manualshive.com logo in svg

Conel UR5 v2, User Manual

The Conel UR5 v2 user manual is a comprehensive guide to help you set up and operate your device with ease. Download the manual for free from our website and get all the information you need to make the most out of your product.

Share
Download
background image

 

 

 

 

 

CONFIGURATION 

57 

 

6.13.  IPSec Tunnel Configuration 

IPsec tunnel configuration can be called up by option IPsec item in the menu. IPsec 

tunnel  allows  protected  connection  of  two  networks  LAN  to  the  one  which  looks  like  one 
homogenous.  In  the  IPsec  Tunnels  Configuration  window  are  four  rows,  each  row  for  one 
configured  IPSec  tunnel.  The  column  Create  switches  on  tunnels,  other  columns  contain 
values  view  set  in  the  IPsec  Tunnel  Configuration  windows;  configuration  is  possible 
by the Edit button. 

 

In  the  IPsec  Tunnel  Configuration  windows  it  is  possible  to  define  the  tunnel  name 

(Description),  off  -  side  tunnel  IP  address  (Remote  IP  Address),  identification  of  off-side 
tunnel or domain name (Remote ID), address nets behind off - side tunnel (Remote Subnet), 
mask nets behind off - side tunnel (Remote Subnet Mask), identification of local side (Local 
ID), local subnet address (Local Subnet), local network mask (Local Subnet Mask), sharable 
key for both parties  tunnel (Pre shared Key), service life keys (Key Lifetime) and service life 
IKA  SA  (IKE  Lifetime).  Rekey  Margin  specifies  how  long  before  connection  expiry  should 
attempt  to  negotiate  a  replacement  begin.  Rekey  Fuzz  specifies  the  maximum  percentage 
by which  Rekey  Margin  should  be  randomly  increased  to  randomize  re-keying  intervals. 
Parameter  DPD  Delay  defines  time  after  which  is  made  IPsec  tunnel  verification. 
By parameter DPD Timeout is set timeout of the answer. If address translation between two 
end  points  of  the  IPsec  tunnel  is  used,  it  needs  to  allow  NAT  Traversal  (Enabled). 
If parameter  Aggressive  mode  is  enabled,  then  establishing  of  IPsec  tunnel  will  be  faster, 
but encryption  will  set  permanently  on  3DES-MD5.  Authentication  is  possible  to  set  by 
parameter Authenticate mode, at choice are following possibilities: Pre-shared key or X.509 
Certificate.  Parameter  Pre-shared  Key  set  shared  key  for  both  off-side  tunnel. 
At authentication by X.509 certificate it is necessary put in certificates CA CertificateRemote 
Certificate  and Local  Certificate  and  private  key  Local  Private  Key  and  Local  Passphrase
The certificates and private keys have to be in PEM format. As certificate it is possible to use 
only  certificate  which  has  start  and  stop  tag  certificate.  Parameters  ID  contain  two  parts: 
hostname and domain-name. Items which can be blank, are used for to exact IPsec tunnel 
identification.  By  the  help  of  parameter  Extra  Options  it  is  possible  to  define  additional 
parameters of the IPsec tunnel, for example secure parameters etc. 

The changes in settings will apply after pressing the Apply button. 

Summary of Contents for UR5 v2

Page 1: ...UMTS router UR5 v2 and UR5 v2 SL USER S GUIDE...

Page 2: ...BUSD 17 2 10 7 Connection of the Port1 Connector CNT 18 2 10 8 Connection of the ETH Connector 19 2 10 9 Connection of the Connector USB 19 2 11 Technical specification of optional PORT1 and PORT2 20...

Page 3: ...83 6 35 Reboot 83 6 36 Default settings 84 6 36 1 LAN Configuration 84 6 36 2 VRRP Configuration 85 6 36 3 Firewall Configuration 85 6 36 4 UMTS GPRS Configuration 86 6 36 5 NAT Configuration 87 6 36...

Page 4: ...possible problems which can arise in specific cases Information notice information which contains useful advice or special interest GPL licence Source codes under GPL licence are available free of ch...

