Advantech ER75s User Manual Download Page 71 | Manualshive

Page: 71 / 107

background image

ER75s

Continued from previous page

Item

Description

IKE Mode

Defines mode for establishing connection (

main

or

aggressive

).

If the

aggressive

mode is selected, establishing of IPsec tunnel

will be faster, but encryption will set permanently on 3DES-MD5.

IKE Algorithm

Way of algorithm selection:

•

auto

– encryption and hash alg. are selected automatically

•

manual

– encryption and hash alg. are defined by the user

IKE Encryption

Encryption algorithm – 3DES, AES128, AES192, AES256

IKE Hash

Hash algorithm – MD5 or SHA1

IKE DH Group

Diffie-Hellman groups determine the strength of the key used in
the key exchange process. Higher group numbers are more se-
cure, but require additional time to compute the key. Group with
higher number provides more security, but requires more pro-
cessing time.

ESP Algorithm

Way of algorithm selection:

•

auto

– encryption and hash alg. are selected automatically

•

manual

– encryption and hash alg. are defined by the user

ESP Encryption

Encryption algorithm – DES, 3DES, AES128, AES192, AES256

ESP Hash

Hash algorithm – MD5 or SHA1

PFS

Ensures that derived session keys are not compromised if one of
the private keys is compromised in the future

PFS DH Group

Diffie-Hellman group number (see

IKE DH Group

)

Key Lifetime

Lifetime key data part of tunnel. The minimum value of this pa-
rameter is 60s. The maximum value is 86400 s.

IKE Lifetime

Lifetime key service part of tunnel. The minimum value of this
parameter is 60s. The maximum value is 86400 s.

Rekey Margin

Specifies how long before connection expiry should attempt
to negotiate a replacement begin. The maximum value must be
less than half the parameters IKE and Key Lifetime.

Rekey Fuzz

Specifies the maximum percentage by which should be randomly
increased to randomize re-keying intervals

DPD Delay

Defines time after which is made IPsec tunnel verification

DPD Timeout

By parameter DPD Timeout is set timeout of the answer

Continued on next page

63

«
...
69
70
71
72
73
...
»

Summary of Contents for ER75s

Page 1: ...EDGE router ER75s USER MANUAL ...

Page 2: ...ormation notice Useful tips or information of special interest GPL licence Source codes under GPL licence are available free of charge by sending an email to cellularsales advantech bb com Advantech B B SmartWorx s r o Sokolska 71 562 04 Usti nad Orlici Czech Republic Document No MAN 0033 EN revision from January 17 2019 Released in the Czech Republic i ...

Page 3: ...ontrol microcomputer 10 5 6 Description of the front and rear panel 11 5 6 1 Status indication 12 5 6 2 Power connector PWR 12 5 6 3 Antenna connector ANT 13 5 6 4 SIM card reader 13 5 6 5 ETH port 14 5 6 6 USB Port 15 5 6 7 Reset 16 6 First use 17 6 1 Connecting the router before first use 17 6 2 Start 17 6 3 Configuration 18 6 3 1 Configuration over web browser 18 6 3 2 Configuration over Telnet...

Page 4: ...figuration 44 8 10 7 PPPoE bridge mode configuration 44 8 11 Backup Routes 48 8 12 Firewall configuration 48 8 13 NAT configuration 53 8 14 OpenVPN tunnel configuration 57 8 15 IPSec tunnel configuration 62 8 16 GRE tunnels configuration 65 8 17 L2TP tunnel configuration 71 8 18 DynDNS client configuration 74 8 19 NTP client configuration 74 8 20 SNMP configuration 75 8 21 SMTP configuration 78 8 ...

Page 5: ...boot 92 9 Configuration setting over Telnet 93 10 Recommended literature 95 11 Possible problems 96 12 FAQ 97 13 Customers Support 99 13 1 Customer Support for NAM 99 13 2 Customer Support for Europe 99 13 3 Customer Support for Asia 99 iv ...

Page 6: ... DynDNS status 28 22 System log 29 23 Example program syslogd start with the parameter r 30 24 Topology of example LAN configuration 1 32 25 Example LAN configuration 1 33 26 Topology of example LAN configuration 2 34 27 Example LAN configuration 2 34 28 Topology of example LAN configuration 3 35 29 Example LAN configuration 3 35 30 Topology of example VRRP configuration 37 31 Example VRRP configu...

