Lantronix EDS4100
Contents
1. lt control gt S 2 Enter or modify the following settings EDS User Guide Name Enter a name for the line The default Name is blank State Indicates whether the current line is enabled To change the state select Enabled or Disabled from the drop down menu Protocol Select the protocol from the drop down menu The default is Tunnel Baud Rate Select the baud rate from the drop down menu The default is 9600 Parity Select the parity from the drop down menu The default is None Data Bits Select the number of data bits from the drop down menu The default is 8 Stop Bits Select the number of stop bits from the drop down menu Flow Control The default is 1 Select the flow control from the drop down menu The 53 9 Line Tunnel Terminal and Host Settings default is None Xon Char Specify the character to use to start the flow of data when Flow Control is set to Software Prefix a decimal character with or a hexadecimal character with Ox or provide a single printable character The default Xon char is 0x11 Xoff Char Specify the character to use to stop the flow of data when Flow Control is set to Software Prefix a decimal character with or a hexadecimal character with Ox or provide a single printable character The default Xoff char is 0x13 3 Click Submit EDS User Guide 54 9 Line Tunnel Terminal and Host Settings Line Command Mode Setting Command Mode enables the comma2. On the TCP page you may modify the following settings Send RSTs TCP contains six control bits with one or more defined in each packet RST is one of the control bits The RST bit is responsible for telling the receiving TCP stack to end a connection immediately CAUTION Setting this flag may pose a security risk select Enabled to enable the sending of the RST flag Select Disabled to disable the sending of the RST flag EDS User Guide 106 12 Maintenance and Diagnostics Settings Ack Limit The Ack Limit specifies how many packets must be received before an ACK is forced If there is a large amount of data to acknowledge an ACK will be forced before this If the sender TCP implementation waits for an ACK before sending more data even though the window is open setting Ack Limit to 1 packet will improve performance by forcing immediate acknowledgements Send Data The Send Data selection governs when data may be sent into the network The Standard implementation waits for an ACK before sending a packet less than the maximum length Select Expedited to send data whenever the window allows it IP Setting On the TCP page you modify the Multicast Time to Live limit The limit is the number of hops a packet may make before it is terminated Figure 12 4 IP Protocol Page This page contains lower level IP TCP IF ICMP ARP Network Stack specific configuration tems The Multicast Time To Live value IP
3. Figure 12 15 Diagnostics Memory This chart shows the total amount Hardware MIB l IP Sockets of memory available and the current amount of memory available Ping Traceroute DNS Lookup Memory Buffer Pools Processes Diagnostics Memory Main Heap Total Memory bytes hbo foe 4 Available Memory bytes 50997920 Number Of Fragments pog Largest Fragment Avail 50078045 Allocated Blocks 4561 Number Of Allocs Failed 0 Status OK Buffer Pools Several parts of the EDS system use private buffer pools to ensure deterministic memory management Display the EDS buffer pools Click Diagnostics on the menu bar then Buffer Pools at the top of the page The Diagnostics Buffer Pools page appears EDS User Guide 115 EDS User Guide 12 Maintenance and Diagnostics Settings Figure 12 16 Diagnostics Buffer Pools Hardware MIB lI IP Sockets Ping Traceroute DNS Lookup Memory Buffer Pools Processes Diagnostics Buffer pools Total Free Used MaxUsed Cluster Pool Total Free Used MaxUsed Cluster Pool Total Free Used MaxUsed Buffer Headers 4 2 2 2 gt Cluster Pool Total Free Used MaxUsed Buffer Headers 4 2 2 2 Cluster Pool Total Free Used MaxUsed Buffer Headers 4 2 2 2 Cluster Pool Total Free Used MaxUsed Buffer Headers pm 32 32 32 Cluster Pool Te Free Used MaxUsed Bufer Headers Ip mp o 2 Cluster Pool Total Free Used MaxUsed Buffe
4. Lets you change the current Simple Network one Management Protocol SNMP configuration settings Lets you change the configuration settings for SSH 93 SSH server host keys SSH server authorized users SSH client known hosts and SSH client users SSL Lets you upload an existing certificate or create a new 99 self signed certificate Syslog Lets you specify the severity of events to log and the 82 server and ports to which the syslog should be sent Lets you reboot the EDS restore factory defaults System upload new firmware and change the EDS long and 120 short names Terminal Lets you change current settings for a terminal 72 Shows statistics and lets you change the current TFTP configuration for the Trivial File Transfer Protocol 81 TFTP server Tunnel Lets you change the configuration settings for a 57 Settings tunnel Lets you export XML configuration and status SH records and import XML configuration records 126 EDS User Guide 45 Device Status Page The Device Status page is the first page that appears when you log into the Web Manager It also appears when you click the Status link in the menu bar 7 Configuration Using Web Manager This read only page shows EDS product information network settings line settings and tunneling settings EDS User Guide Device Status Product Information Product Type Firmware Version Build Date Serial Number Uptime Permanent Config
5. 1024 bit DSA Key 99 2 Enter or modify the following settings Upload Certificate New Certificate New Private Key Upload Authority Certificate Authority Create New Self Signed Certificate Country 2 Letter Code This certificate identifies the EDS to peers It is used for HTTPS and SSL Tunneling Enter the path and name of the certificate you want to upload or use the Browse button to select the certificate RSA or DSA certificates with 512 to 1024 bit public keys are allowed The format of the file must be PEM The file must start with BEGIN CERTIFICATE and end with END CERTIFICATE Some Certificate Authorities add comments before and or after these lines Those need to be deleted before upload Enter the path and name of the private key you want to upload or use the Browse button to select the private key The key needs to belong to the certificate entered above The format of the file must be PEM The file must start with BEGIN RSA PRIVATE KEY and end with END RSA PRIVATE KEY Read DSA instead of RSA in case of a DSA key Some Certificate Authorities add comments before and or after these lines Those need to be deleted before upload One or more authority certificates are needed to verify a peer s identity It is used for SSL Tunneling These certificates do not require a private key Enter the path and name of the certificate you w
6. 15 Security in Detail Generate a self signed RSA certificate key combo openssl req x509 nodes days 365 newkey rsa 1024 keyout mp key pem out mp cert pem Steel Belted Radius Steel Belted Radius SBR is a commercial radius server by Juniper Networks that provides a GUI administration interface It also provides a certificate request and self signed certificate generator The self signed certificate has extension sbrpvk and is in the PKCS12 format OpenSSL can convert this into a PEM format certificate and key openssl pkcsl2 in sbr certkey sbrpvk nodes out sbr certkey pem The sbr certkey penm file contains both certificate and key If loading the SBR certificate into EDS as an authority you will need to edit it 1 Open the file in any plain text editor 2 Delete all info before BEGIN CERTIFICATE and after END CERTIFIGATE W and then save as sbr cert pem SBR accepts trusted root certificates in the DER format Again OpenSSL can convert any format into DER openssl x509 inform Gem in mp cert pem outform der out mp cert der Note With SBR when the identity information includes special characters such as dashes and periods SBR changes the format it uses to store these strings and becomes incompatible with the current EDS release We will add support for this and other formats in future releases FreeRadius Free Radius is a Linux open source Radius server It is versatile but
7. Figure 13 5 XML Export Configuration This page is used for exporting the Export Configuration Export Status Impor Configuration ML Syatzin e lgie bo JA format as XCR records The generated XML file can be imported at later time to restore the configuration Also the XML file can be modified and imported to update Oo Export to browser the configuration on this device or another Export to local file The XML data can be exported to the browser window or to file on Export secrets use only with extreme caution the filesystem Caution only export secrets over a secure connection and make sure that the data goes only to secure 1 M2 M3 Ma Ms wie we Me locations q network Motice that by default all Groups to Export are checked except those pertaining to the network configuration this is s0 that if you later paste the entire XML arp cli configuration t vill not break your clock device network connectivity YoU may check or uncheck any group to email C ethernet ett include or amit that group from ftp server host a Selection of Lines to Export fiters http authentication uri http server instances to be exported in the line icmp FI interface ctho Fe a and terminal ip ip filter line Ipd query port ros serial command mode snmp ssh client ssh command mode ssh server ssl syslog tep telnet command mode terminal tp server tunnel accept tunnel connect tunnel disconnect tunnel modem tun
8. From the Web Manager go to the Terminal page If Login Connect Menu is enabled you will see a preview layout in the lower part of the page From the Command Line Interface go to the config terminal level Use the preview connect menu command EDS User Guide T 10 Services Settings DNS Configuration This page shows the active run time settings for the domain name system DNS protocol The primary and secondary DNS addresses come from the active interface The static addresses from the Network Interface Configuration page may be overridden by DHCP or BOOTP The DNS page also shows any contents in the DNS cache When a DNS name is resolved using a forward lookup the results are stored in the DNS cache temporarily The EDS consults this cache when performing forward lookups Each item in the cache eventually times out and is removed automatically after a certain period or you can delete it manually View the EDS DNS configuration Click DNS on the menu bar The DNS page appears Figure 10 1 DNS Settings DNS This page displays the current Status of the DNS subsystem The primary and secondary DAS Current Status addresses come from the active interface The static addresses Primary DNS 172 19 1 1 DHCP from the Network Interface E Configuration page may be Secondary DNS 172 19 1 2 DHCP overridden by DHCP ar BOOTP When DNS name is resolved DNS Cache using forvard lookup the results are temp
9. Leave it blank to be prompted for a username and password at connect time EDS User Guide 19 9 Line Tunnel Terminal and Host Settings Remote IP address for the host Address Remote Port Port on the host to which the EDS will connect 3 Click Submit Login Connect Menu As an administrator you can set up a menu on the EDS for terminal users For a terminal attached to serial Line N set as follows Line N Protocol None Line N Command Mode Always Terminal Line N Login Connect Menu Enabled For Telnet attached terminals set Terminal Network Login Connect Menu Enabled You will see a menu like this Password Connection menu select by number 1 Alpha Beta 3 Exit to command line interface hog DUL Selection 1 Adda destination serial line M to the menu by filling in Line M Name For this purpose set Line M Protocol None Line M Command Mode Disabled 2 Add a network destination to the menu by setting up a Host entry for it Each named Host entry will appear in the menu 3 Add the Exit to command line interface choice to the menu by setting Terminal Line N or Terminal Network Exit Connect Menu Enabled The Log out choice is always present Preview the Login Connect Menu The Login Connect Menu can be previewed without actually connecting in via a serial line or telnet connection EDS User Guide 76 9 Line Tunnel Terminal and Host Settings
10. Modem Control Asserted Started when the Modem Control pin is asserted on the Serial Line Modem Emulation controlled via 4750 setting The Lecal Port can be overridden and by default is 10001 for Tunnel 1 10002 for Tunnel 2 and 20 on The Protocol used on the connection can be one of TCP SSH SSL Telnet or TCP wifes H security is a concern It is highly recommended that SSH be used When using SSH both the SSH Server Host Keys and SSH Server Authorized Users must be configured 33H The Flush Serial Data boolean specities to flush the Serial Line when a connecton iS made For debugging purposes the Block Serial Data and Block Network Data boolean can be toggled to discard all incoming data on the respective interface The TCP Keep Alive timer specities how often to probe the remote host in order to keep the TCP connection up during idle transfer periods Enter Oto disable The Password can be up to 31 characters in length and must contain only alphanumeric characters and punctuation When set clients must send the correct password string to the unit vithin 30 seconds from opening network connection in ordet to enable data 58 9 Line Tunnel Terminal and Host Settings 2 Enter or modify the following settings EDS User Guide Mode Local Port Protocol Flush Serial Data Block Serial Data Block Network Data TCP Keep Alive Email on Connect Email on Disconnect Password Se
11. SSH Server Host Keys SSH Client Known Hosts SSH Server Authorized Users SSH Client Users SSH Client Known Hosts Server Public RSA Key Browse Public DSA Key Browse IP Address when adding public host keys for a Server This Server name should match the name used az the Remote Address in Connect Mode Tunneling Current Configuration Mo Known Hosts are currently configured for the SSH Client 2 Enter or modify the following settings Server Enter the name or IP address of a known host If you enter a server name the name should match the name of the server used as the Remote Address in Connect mode tunneling Public RSA Enter the path and name of the existing public RSA key you Key want to use with this known host or use the Browse button to select the key Public DSA Enter the path and name of the existing public DSA key you Key want to use with this known host or use the Browse button to select the key EDS User Guide 96 11 Security Settings Note These settings are not required for communication They protect against Man In The Middle MITM attacks 3 Click Submit 4 Inthe Current Configuration table delete currently stored settings as necessary SSH Client User Configuration On this page you can change SSH client settings for users SSH client Known users are used by all applications that play the role of an SSH
12. 91 Settings 90 Statistics Page 90 M MAC Address 20 Maintenance Settings 11 103 Modem Emulation 17 N Network Settings Network 1 Interface Configuration 48 Network 1 Interface Status 47 Network Terminal Configuration 74 O OpenSSL 146 P Part number 21 Port Numbers 20 Port Numbers 20 Ports Serial and Telnet 19 Product ID 21 EDS User Guide Index Product Information Label 21 protection levels 18 Protocol Stack Configuration 106 Protocols Supported 17 Q Query Port 110 R Reset button EDS4100 31 Reset button EDS16 32PR 25 Reset button EDS16 32PR 36 RSA 146 RSS 18 RSS Settings 89 S SCPR 18 Secure Com Port Redirector 18 Secure Shell 142 Secure Sockets Layer 144 Security in Detail 142 Security Enterprise Grade 18 Services Settings 78 SNMP Configuration 78 SNMP Management 18 SSH Client Configuration 144 Client Known Hosts 96 Client User Configuration 97 protection level 18 Server Authorized Users 95 Server Configuration 142 Server Host Keys 93 Settings 93 SSL Certificates 145 protection level 18 Settings 99 Utilities 146 SSL standard The 144 Steel Belted Radius 147 Syslog Configuration 82 T TCP Settings 106 Technical Support 151 Telnet port 19 Terminal page 2 Server 19 162 TFTP Configuration 81 Time settings 119 Troubleshooting Capabilities 19 Tunnel Settings Accept Mode 58 AES Keys 71 Connect Mode 64 Disco
13. CTS input RTS output DSE input DIR output not asserted not asserted not asserted not asserted Line Configuration This page shows the configuration settings for the serial line selected at the top of the page and lets you change the settings for that serial line EDS User Guide 52 9 Line Tunnel Terminal and Host Settings Configure Line n 1 Click Line n and Configuration The Line n Configuration page appears Figure 9 2 Line n Configuration Select Line Line 1 wi Statistics Line 1 Configuration Name State Protocol Baud Rate Parity Data Bits Stop Bits Flow Control Xon Char Xoff Char Configuration Configuration Status This page displays the current configuration of the Serial Line Changing any of the fields takes effect immediately Named lines appear in the Login Connect Menu if enabled Set it blank to leave ft out of the menu Command Mode When specifying Custom baud rate select Custom from the drop down list and then enter the desired rate in the text box When specifying ether Xon char or Xoff char ether prefix decimal with Lor prefix hexadecimal weith Ox Enabled Enabled or prefix single control character Tunnel with control gt These are used when Flow Control is set to S600 Software None S 1 None lt control gt Q
14. DSA DHE 3DES SHA1 RSA RSA 128 bits AES SHA1 RSA RSA Triple DES SHA1 RSA RSA 128 bits RC4 MD5 RSA RSA 128 bits RC4 SHA RSA 1024 bits RSA 56 bits RC4 MD5 RSA 1024 bits RSA 56 bits RC4 SHA1 RSA 1024 bits RSA 40 bits RC4 MD5 Whichever side is acting as server decides which cipher suite to use for a connection It is usually the strongest common denominator of the cipher suite lists supported by both sides Certificates The goal of a certificate is to authenticate its sender It is like a paper document that contains personal identification information and is signed by an authority for example a notary or government agency Security Certificate Principles To sign other certificates the authority uses a private key The published authority certificate contains the matching public key that allows another to verify the signature but not recreate it The authority s certificate can be signed by itself resulting in a self signed or trusted root certificate or by another higher authority resulting in an intermediate authority certificate You can build up a chain of intermediate authority certificates and the last certification will always be a trusted root certificate An authority that signs other s certificates is also called a Certificate Authority CA The last in line is then the root CA VeriSign is a famous example of such a root CA Its certificate is often built into web browsers to allow verifying the
15. For example enable show EDS Product Information Product Type Lantronix EDS EDS Change the EDS short and long names with the Web Manager 1 Click System in the menu bar The System page opens 2 Inthe Short Name field enter the new short name for the device up to 32 characters 3 Inthe Long Name field enter the new long name for the device up to 64 characters 4 Click Submit 5 To apply changes click Reboot EDS User Guide 149 17 Updating Firmware Obtaining Firmware Obtain the most up to date firmware and release notes for the unit from the Lantronix Web site http www lantronix com or by anonymous FTP ftp ftp lantronix com Loading New Firmware You can reload the firmware using the EDS Web Manager File system page Upload new firmware 1 Unzip the files and save them to a directory on your PC 2 From the EDS main web page click System in the menu bar The System page appears 3 Inthe Upload New Firmware section click Browse A pop up page appears Locate the firmware file previously unzipped to your PC It will have an extension of romz 4 Click Upload to install the firmware on the EDS The device automatically reboots on the installation of new firmware 0r You can update firmware by sending the file to the EDS over an FTP connection The device automatically reboots on the installation of new firmware EDS User Guide 150 A Technical Support If you are unabl
16. For the unit to operate correctly it must have a unique IP address on the network There are three basic methods for logging into the EDS and assigning IP addresses and other configurable settings Devicelnstaller Configure the IP address and related settings and view current settings on the EDS using a Graphical User Interface GUI on a PC attached to a network See 6 Using Devicelnstaller on page 38 Web Manager Through a web browser configure the EDS settings using the Lantronix Web Manager See 7 Configuration Using Web Manager on page 41 Command Mode There are two methods for accessing Command Mode CLI making a Telnet connection or connecting a terminal or a PC running a terminal emulation program to the unit serial port See the EDS Command Reference Guide for instructions and available commands XML The EDS supports XML based configuration and setup records that make device configuration transparent to users and administrators XML is easily editable with a standard text or XML editor See the EDS Command Reference Guide for instructions and commands EDS User Guide 19 2 Introduction Addresses and Port Numbers Hardware Address The hardware address is also referred to as the Ethernet address or MAC address The first three bytes of the Ethernet address are fixed and read 00 20 4A identifying the unit as a Lantronix product The fourth fifth and sixth bytes are unique numbers assigned to each unit
17. Front View of the EDS16PR Power LED Figure 5 2 Back View of the EDS16PR Power LED Receive LED left Transmit LED right Speed LED Activity LED RJ45 Ethernet Port Console Port Reset Switch Status LED RJ45 Serial Port Power Connector Product Label A product information label on the bottom contains the following information Barcode Serial number Product ID name Product description Hardware address also referred to as Ethernet or MAC address 9 6 6 Agency certifications Serial Ports All EDS serial ports are configured as DTE and support up to 230 400 baud The EDS8PR has 8 serial ports EDS User Guide 34 5 Installation of EDS8PR EDS16PR or EDS32PR The EDS16PR has 16 serial ports The EDS32PR has 32 serial ports Console Port The front panel has an RJ45 Console port It is an extra serial port configured as DTE and supports up to 230 400 baud Figure 5 3 RJ45 Serial Port 12345678 RTS out DTR out TX out GND GND RX in DSR in CTS in Ethernet Port The back panel has an RJ45 Ethernet port This port can connect to an Ethernet 10 Mbps or Fast Ethernet 100 Mbps network The Speed LED on the back panel shows the connection speed of the connected Ethernet network You can configure the EDS to operate at a fixed Ethernet speed and duplex mode half or full duplex or auto negotiate the connection to the Ethernet network
18. Making the edge to enterprise vision a reality the EDS with the Evolution OS uses industry standard tools for configuration communication and control For example EDS User Guide 17 2 Introduction the Evolution OS uses a Command Line Interface CLI whose syntax is very similar to that used by data center equipment such as routers and hubs SNMP Management The EDS supports full SNMP management making it ideal for applications where device management and monitoring are critical These features allow networks with SNMP capabilities to correctly diagnose and monitor the EDS XML Based Architecture and Device Control XML is a fundamental building block for the future growth of M2M networks The EDS supports XML based configuration setup records that make device configuration transparent to users and administrators The XML is easily editable with a standard text or XML editor Really Simple Syndication RSS The EDS supports Really Simple Syndication RSS a rapidly emerging technology for streaming and managing on line content RSS feeds all the configuration changes that occur on the device An RSS aggregator then reads polls the feed More powerful than simple email alerts RSS uses XML as an underlying Web page transport and adds intelligence to the networked device while not taxing already overloaded email systems Enterprise Grade Security Evolution OS provides the EDS with the highest level of networking secu
19. Note Standard and Non printable Send or Trailing characters may be specified in either Hexadecimal prefix with Ox or decimal prefix with EDS User Guide 62 9 Line Tunnel Terminal and Host Settings Serial Settings This page allows you to view and change the settings for the tunnel selected Configure serial settings 1 Click Tunnel n and Serial Settings at the top of the page The Tunnel n Serial Settings page appears Figure 9 9 Tunnel n Serial Settings For Tunneling the Buffer Size of the buffer used for reading data on the Serial Line can be modified The valid size range is from 1 to 4096 bytes Changing this value requires a reboot Accept Mode Connect Mode Disconnect Mode The DTR option Asserted while Packing Mode Modem Emulation AES Keys connected causes DTR to be asserted whenever ether a connect or an accept mode tunnel Tunnel 1 Serial Settings GE Line Settings RS232 9600 None 8 1 Mone Protocol Tunnel Buffer Size 2048 bytes L J Asserted while connected Continuously asserted Select Tunnel Tunnel Statistics Serial Settings Start Stop Chars DTR 2 View or modify the following settings Line Settings Current serial settings for the line Protocol The protocol being used on the line In this case display only Tunnel Buffer Size Enter the buffer size used for the tunneling of serial data received Requires a reboot to t
20. Start Stop Chars Disconnect Mode AES Keys Select Tunnel Statistics Accept Mode Serial Settings Connect Mode Packing Mode Modem Emulation Tunnel 1 Packing Mode Disable O Timeout O Send Character Mode When Tunneling instead of sending data on the network immediately after being read on the Serial Line the data can be packed queued and sent in larger chunks A Tunnel can be configured to use Packing Mode in a number of ways Disable data not packed Timeout data sent after timeout occurs Send Character data sent when the Send Character is read on the Serial Line The Threshold specifies if the amount of queued data reaches this limit then send the data on the network immediately The Timeout specifies how long to wat before sending the queued data on the network If used the Send Character Is special character that when read on the Serial Line forces the queued data to be sent out immediatelv The Trailing Character is a special character that is injected into the outgoing data stream right after the Send Character Hon printable Send or Trailing characters are normally specified az control characters in the form lt control X and may also be entered in ether Hexadecimal prefix weith Ox or decimal prefix weith Vi Figure 9 7b Tunnel n Packing Mode Mode Timeout Select Tunnel Tunnell ze Statistics Serial Settings Accept Mode Connect Mode Packing Mode Mo
21. eth0 Interface Configuration This page is used to configure the Network 1 Network interface on the device To ser the effect of these tems after a reboot view the Status page Interface Link The following tems require reboot to take effect Status Configuration BOOTP Client On DHCP Client Cvt IP Address Network 1 eth0 Interface Configuration Network Mask DHCP Client ID BOOTP Client Oon of If BOOTP or DHCP is turned on any p configured IP Address Network DHCP Client On O Off Mask Gateway Hostname or Domain vill be ignored I BOGTP DHCP will auto discover j and eclipse those configuration tems IP Address hone gt Default Gateway lt None gt Hostname If both BOOTP and DHCP are turned on DHCP vill run but not BOGOTE Domain When BOOTP or DHCP tails to discover an IP Address new S address will automatically be DIER ent 1 rat Binary generated using Autolp This address will be within the Primary DNS lt None gt 169 254 x x space IP Address may be entered alone Secondary DNS Nane gt in CIDR form or vith an explicit mask 192 168 1 1 default mask 192 168 1 1 24 CIDR 192 168 1 1 255 255 255 0 explicit mask Hostname must begin vith letter continue vith letter number or hyphen and must end with letter or number 2 Enter or modify the following setti