Page 5: ...xtreme ambient conditions Protect the communication module against dust moisture and high temperature It is recommended that the communication module should not be used at petrol stations We remind th...

Page 6: ...means of the integration of a DHCP server it provides the user with simple installation and Internet access In addition the router is equipped with a USB 2 0 Host interface which is designed only for...

Page 7: ...onsists of three basic entities Basic network CN Core Network own core of network UMTS network UTRAN UMTS Terrestrial Radio Access Network the radio access network users part UE User Equipment entity...

Page 8: ...l Full version UR5 v2 SL Full UR 5 v2 SL Full Full version in the aluminum box Example of expansion port PORT1 Trade name Type name Power supply Expansion port RS232 XC 232 Internal power supply Expan...

Page 9: ...22 ETHERNET M BUSD or CNT separation columns are in distribution Module can be connected only as follows PORT1 RS232 RS485 422 ETHERNET M BUSD CNT PORT2 RS232 RS485 422 M BUSD The router standard desi...

Page 10: ...511 v9 0 2 EN 301 908 1 2 v3 2 1 ETSI EN 301 489 1 V1 8 1 EN 60950 1 06 ed 2 A11 09 HSDPA parameters 3GPP rel 5 standard bitrate 3 6 Mbps 384 kbps UE CAT 1 to 6 11 12 Data compress 3GPP TS25 212 UMTS...

Page 11: ...Division Duplex standard 2 9 2 Control microcomputer The core of the router is a 32 bit microprocessor with 512MB DDR2 SDRAM 128MB FLASH 1MB MRAM serial interface RS 232 and an Ethernet interface 10...

Page 12: ...for connection of the local any arrangement over RS232 RS485 422 ETHERNET M BUSD or CNT one RJ45 connector optional PORT2 for connection of the local any arrangement over RS232 RS485 422 M BUSD one S...

Page 13: ...10 2 Connection of binary input and output Panel socket WURT MRT 3pin Pin no Signal mark Description Data flow direction 1 BIN0 Binary input Input 2 GND Ground signal ground 3 OUT0 Binary output Outpu...

Page 14: ...Ready connected to 4 V through 330 Ohm Output 5 GND GROUND signal ground 6 RXD Receive Data Output 7 CD Carrier Detect Output 8 TXD Transmit Data Input Circuit example The router connection to the PC...

Page 15: ...tput 7 12 V EXT External power supply 8 12 V EXT External power supply ATTENTION Power supply is selected on the expansion port RS485 by help of a jumper 2 11 If galvanic separation is required the co...

Page 16: ...t 7 12V EXT External power supply 8 12V EXT External power supply ATTENTION Power supply is selected on the expansion port RS422 by help of a jumper 2 9 If galvanic separation is required the converte...

Page 17: ...TxRx M BUS A Input Output 7 12 V EXT External power supply 8 12 V EXT External power supply ATTENTION External supply is for converter M BUSD If galvanic separation is required the converter must have...

Page 18: ...alogue input Input The user interface CNT is for monitoring and processing of analogue and binary signals and to control settings of binary signals Available are 2 counter and 2 binary inputs or 4 bin...

Page 19: ...Input Output 7 8 ATTENTION Port ETH is not POE Power Over Ethernet compatible The ETH router connection 2 10 9 Connection of the Connector USB Panel socket USB A Pin number Signal mark Description Dat...

Page 20: ...485 RS422 External 10 30 V Internal Supply power Max 1 W Power supply Supply current Max 4 mA Operating temperature 20 55 C Environment Storage temperature 20 85 C Emission EN 55022 B Immunity ETS 300...

Page 21: ...per placement can be seen in the picture below module Expansion port RS485 RS422 from TOP layer We recommend that internal power supply is only chosen in the event that it is not possible to ensure ex...

Page 22: ...sion Off the network cable is not connected Expansion port M BUSD Expansion port M BUSD Voltage 10 30 V Power supply Supply power Max 4 W Operating temperature 30 60 C Environment Storage temperature...

Page 23: ...y inputs reed contact with J4 20mA without J4 8 A Inputs Outputs 1x output open collector 30V 100 mA Voltage resistance Permanent Others Sleeping mode Controlled LED port indicator Green LED Indicates...