Page 7: ... L2TP tunnel configuration 72 55 Topology of example L2TP tunnel configuration 72 56 Example of DynDNS configuration 74 57 Example of NTP configuration 75 58 Example of SNMP configuration 76 59 Example of the MIB browser 77 60 SMTP configuration 78 61 Example of SMS configuration 1 82 62 Example of SMS configuration 2 83 63 Example of SMS configuration 3 84 64 Startup script 85 65 Example of Start...

Page 8: ...us description 27 19 Configuration of network interface 30 20 Configuration of dynamic DHCP server 31 21 Configuration of static DHCP server 31 22 VRRP configuration 36 23 Check connection 36 24 Mobile WAN connection configuration 39 25 Check connection to mobile network configuration 41 26 Data limit configuration 41 27 Default and backup APN configuration 42 28 Configuration of switching between...

Page 9: ...l configuration 71 47 Example L2TP tunel configuration 73 48 DynDNS configuration 74 49 NTP configuration 75 50 SNMP agent configuration 75 51 SMTP client configuration 78 52 Send SMS configuration 79 53 Control via SMS configuration 79 54 Control SMS 80 55 Send SMS on ethernet PORT1 configuration 80 56 List of AT commands 81 57 Automatic update configuration 87 58 Telnet commands 94 1 ...

Page 10: ...uter against dust moisture and high temperature Only routers with appropriate certification and labelling should be used in locations where flammable and explosive materials are present including gas stations chemical plants or locations in which explosives are used We remind users of the duty to observe the restrictions concerning the utilization of radio devices at such places Switch off the rou...

Page 11: ... to minimize impact on the environment This product contains high quality materials and components which can be recycled At the end of it s life this pro duct MUST NOT be mixed with other commercial waste for disposal The device contains the battery Remove the battery from the device before disposal The battery in the device needs to be disposed apart accordingly Check the terms and conditions of ...

Page 12: ...nologies IPsec OpenVPN and L2TP to ensure safe communication Web interface provides detail statistics about the wireless router activi ties signal strength detailed log etc Router supports functions DHCP NAT NAT T DynDNS NTP VRRP control by SMS and many other functions Other diagnostic functions ensuring continuous communication include automatic inspec tion of PPP connection offering an automatic...

Page 13: ...ER75s 4 Contents of package Basic delivered set of the router includes router power supply crossover UTP cable external antenna clip for the DIN rail paper start guide Figure 1 ER75s router 5 ...

Page 14: ...ion Trade name Type name Other ER75s ER 75s Router with one SIM card in plastic box Table 1 Delivery identification Figure 2 Label for ER75s 5 2 Ordering codes Router is supplied in a single version which can be ordered using this code ER75s set 6 ...

Page 15: ...ed For the most of applications with a built in router in a switch board it is possible to recognize two kinds of environments no public and industry environment of low voltage with high interference public environment of low voltage without high interference For both of these environments it is possible to mount router to a switch board the following there is no need to have examination immunity ...

Page 16: ...g conductor before mounting a router on sheet steel we recommend using an external antenna Figure 4 Space around antennas For every cables we recommend to bind the bunch according to the following picture we recommend for this use Length of the bunch combination of power supply and data cables can be max imum 1 5 m If the length of data cables exceeds 1 5 m or in the event of the cable leads towar...

Page 17: ...efore individual connectors for handling of cables Figure 6 Space in front of connectors For correct function of the router we recommend to use in the switch board earth bonding distribution frame for grounding of power supply of router data cables and antenna 9 ...

Page 18: ... kb s In the EDGE mode it is able to transmit in three Time Slots and receive in two EDGE multi slot class 10 the maximum bit rate of reception is 118 4 kb s or transmit in one Time Slot and receive in four GPRS multi slot class 12 the maximum bit rate of reception is 236 8 kb s Supports coding schemes CS1 to CS4 and MCS1 to MCS9 Attention The transmitting and receiving in timeslots depends on the...

Page 19: ...ed the following connectors Caption Connector Description PWR RJ12 Connector for the power supply adapter ETH RJ45 Connector for connection into the local computer network ANT FME Connector for main antenna USB USB B Connector for connection of the router to the PC Table 2 Description of the rear panel Figure 7 Front panel Figure 8 Rear panel 11 ...

Page 20: ...ow On SIM card is active Table 3 Status indication 5 6 2 Power connector PWR Panel socket RJ12 Pin number Signal mark Description 1 UN Positive pole of DC supply voltage 10 to 30 VDC 2 NC Signal not connected 3 NC Signal not connected 4 UN Positive pole of DC supply voltage 10 to 30 VDC 5 GND Negative pole of DC supply voltage 6 GND Negative pole of DC supply voltage Table 4 Connection of the PWR ...