22. pin is not asserted on the serial line Timeout Enter a time in milliseconds for the EDS to disconnect on a timeout The value 0 zero disables the idle timeout Flush Serial Data Select Enabled to flush the serial data buffer on a disconnection 3 Click Submit EDS User Guide 70 9 Line Tunnel Terminal and Host Settings AES Keys Advanced Encryption Standard AES is an encryption algorithm for securing sensitive information by government agencies Configure the AES keys for connect or Accept Mode 1 Click Tunnel n and AES Keys The Tunnel n AES Keys page appears Figure 9 14 Tunnel n AES Keys There are four separate Advanced Encryption Standard LAES Encryption Keys used for Tunneling Connect Mode and Accept Mode contain their oven sets of keys One Key is used for Accept Mode Connect Mode Disconnect Mode encrypting outgoing data and the P other Key is used for decrypting Packing Mode Modem Emulation AES Keys incoming data Select Tunnel Tunnell ze Statistics Serial Settings Start Stop Chars These AES Keys are a fixed 16 bytes in length Any Keys entered Tunnel 1 AES Keys that are less than 16 bytes long are padded with zeroes Each key can Accept Mode AES Keys be entered in Text or Binary form Encrypt Key lt None gt es Tori Binary Text form is a simple string of ASCII 8 S R characters The Binary form allows rere E square braces to enclose one Decrypt Kay lt None
23. sel sell al ef oe fo sef slatsl sl f fo fo sef fell dl Pee fo fe SE Edit View Help 4C Ge Hes Dec C Oct C Bin Ge Qwod Dwod Word 6 Byte EDS User Guide 153 C Lantronix Cables and Adapters Lantronix cables and adapters for use with the EDS devices are listed here according to part number and application 900 103 200 2062 200 2063 200 2064 200 2065 200 2066A EDS User Guide 6 RJ45 to DB9F Cable Ethernet CAT5 RJ45 2m 6 6 ft Cable Ethernet CAT5 RJ45 5 m 16 4 ft Cable Ethernet CAT5 RJ45 10 m 32 8 ft Cable Ethernet CAT5 RJ45 15 m 49 2 ft Adapter RJ45 to DB25M Included with EDS8 16 32PR for setup or device connectivity Connects the RJ45 RS232 serial ports of EDS8 16 32PR to a DB9M DTE interface of a PC or serial device Connects the EDS8 16 32PR Ethernet ports to an Ethernet switch hub or is used for cascading from one EDS8 16 32PR to another Connects the EDS8 16 32PR serial RJ45 RS232 ports to a device using one of the adapters listed below Connects the EDS8 16 32PR Ethernet ports to an Ethernet switch hub or is used for cascading from one EDS8 16 32PR to another Connects the EDS8 16 32PR serial RJ45 RS232 ports to a device using one of the below listed adapters Connects the EDS8 16 32PR Ethernet ports to an Ethernet switch hub or is used for cascading from one EDS8 16 32PR to another Connects the EDS8 16 32PR serial RJ45 RS232 por
24. single line Settings on the Filesystem copies lines settings from an the input file containing only one Line instance to all of the selected Lines selecting a Whole Groups gt EEE sn nise a OP NR P a pin em mge Ae A gem ubitt Eo e Ee Kass ar Configuration from External file Configuration from Filesystem Lineis from single line Settings on the Filesystem 2 Click one of the radio buttons to select the type of source to import from EDS User Guide 130 EDS User Guide 13 Advanced Settings Import Configuration from External File This selection shows a field for entering the path and file name of the entire external XCR file to import You can also browse to select the XCR file Figure 13 8 XML Import Configuration from External File This page is used for importing Export Configuration Export Status Import Configuration system configuration from an XML file a Import Configuration from XML Import Configuration External file picks up all the settings from the external file Import Configuration from Import configuration from entire external XCR file EE EE CBr the selected Groups Lines and Instances Import Line s from single line Settings on the Filesystem copies lines settings from an the input file containing only a eee VEN pre T we ON Import Configuration from the Filesystem This selection
25. 13 Tunnel n Disconnect Mode 70 Figure 9 14 Tunnel n AES KEYS aseninteszacandesrncautusnectalionnensstavsecasluntoonaseresiegiennduindsNaasaaleasiuiatessentsMenneniudesa 71 Figure 9 15 Terminal on Line n Configuration cccccccccccccsseeeceeeeeeeeeeeeeseeeeceeesseaeeeeessaaeeeeeessaaeeees 72 Figure 9 16 Terminal on Network Contguraton 74 Figure 9 17 Host COMMUTATION BEE 75 Foure 1071 DNS SCAG E 78 Figure 10 2 SNMP Contouraton 79 Figure 10 93 FIP COnmmQuratOn seien i Ea R Aiea iaa aa Endr ea EE eei nain 80 Figur 104 TFIP Re EICH E 81 Fe SU 82 HOUS 10 6 BR EE Ee 84 Figure 10 7 HTTP Gontouraton 85 Figure 10 8 HTTP Authentication ccccccescccccssececceeseeeceeseeeceaeeecseaseeessaseeessaseeeseaseeessageeessanseesseaes 87 216 I EE EEE SE E E E 89 Foure 1021 BR 90 Figure 10 11 LPD Configuration cccccccccccccceseeeeeeceeeseceeeceeeseceeesseaeceeesaeaaeceseesaasecesessaaeeeeesssagseeess 91 Figure 11 1 SSH Server Host Keys rrrrnnrrrnnrrnnnnnnnnrrrnnrrnnnnnnnnsrnnnrrnnnnnnnnsnnnnnnnnnnnnnsssnnnnrnnnnsnnsssennnnnnnnn 93 EDS User Guide 9 Contents Figure 11 2 SSH Server Authorized Ueers 95 Figure 11 3 SSH Client Known Hoets 96 Figure 114 SSH Client BE 97 FVN Sr 99 Figure 12 1 File system Statistics rrrrrrnnnnrrrrrrnnnnrrrrrnnnnnrrvnrnnnnnrrnnrnnnnntennnnnnsnsnnnnnnnnssnnnnnnsnssnnnnnnsnee 103 Figure 12 2 File system Browser 104 Figure 12 3 TCP Protocol PE E 106 Figu
26. AT OO o send modem response codes out on the serial line Select the type of response code Text Same as modem command ATV1 or Numeric same as modem command ATVO Select whether an ERROR or OK response is sent in reply to unrecognized AT commands With Enabled selected same as modem command ATUO ERROR is returned for unrecognized AT commands With Disabled selected same as modem command ATU1 OK is returned for unrecognized AT commands default Select either Disabled same as modem command ATS0 0 Automatic same as modem command ATS0 1 or Manual same as modem command ATS0 2 Enter the connect string This modem initialization string prepares the modem for communications It is a customized string sent with the CONNECT modem response code With Display Remote IP Enabled the incoming RING is followed by the IP address of the caller 68 9 Line Tunnel Terminal and Host Settings Start and Stop Characters The Start Stop Chars page enables you to configure the EDS to start a tunnel when it receives a specific start character from the serial port and to disconnect upon receiving the stop character Configure the start and stop characters mode 1 Select Tunnel n and Start Stop Chars at the top of the page The Tunnel n Start Stop Chars page appears Figure 9 12 Tunnel n Start Stop Chars Select Tunnel Tunnel The Start Character when read on the Serial Line can be used ta initiate a
27. Dynamic IP Daemon fethQ FTP Server TFTP Server 2820 24576 Http1 2860 24576 Http2 5712 24576 Http3 8458 32766 9868 2400 364 16364 596 163684 1052 49152 520 49152 384 156384 596 1638684 1052 49152 520 49152 3864 16384 596 163854 1232 49152 520 49152 384 163864 6498 16384 1232 49152 520 49152 364 16364 596 16364 992 49152 520 49152 HttpO Query Port 77FE Network gt Serial Daemon Port 1 Serial gt Network Daemon Port 1 Accept Mode Daemon Port 1 Connect Mode Daemon Port 1 Network gt Serial Daemon Port 2 Serial gt Network Daemon Port 2 Accept Mode Daemon Port 2 Connect Mode Daemon Port 2 Network gt Serial Daemon Port 3 Serial gt Network Daemon Port 3 Accept Mode Daemon Port 3 Connect Mode Daemon Port 3 Network gt Serial Daemon Port 4 Serial gt Network Daemon Port 4 Accept Mode Daemon Port 4 Connect Mode Daemon Port 4 Network gt Serial Daemon Port 5 Serial gt Network Daemon Port 5 Accept Mode Daemon Port 5 Connect Mode Daemon Port 5 Click Diagnostics on the menu bar then Processes at the top of the page This chart lists all the processes currently running on the system The CPU column displays the percentage of total CPU cycles the process used in the last 3 seconds The Stacks column displays the total stack space available to the process and the maximum amount of the stack space the process used since t was started Below the process chart is a CPU Load Graph rendered us
28. Enter the EDS s domain name Enter the ID if the DHCP server uses a DHCP ID The DHCP server s lease table shows IP addresses and MAC addresses for devices The lease table shows the Client ID in hexadecimal notation instead of the EDS MAC address IP address of the primary name server This entry is required if you choose to configure DNS Domain Name Server servers IP address of the secondary name server Click Submit Changes to the following settings require a reboot for the changes to take effect DHCP Client On Off BOOTP Client On Off P address Network mask DHCP Client ID 50 8 Network Settings Note If DHCP or BOOTP fails AutolP intervenes and assigns an address In this case the static IP if configured is ignored Network 1 Ethernet Link This page shows the current negotiated Ethernet settings and lets you change the speed and duplex settings View and configure the Ethernet link 1 Click Network on the menu bar 2 Then click Network 1 and Link at the top of the page as shown below The Network 1 ethO Ethernet Link page appears Figure 8 3 Network 1 Ethernet Link This page shows status and Network 1 configuration of an Ethernet Link on the device The Status table shows the Interface Link current negotiated settings The Configuration table show s G the current range of allowed Network 1 eth0 Ethernet Link EE press Submit to make the changes Status o
29. Export Giatus A 129 Figure 13 7 XML Impott COMLGULATION EEN 130 Figure 13 8 XML Import Configuration from External Elei 131 Figure 13 9 XML Import from FIESYSIEMN NEEN 132 Figure 13 10 XML Import Line s from Single Line Settings on the File system 134 EDS User Guide 10 1 Using This Guide Purpose and Audience This guide provides the information needed to configure use and update the EDS Device Server The intended audience is users who will use the EDS to network enable their serial devices Summary of Chapters The remaining chapters in this guide include 2 10 11 12 13 EDS User Guide Introduction Installation of EDS8PS and EDS16PS Installation of EDS4100 Installation of EDS8PR EDS16PR or EDS32PR Using Devicelnstaller Configuration Using Web Manager Network Settings Line Tunnel Terminal and Host Settings Services Settings Security Settings Maintenance and Diagnostics Settings Advanced Settings Main features of the product and the protocols it supports Includes technical specifications Installing the EDS8PS and EDS16PS device servers Installing the EDS4100 device server Installing the EDS8PR EDS16PR and EDS32PR device servers Locating an EDS unit and viewing its properties and device details Configuring the EDS using Web Manager Configuring the EDS for Ethernet Status and statistics for each of the serial lines ports Ch
30. LEDs Light emitting diodes LEDs on the front and back panels show status information Front panel The front panel has a green Power LED Back panel Each serial port has a Transmit and a Receive LED The Ethernet connector has Speed and Activity LEDs There is also a Power LED and a Status LED The table below describes the LEDs on the back of the EDS Back Panel LEDs LED Description Transmit green Blinking EDS is transmitting data on the serial port Receive yellow Blinking EDS is receiving data on the serial port Power green On EDS is receiving power EDS User Guide 35 5 Installation of EDS8PR EDS16PR or EDS32PR LED Description Status yellow Fast blink initial startup loading OS Slow blink once per second operating system startup On unit has finished booting Speed yellow On EDS is connected to a 100 Mbps Fast Ethernet network Off EDS is connected to a 10 Mbps Ethernet network Activity green Blink EDS is sending data to or receiving data from the Ethernet network Reset Button The reset button is on the back of the EDS to the left of the power connector Pressing this button for 2 to 3 seconds reboots the EDS8 16 32PR and terminates all data activity occurring on the serial and Ethernet ports Installing the EDS8 16 32PR Finding a Suitable Location You can install the EDS8 16 32PR either in an EIA standard 19 inch rack 1U tall or as a desktop uni
31. Lookup 114 Hardware 110 IP Sockets 112 Memory 115 MIDI Statistics 111 Ping 112 Processes 117 Traceroute 113 Diagnostics Settings 103 DNS Configuration 78 DSA 146 EDS User Guide Index E EDS16 32PR Features 16 Hardware components 23 34 Installation 25 36 Overview 16 33 Package contents 22 33 Reset button 25 36 Serial ports 24 34 User supplied Items 22 33 EDS16 32PS Features 13 EDS4100 Ethernet port 29 Features 15 Hardware components 28 Installation 31 LEDs 30 Overview 14 27 Package contents 27 Reset button 31 Serial ports 28 Terminal block connector 30 User supplied Items 27 Email 121 encrypt 18 Enterprise Grade Security 18 Ethernet address 20 Ethernet port 24 35 Evolution OS 17 F Features EDS4100 15 File System Browser 104 Configuration 103 Statistics 103 Filesystem 44 Firmware 150 FreeRadius 147 FTP Configuration 80 H Hardware Address 20 161 Host Configuration 75 HTTP Authentication 87 Change Configuration 85 Configuration 83 Statistics 83 ICMP Settings 107 Installation EDS16 32PR 22 25 33 36 EDS4100 27 31 IP Address 20 Address Filter 109 Settings 107 L Label 21 Lantronix Discovery Protocol 20 LEDs EDS16 32PR 24 35 EDS4100 30 Line 1 Command Mode 55 Configuration 52 Statistics 52 Line Settings 52 Line Terminal Configuration 72 locating a MatchPort b g Pro unit 11 38 LPD Configuration Page
32. Send Break Exit Connect Menu milliseconds Break Duration 500 Echo Enabled Disabled character is received from the network on te way to Serial Line t will not be sent to the Line instead the line output vill be forced inactive Example setting lt control gt Y The Break Duration specifies how long the spacing condition vill be placed on the line when break is sent Echo applies only to Connect Mode Telnet connections not to Accept Mode Only disable Echo if your terminal echoes in which case you will see double of each character typed 72 9 Line Tunnel Terminal and Host Settings 2 Enter or modify the following settings Terminal Type Login Connect Menu Exit Connect Menu Send Break Break Duration Echo Enter text to describe the type of terminal The text will be sent to a host via IAC Note IAC means interpret as command It is a way to send commands over the network such as send break Orstart echoing Select the interface to display when the user logs in Choices are Enabled shows the Login Connect Menu Disabled shows the CLI Select whether to display a choice for the user to exit the Login Connect Menu and reach the CLI Choices are Enabled a choice allows the user to exit to the CLI Disabled there is no exit to the CLI Enter a Send Break control character e g lt control gt Y or blank to dis
33. a fixed Ethernet speed and duplex mode half or full duplex or auto negotiate the connection to the Ethernet network Terminal Block Connector The back of the EDS4100 has a socket for a terminal block screw connector not included for attaching to an appropriate power source such as those used in automation and manufacturing industries The terminal block connector supports a power range from 42 VDC to 56 VDC It can be used with the EDS4100 s barrel power connector and PoE capabilities as a redundant power source to the unit Vendors who do supply this connector can be found by doing a web search for part Phoenix 1803581 MC 1 5 3 ST 3 81 Figure 4 5 Terminal Block Connector Pin Assignments Top V Middle Bottom Ground LEDs Light emitting diodes LEDs on the front and back panels show status information Back panel Each serial port has a Transmit and a Receive LED The Ethernet connector has Speed and Activity LEDs In addition the back panel has a Power LED and a Status LED Front panel The front panel has a green Power LED The table below describes the LEDs on the back of the EDS4100 Figure 4 6 Back Panel LEDs Transmit Blinking EDS is transmitting data on the serial port green Receive Blinking EDS is receiving data on the serial port yellow Power green On EDS is receiving power Status Fast blink initial startup loading OS yellow Slow blink once per second operatin
34. data on the respective Interface The TCP Keep Alive timer specifies how often to probe the remote host in order to keep the TCP connection up during idle transter periods Enter Oto disable 64 9 Line Tunnel Terminal and Host Settings 2 Enter or modify the following settings EDS User Guide Mode Remote Address Remote Port Local Port Protocol Reconnect Timer Flush Serial Data The method to be used to connect to a remote host or device Disabled An outgoing connection is never attempted This is the default Enabled A connection is attempted until one is made If the connection gets disconnected the EDS retries until it makes a connection Any Character A connection is attempted when any character is read on the serial line Modem Control Asserted A connection is attempted as long as the Modem Control pin DSR is asserted until a connection is made Start Character A connection is attempted when the start character for the selected tunnel is read on the serial line Modem Emulation A connection is attempted when triggered by modem emulation AT commands Enter the remote address to which the EDS will connect Enter an IP address or DNS name Enter the remote port number Enter the port for use as the local port A random port is selected by default Once you have configured a number click the Random link in the Current Configuration to switch back to Random Sel
35. gt JER at or more character designations separated by commas Use straight Connect Mode AES Keys bliwe Wari 28800 hexadecimal numbers prefixed with Encrypt Key lt None gt Text Binary Ox up to OxFF To specify an open l brace in binary mode use two in Decrypt Key lt None gt Text O Binary row Example in Binary mode AB Z55 ODxFFJC D Results in string containing binary values where the dots appear 4B C D To remove 4 key delete Contigured inthe display Mote that the Keys are shared secret keys so they must be known by both sides of the connection and kept secret This device also supports SSH using AES Encryption as an alternative to secure tunneling t is recommended that SSH be used because ft does not require configuring shared secret keys and is more secure standards based protocol 2 Enter or modify the following settings Note Empty trailing byes that are not specified are set to 0 Accept Mode AES Keys Encrypt Key 1 Enter the value for each byte of the encryption key 2 Select the format for the byte as either Text or Binary Binary form is a string of characters representing byte values where each hexadecimal byte value EDS User Guide 71 9 Line Tunnel Terminal and Host Settings starts with Ox and each decimal byte value starts with Decrypt Key Enter the value for each byt
36. or importing host keys and defining Authorized Users The SSH Host Keys can be created by one or more methods You can use the EDS to generate the keys for you Or You can use PuTTY to generate keys Or You can use other tools to generate RFC4716 format keys The steps for each of these methods are described below Use the EDS to Generate the Keys 1 Click SSH gt SSH Server Host Keys at the top of the page The SSH Server Host Keys page appears 2 Under Create New Keys select the key type RSA or DSA 3 Select the Bit Size 512 768 or 1024 EDS User Guide 142 15 Security in Detail 4 Click Submit Generate and use keys from PuTTY 1 2 Create the keys with puttygen exe The keys are in PuTTY format Use puttygen exe again to convert the private key to Open SSH format as follows a Import the private key using Conversions Import key b Create a new file using Conversions Export OpenSSH key Use ssh keygen to convert the public key to OpenSSH format ssh keygen i f putty_file gt openssh file Click SSH gt SSH Server Host Keys at the top of the page The SSH Server Host Keys page appears Locate the Private Key and Public Key files using the Browse button Select the Key Type RSA or DSA RSA is more secure Click Submit Use RFC4716 format Keys 1 2 Use any program that can produce keys in the RFC4716 format Use ssh keygen to con
37. other functions the EDS acts as a print server if a printer is connected to one of its serial ports Clicking the LPD Line Printer Daemon link in the menu bar shows a LPD page This page has three links at the top for viewing print queue statistics changing print queue configuration and printing a test page Because the LPD lines operate independently you can specify different configuration settings for each LPD Statistics Page This read only page shows various statistics about the LPD server View LPD statistics Click LPD on the menu bar then select the LPD line from the drop down list and click Statistics The LPD page shows the LPD statistics Figure 10 10 LPD Statistics This page displays various statistics and current usage select LPD Line information of the LPD subsystem When document is printed the Statistics Configuration Print Test Page remote client information is displayed az vell as the number of print jobs printed since boot up and LPD 1 Statistics the total number of bytes printed If client is printing Kill link is rf displayed next to the client Jobs Printed D information The Kill link will force Bytes Printed II the LPD server to kill abort any gest EE current active print jabs Current Client No device 15 connected Last Client No device has connected EDS User Guide 90 LPD Configuration Page Here you can change LPD configuration settings Confi
38. server EDS8PS or EDS16PS One RJ45 to DB9F serial cable One product CD that includes this User Guide the Command Reference and the Quick Start guide A printed Quick Start guide Your package may also include a power supply User Supplied Items To complete your EDS8 16PS installation you need the following items RS 232 serial devices that require network connectivity Each EDS8 16 32PR serial port supports a directly connected RS 232 serial device A serial cable for each serial device to be connected to the EDS8 16 32PR All devices attached to the device ports support the RS 232C EIA 232 standard Category 5 cabling with RJ45 connections is used for the device port connections Note To connect an EDS8 16PS serial port to a DTE device you need a DTE cable such as the one supplied in your EDS8 16PS package or an RJ45 patch cable and DTE adapter To connect the EDS8 16PS serial port to a DCE device you need a DCE modem cable or an RJ45 patch cable and DTE adapter For a list of the Lantronix cables and adapters you can use with the EDS8 16PS see Appendix C Lantronix Cables and Adapters An available connection to your Ethernet network and an Ethernet cable A working power outlet if the unit will be powered from an AC outlet EDS User Guide 22 3 Installation of EDS8PS and EDS16PS Identifying Hardware Components Figure 3 1 shows the front of the EDS8PS Figure 3 2 shows the back of the E
39. shown has a product information label This label contains the following information Bar code Serial number Product ID name Product description Hardware address also referred to as Ethernet or MAC address 99060666 Agency certifications Serial Ports The front of the EDS4100 has four male DB9 serial ports These ports allow you to connect up to four standard serial devices EDS User Guide 28 4 Installation of EDS4100 All four serial ports support RS 232 devices See Figure 4 3 for pin assignments Serial ports 1 and 3 also support RS 422 and RS 485 serial devices See Figure 4 4 for pin assignments All four serial ports are configured as DTE Ports 1 amp 3 support up to 921600 Ports 2 amp 4 support up to 230400 Figure 4 3 RS 232 Serial Port Pins Serial Ports 1 2 3 4 RX in DTR out RTS out Figure 4 4 RS 422 RS 485 Serial Port Pins RX TX RX RS 422 485 4 wire Pin Assignments RS 485 2 wire Pin Assignments Serial Ports 1 and 3 Serial Ports 1 and 3 Note Multi drop connections are supported in 2 wire mode only Ethernet Port The back panel of the EDS4100 provides an RJ45 Ethernet port This port can connect to an Ethernet 10 Mbps or Fast Ethernet 100 Mbps network The Speed EDS User Guide 29 4 Installation of EDS4100 LED on the back of the EDS4100 shows the connection of the attached Ethernet network The EDS4100 can be configured to operate at
40. 4100 for installation instructions EDS User Guide 15 2 Introduction EDS8PR EDS16PR and EDS32PR Overview The EDS8PR 8 serial ports EDS16PR 16 serial ports and EDS32PR 32 serial ports are compact easy to use rack mountable device servers that give you the ability to network enable asynchronous RS 232 serial devices They provide fully transparent RS 232 point to point connections without requiring modifications to existing software or hardware components in your application Figure 2 3 EDS16PR Device Server Features The key features of the EDS8PR EDS16PR and EDS32PR include Dual purpose Ethernet terminal server and device server design 8 EDS8PR 16 EDS16PR or 32 EDS32PR serial ports with hardware handshaking signals RS 232 support One RJ45 Ethernet port 8 MB Flash memory 32 MB Random Access Memory RAM Lantronix Evolution OS A dedicated console port AES SSH or SSL secure data encryption Three configuration methods Web command line and XML 9 9 9 gt gt gt 6 6 Print server functionality LPR LPD See Chapter 5 Installation of EDS8PR EDS16PR or EDS32PR on page 33 for installation instructions EDS User Guide 16 2 Introduction Protocols Supported The EDS contains a full featured TCP IP stack Supported protocols include ARP IP UDP TCP ICMP BOOTP DHCP Auto IP Telnet DNS FTP TFTP HTTP S SSH SSL TLS SNMP SMTP RSS PPP and
41. Active Connections O Last Client Ma device has connected EDS User Guide 80 10 Services Settings 2 Enter or modify the following settings FTP Server Select On to enable the FTP server Username Enter the username to use when logging in via FTP Password Enter the password to use when logging in via FTP 3 Click Submit Click Reset to reset the FTP Password TFTP Configuration EDS User Guide This page shows the status and various statistics about the Trivial File Transfer Protocol TF TP server Configure TFTP 1 Click TFTP on the menu bar The TFTP page opens to display the current configuration Figure 10 4 TFTP Configuration TFTP This page displays the current status and various statistics for the TFIP Server The Allow TFTP File Creation Allow TETP File Creation oO Cn O Ct boolean specifies whether or not the TFTP Server can create file if it does not already exist Be careful when turning this feature on as it a S Gs opens the device up to possible Current TFTP Configuration and Statistics Denial ot Service DoS attacks against the filesystem TFTF Server O on Oar TFTP Status On running TFTP File Creation Disabled Files Downloaded Files Uploaded File Not Found Errors File Read Errors File Write Errors Unknown Errors Last Client Mo device has connected 81 10 Services Settings 2 Enter or modify the following settings TFTP Server Se
42. Address Shows the EDS hardware MAC address Firmware Version Shows the firmware currently installed on the EDS Extended Firmware Version Provides additional information on the firmware version Online Status Shows the EDS status as Online Offline Unreachable the EDS is on a different subnet or Busy the EDS is currently performing a task IP Address Shows the EDS current IP address To change the IP address click the Assign IP button on the Devicelnstaller menu bar IP Address was Obtained Appears Dynamically if the EDS automatically received an IP address e g from DHCP Appears Statically if the IP address was configured manually If the IP address was assigned dynamically the following fields appear Obtain via DHCP with values of True or False Obtain via BOOTP with values of True or False Subnet Mask Shows the subnet mask specifying the network segment on which the EDS resides EDS User Guide 39 6 Using Devicelnstaller Gateway Shows the IP address of the router of this network There is no default Number of Ports Shows the number of serial ports on this MarchPort AR Supports Configurable Pins Shows False indicating configurable pins are available on the EDS Supports Email Triggers Shows True indicating email triggers are available on the EDS Telnet Enabled Indicates whether Telnet is enabled on this
43. Connect Mode connection and the Accept Mode connection if both are active Connect Mode For Connect Mode to function it must be enabled have a remote station node configured and a remote port configured TCP or UDP When enabled Connect Mode is always on Enter the remote station as an IP address or DNS name The EDS will not make a connection unless it can resolve the address For DNS names after 4 hours of an active connection the EDS will re evaluate the address If it is a different address it will close the connection Connect Mode supports the following protocols AES over TCP and UDP SSH the EDS is the SSH client RS SSL TCP EDS User Guide 136 14 Tunneling Telnet UDP Connect Mode only When setting AES encryption both the encrypt key and the decrypt key must be specified The encrypt key is used for data sent out The decrypt key is used for receiving data Both of the keys may be set to the same value For Connect Mode using UDP the EDS accepts packets from any device on the network It will send packets to the last device that sent it packets Note The Local Port in Connect Mode is not the same port configured in Accept Mode To ignore data sent to the EDS enable the blocking of serial data or network data or both The TCP keepalive time is the time in which probes are periodically sent to the other end of the connection This ensures the other side is still connected To conf