Page 24: ...r is ready Permanently on starting of the router Front Red GSM Blinking communication in progress Front Yellow PPP On join PPP connection Front Yellow USR Function selected by user Front Green OUT On...

Page 25: ...tions and the SIM card must be inserted the modem is off The modem is put into operation by connection of the power supply to the modem In the default setting the modem starts to login automatically t...

Page 26: ...eed to have examination immunity or issues in connection with EMC according to EN 60439 1 ed 2 00 A1 04 For compliance of EN 60439 1 ed 2 00 A1 04 specification it is necessary to observe next assembl...

Page 27: ...the cable leads towards the switch board we recommend installing over voltage protectors surge suppressors with data cables they mustn t carry cables with reticular tension 230 V 50 Hz all signals to...

Page 28: ...EXPANSION PORT MOUNTING 28 the circuit diagram of the modem is on the following pictures...

Page 29: ...ition 1 The expansion port PORT1 position 2 is connected to connector J8 see below of the router B RB v2 motherboard position 1 from TOP side The expansion port PORT2 position 3 is connected to connec...

Page 30: ...ING 30 Parts list and description Part Description Number 1 UMTS router motherboard 1 2 Expansion port PORT1 1 3 Expansion port PORT2 1 4 Box 1 5 Front head 1 6 Spacers for expansion port PORT1 mounti...

Page 31: ...osition 1 The expansion port PORT1 position 2 is connected to connector J8 see below of the router B RB v2 motherboard position 1 from TOP side The expansion port PORT2 position 3 is connected to conn...

Page 32: ...er 1 UMTS router motherboard 1 2 Expansion port PORT1 1 3 Expansion port PORT2 1 4 Left box part 1 5 Right box part 1 6 Rear head 1 7 Front head 1 8 Bottom box part 1 9 Top box part 1 10 Spacers for e...

Page 33: ...ing the first SIM card Ensure that the modem is disconnected from the power supply Press the small yellow button next to the reader to eject the reader holder Insert the SIM card into the reader holde...

Page 34: ...des one Ethernet port one USB Host interface two SIM card readers one I O interface and one optional port Optional port Possible participation Ordering code Version without optional port UR5 v2F set V...

Page 35: ...h is available after insertion of IP address of the modem into the web browser The default IP address of the modem is 192 168 1 1 Configuration may be performed only by the user root with initial pass...

Page 36: ...ng information HWaddr hardware unique address of networks interface inet own IP address P t P IP address second ends connection Bcast broadcast address Mask mask of network MTU maximum size of packet...

Page 37: ...e time to establish PPP conection In the next part of window is show information about GSM connect in different period This and last day in period from 0 00 to 23 59 this and last week in period from...

Page 38: ...4 IPsec status Information on actual IPsec tunnel state can be called up in option IPsec in the menu Detailed information on the description shown below can be found on the following link http www fre...

Page 39: ...emon by pressing the Start button the bottom part of the window displays detailed reports from individual applications running in the modem To update the contents of the window press the Refresh butto...

Page 40: ...is possible to define the beginning IP Pool Start and end IP Pool End of the pool of IP addresses which will lease to DHCP clients By parameter Lease time is possible to define time after which the cl...

Page 41: ...CONFIGURATION 41 Example of the network interface with dynamic DHCP server 192 168 1 3 192 168 1 4 ETH 192 168 1 2 GSM GPRS 192 168 1 1...

Page 42: ...IGURATION 42 Example of the network interface with dynamic and static DHCP server 192 168 1 3 192 168 1 4 ETH 192 168 1 2 GSM GPRS 192 168 1 10 01 23 45 67 89 ab 192 168 1 11 01 54 68 18 ba 7e 192 168...

Page 43: ...CONFIGURATION 43 Example of the network interface with default gateway and DNS server 192 168 1 3 192 168 1 4 192 168 1 1 ETH 192 168 1 2 GSM GPRS 192 168 1 20...

Page 44: ...ity value equals 0 is not allowed It is possible to set Check PPP connection flag in the second part of the window The currently active router either main or backup will send testing messages to defin...

Page 45: ...IGURATION 45 Example of the VRRP protocol Main router Virtual server ID 5 Host priority 255 192 168 1 1 192 168 1 2 192 168 1 3 Backup router Virtual server ID 5 Host priority 100 ETH 10 0 1 3 APN 1 A...

Page 46: ...get an IP address of primary and secondary DNS server from the operator automatically If the Check PPP connection option is selected it has active control of connection over PPP The modem will automat...

Page 47: ...all be made for the time defined in the parameter Initial Timeout range of this parameter is from 1 to 10000 minutes In an unsuccessful attempt to switch to default SIM card the router on the second a...

Page 48: ...r There will be allot Ip address of SIM card to PC The changes in settings will apply after pressing the Apply button Attention We recommend checking the GPRS connection in case of uninterrupted runni...

Page 49: ...ote accesses by the help of Source Source IP Address Protocol and Target Port Parameter Source defines if access is allowed to one IP address which is defined by Source IP Address or every IP addresse...

Page 50: ...CONFIGURATION 50 Example of the firewall configuration 10 0 2 123 171 92 5 45 142 2 26 54 TCP 1000 ICMP ALL...

Page 51: ...dress If the Enable remote HTTP access field and port number is filled in then configuration of the router over web interface is possible Choice Enable remote FTP access on port and port number makes...

Page 52: ...have marked choice of Send all remaining incoming packets it default server IP address in this case is the address of the device behind the router Connected equipment behind the router must have set...

Page 53: ...CONFIGURATION 53 Example of the configuration with more connected equipment 162 209 13 222 192 168 1 2 80 192 168 1 3 80 192 168 1 4 80 ppp0 10 0 0 1 SWITCH 10 0 0 1 81 10 0 0 1 82 10 0 0 1 83...

Page 54: ...ion of two networks LAN to the one which looks like one homogenous In the OpenVPN Tunnels Configuration window are two rows each row for one configured OpenVPN tunnel The column Create switches on tun...

Page 55: ...ame and Password next can be X 509 Certificate client this enables authentication by CA Certificate Local Certificate and Local Private Key last possibility is X 509 Certificate server which enables a...

Page 56: ...ubnet Mask 255 255 255 0 255 255 255 0 Local Interface IP Address 19 16 1 0 19 16 2 0 Remote Interface IP Address 19 16 2 0 19 18 1 0 Compression LZO LZO Authenticate mode none none 192 168 1 4 192 16...

Page 57: ...rcentage by which Rekey Margin should be randomly increased to randomize re keying intervals Parameter DPD Delay defines time after which is made IPsec tunnel verification By parameter DPD Timeout is...

Page 58: ...CONFIGURATION 58...

Page 59: ...nels Configuration To enter the GRE tunnels configuration select the GRE menu item It is possible to configure up to four GRE tunnels In the GRE Tunnels Configuration window are four rows each row for...

Page 60: ...for connection of two networks to one that appears as one homogenous Last item Pre shared Key defines 32b number that identifies shared key of tunnel This code must be on both sides of same different...

Page 61: ...r Server IP Address start IP address in range which is offered by server to clients Client Start IP Address end IP address in range which is offered by server to clients Client End IP Address IP addre...

Page 62: ...ddress 192 168 3 254 Local IP Address 192 168 3 1 Remote IP Address Remote Subnet 192 168 2 0 192 168 1 0 Remote Subnet Mask 255 255 255 0 255 255 255 0 Username username username Password password pa...

Page 63: ...blank the default server is used The changes in settings will apply after pressing the Apply button Example of the DynDNS client configuration with domain conel dyndns org username conel password cone...

Page 64: ...essing the Apply button Example of the NTP configuration with set primary and secondary NTP server and with daylight saving time 6 18 SNMP Configuration To enter the SNMP Configuration it is possible...

Page 65: ...7295 1 3 6 1 4 1 30140 2 1 5 0 Binary input BIN1 values 0 1 1 3 6 1 4 1 30140 2 1 6 0 Binary input BIN2 values 0 1 1 3 6 1 4 1 30140 2 1 7 0 Binary input BIN3 values 0 1 1 3 6 1 4 1 30140 2 1 8 0 Bina...