Page 21: ...ader for 3 V and 1 8 V SIM cards is located on the front panel of the router To initiate the router into operation it is necessary to insert an activated SIM card with un blocked PIN in the reader The SIM cards might be of different adjusted APN Changing the SIM card on the front panel 1 Before handling of the SIM card turn off the router and disconnect it from power supply 2 Press the small yello...

Page 22: ...it Data negative pole Input Output 3 RXD Receive Data positive pole Input Output 4 5 6 RXD Receive Data negative pole Input Output 7 8 Table 5 Connection of Ethernet connector Figure 11 Ethernet connector ATTENTION Port ETH is not POE Power Over Ethernet compatible Example of the ETH router connection Figure 12 ETH Example of router connection 14 ...

Page 23: ...5 V DC supply voltage 2 USB data USB data signal negative pole Input Output 3 USB data USB data signal positive pole Input Output 4 GND Negative pole of DC supply voltage Table 6 Connection of USB connector Figure 13 USB connector Example of the USB router connection Figure 14 USB Example of router connection 15 ...

Page 24: ...able 7 Description of reset and restart router After green LED starts to blink it is possible to restore initial settings of the router by press ing button RST on front panel After pressing RST button it is restoration of default configura tion and reboot green LED will be on For pressing the RST button could be used a narrow screwdriver Figure 15 Router reset We recommend to backup your router co...

Page 25: ...r connection 6 2 Start The router is set up connecting the power supply to the router In the default setting the router starts to login automatically to the preset APN Device on the Ethernet port DHCP server will assign addresses The behavior of the router can be modified by means of the web or Telnet interface which is described in chapter 8 Configuration via web browser The power consumption dur...

Page 26: ...by the user root with initial password root A detailed description of the router settings via the Web interface can be found in chapter 8 Configuration via web browser 6 3 2 Configuration over Telnet Monitoring of status configuration and administration of the router can be performed by means of the Telnet interface After IP address entry to the Telnet interface it is possi ble to configure the ro...

Page 27: ... 30 V DC Consumption Reception Transmission 1 W 5 5 W Dimensions Plastic box 30 x 90 x 102 mm DIN rail 35 mm Weight 140 g Antenna connector FME 50 Ohm User interfaces ETH USB Ethernet 10 100 Mbit s USB 2 0 Table 8 Technical parameters of router 7 2 Technical parameters of module EDGE modul Frequency bands EGSM850 EGSM900 GSM1800 and GSM1900 Transmit power Class 4 2 W for EGSM850 Class 4 2 W for EG...

Page 28: ...ess of the router is 192 168 1 1 Configuration may be performed only by the user root with initial password root The left part of the web interface contains the menu with pages for monitoring Status Configuration Customization and Administration of the router Name and Location items displays the name and location of the router filled in the SNMP configuration see SNMP Configuration For increased s...

Page 29: ...ication of the SIM card Primary or Secondary Interface Defines the interface Flags Displays network interface flags IP Address IP address of the interface MTU Maximum packet size that the equipment is able to transmit Rx Data Total number of received bytes Rx Packets Received packets Rx Errors Erroneous received packets Rx Dropped Dropped received packets Rx Overruns Lost received packets because ...

Page 30: ...obile WAN menu item contains current information about connections to the mobile network The first part of this page Mobile Network Information displays basic information about mobile network in which the router is operated There is also information about the module which is mounted in the router Item Description Registration State of the network registration Operator Specifies the operator in who...

Page 31: ...t accounting period Table 13 Description of period Item Description Signal Min Minimal signal strength Signal Avg Average signal strength Signal Max Maximal signal strength Cells Number of switch between cells Availability Availability of ER75s via the mobile network expressed as a percentage Table 14 Mobile Network Statistics Tips for Mobile Network Statistics table Availability of connection to ...

Page 32: ... Total volume of sent data Connections Number of connection to mobile network establishment Table 15 Traffic statistics The last part Mobile Network Connection Log informs about the mobile network connec tion and problems in establishment Figure 17 Mobile WAN status 24 ...

Page 33: ...ormace Item Description HWaddr Hardware unique address of networks interface inet IP address of interface P t P IP address second ends connection Bcast Broadcast address Mask Mask of network MTU Maximum packet size that the equipment is able to transmit Metric Number of routers over which packet must go trought RX packets received packets errors number of errors dropped dropped packets overruns in...

