3 response If the initiator also supports SSL
96. field When the number of bytes exceeds the threshold a packet is sent The timeout field is used to force a packet to be sent after a maximum time The packet is sent even if the threshold maximum is not reached When Send Character is configured there is an optional trailing character parameter which can be specified It can be a single printable character or a control character To configure the tunnel packing mode perform the following steps 1 Click Tunnel gt Tunnel 1 gt Packing Mode Figure 8 12 shows the page that displays Figure 8 9 Tunnel 1 Packing Mode Web Page EDS2100 LANTRONK Powered by Evolution OS EVOLUTION OS Ahen Tunneling instead of sending Tunnel1 Tunnel 2 data on the network immediately after being read on the Serial Line the data can be Packed queued Statistics Serial Settings Packing Mode and sent in larger chunks Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Packing Mode Disable Mode O Timeout O Send Character Copyright Lantronix Inc 2007 2010 All rights reserved 2 Click Timeout Figure 8 12 shows the page that displays EDS1100 2100 User Guide 49 8 Line and Tunnel Settings Figure 8 10 Tunnel 1 Packing Mode Timeout EDS2100 ron Powered by Evolution OS EVOLUTION OS When Tunneling instead of sending Tunnel 1 Tunnel 2 data on the network immediately after being read on the Serial Line the data can be Packed queued
97. form or Local IP Address lt None gt with an explicit mask 192 168 1 1 default mask Peer IP Address lt None gt 192 168 1 1 24 CIDR 192 168 1 1 255 255 255 0 explicit ete None OPAP OCHAP mask Authentication Mode OMS CHAP MS CHAPV2 The Peer IP Address is the IP Address that will be assigned to the peer if asked during negotiation There are four different authentication schemes supported by this device None no authentication the Password Authentication Protocol PAP the Challenge Handshake Authentication Protocol CHAP the Microsoft Challenge Handshake Authentication Protocol MS CHAP and the MS CHAP Version 2 MS CHAPV2 The Auth Username and Auth Password are the credentials used by the PAP CHAP MS CHAP and MS CHAPV2 authentication protocols during link negotiation If authentication is to be used on the PPP interface the peer must be configured to use this username and password Copyright Lantronix Inc 2007 2010 All rights reserved EDS1100 2100 User Guide 74 10 Services Settings 2 Enter or modify the fields in Table 10 1 Table 10 1 PPP Configuration Fields Local IP Address Enter the IP address assigned to the EDS1100 2100 s PPP interface Peer IP Address Enter the IP address assigned to the peer when requested during negotiation Authentication Mode Choose the authentication mode e None No authentication is required e PAP Password Authenticat
98. ge in the Current Configuration table To change the short and long names by using the Web Manager perform the following steps 1 Click System in the menu bar Figure 15 1 shows the page that displays EDS1100 2100 User Guide 144 Figure 15 1 EDS System Web Page EDS2100 Powered by Evolution OS System Reboot Device Restore Factory Defaults Factory Defaults 15 Branding the EDS1100 2100 LANTRONIX EVOLUTION OS When the device is rebooted your browser should be refreshed and redirected to the main status page after 30 seconds Note that the redirect will not work as expected if the IP Address of the device changes after reboot After setting the configuration back to the factory defaults the device will automatically be rebooted Be careful not to power off or reset the device while uploading new firmware Once the upload has completed and the new firmware has been verified and flashed the device will automatically be rebooted Upload New Firmware Browse J Upload Name Short Name Long Name Current Configuration Firmware Version 51 O 0R7 Short Names EDSAION mm Long Name Lantronix EDS2100 Copyright Lantronix Inc 2007 2010 All rights reserved Click Submit Click Reboot to display the names af oO DN EDS1100 2100 User Guide In the Short Name field enter a short name up to 32 characters In the Long Name field
99. gital device pursuant to FCC Part 15 Subpart B and EN55024 1998 A2 2003 Rules when properly enclosed and grounded These limits are designed to provide reasonable protection against radio interference in a residential installation This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with this guide may cause interference to radio communications For more information see Compliance on page 150 Revision History March 2010 A Initial Document EDS1100 2100 User Guide 2 Table of Contents EDS1100 2100 User Guide Copyright and Trademark 2 Warranty 2 Contacts 2 Disclaimer and Revisions 2 Compliance 2 Revision History 2 1 About This Guide 12 Chapter Summaries 12 Conventions 13 Additional Documentation 13 2 Overview 15 Key Product Features 15 Applications 15 Protocol Support 16 Evolution OS 16 Software Features 16 Modem Emulation 16 Web Based Configuration and Troubleshooting 16 Command Line Interface CLI 17 VIP Access 17 SNMP Management 17 XML Based Architecture and Device Control 17 Really Simple Syndication RSS 17 Enterprise Grade Security 17 Terminal Server Device Management 18 Troubleshooting Capabilities 18 Configuration Methods 18 Addresses and Port Numbers 19 Hardware Address 19 IP Address 19 Port Numbers 19 Product Information Label 19
100. guration To configure HTTP perform the following steps 1 Click HTTP gt Configuration Figure 10 8 shows the page that displays Figure 10 8 HTTP Configuration Web Page EDS2100 LANTRONIX Powered by Evolution OS Statistics Configuration Authentication HTTP Configuration HTTP Server On Ooff HTTP Port HTTPS Port HTTPS Protocols SSL3 O Enable Disable TLS1 0 O Enable Disable TLS1 1 O Enable Disable Max Timeout seconds Max Bytes Logging Oon Oof Max Log Entries Log Format Current Configuration HTTP Status On running HTTP Port 80 HTTPS Port 443 HTTPS Protocols SSL3 TL51 0 TLS1 1 Max Timeout 10 seconds Max Bytes 40960 Logging On Max Log Entries 50 Log Format Soh Yt Yor s B Referer i User Agent i Logs 50 entries 8022 bytes View Clear EVOLUTION OS Both the HTTP Port and HTTPS Port SSL can be overridden The HTTP Server will only listen on the HTTPS Port when an SSL Certificate is configured for the device and at least one SSL protocol version is enabled in HTTPS Protocols The Max Timeout value specifies the maximum amount of time to wait for a request from a client The Max Bytes value specifies the maximum number of bytes allowed in a client request Both of these value are used to help prevent Denial of Service DoS attacks against the HTTP Server The HTTP Log is a scrolling log in that onl
101. gure 8 6 Tunnel 1 Statistics Web Page Figure 8 7 Tunnel 1 Serial Settings Web Page Figure 8 9 Tunnel 1 Packing Mode Web Page Figure 8 10 Tunnel 1 Packing Mode Timeout Figure 8 12 Tunnel 1 Packing Mode Send Character Figure 8 14 Tunnel 1 Accept Mode Web Page Figure 8 16 Tunnel Connect Mode Page Figure 8 18 Host Mode Figure 8 19 Host 2 Configuration Fields Figure 8 20 Host List Promotion Figure 8 21 Tunnel 1 Disconnect Mode Web Page Figure 8 23 Tunnel 1 Modem Emulation Web Page Figure 9 1 Terminal on Network Configuration Web Page Figure 9 3 Terminal on Line 1 Configuration Web Page Figure 9 5 Host Configuration Web Page Figure 10 1 DNS Status and Cache Web Page Figure 10 2 PPP Configuration Web Page Figure 10 3 SNMP Web Page Figure 10 4 FTP Web Page EDS1100 2100 User Guide 20 21 21 21 22 23 24 25 26 26 26 26 27 29 33 34 37 38 40 42 43 45 47 48 49 50 51 53 55 59 60 61 62 65 67 69 70 73 74 76 77 List of Figures Figure 10 5 TFTP Server Web Page 78 Figure 10 6 Syslog Web Page 80 Figure 10 7 HTTP Statistics Web Page 81 Figure 10 8 HTTP Configuration Web Page 82 Figure 10 9 HTTP Authentication Web Page 84 Figure 10 10 RSS Web Page 86 Figure 10 11 LPD Web Page 87 Figure 10 12 LPD Configura
102. he 72 PPP Configuration 73 SNMP Configuration 75 FTP 77 TFTP 78 Syslog 79 HTTP 81 HTTP Statistics 81 HTTP Configuration 82 HTTP Authentication 84 RSS 85 LPD 87 LPD Statistics 87 LPD Configuration 87 11 Security Settings 90 SSH Server Host Keys 90 SSH Server Authorized Users 92 SSH Client Known Hosts 94 SSH Client User Configuration 95 SSL Cipher Suites 97 SSL Certificates 98 SSL RSA or DSA 98 SSL Certificates and Private Keys 98 SSL Utilities 99 SSL Configuration 99 12 VIP 103 Obtain a Bootstrap File 103 Import the Bootstrap File 103 Enable VIP 104 Configure Tunnels to Use VIP 104 VIP Statistics 104 VIP Configuration 105 EDS1100 2100 User Guide 5 Table of Contents 13 Maintenance and Diagnostics Settings 107 Filesystem 107 Filesystem Statistics and Actions 107 Filesystem Browser 108 Protocol Stack 111 TCP 111 IP 112 ICMP 113 ARP 113 IP Address Filter 115 Query Port 116 Diagnostics 117 Hardware 117 MIB II 118 IP Sockets 119 Ping 120 Traceroute 121 DNS Lookup 122 Memory 124 Buffer Pools 124 Processes 125 System 127 14 Advanced Settings 129 Email Statistics 129 Email Configuration 130 Command Line Interface 131 CLI Statistics 131 CLI Configuration 132 XML Configuration 134 XML Export Configuration 135 Export Status 136 Import Configuration 138 15 Branding the EDS1100 2100 144 Web Manager
103. he line output will be forced inactive Example setting scontrol Y Blank the field to set to None The Break Duration specifies how long the spacing condition will be placed on the line when a break is sent Echo applies only to Connect Mode Telnet connections not to Accept Mode Only disable Echo if your terminal echoes in which case you will see double of each character typed Copyright Lantronix Inc 2007 2010 All rights reserved EDS1100 2100 User Guide 67 9 Terminal and Host Settings 2 Enter or modify the fields in Table 9 2 Table 9 2 Terminal on Network Configuration Fields Terminal Type Enter text to describe the type of terminal The text will be sent to a host via interpret as command IAC Note IAC is a method to send commands over the network such as send break or start echoing Login Connect Menu Select the interface to display when the user logs in Choices are Enabled shows the Login Connect Menu Disabled shows the CLI Exit Connect Menu Select whether to display a choice for the user to exit the Login Connect Menu and reach the CLI Choices are Enabled a choice allows the user to exit to the CLI Disabled there is no exit to the CLI Echo Applies only to Connect Mode Telnet connections not to Accept Mode Only disable Echo if your terminal echoes in which case you will see double of each character typed 3 Click Submit Line Terminal Configuration
104. he two lines For example completed accepts completed connects disconnects dropped accepts dropped connects etc Serial Settings Configures buffer size and DTR Connect Mode Controls how a tunnel behaves when a connection attempt originates locally Accept Mode Controls how a tunnel behaves when a connection attempt originates from the network e Disconnect Mode Relates to the disconnect of a tunnel Packing Mode Sends packed data that is queued in larger chunks instead of sending it immediately after being read on the serial line Modem Emulation lInitiates and accepts tunnel connections using the AT commands EDS1100 2100 User Guide 46 8 Line and Tunnel Settings Tunnel Statistics The EDS1100 2100 logs tunneling statistics The Dropped statistic shows connections ended by the remote location The Disconnects statistic shows connections ended by the EDS1100 2100 To display the tunnel statistics perform the following steps 1 Click Tunnel on the Main Menu Figure 8 6 shows the page that displays Figure 8 6 Tunnel 1 Statistics Web Page EDS2100 LANTRONIX l Powered by Evolution OS EVOLUTION OS This page displays all the Tunnel Tunnel 1 Tunnel 2 era Aea li of Connect Mode tunnels Statistics Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Statistics Aggregate Counters Completed Accepts 0 Completed Connects 0 Di
105. ic Disabled O Manual Connect String Display Remote IP O Enabled Disabled Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 8 24 Table 8 24 Tunnel Modem Emulation Fields Echo Pluses Select On to echo when entering modem Command Mode Echo Commands Select On to echo the modem commands to the console Verbose Response Select On to send modem response codes out on the serial line Response Type Select the type of response code Text or Numeric Error Unknown Commands Select whether an ERROR or OK response is sent in reply to unrecognized AT commands Choices are Enabled ERROR is returned for unrecognized AT commands e Disabled OK is returned for unrecognized AT commands Default is Disabled Incoming Connection Select whether Incoming Connection requests will be disabled answered automatically or answered manually Default is Disabled EDS1100 2100 User Guide 65 8 Line and Tunnel Settings Table 8 24 Tunnel Modem Emulation Fields continued Connect String Enter the connect string This modem initialization string prepares the modem for communications It is a customized string sent with the CONNECT modem response code Display Remote IP Selects whether the incoming RING sent on the Serial Line is followed by the IP address of the caller Default is Disabled 3 Click Submit EDS1100 2100 User Guide 66 9 Terminal and Host Se