Page 66: ...show object identifier The path to objects is iso org dod internet private enterprises conel protocols 6 19 SMTP Configuration To enter the SMTP it is possible configure SMTP client Item SMTP Server...

Page 67: ...S BIN3 SMS and BIN4 SMS which will be sent if those binary inputs are active It is possible to send information to three telephone numbers Unit ID is the name of the router that it will send an SMS me...

Page 68: ...alt1 Set alternative profile 1 set profile alt2 Set alternative profile 2 set profile alt3 Set alternative profile 3 reboot Router restart get ip Router send answer with IP address SIM card By choosin...

Page 69: ...CONFIGURATION 69...

Page 70: ...le operator Cell number of cell Channel used channel Level level signal After PPP connect at introduction of the telephone number comes SMS in the form UR5 Unit ID has established PPP connection IP ad...

Page 71: ...CONFIGURATION 71 Example of the router configuration for SMS sending via serial interface...

Page 72: ...CONFIGURATION 72 Example of the router configuration for controlling via SMS from every phone numbers...

Page 73: ...serial interface or Ethernet it is possible to do with SMS by the help of the next AT commands more about AT commands see reference 1 AT commands Description AT CMGF 1 Set the text mode for SMS writin...

Page 74: ...s command reproaches all SMS messages AT CMGL ALL Enter CMGL index status sender number date time SMS text CMGL 1 REC UNREAD 420721123456 08 02 02 10 33 26 04 Hello World where index is ordinal number...

Page 75: ...tion Inside the window can be defined time after which it will carry out verification of the connection Keepalive Time waiting time on answer Keepalive Interval and number of tests Keepalive Probes In...

Page 76: ...TCP client it is necessary to enter the Server address and final TCP port At Check TCP connection it activates verification of coupled TCP connection Inside the window can be defined time after which...

Page 77: ...rt 2000 ETH USB PC Equipment Settings in the router Mode TCP client Server Address 10 0 0 2 TCP Port 2000 192 168 1 100 ppp0 10 0 0 1 192 168 1 1 ppp0 10 0 0 2 Settings in application on PC TCP connec...

Page 78: ...ill be executed after all initial scripts This script is not stored or restored when using web interface backup or restores option The changes in settings will apply after pressing the Apply button Ch...

Page 79: ...n In the window Automatic update it is possible to set automatic configuration update This choice enables that the router automatically downloads the configuration and the newest firmware from the ser...

Page 80: ...ed Automatic configuration update starts 5 minutes after turning on the router and then every 24 hours or it is possible to set the time of automatic configuration in parameter Update Hour If the ente...

Page 81: ...ck item in the menu Clocks are set according to the engaged NTP server after push button operation Apply 6 29 Set SMS service center address In some cases it is needed to set the phone number of the S...

Page 82: ...on router port 80 which sends an SMS message Test to phone number 420712345678 Authorization is in the format user password coded by BASE64 example is for root root 6 32 Backup Configuration The route...

Page 83: ...5 version the router configuration is remains include IP address By actualization older firmware than 1 0 5 the IP address will be set on 192 168 1 1 and all values are in defaults state From firmwar...

Page 84: ...er green LED starts to blink it is possible to restore initial settings of the router by pressing button RST on front panel After press button RST it is restoration of the configuration and reset gree...

Page 85: ...CONFIGURATION 85 6 36 2 VRRP Configuration 6 36 3 Firewall Configuration...

Page 86: ...CONFIGURATION 86 6 36 4 UMTS GPRS Configuration...

Page 87: ...CONFIGURATION 87 6 36 5 NAT Configuration...

Page 88: ...CONFIGURATION 88 6 36 6 OpenVPN Tunnel Configuration...

Page 89: ...CONFIGURATION 89 6 36 7 IPsec Tunnel Configuration...

Page 90: ...CONFIGURATION 90 6 36 8 GRE Tunnels Configuration 6 36 9 L2TP Tunnel Configuration 6 36 10 DynDNS Configuration...

Page 91: ...CONFIGURATION 91 6 36 11 NTP Configuration 6 36 12 SNMP Configuration 6 36 13 SMTP Configuration...

Page 92: ...CONFIGURATION 92 6 36 14 SMS Configuration...

Page 93: ...CONFIGURATION 93 6 36 15 Expansion Port Configuration 6 36 16 USB Port Configuration...

Page 94: ...CONFIGURATION 94 6 36 17 Startup script 6 36 18 Up Down Script...

Page 95: ...CONFIGURATION 95 6 36 19 Automatic update...

Page 96: ...ying of kernel diagnostics messages echo string write email Email send free displaying of informations about memory gsmat AT commend send gsminfo displaying of informations about signal quality gsmsms...

Page 97: ...l power If signal power is weak you will have to use a better antenna If the environmental cells have a similar signal it will be necessary to use a directive antenna Signal levels have to be in the r...

Page 98: ...sn t establishing Verify the reason in the log system I switched the router to offline mode by the SMS message but the router is in online mode after restart Control SMS message doesn t change the rou...

Page 99: ...l electronic products are recycled using the best available recovery techniques to minimize the impact on the environment This product contains high quality materials and components which can be recyc...

Page 100: ...rtificate and the complete object of the guarantee claim The object of the guarantee claim should be submitted in a state corresponding to the state at the sale Caution The seller does not guarantee t...

Page 101: ...iability of the guarantee claim a defect of the product is detected which is not covered by the guarantee a repair not covered by the guarantee the seller shall notify of this fact the customer and th...

Page 102: ...nsidered to be a defect For the assessment whether a defect has occurred the product parameters included in the technical documentation of the product are decisive The guarantee shall be terminated in...

Page 103: ...GUARANTEE CERTIFICATE 103 14 Guarantee certificate Type of the device Serial number Guarantee period in months Seller Date of sale Stamp of the seller...

Page 104: ...the guarantee claim report Date of reception of the device into the repair shop Date of completion of the repair by the repair shop Number of the receipt form of the repair shop Guarantee repair YES N...

Reviews:

No comments

Related manuals for UR5 v2

DCE ANS-205 User Manual preview
ANS-205
Brand: DCE Pages: 5
red lion Yaskawa 2000 Information Sheet preview
Yaskawa 2000
Brand: red lion Pages: 5
ZyXEL Communications G-170S User Manual preview
G-170S
Brand: ZyXEL Communications Pages: 79
Patton electronics FORESIGHT 6300 User Manual preview
FORESIGHT 6300
Brand: Patton electronics Pages: 145
Maipu SM3100-9TC-AC Install Manual preview
SM3100-9TC-AC
Brand: Maipu Pages: 26
DHD Power Cruiser 52/XR Manual preview
52/XR
Brand: DHD Power Cruiser Pages: 60
Atlantis Land Edge-Core A07-ES4548C Specification Sheet preview
Edge-Core A07-ES4548C
Brand: Atlantis Land Pages: 2
Lanpro LP-SW811 User Manual preview
LP-SW811
Brand: Lanpro Pages: 6
Tenda W268R User Manual preview
W268R
Brand: Tenda Pages: 74
Dell 100T TR5 Compatibility Matrix preview
100T TR5
Brand: Dell Pages: 90
Huawei WiFi Q2 Pro Quick Start Manual preview
WiFi Q2 Pro
Brand: Huawei Pages: 260
HP AD331A Manual preview
AD331A
Brand: HP Pages: 10
HP A6825A Performance Manual preview
A6825A
Brand: HP Pages: 11
HP AB290A Installation Manual preview
AB290A
Brand: HP Pages: 18
HP 3C339 Installation Manual preview
3C339
Brand: HP Pages: 30
HP Broadband Service Analyzer User Manual preview
Broadband Service Analyzer
Brand: HP Pages: 22
HP 517 Installation Manual preview
517
Brand: HP Pages: 17
HP 3C590-TPO Installation Manual preview
3C590-TPO
Brand: HP Pages: 44

Brands by name

Popular brands

Load more brands