Page 34: ...Total number of received bytes TX bytes Total number of transmitted bytes Table 17 Description of information in network status It is possible to read status of connection to mobile network from the network information If the connection to mobile network is active then it is in the system information shown as a ppp0 interface Figure 18 Network status 26 ...

Page 35: ...s the following information Item Description lease Assigned IP address starts Time of assignation of IP address ends Time of termination IP address validity hardware ethernet Hardware MAC unique address uid Unique ID client hostname Computer name Table 18 DHCP status description In the extreme case the DHCP status can display two records for one IP address That could have been caused by resetting ...

Page 36: ...tatus The result of updating DynDNS record on the server www dyndns org can be invoked by pressing the DynDNS item in the menu Figure 21 DynDNS status In detecting the status of updates DynDNS record are possible following message DynDNS client is disabled Invalid username or password Specified hostname doesn t exist Invalid hostname format Hostname exists but not under specified username No updat...

Page 37: ...nes After reaching 1000 lines create a new file for storing system log After completion of the 1000 lines in the second file the first file is deleted and creates a new one Program syslogd can be started with two options that modifies its behavior Option s followed by decimal number set maximal number of lines in one log file Option r followed by hostname or IP address enable logging to remote sys...

Page 38: ...tes at 10Mbps in the full duplex mode 10 Mbps Half Duplex The router communicates at 10Mbps in the half duplex mode Default Gateway IP address of router default gateway When entering IP address of default gateway all packets for which the record was not found in the routing table sent to this address DNS server IP address of DNS server of router Address where they are forwarded to all DNS question...

Page 39: ... be allocated to the DHCP clients Lease time Time in seconds after which the client can use IP address Table 20 Configuration of dynamic DHCP server Item Description Enable static DHCP leases If this option is checked static DHCP server is enable MAC Address MAC address of a DHCP client IP Address Assigned IP address Table 21 Configuration of static DHCP server It is important not to overlap range...

Page 40: ...ER75s Figure 24 Topology of example LAN configuration 1 32 ...

Page 41: ...th dynamic and static DHCP server The range of allocated addresses from 192 168 1 2 to 192 168 1 4 The address is allocated 10 minutes Client s with MAC address 01 23 45 67 89 ab has IP address 192 168 1 10 Client s with MAC address 01 54 68 18 ba 7e has IP address 192 168 1 11 33 ...

Page 42: ...ER75s Figure 26 Topology of example LAN configuration 2 Figure 27 Example LAN configuration 2 34 ...

Page 43: ...etwork interface with default gateway and DNS server Default gateway IP address is 192 168 1 20 DNS server IP address is 192 168 1 20 Figure 28 Topology of example LAN configuration 3 Figure 29 Example LAN configuration 3 35 ...

Page 44: ...ond part of the window The currently active router main backup will send testing messages to defined Ping IP Address at periodic time intervals Ping Interval with setting time of waiting for answer Ping Timeout The func tion check connection is used as a supplement of VRRP standard with the same final result If there are no answers from remote devices Ping IP Address for a defined number of probes...

Page 45: ...igure 31 Example VRRP configuration main router 8 10 Mobile WAN configuration The form for configuration of a connection to the mobile network can be invoked by select ing the Mobile WAN item in the main menu of the router web interface 8 10 1 Mobile WAN If the Create connection to mobile network item is selected the router automatically tries to establish connection after switching on 37 ...

Page 46: ...dress only in the case IP address was assigned of the operator Phone Number Telephone number to dial GPRS or CSD connection Router as a de fault telephone number used 99 1 Operator This item can be defined PLNM preferred carrier code Network type Automatic selection router automatically selects transmission method according to the availability of transmission technology Furthermore according to th...

Page 47: ...in a given environment Default value is 1500 B Other settings may cause incorrect transmission of data MTU Maximum Transmission Unit It s an identifier of max size of packet which is possible to transfer in a given environment Default value is 1500 B Other settings may cause incorrect transmission of data Table 24 Mobile WAN connection configuration 39 ...

Page 48: ... must be filled in only if this information is required by the op erator carrier In case of unsuccessful establishing a connection to mobile network is recommended to check the accuracy of entered data Alternatively try a different authentication method or network type 8 10 2 DNS address configuration The DNS Settings item is designed for easier configuration on the client side When this item is s...

Page 49: ... the router sends ping questions to the Ping IP Address Attention The feature of check connection to mobile network is necessary for uninter rupted operation 8 10 4 Data limit configuration Item Description Data limit With this parameter you can set the maximum expected amount of data transmitted sent and received over GPRS in one billing period month Warning Threshold Parameter Warning Threshold ...