106. illiseconds Text O Binary Echo Serial String Yes ONo Text O Binary Current Configuration Mode Disabled Inactive Wait Time 5000 milliseconds Serial String lt None gt Echo Serial String On Signon Message lt None gt LANTRONIX EVOLUTION OS When Command Mode is enabled the Command Line Interface CLI is attached to the Serial Line Command Mode can be enabled in a number of ways The Always choice immediately enables Command Mode for the Serial Line The Use Serial String choice enables Command Mode when the Serial String is read on the Serial Line during boot time The Wait Time specifies the amount of time to wait during boot time for the Serial String This timer starts right after the Signon Message has been sent on the Serial Line The Serial String is a string of bytes that must be read on the Serial Line during boot time in order to enable Command Mode It may contain a time element to specify a required delay in milliseconds x formed as x The Signon Message is a string of bytes that is sent on the Serial Line during boot time Binary form is one or more byte values seperated by commas Each byte value may be decimal or Hexadecimal Start Hexadecimal values with Ox Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 8 5 Table 8 5 Line 1 Command Mode Fields Select the method of enabling Command Mode or ch
107. information label seenen 19 protocol SUpport oo eee eeeeeeeneeeeeneeeteneeeeenneereneeees 16 software features oo eee eeseeeeeeeeeeneeeeeneereneeees 16 CLI 17 enterprise grade security 17 modem emulation 16 rss 17 snmp management 17 terminal server device management 18 troubleshooting capabilities 18 vip access 17 web based configuration and troubleshooting 16 xml based architecture and device control 17 P port numbers 19 154 S secure com port redirector 18 security enterprise grade oo eeeeseeeeseeeeeneeeeeseeeeeeneeereees 17 security settings SSH client Known hosts cccccceesseeeeeseeeeeteeees 94 SSH client user configuration 0 0 95 SSH server authorized users sses 92 SSH server host keys eecceeeceeeseeeeeeeseeeeeeereaees 90 SSL CeMificates rrei saii 98 SSL certificates and private keys 00 eee 98 SSL Cipher suites oo eect eeeeeeeeeeeeeeteeeeeeteaees 97 SSL configuration 0 eee eeee ete eteeteeeetteeeteeeteaees 99 SSL rsa OF dsa woe eeececeeeseceeeseeeeeneeeeseeeeessneeessneeees 98 SSL utilities 2 eee eeeeceeeseeeseneeeeeeneeessneeeseneeees 99 services settings 72 Chap authentication sesers 73 Ons status and cache 2 eeeseeeseeeeeseeeeeeneeeeeees 72 TU eeceeesc eee eee eee 77 pinio D E E EE E eee hla eke add soe 81 authentication 84 configuration 82 statistics 81 Ipd 87 configuration 87 statistics 87 pap authentication seeen 73 ppp configurati
108. ion is established and when it is dropped When you configure two or more hosts in the Tunnel web page Host Mode displays as shown in Figure 8 18 EDS1100 2100 User Guide 58 8 Line and Tunnel Settings Figure 8 18 Host Mode EDS2100 LANTRONIX Powered by Evolution OS EVOLUTION OS i Tunnel Connect Mode controls Tunnel 1 Tunnel2 how a tunnel behaves when a Se eee connection attempt originates locally Statistics Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Connect Mode Mode Disable xi Local Port lt Random gt Host 1 VIP fulton 20 TCP 45000 msec VIP Enabled O Disabled VIP Name fulton2 Host Port 83 2 Protocol TCP aee 45000 milliseconds Host 3 lt None gt Host Mode Sequential O Simultaneous Flush Serial Data Enabled Disabled Block Serial O Enabled Disabled Block Network O Enabled Disabled Email on Connect lt None gt Email on Disconnect lt None gt v Copyright Lantronix Inc 2007 2010 All rights reserved Host Mode controls how multiple hosts operate in Connect Mode The following options are available Sequential A Tunnel to the first host is attempted If the connection fails the next host specified is attempted This will continue until a connection is made If a connection is dropped after a successful connection has been establi
109. ion Protocol CHAP Challenge Handshake Authentication Protocol 3 Click Submit SNMP Configuration Simple Network Management Protocol SNMP is a network management tool that monitors network devices for conditions that need attention The Web Manager configured SNMP service sends traps whenever a request for information that contains an incorrect community name and does not match an accepted system name for the service gets sent To configure SNMP perform the following steps 1 Click SNMP on the Main Menu Figure 10 3 shows the page that displays EDS1100 2100 User Guide 75 10 Services Settings Figure 10 3 SNMP Web Page EDS2100 LATION Powered by Evolution OS EVOLUTION OS This page displays the current configuration of the SNMP Agent SNMP SNMP Agent Oon OOff Read Community Write Community System Contact System Name System Description System Location Enable Traps Oon Oof Primary Trap Dest IP Secondary Trap Dest IP Current Configuration SNMP Agent Status Running On Read Community lt Configured gt Delete Write Community lt Configured gt Delete System Contact lt None gt System Name EDS2100 Delete System Description lt Default gt System Location lt None gt Traps Enabled On Primary Trap Dest IP lt None gt Secondary Trap Dest IP lt None gt Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the field
110. ion records 100 80 127 67 78 47 104 135 36 7 Network Settings This chapter describes how to access view and configure network settings from the Network web page The Network web page contains sub menus that enable you to view and configure the aspects of your network This chapter contains the following sections e Network 1 Interface Status e Network 1 Interface Configuration Network 1 Ethernet Link Network 1 Interface Status To view the Network 1 interface status perform the following steps 1 Click Network on the Main Menu Figure 7 1 shows the page that displays Figure 7 1 EDS2100 Powered by Evolution OS Network1 eth0 Interface Status Web Page Network 1 Interface Link Status Configuration BOOTP Client DHCP Client IP Address Network Mask Default Gateway Hostname Domain DNS Suffix Search List DHCP Client ID Current Off On Renew 172 19 100 220 DHCP 255 255 0 0 DHCP 172 19 0 1 DHCP lt None gt eng lantronix carm DHCP eng lantronix com int lantronix com lantronix com lt None gt Network 1 eth0O Interface Status After Reboot Off On lt DHCP gt lt DHCP gt lt DHCP gt lt DHCP gt lt DHCP gt lt DHCP gt lt None gt LANTRONIX EVOLUTION OS This page is used to view the status of the Network interface on the device There are tw
111. l Settings Table 8 3 Line 1 Configuration Fields continued Flow Control Select the flow control from the drop down menu The default is None Xon Char Specify the character to use to start the flow of data when Flow Control is set to Software Prefix a decimal character with or a hexadecimal character with Ox or provide a single printable character The default Xon char is 0x11 Xoff Char Specify the character to use to stop the flow of data when Flow Control is set to Software Prefix a decimal character with or a hexadecimal character with Ox or provide a single printable character The default Xoff char is 0x13 Gap Timer The driver forwards received serial bytes after the Gap Timer delay from the last character received By default the delay is four character periods at the current baud rate minimum 1 ms Threshold The driver will also forward received characters after Threshold bytes have been received 3 Click Submit Line Command Mode To configure the Command Mode perform the following steps 1 Click Line gt Line 1 gt Command Mode Figure 8 4 shows the page that displays EDS1100 2100 User Guide 44 Figure 8 4 Line 1 Command Mode Web Page 8 Line and Tunnel Settings EDS2100 Powered by Evolution OS Line 1 Mode Wait Time Serial String Statistics Configuration Signon Message Line1 Line 2 Command Mode Command Mode O Always O Use Serial String O Disabled m
112. l it sees any character or the start character again depending on the configured setting Local Port Enter the port for use as the local port A random port is selected by default Once you have configured a number click the Random link in the Current Configuration to switch back to random EDS1100 2100 User Guide 56 8 Line and Tunnel Settings Table 8 17 Tunnel Connect Mode Fields continued Host Click lt None gt in the Host field to configure the Host parameters and enter the following fields ViP Enabling the VIP directs the tunnel to connect to a remote Lantronix Virtual IP identified by the VIP Name When VIP is enabled the Host 2 field displays See 12 VIP for more information Default is Disabled Note The EDS1100 2100 supports configuration of up to sixteen hosts e VIP Name Displays configured VIP name used only if VIP is enabled Port Displays configured Port Protocol Select the protocol type SSH SSL TCP TCP AES Telnet UDP and UDP AES for use with Connect Mode The default protocol is TCP The following are enabled for SSH TCP TCP AES and UDP AES SSH Username Displays configured username used only if SSH protocol is selected This is required The EDS1100 2100 is the client and the SSH client username must be configured on the remote SSH server before using the EDS1100 2100 TCP Keep Alive Sends probes to the other end of the connection to ensure that the
113. l rights reserved 2 Enter or modify the fields in Table 11 2 Table 11 2 SSH Server Authorized Users Fields Username Enter the name of the user authorized to access the SSH server Password Enter the password associated with the username Public RSA Key Enter the path and name of the existing public RSA key you want to use with this user or use the Browse button to select the key If authentication is successful with the key no password is required Public DSA Key Enter the path and name of the existing public DSA key you want to use with this user or use the Browse button to select the key If authentication is successful with the key no password is required 3 Click Submit EDS1100 2100 User Guide 93 11 Security Settings SSH Client Known Hosts You can change SSH client settings for known hosts You do not have to complete the fields on this page for communication to occur However adding information in the fields adds another layer of security that protects against Man In The Middle MITM attacks To configure the SSH client for known hosts perform the following steps 1 Click SSH gt Client Known Hosts Figure 11 3 shows the page that displays Figure 11 3 SSH Client Known Hosts Web Page E D S 2 1 0 0 LANTRONIX Powered by Evolution OS EVOLUTION OS The SSH Client Known Hosts are SSH Server Host Keys SSH Client Known Hosts used by all applications that play the role of an SSH Client Specificall
114. le line Settings on the Filesystem copies lines settings from an the input file containing only jone Line instance to all of the selected Lines When selecting a Whole Groups to Import item all instances of that group will be imported Notice that by default all groups are checked except some pertaining to the network configuration this is so that import will not break your network connectivity You may check or uncheck any group to include or omit that group from import Selection of Lines to Import fitters instances to be imported in the line Ipd ppp serial tunnel and terminal groups This affects both Whole Groups to Import and Text List selections Use the Text List string to import specific instances of a group The textual format of this string is Agi si gt lt g gt lt si gt Each group name g gt is followed by a colon and the instance value si gt and each lt g gt lt i gt value is separated by a semi colon If a group has no instance then only the group name lt g gt should be specified Copyright Lantronix Inc 2007 2010 All rights reserved Note You can copy line settings from the single line instance in the input file to selected lines by using this page The import file may only contain records from a single line instance this is done by selecting a single Line to Export when exporting the file 9 Enter or modify the fields in Table 1
