MLis MLB-G420 Series User Manual Download Page 50

Page: 50 / 89

MLB-G420X Wireless Terminal User Manual

Rev 1.1

3.8.3

X.509 Certificate

X.509 is a digital certificate method mostly used for IPSec Authentication. MLB-G420X can generate a
trusted Root Certification and then generate the certificate to export in order to import on the remote
VPN router gateway.

IPSec secure tunnel with X.509 Authentication Method Setup Example

MLB-G402X_A Configuration Steps

Summary of Contents for MLB-G420 Series

Page 1: ...MLB G420X MLB G4201 Ethernet to 2G 3G Terminal MLB G4202 Ethernet to LTE Terminal...

Page 2: ...eproduced or transmitted in any form or by any means electronic or mechanical including but not limited to photocopying recording transmitting via fax and or modem devices scanning and or information...

Page 3: ...nector 15 3 2 Left side view DC Jack Industry connector 16 3 3 Frond view Antenna LED 18 3 4 SIM card holder 20 3 5 Getting Started 23 4 SW Installation 23 4 1 Web Console 23 4 2 Overview 24 4 2 1 Sys...

Page 4: ...wer on the Modem 76 5 2 Reset to default 76 5 3 External input x2 76 5 4 External Relay x1 76 5 5 DB9 Connector 76 5 6 Install SIM card 76 6 MLiS Cellular Control Protocol MCCP 77 SALES CONTACT 87 7 O...

Page 5: ...420X 20 List of Tables Table 1 Chassis Dimensions and Mechanical Description for MLB G420X 14 Table 2 DB9 pins define for MLB G420X 15 Table 3 Interfaces and Indicators Description of MLB G420X 16 Tab...

Page 6: ...rk The MLB G420X wireless terminal offer Ethernet to Cellular communication LEDs are used to indicate the status of the wireless terminal The MLB G420X wireless terminal can be used to provide a wirel...

Page 7: ...ss 12 mobile station class B EDGE Multi slot class 12 CSD 9 6 Kbps non transparent V 110 SMS MT MO Cell Broadcast Text and PDU mode Operating Mode Transparent TCP Server TCP client UDP SMS AT command...

Page 8: ...terface DB9 connector male LED 8 x Working Status Indicator 3 x Network Status Indicator Reset HW Reset Approval Certification EMC EN55022 24 FCC Part 15B EMS IEC61000 4 2 IEC61000 4 3 IEC61000 4 4 IE...

Page 9: ...te 50 Mbps Operating mode Transparent TCP server TCP client UDP SMS AT command Relay 1 output with current carrying capacity of 1 A 40VDC Digital Inputs 2 electrically isolated inputs 13 30V for state...

Page 10: ...Approval Certification EMC EN55022 24 FCC Part 15B EMS IEC61000 4 2 IEC61000 4 3 IEC61000 4 4 IEC61000 4 5 IEC61000 4 6 RF EN301908 1 Safety EN60950 1 NCC...

Page 11: ...C approved GSM GPRS engine SIM card holder and power regulator The wireless terminal is supplied with power via the DC jack and terminal block The remaining RJ45 connector is used for data communicati...

Page 12: ...e MLB G420X wireless terminal is designed for indoor use only For outdoor use it has to be integrated into a weatherproof enclosure Do not exceed the environmental and electrical limits as specified i...

Page 13: ...AL DESCRIPTION 2 1 Overview The pictures below show the mechanical design of the wireless terminal along with the positions of the different connectors 2 2 Dimensions Figure 2 1 Chassis Dimension for...

Page 14: ...Chassis Dimension for MLB G4202 S N Parameter Value 1 Height H 48mm 2 Length L 121mm 3 Width W 88 0mm 4 Weight 420g 5 Chassis Material Metal Table 1 Chassis Dimensions and Mechanical Description for...

Page 15: ...CE DESCRIPTIONS 3 1 Buttom side view DB9 connector Figure 4 RS232 RS422 RS485 for MLB G420X The table below defines the RS 232 422 485 pin configuration on the wireless terminal Table 2 DB9 Pins Defin...

Page 16: ...put Power 9V 48V Terminal Block PWR V V Input Power 9V 48V Pin 1 is V Pin 2 is V When use DC for input the output power of TB is same as input power Relay External Relay Load Voltage 40V max Load Curr...

Page 17: ...RESET button with a pointed object such as an un folded paper clip System reboot Hold the RESET button down for 1 second and then release Reset to factory default Hold the reset button down for 30 se...

Page 18: ...h antennas to gain the better quality of cellular signal For a reminder it is mandatory to install ANT1 if you only install ANT2 there would be no cellular signal received to establish the traffic com...