44. DS32PR One RJ45 to DB9F serial cable A CD that includes this User Guide the Command Reference Guide and the Quick Start Guide A printed Quick Start guide Your package may also include a power supply User Supplied Items To complete your EDS8 16 32PR installation you need the following items RS 232 serial devices that require network connectivity Each EDS8 16 32PR serial port supports a directly connected RS 232 serial device A serial cable for each serial device All devices attached to the EDS device ports must support the RS 232C EIA 232 standard Category 5 cabling with RJ45 connections is used for the device port connections Note To connect an EDS8 16 32PR serial port to a DTE device you need a DTE cable such as the one supplied in your EDS8 16 32PR package or an RJ45 patch cable and DTE adapter To connect the EDS8 16 32PR serial port to a DCE device you need a DCE modem cable or an RJ45 patch cable and DTE adapter For a list of the Lantronix cables and adapters you can use with the EDS8 16 32PR see Appendix C Lantronix Cables and Adapters EDS User Guide An available connection to your Ethernet network and an Ethernet cable A working power outlet if the unit will be powered from an AC outlet 33 5 Installation of EDS8PR EDS16PR or EDS32PR Identifying Hardware Components The following two figures show the components on the front and back of the EDS16PR Figure 5 1
45. DS8PS Figure 3 1 Front View of the EDS8PS en hl Ewe mr e Receive LED P Transmit LEDS a Console Port Diag LED Power LED Receive LEDS Figure 3 2 Back View of the EDS8PS RJ45 Serial Port Speed LED RJ45 Ethernet Port Activity LED Power Connector Reset Button The product information label on the bottom contains the following information Bar code Serial number Product ID name Product description Hardware address also referred to as Ethernet or MAC address Agency certifications 000000 EDS User Guide 23 3 Installation of EDS8PS and EDS16PS Serial Ports The EDS8PS has 8 serial ports and the EDS16PS has 16 serial ports on the back panel All are configured as DTE and support up to 230 400 baud Console Port The front panel of the EDS8 16 32PR provides an RJ45 Console port It is an extra serial port configured as DTE and supports baud rates up to 230 400 baud Figure 3 3 RJ45 Serial Port 12345678 RTS out DTR out TX out GND GND RX in DSR in CTS in Ethernet Port The back panel of the EDS8 16PS provides a network interface via the rightmost RJ45 port This port can connect to an Ethernet 10 Mbps or Fast Ethernet 100 Mbps network The Speed LED on the back of the EDS8 16PS shows the connection of the attached Ethernet network The EDS8 16PS can be configured to operate at a fixed Ethernet speed and duplex mode half or full duplex or to auto ne
46. EDS Telnet Port Shows the EDS port for Telnet sessions Web Enabled Indicates whether Web Manager access is enabled on this EDS Web Port Shows the EDS port for Web Manager configuration Maximum Baud Rate Supported Shows the EDS maximum baud rate Firmware Upgradeable Shows True indicating the EDS firmware is upgradeable as newer versions become available EDS User Guide 40 7 Configuration Using Web Manager This chapter describes how to configure the EDS using Web Manager the Lantronix browser based configuration tool The unit configuration is stored in nonvolatile memory and is retained without power All changes take effect immediately unless otherwise noted Accessing Web Manager through a Web Browser Access the Web Manager Select the Web Configuration tab on the Devicelnstaller window Or 1 Open a standard web browser such as Netscape Navigator 6 x and above Internet Explorer 5 5 and above Mozilla Suite Mozilla Firefox Opera Safari or Chrome 2 Enter the IP address of the EDS 3 Enter your user name and password The factory default user name and password are admin and PASS 4 The Web Manager home page the Device Status page appears It shows the EDS configuration and product information EDS User Guide 41 EDS User Guide 7 Configuration Using Web Manager Figure 7 1 The EDS Web Manager Status Home Page EDS8rs Device Status e Pro d
47. Ethernet network 4 Power up the EDS4100 Use one or more of the following methods These power up methods can be used in combination to provide redundant backup power to the unit PoE Power is supplied over the Ethernet cable by an Ethernet switch or a mid span device EDS User Guide 31 4 Installation of EDS4100 Barrel power connector The barrel power connector supports a power range of 9 to 30 VDC Insert the round end of the supplied power cord into the barrel power connector on the back of the EDS4100 Plug the other end into an AC wall outlet Terminal block connector The terminal block connector supports a power range of 42 VDC to 56 VDC Attach the power source to the terminal block connector on the back of the EDS4100 As soon as you plug it in the EDS4100 powers up automatically the self test begins and Evolution OS starts 5 Power up the serial devices EDS User Guide Figure 4 7 Example of EDS4100 Connections Serial Cable Serial Cable Serial Cable Serial Cable Power Cord Ethernet Cable N 10 100 BASE T Ethernet 32 5 Installation of EDS8PR EDS16PR or EDS32PR This chapter describes installing the EDS8PR EDS16PR and EDS32PR device servers See EDS8PR EDS16PR and EDS32PR Overview on page 16 for overview information Package Contents Your EDS package includes the following items One EDS device server EDS8PR EDS16PR or E
48. Figure 2 4 Sample Hardware Address 00 20 4A 14 01 18 or 00 20 4A 14 01 18 IP Address Every device connected to an IP network must have a unique IP address This address references the specific unit Port Numbers Every TCP connection and every UDP datagram is defined by a destination and source IP address and a destination and source port number For example a Telnet server commonly uses port number 23 The default server port numbers running on the EDS include TCP Port 22 SSH Server Command Mode configuration TCP Port 23 Telnet Server Command Mode configuration TCP Port 80 HTTP Web Manager configuration TCP Port 443 HTTPS Web Manager configuration UDP Port 161 SNMP TCP Port 21 FTP UDP Port 69 TFTP UDP Port 514 Syslog TCP Port 515 LPD UDP Port 30718 LDP Lantronix Discovery Protocol port TCP UDP Port 10001 Tunnel 1 9 gt gt gt gt 9 gt TCP UDP Port 10002 Tunnel 2 EDS User Guide 20 Product Information Label The product information label on the bottom of the device contains the following information EDS User Guide Bar code Product ID name Product Revision Part number Hardware Address MAC Address 2 Introduction 21 3 Installation of EDS8PS and EDS16PS This chapter describes how to install the EDS8PS and EDS16PS device servers Package Contents Your EDS package includes the following items One EDS device
49. I from the Connect Menu When the Send Break control character is received from the network on its way to Serial Line t will not be sent to the Line instead the line output vill be forced inactive Example setting coantral gt The Break Duration specifies how lang the spacing condition vill be placed on the line when break is sent Echo applies only to Connect Mode Telnet connections not to Accept Mode Only disable Echo if your terminal echoes in which case you Will zee double of each character typed Terminal Type be sent to a host via IAC Enter text to describe the type of terminal The text will Note IAC means interpret as command It is a way to send commands over the network such aS send break Or start echoing Login Connect Menu Choices are Select the interface to display when the user logs in Enabled shows the Login Connect Menu Disabled shows the CLI Exit Connect Menu Select whether to display a choice for the user to exit the Login Connect Menu and reach the CLI Choices are Enabled a choice allows the user to exit to the CLI Disabled there is no exit to the CLI EDS User Guide 74 9 Line Tunnel Terminal and Host Settings Echo Applies only to Connect Mode Telnet connections not to Accept Mode Only disable Echo if your terminal echoes in which case you will see double of each character typed 3 Click Submit Host Configuration This
50. Import Configuration XML Import Configuration Import Line s from single line settings on the filesystem Filename Lines to Import Clear All Select All vw 1 2 3 4 Iv 5 IM e 7 vl g w 9 br network Whole Groups to Import Clear All Select All but Networking arp cli clock device email C ethernet execute exit cli ftp server hast http authentication uri http server icmp interface ip ip filter line lad query port rss serial command mode snmp ssh client ssh command mode ssh server ssl syslog tcp telnet command mode terminal ttp server tunnel accept tunnel connect tunnel disconnect tunnel modem tunnel packing tunnel serial tunnel start tunnel stop xml import control XML Import Lines from Single Line s Settings 1 Enter or modify the following settings This page is used for importing system configuration from an NM file Import Configuration from External file picks up all the settings from the external file Import Configuration from Filesystem picks up settings from the selected Groups Lines and Instances Import Lines from single line Settings on the Filesystem copies lines settings from an the input file containing only one Line instance to all of the selected Lines When selecting a Whole Groups to Import item all instances of that group will be imported Notice that by default all groups are checked except those pertaining to th
51. Import item all instances of that group vill be imported Motice that by default all groups are checked except those pertaining to the network configuration this i Sa that import will not break your network connectivity ou may check or uncheck any group to include or amit that group from import Selection of Lines to Import filters instances to be imported in the line od serial tunnel and terminal groups This affects both Whole Groups to Import and Text List selections Use the Text List string to import specific instances of a group The textual format of this string is EI Hale Bae ELE So Each group name lt q gt Is folloyvyed by a colon and the instance value lt i gt and each gz si gt value if separated by a semi colon lf a group has no instance then only the Group name should be specified 1 Enter the filename of the XCR file with the groups to import 2 Enter or modify the following settings Filename Enter the name of the file on the EDS local to its file system that contains XCR data Lines to Import Select the lines whose settings you want to import Click the Select All link to select all the serial lines and the network lines Click the Clear All link to clear all of the checkboxes By default all line instances are selected Only the selected line instances will be imported in the line LPD PPP tunnel and terminal groups EDS User Guide 132 13 Advanced Settings
52. LANTSONIX EDS Device Servers and Terminal Servers User Guide e EDS4100 EDS8PR EDS16PR EDS32PR EDS8PS EDS16PS Part Number 900 433 Revision H May 2009 Copyright amp Trademark 2009 Lantronix All rights reserved No part of the contents of this book may be transmitted or reproduced in any form or by any means without the written permission of Lantronix Printed in the United States of America Ethernet is a trademark of XEROX Corporation UNIX is a registered trademark of The Open Group Windows 95 Windows 98 Windows 2000 and Windows NT are trademarks of Microsoft Corp Netscape is a trademark of Netscape Communications Corporation Contacts Lantronix Corporate Headquarters 15353 Barranca Parkway Irvine CA 92618 USA Phone 949 453 3990 Fax 949 450 7249 Technical Support Online www lantronix com support Sales Offices For a current list of our domestic and international sales offices go to the Lantronix web site at www lantronix com about contact Disclaimer This product has been designed to comply with the limits for a Class B digital device pursuant to Part 15 of FCC and EN55022 1998 Rules when properly enclosed and grounded These limits are designed to provide reasonable protection against radio interference in a residential installation This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with this guide may cause interfer
53. Network Settings Interface Link MAC Address Host IP Address Default Gateway Domain Primary DNS Secondary DNS Line Settings Line 1 Line 2 Line 3 Line 4 Line 5 Line 6 Line 7 Line 8 Console Tunneling Tunnel 1 Tunnel 2 Tunnel 3 Tunnel 4 Figure 7 3 Device Status Lantronix EDSOPS 1 0 0 0R3 Oct 30 2008 16 06 12 EDS16PS protol U days 23 26 20 Saved ethll Auto 107100 Mbps Auto Hat ull 100 Mbps Half O0 2O 4a ba bb be 172 179 101 760 7 255 255 0 0 DHCP 172 195 0 1 DHCP eng lantronix com DHCP 172 19 1 1 DHCP 172 19 1 2 DHCP R5232 9600 Mone 6 1 Mone RS232 9600 Mone 6 1 Mone R5232 9600 Mone 8 1 None RSz232 9600 None 6 1 Mone RSz232 9600 Mone 6 1 Mone RS232 9600 Mone 6 1 Mone RS232 9600 Mone 5 1 None RSz232 9600 Mone 6 1 Mone RSz232 9600 None 6 1 Mone Connect Accept Mode Mode Disabled Waiting Disabled Waiting Disabled Waiting Disabled Waiting 46 8 Network Settings 8 Network Settings The Network Settings pages show the status of the Ethernet link and let you configure it on the EDS device Network Settings Network 1 ethO Interface Status This page shows the status of the Ethernet network interface View the network interface status 1 Click Network 2 Click Network 1 Interface and Status Default The Network 1 eth0 Interface Status page appears EDS User Guide 47 Figure 8 1 Network 1 ethO Inter
54. RSS page opens and shows the current RSS configuration Figure 10 9 RSS R Ge An RDF Site Summary RSS Palio syndication feed is served by the HTTP Server This teed contains RSS Feed Oon off Oon off 100 Persistent Max Entries Current Status Data D entries 0 bytes View Clear 2 Enter or modify the following settings RSS Feed Persistent remain across reboots Max Entries Select On to create RSS feeds up to date information regarding the configuration changes that occur onthe device Specifying the RSS Feed to be Persistent results in the data being stored on the filesystem The file Used is cfg Log txt This allows feed data to be available across reboots Cor until the factory defauts are set1 Fach RSS Feed entry contains standard timestamp in ts pubDate field The RSS Feed is scrolling feed in that only the last Max Entries entries are cached and viewable Simply register the RSS Feed within your favorite RSS aggregator and you vill automatically be notified of any configuration changes that Occur Select On to write the RSS feed to a file cfg_log txt and to Sets the maximum number of log entries Only the most recent number of Max Entries are cached and viewable 3 Click Submit 4 EDS User Guide In the Current Status table view and clear stored settings as necessary 89 10 Services Settings LPD Settings In addition to its
55. S Command Instructions for accessing Command Mode the command Reference line interface using a Telnet connection or through the serial port Detailed information about the commands Also provides details for XML configuration and status Com Port Redirector Instructions for using the Lantronix Windows based utility to Quick Start and create virtual com ports Online Help Devicelnstaller Instructions for using the Lantronix Windows based utility Online Help to locate the EDS and to view its current settings EDS User Guide 12 2 Introduction This chapter introduces the Lantronix EDS family of device servers It provides an overview of the products lists their key features and describes the applications for which they are suited EDS is a unique hybrid Ethernet terminal and multi port device server product designed to remotely access and manage virtually all of your IT networking equipment and servers It is also designed to provide connectivity for edge devices such as medical equipment kiosks POS retail terminals security equipment and more EDS device servers contain all the components necessary to deliver full network connectivity to virtually any kind of serial device They boast a reliable TCP IP protocol stack a variety of remote management capabilities and an innovative design based on the leading edge Lantronix Evolution OS Delivering a data center grade programmable device computing and networking platform fo
56. Syslog for network communications and management TCP UDP TCP AES UDP AES Telnet SSH and SSL TLS for tunneling to the serial port TFTP FTP and HTTP for file upload FTP and HTTP for firmware upgrade Evolution OS EDS incorporates The Lantronix Evolution OS Key features include Built in Web server for configuration and troubleshooting from Web based browsers CLI configurability SNMP management XML data transport and configurability Really Simple Syndication RSS information feeds Enterprise grade security with SSL and SSH 9 9 6 Comprehensive troubleshooting tools Additional Features Modem Emulation In modem emulation mode the EDS can replace dial up modems The unit accepts modem AT commands on the serial port and establishes a network connection to the end device leveraging network connections and bandwidth to eliminate dedicated modems and phone lines Web Based Configuration and Troubleshooting Built upon Internet based standards the EDS enables you to configure manage and troubleshoot through a browser based interface accessible anytime from anywhere All configuration and troubleshooting options are launched from a web interface You can access all functions via a Web browser for remote access As a result you decrease downtime using the troubleshooting tools and implement configuration changes using the configuration tools Command Line Interface CLI
57. TTP statistics EDS User Guide 10 Services Settings Click HTTP on the menu bar and then Statistics at the top of the page The HTTP Statistics page appears Figure 10 6 HTTP Statistics Statistics Configuration Authentication HTTP Statistics Rx Bytes Tx Bytes 200 OK 400 Bad Request 401 Authorization Required 404 Mot Found 408 Request Timeout 413 Request Too Large 501 Not Implemented Status Unknown Work Queue Full Socket Error Memory Error Logs This page displays the various HTTP Server statistics The HTTP Log is scrolling log in that only the last Max Log Entries lines are cached and viewable This maximum number of entries can be modified on the HTTP Confiquration 144207 page 12377653 205 O A 0 A A oO O 50 SU entries 7334 bytes view Clear 84 10 Services Settings Change HTTP Configuration On this page you can change HTTP configuration settings Configure HTTP 1 Click HTTP on the menu bar and then Configuration at the top of the page The HTTP Configuration page opens Figure 10 7 HTTP Configuration Statistics Configuration Authentication HTTP Configuration HTTP Server HTTP Port HTTPS Port HTTPS Protocols SSL3 TLS1 0 TLS1 1 Max Timeout Max Bytes Logging Max Log Entries Log Format Submit On Oof Enable Disable O Enable Disable O Enable Disable seconds On O off Current Conf
58. Use Figure 7 2 to orient yourself to the areas of the EDS Web Manager page Links to subpages Menu Bar Configuration amp Status Area Footer Figure 7 2 Components of the Web Manager Page wwe EDS8PS Statisti cs Configuration Command Line Interface Statistics Telnet Status Server Status Local Port Last Connection Uptime Total Bytes In Total Bytes Out Current Connections SSH Status Server Status Local Port Last Connection Uptime Total Bytes In Total Bytes Out Current Connections Enabled Waiting LAR TON A EVOLUTION OS This page displays the current connection status of the CLI servers listening on the Telnet and SSH ports Wen a connection is active the remote client information is displayed as yell as the number of bytes that have been sent and received Additionally Kill link will be present which can be used to 23 terminate the connection lt Mone gt O days 04 37 52 0 0 chlonez Enabled Waiting 22 lt None gt O days 04 37 52 0 0 chlonez Copyright Lantronix Hnformation instruetions and Help The Orange Menu Bar always appears at the left of the page It lists the names of the pages available in the Web Manager To bring up a page click it in the menu bar The white area of the page has from one to three sections EDS User Guide At the top many pages such as the one in the exampl
59. Whole Groups to Select the configuration groups to import from the XML Import configuration record This option imports all instances of each selected group unless it is one of the Lines to Import Note By default all groups are checked except those pertaining to the network configuration this is so that import will not break your network connectivity You may check or uncheck any group to include or omit that group from import To import all of the groups click the Select All but Networking link to import all groups To Clear all the checkboxes click the Clear All link Text List Enter a string to import specific instances of a group The textual format of this string is Ce en ET Each group name lt g gt is followed by a colon and the instance value lt i gt and each lt g gt lt i gt value is separated by a semi colon If a group has no instance then specify the group name lt g gt only Use this option for groups other than those affected by Lines to Import EDS User Guide 133 13 Advanced Settings Import Line s from Single Line Settings on the File system This selection copies line settings from the single line instance in the input file to selected lines The import file may only contain records from a single line instance this is done by selecting a single Line to Export when exporting the file Figure 13 10 XML Import Line s from Single Line Settings on the File system Export Configuration Expor Status
60. Zone Date Time 4hour Year and time configured on the device GMT 00 00 GMT 2008 w Day ne Hour Min SEC Month 3 e Gei sl 20 m Current Configuration Current Date Current Time Real Time Clock 1 Thu 13 Nov 2008 23 29 20 GMT Page settings Modify the following settings to set change the current date and time Time Zone Date Time 24 hour 2 Click Submit EDS User Guide From the drop down list select the time zone corresponding to the location of the EDS From the drop down lists select the year month and day corresponding to the current date at the location of the EDS From the drop down list select the hour minutes and seconds corresponding to the current time at the location of the EDS 119 12 Maintenance and Diagnostics Settings System Configuration EDS User Guide You can reboot the device restore factory defaults upload new firmware configure the short and long name and view the current system configuration Configure the EDS system settings 1 Click System on the menu bar The System page appears Figure 12 19 System Page When the device is rebooted your System browser should be refreshed and redirected to the main status page A after 30 seconds Mote that the Reboot Device redirect will not work as expected if the D Address of the device changes atter reboot l After setting the
61. a remote user could be bogus for 401 status BL URL path info first line of request same as Som 11 g lt version Fos return status Du Wor The max length for each directive iz 64 bytes The exception is Sr where each element is limited to 64 bytes i e method URL path info and query string EDS User Guide 85 10 Services Settings HTTP Port HTTPS Port HTTPS Protocols Max Timeout Max Bytes Logging Max Log Entries Log Format 3 Click Submit EDS User Guide Enter the port for the HTTP server to use The default is 80 Enter the port for the HTTPS server to use The default is 443 The HTTP server only listens on the HTTPS Port when an SSL certificate is configured select to enable or disable the following protocols SSL3 Secure Sockets Layer version 3 TLS1 0 Transport Layer Security version 1 0 TLS 1 0 is the successor of SSL3 as defined by the IETF TLS1 1 Transport Layer Security version 1 1 The protocols are enabled by default A server certificate and associated private key need to be installed in the SSL configuration section to use HTTPS Enter the maximum time for the HTTP server to wait when receiving a request This prevents Denial of Service DoS attacks The default is 10 seconds Enter the maximum number of bytes the HTTP server accepts when receiving a request The default is 40 kB this prevents DoS attacks Select On to enable HTTP ser
62. able When the Send Break control character is received from the network on its way to the serial line it is not sent to the line instead the line output is forced to be inactive the break condition Enter how long the break should last in milliseconds Applies only to Connect Mode Telnet connections not to Accept Mode Only disable Echo if your terminal echoes in which case you will see double of each character typed 3 To save changes click Submit EDS User Guide 73 9 Line Tunnel Terminal and Host Settings Network Terminal Configuration Configure menu features applicable to CLI access via the network 1 Click Terminal on the menu then Network at the top of the page Configuration is automatically selected The Terminal on Network Configuration page appears Figure 9 16 Terminal on Network Configuration Select Terminal on Configuration Terminal on Network Configuration UNKNOWN Terminal Type O Enabled Disabled O Enabled Disabled Echo G Enabled Disabled Login Connect Menu Exit Connect Menu 2 Enter or modify the following settings The text in Terminal Type will be sent to a host via IAC Selecting Login Connect Menu vill bring the user to menu rather than to the command line interface CL upon logging in The menu displays hosts and named lines Selecting Exit Connect Menu allows user to reach the command line interface CL
63. ables of configuration options The tables include Command Mode serial string sign on message AES Keys Converting Binary to Hexadecimal Following are two simple ways to convert binary numbers to hexadecimal notation Conversion Table Hexadecimal digits have values ranging from 0 to F which are represented as 0 9 A for 10 B for 11 etc To convert a binary value for example 0100 1100 toa hexadecimal representation treat the upper and lower four bits separately to produce a two digit hexadecimal number in this case 4C Use the following table to convert values from binary to hexadecimal Decimal Binary Hex 0 ONS IDJO RJ O ND co a R OIN 0O EDS User Guide 0000 0001 0010 0011 0100 0101 0110 0111 1000 1001 1010 1011 1100 1101 1110 1111 TIMmI UIOlui gt gt ob mis nol amairkl ovolm i 0 152 B Binary to Hexadecimal Conversions Scientific Calculator Another simple way to convert binary to hexadecimal is to use a scientific calculator such as the one available on the Windows operating systems For example 1 On the Windows Start menu click Programs Accessories gt Calculator 2 Onthe View menu select Scientific The scientific calculator appears 3 Click Bin Binary and type the number you want to convert Calculator i F x Edit View Help 1001100 C Hes CDe Oct fe Bin fe Qwod Dword word Byte Ce Che PP veee ce c
64. ake effect DTR Select when to assert DTR Asserted while connected asserted whenever either a connect or an accept mode tunnel connection is active Continuously asserted asserted regardless of the status of a tunnel connection 3 Click Submit EDS User Guide 63 9 Line Tunnel Terminal and Host Settings Connect Mode Connect mode defines how the unit makes an outgoing connection Configure Connect Mode 1 Select Tunnel n and Connect Mode at the top of the page The Tunnel n Connect Mode page appears Figure 9 10 Tunnel n Connect Mode Select Tunnel Statistics Accept Mode Packing Mode Serial Settings Connect Mode Modem Emulation Tunnel wi Start Stop Chars Disconnect Mode AES Keys Tunnel 1 Connect Mode Disabled O Any Character O Modem Control Asserted Mode O Enabled Start Character Modem Emulation Remote Address Remote Port Local Port OTEP Oupp OSsH OsSSL OTelnet QTCRYAES O UDP AES milliseconds O Enabled Disabled Protocol Reconnect Timer Flush Serial Data SSH Username Block Serial Data Or Block Network Data On TCP Keep Alive Email on Connect None Email on Disconnect None Current Configuration Mode Remote Address Remote Port Local Port Protocol Reconnect Timer Flush Serial Data SSH Username Block Serial Data Block Network Data TCP Keep Alives Email on Connect Email on Discon