115. le you want to copy resides Enter the location where you want the file copied After you specify a source and destination click Copy to copy the file Enter the location where the file you want to move resides Enter the location where you want the file moved After you specify a source and destination click Move to move the file Select the action that is to be performed via TFTP Get A TFTP get command will be executed to store a file locally Put A TFTP put command will be executed to send a file on the local file system to a remote location Select a TFTP mode to use Choices are ASCII Binary Enter the name of the local file Enter the name of the file at the remote location that is to be stored locally get or externally put Enter the IP address or name of the host involved in this operation Enter the number of the port involved in TFTP operations on which the specified TFTP get or put command will be performed Click Transfer to perform the TFTP transfer 110 13 Maintenance and Diagnostics Settings Protocol Stack In the Protocol Stack web page you can configure TCP IP ICMP and ARP TCP To configure the network protocols perform the following steps 1 Click Protocol Stack on the Main Menu TCP is the default Figure 13 3 shows the page that displays Figure 13 3 TCP Web Page EDS21 00 LANTRONIX Powered by Evolution OS EVOLUTION OS This page contains lower level TCP TCP IP
116. lients must send to the EDS1100 2100 within 30 seconds from opening a network connection to enable data transmission The password can have up to 31 characters and must contain only alphanumeric characters and punctuation When set the password sent to the EDS1100 2100 must be terminated with one of the following a OxOA LF b 0x00 c OxOD OxOA CR LF or d OxOD 0x00 Select whether the EDS1100 2100 sends an email when a connection is made Select None if you do not want to send an email Otherwise select the Email profile to use for sending Select whether the EDS1100 2100 sends an email when a connection is closed Select None if you do not want to send an email Otherwise select the Email profile to use for sending Identifies a CP or CP Group whose value should change when a connection is established and dropped Connect Mode defines how the EDS1100 2100 makes an outgoing connection For Connect Mode to function it must be enabled have a remote station configured and a remote port configured TCP or UDP When enabled Connect Mode is always on Enter the remote station as an IP address or DNS name The EDS will not make a connection unless it can resolve the address For DNS names after 4 hours of an active connection the EDS will re evaluate the address If it is a different address it will close the connection Connect Mode supports the following protocols TCP AES encryption over TCP and UDP SSL EDS11
117. loaded to the device or automatically generated on the device A certificate generated on the device will be self signed If uploading an existing SSL Certificate take care to ensure the Private Key will not be compromised in transit This implies the data is uploaded over some kind of secure private network WARHING When generating a new self signed SSL Certificate using a large key size can result ina VERY LONG key generation time Tests on this hardware have shown it can take upwards of 10 seconds for a 512 bit RSA Key 30 seconds for a 768 bit RSA Key 1 minute for a 1024 bit RSA Key 30 seconds for a 512 bit DSA Key 2 minutes for a 768 bit DSA Key 6 minutes for a 1024 bit DSA Key Copyright Lantronix Inc 2007 2010 All rights reserved EDS1100 2100 User Guide 100 11 Security Settings 2 Enter or modify the fields in Table 11 5 Table 11 5 SSL Fields Upload Certificate New Certificate This certificate identifies the EDS1100 2100 to peers It is used for HTTPS and SSL Tunneling Enter the path and name of the certificate you want to upload or use the Browse button to select the certificate RSA or DSA certificates with 512 to 1024 bit public keys are allowed Note The file format must be PEM The file must start with BEGIN CERTIFICATE and end with END CERTIFICATE Some Certificate Authorities add comments before and or after these lines Those need to b
118. lpful suggestions information or references to material not covered in the publication Caution Caution Means you might do something that could result in faulty equipment operation or loss of data Screen Font Courier New CLI terminal sessions and examples of CLI input Additional Documentation Visit the Lantronix web site at www lantronix com support documentation for the latest documentation and the following additional documentation EDS1100 2100 Quick Start Guide lInstructions for getting the EDS1100 2100 configured and up and running EDS1100 2100 Command Reference Instructions for accessing Command Mode the command line interface using a Telnet connection or through the serial port Detailed information about the commands Also provides details for XML configuration and status Devicelnstaller Online Help Instructions for using the Lantronix Windows based utility to locate the EDS1100 2100 and to view its current settings EDS1100 2100 User Guide 13 1 About This Guide Com Port Redirector Quick Start and Online Help linstructions for using the Lantronix Windows based utility to create virtual com ports Secure Com Port Redirector User Guide lInstructions for using the Lantronix Windows based utility to create secure virtual com ports EDS1100 2100 User Guide 14 N Overview The EDS1100 2100 Ethernet Device Server is a complete network enabling so
119. lution It empowers original equipment manufacturers OEMs to go to market quickly and easily with Ethernet networking and web page capabilities built into the products The EDS1100 and EDS2100 provide the same solution and differ only in the number of serial ports The EDS1100 has one serial port supported via a DB25 connector The EDS2100 has two serial ports supported via 2 DB9 connectors This chapter contains the following sections gt Key Product Features Applications Protocol Support Evolution OS Software Features Configuration Methods Addresses and Port Numbers Product Information Label Key Product Features e Power Supply Regulated 9 30 Vdc input required There is a step down converter to 1 5 volts for the processor core All voltages have LC filtering to minimize noises and emissions Controller A Lantronix DSTni FX 32 bit microprocessor running at 166 MHz internal bus and 83 MHz external bus Memory 8 MB Flash and 8 MB SDRAM Please contact your sales representative if you need larger memory sizes Ethernet 10 100 Mbps Ethernet transceiver Serial Ports RS232 422 485 high speed serial ports with all hardware handshaking signals Baud rate is software selectable 300 bps to 921600 bps e Temperature Range Operates over an extended temperature range of 40 C to 85 C Applications The EDS1100 2100 device server connects the following types of serial devices
120. mit requirement in SJ T11363 2006 x Toxic or hazardous substance contained in at least one of the homogeneous materials used for this part is above the limit requirement in SJ T11363 2006 EDS1100 2100 User Guide 151 C Compliance Manufacturer Contact Lantronix Inc 167 Technology Irvine CA 92618 USA Phone 949 453 3990 Fax 949 450 7249 EDS1100 2100 User Guide 152 Index A about this guide 12 additional documentation Chapter summaries 0 0 0 eeeeeeeneeeeneeeeeneeeeenaees conventions advanced settings CLI configuration CLIStAtISTICS seriinin renne e aaae aa ES command line interface email configuration email St tiStCS siveszcsscascace riiscia xml configuration export status 136 import configuration 138 xml export configuration 135 binary to hex conversion 148 conversion table hex display scientific calculator C command line interface 17 command line interface settings 131 compliance direct and indirect ESD electricl fast transient and burst immunity IMMUNITY ris si a power frequency magnetic field immunity radiated and conducted emissions 0 RF common mode conducted susceptibility RF electromagnetic field immunity RoHS notice create new self signed certificate field 101 EDS1100 2100 User Guide D default server port numbers 19 device control 17 device details summary 30 device management 18 deviceinstaller accessing the EDS1100 2100 nasses 30 de
121. mmas Use straight decimal numbers up to 255 or hexadecimal numbers prefixed with Ox up to OxFF within the square braces To specify an open brace in binary mode use two in a row Example in Binary mode AB 255 0xFF CI D Results in a string containing binary values where the dots appear AB C D 4 Queue Name may not contain white space O Enabled Disabled Text O Binary 2 Enter or modify the fields in Table 10 9 Table 10 9 LPD Configuration Fields Banner Binary Start of Job End of Job Formfeed EDS1100 2100 User Guide Select Enabled to print the banner even if the print job does not specify to do so Selected by default Select Enabled for the EDS1100 2100 to pass the entire file to the printer unchanged Otherwise the EDS1100 2100 passes only valid ASCII and valid control characters to the printer Valid control characters include the tab linefeed formfeed backspace and newline characters All others are stripped Disabled by default Select Enabled to print a start of job string before sending the print data Select Enabled to send an end of job string Select Enabled to force the printer to advance to the next page at the end of each print job 88 10 Services Settings Table 10 9 LPD Configuration Fields continued Convert Newlines SOJ String EOJ String Queue Name EDS1100 2100 User Guide Select Enabled to convert single n
122. n Mode Conducted Susceptibility EN61000 4 6 2007 Power Frequency Magnetic Field Immunity EN61000 4 8 1994 A1 2001 Voltage Dips and Interrupts EN61000 4 11 2004 Safety UL 60950 1 CAN CSA C22 2 No 60950 1 03 EN 60950 1 2001 Low Voltage Directive 73 23 EEC EDS1100 2100 User Guide 150 C Compliance RoHS Notice All Lantronix products in Table C 1 are China RoHS compliant and free of the following hazardous substances and elements Lead Pb Mercury Hg Cadmium Cd Hexavalent Chromium Cr VI Polybrominated biphenyls PBB Polybrominated diphenyl ethers PBDE gt o Table C 1 Lantronix Product Family Names and Toxic Hazardous Substances and Elements Product Family Name Toxic or hazardous Substances and Elements Lead Mercury Cadmium Hexavalent Polybrominated Polybrominated Pb Hg Cd Chromium Cr VI biphenyls PBB diphenyl ethers PBDE UDS1100 and 2100 0 0 0 0 0 0 EDS 0 0 0 0 0 0 MSS100 0 0 0 0 0 0 IntelliBox 0 0 0 0 0 0 XPress DR and 0 0 0 0 0 0 XPress DR SecureBox 1101 and 0 0 0 0 0 0 2101 WiBox 0 0 0 0 0 0 UBox 0 0 0 0 0 0 MatchPort 0 0 0 0 0 0 SLC 0 0 0 0 0 0 XPort 0 0 0 0 0 0 WiPort 0 0 0 0 0 0 SLB 0 0 0 0 0 0 SLP 0 0 0 0 0 0 SCS 0 0 0 0 0 0 SLS 0 0 0 0 0 0 DSC 0 0 0 0 0 0 0 Toxic or hazardous substance contained in all of the homogeneous materials for this part is below the li
123. ncy enables only emergency logging Local Port 514 Intermediate levels enable logging for that and all of the more severe Remote Port 514 levels Severity Log Level None v Statistics Status Inactive Messages Sent 0 Messages Failed 0 Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 10 5 Table 10 5 Syslog Fields State Select to enable or disable the syslog Host Enter the IP address of the remote server to which system logs are sent for storage Local Port Enter the number of the local port on the EDS1100 2100 from which system logs are sent Remote Port Enter the number of the port on the remote server that supports logging Severity Log Level EDS1100 2100 User Guide services The default is 514 From the drop down box select the minimum level of system message the EDS1100 2100 should log This setting applies to all syslog facilities The drop down list is in descending order of severity e g Emergency is more severe than Alert 80 10 Services Settings HTTP HyperText Transfer Protocol HTTP is an application layer standard for Internet documents HTTP defines how messages get formatted and transmitted It also defines the actions web servers and browsers should take in response to different commands HTTP Authentication enables the requirement of usernames and passwords for access to the EDS1100 2100 device The HTTP web page contains