Page 50: ... If connection to mobile network fails then this parame ter ensures switch to secondary APN of the SIM card Failure of the connection to mobile network can oc cur in two ways When I start the router when three fails to establish a connection to mobile network Or if it is checked Check the connection to mobile network and is indicated by the loss of a connection to mobile network Switch to backup S...

Page 51: ...ER75s Continued from previous page Item Description Table 28 Configuration of switching between APNs I 43 ...

Page 52: ...rst attempt to switch the primary APN shall be carried out after 60 minutes Switched to a failed second attempt made after 30 minutes Third after 50 minutes 30 20 Fourth after 70 minutes 30 20 20 8 10 6 Dial In access configuration In the bottom part of the window it is possible to define access over CSD connection by Enable Dial In Access function Access can be secured by used the Username and Pa...

Page 53: ...5s the device behind router For example from PC which is connected to ETH port router There will be allot Ip address of SIM card to PC The changes in settings will apply after pressing the Apply button 45 ...

Page 54: ...ER75s Figure 33 Mobile WAN configuration 46 ...

Page 55: ...iguration 1 he following configuration illustrates the situation in which the router switches to a backup APN after exceeding the data limits of 800 MB Warning SMS is sent upon reaching 400 MB The start of accounting period is set to the 18th day of the month Figure 35 Example of Mobile WAN configuration 2 Primary APN is switched to the offline mode after the router detects roaming The first attem...

Page 56: ... status of enabling settings for each of network interface as the case may be enabling services that set these network interfaces Names of backup routes and corresponding network interfaces in order of implicit priorities Mobile WAN pppX usbX Primary LAN eth0 Item Description Priority Priority for the type of connection Ping IP Address Destination IP address of ping queries to check the connection...

Page 57: ...allowed Action Type of action allow access is allowed deny access is denied Table 32 Filtering of incoming packets The following part of the configuration form defines the forwarding policy If Enabled filter ing of forwarded packets item is not checked packets are automatically accepted If this item is checked and incoming packet is addressed to another network interface it will go to the FORWARD ...

Page 58: ...ocol ICMP access is enabled for ICMP protocol Target Port The port number on which access to the router is allowed Action Type of action allow access is allowed deny access is denied Table 33 Forwarding filtering There is also the possibility to drop a packet whenever request for service which is not in the router comes check box named Enable filtering of locally destinated packets The packet is d...

Page 59: ...ER75s Figure 38 Firewall configuration 51 ...

Page 60: ...ed the following access from address 171 92 5 45 using any protocol from address 10 0 2 123 using TCP protocol on any ports from address 142 2 26 54 using ICMP protocol Figure 39 Topology of example firewall configuration Figure 40 Example firewall configuration 52 ...

Page 61: ...ary set more than sixteen rules for NAT rules then is possible insert into start up script following script iptables t nat A napt p tcp dport PORT _PUBLIC j DNAT to destination IPADDR PORT1 _PRIVATE Concrete IP address IPADDR and ports numbers PORT_PUBLIC and PORT_PRIVATE are filled up into square bracket The following items are used to set the routing of all incoming traffic from the PPP to the c...

Page 62: ... disabled in default configuration Enable remote Telnet access on port Choice this item and port number makes it pos sible to access over Telnet disabled in default configuration Enable remote SNMP access on port Choice this item and port number makes it pos sible to access to SNMP agent disabled in de fault configuration Masquerade outgoing packets Choice Masquerade alternative name for the NAT s...

Page 63: ...e marked choice of Send all remaining incom ing packets it default server IP address in this case is the address of the device behind the router Connected equipment behind the router must have set Default Gateway on the router Connected device replies while PING on IP address of SIM card 55 ...

Page 64: ...ER75s Example of the configuration with more connected equipment Figure 43 Topology of example NAT configuration 2 Figure 44 Example NAT configuration 2 56 ...

Page 65: ...t server fulfill oneself connection on induction IP address If it is not selected selection Send all remaining incoming packets to default server and Default server IP address then connection requests a failure 8 14 OpenVPN tunnel configuration OpenVPN tunnel configuration can be called up by option OpenVPN item in the menu OpenVPN tunnel allows protected connection of two networks LAN to the one ...