Page 19: ...On Number of LEDs to indicate cellular signal level when registered to a base station Signal LED 1 0 RSSI 12 Signal LED 2 12 RSSI 21 Signal LED 3 21 RSSI 31 SIM1 Amber On Off SIM 1 is active or inacti...

Page 20: ...nt The MLB G420X fully operates when inserting a SIM card Some MLB G420X functionality may be lost if user trys to operate the wireless terminal without a SIM card Installing a SIM Card The SIM card s...

Page 21: ...SIM card slot cover DIN Rail Mounting The aluminum DIN Rail attachment plate should already be fixed to the back panel of the MLB G420X when you take it out of the box 1 Insert the top of the DIN Rail...

Page 22: ...The top of stiff metal spring of the DIN Rail mounting kit unit will snap into the Din rail rack as shown in the following illustration To remove MLB G420X from the DIN Rail simply reverse Steps 1 and...

Page 23: ...onsole of MLB G420X for further configuration or management Please configure the gateway such as default IP address 10 0 10 1 24 of MLB G420X on your PC if you wish to route the traffic from LAN to Ce...

Page 24: ...System Info Item Description Model name Display the model name Device name Display the device name Serial No Display the serial number System up time Display system run times Firmware version Display...

Page 25: ...isplay physical address IP address Display the IP address Subnet Mask Display the subnet mask 3 6 3 Cellular Info Item Description Cellular RSSI Signal Cellular WAN IP address Display the WAN IP addre...

Page 26: ...ry DNS server After you specify a DNS server you can access a web site by entering its URL instead of the IP address Secondary DNS server Enter the IP address of the secondary DNS server Apply Click t...

Page 27: ...station within that time period it changes to 2nd priority SIM Data Session Retry Count Sometimes the cellular connection is terminated based on your ISP in such scenarios MLB G420X s main SIM retries...

Page 28: ...your service provider provided Username Enter the username for authentication if your service provider provided Password Enter the username for authentication if your service provider provided Apply...

Page 29: ...Apply all settings 2 Go to Save then click on the save button if you wish to update the configuration settings Save 3 7 4 DHCP Server The Dynamic Host Configuration Protocol DHCP save network administ...

Page 30: ...S server Start IP address Enter the starting IP address in the IP address pool Maximum number of users Enter the number 1 999 of IP address to assign to DHCP clients Client lease time Enter the lease...

Page 31: ...setting 3 Click Apply to save settings Apply Save 1 Click to Apply all settings 2 Go to Save then click on the save button if you wish to update the configuration settings Save 3 7 5 Port Forwarding...

Page 32: ......

Page 33: ...ish to update the configuration settings Save 3 8 Advanced Settings Several advanced functions are available to increase the functionality of your MLB G420X and wireless network system 3 8 1 Serial Se...

Page 34: ...terface Baud Rate Parity Data Bits Stop Bits 3 Select Operation Mode Input IP address Port for TCP Client UDP mode Input Port for TCP Server mode 4 Click Apply to save settings Apply Save 1 Click to A...

Page 35: ...ement station which is called a network manager and are responded to by a network management agent within each managed device The SNMP versions are v1 v2c v3 SNMP v1 and v2c use community string publi...

Page 36: ......

Page 37: ...Indicates the community write access string to permit access to SNMP agent The allowed string length is 0 to 255 and the allowed content is the ASCII characters from 33 to 126 The field is applicable...

Page 38: ...ecure tunnels so that data can be exchanged in a secure manner IPSec is layer 3 protocol with authentication and encryption implementation Item Description IPSec Enable Select Enable to enable the IPS...

Page 39: ...server subnet IP of the local network Local netmask Enter the remote VPN server subnet netmask of the local network Local ID Enter an ID to identify and authenticate the local VPN gateway Remote VPN...

Page 40: ...authentication mode you select Encryption Algorithm Select the DES 3DES or AES128 algorithm for the VPN ISAKMP phase 1 encryption mode Hash Algorithm Select the MD5 or SHA 1 VPN key exchange phase 1...

Page 41: ...Cell G3470A LTE performs one of the following actions when connection to a remote IPSec tunnel is down Hold Keep the VPN tunnel Clear Clear the VPN tunnel Restart Re establish the VPN tunnel on Start...

Page 42: ...MLB G420X Wireless Terminal User Manual 42 Rev 1 1 IPSec Secure Tunnel Setup Example MLB G420X_A Configuration...

Page 43: ...MLB G420X Wireless Terminal User Manual 43 Rev 1 1...

Page 44: ...MLB G420X Wireless Terminal User Manual 44 Rev 1 1 The user can go to IPSec log to check the IPSec connection status...

Page 45: ...MLB G420X Wireless Terminal User Manual 45 Rev 1 1 MLB G420X_B Configuration...

Page 46: ...MLB G420X Wireless Terminal User Manual 46 Rev 1 1 The user can go to IPSec log to check the IPSec connection status...

Page 47: ...1 1 Note You can verify the IPSec connection by running the ICMP Ping command In the above setup example scenario PC A can ping PCB 192 168 0 100 and PC B can ping PC A 10 0 10 100 to verify if IPSec...

Page 48: ...urce software application that implements virtual private network VPN techniques for creating secure site to site connections in routed configurations and remote access facilities It allows the MLB G4...

Page 49: ...MLB G420X Wireless Terminal User Manual 49 Rev 1 1 Note 1 Please make sure that the firewall setting is OFF on both PC A and PC B 2 Please make sure that IPSec based VPN setting function is OFF...

Page 50: ...ificate method mostly used for IPSec Authentication MLB G420X can generate a trusted Root Certification and then generate the certificate to export in order to import on the remote VPN router gateway...

Page 51: ...MLB G420X Wireless Terminal User Manual 51 Rev 1 1 Note 1 Please make sure to delete the previous root CA before generating the new one...

Page 52: ...MLB G420X Wireless Terminal User Manual 52 Rev 1 1 The user can go to the IP based VPN setting to enable the IPSec function also to create the IPSec connection session by clicking on the tab of Edit...

Page 53: ...Terminal User Manual 53 Rev 1 1 Note 1 Please make sure that the function of OpenVPN is disabled first The user has to change the authentication mode also select the local certificate and remote cert...

Page 54: ...MLB G420X Wireless Terminal User Manual 54 Rev 1 1...

Page 55: ...ings The user can go to IPSec log to check the IPSec with X 509 authentication connection status Note You can verify the IPSec connection with X 509 authentication method by running the ICMP Ping comm...

Page 56: ...MLB G420X Wireless Terminal User Manual 56 Rev 1 1 MLB G402X_B Configuration Steps...

Page 57: ...MLB G420X Wireless Terminal User Manual 57 Rev 1 1...

Page 58: ...MLB G420X Wireless Terminal User Manual 58 Rev 1 1 The user can go to the IP based VPN setting to enable the IPSec function also to create the IPSec connection session by clicking on the tab of Edit...

Page 59: ...Terminal User Manual 59 Rev 1 1 Note 1 Please make sure that the function of OpenVPN is disabled first The user has to change the authentication mode also select the local certificate and remote cert...

Page 60: ...MLB G420X Wireless Terminal User Manual 60 Rev 1 1...

Page 61: ...MLB G420X Wireless Terminal User Manual 61 Rev 1 1 Note 1 Click to Apply all settings 2 Go to Save then click on the save button if you wish to update the configuration settings...

Page 62: ...authentication connection status Note You can verify the IPSec connection with X 509 authentication method by running the ICMP Ping command In the above setup example scenario PC A can ping PC B 192...

Page 63: ...oblems by using the ICMP ping command Simply input the desired IP address in the Destination field and then press Ping button to issue the Ping command from the Web console interface You can ping from...

Page 64: ...in the Destination field you can use the ping command to make sure it exists and whether or not the access path is available Ping Click to ping Note Please note that the TCP ports of 22 80 is not ava...

Page 65: ...the external application to obtain various status information from MLB G420X series For detailed AT commands syntax description please contact Service and Support for such requests E Mail support mli...

Page 66: ...t Password Input current password New password Input new password Confirm the new password Input new password again Apply Save Click Apply to change password Need to go to save then click on the save...

Page 67: ...MLB G420X Wireless Terminal User Manual 67 Rev 1 1 3 9 4 User management...

Page 68: ...tem Description Current Password Input current password New password Input new password Confirm the new password Input new password again Apply Save Click Apply to change password Need to go to save t...

Page 69: ...eless Terminal User Manual 69 Rev 1 1 3 10 Update FW The MLB G420X can be enhanced with more value added functions by installing firmware upgrades Please download the latest release firmware from MLiS...

Page 70: ...ireless Terminal User Manual 70 Rev 1 1 3 Item Description Firmware File Click to load the firmware file Upload Click to upgrade the firmware Note Do Not power down the device during the firmware upgr...

Page 71: ...MLB G420X Wireless Terminal User Manual 71 Rev 1 1 3 11 Reset to Default All the configuration will be reset to the factory default value Item Description Reset Click to reset MLB G420X to default...

Page 72: ...2 Rev 1 1 3 12 Status 3 12 1 IO Relay Status Item Description DI1 Click GET to obtain the status of DI1 DI2 Click GET to obtain the status of DI2 Relay Trigger the Relay to enable disable relay Note T...

Page 73: ...MLB G420X Wireless Terminal User Manual 73 Rev 1 1 3 12 2 IPSec Log OpenVPN Log...

Page 74: ...anual 74 Rev 1 1 Syslog Please provide us the syslog in the text file upon request for further diagnosis and analysis purpose Item Description IPSec Log Record the IPSec log OpenVPN Log Record the Ope...

Page 75: ...omplete this step in order to update all the configuration changes after you click on apply on each function s setting page Item Description Save Click Save button to save all setting you configure Th...

Page 76: ...l input x2 External signal input source positive signal are DI1 and DI2 negative signal are COM_1 are COM_2 Power input range is 12V 48V it will be determined as positive It can be used for alert 4 4...

Page 77: ...4C 42 2D 43 4F 4E 46 49 47 53 54 41 47 45 31 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9D MLB CONFIGSTAGE2 Waiting for IN STAGE2 HEX 4D 4C 42 2...

Page 78: ...MLB G420X Wireless Terminal User Manual 78 Rev 1 1 MCCP Setting Process via Internet RS 232 MCCP Setting Process via SMS using admin phone number...

Page 79: ...End Tag Z Example MLB CONNECTIONPROFILE 6 2 192 168 100 99 27000 1 Z set 192 168 100 99 port 27000 to profile 2 for TCP Client Mode enabled Read Command Header MLB CONNECTIONPROFILE Connection Type 1...

Page 80: ...110 Parity Bit 1 None 2 ODD 3 EVEN Stop Bit 1 1 bit 2 2 bit HW Flow Control 0 Disable 1 Enable DTR Level 0 High Level 1 Low Level RTS Level 1 High Level 2 Low Level End Tag Z Example MLB CONNECTIONPRO...

Page 81: ...ntrol 0 Disable 1 Enable DTR Level 1 High Level 2 Low Level RTS Level 1 High Level 2 Low Level End Tag Z Response format Response UART Mode Baud rate Parity Bit Stop Bit HW Flow Control Disable Enable...

Page 82: ...et UDP Client Mode 6 Socket TCP Client Mode 7 Socket TCP Server Mode End Tag Z Example MLB INTERNETSETTING internet user123 pass456 2 Z set APN internet User Name user123 Password pass456 Internet con...

Page 83: ...hone Number Format 886 935123456 Maximum 19 chars Enabled 0 Disabled 1 Enabled End Tag Z Read Command Header MLB PHONESETTING Phone Event 1 Reboot 2 Connection Off Line 3 DIO1 Event 4 DIO2 Event 5 Rel...

Page 84: ...Time 0 No Retry 9999 No limitation Range 0 9999 Retry Time Interval Range 1 50 Minute End Tag Z Read Command Header MLB RECONNECTSETTING End Tag Z Response format Response Retry Time Retry Time Interv...

Page 85: ...Time Interval Example Send MLB RECONNECTSETTING Z Response 9999 5 Connecting maximum retry time is no limit and retry interval is 5 minutes Packing Setting Write Command Header MLB PACKINGSETTING Dev...

Page 86: ...ponse Format Response Retry Time Retry Time Interval Example Send MLB REPORTDIOXSETTING Z Response SMS The DIO status will be reported via SMS Get DIO Write Command Header MLB GETDIOX DIO Number 1 DIO...

Page 87: ...6717 E info schmidthk com Shenzhen China Schmidt Co China Ltd Shenzhen Branch Schmidt Shenzhen Co Ltd 3 F Unit E International Culture Building Fu Tian Road Shenzhen 518033 T 86 755 8376 0232 F 86 75...

Page 88: ...DC jack 5 5 2 1 MLA PSP 101 US Adapter Plug MLA PSP 104 British Adapter Plug MLA PSP 103 European Adapter Plug MLA PSP 102 Australia Adapter Plug MLA CAB 001 DC Jack power line 5 5 2 1 Cable MLA CAB 1...

Page 89: ...t Taiwan 886 2 2502 5095 China 86 755 8376 0232 Singapore 65 6272 7233 Email sales mlis schmidtelectronics com Official Website MLiS Website www schmidtm2m com Support www schmidtm2m com support Downl...

Search results

Summary of Contents for MLB-G420 Series

Reviews:

Related manuals for MLB-G420 Series

Brands by name

Popular brands

MLis MLB-G420 Series, User Manual

Search results

Summary of Contents for MLB-G420 Series

Reviews:

Related manuals for MLB-G420 Series

Brands by name

Popular brands