124. nection to the end device leveraging network connections and bandwidth to eliminate dedicated modems and phone lines Web Based Configuration and Troubleshooting Built upon Internet based standards the EDS1100 2100 enables configuration management and troubleshooting by using a browser based interface accessible anytime from anywhere As a result downtime gets decreased by using the troubleshooting tools and by using the configuration tools for configuration tasks EDS1100 2100 User Guide 16 2 Overview Command Line Interface CLI Making the edge to enterprise vision a reality the EDS1100 2100 with the Evolution OS uses industry standard tools for configuration communication and control For example the Evolution OS uses a Command Line Interface CLI whose syntax is very similar to that used by data center equipment such as routers and hubs VIP Access Virtual IP Access is the Lantronix technology that solves the access through firewall problem With VIP Access the EDS1100 2100 can act as a ManageLinx DSC and provide direct access to your equipment behind a firewall SNMP Management The EDS1100 2100 supports full SNMP management making it ideal for applications where device management and monitoring are critical These features allow networks with SNMP capabilities to correctly diagnose and monitor EDS1100 2100 XML Based Architecture and Device Control XML is a fundamental building block for the future growth
125. nes and the network lines Click the Clear All link to clear all of the checkboxes By default all line instances are selected Only the selected line instances will be imported in the line LPD PPP tunnel and terminal groups Whole Groups to Import Select the configuration groups to import from the XML configuration record This option imports all instances of each selected group unless it is one of the Lines to Import Note By default all groups are checked except those pertaining to the network configuration this is so that import will not break your network connectivity You may check or uncheck any group to include or omit that group from import To import all of the groups click the Select All but Networking link to import all groups To clear all the checkboxes click the Clear All link Text List Enter a string to import specific instances of a group The textual format of this string is lt g gt lt i gt lt g gt lt i gt Each group name lt g gt is followed by a colon and the instance value lt i gt and each lt g gt lt i gt value is separated by a semi colon If a group has no instance then specify the group name lt g gt only Use this option for groups other than those affected by Lines to Import 7 Go back to the Import Configuration web page 8 Click Line s from single line Settings on the Filesystem Figure 14 10 shows the page that displays EDS1100 2100 User Guide 141 14 Advanced Settings
126. ng VIP names Select the Protocol from the pull down menu Depending upon the specified protocol other options are as follows e For TCP and Telnet input the keep alive milliseconds For SSH input the SSH username e For TCP AES and UDP AES input the Encrypt Decrypt keys Note SSL and UDP do not have other options 6 Repeat the steps until all of your hosts get configured The maximum is 16 7 Click Submit EDS1100 2100 User Guide 60 8 Line and Tunnel Settings Host List Promotion The EDS1100 2100 allows the host list connection order to be specified There are two types of host modes Sequential and Simultaneous Simultaneous connections occur approximately at the same time to all listed hosts Sequential host lists establish a prioritized list of tunnels The host specified as Host 1 will be attempted first If that fails it will proceed to Host 2 3 etc in the order they are specified When a connection drops the cycle starts again with Host 1 and proceeds in order Establishing the host order is accomplished with host list promotion To promote hosts perform the following steps 1 Click the arrow icon i of the host you want to promote as shown in Figure 8 20 Figure 8 20 Host List Promotion EDS21 00 LANTRONIX Powered by Evolution OS EVOLUTION OS Tunnel Connect Mode controls Tunnel 1 Tunnel 2 how a tunnel behaves when a eSa connection attempt originates locally Statistic
127. ng port Virtual IP VIP Configuration State O Enabled Disabled Copyright Lantronix Inc 2007 2010 All rights reserved 2 Click Enabled to use VIP addresses in Tunnel Accept Mode and Tunnel Connect Mode The default is disabled 3 Click Submit EDS1100 2100 User Guide 106 13 Maintenance and Diagnostics Settings This chapter describes maintenance and diagnostic methods and contains the following sections Filesystem Protocol Stack IP Address Filter Query Port Diagnostics o System Filesystem The EDS1100 2100 uses a flash filesystem to store files You can view file diagnostics and or modify files There are two subsections Statistics and Browse The Statistics section of the Filesystem Statistics window shows current statistics and usage information of the flash file system In the FileSystem Browser section of the Filesystem Statistics web page you can create files and folders upload files copy and move files and use TFTP Filesystem Statistics and Actions To display the filesystem statistics compact or format the filesystem perform the following steps 1 Click Filesystem on the Main Menu Figure 13 1 shows the page that displays EDS1100 2100 User Guide 107 13 Maintenance and Diagnostics Settings Figure 13 1 Filesystem Statistics Web Page EDS2100 Powered by Evolution OS LANTRONIX EVOLUTION OS This page displays vari
128. nization to be associated with the new self signed certificate Example If your company is called Widgets and you are setting up a web server for the Sales department enter Widgets for the organization Organization Unit Enter the organizational unit to be associated with the new self signed certificate Example If your company is setting up a web server for the Sales department enter Sales for your organizational unit EDS1100 2100 User Guide 101 11 Security Settings Table 11 5 SSL Fields continued EDS1100 2100 User Guide Expires Enter the expiration date in mm dd yyyy format for the new self signed certificate Example An expiration date of May 9 2010 is entered as 05 09 2010 Key Length Select the bit size of the new self signed certificate Choices are 512 bits e 768 bits 1024 bits The larger the bit size the longer it takes to generate the key Approximate times are 10 seconds for a 512 bit RSA key 30 seconds for a 768 bit RSA key 1 minute for a 1024 bit RSA key 30 seconds for a 512 bit DSA key 2 minutes for a 768 bit DSA key 6 minute for a 1024 bit DSA key Type Select the type of key RSA Public Key Cryptography algorithm based on large prime numbers invented by Rivest Shamir and Adleman Used for encryption and signing e DSA Digital Signature Algorithm also based on large prime numbers but can only be used for signing Developed by the US government t
129. nostics Settings Instructions for using the web interface to maintain the EDS1100 2100 view statistics files and logs and diagnose problems 14 Advanced Settings Instructions for using the web interface to configure email CLI and XML settings 15 Branding the EDS1100 2100 Description of PPP on the EDS1100 2100 EDS1100 2100 User Guide 1 About This Guide Table 1 1 Chapter Appendix and Summary continued 16 Updating Firmware A Technical Support Instructions for obtaining the latest firmware and updating the EDS1100 2100 Instructions for contacting Lantronix Technical Support B Binary to Hexadecimal Conversions Instructions for converting binary values to hexadecimals C Compliance Lantronix compliance information Conventions Table 1 2 lists and describes the conventions used in this book Table 1 2 Conventions Used in This Book Convention Description Bold text Default parameters Brackets Optional parameters Angle Brackets lt gt Possible values for parameters Pipe Choice of parameters Warning Warning Means that you are in a situation that could cause equipment damage or bodily injury Before you work on any equipment you must be aware of the hazards involved with electrical circuitry and familiar with standard practices for preventing accidents Note Note Means take notice Notes contain he
130. ntronix Device Servers It can be downloaded from the Lantronix website at www lantronix com support downloads html For instructions on using Devicelnstaller to configure the IP address and related settings or for more advanced features see the Devicelnstaller online Help Note AutolP generates a random IP address in the range of 169 254 0 1 to 169 254 255 254 if no BOOTP or DHCP server is found Accessing EDS1100 2100 using Devicelnstaller Note Keep a record of the MAC address because the MAC address is required to locate the EDS1100 2100 using Devicelnstaller 1 Click Start gt All Programs gt Lantronix gt Devicelnstaller gt Devicelnstaller When Devicelnstaller starts it performs a network device search To perform another search click the Search button 2 Expand the EDS folder by clicking the plus symbol next to the folder icon The list of available Lantronix EDS1100 and EDS2100 devices displays 3 Select the EDS1100 or EDS2100 by expanding its entry and clicking on its hardware MAC address to view its configuration 4 Click the Device Details tab on the right The current EDS1100 2100 configuration displays This is only a subset of the complete configuration access the complete configuration by using the Web Manager CLI or XML Device Details Summary Table 5 1 lists and describes the display only settings unless otherwise noted Table 5 1 Current Settings and Description Name Name identifying the ED
131. o avoid the patents on RSA 102 12 VIP VIP Virtual IP takes advantage of the Lantronix ManageLinx technology that solves the access through firewall problem ManageLinx utilizes existing network infrastructure to create a virtual device network VDN VDN provides direct access to only authorized equipment behind firewalls from anywhere via the net The VDN technology enables you to create dedicated TCP IP connections between any two devices using easily deployed hardware appliances There is no client software to install No changes are required to network software or applications at either end of the connection ManageLinx is a secure and totally transparent remote access solution The VDN hardware consists of a publicly accessible Device Services Manager DSM and individual Device Services Controller DSC appliances in multiple locations Together these two components enable you to set up and manage individual Virtual IP VIP addresses and routes The EDS1100 2100 with VIP enabled takes the place of a DSC and provides direct access to your equipment The EDS1100 2100 supports both Accept and Connect Mode tunneling through VIPs Configuring an EDS1100 2100 to use VIP Access involves e Obtaining a ManageLinx XML bootstrap file e Importing the ManageLinx XML bootstrap file e Enabling VIP access e Configuring your tunnels to use the VIPs Once the EDS1100 2100 is configured and enabled to use VIPs it will immediately attemp
132. o columns displayed The first column shows the current operational settings The second column shows the expected settings after the device is rebooted If both BOOTP and DHCP are turned on DHCP will run but not BOOTP When BOOTP or DHCP fails to discover an IP Address a new address will automatically be generated using AutolP This address will be within the 169 254 x x space Copyright Lantronix Inc 2007 2010 All rights reserved EDS1100 2100 User Guide 37 Network 1 Interface Configuration To configure the Network interface perform the following steps 1 Click Network on the Main Menu 2 Click Network 1 gt Interface gt Configuration Figure 7 2 shows the page that displays Figure 7 2 Network 1 eth0 Interface Configuration Web Page 7 Network Settings EDS2100 LANRONX Powered by Evolution OS Network 1 Interface Link Status Configuration Network 1 ethO Interface Configuration BOOTP Client On Oof DHCP Client On Oof IP Address lt None gt Default Gateway lt None gt l Hostname Domain DHCP Client ID Text O Binary Primary DNS lt None gt Secondary DNS lt None gt Copyright Lantronix Inc 2007 2010 All rights reserved 3 Enter or modify the fields in Table 7 3 Table 7 3 Network 1 Interface Configuration Fields BOOTP Client Select On or Off At boot up the EDS1100 2100 will attempt to obtain an IP address from
133. olors and spacing of the Web Manager get controlled with style css and the text and graphics are controlled with index html The Web Manager files are hidden and are incorporated directly into the firmware image but may be overridden by placing the appropriate file in the appropriate directory on the file system To retrieve and overwrite Web Manager files perform the following steps 1 FTP to the EDS1100 or EDS2100 Make a directory mkdir and name it http config Change to the directory cd that you created in Step 2 http config Modify the file as required or create a new one with the same name 2 3 4 Get the file by using get lt filename gt 5 6 Put the file by using put lt filename gt 7 Type quit The overriding files display in the http config directory Restart any open browser to view the changes If you want to return to the default files in the firmware image delete the overriding files from the file system Short and Long Name Customization You can customize the short and long names in Web Manager The names display in the CLI show command and in the System web page in the Current Configuration table The short name is used for the show command Both names display in the CLI Product Type field in the following example nable show Product Information EDS1100 YourCompanyName Product Type Lantronix EDS1100 In the Web Manager the short and long names are shown in the System web pa