Page 66: ...f the interface of opposite tunnel side Ping Interval Defines the time interval after which sends a message to oppo site side of tunnel for checking the existence of the tunnel Ping Timeout Defines the time interval during which the router waits for a mes sage sent by the opposite side For proper verification of Open VPN tunnel Ping Timeout must be greater than Ping Interval Renegotiate Interval S...

Page 67: ...e shared Secret Authentication using pre shared secret can be used for all offered authentication mode CA Certificate Auth using CA Certificate can be used for username password and X 509 Certificate modes DH Parameters Protocol for exchange key DH parameters can be used for X 509 Certificate authentication in server mode Local Certificate This authentication certificate can be used for X 509 Cert...

Page 68: ...ER75s The changes in settings will apply after pressing the Apply button Figure 46 OpenVPN tunnel configuration 60 ...

Page 69: ...10 0 0 1 Remote Subnet 192 168 2 0 192 168 1 0 Remote Subnet Mask 255 255 255 0 255 255 255 0 Local Interface IP Address 19 16 1 0 19 16 2 0 Remote Interface IP Address 19 16 2 0 19 18 1 0 Compression LZO LZO Authenticate mode none none Table 39 Example OpenVPN configuration Examples of different options for configuration and authentication of OpenVPN can be found in the application note OpenVPN t...

Page 70: ...nels Figure 48 IPsec tunnels configuration Item Description Description Description of tunnel Remote IP Address IP address of opposite side tunnel Can be used domain main Remote ID Identification of opposite side tunnel Parameters ID contain two parts hostname and domain name Remote Subnet Address nets behind off side tunnel Remote Subnet Mask Subnet mask behind off side tunnel Local ID Identifica...

Page 71: ...ected automatically manual encryption and hash alg are defined by the user ESP Encryption Encryption algorithm DES 3DES AES128 AES192 AES256 ESP Hash Hash algorithm MD5 or SHA1 PFS Ensures that derived session keys are not compromised if one of the private keys is compromised in the future PFS DH Group Diffie Hellman group number see IKE DH Group Key Lifetime Lifetime key data part of tunnel The m...

Page 72: ...is parameter to define additional parameters of the IPsec tunnel for example secure parameters etc Table 41 OpenVPN tunnels configuration The certificates and private keys have to be in PEM format As certificate it is possible to use only certificate which has start and stop tag certificate Random time after which it will re exchange of new keys are defined Lifetime Rekey margin random value in ra...

Page 73: ...ared key test test Table 42 Example IPsec configuration Examples of different options for configuration and authentication of IPsec can be found in the application note IPsec tunnel see 4 8 16 GRE tunnels configuration GRE is an unencrypted protocol To enter the GRE tunnels configuration select the GRE menu item The GRE tunnel is used for connection of two networks to one that appears as one homog...

Page 74: ...Subnet IP address of the network behind the remote side of the tunnel Remote Subnet Mask Mask of the network behind the remote side of the tunnel Multicasts Enables disables multicast disabled multicast disabled enabled multicast enabled Pre shared Key An optional value that defines the 32 bit shared key through which the filtered data through the tunnel This key must be de fined on both routers a...

Page 75: ...unnel configuration GRE tunnel Configuration Configuration A B Remote IP Address 10 0 0 2 10 0 0 1 Remote Subnet 192 168 2 0 192 168 1 0 Remote Subnet Mask 255 255 255 0 255 255 255 0 Table 45 Example GRE tunnel configuration 67 ...

Page 76: ...ER75s Figure 49 IPsec tunnels configuration 68 ...

Page 77: ...ER75s Figure 50 Topology of example IPsec configuration Figure 51 GRE tunnels configuration Figure 52 GRE tunnel configuration 69 ...

Page 78: ...ER75s Figure 53 Topology of GRE tunnel configuration 70 ...

Page 79: ... the IP address of the server Server IP Address IP address of server Client Start IP Address Start IP address in range which is offered by server to clients Client End IP Address End IP address in range which is offered by server to clients Local IP Address IP address of the local side of the tunnel Remote IP Address IP address of the remote side of the tunnel Remote Subnet Address of the network ...

Page 80: ...ER75s Figure 54 L2TP tunnel configuration Example of the L2TP Tunnel configuration Figure 55 Topology of example L2TP tunnel configuration Configuration of the L2TP tunnel 72 ...

Page 81: ...rt IP Address 192 168 1 2 Client End IP Address 192 168 1 254 Local IP Address 192 168 1 1 Remote IP Address Remote Subnet 192 168 2 0 192 168 1 0 Remote Subnet Mask 255 255 255 0 255 255 255 0 Username username username Password password password Table 47 Example L2TP tunel configuration 73 ...