65. allowed WARNING If using DHCRBOOTFP Current State make sure the IP Address ot the D DD TD server is in the filter The IP Filter Table is empty so ALL addresses are allowed lat Add 2 Enter or modify the following settings IP Address Enter the IP address to add to the IP filter table Network Mask Enter the IP address network mask in dotted notation 3 Inthe Current State table click Remove to delete settings as necessary 4 Click Submit EDS User Guide 109 12 Maintenance and Diagnostics Settings Query Port The query port is used for the automatic discovery of the device by the Devicelnstaller utility Only Ox77FE discover messages from Devicelnstaller are supported For more information on Devicelnstaller see Using Devicelnstaller on page 38 Configure the query port server 1 Click Query Port on the menu bar The Query Port page opens to display the current configuration Figure 12 8 Query Port Configuration Query Port This page displays various statistics and current usage information for the Query Port Query Port Server DOn Off Server The Ouere Port Server is a simple application that only responds to auto discovery messages on port 0xTTFE Current Configuration and Statistics Query Port Status On running In Valid Queries 30 In Unknown Queries 30 In Erroneous Packets 0 Out Query Replies 30 Out Errors H Last Connection 172 19 235 00 20672 2 Sele
66. amic Dynamic Dynamic Dynamic This page contains lower level ARP Metwork Stack specific configuration tems ARP The ARP Timeout specifies how long a MAC Address will remain in the cache before being removed ARP Cache The ARP Cache can be manipulated manually by adding newe entries and deleting existing ones 1 Enter the time in hours minutes and seconds for the timeout 2 Enter the IP address to add to the ARP cache 3 Enter the MAC address to add to the ARP cache 4 Click Add after supplying both fields Under Current State select Remove All to remove all entries in the ARP cache or select Remove to remove a specific entry from the ARP cache EDS User Guide 108 12 Maintenance and Diagnostics Settings IP Address Filter The IP address filter specifies the hosts and subnets permitted to communicate with the EDS Note If using DHCP BOOTP ensure the DHCP BOOTP server is in this list Configure the IP address filter 1 Click IP Address Filter on the menu bar The IP Address Filter page opens to display the current configuration Figure 12 7 IP Address Filter Configuration The IF Address Fiter table contains IP Address Filter all the IP Addresses and Subnets that ARE ALLOWED to send data to IP Address this device All packets from IF Addresses not in this list are Network Mask ignored and thrown away If the filter list is empty then all IF Address are
67. anging the character format and Command Mode settings for them Active run time settings for various system protocols Protocol settings for managing the security of data transmissions over the Internet A variety of tools for configuration diagnostics and statistics Information for advanced configuration activities modes and statistics 11 1 Using This Guide 14 Tunneling Tunneling allows serial devices to communicate over a network without being aware of the devices which establish the network connection between them 15 Security in Detail Configuring the EDS for SSH or SSL security 16 Branding the EDS Customizing the EDS Web Manager and Command Line Interface CLI 17 Updating Firmware Obtaining up to date firmware and release notes A Technical Support Contacting Lantronix Technical Support B Binary to Hexadecimal Converting binary values to hexadecimals Conversions C Lantronix Cables and Lantronix cables and adapters for use with the Adapters EDS devices are listed here according to part number and application D Compliance Compliances according to ISO IEC Guide 22 and EN 45014 E Warranty Lantronix Warranty Policy link Index Additional Documentation The following documents are available on the product CD and the Lantronix Web site www lantronix com EDS 8 16 Quick Information about the EDS hardware installation and initial Start configuration of your EDS8PS or EDS16PS ED
68. ant to upload or use the Browse button to select the certificate RSA or DSA certificates with 512 to 1024 bit public keys are allowed The format of the file must be PEM The file must start add comments before and or after these lines Those need to be deleted before upload Enter the 2 letter country code to be assigned to the new self signed certificate Examples US for United States and CA for Canada EDS User Guide 100 11 Security Settings State Province Locality City Organization Organization Unit Common Name Expires Key length Type EDS User Guide Enter the state or province to be assigned to the new self signed certificate Enter the city or locality to be assigned to the new self signed certificate Enter the organization to be associated with the new self signed certificate Example If your company is called Widgets and you are setting up a web server for the Sales department enter Widgets for the organization Enter the organizational unit to be associated with the new self signed certificate Example If your company is setting up a web server for the Sales department enter Sales for your organizational unit Enter the same name that the user will enter when requesting your web site Example If a user enters http www widgets abccompany com to access your web site the Common Name would be www widgets abccompany com Enter the expiration date in mm dd yyyy f
69. celnstaller gt Devicelnstaller When Devicelnstaller starts it will perform a network device search To perform another search click the Search button Expand the EDS folder by clicking the symbol next to the EDS folder icon The list of available Lantronix EDS devices appears Select the EDS unit by expanding its entry and clicking on its hardware MAC address to view its configuration On the right page click the Device Details tab The current EDS configuration appears This is only a subset of the full configuration the full configuration may be accessed via Web Manager CLI or XML 38 6 Using Devicelnstaller Device Details Summary Note The settings in this table are Display Only unless otherwise noted Name Name identifying the EDS Group Configurable field Enter a group to categorize the EDS Double click the field type in the value and press Enter to complete This group name is local to this PC and is not visible on other PCs or laptops using Devicelnstaller Comments Configurable field Enter comments for the EDS Double click the field type in the value and press Enter to complete This description or comment is local to this PC and is not visible on other PCs or laptops using Devicelnstaller Device Family Shows the EDS device family type as EDS Type Shows the device type as EDS ID Shows the EDS ID embedded within the unit Hardware
70. ckets Hardware MIB II Ping Memory U fF a 50 02 02 OO AA 8 8 0 8 82 CH Traceroute LocalAdadr Port 172 19 101 78 161 172 419 1041 78 21 172 19 101 78 80 172 19 101 78 59 172 19 101 75 30718 172 19 101 78 23 172 19 101 78 22 172 19 101 78 10001 172 19 101 78 10002 172 19 101 78 10003 172 19 101 78 10004 172 19 101 78 10005 172 419 1041 75 10006 172 19 101 78 10007 172 19 101 78 10008 172 19 101 75 80 IP Sockets DNS Lookup Buffer Pools Processes FemoteAddr Port 255 255 255 255 1 255 255 255 255 0 255 255 255 255 I 255 255 255 255 172 19 235 85 26672 255 255 255 255 255 255 255 255 1 255 255 255 255 0 255 255 255 255 255 255 255 255 0 255 255 255 255 0 255 255 255 255 255 255 255 255 0 255 255 255 255 0 255 255 255 255 0 172 20197 102 1474 This page lists allthe currently open network sockets on the device LISTEN LISTEN ESTABLISHED LISTEN LISTEN LISTEN LISTEN LISTEN LISTEN LISTEN LISTEN LISTEN LISTEN ESTABLISHED You can ping a remote device or computer from your EDS Ping a remote device or computer 1 Click Diagnostics on the menu bar then click Ping The Ping page appears EDS User Guide 112 12 Maintenance and Diagnostics Settings Figure 12 12 Diagnostics Ping Specity ether a DNS Hostname or Hardware MIE IP Sockets IP Address when pinging a network host Additionally the Count Ping Traceroute DNS Lookup specifies the number of ping Memory B
71. client specifically tunneling in Connect Mode At the very least a password or key pair must be configured for a user The keys for public key authentication can be created elsewhere and uploaded to the device or automatically generated on the device If uploading existing keys be sure the private key will not be compromised in transit This implies the data is uploaded over some kind of secure private network Note If you are providing a key by uploading a file make sure that the key is not password protected Configure the SSH client users 1 Click SSH on the menu bar and then SSH Client Users at the top of the page The SSH Client Users page appears Figure 11 4 SSH Client Users The SSH Client Users are used by SSH Server Host Keys SSH Client Known Hosts all applications that play the role of an SSH Client Specifically SSH Server Authorized Users SSH Client Users Tunneling in Connect Mode At the very least Password or l Key Pair must be configured for a SSH Client Users user The keys for public key authentication can be created Hee erger Ir elsewhere and uploaded to the device or automatically generated H uploading existing Keys take care Command compromised in transit This implies of secure private network Public Key Brows WARNING When generating nev Key Type RSA O DEA Keys using larger Bit Size vill result in longer key generation Add time Tests on this hardware have s
72. complicated to configure EDS User Guide 147 16 Branding the EDS The EDS Web Manager and Command Mode CLI are customizable Web Manager Customization Customize the Web Manager s appearance by modifying index html and style css The style fonts colors and spacing of the Web Manager are controlled with style css and the text and graphics are controlled with index html The Web Manager files are hidden and incorporated directly into the firmware image but may be overridden by placing the appropriate file in the appropriate directory on the EDS file system Web Manager files can be retrieved and overridden with the following procedure 1 ftp to the MatchPort b g Pro 2 mkdir http config 3 cd http config 4 get lt filename gt 5 modify the file to your liking or create a new one with the same name 6 put lt filename gt 7 quit The overriding files will now appear in the file system s http config directory Restart any open browser to view the changed effects If you wish to go back to the default files in the firmware image simply delete the overriding files from the file system EDS User Guide 148 16 Branding the EDS Command Mode Customize the EDS Command Mode by changing its short name and long name The short name is used for show commands enable show EDS The long and short names appear in the Product Type field in the following format Product Type lt long name gt lt short name gt
73. configuration back Restore Factory Defaults to the factory defaults the device vill automatically be rebooted Factory Defaults gt Be careful not to power off or reset the device while uploading mev firmware Once the upload has completed and the new firmware has been verified and flashed the device vill automatically be rebooted Upload New Firmware Short Name Long Name Current Configuration Firmware Version 1 0 0 0R3 Short Name EDSGPS Long Name Lantronix EDSOPS 2 Configure the following settings Reboot Device Click Reboot to reboot the EDS The system refreshes and redirects the browser to the EDS home page Restore Factory Defaults Click Factory Defaults to restore the EDS to the original factory settings All configurations will be lost The EDS automatically reboots upon setting back to the defaults Upload New Firmware Click Browse to locate the firmware file location Click Upload to install the firmware on the EDS The device automatically reboots upon the installation of new firmware Name Enter a new Short Name and a Long Name if necessary The Short Name maximum is 32 characters The Long Name maximum is 64 characters Changes take place upon the next reboot 120 13 Advanced Settings This chapter presents information for advanced activities modes and statistics Email alerts CLI settings CLI
74. cord 3 Click the Export button The groups display if exporting the data to the browser If exporting to the file system the file is stored on the file system XML Import System Configuration Page You can also import a system configuration from an XML file The XML data can be imported from a file on the file system or uploaded using HTTP The groups to import can be specified by toggling the respective group item or entering a filter string When toggling a group item all instances of that group will be imported The filter string can be used to import specific instances of a group The text format of this string Is lt Q gt lt l gt lt g gt i lt l gt Each group name lt g gt is followed by a colon and the instance value lt i gt Each lt g gt lt i gt value is separated with a semicolon If a group has no instance specify the group name lt g gt only Import a system configuration 1 Click XML on the menu bar and then Import Configuration at the top of the page The XML Import Configuration page appears Figure 13 7 XML Import Configuration This page i used for imparting Export Configuration Export Status Import Configuration SENNENPSKEN Man sn HAL Import Configuration from ML Import Configuration External file picks up all the settings from the external file Import Import Configuration from Filesystem picks up settings from the selected Groups Lines and Instances Import Line s from
75. ct On to enable the Query Port server 3 Click Submit Diagnostics The EDS has several tools for diagnostics and statistics The options at the top of the page allow for the configuration or viewing of MIB2 statistics IP socket information ping traceroute DNS lookup memory buffer pools processes and hardware Hardware This read only page shows the current hardware configuration Display the EDS hardware diagnostics Click Diagnostics on the menu bar The Diagnostics Hardware page opens and shows the current hardware configuration EDS User Guide 110 12 Maintenance and Diagnostics Settings Figure 12 9 Diagnostics Hardware This page shows the basic Hardware MIE H IP Sockets hardware information for the device Ping Traceroute DNS Lookup Memory Buffer Pools Processes Diagnostics Hardware Current Configuration CPU Type AP420 CPU Speed 266 0 MHz CPU Instruction Cache 342 000 Kbytes 32760 bytes CPU Data Cache 42 000 Kbytes 32760 bytes RAM Size 64 000000 Mbytes 67106064 bytes Flash Size o 000000 Mbytes 83065606 bytes Flash Sector Size 125 000 Kbytes 131072 bytes Flash Sector Count ba Flash ID 0x53 MIB II Statistics The MIB II Network Statistics page shows the various SNMP served Management Information Bases MIBs available on the EDS View EDS MIB II statistics 1 Click Diagnostics on the menu bar and then MIB II at the top of the page menu The MIB II Network Statis
76. ct the key type to be used Choices are RSA use this key with the SSH1 and SSH2 protocols DSA use this key with the SSH2 protocol Create New Keys Username Enter the name of the user associated with the new key Key Type Select the key type to be used for the new key Choices are RSA use this key with the SSH1 and SSH2 protocols DSA use this key with the SSH2 protocol Bit Size Select the bit length of the new key 512 768 1024 Using a larger Bit Size takes more time to generate the key Approximate times are 10 seconds for a 512 bit RSA Key 15 seconds for a 768 bit RSA Key 1 minute for a 1024 bit RSA key 30 seconds for a 512 bit DSA key 1 minute for a 768 bit DSA key 2 minutes for a 1024 bit DSA key Some SSH clients require RSA host keys to be at least 1024 bits long 3 Click Submit 4 Inthe Current Configuration table delete currently stored settings as necessary EDS User Guide 98 SSL Settings 11 Security Settings Secure Sockets Layer SSL is a protocol for managing the security of data transmission over the Internet It provides encryption authentication and message integrity services SSL is widely used for secure communication to a web server Certificate Private key combinations can be obtained from an external Certificate Authority CA and downloaded into the unit Self signed certificates with associated private key can be generated by the device server itself For more informatio
77. d Export Status This page is used for exporting the Export Configuration Export Status Import Configuration SUE ci ereicht lte bo ganL format as ASR records The XML data can be exported to XML Export Status the browser window or to file on the filesystem O Export to browser By default all Groups to Export i are checked you may omit groups O Export to local file from export by unchecking them EE Selection of Lines to Export fitters Lines to Export Clear All Select All instances to be exported in the line pd and tunnel groups w 1 M2 M3 M4 MSs Me we Mea kal 9 kal network Groups to Export Clear All Select All arp buffer pool clock device email email log filesystem ftp hardware http http log icmp interface ethl ip ip sockets line ipd memory processes query port rss Sessions ssh syslog tep telnet ttp tunnel udp xs 2 Enter or modify the following settings Export to browser Select this option to export the XML status record to a web browser Export to local file Select this option to export the XML status record to a file on the device If you select this option enter a file name for the XML status record Lines to Export Select the instances you want to export in the line LPD PPP tunnel and terminal groups EDS User Guide 129 13 Advanced Settings Groups to Export Check the configuration groups that are to be exported into the XML status re
78. dem Emulation AES Keys Tunnel 1 Packing Mode Disable Mode Si Timeout Send Character Threshold 512 bytes 30000 milliseconds Timeout EDS User Guide Start Stop Chars Disconnect Mode 61 9 Line Tunnel Terminal and Host Settings Figure 9 8c Tunnel n Packing Mode Mode Send Character Select Tunnel Tunnell se Statistics Serial Settings Start Stop Chars Accept Mode Connect Mode Disconnect Mode Packing Mode Modem Emulation AES Keys Tunnel 1 Packing Mode Disable Mode O Timeout LG Send Character Threshold 512 bytes Send Character Trailing Character 2 Enter or modify the following settings Mode Select Disable to disable Packing Mode completely Select Timeout to send data after the specified time has elapsed Select Send Character to send the queued data when the send character is received Threshold Send the queued data when the number of Appears for both Timeout queued bytes reaches the threshold and Send Character Modes Timeout Enter a time in milliseconds for the EDS to Appears for Timeout send the queued data after the first character Mode is received Send Character Enter the send character The EDS Appears for Send immediately sends out the queued data Character Mode Trailing Character Enter the trailing character This character is Appears for Send sent immediately following the send Character Mode character 3 Click Submit
79. e network configuration this i so that import will not break your network connectivity You may check or uncheck any group to include or omit that group from import Selection of Lines to Import Titers instances to be imported in the line pd serial tunnel and terminal groups This affects both Whole Groups to Import and Text List selections Use the Text List string to import specific instances of a group The textual format of this string i Supers Ler 2 aise Stole SES Each group name gt is followed by a colon and the instance value lt i gt and each lt gq i value is separated by a semi colon lf group has no instance then only the group name lt g gt should be specified Filename Enter the name of the file on the EDS local to its file system that contains XCR data EDS User Guide 134 13 Advanced Settings Lines to Import Select the line s of settings to import Click the Select All link to select all the serial lines and the network lines Click the Clear All link clear all of the checkboxes By default all serial line instances are selected Whole Groups to Select the configuration groups to import from the XML Import configuration record Note By default all groups are checked except those pertaining to the network configuration this is so that the import will not break your network connectivity You may check or uncheck any group to include or omit that group fro
80. e above enable you to link to sub pages On some pages you must also select the item you are configuring such as a line or a tunnel In the middle section you can select or enter new configuration settings After you change settings click Submit to apply the changes Some settings require a reboot of the EDS before the settings take effect Those settings are identified in the appropriate sections in this chapter The bottom section usually shows the current configuration In some cases you can reset or clear a configuration setting The Instructions Information and Help area shows information or instructions associated with the page 43 7 Configuration Using Web Manager The Footer appears at the bottom of the page It contains copyright information and a link to the Lantronix home page Navigating the Web Manager The Web Manager provides an intuitive point and click interface A menu bar at the left side of each page provides links you can click to navigate from one page to another Some pages are read only while others let you change configuration settings Summary of Web Manager Pages Status CLI Diagnostics DNS Email Filesystem FTP Host HTTP IP Address Filter Line LPD Network Protocol Stack Query Port RSS EDS User Guide Shows product information and network line and tunneling settings Shows Command Line Interface CLI statistics and lets you change the cu
81. e of the decrypt key Select the format for the bytes as either Text or Binary Connect Mode AES Keys Encrypt Key Enter the value for each byte Select the format for the byte as either Text or Binary Decrypt Key Enter the value for each byte of the decrypt key Select the format for the byte as either Text or Binary 3 Click Submit Terminal Settings This page shows configuration settings for attaching a terminal on a serial line or the network and lets you change them as necessary Line Terminal Configuration Configure a line to support an attached terminal 1 Click Terminal on the menu and then select the line that is connected to the terminal you want to configure The default is Line n Configuration is automatically selected The Terminal on Line n Configuration page appears Figure 9 15 Terminal on Line n Configuration The text in Terminal Type vill be sent to a host via IAC Select Terminal on Line 1 ka Selecting Login Connect Menu will bring the user to menu rather than to the command line interface CLD upon logging in The menu displays hosts and named lines Selecting Exit Connect Menu allows a user to reach the command line interface CLI from the Connect Menu When the Send Break control Configuration Terminal on Line 1 Configuration Terminal Type UNKNOWN EDS User Guide Login Connect Menu O Enabled Disabled O Enabled Disabled
82. e to resolve an issue using the information in this document please contact Technical Support Technical Support US Check our online knowledge base or send a question to Technical Support at http www lantronix com support Technical Support Europe Middle East Africa Phone 33 13 930 4172 Email eu_techsupp lantronix com or eu_Support lantronix com Firmware downloads frequently asked questions FAQs and the most up to date documentation are available at http www lantronix com support When you report a problem please provide the following information Your name and your company name address and phone number Lantronix model number Lantronix serial number Firmware version on the first screen shown when you Telnet to the device and type show Description of the problem Status of the unit when the problem occurred please try to include information on user and network activity at the time of the problem Additionally it may be useful to export and submit the XML Configuration and XML Status files EDS User Guide 151 B Binary to Hexadecimal Conversions Many of the unt e configuration procedures require you to assemble a series of options represented as bits into a complete command represented as a byte The resulting binary value must be converted to a hexadecimal representation Use this chapter to learn to convert binary values to hexadecimals or to look up hexadecimal values in the t
83. ect the protocol type for use in Command Mode TCP is the default protocol The protocol can be one of TCP UDP SSH SSL Telnet TCP with AES or UDP with AES If security is a concern use SSH The SSH Username specifies the SSH Client User to use for an outgoing SSH connection To set up an SSH Client User go to SSH Settings on page 93 Enter the reconnect time in milliseconds The EDS attempts to reconnect after this amount of time after failing a connection or exiting an existing connection Select whether to flush the serial line when a connection is made Choices are Enabled flush the serial line when a connection is made Disabled do not flush the serial line default 65 9 Line Tunnel Terminal and Host Settings SSH Username Enter the SSH username The tunnel uses the SSH keys associated with the client username Block Serial Select On to block not tunnel serial data transmitted to Data the EDS Block Network Select On to block not tunnel network data transmitted Data to the EDS TCP Keep Alive Enter the time in seconds the unit waits during a silent connection before checking whether the currently connected network device is still on the network If the unit then gets no response after 8 attempts it drops that connection Email on Select whether the EDS sends an email when a Connect connection is made Select None if you do not want to send an email Otherwise select the Email profile t
84. ence to radio communications The information in this guide may change without notice The manufacturer assumes no responsibility for any errors that may appear in this guide For the latest revision of this product document please check our online documentation at www lantronix com support documentation html Revision History 3 06 A Initial Document 10 06 B EDS16PR and EDS32PR products added 12 06 D German and English TUV certification added 1 07 E EDS8PR products added F 11 07 Added LPD Terminal Host RSS and RTC pages updated XML and other pages EDS8PS and EDS16PS products added Updated for EDS8 16 32PR amp EDS4100 v4 1 0 2 Q 11 08 5 09 I EDS User Guide 2 Contents Copyright amp Re E OCS eegene Disclaimer A Revision History EE FI ee Using This Guide Purpose and Audience Summary of nl Additional Documentaton Introduction EDS8PS and EDS16PS Overview cccccccccceccececcececcececeecececeeceees Features EDS4100 Overvlew Features EDS8PR EDS16PR and EDS32PR Overview s is Features Protocols Supported ccccccsssseeceecceeeeeeeceeeeeeeeeeseeaaeceeeeseaeeeeeessaaess m 10110 11101 KG 5 EEN Additional Features cccceccccecececcccecececcccecececucaucececueauaesecscauauaenenes Modem Emulation Web Based Configuration and Troubleshooting Command Line Interface CLI SNMP Management XML Based Architecture and Device Control Really Simp
85. enter the appropriate string The SO and EGJ strings are limited ito 100 characters each after possible conversion to binary The S0J and EOF strings can be entered in Text or Binary form The Binary form allows square braces 1 to enclose one or more character designations separated by commas Use straight decimal numbers up to 255 or hexadecimal numbers prefixed with Ox up to OxFF within the square braces To specify an open brace in binary mode use two in row Example fin Binary mode AB 255 OxFFJC D Resutz in a string containing binary values where the dots appear Ap CID A Queue Name may not contain white space 91 10 Services Settings 2 Enter or modify the following settings Banner Binary Start of Job End of Job Formfeed Convert Newlines SOJ String EOJ String Queue Name EDS User Guide Select Enabled to print the banner even if the print job does not specify to do so Selected by default Select Enabled for the EDS to pass the entire file to the printer unchanged Otherwise the EDS passes only valid ASCII and valid control characters to the printer Valid control characters include the tab linefeed formfeed backspace and newline characters All others are stripped Disabled by default Select Enabled to print a start of job string before sending the print data Select Enabled to send an end of job string Select Enabled to force the printer to advance to
86. es enabled pluses vill be echoed during pause pause escape Sequence on the Serial Line With Echo Commands enabled A TET characters read on the Serial Line vill be echoed vhile the Line is in Modem Command Mode With Verbose Reponse enabled CA TED Modem Response Codes are sent out on the Serial Line Response Type selects either Text 47413 or Numeric ATY 0 representation for the Modem Response Codes sent out on the Serial Line With Error Unknown Commands enabled 47U0 ERROR is returned for unrecognized AT commands Otherwise ATUTI OK is returned for unrecognized T commands Incoming Connection requests may be disabled ATS50 01 answered automatically 4T50 11 or answered manually via the ATA command after an incoming RIKG ATSD 21 The Connect String is customized string that is sent with the CONNECT Modem Response Code With Display Remote IP enabled the incoming RING is follayved by the IP address of the caller 67 9 Line Tunnel Terminal and Host Settings 2 Enter or modify the following settings Echo Pluses Echo Commands Verbose Response Response Type Error Unknown Commands Incoming Connection Connect String Display Remote IP 3 Click Submit EDS User Guide select Enabled to echo when entering modem Command Mode Select Enabled Same as modem command ATE1 to echo the modem commands to the console Select Enabled same as modem command
87. eys using the Create New Keys section The Remote Command is provided to the SSH server upon connection It specifies the application to execute upon connection The default is a command shell Note Configuring the SSH client known hosts is optional It prevents Man In The Middle MITM attacks Secure Sockets Layer SSL SSL uses digital certificates for authentication and cryptography against eavesdropping and tampering Sometimes only the server is authenticated sometimes both server and client The EDS can be server and or client depending on the application Public key encryption systems exchange information and keys and set up the encrypted tunnel Efficient symmetric encryption methods encrypt the data going through the tunnel after it is established Hashing provides tamper detection Applications that can make use of SSL are Tunneling and Secure Web Server The EDS supports SSLv3 and its successors TLS1 0 and TLS1 1 Note An incoming SSLv2 connection attempt is answered with an SSLv3 response If the initiator also supports SSLv3 SSLv3 handles the rest of the connection Cipher Suites The SSL standard defines only certain combinations of certificate type key exchange method symmetric encryption and hash method Such a combination is called a cipher suite EDS User Guide 144 15 Security in Detail EDS currently supports the following list of cipher suites Certificate Key exchange Encryption Hash
88. f you do not want to send an email Otherwise select the Email profile to use for sending select whether the EDS sends an email when a connection is closed Select None if you do not want to send an email Otherwise select the Email profile to use for sending Enter a password that clients must send to the EDS within 30 seconds from opening a network connection to enable data transmission The password can have up to 31 characters and must contain 59 9 Line Tunnel Terminal and Host Settings only alphanumeric characters and punctuation When set the password sent to the EDS must be terminated with one of the following a OxOA LF b 0x00 c OxOD Ox0A CR LF or d OxOD 0x00 Prompt for Indicate whether to prompt the user for the password upon Password connection On prompt for a password upon connection Off do not prompt for a password upon connection 3 Click Submit Packing Mode When in Packing Mode data is not transferred one byte at a time Instead data is queued and sent in segments Configure the Tunnel Packing Mode 1 Select Tunnel n and Packing Mode at the top of the page The Tunnel n Packing Mode page appears Depending on the Mode selection different configurable parameters are shown The following figures show the display for each of the three packing modes EDS User Guide 60 9 Line Tunnel Terminal and Host Settings Figure 9 6a Tunnel n Packing Mode Mode Disable
89. face Status Network 1 Interface Link Status Configuration Network 1 eth0 Interface Status BOOTP Client DHCP Client IP Address Network Mask Default Gateway Hostname Domain DNS Suffix Search List DHCP Client ID Current Gf On Renew 172 19 101 7 0 DHCP 255 255 0 0 DHCP 172 19 0 1 DHCP lt None gt eng lantronix cam DHCP eng lantronix cam int lantronix com lantronix com lt None gt After Reboot Off On DHCP lt DHCP gt DHCR DHCR lt DHCP gt DHCP lt None gt Network 1 ethO Interface Configuration This page shows the configuration settings for the Ethernet connection and lets you change these settings EDS User Guide 8 Network Settings This page is used to views the status of the Network interface on the device There are two columns displayed The first column shows the current operational settings The second column show s the expected settings after the device is rebooted If both BOOTP and DHCP are turned on DHCP vill run but not BOOTP When BOOTP or DHCP fails to discover an IP Address a nev address will automatically be generated using AutolP This address will be within the 169 254 x x space 48 8 Network Settings View and configure network interface settings 1 Click Network 1 Interface and Configuration The Network 1 ethO Interface Configuration page appears Figure 8 2 Network 1
90. fills the Time To Live in the IP header Normally this value wall be one so the packet vill be blocked at Multicast Time to Live hops the first router Set this value to greater than one to intentionally propagate multicast packets to additional routers On the IP Protocol page enter the number of hops a transmitted multicast packet may make before it is terminated ICMP Settings On the ICMP page you set enabled or disabled Figure 12 5 ICMP Protocol Page This page contains lower level KMD TCP IP ICMP ARP Network Stack specific configuration tems The State boolean is used to turn ICMP onfott processing of CM messages This includes both Incoming and outgoing messages State Enabled Disabled Choose Enabled or Disabled EDS User Guide 107 ARP Settings 12 Maintenance and Diagnostics Settings On the ARP page you set the maximum time an address remains in the cache and you specify both the IP and MAC addresses for the ARP cache Both addresses are required Figure 12 6 ARP Protocol Page TCP IP ICMP ARP ARP ARP Timeout seconds ARP Cache IP Address Add Current State Remove All Age MAC Address Sec Address 172 24 254 254 Remove 172 19 217 10 Remove 250 9 00 04 5a 59 ed 15 172 19 101 46 Remove 4 3 00 15 17 7b c8 cb 172 19 1 1 Remove 234 00 1b6 1 0e 3d 5 172 19 0 1 Remove DI 00 40 04 02 c0 00 1 9 00 40 04 02 c0 00 Type Dynamic Dyn
91. folders click the folder or directory and then enter the parameters in the settings listed below Create File Enter the name of the file you want to create and then click Create Directory Enter the name of the directory you want to create and then click Create Upload File Enter the path and name of the file you want to upload by means of HTTP S or use the Browse button to select the file and then click Upload Copy File Source Enter the location where the file you want to copy resides Destination Enter the location where you want the file copied After you specify a source and destination click Copy to copy the file Move Source Enter the location where the file you want to move resides Destination Enter the location where you want the file moved After you specify a source and destination click Move to move the file TFTP Action Select the action that is to be performed via TFTP Get a get command will be executed to store a file locally Put a put command will be executed to senda file to a remote location Mode Select a TFTP mode to use Choices are ASCII Binary Local File Enter the name of the local file on which the specified get or put action is to be performed Remote File Enter the name of the file at the remote location that is to be stored locally get or externally put Host Enter the IP address or name of the host involved in this operation EDS User G
92. for a specified period before being sent out Specifies the time duration in milliseconds applies only if the Packing Mode is Timeout Threshold When the buffer fills to this specified amount of data in bytes and the timeout has not elapsed the EDS packs the data and sends it out applies only if the Packing Mode is not Disabled Send Character The data is packed until the specified send character is encountered Similar to a start or stop character the EDS packs the data until it sees the send character The EDS then sends the packed data and the send character in the packet Applies only if the Packing Mode is Send Character 138 14 Tunneling Trailing Character If a trailing character is defined this character is appended to data put on the network immediately following the send character Modem Emulation The EDS supports Modem Emulation mode for devices that send out modem signals There are two different modes supported Command Mode sends back verbal response codes Data Mode information transferred in is also transferred out You can change the default settings for verbose response codes echo commands and quiet mode by using Command Mode commands The current settings can be overridden however on reboot it will go back to the programmed settings Configure the connect string as necessary The connect string appends to the communication packet when the modem connects to a remote location You can append addit
93. g system startup On unit has finished booting Speed On EDS is connected to a 100 Mbps Fast Ethernet network yellow Off EDS is connected to a 10 Mbps Ethernet network Activity Blink EDS is sending data to or receiving data from the Ethernet EDS User Guide 30 4 Installation of EDS4100 green network Reset Button The reset button is on the back of the EDS4100 to the left of the power connector Pressing this button reboots the EDS4100 and terminates all data activity occurring on the serial and Ethernet ports Physically Installing the EDS4100 Finding a Suitable Location Place the EDS4100 on a flat horizontal or vertical surface The EDS4100 comes with mounting brackets installed for vertically mounting the unit for example on a wall H using AC power avoid outlets controlled by a wall switch Connecting the EDS4100 Observe the following guidelines when attaching serial devices Al four EDS4100 serial ports support RS 232 devices Alternatively ports 1 and 3 support RS 422 485 devices To connect an EDS4100 serial port to another DTE device use a null modem cable To connect the EDS4100 serial port to a DCE device use a straight through modem cable Connect the EDS4100 to one or more serial devices 1 Power off the serial devices 2 Attach a serial cable between the EDS4100 and each serial device 3 Connect an Ethernet cable between the EDS4100 Ethernet port and your
94. gotiate the connection to the Ethernet network LEDs Light emitting diodes LEDs on the front panel show status information Each serial port plus the console port have a Transmit and a Receive LED The Ethernet port has Speed Activity Power and Status LEDs The table below describes the LEDs on the front of the EDSPS Front Panel LEDs Transmit Blinking EDS is transmitting data on the serial port green Receive yellow Blinking EDS is receiving data on the serial port Power blue On EDS is receiving power Diag green Fast blink initial startup loading OS Slow blink once per second operating system startup On unit has finished booting EDS User Guide 24 3 Installation of EDS8PS and EDS16PS Speed yellow On EDS is connected to a 100 Mbps Fast Ethernet network Off EDS is connected to a 10 Mbps Ethernet network Activity green Blink EDS is sending data to or receiving data from the Ethernet network Reset Button The reset button is on the rear of the device to the right of the Ethernet port accessible through a hole in the case You can use it to reboot the unit or to reload factory defaults Reboot the device 1 Press and hold the reset button for about 3 seconds The status LED blinks quickly 2 When the fast blinks stop release the button When the unit reboots the status LED changes from a fast blink to a solid ON Restore factory defaults 1 Press and
95. gure LPD settings 10 Services Settings 1 Click LPD on the menu bar select the LPD line and click Configuration The LPD Configuration page appears Figure 10 11 LPD Configuration Select LPD Line Statistics Configuration Print Test Page LPD 1 Configuration WARNINGS Serial protocol is rot LPO Banner Binary Start of Job End of Job Formfeed Convert Newlines SOJ String EOJ String Queue Name EDS User Guide Enabled Disabled O Enabled O Disabled O Enabled Disabled O Enabled Disabled O Enabled Disabled O Enabled Disabled Text Binary Text Binary Enabling Banner will force the hanner page to be printed ever it the Incoming print job does not specify fo do sa Enabling Binary vill pass the entire file to the printer without removing any characters Disabled only valid ascii and control characters are passed all others are stripped valid control characters include the tah linefeed formfeed backspace and newline Enabling Formfeeds vill force a formfeedto be sent to the printer at the end of each print job Enabling Convert Newlines vill convert single newlines and single carriage returns into DOS style carriage return linefeed line endings if carriage return and linefeed characters are already in ithe correct OOS line ending order they vill remain unchanged To send a Start Of Job 80400 or End Of Job EO string to the printer
96. he EDS16PR WE 34 FE NAP 35 Figure 5 4 Example of EDS16PR Connections rrrnrrnnnnnnnnvvnnrnnnnnvnnnnnnnnnrnnrnnnnnsennnnnnnnsrnnnnnnsnssnnnnnnsnee 37 Figure 7 1 The EDS Web Manager Status Home Page 42 Figure 7 2 Components of the Web Manager Page 43 Fiqur 7 3 Device TE 46 Figure 8 1 Network 1 ethO Interface Giatus 48 Figure 8 2 Network 1 ethO Interface Configuration rrrnnrrnnrrnrrrrnnnnnrnnovnrrrrnnnnnnnnrrnnnrrnnnnnnnnsrnnnnnnnnnn 49 Figure 8 3 Network 1 Ethernet Link rrrnnrrnnnnnnrrnrnnnnvnnnnnnrnnnnnnrrnnnnnnennnnnnrnnnnnnsennnnnnennnnnnsnnnnnnsrnnnnnssnnnnn 51 PTE RENS EE 52 Foue 9 2 LINE N CONIGUE ION EE 53 Figure 9 3 LINE n Command ModE seseccdisdcccnnceacnexeeaescnaceaccoveradcasecisecuesnbenenceaimaceseuntdvadesmeeceouteeauadencstusens 55 SEE TUME E ES EE 57 FESTA COOP MOQO EE 58 Figure 9 6a Tunnel n Packing Mode Mode Dsable 61 Figure 9 7b Tunnel n Packing Mode Mode Tumeout 61 Figure 9 8c Tunnel n Packing Mode Mode Send Character 62 Figure 9 9 Tunnel n Serial Settings cc ccceceecccceeeeeeeeseeeeeeeeeseeeeeeecceeeeessseeseeeceeeeessueaseeeeeeeessaaaaeess 63 Figure 9 10 Tunnel n Connect Mode rrnnrrnnnnnnnnnnnnnnnvvnvnnnnnnvnnnnnnnnsennnnnnnnnrnnnnnnsnssnnnnnnsnsrnnnnnnsnsennnnnnsnee 64 Figure 9 11 Tunnel n Modem Emulation ornrrrnnrnnnnnnrrnrnnnnnnvrnnnnnnnnennnnnnnnnrnnnnnnsnssnnnnnnsnsrnnnnnnsnsrnnnnnnsnee 67 Figure 9 12 Tunnel n Start Stop Char 69 Figure 9
97. hold the reset button for about 11 seconds The LED blinks quickly for about 3 seconds then comes on for about 5 seconds then blinks slowly for about 2 seconds 2 When the slow blinks stop release the button Installing the EDS8 16PS Finding a Suitable Location You can install the EDS8 16PS either in a shelf or as a desktop unit If using AC power avoid outlets controlled by a wall switch Connecting the EDS8 16PS All EDS serial ports support RS 232 devices Connect the EDS8 16PS to one or more serial devices 1 Power off the serial devices 2 Attach a CAT 5 serial cable between the EDS8 16PS and your serial device See Appendix C Lantronix Cables and Adapters for a list of cables and adapters you Can USE 3 Connect an Ethernet cable between the EDS8 16PS Ethernet port and your Ethernet network EDS User Guide 25 3 Installation of EDS8PS and EDS16PS 4 Insert the power cord into the back of the EDS8 16PS Plug the other end into an AC wall outlet 5 Power up the serial devices Figure 3 4 Example of EDS8 16PS Connections Ethernet Network Power Cord EDS User Guide Serial Cable Serial Cable oe I 26 4 Installation of EDS4100 This chapter describes how to install the EDS4100 device server See EDS4100 Overview on page 14 for connection and protocol specifications Package Contents Your EDS4100 package includes the following items One EDS4100 device
98. hown it can take upwards of Create New Keys 5 seconds for 512 bit RSA Key i 10 seconds for 768 bit RSA Key Mote User must first be created using the form above 20 seconds for a 1024 bit RSA key 5 seconds for 512 bit DSA Key Username 30 seconds for 768 bit DSA Key Key Type RSA O DEA 50 seconds tor a 1024 bit D54 key The default Remote Command is Bit Size 0512 0768 1024 Default login shell which tells the SSH Server to execute remote shell upon connection This can be changed to Current Configuration anything the SSH Server on the l remote host can execute Mo Users are currently configured for the 55H Client 2 Enter or modify the following settings EDS User Guide 97 11 Security Settings Username Enter the name that the EDS uses to connect to a SSH server Password Enter the password associated with the username Remote Enter the command that can be executed remotely Default is Command shell which tells the SSH server to execute a remote shell upon connection This command can be changed to anything the remote host can perform Private Key Enter the name of the existing private key you want to use with this SSH client user You can either enter the path and name of the key or use the Browse button to select the key Public Key Enter the path and name of the existing public key you want to use with this SSH client user or use the Browse buiton to select the key Key Type Sele
99. i Montage in ein geschlossenes Rack oder in ein Rack mit mehreren Einheiten ist unter Umstanden eine weitere Prufung erforderlich Folgende Punkte sind zu berucksichtigen 5 Die Umgebungstemperatur innerhalb des Racks kann h her sein als die Raumtemperatur Die Installation muss so durchgef hrt werden dass der fur den sicheren Betrieb erforderliche Luftstrom nicht beeintrachtigt wird In dieser Umgebung darf die maximale Temperatur von 50 nicht berschritten werden Dabei sind auch die maximalen Auslegungstemperaturen zu ber cksichtigen 6 Die Installation ist so durchzufUhren dass auch bei ungleichm Biger Lastverteilung die Stabilit t gew hrleistet bleibt Energiezufuhr Anhand der Angaben auf dem jeweiligen Typenschild ist sicherzustellen dass keine Uberlastung an der Einspeisung erfolgt die den Uberstromschutz und die Versorgungsleitungen beeintrachtigt Erdung Eine zuverlassige Schutzerdung dieser Ausrustung muss gewahrleistet sein Dies gilt besonders bei Anschluss an Mehrfachsteckdosen Installation Instructions Rack Mounting If rack mounted units are installed in a closed or multi unit rack assembly they may require further evaluation by certification agencies You must consider the following items 7 The ambient conditions within the rack may be greater than the room conditions Installation should be so that the amount of air flow required for safe operation is not compromised The maximum temperature for
100. i a ase 83 HTTP Statistics 83 Change HTTP Configuration cccccccccceeccessseeceeeeeeeseeeseeeceeeeesseeeeeeeeeeeesssaaeseeeeeees 85 HTTP Authenticaton 87 gre 1 e GE 89 Band e 90 LPD Statistics Page 90 LPD Configuration Page 91 11 Security Settings 93 EE ees 93 SSH Server Host Keys 93 SSH Server Authorized Users 95 SSH Client Known Hosts 96 SSH Client User Configuration 97 DE SUOS ne EE ES E 99 12 Maintenance and Diagnostics Settings 103 File System Confguratton 103 File System Statistics 103 File System Browser 104 Protocol Stack Configuration rrnnnnnnnvnvvnnnnnvvrrnnnnnnnnnnnnnrnnsrnvvnnnnnnnnnnnnnnnnnnnnsnnnnnnnnnee 106 TCP Settings 106 IP Setting 107 ICMP Settings 107 ARP Settings 108 PFA SUT 109 MV Pl 110 Rolle Ce 110 Hardware 110 EDS User Guide 6 Contents MIB II Statistics eee IP Sockets 117 Ring 1142 Traceroute 1413 DNS Lookup e 114 Memory e 115 Buffer Poos 445 Processes 117 Real Time GlOCK Page vene edstdde 119 ST NN 120 13 Advanced Settings 121 Su URedue UI Le 121 Email Statistics 121 Email Configuration 123 Command Line Interface Settings cccccceeeececceeeeceeeeeeeeeeeeeeeaeeeeseeeeeessaeaseeeeeees 124 Command Line Interface Statistics 124 CLI Configuration 125 MEN 126 XML Export Configuration 126 XML Export Status 129 XML Import System Configuration Page 130 Import a system configuration 130 14 Tunneling 136 enee Oe e EEE 136 Accep
101. identity of website servers which need to have certificates signed by VeriSign or another public CA Since obtaining a certificate signed by a CA that is managed by another company can be expensive it is possible to become your own CA Tools exist to generate self signed CA certificates or to sign other certificates A certificate before it is signed is known as a Certificate request which only contains the identifying information Signing it makes it a certificate EDS User Guide 145 15 Security in Detail A certificate is also used to sign any message transmitted to the peer to identify the originator and prevent tampering while transported In short When using HTTPS SSL Tunneling in Accept mode and or EAP TLS the EDS needs a personal certificate with matching private key to identify itself and sign its messages When using SSL Tunneling in Connect mode and or EAP TLS EAP TTLS or PEAP the EDS needs the authority certificate s that can authenticate those it wishes to communicate with RSA or DSA As mentioned above the certificates contain a public key Different key exchange methods require different public keys and thus different styles of certificate The EDS supports key exchange methods that require a RSA style certificate and key exchange methods that require a DSA style certificate If only one of these certificates is stored in the EDS only those key exchange methods that can work with that style cer
102. iguration HTTP Status HTTP Port HTTPS Port HTTPS Protocols Max Timeout Max Bytes Logging Max Log Entries Log Format Logs On running 80 443 Sola TL51 0 TLS1 1 10 seconds 40960 On SU Soh t Yor Sos B Refereri SofUserAgent 50 entries r307 bytes View Clear 2 Enter or modify the following settings HTTP Server Select On to enable the HTTP server Both the HTTP Port and HTTPS Port S5L can be overridden The HTTP Server will only listen on the HTTPS Port when an SSL Certificate is cantigured for the device and at least one SSL protocol version is enabled in HTTPS Protocols The Max Timeout value specifies the maximum amount of time to valt for a request from a client The Max Bytes value specifies the maximum number of bytes allowed in client request Both of these value are used to help prevent Denial of Service DoS attacks against the HTTP Server The HTTP Log is scrolling log in that only the last Max Log Entries lines are cached and viewable Log Format Directives remote IP address could SE bea proxy bytes sent excluding nee headers bytes sent excluding headers Uz remote host Same as Zei header contents trom request ih header string wE K l request method ephemeral local port value used for request query string prepend vith d op empty 1 timestamp HH Mt SS same as Apache Sol SoH Fol SoS it or im e
103. igure SSH the SSH client username must be configured In Connect Mode the EDS is the SSH client Ensure the EDS SSH client username is configured on the remote SSH server before using it with the EDS Connect Mode has six states Disabled no connection Enabled always makes a connection Active if it sees any character from the serial port Active if it sees a specific configurable character from the serial port Modem control signal Modem emulation For the any character or specific character connection states the EDS waits and retries the connection if the connection cannot be made Once it makes a connection and then disconnects it will not reconnect until it sees any character or the start character again depending on the configured setting Configure the Modem Control Asserted setting for DSR or DTR to start a Connect Mode connection when the signal is asserted The EDS will try to make a connection indefinitely If the connection closes it will not make another connection unless the signal is asserted again Accept Mode In Accept Mode the EDS waits for a connection from the network The configurable local port is the port the remote device connects to for this connection There is no remote port or address The default local port is 10001 for serial port 1 and 10002 for serial port 2 Accept Mode supports the following protocols SSH the EDS is the server in Accept Mode When using this
104. ill be output on the serial port at boot regardless of whether command mode is enabled or not 3 In Current Configuration clear currently stored settings as necessary 4 Click Submit EDS User Guide 56 Tunnel Settings 9 Line Tunnel Terminal and Host Settings The Tunnel pages allow you to view current statistics and configure serial settings Connect Mode Accept Mode Disconnect Mode Packing Mode start and stop characters modem emulation and AES keys View Tunnel Statistics Click Tunnel on the menu bar then pick a tunnel from the drop down list The Tunnel Statistics page appears Figure 9 4 Tunnel n Statistics Select Tunnel Statistics Serial Settings Accept Mode Connect Mode Packing Mode Modem Emulation Tunnel 1 Statistics Aggregate Counters Completed Connects Completed Accepts Disconnects Dropped Connects Dropped Accepts Octets forwarded from Serial Octets forwarded trom Network Connect Connection Time Accept Connection Time Connect DNS Address Changes Connect ONS Address Invalids Connect Counters There is no active connection Accept Counters There is no active connection EDS User Guide This page displays the current connection status and various statistics of the Tunnel Start Stop Chars Disconnect Mode AES Keys gt O days 00 00 00 O days 00 00 00 gt o 57 Accept Mode In Accept Mode the EDS listens waits for incomi
105. immediately by pressing the sie ae i e 8 Send Email button Priority O Urgent High O Normal Low Submit Current Configuration The Subject has been deleted To lt Mone gt Cer lt hone gt From lt Mone gt Reply To lt Mone gt Subject lt hone gt File lt Mone gt Overriding Domain lt hloane gt Server Port Pie Local Port Random Priority Urgent 2 Enter or modify any of the settings 3 Click Submit 4 Inthe Current Configuration table delete currently stored settings as necessary EDS User Guide 123 13 Advanced Settings To test your configuration you can send an email immediately by clicking Send Email at the top of the page Refer to the Statistics page for a log of the transaction Command Line Interface Settings The Command Line Interface pages enable you to view statistics about the CLI servers listening on the Telnet and SSH ports and to configure CLI settings Command Line Interface Statistics This shows the current connection status of the CLI servers listening on the Telnet and SSH ports When a connection is active The remote client information appears The number of bytes that have been sent and received appears A Kill link visible when a connection is active can be used to terminate the connection View command line interface statistics Click CLI on the menu bar The Command Line Interface Statistics page appears Figure 13 3 Command Line In
106. ing the Scalable vector Graphics SVG modularized XML language The graph is updated every 3 seconds and shows the CPU Load over the last 5 minutes You can view the raw SVG XML here 117 12 Maintenance and Diagnostics Settings Network gt Serial Daemon Port 6 Serial gt Network Daemon Port 6 Accept Mode Daemon Port 6 Connect Mode Daemon Port 6 Network gt Serial Daemon Port 7 Serial gt Network Daemon Port 7 Accept Mode Daemon Port 7 Connect Mode Daemon Port 7 Network gt Serial Daemon Port 8 Serial gt Network Daemon Port 8 Accept Mode Daemon Port 8 Connect Mode Daemon Port 8 SMTP Client Telnet Server Serial Command Interpreter Port 1 Serial Command Interpreter Port 2 Serial Command Interpreter Port 3 Serial Command Interpreter Port 4 Serial Command Interpreter Port 5 Serial Command Interpreter Port 6 Serial Command Interpreter Port 7 Serial Command Interpreter Port 8 Serial Command Interpreter Port 9 LPD Daemon 0 49 50 74 75 100 EI 40 ER 43 ER 45 Ei 48 49 50 51 53 ER 55 56 58 EI 60 61 CPU Load 3 second snapshots SVG plugin required to view graph Note The Adobe SVG plug in is required to view the CPU Load Graph EDS User Guide 118 12 Maintenance and Diagnostics Settings Real Time Clock Page You can view or change the current date or time configured on the EDS Figure 12 18 Real Time Clock Page Real Time Clock This page displays the current date Time
107. ional text to the connect message Command Mode The Modem Emulation Command Mode supports the standard AT command set For a list of available commands from the serial or Telnet login enter AT Use ATDT ATD and ATDP to establish a connection All of these commands simulate a modem For commands that are valid but not applicable to the EDS an OK message Is sent but the command is silently ignored The EDS attempts to make a Command Mode connection as per the IP DNS port numbers defined in Connect Mode It is possible to override the remote address as well as the remote port number By default the characters are not passed through the connection Turn on this capability using the modem echo pluses configurable Switches to Command Mode if entered from serial port during connection ATDT Establishes the TCP connection to socket lt IP gt lt port gt lt Address Info gt ATDP See ATDT lt Address Info gt ATD Like ATDT Dials default Connect Mode remote address and port ATD Sets up a TCP connection A value of 0 begins a command lt Address Info gt line interface session Switches to data mode if connection still exists Vice versa to EDS User Guide 139 sm ATS0 n 14 Tunneling Switches echo in Command Mode off 0 on 1 Disconnects the network session Shows modem information Quiet mode 0 enable results code 1 disable results code Verbose mode 0 numeric
108. iton to select the key Be sure the private key will not be compromised in transit This implies the data is uploaded over some kind of secure private network Public Enter the path and name of the existing public key you want to Key upload or use the Browse bution to select the key Key Type Select a key type to use RSA use this key with SSH1 and SSH2 protocols DSA use this key with the SSH2 protocol Create New Keys Key Type Select a key type to use for the new key RSA use this key with the SSH1 and SSH2 protocols DSA use this key with the SSH2 protocol Bit Size Select a bit length for the new key 512 768 1024 Using a larger bit size takes more time to generate the key Approximate times are 10 seconds for a 512 bit RSA Key 15 seconds for a 768 bit RSA Key 1 minute for a 1024 bit RSA key 30 seconds for a 512 bit DSA key 1 minute for a 768 bit DSA key 2 minutes for a 1024 bit DSA key Some SSH clients require RSA host keys to be at least 1024 bits long Note EDS4100 generates keys up to 1024 bits long It can work with larger keys up to 2048 bit if they are imported or otherwise created 4 Click Submit EDS User Guide 94 11 Security Settings SSH Server Authorized Users On the SSH Server page you can change SSH server settings for Authorized Users SSH Server Authorized Users are accounts on the EDS that can be used to log into the EDS using SSH For instance these accounts can be u
109. lable To clear the log click Clear EDS User Guide 122 13 Advanced Settings Email Configuration You can set up to 8 email profiles Each profile can have multiple email addresses or email address groups separated by semicolons Configure EDS email settings 1 Click Email on the menu bar and then Email n and Configuration at the top of the page The Email 1 Configuration page appears Figure 13 2 Email Configuration When configuring the Email subsystem for delivery of Email notifications at the very least the To and From fields must be configured Select Email Email 1 Statistics Configuration Send Email i He The File field is used to specify a file on the filesystem that must be Email 1 e Configuration sent with all notification Email messages This file is inserted az i i the message text not as an To attachment e The Overriding Domain i uted to l forge the sender Domain Hame in From the outgoing Email message This 3 might be necessary Tor example if Reply To this device is located behind z 4 firewal whose IP Address resolves Subject to different Domain Mame than this device For SPAM protection many File SMTP servers perform reverse See S A 1 lookups on the sender IP Address Overriding Domain to ensure the Email message is really from who it says Hie from Server Port i e For testing purposes you can send Local Port or Random a Email
110. le Syndication RSS Enterprise Grade Security Terminal Server Device Management Troubleshooting Capabilities Conig ratoN MENS rede Addresses and Port Numbers EDS User Guide Contents Hardware Address 20 IP Address 20 Port Numbers 20 Product Information Label 21 3 Installation of EDS8PS and EDS16PS 22 Package Contents sassrieriinieeniianisan iiine EENE AE ANE EEA RAEE EEOAE REEE 22 User Supplied Items 22 Identifying Hardware Components rrrennrrnnnnnnnnvonnrrrnnnnnnnnvnnnnrnnnnnnnnsrnnnnnnnnnnnnnssnnnnnnnnnn 23 Serial Ports 24 Console Port 24 Ethernet Port 24 LEDs 24 Reset Button 25 Installing the RA 25 Finding a Suitable Location 25 Connecting the EDS8 16PS 25 4 Installation of EDS4100 27 PENE 27 USEr SUPPIEA nr E 27 Identifying Hardware Components annnnnenooeannnnnnnossnnnnnnnnensnnnnrnnneonsnnnrrnreessennnneneen 28 Serial Ports 28 Ethernet Port 29 Terminal Block Connector 30 LEDs 30 Reset Button 31 Physically detresse ege eege 31 Finding a Suitable Location 31 Connecting the EDS4100 31 5 Installation of EDS8PR EDS16PR or EDS32PR 33 PENNE 33 User NN ee 33 Identifying Hardware Components annnnnenooeannnnnnensnnnnnnnnnnsnnnnrnrnnossnnnrrrreessennnnennen 34 Product Label 34 Serial Ports 34 Console Port 35 Ethernet Port 35 EDS User Guide 4 LEDs Reset Button Contents Installing the EDS8 16 32PR rrrnnnnrnrrrnnrrnnnnnnnnvennvrrnnnnnnnsrennnrrnnnnnnnssnnnnnn
111. lect On to enable the TFTP server Allow TFTP File Select whether to allow the creation of new files stored Creation on the TFTP server 3 Click Submit Syslog Configuration The Syslog page shows the current configuration status and statistics of the syslog Here you can configure the syslog destination and the severity of the events to log Note The system log is not retained through reboots Saving the system log to a server that supports remote logging services see RFC 3164 allows the administrator to save the complete system log history The default port is 514 1 Click Syslog on the menu bar The Syslog page opens to display the current configuration Figure 10 5 Syslog This page displays the current syslog configuration status and various statistics for Syslog Syslog Oni O at The Severity To Log field is used Host to specify which level of system L message should be logged to the Local Port Syslog Host This setting applies to all syslog facilities None shuts off Remote Port logging Debug enables all logging Emergency enables only Severity To Log emergency logging Intermediate levels enable logging for that and all of the more severe levels Current Syslog Configuration and Statistics Syslog Status Off not running Host lt Mone gt Local Port 514 Remote Fort 514 Severity Level Messages Sent Messages Failed EDS User Guide 82 10 Ser
112. lect the method used to start a tunnel in Accept mode Choices are Disabled do not accept an incoming connection Enabled accept an incoming connection default Any Character start waiting for an incoming connection when any character is read on the serial line Start Character start waiting for an incoming connection when the start character for the selected tunnel is read on the serial line Modem Control Asserted start waiting for an incoming connection as long as the Modem Control pin DSR is asserted on the serial line until a connection is made Modem Emulation start waiting for an incoming connection when triggered by modem emulation AT commands Connect mode must also be set to Modem Emulation Enter the port number for use as the local port The defaults are port 10001 for Tunnel n and port 10002 for Tunnel 2 Select the protocol type for use with Accept Mode The default protocol is TCP Select Enabled to flush the serial data buffer on a new connection Select On to block or not tunnel serial data transmitted to the EDS Select On to block or not tunnel network data transmitted to the EDS Enter the time in seconds the EDS waits during a silent connection before checking if the currently connected network device is still on the network If the unit then gets no response after 8 attempts it drops that connection Select whether the EDS sends an email when a connection is made Select None i
113. lled at each computer computers that were formerly hard wired by serial cabling for security purposes or to accommodate applications that only understood serial data can instead communicate over an Ethernet network or the Internet Terminal Server Device Management Remote offices can have routers PBXs servers and other networking equipment that require remote management from the corporate facility The EDS easily attaches to the serial ports on a server Private Branch Exchange PBX or other networking equipment to deliver central remote monitoring and management capability With the menu system on the EDS connections to the console ports of the attached devices as well as Ethernet hosts such as Unix servers or another EDS can easily be picked from a user defined menu This allows console ports across multiple devices to be accessed from one EDS Troubleshooting Capabilities The EDS offers a comprehensive diagnostic toolset that lets you troubleshoot problems quickly and easily Available from the Web Manager CLI and XML interfaces the diagnostic tools let you View critical hardware memory MIB II buffer pool and IP socket information Perform ping and trace route operations Conduct forward or backup DNS lookup operations View all processes currently running on the EDS including CPU utilization and total stack space available Configuration Methods After installation the EDS requires configuration
114. m are destroyed upon formatting Back up all files as necessary Upon formatting the current configuration is retained 4 To reformat the file system click Format File System Browser Browse the EDS file system 1 Click Filesystem on the menu bar and then Browse at the top of the page The File system Browser page opens and shows the current file system configuration Figure 12 2 File system Browser From here you can browse and Statistics Browse manipulate the entire filesystem Directories can be created deleted moved and renamed A directory Filesystem Browser must be empty before it can be deleted CH Files can be created deleted moved renamed uploaded via e HTTP and transfered to and from Create TFTP server Newly created files will be empty File Create Directory Upload File Browse Upload Copy File Source Destination Move Source Destination TFTP Action OGet OPut Mode O ASCII O Binary Local File Remote File Host Port 2 Click a filename to view the contents EDS User Guide 104 12 Maintenance and Diagnostics Settings 3 Click the X next to a filename to delete the file or directory You can only delete a directory if it is empty 4 Enter or modify the following settings Note Changes apply to the current directory view To make changes within other
115. m import To import all of the groups click the Select All but Networking link to import all groups To clear all the checkboxes click the Clear All link EDS User Guide 135 14 Tunneling Tunneling allows serial devices to communicate over a network without being aware of the devices which establish the network connection between them Tunneling parameters are configured as described in Tunnel Settings on page 57 or via the Command Mode Tunnel Menu see the EDS Command Reference for the full list of commands The EDS supports two tunneling connections simultaneously per serial port One of these connections is Connect Mode the other connection is Accept Mode The connections on one serial port are separate from those on another serial port Connect Mode The EDS actively makes a connection The receiving node on the network must listen for the Connect Mode s connection Connect Mode is disabled by default Accept Mode The EDS listens for a connection A node on the network initiates the connection Accept Mode is enabled by default Disconnect Mode This mode defines how an open connection stops the forwarding of data The specific parameters to stop the connection are configurable Once the EDS Disconnect Mode observes the defined event occur it will disconnect both Accept Mode and Connect Mode connections on that port When any character comes in through the serial port it gets copied to both the
116. m option to view current file diagnostics or modify files File System Statistics This page shows various statistics and current usage information of the flash file system Figure 12 1 File system Statistics Es This page displays various Statistics Browse statistics and current usage information of the flash filesystem The filesystem can be compacted Filesystem St atistic e or formatted here Make sure you know what you re doing before Filesystem Size 2 625000 Mbytes 2752512 bytes oe eee Available Space 2 621634 Mbytes 2746984 bytes 99 Clean Space 2 505232 Mbytes 2710813 bytes 98 Dirty Space 37 276 Kbytes 36171 bytes 1 File amp Dir Space Used 3 445 Kbytes 3526 bytes 0 Data Space Used 3 030 Kbytes 3103 bytes Number of Files Number of Dirs Number of System Files Opened Files Locked Files Opened for Sharing Current Bank FW Sectors 21 10 erase cycles Bank A Sectors 42 6 erase cycles Bank B Sectors 63 5 erase cycles Busy Actions Compact Format EDS User Guide 103 12 Maintenance and Diagnostics Settings To view file system statistics compact or format the EDS file system 1 Back up all files as necessary 2 Click Filesystem on the menu bar The File system page opens and shows the current file system statistics and usage 3 To compact the files click Compact CAUTION In the next step all files and configuration settings on the file syste
117. must begin with to refer to the file system Realm Enter the domain or realm used for HTTP Required with the URI field Auth Type Select the authentication type None no authentication is necessary Basic encodes passwords using Base64 Digest encodes passwords using MD5 SSL the page can only be accessed over SSL no password is required SSL Basic the page is accessible only over SSL and encodes passwords using Base64 SSL Digest the page is accessible only over SSL and encodes passwords using MD5 Username Enter the Username used to access the URI Password Enter the Password for the Username 3 Click Submit 4 Inthe Current Configuration table delete and clear the currently stored settings as necessary EDS User Guide 88 10 Services Settings RSS Settings EDS devices support RSS feeds with up to date information about configuration changes RSS feeds allow you to view new information about changes made to the EDS over the web On the RSS Settings page you can turn RSS feeds on or off On means the device will create RSS feeds and make them accessible RSS feeds may be viewed online or saved to the file system cfg_log txt file Tip To view the EDS RSS feed from your browser enter the IP address of the device You will be prompted whether you want to subscribe to the device RSS feed Once you subscribe you can view the RSS feed Configure RSS settings 1 Click RSS on the menu bar The
118. n Select On to enable SSH access SSH is enabled by default Enter the SSH port to use for SSH access The default is 22 Maximum number of simultaneous SSH sessions Enter the password for Telnet access Enter the password for access to the Command Mode Enable level There is no password by default Enter a string to terminate a connect line session and resume the CLI Type lt control gt before any key the user must press when holding down the Ctrl key An example of such a string is lt control gt L The EDS allows for the configuration of units using an XML configuration file Export a current configuration for use on other EDSs or import a saved configuration file XML Export Configuration On this page you can export the current system configuration in XML format The generated XML file can be imported later to restore a configuration It can also be modified and imported to update the configuration on this EDS unit or another The XML data can be exported to the browser window or to a file on the file system By default all groups are selected except those pertaining to the network configuration This is so that if you later import the entire XML configuration it will not break your network connectivity You may select or clear the checkbox for any group EDS User Guide 126 13 Advanced Settings Export a system configuration record 1 Click XML on the menu bar then Export Configuration at the top of the page
119. n enabled Disconnect Mode runs in the background of an active connection to determine when a disconnection is required Configure the tunnel Disconnect Mode 1 Click Tunnel n and Disconnect Mode at the top of the page The Tunnel n Disconnect Mode page appears Figure 9 13 Tunnel n Disconnect Mode Select Tunnel Tunnel 1 wa Statistics Serial Settings Start Stop Chars Accept Mode Connect Mode Disconnect Mode Packing Mode Modem Emulation AES Keys Tunnel 1 Disconnect Mode Character Stop O Enabled Disabled Modem Control O Enabled Disabled Timeout 1 milliseconds Flush Serial Data O Enabled Disabled 2 Enter or modify the following settings These settings relate to Disconnecting Tunnel Character Stop enables disconnect when the Stop Character configured on the Start Stop Chars page Is read on the Serial Line Modem Control enables disconnect when the Modem Control pin is not asserted on the Serial Line Timeout enables disconnect after the tunnel is idle for specified number of miliseconds The value of zero disables the idle timeout Flush Serial Data enabled vill flush the Serial Line when the Tunnel is disconnected Character Stop Select Enabled to disconnect upon receiving the stop character See Start and Stop Characters on page 69 for instructions on configuring the stop character Modem Control Select Enabled to disconnect when the modem control
120. n regarding Certificates and how to obtain them see Obtaining a Certificate and Private Key on page 146 Configure the EDS SSL settings 1 Click SSL from the main menu The SSL page appears Figure 11 5 SSL SSL Upload Certificate Upload Authority Certificate Create New Self Signed Certificate Country 2 Letter Code State Province en Organization OE Organization Unit Common Name Expires mimddivyyy Key length O512 bit O768 bit OO 1024 bit Type ORSA ODSA Current SSL Certificates None configured Current Certificate Authorities None configured EDS User Guide An SSL Certificate must be configured in order for the HTTP Server to listen on the HTTPS Port This certificate can be created elsewhere and uploaded to the device or automatically generated on the device A certificate generated on the device will be self signed If uploading an existing SSL Certificate take care to ensure the Private Key vill not be compromised in transitt This implies the data is uploaded over some kind of secure private network WARHING When generating a new self signed SSL Certificate using large key size can result ina YERY LONG key generation time Tests on this hardware have shown it can take upwards of 5 seconds for 512 bit RSA Key 10 seconds for 765 bit RSA Key 20 seconds for 1024 bit RSA Key 20 seconds for 512 bit DSA Key 1 minute for 768 bit D54 Key 2 minutes for
121. n the device Speed 100 Mbps Duplex Half Configuration Speed Auta OOMbps 100Mbps Duplex Auto Half Status shows the current negotiated settings Configuration shows the current range of allowed settings 3 Enter or modify the following settings Ethernet Link Speed Select the Ethernet link speed Default is Auto Ethernet Link Duplex Select duplex mode Default is Auto 4 Click Submit The changes take effect immediately EDS User Guide 51 9 Line Tunnel Terminal and Host Settings Line Settings The Line Settings pages display the status and statistics for each of the serial lines ports They also let you change the character format and Command Mode settings for the serial lines The following section describes the steps to view and configure Line settings Line Statistics This read only page shows the status and statistics for the serial line selected at the top of this page Select Line on the menu bar and a Line number on the drop down list The Line Statistics page for the selected serial line appears Figure 9 1 Line n Statistics This page displays the current status and various statistics for the V Kg Select Line Line 1 er Statistics Configuration Command Mode Line 1 Statistics Receiver Transmitter Bytes O O Breaks 0 0 Flow control Parity Errors Framing Errors Overrun Errors No Rx Buffer Errors Queued Receive Bytes Queued Transmit Bytes
122. name for a forward lookup or an IP address for a reverse lookup You can also perform a lookup for a Mail MX record by prefixing a DNS Hostname with Note A DNS server must be configured for DNS Lookup to work Use forward or reverse DNS lookup 1 Click Diagnostics on the menu bar then DNS Lookup at the top of the page The Diagnostics DNS Lookup page appears Figure 12 14 Diagnostics DNS Lookup Specity DNS Hostname for Hardware MIE IP Sockets forward lookup or an IP Address for a reverse lookup Additionally Ping Traceroute DNS Lookup you can perform a lookup for a Mail Mx record by prefixing a DMS Hostname weith a V r Memory Buffer Pools Processes Diagnostics DNS Lookup 2 Enter or modify the following field Host For reverse lookup to locate the hostname for that IP address enter an IP address For forward lookup to locate the corresponding IP address enter a hostname To look up the Mail Exchange MX record IP address enter a domain name prefixed with 3 Click Submit The results of the lookup appear in the page EDS User Guide 114 12 Maintenance and Diagnostics Settings Memory This read only page shows the total memory and available memory in bytes along with the number of fragments allocated blocks and memory status Display memory statistics for the EDS Click Diagnostics on the menu bar then Memory at the top of the page The Diagnostics Memory page appears
123. nated diphenyl ethers PBDE Product Family Name Toxic or hazardous Substances x Elements Lead Mercury Cadmium Hexavalent Polybrominated Polybrominated diphenyl Pb Hg Cd Chromium biphenyls PBB ethers PBDE Cr VI SE E UDS1100 and 2100 EE Eg EDS S a e ee GE NE EE O o EE M e o y o y o y o y o y O InteliBox 00000 XPress DR amp XPressDR 0o 0 J 0 Innen _SecureBox 1101 amp 2101 0 0 0 1 0 1 0 0 WiBox CH y o y o CHE o EE PUBox e y o y o y o y o O MatchPot 0 0 PNG Ste oo y o y o y o y o y o O GT d oo S o y o BECH d o S O O toxic or hazardous substance contained in all of the homogeneous materials for this part is below the limit requirement in SJ T11363 2006 X toxic or hazardous substance contained in at least one of the homogeneous materials used for this part is above the limit requirement in SJ T11363 2006 Lithium Battery Notice WARNING DANGER OF EXPLOSION IF BATTERY IS INCORRECTLY REPLACED REPLACE ONLY WITH THE SAME OR EQUIVALENT TYPE RECOMMENDED BY THE MANUFACTURER DISCARD USED BATTERIES ACCORDING TO THE MANUFACTURER S INSTRUCTIONS ACHTUNG WIRD BEIM BATTERIEWECHSEL EINE FALSCHE BATTERIE EINGESETZT BESTEHT EXPLOSIONSGEFAHR SETZEN SIE NUR EINE BATTERIE DES GLEICHEN ODER EINES ENTSPRECHENDEN VOM HERSTELLER EMPFOHLENEN TYPS EIN ENTSORGEN SIE VERBRAUCHTE BATTERIEN GEM SS DEN ANWEISUNGEN DES HERSTELLERS EDS User Guide 157 D Compliance Installationsanweisungen Rackmontage Be
124. nd line interface CLI on the serial line Configure Line n Command Mode 1 Click Line n and Command Mode The Line n Command Mode page appears Figure 9 3 Line n Command Mode Select Line Line 1 Statistics Configuration Command Mode Line 1 Command Mode Always Mode CO Use Serial String Disabled Wait Time milliseconds Serial String Text Binary Echo Serial String Yes O No Signon Message Text Binary Submit Current Configuration Mode Disabled Inactive Wait Time 5000 milliseconds Serial String lt None gt Echo Serial String Un Signon Message lt None gt 2 Enter or modify the following settings When Command Mode is enabled the Command Line Interface CL is attachedtothe Serial Line Command Mode can be enabled in a number ot ways The Always choice immediately enables Command Mode for the Serial Line The Use Serial String choice enables Command Mode shen the Serial String is read om the Serial Line during boot time The Wait Time pecifies the amount of time to valt during boot time for the Serial String This timer Starts right after the Signon Message has been sent on the Serial Line The Serial String is string of bytes that must be reac on the Serial Line during boot time in order to enable Command Mode JK may contain time element to specify required delay in milliseconds x formed as 1x 3 The Signon Message if string
125. nect EDS User Guide of off seconds Disabled lt None gt lt kone gt Random Tep 15000 milliseconds Disabled lt hlone gt Off Off Default 45 seconds lt Mone gt lt Mone gt Tunnel in Connect Mode can be started in a number of ways Disabled never started Enabled always started Any Character started when any character is read on the Serial Line Start Character started when the Start Character is read on the Serial Line Modem Control Asserted started when the Modem Control pin Is asserted on the Serial Line Moden Emulation started via Modem Emulation command The Remote Address and Remote Port specity the remote host to connectto The Local Port lis by default random but can be overridden The Protocol used on the connection can be one of TCP UDP SSH SSL Telnet TOP w or UDP w lf security is concern ft is highly recommended that SSH be used The SSH Username specifies the SSH Client User to use Tor an outgoing SSH connection To Set up an SSH Client User go to the 55H page The Reconnect Timer specifies how long to valt before trying to reconnect to the remote host after previous attempt failed or connection was closed The Flush Serial Data boolean specifies to flush the Serial Line when connection i made For debugging purposes the Block Serial Data and Block Network Data booleans can be toggled to discard all incoming
126. nections and RS 485 multi drop connections without requiring modifications to existing software or hardware in your application Ports 1 through 4 support RS 232 devices Ports 1 and 3 also support RS 422 485 Note RS 485 circuits support 32 full load devices or 128 quarter load devices Each RS 485 port however counts as one device leaving up to 31 full load or 127 quarter load devices that can be connected to the RS 485 circuit The EDS4100 device server supports the Power over Ethernet PoE standard With PoE power is supplied to the EDS over the Ethernet cable by either an Ethernet switch or a midspan device Being able to draw power through the Ethernet cable eliminates power supply and cord clutter It also allows the EDS to be located in areas where power is not typically available EDS User Guide 14 2 Introduction Figure 2 2 EDS4100 4 Port Device Server Features The key features of the EDS4100 include Dual purpose Ethernet terminal server and device server design Four serial ports with hardware handshaking signals RS 232 and RS 422 485 One RJ45 Ethernet port IEEE 802 3af standard for Power over Ethernet PoE 8 MB Flash memory 32 MB Random Access Memory RAM Lantronix Evolution OS AES SSH or SSL secure data encryption Three configuration methods Web command line and XML 9 9 9 gt 9 FH HF 6 OH Print server functionality LPR LPD See Chapter 4 Installation of EDS
127. nel packing tunnel serial tunnel start tunnel stop xml import control XML Export Configuration Lines to Export Clear All Select All Groups to Export Clear All Select All but Networking 2 Enter or modify the following settings Export to browser Select this option to export the XCR data in the selected fields to a web browser Export to local file Select this option to export the XCR data to a file on the device If you select this option enter a file name for the XML configuration record EDS User Guide 127 EDS User Guide 13 Advanced Settings Export secrets Only use this with extreme caution If selected secret password and key information will be exported Use only with a secure link and save only in secure locations Lines to Export Select the instances you want to export in the line LPD PPP tunnel and terminal groups Groups to Export Check the configuration groups that are to be exported to the XML configuration record Click Export The groups appear if exporting the data to the browser If exporting to the file system the file is stored on the file system 128 13 Advanced Settings XML Export Status You can export the current system status in XML format to a web browser or to a file on the file system 1 Click XML on menu bar and then Export Status at the top of the page The XML Status Record Export Status page appears Figure 13 6 XML Status Recor