134. ome kind of secure private network Public Key Enter the path and name of the existing public key you want to upload or use the Browse button to select the key Key Type Select a key type to use RSA Use this key with SSH1 and SSH2 protocols DSA Use this key with the SSH2 protocol EDS1100 2100 User Guide 91 11 Security Settings Table 11 1 SSH Server Host Keys Fields continued Create New Keys Key Type Select a key type to use for the new key RSA use this key with the SSH1 and SSH2 protocols DSA use this key with the SSH2 protocol Bit Size Select a bit length for the new key 512 768 1024 Using a larger bit size takes more time to generate the key Approximate times are Note long 3 Click Submit 10 seconds for a 512 bit RSA Key 15 seconds for a 768 bit RSA Key 1 minute for a 1024 bit RSA key 30 seconds for a 512 bit DSA key 1 minute for a 768 bit DSA key 2 minutes for a 1024 bit DSA key Some SSH clients require RSA host keys to be at least 1024 bits SSH Server Authorized Users You can change SSH server settings for Authorized Users which are accounts that enable access to the EDS1100 2100 For example these SSH accounts can be used to log into the CLI or open an SSH connection to a device port Every account must have a password The public keys are optional and only necessary if public key authentication is required Using public key authentication allows a connection
135. on seeeeeeeereerrieerrrerreeerrnen 73 E A T A E AA E AN 85 snmp configuration s sessnessensssenneneerenenrennnnenne 75 SYSIOQ scisaces Aecesisvsceerasbeesaieesbs acetates eee ee 79 UD ssdkctucr hited eileen ied 78 snmp management 17 SSH Client KNOWN hosts eee eeeeeeseeeeeeeeeeeneeeeeeneeetenees 94 protection level eeereiereseresrrrrerrrrerriesrrnen 17 SSL protection level ssssesescereresrerenrnernrnnrnnernanennnnna 17 T terminal SOVON ao O E OT 18 terminal settings EDS 1100 2100 User Guide line terminal configuration senosnnnnonennnnenneennee 68 network terminal configuration esee 67 troubleshooting capabilities 18 tunnel settings 46 U accept mode u sscisiesiirinierirceruncrnnrcranrennernnenns 51 CONNEC MOE sesiones era 54 disconnect mode eee eeeeeeceeeeeeeeeeeeeeeeeeteeeeeeteeees 61 host list promotion oes eeeeeeeeneeeeeeneeeeeneeeteneeees 61 modem emulation 0 0 eee cccececeeeeeeeeeeesseeseseeseteaees 63 command mode 63 multiple NOSTS oo ee eeeeeeeeseeeeeeeeeeeneeeeeeaeeeeeeeeteeeees 58 PACKING MOE eeeeeeeesseeeeeneeeesneeeeeneeeeeneeeteneeees 49 sequential host mode seeren 59 serial settings oo eee esse eset eeeseeeeeeneeeeeneeeeeneeees 47 simultaneous host mode ccceceeceeeeeteeeteeees 59 Statist CS eccerre aE eaaa ROEE iania 47 updating firmware 146 upload authority certificate 101 US technical support 147 V VIP W bootstrap fil
136. onfiguration of a username and password PAP is an authentication protocol in PPP It offers a straightforward method for the peer to determine its identity Upon the link establishment the user ID and password are repeatedly sent to the authenticator until it is acknowledged or the connection is terminated However PAP is nota strong authentication process There is no protection against trial and error attacks The peer is responsible for the frequency of the communication attempts CHAP is a more secure method than PAP It works by sending a challenge message to the connection requestor Using a one way hash function the requestor responds with its value If the value matches the server s own calculations authentication is provided Otherwise the connection is terminated Note RFC1334 defines both CHAP and PAP EDS1100 2100 User Guide 73 10 Services Settings The EDS1100 2100 also supports authentication scheme of None when no authentication is required during link negotiation Since the EDS1100 2100 does not support Network Address and Port Translation NAPT static routing table entries must be added to the serial side and network side devices both of which are external devices Use the EDS1100 2100 Web Manager or CLI to configure a network link using PPP over a serial line Turn off Connect Mode Accept Mode and Command mode before enabling PPP The EDS1100 2100 acts as the server side of the PPP link it can require a
137. oose to disable Mode Wait Time Serial String EDS1100 2100 User Guide Command Mode Always Immediately enables Command Mode for the serial line Use Serial String Enables Command Mode when the serial string is read on the serial line during boot time e Disabled Turns off Command Mode Enter the wait time for the serial string during boot up in milliseconds Enter the serial string characters Select a string type Text String of bytes that must be read on the Serial Line during boot time to enable Command Mode It may contain a time element in x milliseconds in the format x to specify a required delay Binary String of characters representing byte values where each hexadecimal byte value starts with Ox and each decimal byte value starts with backslash 45 8 Line and Tunnel Settings Table 8 5 Line 1 Command Mode Fields continued Echo Serial String Select Yes to enable echoing of the serial string at boot up Signon Message Enter the boot up signon message Select a string type Text String of bytes sent on the serial line during boot time Binary One or more byte values separated by commas Each byte value may be decimal or hexadecimal Start hexadecimal values with Ox Note This string gets output on the serial port at boot regardless of whether command mode is enabled or not 3 Click Submit Tunnel Settings Tunneling allows serial devices to communicat
138. ous Statistics Browse statistics and current usage information of the flash filesystem The filesystem can be compacted Filesystem Statistics palaces h formatting the filesystem Filesystem Size 3 562500 Mbytes 3735552 bytes Available Space 3 559544 Mbytes 9732454 bytes 99 Clean Space 3 559544 Mbytes 3732454 bytes 99 Dirty Space O bytes 0 File amp Dir Space Used 3 025 Kbytes 3098 bytes 0 Data Space Used 2 750 Kbytes 2817 bytes Number of Files 0 Number of Dirs 0 Number of System Files 2 Opened Files 0 Locked Files 0 Opened for Sharing 0 Current Bank B FW Sectors 02 13 1 erase cycle Bank A Sectors 14 70 0 erase cycles Bank B Sectors 71 127 2 erase cycles Busy No Actions Compact Eormat Copyright Lantronix Inc 2007 2010 All rights reserved 2 Click Compact in the Actions row to compact the files Note The compact should not be needed under normal circumstances as the system manages this automatically 3 Back up all files before you perform Step 4 because all user files get erased in that step 4 Cick Format in the Actions row The configuration gets retained Filesystem Browser To browse the filesystem perform the following steps 1 Click Filesystem gt Browse Figure 13 2 shows the page that displays EDS1100 2100 User Guide 108 13 Maintenance and Diagnostics Settings Figure 13 2 Filesystem Browser Web Page EDS2100 LAYTON Power
139. pe Middle East and Africa technical support 147 Evolution OS 16 153 F Filesystem 35 H host configuration 70 L Lantronix discovery protocol 19 line settings 41 command mode 20 ccccceeeeeesseesseeeeeeeeeeeesneeeaeesees 44 configuration ooo eee eeseeeeesneeeeeeeeeeaeeeeesaeeteeeeenenees 42 Se 41 maintenance and diagnostics settings 107 diagnostics buffer pools 124 DNS lookup 122 hardware 117 IP sockets 119 memory 124 MIB II 118 ping 120 processes 125 traceroute 121 filesyste browser 108 THESYSTOIN oipo 107 statistics 107 IP address filter eeeecceeeceeeeeeseeeeeeeeeeeeeeeeeeeees 115 protocol Stack sisiiaersierisenitsp kenenirrtgesai ioiei 111 ARP 113 ICMP 113 IP 112 TCP 111 QUGLY POM aaa aa eaei 116 SYSTEM raae ia r a a ie 127 EDS 1100 2100 User Guide Index N network settings ethernet link sorrienni eran ete iiine 39 interface configuration eeesseeeeerrerreerreee 38 interface Status oprie i 37 O overview addresses and port numbers eceeteeeeeees 19 applications srra trn aa a eii 15 configurations methodS seeen 18 CLI 18 deviceinstaller 18 web manager 18 xml 18 Evolution OS oo ecceccceeceeeseeeeeeeeeeesseeeesneeeeees 16 hardware address ccccccccseceeeeeeeeteeeeeseeeeneeeeees 19 IP address eooiionieerrnicni rinnen naear inan 19 key product features 15 port numbers nssaansisnereernrerinaerunernnnennnnenrnnennnnrnnenna 19 product
140. port can connect to an Ethernet 10 Mbps or Fast Ethernet 100 Mbps network Reset Button You can reset the EDS1100 to factory defaults including clearing the network settings The IP address gateway and netmask are set to 00s To reset the unit to factory defaults perform the following steps 1 Place the end of a paper clip or similar object into the reset opening back panel and press for a minimum of 3 seconds 2 Remove the paper clip to release the button The firmware restores factory default settings to the configuration and reboots the unit Top LEDs Figure 3 6 shows the top of the EDS1100 and Table 3 1 lists and describes the LEDs that are on the top of the device EDS1100 2100 User Guide 22 3 Installation of EDS1100 Figure 3 6 EDS1100 Top LEDs 2PAQE 6 UE V OOL OL Power TX Serial RXSerial Diagnostic EDS110 Serial RS232 422 485 Table 3 1 EDS1100 LEDs and Descriptions Power blue ON EDS is receiving power TX Serial green Blinking EDS is transmitting data on the serial port RX Serial yellow Blinking EDS is receiving data on the serial port Diagnostic ON EDS firmware has completed booting Blinking 1x sec EDS firmware is booting Blinking 2x sec EDS is writing a file to flash Blinking 4x sec EDS is compacting the file system Blinking 5x sec EDS is restoring factory defaults Installing the EDS1100 Be sure to place the device on a fla
141. re the Private Key will not be Remote compromised in transit This implies Command the data is uploaded over some kind f of secure private network Private Key 3 WARNING When generating new Public Key Keys using a larger Bit Size will result in a longer key generation Key Type ORSA ODSA time Tests on this hardware have Add Edit shown it can take upwards of 10 seconds for a 512 bit RSA Key 15 seconds for a 768 bit RSA Key 1 minute for a 1024 bit RSA key Create New Keys 1 minute for a 512 bit DSA Key Note User must first be created using the form above mes z H pede DAA ay The default Remote Command is Username lt Default login shell which tells the SSH Server to Key Type ORSA ODSA execute a remote shell upon ae connection This can be changed to Bit Size 512 O768 1024 anything the SSH Server on the 5 remote host can execute Current Configuration No Users are currently configured for the SSH Client Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 11 4 Table 11 4 SSH Client Users Fields Username Enter the name that the EDS1100 2100 uses to connect to a SSH server Password Enter the password associated with the username Remote Command Enter the command that can be executed remotely Default is shell which tells the SSH server to execute a remote shell upon connection This command can be changed to anything the remote host can
142. require different public keys and thus different styles of certificate The EDS1100 2100 supports key exchange methods that require a RSA style certificate and key exchange methods that require a DSA style certificate If only one of these certificates is stored in the EDS1100 2100 only those key exchange methods that can work with that style certificate are enabled RSA is sufficient in most cases SSL Certificates and Private Keys You can obtain a certificate by completing a certificate request and sending it to a certificate authority that will create a certificate key combo usually for a fee Or generate your own A few utilities exist to generate self signed certificates or sign certificate requests The EDS1100 2100 also has the ability to generate its own self signed certificate key combo You can use XML to export the certificate in PEM format but you cannot export the key Hence the internal certificate generator can only be used for certificates that are to identify that particular EDS1100 2100 EDS1100 2100 User Guide 98 11 Security Settings Certificates and private keys can be stored in several file formats Best known are PKCS12 DER and PEM Certificate and key can be in the same file or in separate files The key can be encrypted with a password or not The EDS1100 2100 currently only accepts separate PEM files The key needs to be unencrypted SSL Utilities Several utilities exist to convert between the formats as follo