Page 82: ... left blank it uses the default server members dyndns org Table 48 DynDNS configuration Example of the DynDNS client configuration with domain conel dyndns org Figure 56 Example of DynDNS configuration 8 19 NTP client configuration NTP client Configuration can be called up by option NTP item in the menu NTP Network Time Protocol allows set the exact time to the router from the servers which provid...

Page 83: ... with set primary ntp cesnet cz and secondary tik cesnet cz NTP server and with daylight saving time Figure 57 Example of NTP configuration 8 20 SNMP configuration It is possible to configure SNMP agent sending information about the router by invoking the SNMP configuration page SNMP Simple Network Management Protocol provides status information about network elements such as routers or end comput...

Page 84: ...ing the Enable SNMP agent item It is also necessary to define a password for access to the SNMP agent Community Standardly is used public that is predefined Example of SNMP settings and readout Figure 58 Example of SNMP configuration 76 ...

Page 85: ...SNMP agent router in field Remote SNMP agent After enter the IP address is in a MIB tree part is possible show object identifier The path to objects is iso org dod internet private enterprises conel protocols The path to information about router is iso org dod internet mgmt mib 2 system 77 ...

Page 86: ...can use only the SMTP server of operator Example settings SMTP client Figure 60 SMTP configuration E mail can be send from the Startup script This command is used to email with following parameters t receiver Email address s subject m message a appendix r number of attempts to send email default set 2 attempts Commands and parameters can be entered only in lowercase Example to send email email t n...

Page 87: ...ent SMS messages This stamp has a fixed format YYYY MM DD hh mm ss Phone Number 1 Telephone numbers for sending automatically gener ated SMS Phone Number 2 Telephone numbers for sending automatically gener ated SMS Phone Number 3 Telephone numbers for sending automatically gener ated SMS Unit ID The name of the router that will be sent in an SMS Table 52 Send SMS configuration In the second part o...

Page 88: ...ot Router reboot get ip Router send answer with IP address SIM card Table 54 Control SMS By choosing Enable AT SMS protocol on TCP port and enter the TCP port it is possible to send receive an SMS on the TCP port SMS messages are sent by the help of a standard AT commands Item Description TCP Port TCP port on which will be allowed to send receive SMS messages Table 55 Send SMS on ethernet PORT1 co...

Page 89: ...s a message from SIM storage location value AT COPS Identifies the available mobile networks AT CPIN Is used to query and enter a PIN code AT CPMS Selects SMS memory storage types to be used for short message operations AT CREG Displays network registration status AT CSCA Sets the short message service centre SMSC number AT CSCS Selects the character set AT CSQ Returns the signal strength of the r...

Page 90: ...ork at the mentioned phone number comes SMS in this form Router Unit ID has established connection to mobile network IP address xxx xxx xxx xxx After disconnect to mobile network at the mentioned phone number comes SMS in this form Router Unit ID has lost connection to mobile network IP address xxx xxx xxx xxx Configuration of sending this SMS is following Figure 61 Example of SMS configuration 1 ...

Page 91: ...ER75s Example of the router configuration for controlling via SMS from every phone numbers Figure 62 Example of SMS configuration 2 83 ...

Page 92: ...ER75s Example of the router configuration for controlling via SMS from two phone numbers Figure 63 Example of SMS configuration 3 84 ...

Page 93: ...r pressing the Apply button Figure 64 Startup script Change take effect after shut down and witch on router by the help of button Reboot in web administration or by SMS message Example of Startup script When start the router stop syslogd program and start syslogd with remote logging on address 192 168 2 115 and limited to 100 entries listing Figure 65 Example of Startup script 85 ...

Page 94: ...connection In the item Down Script is defines script which begins after lost a PPP WAN connection The changes in settings will apply after pressing the Apply button Figure 66 Up Down script Example of UP Down script After establishing or lost a connection the router sends an email with information about establishing or loss a connection Figure 67 Example of Up Down script 86 ...

Page 95: ...stead of a dot Update Hour Use this item to set the hour range 1 24 in which automatic update will be performed every day If the time is not specified automatic update is performed five minutes after turning on the router and then every 24 hours In the event of a different configuration at the specified URL router downloads this configuration and restarts itself Table 57 Automatic update configura...

Page 96: ...http router cz temelin cfg Figure 68 Example of automatic update 1 The following example find if there is a new firmware or configuration each day at 1 00 in the morning There was used ER75s router with MAC address 00 11 22 33 44 55 Firmware http router cz er75s bin Configuration file http router cz 00 11 22 33 44 55 cfg Figure 69 Example of automatic update 2 88 ...