128. new connection for Statistics Accept Mode Packing Mode Serial Settings Start Stop Chars Connect Mode Disconnect Mode Tunnel in Connect Mode and enable a Tunnel in Accept Mode to start listening for connections The Stop Character when read Modem Emulation AES Keys on the Serial Line can be used to disconnect an active Tunnel connection Tunnel 1 Start Stop Chars Non printable start or stop Start Character Stop Character characters may be specified in ether Hexadecimal prefix weith Ox or decimal prefix with Y Optionally the Start Stop Characters can be echoed sent Echo Start Character On O or not echoed not sent on the Echo Stop Character On off Current Configuration Start Character Stop Character Echo Start Character Echo Stop Character Tunnel when read on the Serial Line lt Mone gt lt Mone gt Off Off 2 Enter or modify the following settings Start Character Stop Character Echo Start Character Echo Stop Character 3 Click Submit EDS User Guide Enter the start character in ASCII hexadecimal or decimal notation Enter the stop character in ASCII hexadecimal or decimal notation Select On to forward tunnel the start character Select On to forward tunnel the stop character 69 9 Line Tunnel Terminal and Host Settings Disconnect Mode Disconnect Mode is disabled by default Whe
129. ng connections Configure Accept Mode 1 EDS User Guide Figure 9 5 Tunnel n Accept Mode 9 Line Tunnel Terminal and Host Settings Select Tunnel Statistics Serial Settings tocept Mode Connect Mode Facking Mode Modem Emulation MES Keys Tunnel 1 Accept Mode 3 Disabled rm 4 Enabled O ny Character hoder Control Asserted 1 Start Character Q bodem Emulation Local Fort Protocol Cen Coen mo Sf SSL C Tenet CI TORAES Flush Serial Data EH Enabled E Disabled Block Serial Data on On Block Network Data on ort TCF Keep Alive Email op Connect Email op Disconnect Password Prompt for Password ao nt Submit seconds Starti Stop Chars Disconnect Mode Current Configuration Mode Local Fort Protocol Flush Serial Data Block Serial Data Block Network Data TCF Keep dives Email op Connect Email op Disconnect Password Frompt for Password Enabled Wating 10001 Tep Disabled Off Off Default 45 seconds Hore Morne Not Contigured gt Off Click Tunnel n and Accept Mode at the top of the page The Tunnel n Accept Mode page appears A Tunnel in Accept Mode can be started in number of ways Disabled never started Enabled always started Any Character started when any character is read on the Serial Line Start Character started vhen the Start Character is read on the Serial Line
130. ngs BOOTP Client Select On or Off At boot up the EDS will attempt to obtain an IP address from a BOOTP server Notes Overrides the configured IP address network mask gateway hostname and domain When DHCP is On the system automatically uses DHCP regardless of whether BOOTP Client is On EDS User Guide 49 EDS User Guide 8 Network Settings DHCP Client IP Address Default Gateway Hostname Domain DHCP Client ID Primary DNS Secondary DNS select On or Off At boot up the EDS will attempt to lease an IP address from a DHCP server and maintain the lease at regular intervals Note Overrides BOOTP the configured IP address network mask gateway hostname and domain Enter the EDS static IP address You may enter it alone in CIDR format or with an explicit mask The IP address consists of four octets separated by a period and is used if BOOTP and DHCP are both set to Off Changing this value requires you to reboot the EDS Note When DHCP is enabled the EDS tries to obtain an IP address from DHCP If it cannot the EDS uses an Auto IP address in the range of 169 254 XXX XXX Enter the IP address of the router for this network Or clear the field appears as lt None gt This address is only used for static IP address configuration Enter the EDS hostname It must begin with a letter continue with a sequence of letters numbers and or hyphens and end with a letter or number
131. ngs Username Enter the name of the user authorized to access the SSH server Password Enter the password associated with the username Public RSA Key Enter the path and name of the existing public RSA key you want to use with this user or use the Browse button to select the key If authentication is successful with the key no password is required Public DSA Key Enter the path and name of the existing public DSA key EDS User Guide 95 11 Security Settings you want to use with this user or use the Browse button to select the key If authentication is successful with the key no password is required 3 Click Submit SSH Client Known Hosts On this page you can change SSH client settings for Known hosts Note You do not have to complete the fields on this page for communication to occur However completing them adds another layer of security that protects against Man In The Middle MITM attacks Configure the SSH client for known hosts 1 Click SSH on the menu bar and then Client Known Hosts at the top of the page The SSH Client Known Hosts page appears Figure 11 3 SSH Client Known Hosts The SSH Client Known Hosts are used by all applications that play the role of an SSH Client Specitically Tunneling in Connect Mode Configuring these public keys are optional but if they exist another layer of security is offered which helps prevent Man in the Middle MITH attacks Specify ether a DNS Hostname or
132. nnect Mode 70 Modem Emulation 67 Packing Mode 60 Serial Settings 63 Start and Stop Characters 69 Tunnel 1 Statistics 57 Tunneling Accept Mode 137 Connect Mode 136 Disconnect Mode 138 Modem Emulation 139 Packing Mode 138 Serial Line Settings 140 Statistics 141 EDS User Guide Index U Updating Firmware 150 Upload Authority Certificate 100 Upload Certificate 100 W Web Manager accessing 41 navigating 44 page summary 44 Web Based Configuration 17 WLAN Settings Network 1 Ethernet Link 51 X XML Export Configuration 126 Export Status 129 Import System Configuration 130 XML 19 XML Configuration 126 XML Based Architecture 18 163
133. nnnsnnssennnnnnnnne Finding a Suitable Location Connecting the EDS8 16 32PR 6 Using Devicelnstaller Accessing an EDS using Devicelnstaller Device Details Gummam inoi ai iaai 7 Configuration Using Web Manager Accessing Web Manager through a Web Browser Web Manager Page Components rrrnrrnnnrrnnnnnnnnrrnnnrrnnnnnnnnsrnnnrrnnnnnnnnsnnnnnrnnnnnnnseennnn Navigating the Web Manager nnnannnnnnnennnnnnennnnnnnnnnnrnsnnrnrensrnrrensrnrnresnnrerensnnrrennnnne Pee PE rer 8 Network Settings Network Settings Network 1 ethO Interface Status Network 1 ethO Interface Configuration Network 1 Ethernet Link 9 Line Tunnel Terminal and Host Settings Line Settings Line Statistics Line Configuration Line Command Mode Tunnel Settings Accept Mode Packing Mode Serial Settings Connect Mode Modem Emulation Start and Stop Characters Disconnect Mode AES Keys Terminal Settings Line Terminal Configuration Network Terminal Configuration Host Configuration EDS User Guide 35 36 36 36 36 38 38 39 41 41 43 44 46 47 47 47 48 51 52 52 52 52 55 57 58 60 63 64 67 69 70 71 72 72 74 Contents LOON O MINE OT 76 Preview the Login Connect Men 76 10 Services Settings 78 DNG Ne a er EER 78 SNMP getut lte WEEN 78 FP ON eelere EE 80 FP TMV 81 Syslog Coma ua vvs eee 82 HTTP Configuration seisseen nnie enini a a aaa ia
134. nown Hosts used by all applications that play the role of an SSH Server Specifically SSH Server Authorized Users SSH Client Users the Command Line Interface CLIK and Tunneling in Accept Mode These keys can be created SSH Server Host Keys elsewhere and uploaded to the device or automatically generated Upload Keys on the device If Uploading existing keys take care Private Key Browse to ensure the Private Key will not be compromised in transit This implies Public Key Browse the data is uploaded over some kind of secure private network Key Type SEA Q RSA DSA WARNS When generating news keys using a larger Bit Size vill result in longer key generation Create New Keys time Tests on this hardware have shown H can take upwards of Key Type RSA ODSA 5 seconds for a 512 bit RSA Key S 10 seconds for a 768 bit RSA Key Bit Size 0512 0768 1024 20 seconds for a 1024 bit RSA key 5 seconds for a 512 bit DSA Key 30 seconds for a 68 bit DSA Key 50 seconds for a 1024 bit DSA key Mote that some SSH Clients require RSA Host Keys to be at least 1024 Public RSA Key No RSA Key Configured oe Public DSA Key No OSA Key Configured Current Configuration 3 Enter or modify the following settings Upload Keys Private Enter the path and name of the existing private key you want to EDS User Guide 93 11 Security Settings Key upload or use the Browse bu
135. ntication URI Realm ONone O Basic Digest OSSL OS5SLBasic SSLDigest Username Password Current Configuration AuthType URI 7 Delete Realm config AuthType Digest Users admin Delete EDS User Guide The HTTP Server can be configured with many different authentication directives The authentication is hierarchical in that any URI can be given an authentication directive in order to override parent URI authentication directive The URI must begin with to refer to the filesystem The different AuthType values offer various levels of security From the least to most secure Hone no authentication necessary Basic encodes passwords using Based Digest encodes passwords using MDS SSL page can only be accessed over SSL no password SSL Basic page can only be accessed over SSL encodes passwords using Hasebd SSL Digest page can only be accessed over SSL encodes passwords using MDS Mote that SSL by tself does not require password but all data transferred to and from the HTTP Server is encrypted There is no real reason to create an authentication directive using Hone unless you vant to override parent directive that uses some other AuthType Multiple users can be configured within single authentication directive 87 10 Services Settings 2 Enter or modify the following settings URI Enter the Uniform Resource Identifier URI The URI
136. o use Email on Select whether the EDS sends an email when a Disconnect connection is closed Select None if you do not want to send an email Otherwise select the Email profile to use 3 Click Submit EDS User Guide 66 9 Line Tunnel Terminal and Host Settings Modem Emulation You can initiate a tunnel in Connect Mode using modem commands from the Serial Line The modem emulation page enables you to configure the modem emulation settings when you select Modem Emulation as the Tunnel n or Tunnel 2 Connect Mode type Configure modem emulation 1 EDS User Guide Select Tunnel n and then Modem Emulation at the top of the page The Tunnel n Modem Emulation page appears Figure 9 11 Tunnel n Modem Emulation Select Tunnel Statistics Accept Mode Packing Mode Echo Pluses Echo Commands Verbose Response Response Type Error Unknown Commands Incoming Connection Connect String Display Remote IP Serial Settings Connect Mode Modem Emulation AES Keys Tunnel 1 Modem Emulation Configuration O Enabled Disabled Enabled Disabled Enabled Disabled Text Numeric O Enabled Disabled Disabled Automatic Manual po O Enabled Disabled Start Stop Chars Disconnect Mode Status Enabled Enabled Text Disabled Disabled A Tunnel in Connect Mode can be initiated using Modem commands incoming from the Serial Line With Echo Plus
137. of bytes that Is sent on the Serial Line during boot time Binary form i one or more byte values seperated by commas Each byte value may be decimal or Hexadecimal Start Hexadecimal values vith Ox Mode Select the method of enabling Command Mode or choose to disable Command Mode Always immediately enables Command Mode for the serial line Use Serial String enables Command Mode when the serial string is read on the serial line during boot time Disabled turns off Command Mode Wait Time Enter the wait time for the serial string during boot up in milliseconds Serial String Enter the serial string characters Select a string type Text string of bytes that must be read on the Serial Line during boot time to enable Command Mode It may contain a time element in x milliseconds in the format x to specify a EDS User Guide 55 9 Line Tunnel Terminal and Host Settings required delay Binary string of characters representing byte values where each hexadecimal byte value starts with Ox and each decimal byte value starts with Echo Serial Select Yes to enable echoing of the serial string at boot up String Sign on Enter the boot up sign on message Select a string type Message Text string of bytes sent on the serial line during boot time Binary one or more byte values separated by commas Each byte value may be decimal or hexadecimal Start hexadecimal values with Ox Note This string w
138. orarily stored in the DNS cache This cache is consulted first when performing forward lookups Each tem in the cache vill eventually timeout and be removed after a certain period of time or can be deleted manually There are no entries in the cache SNMP Configuration This page is used to configure the Simple Network Management Protocol SNMP agent Using this page you can configure the SNMP service to send a trap when it receives a request for information that contains an incorrect community name and does not match an accepted system name for the service Configure SNMP 1 Click SNMP on the menu bar The SNMP page opens and shows the current SNMP configuration EDS User Guide 78 10 Services Settings Figure 10 2 SNMP Configuration SNMP This page displays the current configuration of the SNMP Agent SNMP Agent Oon Off Read Community Write Community System Contact System Name System Description System Location Enable Traps Oon off Primary Trap Dest IP Secondary Trap Dest IP Current Configuration SNMP Agent Status Running Or Read Community lt Configured gt Delete Write Community lt Conrfigured gt Delete System Contact lt Mone gt System Name EDS0PS Delete System Description lt Default gt System Location lt None gt Traps Enabled On Primary Trap Dest IP lt Mone gt Secondary Trap Dest IF lt Mone gt 2 Enter o
139. ormat for the new self signed certificate Example An expiration date of May 9 2010 is entered as 05 09 2010 Select the bit size of the new self signed certificate Choices are 512 bits 768 bits 1024 bits The larger the bit size the longer it takes to generate the key Approximate times are 10 seconds for a 512 bit RSA key 15 seconds for a 768 bit RSA key 1 minute for a 1024 bit RSA key 30 seconds for a 512 bit DSA key 2 minutes for a 768 bit DSA key 6 minute for a 1024 bit DSA key Select the type of key RSA Public Key Cryptography algorithm based on large prime numbers invented by Rivest Shamir and Adleman Used for encryption and signing 101 11 Security Settings DSA Digital Signature Algorithm also based on large prime numbers but can only be used for signing Developed by the US government to avoid the patents on RSA EDS User Guide 102 12 Maintenance and Diagnostics Settings This chapter describes how you can View current file diagnostics or modify files Configure the EDS network stack protocols Specify the hosts and subnets permitted to communicate with the EDS Configure automatic discovery of the device by the Devicelnstaller utility View or change the current date or time Configure the EDS system settings And how you can use several other tools for diagnostics and statistics File System Configuration The EDS uses a flash file system to store files Use the Filesyste
140. other manufacturers EDS User Guide 155 D Compliance D Compliance The following compliances are according to ISO IEC Guide 22 and EN 45014 Manufacturer s Name amp Address Lantronix 15353 Barranca Parkway Irvine CA 92618 USA Declares that the following product Product Name and Model EDS4100 4 Port Device Server EDS16PR 16 Port Device Server and EDS32PR 32 Port Device Server EDS8PS 8 Port Device Server and EDS16PS 16 Port Device Server Conform To The Following Standards Or Other Normative Documents Radiated and conducted emissions Class B limits of EN 55022 1998 EN55024 1998 A1 2001 Direct amp Indirect ESD EN61000 4 2 1995 RF Electromagnetic Field Immunity EN61000 4 3 1996 Electrical Fast Transient Burst Immunity EN61000 4 4 1995 Surge Immunity EN61000 4 5 1995 RF Common Mode Conducted Susceptibility EN61000 4 6 1996 EDS User Guide 156 D Compliance Power Frequency Magnetic Field Immunity EN61000 4 8 1993 Voltage Dips and Interrupts EN61000 4 11 1994 Manufacturer s Contact Director of Quality Assurance Lantronix 15353 Barranca Parkway Irvine CA 92618 USA Tel 949 453 3990 Fax 949 453 3995 ROHS Notice All Lantronix products in the following families are China RoHS compliant and free of the following hazardous substances and elements Lead Pb e Mercury Hg e Polybrominated biphenyls PBB e Ge Cd e Hexavalent Chromium Cr VI e Polybromi
141. page shows current settings for a remote host and lets you change these settings Use these settings to add host destinations to the Login Connect Menu 1 Click Host on the menu and then click the desired host at the top of the page Configuration is automatically selected Host 1 is the default The Host Configuration page appears Figure 9 17 Host Configuration The text in Name will appear in the Login Connect Menu if enabled Set it blank to leave it out of the Menu Configuration If Protocol is SSH ether supply a value in SSH Username to select a g pre configured Username Host 1 Configuration Password Key in SSH Client Users or leave it blank to be prompted for Username and Name Password at connect time Protocol en The Remote Address and E Telnet O SSH Remote Port specify the remote Remote Address host to connect to Remote Part 0 2 Enter or modify the following settings Name A name for the host This name appears on the Login Connect Menu To leave a host out of the menu leave this field blank Protocol The protocol to use to connect to the host Choices are Telnet SSH Note SSH keys must be loaded or created on the SSH page for the SSH protocol to work SSH Appears if you selected SSH as the protocol Username Enter a username to select a pre configured Username Password Key configured on the SSH Client Users page Or
142. protocol the SSH server host keys and at least one SSH authorized user must be configured EDS User Guide 137 14 Tunneling SSL TCP AES encryption over TCP Telnet The EDS supports IAC codes It drops the IAC codes when Telneting and does not forward them to the serial port Accept Mode has the following states Disabled never a connection Enabled always listening for a connection Active if it receives any character from the serial port Active if it receives a specific configurable character from the serial port same start character as Connect Mode s start character Modem control signal Modem emulation Disconnect Mode Disconnect Mode ends Accept Mode and Connect Mode connections When disconnecting the EDS shuts down connections gracefully The following settings end a connection Note Packing Mode The EDS receives the stop character The timeout period has elapsed and no activity is going in or out of the EDS Both Accept Mode and Connect Mode must be idle for the time frame The EDS observes the modem control inactive setting To clear data from serial buffers on disconnect enable Flush Serial Data Packing Mode takes data from the serial port groups it together and sends it out to nodes on the network The groupings may be configured by size or by time intervals The following settings are configurable for Packing Mode EDS User Guide Disabled Timeout The data is packed
143. r Headers 64 2 2 2 Cluster Pool Total Free Used MaxUsed Buffer Headers 4 2 2 2 gt Cluster Pool 32 Size 2048 Total Free Used MaxUsed Buffer Headers 64 mm Cluster Pool Total Free Used Mantel Buffer Headers pm 32 32 32 Cluster Pool 116 Processes 12 Maintenance and Diagnostics Settings The EDS Processes page shows all the processes currently running on the system It shows the Process ID PID the percentage of total CPU cycles a process used within the last three seconds the total stack space available the maximum amount of stack space used by the process since it started and the process name Display the processes running on the EDS EDS User Guide Figure 12 17 Diagnostics Processes Hardware Ping Memory MIB II Traceroute IP Sockets DNS Lookup Buffer Pools Processes Diagnostics Processes PID CPU oO oOo ym nm Pe WwW bh 92 78 0 70 5 47 0 53 0 00 0 00 0 00 0 00 0 00 0 00 0 00 0 00 0 00 0 00 0 10 0 00 0 00 0 00 0 00 0 01 0 00 0 00 0 00 0 01 0 00 0 00 0 00 0 01 0 00 0 00 0 00 0 01 0 00 0 00 0 00 0 01 0 00 Stacks 7 44 2046 748 1504 644 2045 932 3072 368 2046 1264 4096 544 16192 77 2 2046 948 2112 2632 6144 752 2048 860 3072 Process Name Idle Task RTC Timeout Server Event Server DNS Cache EthDB event thread EthDB maintainer Ethernet Manager Snmp Agent
144. r integrating edge equipment into the enterprise network Rack mountable EDS models are available in 8 16 and 32 port configurations Desk top EDS models are available in 4 8 and 16 port configurations EDS8PS and EDS16PS Overview The EDS8PS 8 serial ports and EDS16PS 16 serial ports are compact desktop device servers that give you the ability to network enable asynchronous RS 232 serial devices They provide fully transparent RS 232 point to point connections without requiring modifications to existing software or hardware in your application Figure 2 1 EDS8PS Device Server Features Key features of the EDS8PS and EDS16PS include Dual purpose Ethernet terminal server and device server design EDS User Guide 13 2 Introduction 8 EDS8PS or 16 EDS16PS serial ports with hardware handshaking signals RS 232 support An RJ45 Ethernet port 8 MB Flash memory 32 MB random access memory RAM Lantronix Evolution OS A dedicated console port AES SSH or SSL secure data encryption 9 9 gt gt gt 6 Three convenient configuration methods Web command line and XML Print server functionality LPR LPD See Chapter 3 Installation of EDS8PS and EDS16PS for installation instructions EDS4100 Overview The EDS4100 is a compact device server that allows you to network enable asynchronous RS 232 and RS 422 485 serial devices It can deliver fully transparent RS 232 422 point to point con
145. r modify the following settings SNMP Agent Select On to enable SNMP Read Community Enter the SNMP read only community string Write Community Enter the SNMP read write community string System Contact Enter the name of the system contact System Name Enter the system name System Description Enter the system description System Location Enter the system location Enable Traps Select On to enable the transmission of the SNMP cold start trap messages This trap is generated EDS User Guide 79 10 Services Settings during system boot Primary Trap Dest IP Enter the primary SNMP trap host Secondary Trap Dest IP Enter the secondary SNMP trap host 3 Click Submit 4 Inthe Current Configuration table delete and clear currently stored settings as necessary FTP Configuration This page shows the current File Transfer Protocol FTP configuration and connection status and various statistics about the FTP server Configure FTP 1 Click FTP on the menu bar The FTP page opens to display the current configuration Figure 10 3 FTP Configuration FTP This page displays the current connection status and various statistics for the FTP Server FTP Server O on of Username Password Current FTP Configuration and Statistics FIP Status On running FIP Username admin FTF Password lt Configured gt Reset Connections Rejected 0 Connections Accepted O
146. rccntaraeaxduesiedeteusdesaticasadenebasasendetehehebewhianeds detssanbassacadtesnetabene 13 Figure 2 2 EDS4100 4 Port Device Gerver 15 Figure 2 3 EDS16PR Device Server nnensennnnenennnreosrnrnrrsrnrrreosrnrrrrsrnrrrrssrrrrrrsrnrrresrnrrreosrnrrersnnnerenne 16 Figure 2 4 Sample Hardware Address rrrrrnnnrnrrrrrnnnnrrrnrnnnnnnrnnvnnnnnnrnnnnnnnnrrnnnnnnnssnnnnnnsnsennnnnnsnsrnnnnnnsnee 20 Figure 3 1 Front View of the EUR 23 Figure 3 2 Back View of the EDS8PS a 23 Figure 3 3 RJ45 SANN vr 24 Figure 3 4 Example of EDS8 16PS Connections rrrrnrrnnnnnrnnrnnnnnnvvnrnnnnnnrnnrnnnnnrennrnnnnnsrnnrnnnnnsrnnnnnnsnee 26 Figure 4 1 Front View of the EDGATO0 28 Figure 4 2 Back View of the EDS4100 rrrannnnrnnnrnnnnnvrnnrnnnnnvrnnnnnnnnrnnnnnnnnnrnnnnnnsnssnnnnnnnnsrnnnnnnsnsrnnnnnnsnee 28 Figure 4 3 RS 232 Serial Port Pins Serial Ports 1 2341 29 Figure 4 4 RS 422 RS 485 Serial Port PINS rrrrrrnnnnnnnnrnnnnnnvvnrnnnnnnrnnnnnnnnnrnnrnnnsnsennnnnnnnsennnnnnsnsrnnnnnnsnee 29 Figure 4 5 Terminal Block Connector Pin Assignments rrrrnrrnnnnnvnnrnnnnnnrvnrnnnnnnnnnnnnnnnsrnnrnnnsnsrnnnnnnenee 30 FOUS A 6 Back Panel E RE 30 Figure 4 7 Example of EDS4100 Connections rrnrnrrnrnnnnnrrvnrnnnnnnennrnnnnnnrnnrnnnnnsrnnrnnnnnsennnnnnsnsennnnnnsnee 32 Figure 5 1 Front View of the EDS IGE PR vanidecrntcnetientsicaatioaswcticetannctiminvocientancalsvineesdininnictvnianedhintanenSeeineee s 34 Figure 5 2 Back View of t
147. re 12 4 IP Protocol E e LC 107 Figure 12 5 ICMP Protocol Hagen 107 Figure 12 6 ARP Protocol Page ENNEN 108 Figure 12 7 IP Address Filter Configuration ccccccceccceeccaseeeeeeeeeeeeeeeeeeeeeceeessaaeeeeessaeaeeeeessaeeeees 109 Figure 12 8 Query Port ConfiQuration cccccccccccceccceeseeesseeseeeceeeeceeeeeeeseeaaeesessseseceeeeeeeeeeeesessaaaaas 110 Figure 12 9 Diagnostics Hardware 111 Figure 12 10 MIB II Network Statistics rrrrnnrrernnnnnrrrnnnnrernnnnnenrnnnnrennnnnrenrnnnrennnnnnrennnnnennnnsnrnnnnnnnen 111 Fig re 12 11 IP SOCKETS E 112 Figure 12 12 PEN Pen 113 Figure 12 13 Diagnostics Tee 113 Figure 12 14 Diagnostics DNS Lookup ENEE 114 Figure 12 15 Diagnostics Memory E 115 Figure 12 16 Diagnostics Buffer Pools siccssisaicerescntiatactvndaneticedsvartsedaneiicatanastenianetiseinvessusisawdunietesierene 116 Figure 12 17 Diagnostics dee 117 Figure 12 18 Real Time Clock Page 119 Figure 12 19 System Page E 120 Figure 13 1 Email Statistics ccccscccececcecccsseeeeescceseeeeescceseneeesccsserececcessecececccecseeesscceeseeesscuseeees 122 Figure 13 2 Email Configuration EE 123 Figure 13 3 Command Line Interface Gtatteice ccccccccccecssssesseeeeeeeeeeeeeeeeeeeeeesseeeeeeeeeeeeessaaageees 124 Figure 13 4 Command Line Interface Configuration rrrrrrnrnnnnnrrrrrnnnnnrrnvrnnnnnrnnnnnnnnrrrnvnnnnnnennnnnnsnee 125 Roure 13 5 AML B Coma verre 127 Figure 13 6 XML Status Record
148. result codes 1 text result codes Command does nothing and returns OK status Accept unknown commands n value of 0 off n value of 1 on Display current and saved settings Reset settings in NVR to factory defaults Save active settings to NVR Restore active settings from NVR Restores active settings from defaults Accept incoming connection n value of 0 disable n value of 1 connect automatically n value of 2 connect with ATA command Answer incoming connection if ATSO is 2 or greater Repeat last valid command For ATDT and ATDP commands from 1 to 255 the EDS uses the configured Connect Mode remote station address and replaces the last segment with the number provided The same applies if two segments are provided For example if the configured address is 100 255 15 5 entering ATDT 16 6 results in 100 255 16 6 When using ATDT and ATDP enter 0 to switch to the Command Line Interface CLI Once the CLI is exited the EDS reverts to modem emulation mode Configure either the IP address using the address lt xXXx XXX XXX XXX gt or the IP address and port number lt xxx xxx Xxx xxx gt lt port gt The port number cannot be entered on its own You may specify a hostname instead of an IP address Serial Line Settings Serial line settings are configurable for both serial Line n and serial line 2 Configure the buffer size to change the maximum amount of data the serial port
149. rity possible This data center grade protection ensures that each device on the M2M network carries the same level of security as traditional IT networking equipment in the corporate data center By protecting the privacy of serial data transmitted across public networks users can maintain their existing investment in serial technology while taking advantage of the highest data protection levels possible SSH and SSL can Verify the data received came from the proper source Validate that the data transferred from the source over the network has not changed when it arrives at its destination shared secret and hashing Encrypt data to protect it from prying eyes and nefarious individuals Provide the ability to run popular M2M protocols over a secure SSH or SSL connection In addition to keeping data safe and accessible the EDS has robust defenses to hostile Internet attacks such as denial of service DOS which can be used to take down the network Moreover the EDS cannot be used to bring down other devices on the network You can use the EDS with the Lantronix Secure Com Port Redirector SCPR to encrypt COM port based communications between PCs and virtually any electronic EDS User Guide 18 2 Introduction device SCPR is a Windows application that creates a secure communications path over a network between the computer and serial based devices that are traditionally controlled via a COM port With SCPR insta
150. rrent CLI configuration settings Lets you perform various diagnostic procedures Shows the current configuration of the DNS subsystem and the DNS cache Shows email statistics and lets you clear the email log configure email settings and send an email Shows file system statistics and lets you browse the file system to view a file create a file or directory upload files using HTTP copy a file move a file or perform TFTP actions Shows statistics and lets you change the current configuration for the File Transfer Protocol FTP server Lets you view and change settings for a host on the network Shows HyperText Transfer Protocol HTTP statistics and lets you change the current configuration and authentication settings Lets you specify all the IP addresses and subnets that are allowed to send data to this device Shows statistics and lets you change the current configuration and Command mode settings of a serial line Shows LPD Line Printer Daemon Queue statistics and lets you configure the LPD and print a test page Shows status and lets you configure the network interface Lets you perform lower level network stack specific activities Lets you change configuration settings for the query port Lets you change current Really Simple Syndication 46 124 110 78 121 103 80 19 83 109 52 90 47 106 110 89 44 7 Configuration Using Web Manager RSS settings
151. s Oon O0f Telnet Port Telnet Max Sessions 55H Access SSH Port SSH Max Sessions Login Password Enable Level Password Quit Connect Line kbytes of Heap Memory The Login Password is used for initial login access from the Telnet port SSH port or any serial Line For the SSH server the SSH Server Authorized Users are used for initial login access SSH The Enable Level Password iz used for access to the enable level within the CL The Quit Connect Line string is used to terminate connect line session and resume the CLI Type lt control gt before any key to be pressed while holding down the Ctrl key for example lt control L Current Configuration Telnet Access Enabled Telnet Port 23 Telnet Max Sessions 3 SSH Access Enabled SSH Port ER SSH Max Sessions z Login Password lt None gt Enable Level Password lt Mone gt Quit Connect Line lt control gt LU 2 Enter or modify the following settings Telnet Access Select On to enable Telnet access Telnet is enabled by default Telnet Port Enter the Telnet port to use for Telnet access The default is 23 Telnet Max Maximum number of simultaneous Telnet sessions EDS User Guide 125 13 Advanced Settings Sessions SSH Access SSH Port SSH Max Sessions Login Password Enable Level Password Quit connect line 3 Click Submit XML Configuratio
152. sed to SSH into the CLI or open an SSH connection to a device port Every account must have a password The users public keys are optional and only necessary if public key authentication is required Using public key authentication allows a connection to be made without the password prompt Under Current Configuration User has a Delete User link and Public RSA Key and Public DSA Key have View Key and Delete Key links Configure the SSH server for authorized users 1 Click SSH on the menu bar and then Server Authorized Users at the top of the page The SSH Server Authorized Users page appears Figure 11 2 SSH Server Authorized Users The 55H Server Suthorized Users SSH Server Host Keys SSH Client Known Hosts SE play the role of an SSH Server SSH Server Authorized Users SSH Client Users Specifically the Command Line Interface CLO and Tunneling in Accept Mode SSH Server Authorized Users Eveeuliser Sccount mls haved Password Username The user s Public Keys are optional and only necessary if public key authentication is wanted pr Using public key authentication vill Public RSA Key Browse allow a connection to be made rau without the password being asked Public DSA Key Browse ou Add Edit Current Configuration Password No Authorized Users are currently configured for the SSH Server 2 Enter or modify the following setti
153. server One DB9F to DB9Fnull modem cable A CD that includes this User Guide the Command Reference Guide and the Quick Start Guide A printed Quick Start Guide Your package may also include a power supply User Supplied Items To complete your EDS4100 installation you need the following items EDS User Guide RS 232 and or RS 422 485 serial devices that require network connectivity A serial cable for each serial device One end of the cable must have a female DB9 connector for the EDS4100 serial port To connect an EDS4100 serial port to another DTE device you will need a null modem cable such as the one supplied in your EDS4100 package To connect the EDS4100 serial port to a DCE device you will need a straight through modem cable An available connection to your Ethernet network and an Ethernet cable A working power outlet if the unit will be powered from an AC outlet 2 4 Installation of EDS4100 Identifying Hardware Components The following two figures show the front and back of the EDS4100 Figure 4 1 Front View of the EDS4100 Transmit LED Transmit LED Transmit LED Transmit LED Power LED Receive LED Receive LED Receive LED Receive LED Status LED DB9 Serial Port DB9Serial Port DB9 Serial Port DB9 Serial Port Figure 4 2 Back View of the EDS4100 Speed LED Activity LED Reset Switch Terminal Block Power Connector RJ 45 Ethernet Port The bottom of the EDS4100 not
154. servers on Telnet and SSH ports Export or import an EDS configuration files Accept Mode Connect Mode Disconnect Mode Packing Mode Modem Emulation mode Serial Line Settings Tunneling Statistics Email Configuration You can view and configure email alerts from the EDS This section tells you how to configure alerts See Configure Accept Mode on page 58 and Configure Connect Mode on page 64 for how to set the triggers for the alerts Email Statistics When the EDS transmits an email the entire conversation with the SMTP server is logged and shown in the bottom portion of the EDS Statistics page This page shows statistics and usage information about the email subsystem EDS User Guide 121 13 Advanced Settings View email statistics Click Email from the main menu then choose an email profile from the drop down list e g Email 1 then click Statistics Figure 13 1 Email Statistics This page displays various Sap statistics and current usage Select Email Emaii information of the Email subsystem When transmitting an Email Statistics Configuration Send Email message the entire conversation with the SMTP server is logged and displayed here This is Scrolling Email 1 Statistics log in that only the last 100 lines are cached and viewable Sent successfully w retriesj Not sent due to excessive errors In transmission queue Log Clear Mo log data avai
155. shows a page for entering the file system and your import requirements groups lines and instances 131 Figure 13 9 XML Import from Filesystem Export Configuration Export Status Import Configuration XML Import Configuration Import Lines from single line settings on the filesystem Filename Lines to Import Clear Al Select All f 1 eu 2 bel 3 f 4 IM 5 M g w 7 M o kel 9 br network Whole Groups to Import Clear All Select All but Networking arp cli clock device email C ethernet execute exit cli fp server host http authentication uri http server icmp Cl interface ip ip filter line lod query port rss serial command mode snmp ssh client ssh command mode ssh server ssl syslog tcp telnet command mode terminal Dip server tunnel accept tunnel connect tunnel disconnect tunnel modem tunnel packing tunnel serial tunnel start tunnel stop xml import control 13 Advanced Settings This page if used for importing system configuration from an XML file Import Configuration from External file picks up all the settings from the external file Import Configuration from Filesystem picks up settings from the selected Groups Lines and Instances Import Line s from single line Settings on the Filesystem copies lines settings from an the input file containing only one Line instance to all of the selected Lines When selecting a Whole Groups to
156. stores For any active connection the EDS sends the data in the buffer EDS User Guide 140 14 Tunneling The modem control signal DTR on the Line may be continually asserted or asserted only while either an Accept Mode tunnel or a Connect Mode tunnel is connected Statistics The EDS logs statistics for tunneling The Dropped statistic shows connections ended by the remote location The Disconnects statistic shows connections ended by the EDS EDS User Guide 141 15 Security in Detail The EDS supports Secure Shell SSH and Secure Sockets Layer SSL Secure Shell SSH SSH is a network protocol for securely accessing a remote device This protocol provides a secure encrypted communication channel between two hosts over a network Two roles require configuration when the EDS acts as the SSH server and when it acts as an SSH client The SSH server is used by the CLI Command Mode and for tunneling in Accept Mode The SSH client is for tunneling in Connect Mode SSH Server Configuration You can configure the EDS as an SSH server There are two requirements SSH Host Keys or key pairs private and public keys These keys are used for the Diffie Hellman key exchange the underlying encryption protocol The EDS represents its keys in the Open SSH format Authorized Users users permitted to connect to the EDS SSH server You use the SSH Server Configuration page to satisfy both of these requirements creating
157. t If using AC power avoid outlets controlled by a wall switch Connecting the EDS8 16 32PR 1 2 EDS User Guide Power off the serial devices that will be connected to the EDS8 16 32PR Attach a CAT 5 serial cable between the EDS8 16 32PR and your serial device For a list of cables and adapters you can use with the EDS8 16 32PR see Appendix C Lantronix Cables and Adapters Connect an Ethernet cable between the EDS8 16 32PR Ethernet port and your Ethernet network Insert the power cord into the back of the EDS8 16 32PR Plug the other end into an AC wall outlet After power up the self test begins Power up the serial devices 36 EDS User Guide 5 Installation of EDS8PR EDS16PR or EDS32PR Figure 5 4 Example of EDS16PR Connections Serial Device 10 100 BASE T Ethernet Serial Cable he Power Cord 3 7 6 Using Devicelnstaller This chapter covers the steps for locating an EDS unit and viewing its properties and device details For instructions on using Devicelnstaller to configure the IP address and related settings or for more advanced features see the Device Installer online Help Accessing an EDS using Devicelnstaller Note Write down the MAC address from the product label You will need it to locate the EDS using Devicelnstaller Follow the instructions on the product CD to install and run Devicelnstaller 1 2 EDS User Guide Click Start gt All Programs gt Lantronix gt Devi
158. t e 137 PIS CORRS CT Oe NT ain doe eden gceteet eee 138 PPM 138 Modem Emulation nnaannnnnaannnnnnennnnnnnennnensrnnrressrnrrrosrnrrrnsrnrrrersrnrnrrsrnnrrrosnnrrrrsnnnerenne 139 Command Mode 139 Serial LING Settings sssrinin n aE ET Eai 140 SE 141 15 Security in Detail 142 ETEN 142 SSH Server Configuration 142 SSH Client Configuration 144 Secure Sockets Layer SSL cccccsccescccceccceessseeeeeescccessseeneeeecccccusseeseesecccceeeseseeess 144 EDS User Guide 7 Contents Cipher Suites 144 Certificates 145 Utilities iG 16 Branding the EDS 148 Web Manager Customization cccccccceceeeeeeeeeeaeeeeseeeeeeeeeeeeeeeeeeeeeeseaaaaaaesseseeeees 148 ie unner 149 17 Updating Firmware 150 Obtaining aleng VI EE 150 Loading New Firmware E 150 A Technical Support 151 B Binary to Hexadecimal Conversions 152 Converting Binary to Hexadecimal rrnrnennnrrnnnnnnnnrvnnnrrrnnnnnnnnrnnnrrnnnnnnnnssnnnnnnnnnnsnnee 152 Conversion Table 152 Scientific Calculator 153 C Lantronix Cables and Adapters 154 D Compliance 156 Lithium Battery ee 157 Installatonsanmweisungden 158 Rackmontage 158 Energiezufuhr 158 Erdung 158 Installation Instructions cccccseeeeeeceeeeeeeeeeeeeeseeeeeesaaeeesaeeeeeeseaseeessaaeeessaeeeessneeeeas 158 Rack Mounting 158 Input Supply 158 Grounding 159 E Warranty 160 Index 161 EDS User Guide 8 Contents Figures Figure 2 1 EDSSPS DEVICE SOV G0 eccscseetsnsa
159. terface Statistics This page displays the current connection status of the CLI servers listening on the Telnet and SSH ports Command Line Interface Statistics When connection is active the remote client information iz Statistics Configuration displayed as well as the number of Telnet Status bytes that have been sent and Server Status Enabled Waiting received Additionally a Kill link will be present which can be used to Local Port ER terminate the connection Last Connection locali23 lt 172 19 222 2 41770 Uptime 1 days 06 16 26 Total Bytes In g3 Total Bytes Out 972 Current Connections chonez SSH Status Server Status Enabled aiting Local Port ER Last Connection chonez Uptime 1 days 06 16 26 Total Bytes In Total Bytes Out Current Connections EDS User Guide 124 13 Advanced Settings CLI Configuration On this page you can change CLI configuration settings Configure the CLI 1 Click CLI on the menu then Configuration at the top of the page The Command Line Interface Configuration page appears Figure 13 4 Command Line Interface Configuration Both the Telnet Port and SSH Port used by the CLI servers can Statistics Configuration be overridden The Telnet Max Sessions and SSH Max Sessions specify the maximum number of Telnet and SSH sessions that vill be allowed Each Telnet or SSH session requires 27 Command Line Interface Configuration Telnet Acces
160. the equipment in this environment is 50 Consideration should be given to the maximum rated ambient conditions 8 Installation should be so that a hazardous stability condition is not achieved due to uneven loading Input Supply Check nameplate ratings to assure there is no overloading of supply circuits that have an effect on over current protection and supply wiring EDS User Guide 158 D Compliance Grounding Reliable earthing of this equipment must be maintained Particular attention should be given to supply connections when connecting to power strips rather than direct connections to the branch circuit strips EDS User Guide 159 E Warranty For details on the Lantronix warranty replacement policy go to our web site at http www lantronix com support warranty index html EDS User Guide 160 Index A Accessing MatchPort b g Pro 38 Address Ethernet 20 Hardware 20 IP 20 MAC 20 ARP Settings 108 B Bar code 21 Binary to hexadecimal conversions 152 Branding 12 148 Command Mode 149 Web Manager Customization 148 C CipherSuites 144 Command Line Interface Settings 124 Command Line Interface 17 Compliance 156 Configuration methods 19 Configuration Settings 78 Create New Self Signed Certificate 100 D default server port numbers 20 Device Control 18 Device Details Summary 39 Device Management 19 Device Status 46 diagnostic toolset 19 Diagnostics 110 Buffer Pools 115 DNS
161. the next page at the end of each print job Select Enabled to convert single newlines and carriage returns to DOS style line endings If Start of Job above is enabled enter the string to be sent to the printer at the beginning of a print job The limit is 100 characters Indicate whether the string is in text or binary format If End of Job above is enabled enter the string to send at the end of a print job The limit is 100 characters Indicate whether the string is in text or binary format To change the name of the print queue enter a new name The name cannot have white space in it and is limited to 31 characters The default is LPDQueueX for line number X 92 11 Security Settings SSH and SSL are protocols for managing the security of data transmissions over the Internet SSH Settings Secure Shell SSH is a protocol used to access a remote computer over an encrypted channel It is a protocol for managing the security of data transmission over the Internet It provides encryption authentication and message integrity services This page has four links at the top for viewing and changing SSH server host keys SSH server authorized keys SSH client known hosts and SSH client users SSH Server Host Keys Configure the SSH server host keys 1 Click SSH on the menu bar The SSH Server Host Keys page appears Figure 11 1 SSH Server Host Keys The SSH Server Host Keys are SSH Server Host Keys SSH Client K
162. tics page opens Figure 12 10 MIB II Network Statistics Here you can view the various Hardware WIFI IP Sockets SNMP served MIBs available on the l device The details for these MIBE Ping Traceroute DNS Lookup can be found in Memory Buffer Pools Processes RFC 1213 Original Mi JI definitions Kofi RFC 2011 MIB II Network Statistics Updated definitions for IP and ICMP RFC 2012 Interface Group Updated definitions for TOF Interface Table RFC 2013 IP Group Updated definitions for UDP IP Address Table RFC 2096 IP Met To Media Table Definitions for IP Forwarding IP Forward Group IP Forward Table ICMP Group TCP Group TCP Connection Table UDP Group UDP Table System Group 2 Click any of the links to open the corresponding table and statistics For more information refer to the following Requests for Comments RFCs RFC 1213 Original MIB II definitions EDS User Guide 111 RFC 2011 RFC 2012 RFC 2013 RFC 2096 IP Sockets Updated definitions for IP and ICMP 12 Maintenance and Diagnostics Settings Updated definitions for TCP Updated definitions for UDP Definitions for IP forwarding The IP Sockets page opens and shows all of the open network sockets on the EDS Display open network sockets on the EDS Click Diagnostics on the menu bar and then IP Sockets IP Sockets Protocol Rx TXO TCP Ping 0 U T T T U T Figure 12 11 IP So
163. tificate are enabled RSA is sufficient in most cases Obtaining a Certificate and Private Key You can obtain a certificate by completing a certificate request and sending it toa certificate authority that will create a certificate key combo usually for a fee Or generate your own A few utilities exist to generate self signed certificates or sign certificate requests The EDS also has the ability to generate its own self signed certificate key combo You can use XML to export the certificate in PEM format but you cannot export the key Hence the internal certificate generator can only be used for certificates that are to identify that particular EDS Certificates and private keys can be stored in several file formats Best known are PKCS12 DER and PEM Certificate and key can be in the same file or in separate files The key can be encrypted with a password or not The EDS currently only accepts separate PEM files The key needs to be unencrypted Utilities Several utilities exist to convert between the formats OpenSSL OpenSSL is a widely used open source set of SSL related command line utilities It can act as server or client It can generate or sign certificate requests It can convert from and to all kinds of formats Signing other certificate requests is also possible with OpenSSL Executables are available for Linux and Windows See www openssl org or www madboa com geek openssl for more information EDS User Guide 146
164. ts to a device using one of the adapters listed below Connects the EDS8 16 32PR Ethernet ports to an Ethernet switch hub or is used for cascading from one EDS8 16 32PR to another Connects the EDS8 16 32PR serial RJ45 RS232 ports to a device using one of the adapters listed below Allows a standard straight pinned CAT5 cable to connect the EDS8 16 32PR RJ45 serial ports to the DB25F DTE interface of 154 C Lantronix Cables and Adapters 200 2067A Adapter RJ45 to Allows a standard straight pinned CAT5 DB25F cable to connect the EDS8 16 32PR RJ45 serial ports to the DB25M DTE interface of a serial device 200 2069A Adapter RJ45 to Allows a standard straight pinned CAT5 DBOM cable to connect the EDS8 16 32PR RJ45 serial ports to the DB9F DCE interface of a serial device 200 2070A Adapter RJ45 to Allows a standard straight pinned CAT5 DB9F cable to connect the EDS8 16 32PR to the DB9M DTE interface of a PC or serial device 200 2073 Adapter RJ45 to Allows a standard straight pinned CAT5 DB25M cable to connect the EDS8 16 32PR RJ45 serial ports to the DB25F DCE interface of a serial device 200 2074 Adapter RJ45 to Allows a standard straight pinned CAT5 DB25F cable to connect the EDS8 16 32PR RJ45 serial ports to the DB25M DCE interface of a serial device ADP010104 Adapter Rolled Allows a standard straight pinned CAT5 01 RJ45 to RJ45 cable to connect the EDS8 16 32 to an RJ45 console port on products from Cisco and
165. uct Information Product Type Firmware Morsion Build Date Serial Humber Uptime Permanent Config Network Settings Interface Link MAC Address Host IPA Address Default Gateway Domain Primary DNS Secondary DNS Line Settings Line 1 Line Line 3 Line 4 Line 5 Line 6 Line T Line 8 Console Tunnel 4 Tunnel 2 Tunnel 3 Tunnel 4 Tunnel J Tunnel G Tunnel T Tunnel H R5232 R5232 R5232 R5232 R5232 R5232 Connect Mode Disabled Disabled Disabled Disabled Disabled Disabled LANTRONIX EVOLUTION OS Lantronix EDSEPS 1 0 0 0R3 Oct 30 2008 16 06 12 EDS16P5 protol D days 04 26 48 Saved ethO Auto 1 10 00 Mbps Auto HalfFull 100 Mbps Hal 00 20 4a ba bb be 17203 101 fof 255 255 0 0 DHCP 172 19 0 1 DHCP eng lantronix com DACP 172 19 1 1 DHCP 172 19 1 2 DACP R5232 9600 9600 R5232 9600 25232 9600 R5232 9600 9600 9600 9600 I 9600 I None Nope None Horne None Horne None None None Alone None Mone None None None None om om Oo Oo mo oO oO am None one Accept Mode Waiting Waiting Waiting Waiting Waiting Waiting Waiting Waiting Disabled Disabled Copyright Lantronix Inc 2007 2008 All rights reserved 42 Web Manager Page Components 7 Configuration Using Web Manager
166. uffer Pools Processes Geer specifies how long to valt for response for each ping packet sent Diagnostics Ping Host Count 3 Timeout 5 seconds 2 Enter or modify the following settings Host Enter the IP address or host name to ping Count Enter the number of ping packets to send to the Host The default is 3 Timeout Enter the time in seconds to wait for a response from the host before timing out The default is 5 seconds 3 Click Submit The results of the ping appear in the page Traceroute You can trace a packet from the EDS to an Internet host showing how many hops the packet requires to reach the host and how long each hop takes If you visit a web site whose pages appear slowly you can use traceroute to determine where the longest delays are occurring Use Traceroute from the EDS 1 Click Diagnostics on the menu bar then Traceroute at the top of the page The Traceroute page appears Figure 12 13 Diagnostics Traceroute Specify ether a DNS Hostname or Hardware MIB II IP Sockets IP Address when performing a traceroute to a netvork host Ping Traceroute DNS Lookup Memory Buffer Pools Processes Diagnostics Traceroute Host EDS User Guide 113 12 Maintenance and Diagnostics Settings 2 Enter or modify the IP address or DNS hostname 3 Click Submit The results of the traceroute appear in the page DNS Lookup You can specify a DNS Host
167. uide 105 12 Maintenance and Diagnostics Settings Port Enter the number of the port involved in TFTP operations Click Transfer to perform the TFTP transfer Protocol Stack Configuration Configure the EDS network stack protocols 1 Click Protocol Stack on the menu bar The Protocol page appears with links to the TCP IP ICMP and ARP protocols 2 Click on one of the protocol names to see the details of the settings for that protocol TCP Settings Figure 12 3 TCP Protocol Page This page contains lower level TCP Network Stack specific configuration tems TCP IP ICMP ARP The Send R amp Ts boolean is used to TCP turn on off sending of TCP RST messages The Ack Limit specifies how many packets must be received before an ACK is forced If there is large amount of data to acknowledge an ACK vill be forced before this If the sender TCP implementation waits for an ACK before sending Send RSTs Enabled Disabled Ack Limit 3 packets Send Data Standard Expedited Current Statistics Total Out RSTs Total In RSTs more data even though the window is open setting Ack Limit to 1 packet will improve performance by forcing immediate acknowledgements The Send Data selection governs when data may be sent into the network The Standard implementation waits for an ACR hefore sending packet less than the maximum length Select Expedited to send data vhenever the window allows ft
168. ver logging Sets the maximum number of HTTP server log entries Only the last Max Log Entries are cached and viewable Set the log format string for the HTTP server Follow these Log Format rules Ya remote IP address could be a proxy b bytes sent excluding headers B bytes sent excluding headers 0 h remote host same as a h i header contents from request h header string m request method p ephemeral local port value used for request q query string prepend with or empty t timestamp HH MM SS same as Apache S o YH M S t Or o T t Yu remote user could be bogus for 401 status U URL path info r first line of request same as M U q lt version gt s return status 86 10 Services Settings HTTP Authentication HTTP Authentication enables you to require usernames and passwords to access specific web pages or directories on the EDS s built in web server More than one Username per URI is permitted Click Submit and enter the next Username as necessary The URI realm username and password are user specified free form fields The URI must match the directory created on the EDS file system Configure HTTP authentication settings 1 Click HTTP on the menu bar then Authentication at the top of the page The HTTP Authentication page opens Figure 10 8 HTTP Authentication Statistics Configuration Authentication HTTP Authe
169. vert the format to OpenSSH ssh keygen i f RFC4716 file gt output file Click SSH gt SSH Server Host Keys at the top of the page The SSH Server Host Keys page appears Locate the Private Key and Public Key files using the Browse button Select the Key Type RSA or DSA RSA is more secure Click Submit Specify Authorized Users 1 EDS User Guide Click SSH gt SSH Server Authorized Users at the top of the page The SSH Server Authorized Users page appears Enter the Username and Password for authorized users If available locate the Public RSA Key or the Public DSA Key file by clicking Browse Configuring a public key results in public key authentication and bypasses password queries Click Add Edit The Authorized User is added 143 15 Security in Detail SSH Client Configuration To configure the EDS as an SSH client there is one requirement An SSH client must have been configured and exists on the remote SSH server Configure SSH client settings 1 Click SSH gt SSH Client Users at the top of the page The SSH Client Users page appears 2 Required Enter the Username and Password to authenticate with the SSH server 3 Optional Complete the SSH client user information as necessary The Private Key and Public Key automate the authentication process when configured and the user public key is known on the remote SSH server the SSH server does not require a password Or generate new k
170. vices Settings 2 Enter or modify the following settings Syslog Host Local Port Remote Port Severity to Log HTTP Configuration Select to enable or disable the syslog Enter the IP address of the remote server to which system logs are sent for storage Enter the number of the local port on the EDS from which system logs are sent Enter the number of the port on the remote server that supports logging services The default is 514 From the drop down box select the minimum level of system message the EDS should log This setting applies to all syslog facilities The drop down list is in descending order of severity e g Emergency is more severe than Alert Message logging will include all severities up to the selected level Selecting the Debug severity will log all system message Hypertext Transfer Protocol HTTP is the transport protocol for communicating hypertext documents on the Internet HTTP defines how messages are formatted and transmitted It also defines the actions web servers and browsers should take in response to different commands This page has three links at the top for viewing statistics and for viewing and changing configuration and authentication settings HTTP Statistics Note The HTTP log is a scrolling log with the last Max Log Entries cached and viewable You can change the maximum number of entries that can be viewed on the HTTP Configuration Page EDS User Guide 83 View H
Download Pdf Manuals
Related Search