143. rmation transferred in gets transferred out It is possible to change the default settings for verbose response codes echo commands and quiet mode by using Command Mode commands The current settings can be overridden however on reboot the settings return to the programmed settings Configure the connect string as required The connect string appends to the communication packet when the modem connects to a remote location It is possible to append additional text to the connect message Command Mode The Modem Emulation Command Mode supports the standard AT command set For a list of available commands from the serial or Telnet login enter AT Use ATDT ATD and ATDP to establish a connection All of these commands behave like a modem For commands that are valid but not applicable to the EDS1100 2100 an OK message is sent but the command is silently ignored The EDS1100 2100 attempts to make a Command Mode connection as per the IP DNS port numbers defined in Connect Mode It is possible to override the remote address as well as the remote port number Table 8 1 lists and describes the available commands Table 8 1 Modem Emulation Commands and Descriptions Switches to Command Mode if entered from serial port during connection AT Help ATDT lt Address Info gt Establishes the TCP connection to socket lt ipaddress gt lt port gt ATDP lt Address Info gt See ATDT ATD Like ATDT Dials default Connect Mode remot
144. s Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Connect Mode Mode Disable v Local Port lt Random gt Host 1 VIP Testing 80 TCP 45000 msec VIP Enabled O Disabled VIP Name Test2 Host Port fe 2 Protocol TCP be lea 45000 milliseconds Host 3 lt None gt Host Mode Sequential O Simultaneous Reconnect Timer 15000 milliseconds Flush Serial Data Enabled Disabled Block Serial O Enabled Disabled Block Network O Enabled Disabled Email on Connect lt None gt Email on P lt None gt Disconnect Copyright Lantronix Inc 2007 2010 All rights reserved 2 Click Submit The hosts change sequence Disconnect Mode Disconnect Mode ends Accept Mode and Connect Mode connections It runs in the background of an active connection to determine when to disconnect When disconnecting the EDS1100 2100 shuts down connections gracefully The following settings end a connection Stop character received EDS1100 2100 User Guide 61 8 Line and Tunnel Settings Timeout period elapsed and no activity Both Accept Mode and Connect Mode must be idle for a specified time frame Modem control inactive setting Note To clear data out of the serial buffers upon a disconnect enable Flush Serial Data To configure Disconnect Mode perform the following steps 1 Click Tunnel 1 gt Disconnec
145. s appears at the left side of the web page There are accessible sections listed in the Main Menu such as CLI Diagnostics Protocol Stack etc To display one of these sections click it The Help displays on the right side of the web page and contains information or instructions associated with the page The center of a web page contains the following additional sections Atthe top there are links to configurable fields The links often indicate the configurable field for example Line Host or Tunnel In the middle you can select or enter new configuration settings Some pages display statistics or status in this area rather than allow you to enter settings At the bottom the current configuration displays In some cases you can reset or clear a setting Atthe very bottom the copyright information displays with a link to the Lantronix home page Navigating the Web Manager The Web Manager provides an intuitive point and click interface A menu bar on the left side of each page provides links you can click to navigate from one page to another Some pages are read only while others let you change configuration settings EDS1100 2100 User Guide 34 6 Configuration Using Web Manager Note There may be times when you must reboot the EDS1100 2100 for the new configuration settings to take effect The chapters that follow indicate when a change requires a reboot Table 6 3 Summary of Web Manager Pages
146. s in Table 10 2 Table 10 2 SNMP Fields SNMP Agent Select On to enable SNMP Read Community Enter the SNMP read only community string Write Community Enter the SNMP read write community string System Contact Enter the name of the system contact System Name Enter the system name System Description Enter the system description System Location Enter the system location Traps Enabled Select On to enable the transmission of the SNMP cold start trap messages This trap is generated during system boot EDS1100 2100 User Guide 76 FTP 10 Services Settings Table 10 2 SNMP Fields continued Primary Trap Dest IP Enter the primary SNMP trap host Secondary Trap Dest IP Enter the secondary SNMP trap host 3 Click Submit Note You can delete the read and write communities and system name by clicking the Delete link in the Current Configuration table The FTP web page shows the FTP configuration and statistics about the FTP server To configure FTP perform the following steps 1 Click FTP on the Main Menu Figure 10 4 shows the page that displays Figure 10 4 FTP Web Page EDS2100 ae Powered by Evolution OS EVOLUTION OS This page displays the configuration and statistics for the FTP Server Configuration State Enabled Disabled Admin Username admin Admin Password lt Contigured gt Statistics Status Running Connections Rejected 0 Connections Accepted 6 Active Connections 0 Last Clien
147. sconnects 0 Dropped Accepts 0 Dropped Connects 0 Octets forwarded from Serial 0 Octets forwarded from Network 0 Accept Connection Time 0 days 00 00 00 Connect 1 Connection Time 0 days 00 00 00 Connect 2 Connection Time 0 days 00 00 00 Connect 3 Connection Time 0 days 00 00 00 Connect 4 Connection Time 0 days 00 00 00 Connect 5 Connection Time 0 days 00 00 00 Connect 6 Connection Time 0 days 00 00 00 Connect 7 Connection Time 0 days 00 00 00 Connect 8 Connection Time 0 days 00 00 00 Connect 9 Connection Time 0 days 00 00 00 Connect 10 Connection Time 0 days 00 00 00 Connect 11 Connection Time 0 days 00 00 00 Serial Settings Serial line settings are configurable for both serial line 1 and serial line 2 Configure the buffer size to change the maximum amount of data the serial port stores For any active connection the EDS1100 2100 sends the data in the buffer The modem control signal DTR on the Line may be continually asserted or asserted only while either an Accept Mode tunnel or a Connect Mode tunnel is connected To configure the serial settings perform the following steps 1 Click Tunnel gt Tunnel 1 gt Serial Settings Figure 8 7 shows the page that displays EDS1100 2100 User Guide 47 8 Line and Tunnel Settings Figure 8 7 Tunnel 1 Serial Settings Web Page E D S 21 0 0 LANTRONIX Powered by Evolution OS EVOLUTION OS The Serial Settings apply to the Tunnel 1 Tunnel 2 Serial Line interfa
148. settings require a reboot for the changes to take effect BOOTP Client DHCP Client IP address DHCP Client ID Network 1 Ethernet Link To display and change settings in the Network 1 Ethernet Link web page perform the following steps 1 Click Network on the Main Menu EDS1100 2100 User Guide 39 7 Network Settings 2 Click Network 1 gt Link Figure 7 4 shows the page that displays Figure 7 4 Network1 eth0 Ethernet Link Web Page EDS2100 Powered by Evolution OS Network 1 Interface Link Network 1 ethO Ethernet Link Status Speed 100 Mbps Duplex Half Configuration Speed Auto O10Mbps 100Mbps Duplex Auto O Half Copyright Lantronix Inc 2007 2010 All rights reserved 3 Enter or modify the fields in Table 7 5 Table 7 5 Network 1 eth0 Ethernet Link Fields LANTRONIX EVOLUTION OS This page shows status and configuration of an Ethernet Link on the device The Status table shows the current negotiated settings The Configuration table shows the current range of allowed settings After changing a setting press Submit to make the changes on the device Speed Select the Ethernet link speed Auto is the default Duplex Select the Ethernet link duplex mode Auto is the default 4 Click Submit EDS1100 2100 User Guide 40 8 Line and Tunnel Settings This chapter describes how to view and configure lines and tunnels It cont
149. shed tunnel connection attempts begin again from the first host This is the default Simultaneous Tunnel connects to all of the hosts that accept a connection To configure Host 2 and other hosts up to a maximum of 16 perform the following steps 1 Click lt Nones gt in the Host 2 field Figure 8 19 shows the page that displays EDS1100 2100 User Guide 59 Figure 8 19 Host 2 Configuration Fields EDS2100 Powered by Evolution OS 8 Line and Tunnel Settings LANTRONIX EVOLUTION OS Tunnel1 Tunnel 2 Statistics Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel Connect Mode controls how a tunnel behaves when a connection attempt originates locally Tunnel 1 Connect Mode Mode Disable Local Port lt Random gt Host 1 VIP fulton 20 TCP 45000 msec VIP Enabled O Disabled VIP Name ffulton2 Al Host Port a3 2 5 Protocol TCP v a 45000 milliseconds Host 3 lt None gt Host Mode Sequential O Simultaneous Reconnect Timer 15000 milliseconds Flush Serial Data O Enabled Disabled Block Serial O Enabled Disabled Block Network O Enabled Disabled Email on Connect lt None gt Email on On al Disconnect L lt None gt i 2 Enable VIP by clicking Enabled The default is disabled 3 Enter a VIP Name Note 4 Enter the Port number See 12 VIP for more information about specifyi
150. t 172 19 212 2 26677 Copyright Lantronix Inc 2007 2010 All rights reserved EDS1100 2100 User Guide 77 2 Enter or modify the fields in Table 10 3 Table 10 3 FTP Fields 10 Services Settings State Select Enabled to enable the FTP server Admin Username Enter the username to use when logging in via FTP Admin Password Enter the password to use when logging in via FTP 3 Click Submit TFTP In the TFTP web page you can configure the server and view the status and statistics To configure TFTP server perform the following steps 1 Click TFTP on the Main Menu Figure 10 5 shows the page that displays Figure 10 5 TFTP Server Web Page EDS2100 Powered by Evolution OS TFTP Server Configuration State Allow File Creation Allow XCR Import Statistics Status Files Downloaded Files Uploaded File Not Found Errors File Read Errors File Write Errors Unknown Errors Last Client Allow Firmware Update Enabled Disabled OEnabled Disabled O Enabled Disabled O Enabled Disabled Running oro ol rol ole No device has connected LANTRONIX EVOLUTION OS This page displays the current configuration and statistics for the TFTP Server Copyright Lantronix Inc 2007 2010 All rights reserved EDS1100 2100 User Guide 78 10 Services Settings 2 Enter or modify the fields in Table 10 4 Table 10 4 TFTP Server Fields State Sele
151. t Configuration table The URI realm username and password are user specified free form fields The URI must match the directory created on the filesystem RSS Really Simple Syndication RSS sometimes referred to as Rich Site Summary is a method of sending online content to Web users Instead of actively searching for EDS1100 2100 configuration changes RSS enables viewing relevant and new information regarding changes made to the EDS1100 2100 via an RSS publisher RSS can be stored to the file system cfg_log txt file To configure RSS perform the following steps 1 Click RSS on the Main Menu Figure 10 10 shows the page that displays EDS1100 2100 User Guide 85 10 Services Settings Figure 10 10 RSS Web Page FDS2100 LANRONX Powered by Evolution OS EVOLUTION OS An RDF Site Summary RSS syndication feed is served by the RSS HTTP Server This feed contains up to date information regarding the configuration changes that occur RSS Feed Oon Oof Sac Specifying the RSS Feed to be Persistent Oon off Persistent results in the data being stored on the filesystem The Max Entries 100 file used is fcftg_log txt This allows feed data to be available across reboots or until the factory defaults are set Each RSS Feed entry is prefixed Current Status with a timestamp as follows BC HH MM SS BC is the Data D entries 0 bytes View Clear Boot Cycle value This value is th
152. t Mode Figure 8 21 shows the page that displays Figure 8 21 Tunnel 1 Disconnect Mode Web Page EDS2100 LATION Powered by Evolution 0S EVOLUTION OS F These settings relate to Tunnel 1 Tunnel 2 Disconnecting a Tunnel Statistics Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 Disconnect Mode Stop Character lt None gt Modem Control O Enabled Disabled Timeout lo milliseconds Flush Serial Data O Enabled Disabled Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 8 22 Table 8 22 Tunnel Disconnect Mode Fields Stop Character Enter the stop character in ASCII hexadecimal or decimal notation Select lt None gt to disable Modem Control Select Enabled to disconnect when the modem control pin is not asserted on the serial line EDS1100 2100 User Guide 62 8 Line and Tunnel Settings Table 8 22 Tunnel Disconnect Mode Fields continued Timeout Enter a time in milliseconds for the EDS1100 2100 to disconnect on a timeout The value 0 zero disables the idle timeout Flush Serial Data Select Enabled to flush the serial data buffer on a disconnection 3 Click Submit Modem Emulation The EDS1100 2100 supports Modem Emulation mode for devices that send out modem signals There are two different modes supported Command Mode Sends verbal response codes e Data Mode Info
153. t horizontal or vertical surface The device comes with mounting brackets for mounting the device vertically for example on a wall If using AC power avoid outlets controlled by a wall switch Observe the following guidelines when connecting the serial devices The EDS1100 serial ports support RS 232 422 485 devices The null modem cable is the best cable to connect the serial port to a DCE device The straight though modem cable is the best cable to connect the serial port to a DTE device e Power up the device by using the barrel power connector only The barrel power connector supports a power range of 9 to 30 VDC Note As soon as you plug the device into power the device powers up automatically the self test begins and Evolution OS starts Perform the following steps to install your device The steps are shown in Figure 3 7 1 Connect a serial device to your unit EDS1100 2100 User Guide 23 3 Installation of EDS1100 2 Connect an Ethernet cable between the EDS1100 RJ45 port and your Ethernet network 3 Plug the EDS1100 into the power outlet by using the power supply that was included in the packaging The required input voltage is 9 30 VDC center with 1 5W maximum power required 4 Power up the serial device Figure 3 7 EDS1100 Connections _ E K Serial Devices Cat5 Ethernet Cable 10 100BASE T Ethernet EDS 1100 2100 User Guide 24 y Installation of EDS2100 This chapter describ
154. t server perform the following steps 1 Click Query Port on the Main Menu Figure 13 8 shows the page that displays Figure 13 8 Query Port Web Page EDS2100 LANTRONIX i Powered by Evolution OS EVOLUTION OS This page displays various Statistics and current usage Query Port information for the Query Port Server The Query Port Server is a simple application that only Query Port Server On Off responds to auto discovery messages on port Ox77FE Current Configuration and Statistics Query Port Status On running In Valid Queries In Unknown Queries In Erroneous Packets Out Query Replies 00 0 00 Out Errors Last Connection No device has connected Copyright Lantronix Inc 2007 2010 All rights reserved 1 Select On Off is the default 2 Click Submit EDS1100 2100 User Guide 116 13 Maintenance and Diagnostics Settings Diagnostics The EDS1100 2100 has several tools to perform diagnostics and view device statistics These include information on e Hardware MIB II IP Sockets Ping Traceroute DNS Lookup Memory Buffer Pools gt UM Processes Hardware To display the Hardware configuration perform the following steps 1 Click Diagnostics gt Hardware Figure 13 9 shows the page that displays EDS 1100 2100 User Guide 117 13 Maintenance and Diagnostics Settings Figure 13 9 Hardware Web Page EDS2100 LANTONIX Powered by Evolution OS E
155. t to establish a conduit with the ManageLinx DSM Once the conduit is up tunneling via VIP Access is ready to go This chapter contains the following sections Obtain a Bootstrap File Import the Bootstrap File Enable VIP Configure Tunnels to Use VIP VIP Statistics gt o VIP Configuration Obtain a Bootstrap File The ManageLinx XML bootstrap file is an XML file that contains the information required to contact and authenticate to a DSM This file must be generated and sent to you by the DSM administrator See the ManageLinx documentation for more details Import the Bootstrap File To configure an EDS1100 2100 to use VIP Access import the bootstrap file as you would any XML Configuration Record XCR For instructions on importing XCRs see Chapter 14 Advanced Settings EDS 1100 2100 User Guide 103 12 VIP Enable VIP Once the bootstrap file has been imported VIP Access can be enabled and a conduit with the DSM will be established The VIP Statistics shows the current state of the conduit When configured correctly a conduit with the DSM will be maintained at all times Configure Tunnels to Use VIP Configuring Connect Mode tunnels to use VIP is a simple matter of configuring a tunnel as is normally done but also enabling VIP in the Tunnel Host settings and using a VIP Name for the address VIP Accept Mode tunnels do not require special configuration If VIP access is enabled in the VIP configuration pag
156. that ARE ALLOWED to send data to this device All packets from IP Addresses not in this list are IP Address n j ignored and thrown away p If the fitter list is empty then all IP Network Mask Address are allowed j WARNING If using DHCP BOOTP Add make sure the IP Address of the DHCP BOOTP server is in the filter list Current State 172 19 100 220 has been added to the IP Address Filter Table 0 incoming and 0 outgoing packets have been filtered since the last reboot IP Address Network Mask 172 19 100 220 Remove 255 255 10 10 Copyright Lantronix Inc 2007 2010 All rights reserved Note Be aware not to assign your network IP address as filtered You will have to reset your system because the EDS1100 2100 has locked your network out 2 Enter or modify the fields in Table 13 4 Table 13 4 IP Address Filter Fields IP Address Enter the IP address to add to the IP filter table Network Mask Enter the IP address network mask in dotted notation EDS1100 2100 User Guide 115 13 Maintenance and Diagnostics Settings 3 Click Add Note You can remove IP addresses by clicking Remove in the Current State table Query Port The query port 0x77FE is used for the automatic discovery of the device by the Devicelnstaller utility Only Ox77FE discover messages from Devicelnstaller are supported For more information on Devicelnstaller see 5 Using Devicelnstaller To configure the query por
157. tion Web Page 88 Figure 11 1 SSH Server Host Keys Web Page 91 Figure 11 2 SSH Server Authorized Users Web Page 93 Figure 11 3 SSH Client Known Hosts Web Page 94 Figure 11 4 SSH Client Users Web Page 96 Figure 11 5 SSL Web Page 100 Figure 12 1 VIP Statistics Web Page 104 Figure 12 2 VIP Configuration Web Page 106 Figure 13 1 Filesystem Statistics Web Page 108 Figure 13 2 Filesystem Browser Web Page 109 Figure 13 3 TCP Web Page 111 Figure 13 4 IP Web Page 112 Figure 13 5 ICMP Web Page 113 Figure 13 6 ARP Web Page 114 Figure 13 7 IP Address Filter Web Page 115 Figure 13 8 Query Port Web Page 116 Figure 13 9 Hardware Web Page 118 Figure 13 10 MIB II Web Page 119 Figure 13 11 IP Sockets Web Page 120 Figure 13 12 Ping Web Page 121 Figure 13 13 Traceroute Web Page 122 Figure 13 14 DNS Lookup Web Page 123 Figure 13 15 Memory Web Page 124 Figure 13 16 Buffer Pools Web Page 125 Figure 13 17 Processes Web Page 126 Figure 13 18 System Web Page 127 Figure 14 1 Email Statistics Web Page 129 Figure 14 2 Email 1 Configuration Web Page 130 Figure 14 3 CLI Statistics Web Page 132 Figure 14 4 CLI Configuration Web Page 133 Figure 14 5 XML Export Configuration Web Page 135 Figure 14 6 XML Export Status Web Page 137 Figure 14 7 Import Configuration Web Page 138 Figure 14 8 Import Configuration from External File Web Page 139 Figure 14 9 Import Configuration from Filesystem Web Page 140 Figure 14 10 Import Lines from Single Line Settings on the Filesystem Web Pag
158. to Ethernet networks using the IP protocol family o Security alarm and access control devices Patient monitoring equipment Medical instrumentation Industrial Manufacturing Automation systems Building Automation equipment Point of Sale Systems EDS 1100 2100 User Guide 15 2 Overview ATM machines Data display devices Modem Time attendance clocks and terminals Protocol Support The EDS1100 2100 device server supports the following TCP IP protocols ARP IP UDP TCP ICMP BOOTP DHCP Auto IP Telnet DNS FTP TFTP HTTP HTTPS SSH SSL TLS SNMP SMTP RSS PPP and Syslog for network communications and management TCP UDP TCP AES UDP AES Telnet SSH and SSL TLS for tunneling to the serial port TFTP FTP and HTTP for firmware upgrades and uploading files Evolution OS The EDS1100 2100 features the Lantronix Evolution OS Key features of the Evolution OS include e Built in Web server for configuration and troubleshooting from Web based browsers CLI configurability SNMP management XML data transport and configurability Really Simple Syndication RSS information feeds Enterprise grade security with SSL and SSH OM Comprehensive troubleshooting tools Software Features Modem Emulation In modem emulation mode the EDS1100 2100 can replace dial up modems The unit accepts modem AT commands on the serial port and then establishes a network con
159. toolset that lets you troubleshoot problems quickly and easily Available from the Web Manager CLI and XML interfaces the diagnostic tools let you View critical hardware memory MIB II buffer pool and IP socket information e Perform ping and traceroute operations e Conduct forward or backup DNS lookup operations View all processes currently running on the EDS1100 2100 including CPU utilization and total stack space available Configuration Methods After installation the EDS1100 2100 requires configuration For the unit to operate correctly on a network it must have a unique IP address on the network There are four basic methods for logging into the EDS1100 2100 and assigning IP addresses and other configurable settings e Devicelnstaller Configure the IP address and related settings and view current settings on the EDS1100 2100 using a PC GUI attached to a network See Using Devicelnstaller on page 30 Web Manager Use a web browser to configure the EDS1100 2100 settings using the Lantronix Web Manager See Configuration Using Web Manager on page 32 Command Line Interface CLI There are two methods for accessing CLI making a Telnet connection or connecting a terminal or a PC running a terminal emulation program to the serial port Refer to the EDS1100 2100 Command Reference Guide for instructions and available commands e XML The EDS1100 2100 supports XML based configuration and setup records that make
160. transferred to and from the HTTP Server is encrypted There is no real reason to create an lauthentication directive using Hone unless you want to override a parent directive that uses some other AuthType Multiple users can be configured within a single authentication directive Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 10 7 Table 10 7 HTTP Authentication Fields URI Enter the Uniform Resource Identifier URI Note The URI must begin with 7 to refer to the filesystem Realm Enter the domain or realm used for HTTP Required with the URI field EDS1100 2100 User Guide 84 10 Services Settings Table 10 7 HTTP Authentication Fields continued Auth Type Select the authentication type e None No authentication is necessary Basic Encodes passwords using Base64 Digest Encodes passwords using MD5 SSL The page can only be accessed over SSL no password is required SSL Basic The page is accessible only over SSL and encodes passwords using Base64 SSL Digest The page is accessible only over SSL and encodes passwords using MD5 Username Enter the Username used to access the URI Note More than one username per URI is permitted Click Submit and enter the next Username Password Enter the Password for the Username 3 Click Submit Notes You can delete URI and users by clicking the Delete link in the Curren
161. ttings This chapter describes how to view and configure terminals and hosts It contains the following sections e Terminal Settings e Host Configuration Terminal Settings You can configure a terminal on a serial line or on the network by using the Terminal web page When you click Terminal from the Main Menu Line 1 fields display To go to the network or line 2 click the Network or Line 2 button Network Terminal Configuration To configure menu features applicable to CLI access via the network perform the following steps 1 Click Terminal gt Network Figure 9 1 shows the page that displays Figure 9 1 Terminal on Network Configuration Web Page EDS2100 Powered by Evolution OS Network Line1 Line2 Configuration Terminal on Network Configuration Terminal Type UNKNOWN Login Connect Menu O Enabled Disabled Exit Connect Menu O Enabled Disabled Echo Enabled Disabled LANTRONIX EVOLUTION OS The text in Terminal Type will be sent to a host via IAC Selecting Login Connect Menu will bring the user to a menu rather than to the command line interface CLI upon logging in The menu displays hosts and named lines Selecting Exit Connect Menu allows a user to reach the command line interface CLI from the Connect Menu When the Send Break control character is received from the network on its way to a Serial Line it will not be sent to the Line instead t
162. ure locations I device E email Notice that by default all Groups 7 ethernet ethO E ftp server to Export are checked except oe some pertaining to the network v host E http authentication uri configuration this is so that if you dii r later paste the entire XML lv http server icmp configuration it will not break your FI y network connectivity You may interface ethO ca 3 check or uncheck any group to E ip filter M line include or omit that group from export x Ipd m ManageLinx Selection of Lines to Export filters V ppp E query port instances to be exported in the line ay Ipd ppp serial tunnel and terminal Iv rss E serial command mode groups v snmp E ssh client lM ssh command mode ssh server 7 ssl E syslog M tcp El telnet command mode Z terminal E tftp server v tunnel accept E tunnel connect tunnel disconnect E tunnel modem tunnel packing E tunnel serial T vip El xml import control Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 14 3 Table 14 3 XML Export Configuration Fields Export to browser Select this option to export the XCR data in the selected fields to a web browser EDS1100 2100 User Guide 135 14 Advanced Settings Table 14 3 XML Export Configuration Fields continued Export to local file Select this option to export the XCR data to a file on the device If you select this option enter a file nam
163. uthentication and assign an IP address to the peer Upon PPP configuration IP packets are routed between Ethernet and PPP interfaces The EDS1100 2100 does not perform network address translation NAT between the serial side network interface and the Ethernet WLAN network interface Therefore to pass packets through the EDS1100 2100 a static route must be configured on both the PPP Peer device and the remote device it wishes to communicate with The static route in the PPP Peer device must use the PPP Local IP Address as its gateway and the static route in the remote device must use the Ethernet WLAN IP Address of the EDS1100 2100 as its gateway To configure PPP perform the following steps 1 Click PPP on the Main Menu Figure 10 2 shows the page that displays Figure 10 2 PPP Configuration Web Page EDS2100 Powered by Evolution 0S LANTRONIX EVOLUTION OS This page is used to configure a Line 1 Line 2 network link using PPP over a serial Ere line Note that this device acts as the server side of the PPP link This Configuration device can force authentication and WA a Le is able to assign an IP Address to the peer Once the PPP interface is up IP packets are routed to and PPP on Line 1 Configuration from the Ethernet and PPP interfaces WARNING Serial protocol is not PPP The Local IP Address is the IP Address that will be assigned to the PPP interface on the device It may be entered alone in CIDR
164. v3 SSLv3 handles the rest of the connection This chapter contains the following sections SSH Server Host Keys SSH Server Authorized Users SSH Client Known Hosts SSH Client User Configuration SSH Server Host Keys SSL Certificates SSL RSA or DSA SSL Certificates and Private Keys SSL Utilities SSL Configuration SSH Server Host Keys gt gt gt The SSH Server Host Keys web page opens when you click SSH from the Main Menu It has four sub menus for viewing and changing SSH server host keys SSH server authorized keys SSH client known hosts and SSH client users Note SSH keys may be created on another computer and uploaded to the EDS1100 2100 For example use the ssh keygen b 1024 t dsa command to create a 1024 bit DSA key pair SSH Keys from other programs may be converted to the required EDS1100 2100 format Use Open SSH to perform the conversion To create or upload SSH server host keys perform the following steps 1 Click SSH on the Main Menu Figure 11 1 shows the page that displays EDS 1100 2100 User Guide 90 11 Security Settings Figure 11 1 SSH Server Host Keys Web Page EDS2100 ANTON Powered by Evolution OS EVOLUTION OS j The SSH Server Host Keys are SSH Server Host Keys SSH Client Known Hosts jasad by ell applications thet play the role of an SSH Server Specifically SSH Server Authorized Users SSH Client Users the Command Line Interface
165. various statistics for the Serial Line Copyright Lantronix Inc 2007 2010 All rights reserved Line Configuration To configure a line perform the following steps 1 Click Line gt Line 1 gt Configuration Line 2 has the same fields as Line 1 Figure 8 2 shows the page that displays EDS1100 2100 User Guide 42 8 Line and Tunnel Settings Figure 8 2 Line 1 Configuration Web Page DS2100 LANTRONX Powered by Evolution OS EVOLUTION OS This page displays the current Line 1 Line2 configuration of the Serial Line SS Changing any of the fields takes effect immediately Statistics Configuration Command Mode Hamed lines appear in the Login Connect Menu if enabled Set it blank to leave it out of the menu Line 1 Configuration When specifying a Custom baud rate select Custom from the drop down list and then enter the desired Configuration Status rate in the text box f 7 Optional 120 Ohm Termination Name can be selected for the R5485 Half i Duplex 2 wire mode Under some Interface R5232 Mi circumstances this can improve a lE T a Enabled signal quality ate Enanle naveg When specifying either Xon char or Xoff char either prefix decimal with or prefix hexadecimal with 0x x or prefix a single control character Baud Rate 9600 M 9600 with lt control gt These are used when Flow Control is set to Protocol Tunnel v Tunnel Parity None None Software
166. versions Many of the configuration procedures require that you assemble a series of options represented as bits into a complete command represented as a byte The resulting binary value must be converted to a hexadecimal representation Use this chapter to learn to convert binary values to hexadecimals or to look up hexadecimal values in the tables of configuration options The tables include Command Mode serial string sign on message AES Keys Converting Binary to Hexadecimal Following are two simple ways to convert binary numbers to hexadecimal notation Conversion Table Hexadecimal digits have values ranging from 0 to F which are represented as 0 9 A for 10 B for 11 etc To convert a binary value for example 0100 1100 to a hexadecimal representation treat the upper and lower four bits separately to produce a two digit hexadecimal number in this case 4C Use the following table to convert values from binary to hexadecimal Table B 1 Conversion Values 0 0000 0 0001 _ 0010 001 1 0100 0101 0110 0111 1000 oO OA N ODO oa FP OD 1001 4 oO 1010 i a 1011 N 1100 o OO WroaonNn ons wip l 1101 EDS 1100 2100 User Guide 148 B Binary to Hexadecimal Conversions Table B 1 Conversion Values continued 14 1110 E 15 1111 F Scientific Calculator Another simple way to convert binary to hexadecimal is to use a scientific calculator such as the one avail
167. vice details SUMMALY scenerne 30 VESTO rE eee cps Laka E E 30 diagnostic toolset 18 E EDS1100 installation 20 back panel secie ieira eiaeaen 22 device top LEDS ceeeceeseneeeeeeceeneeeenseeneeeneees 22 ethernet LEDS ceeccccceeeeseeeceeeeeeeeeteeeeeeeseneeees 22 hardware COMPONENTS 0 0 eeeeeseeeeeeneeeeeneeeteneeees 20 installation Steps oo eee seseeeeeneeeeeeneeeeeneeeeeeeees 23 package Contents ccceeeeeceeeeeeeeeteeeeeeeeneeees 20 reset DURON icc hi Rie ene nits 22 rs 232 pinout configuration eseese 21 rs 422 pinout configuration eessen 21 rs 485 pinout configuration esseere 21 user supplied items eee eeeeeeeeeeeeeteeeeeeteeeneeeeees 20 EDS2100 installation 25 pack panel aeieea rea ee E ESEE 26 device top LEDS eeeceeseeceseeeeeeeseeeesseeeeeeeees 27 ethernet port LEDS 0 ee eeeeeeeeeeeeeneeeeeneereneeees 27 hardware COMPONENTS 0 00 eeeeseeeeeeneeeeeneeeteneeees 25 installation Steps oo eeeeseeeeeeeseeeeeeneeeeeneeeteneeees 28 package contents c ccceceeeeceeeeeeeeeteeeeeeeeeneeees 25 reset DURON secccscneeciesenteedteenseiccereieees neers 27 rs 232 pinout configuration esseere 25 rs 422 pinout configuration eeesseeseeseeeeeeeeeee 26 rs 485 pinout configuration eeesesseeseeeeeeeeeeee 26 user supplied items eeeeeeeeeeeeeeeeeeeeeseeeneeeeeees 25 email configuration 130 encrypt ion 18 Enterprise Grade Security 17 ethernet address 19 Euro
168. ws OpenSSL Open source set of SSL related command line utilities It can act as server or client It can generate or sign certificate requests It can convert all kinds of formats Executables are available for Linux and Windows To generate a self signed RSA certificate key combo use the following commands in the order shown openssl req x509 nodes days 365 newkey rsa 1024 keyout mp_key pem out mp_cert pem Note Signing other certificate requests is also possible with OpenSSL See www openssl org or www madboa com geek openss for more information Steel Belted Radius Commercial radius server by Juniper Networks that provides a GUI administration interface It also provides a certificate request and self signed certificate generator The self signed certificate has extension sbrpvk and is in the PKCS12 format OpenSSL can convert this into a PEM format certificate and key by usig the following commands in the order shown openssl pkcs12 in sbr_certkey sbrpvk nodes out sbr_certkey pem The sbr_certkey pem file contains both certificate and key If loading the SBR certificate into EDS1100 2100 as an authority you will need to edit it Open the file in any plain text editor Delete all info before the following and save as sbr_cert pem SBR accepts trusted root certificates in the DER format Again OpenSSL can convert any format into DER by using the following commands in the order shown openssl x509 inform pem in
169. y SSH Server Authorized Users SSH Client Users Tunneling in Connect Mode Configuring these public keys are optional but if they exist another H layer of security is offered which SSH Client Known Hosts sled ee np ele MITM attacks S Specify either a DNS Hostname or ervat IP Address when adding public host i e keys for a Server This Server Public RSA Key name should match the name used i Browse as the Remote Address in Pavlic DSA Key a Connect Mode Tunneling Current Configuration No Known Hosts are currently configured for the SSH Client Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 11 3 Table 11 3 SSH Client Known Hosts Fields Server Enter the name or IP address of a known host If you enter a server name the name should match the name of the server used as the Remote Address in Connect mode tunneling Public RSA Key Enter the path and name of the existing public RSA key you want to use with this known host or use the Browse button to select the key EDS1100 2100 User Guide 94 11 Security Settings Table 11 3 SSH Client Known Hosts Fields continued Public DSA Key Enter the path and name of the existing public DSA key you want to use with this known host or use the Browse button to select the key 3 Click Submit Note You can delete stored settings when the Delete link displays in the Current Configuration table SSH Cli
170. y the last Max Log Entries lines are cached and viewable Log Format Directives a remote IP address could be a proxy bytes sent excluding fd headers B bytes sent excluding headers 0 h remote host same as a header contents from En request h header string m request method ephemeral local port value jes used for request query string prepend with 4 or empty timestamp HH MM SS t same as Apache H 6M S t or HHTH remote user could be bogus for 401 status U URL path info first line of request same as m LU q lt version s return status u The max length for each directive is 64 bytes The exception is r where each element is limited to 64 bytes i e method URL path info and query string Copyright Lantronix Inc 2007 2010 All rights reserved 2 Enter or modify the fields in Table 10 6 Table 10 6 HTTP Configuration Fields HTTP Server Select On to enable the HTTP server EDS1100 2100 User Guide 82 10 Services Settings Table 10 6 HTTP Configuration Fields continued HTTP Port HTTPS Port HTTPS Protocols Max Timeout Max Bytes Logging Max Log Entries Log Format 3 Click Submit EDS1100 2100 User Guide Enter the port for the HTTP server to use The default is 80 Enter the port for the HTTPS server to use The default is 443 The HTTP server only listens on the HTTPS Port when an S
Download Pdf Manuals
Related Search