Page 97: ...ge profiles Profiles can be used for example to switch between different modes of operation of the router router has compiled a connection the router has not com piled a connection and the router creates a tunnel to the service center Change the profile can then be done using a binary input SMS or Web interface of the router Figure 70 Change profile 8 27 Change password To open the dialog box for ...

Page 98: ...service center address In some cases it is needed to set the phone number of the SMS service centre because of SMS sending This parameter can not be set when the SIM card has set phone number of the SMS service centre The phone number can be formed without international prefix xxx xxx xxx or with international prefix for example 420 xxx xxx xxx Figure 73 Set SMS service center address 8 30 Unlock ...

Page 99: ...an SMS mes sage with text Test SMS is sent to phone number 420712345678 Authorization is in the format user password coded by BASE64 In the example is used for root root 8 32 Backup configuration The router configuration is possible to save by help of the Backup Configuration menu item After clicking on this menu it is possible to check a destination directory where it will save the router configu...

Page 100: ...the Update button Figure 77 Update firmware After successful firmware updating the following statement is listed There is information about updating of the FLASH memory Upload firmware of different device can cause damage of the router During updating of the firmware permanent power supply has to be maintained 8 35 Reboot To reboot the router select the Reboot menu item and then press the Reboot b...

Page 101: ...iption cat file contain write cp copy of file date show change of system time df displaying of informations about file system dmesg displaying of kernel diagnostics messages echo string write email Email send free displaying of informations about memory gsmat sends AT commands cdmaat for routers with CDMA module gsminfo displaying of informations about signal quality gsmsms SMS send hwclock displa...

Page 102: ...directory reboot reboot rm file delete rmdir directory delete route displaying change of route table service start stop of service sleep pause on set seconds number slog displaying of system log tail displaying of file end tcpdump monitoring of network touch file create actualization of file time stamp vi text editor Table 58 Telnet commands 94 ...

Page 103: ...Worx Start guide 2 Advantech B B SmartWorx Application note Programmer guide 3 Advantech B B SmartWorx Application note OpenVPN tunnel 4 Advantech B B SmartWorx Application note IPsec tunnel 5 Advantech B B SmartWorx Application note AT commands 95 ...

Page 104: ...on when it is not possible to connect the router It is possible to solve this problem in the following steps hand by selection communication rates 10 MB s in property network cards connect router over switch start computer only after finalizing the start of the router 96 ...

Page 105: ...50 dBm and 90 dBm It is necessary to set ping which will check the connection and in the case of fail ping restart connection GPRS connection won t be established Recheck GPRS settings APN name password and IP address Try to enter PIN verification if the SIM card hasn t set PIN code In private APN it is appropriate to switch the DNS server send off Switch log system on and observe where the error ...

Page 106: ...communication doesn t function Probably it is badly set up route conditionals of connected equipment or it is bad set up GW FTP doesn t function Router doesn t support the active FTP mode supports the passive mode only L2TP or IPSec isn t establishing Verify the reason in the log system How do I get to know that EDGE is functional If download is higher than 85 6 kb s then EDGE is functioning I swi...

Page 107: ...s The SIM card must be handled carefully as with a credit card Don t bend don t scratch on this and do not expose to static electricity During cleaning of the router do not use aggressive chemicals solvents and abrasive cleaners Hereby Advantech B B SmartWorx s r o company declares that the radio equipment narrated in this user s guide is in compliance with EU Directive 2014 53 EU The full text of...

Reviews:

No comments

Related manuals for ER75s

Brand: JB Systems Pages: 24

Brand: JB Systems Pages: 61

Brand: Lab.gruppen Pages: 35

Brand: Net to Net Technologies Pages: 4

Brand: Justec Pages: 61

8677 - BladeCenter Rack-mountable - Power Supply

Brand: IBM Pages: 126

Brand: Teletronics International Pages: 57

Brand: Idis Pages: 20

UniFi LED ULED-AT

Brand: Ubiquiti Pages: 16

Brand: ZyXEL Communications Pages: 3

Brand: Goobay Pages: 20

Brand: Acces Pages: 21

Brand: Hame Pages: 37

Brand: Lanpro Pages: 3

Brand: ZyXEL Communications Pages: 4

Brand: Zapp Pages: 24

Brand: Tripp Lite Pages: 2

Brand: Tripp Lite Pages: 2

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands