Home
/
Perle
/
IOLAN MDC
/
User Manual

Perle IOLAN MDC, User Manual, Page: 258 / 491

Share

Page: 258 / 491

Perle IOLAN MDC User Manual Download Page 258

254

SSL/TLS

SSL/TLS

Overview

When SSL/TLS is configured, data is encrypted between the IOLAN and the host/device (which must
also support SSL/TLS). When you configure the

SSL/TLS

settings in the

System

section, you are

configuring the default global SSL/TLS settings; you are not configuring an SSL/TLS server.

Functionality

You can create an encrypted connection using SSL/TLS for the following profiles:

TruePort

,

TCP

Sockets

,

Terminal

(the user’s

Service

must be set to

SSL_Raw

),

Serial Tunneling

,

Virtual Modem

,

and

Modbus

.

When configuring SSL/TLS, the following configuration options are available:

z

You can set up the IOLAN to act as an SSL/TLS client or server.

z

There is an extensive selection of SSL/TLS ciphers that you can configure for your SSL/TLS
connection;

SSL/TLS Ciphers

for a list of SSL/TLS ciphers.

z

You can enable peer certificate validation, for which you must supply the validation criteria that
was used when creating the peer certificate (this is case sensitive).

AES-CBC

The IOLAN SSH server’s AES-CBC encryption is enabled/disabled.

Default:

Enabled

AES-CTR

The IOLAN SSH server’s AES-CTR encryption is enabled/disabled.

Default:

Enabled

AES-GCM

The IOLAN SSH server’s AES-GCM encryption is enabled/disabled.

Default:

Enabled

ChaCha20-

Poly1305

The IOLAN SSH server’s ChaCha20-Poly1305 encryption is enabled/disabled.

Default:

Enabled

Break String

The break string used for inband SSH break signal processing. A break signal
is generated on a specific serial port only when the server's break option is

enabled and the user currently connected using reverse SSH has typed the

break string exactly.

Field Format:

maximum 8 characters

Default:

~break, where ~ is tilde

Enable Verbose

Output

Displays debug messages on the terminal.

Default:

Disabled

Allow Compression

Requests compression of all data. Compression is desirable on modem lines

and other slow connections, but will only degrade data trransmission speeds on

faster networks.

Default:

Disabled

Login Timeout

Set the time to wait for the SSH client to complete the login. If the timer

expires before the login is completed, the session is terminated.

Default:

120 seconds

Values:

1-600 seconds

Note:

Some combinations of cipher groups are not available on FIPS firmware versions.

«
...
256
257
258
259
260
...
»

Summary of Contents for IOLAN MDC

Page 1: ...1 IOLAN SDS SCS STS MDC User s Guide Version A1 12 06 2017 Part 5500161 47 Rev I June 2017...

Page 2: ...imits for a Class A digital device pursuant to Part 15 of the FCC rules These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a comm...

Page 3: ...3...

Page 4: ...ax 5 1W FCC 47 Part 15 Class B CISPR 22 2008 EN55022 Class B CISPR 24 2010 EN 55024 UL60950 1 IEC 60950 1 FCC Part 15 247 Subpart C 2 4 Ghz FCC Part 15 407 Subpart E 5 Ghz RSS 210 Canada RSS Gen issue...

Page 5: ...7 What You Need to Supply 28 Available Accessories 28 Power Supply Specifications 28 Desktop Models DS and SDS 28 Power Over Ethernet PoE Models 29 I O Models 29 Rack Mount Models except Electric Util...

Page 6: ...op View 40 End Views of IOLAN LTE 40 Rack Mount 41 Console Port LED View 41 Serial Ethernet View 41 Medical Unit 42 Top View 42 Serial View 42 Power Ethernet View 42 Electric Utility models 43 Front L...

Page 7: ...1 Wiring up a LDC unit 52 TELCO NEBS Models 53 Install Locations for LDC Models 54 Wiring up a the Fail Safe Relay 54 About the IOLAN 55 IOLAN Family Models 55 Chapter 2 Introduction 55 IOLAN Features...

Page 8: ...ebManager 69 Command Line Interface 70 Overview 70 Access Platforms 70 Features 70 Connecting to the IOLAN Using the CLI 70 Through the Network 70 Through the Serial Port 71 Using the CLI 71 Menu 71 O...

Page 9: ...ation Wizard 83 Setting Up the Network 84 Using DeviceManager 84 Using WebManager 85 Using a Direct Serial Connection to Specify an IP Address 85 Using a Direct Serial Connection to Enable BOOTP DHCP...

Page 10: ...on File 98 Managing the IOLAN 98 Chapter 6 Network Settings 99 Introduction 99 IPv4 Settings 99 Overview 99 Field Descriptions 99 IPv6 Settings 101 Overview 101 Field Descriptions 101 Adding Editing a...

Page 11: ...120 Overview 120 Functionality 120 Field Descriptions 120 Editing Adding DNS WINS Servers 121 RIP 121 Overview 121 Functionality 121 Field Descriptions 122 Dynamic DNS 123 Overview 123 Functionality 1...

Page 12: ...d Descriptions 139 Serial Port Access Tab 141 Overview 141 Field Descriptions 141 Chapter 8 Configuring Serial Ports 142 Introduction 142 Serial Ports 142 Overview 142 Functionality 142 Editing a Seri...

Page 13: ...eral Tab Field Descriptions 168 Adding Editing Additional Hosts 170 Adding Editing a Multihost Entry 170 Advanced Tab Field Descriptions 171 UDP Sockets Profile 174 Overview 174 Functionality 174 Gene...

Page 14: ...scriptions 208 Modbus Slave IP Settings Field Descriptions 209 Adding Editing Modbus Slave IP Settings 211 Modbus Slave Advanced Settings Field Descriptions 212 Power Management Profile 214 Overview 2...

Page 15: ...6 Modems Tab 238 Overview 238 Functionality 238 Adding Editing a Modem 238 TruePort Baud Rate Tab 239 Overview 239 Functionality 239 Field Definitions 239 Introduction 240 Authentication 240 Chapter 9...

Page 16: ...54 Field Descriptions 255 Cipher Suite Field Descriptions 256 Adding Editing a Cipher 257 Validation Criteria Field Descriptions 258 VPN 259 Overview 259 Functionality 260 IKE Phase 1 Proposals 260 ES...

Page 17: ...iptions 274 Services 276 Overview 276 Functionality 276 Field Descriptions 276 Keys and Certificates 278 Chapter 10 Configuring I O Interfaces 280 Introduction 280 Technical Specifications 280 Setting...

Page 18: ...Additional Hosts 302 Adding Editing a Multihost Entry 302 Temperature 304 Field Descriptions 305 Alarm Settings 306 Basic Analog Alarm Settings 306 Advanced Analog Alarm Settings 307 I O UDP 309 UDP...

Page 19: ...320 Setup 320 Format of API Commands 321 Get Commands 321 Command Format 321 Response Format 321 Set Commands 322 Command Format 322 Successful Response Format 323 Unsuccessful Response Format 323 Err...

Page 20: ...lave Options 333 Overview 333 Editing Clustering Slave Settings 333 Chapter 13 Configuring the System 335 Introduction 335 Alerts 335 Email Alerts 335 Overview 335 Functionality 335 Field Descriptions...

Page 21: ...t Tab Field Descriptions 352 Chapter 14 Control RPS I O Channels IPsec WLANs353 Introduction 353 RPS Control 353 Overview 353 Field Descriptions 353 Plug Control 354 Overview 354 Field Descriptions 35...

Page 22: ...ing Voltage 366 Calibrating Current 366 Calibrating Temperature Input 366 Calibrating Thermocouple 366 Calibrating RTD 366 Calibrating Analog Channels 367 Resetting Calibration Data 367 Setting the IO...

Page 23: ...6 Modbus Slave Settings 377 Configuring PPP Dial On Demand 378 Setting Up Printers 379 Remote Printing Using LPD 379 Remote Printing Using RCP 380 Remote Printing Using Host Based Print Handling Softw...

Page 24: ...ix B SSL TLS Ciphers 413 Introduction 413 Valid SSL TLS Ciphers 413 Appendix C Virtual Modem AT Commands 416 Virtual Modem Initialization Commands 416 Appendix D Pinouts and Cabling Diagrams 418 Seria...

Page 25: ...LAN DB9 Jumper Method 437 1 Port IOLAN DB9 DIP Switch Method 437 2 Port IOLAN SDS1M Modem 438 2 Port IOLAN Jumper Method 439 2 Port IOLAN DIP Switch Method 439 2 Port IOLAN RJ45 P Power Over Ethernet...

Page 26: ...ard 452 Installing a MicroSIM card into your SDS L 455 Inserting SFP modules into SPF slots 455 Removing SFP modules from SFP s slot s 456 Starter Kit Adapters Cable 457 RJ45F to DB25M DTE Crossover A...

Page 27: ...rdware Troubleshooting 467 Communication Issues 468 DeviceManager Problems 468 Host Problems 469 RADIUS Authentication Problems 469 Login Problems 470 Problems with Terminals 470 Unknown IP Address 47...

Page 28: ...ta Logging 477 Introduction 477 Trueport Profile 477 TCP Socket Profile 477 Appendix K Modbus Remapping 478 Configuring the Modbus UID Translation Feature 478 Appendix L Symmetric Key File 480 Symmetr...

Page 29: ...entation is included on the IOLAN installation CD z IOLAN 1 Port Quick Start Guide z IOLAN 1 Port G Quick Start Guide z IOLAN 2 4 8 Port Quick Start Guide z IOLAN 2 4 Port G Quick Start Guide z IOLAN...

Page 30: ...output Set the value to TRUE The typeface used for TRUE is also used when referring to an actual value or identifier that you should use or that is used in a code example subscribe project subject ru...

Page 31: ...ial connector s come with an RJ45JDB9F adapter Added components for rack mount models z 3 CAT5 RJ45 Administration cable z Rack mounting kit z IOLAN Cable Starter Kit all SCS models except for the SCS...

Page 32: ...ss WAN cards modem cards and fiber LAN cards z 3 meter RJ45M RJ45M 8 wire Sun Cisco modular cable z RJ45 to DB25 DTE Male adapter z RJ45 to DB25 DCE Male adapter z RJ45 to DB25 DTE Female adapter z RJ...

Page 33: ...ed with an integral Terminal Connections block to facilitate connection to a DC source s The DC supply s should have adequate over current protection within the closed rack system and comply with loca...

Page 34: ...not used unless it becomes the highest voltage at some point in which case the unit will switch to it No power loss will occur during a switch over DC Power Requirements HV and DHV models The IOLAN c...

Page 35: ...it Minimum 18 VDC Nominal 24 60 VDC Maximum 72 VDC The Battery Return input terminals of the IOLAN can support either Isolated DC return DC I or Common DC return DC C You need wire gauge 12 to 18AWG t...

Page 36: ...reen 10 100 Mbits Amber 1000 Mbits Off no LAN connection z W L G Models Link10 100 1000 This LED indicates the Ethernet connection speed for W L G models Green 1000 Mbits Green Amber 100 Mbits Amber 1...

Page 37: ...will enable WPS mode with Soft AP Access Point mode enabled if pushed in and held for more then 4 seconds z WLAN WWAN A wireless or cellular connection has been established Signal Signal strength from...

Page 38: ...RSSI dbM Percentage of Signal Strength Blinking Steady Off 100 0 23 none none 1 Amber 100 89 24 49 WPS mode enabled Client mode enabled no WLAN connection 2 Amber 88 76 50 75 none none 3 Green 75 63 5...

Page 39: ...nts found on the IOLAN 2 port models The 2 port IOLAN has two RJ45 serial connections SDS G models have a 10 100 1000 Ethernet connections The 2 port IOLAN can support an 8 pin connector if there is n...

Page 40: ...found on the IOLAN 4 port models SDS G models have a 10 100 1000 Ethernet connection The 4 port IOLAN model has four RJ45 serial connections The STS8 D IOLAN model has eight RJ45 serial connections Se...

Page 41: ...I O model Your I O model may have I O connectors in slightly different positions End View of IOLAN I O The IOLAN I O model shown is an A4D2 Different IOLAN I O models have different I O connector conf...

Page 42: ...age shows an IOLAN one or two port wireless model Ethernet Link 10 100 100 WLAN External Power Supply Connection Antenna Power Ready Soft AP Mode Serial Ports WPS Mode Signal Strength Power Terminal P...

Page 43: ...nnections The 1 port and 2 port wireless IOLAN have either one or two DB9M connectors depending on the model Ethernet Link 10 100 1000 Console Serial Switch Grounding Screw WPS Power Terminal Plug Res...

Page 44: ...DS L has either 1 2 or 4 port RJ 45 serial connections Ethernet Link 10 100 1000 Power Ready Console Serial External Power Supply Connector Antennas Reset Switch Button Serial Ports WWAN External Term...

Page 45: ...ount IOLAN models This example uses the IOLAN SCS with dual Ethernet and dual AC power Console Port LED View Serial Ethernet View Note The SCS16C DSFP model has two SFP slots Power ON OFF Server LEDs...

Page 46: ...Getting to Know Your IOLAN Medical Unit This section describes the basic components found on the IOLAN medical unit models Top View Serial View Power Ethernet View Power LAN Activity Serial Ports Pow...

Page 47: ...odels This section describes the basic components of the Electric Utility models This example uses the SDS32C DHV model Front LED Console port View Back Serial Ethernet power View Serial ports Etherne...

Page 48: ...erial Interface to EIA 232 z Speed to 9600 z Flow Control to No z Bits to 8 z Stop Bits to 1 z Parity to None Console mode also displays extra system messages Serial port 1 will ignore any Serial Port...

Page 49: ...work connections on your PC or wireless client It will appear as SSID IOLAN xxxxxx the last 6 digits of the IOLAN wireless MAC address found on the product label 4 If using the password entry method S...

Page 50: ...sensitive You can now configure and manage your IOLAN using the IOLAN WebManager application Note You should change the admin password to restrict unauthorized access to your IOLAN For additional meth...

Page 51: ...IOLAN I O models with Digital I O for setting the channels as input or output z IOLAN I O models with Analog I O for setting Voltage Current See Appendix E Setting Jumpers to see how to set the jumper...

Page 52: ...llowing specifications a Use wire gauge 12 to 22 AWG b Strip insulation 7mm from wire ends If using stranded wire twist all strands together to ensure all wire strands are used for the connection c Co...

Page 53: ...connect the wires on the IOLAN side 2 Connect the power as outlined in the wiring section below which matches your model 3 Enable power to unit Unit should now power up Selecting Install Locations fo...

Page 54: ...source Power should only be applied when you are sure that the wiring is correct and any safety covers are properly installed Terminal Description Usage 1 Normally Open Normally Open is a fail safe r...

Page 55: ...sources or to the Neutral input for AC sources Use with partner terminal L 6 Chassis Ground Chassis Ground must be connected to Equipment Ground for DC installations or Safety Ground for AC installati...

Page 56: ...se with partner terminal N Source 1 6 N source 1 N Source 1 is connected to the negative input for DC sources or to the Neutral input for AC sources Use with partner terminal L Source 1 7 L source 2 L...

Page 57: ...C TELCO NEBS models have been certified to be NEBS compliant To ensure compliance power up the IOLAN LDC model and perform the following steps 1 Ensure that the power supply side of the connection is...

Page 58: ...powered up and the software has loaded properly Should a failure occur the relay will be disengaged until the unit returns to a normal state of operation A failure is defined as a condition which cau...

Page 59: ...S model is similar to the DS model supporting only general IOLAN functionality z SDS This model is available in both desktop and rack mount configurations Both models support software configurable ser...

Page 60: ...technology provides increased capability and speed of wireless data networks using new DSP digital signal processing Backward compatible with 2G and 3G networks with Auto detect feature for easy conn...

Page 61: ...models Analog Temperature Digital and Relay z Ability to disable services for example Telnet TruePort Syslog SNMP Modbus HTTP for additional security z Ability to enable Ping responses Advanced Featu...

Page 62: ...that have been configured in the IOLAN access to the IOLAN z Idle port timers which close a connection that has not been active for a specified period of time z Ability to individually disable network...

Page 63: ...z z z z DB9M z z z z z Galvanically Isolated Serial Ports RJ45 z Serial Interface EIA 232 z z z z z z z z z z z z z z z EIA 422 z z z z z z z z z EIA 485 z z z z z z z z z Serial Power In Pin DB25F z...

Page 64: ...4 G models and other models as indicated by the chart Note 5 DB25M connector is not available on the DS1 or SDS1 G models Desktop Rack Mount Medical unit DS1 DS1 I O TS2 SDS1 3 SDS1 2 4 P SDS1 I O SD...

Page 65: ...find out how to assign an IP address to the IOLAN Once an IP address is assigned to the IOLAN you can use any of the configuration methods to z Configure users z Configure IOLAN server parameters z C...

Page 66: ...N from a serial terminal or from a computer running terminal emulation software over a serial port Using this method you will need to configure and or manage the IOLAN using either the Menu or CLI z D...

Page 67: ...onsole Management z TruePort Virtual COM Port z TCP Sockets Raw TCP z Terminal z Printer not supported on DS1 TS2 models z Serial Tunneling You can launch the Easy Config Wizard from the Perle website...

Page 68: ...e admin user Features DeviceManager supports the following features z The ability to download the same configuration file to several IOLANs in one operation z The ability to save a configuration file...

Page 69: ...u don t have a DHCP BOOTP server DeviceManager will temporarily assign an IP address in the range of 169 254 0 1 169 254 255 255 that will be used only for the duration of the DeviceManager IOLAN comm...

Page 70: ...iceManager Further navigation is available in the form of buttons and tabs in the display area of DeviceManager depending on where you are in the navigation tree as shown in the below Notice that when...

Page 71: ...rough WebManager from any system that can run a web browser WebManager can be accessed by the admin user or any user who has Admin Level privileges Features WebManager supports the following features...

Page 72: ...123 2 If you successfully connect to the IOLAN a login screen will appear 3 If you are accessing the IOLAN in non secure HTTP just type in the username admin and the associated password the factory d...

Page 73: ...hen you click on an option that is under a folder more navigation options are displayed The Network folder contains two configuration options IP Address and Advanced Notice that when the IP Address op...

Page 74: ...User s Guide for information on using the IOLAN CLI Connecting to the IOLAN Using the CLI There are two ways you can access the IOLAN through the network Ethernet connection or through the serial conn...

Page 75: ...ence Guide for more information about the CLI Menu Overview The Menu is a graphical representation of the CLI You can look up Menu parameter explanations in the Command Line Interface Reference Guide...

Page 76: ...screen depending on what you select 3 When you are done configuring parameters in a screen press the Enter key and then the Enter key again to Accept and exit the form 4 If you want to discard your c...

Page 77: ...the IOLAN is rebooted Connecting to the IOLAN Using DHCP BOOTP The IOLAN will automatically request an IP address from the DCHP BOOTP server when the Obtain IP address automatically using DHCP BOOTP p...

Page 78: ...meric values for the authentication methods 0 None only valid for secondary authentication 1 Local 2 RADIUS 3 Kerberos 4 LDAP Microsoft Active Directory 5 TACACS 6 SECURID 7 NIS z SECURITY Restricts I...

Page 79: ...be set using another configuration method Connecting to the IOLAN Using SNMP Before you can connect to the IOLAN through an SNMP Management tool or MIB browser you need to set the following component...

Page 80: ...with no changes z 2 Indicates that the container folder is active with change s Once you have completed setting the variables in a folder you will want to submit your changes to the IOLAN To do this...

Page 81: ...using the IOLAN interface follow the directions for Connecting to the IOLAN Using the CLI Using the IOLAN Interface After you have successfully logged in to the IOLAN you can type iolan at the CLI com...

Page 82: ...Retries z Access Retry Interval z Access Authentication Administrator PORT SETUP MENU REMOTE ADMIN Hardware Flow ctrl Keys Speed 9600 Flow ctrl None Hot A Intr C Parity None Input Flow Enabled Quit K...

Page 83: ...Opt z HEX z Rlogin Telnet Administrator ACCESS MENU REMOTE ADMIN TTY Name Access Authentication Mode UDP Retries Interval 1 abcd Local N A Raw N A N A 2 abcdef Local N A Raw N A N A __________________...

Page 84: ...z Modem Hang Up Administrator REMOTE ACCESS SYSTEMS SCREEN REMOTE ADMIN Sitename User name Password Device type Service type N A Inactivity N A Phone number Login script N A _________________________...

Page 85: ...e serial line as a EIA 232 or EIA 422 line Administrator SERVER CONFIGURATION REMOTE ADMIN Name wchiewsds2 Debug mode N A IP address 172 16 22 7 Subnet mask 255 255 0 0 Ethernet address 00 80 d4 88 88...

Page 86: ...2 Setting up the serial ports You will want to select the serial port profile that matches the serial port requirement scenario for your serial device 3 Setting up users This is an optional step which...

Page 87: ...rle TruePort software z TCP Sockets Raw TCP Allows hosts on the network to communicate with a serial device that requires raw data throughput such as a printer or card reader connected to the IOLAN se...

Page 88: ...n IP address will be displayed as Not Configured with the Model and MAC Address to identify the IOLAN Highlight the IOLAN that you want to assign an IP address to and click the Assign IP button 8 Choo...

Page 89: ...rack mount models the IOLAN must be rebooted for these changes to take place 3 When prompted type admin for the User and superuser for the Password You should now see the a prompt that displays the mo...

Page 90: ...to the IOLAN You can change these settings for future connections on the rack mount models the IOLAN must be rebooted for these changes to take place 3 When prompted type admin for the User and super...

Page 91: ...ence to use arp s 192 168 209 8 00 80 d4 00 33 4e ping 192 168 209 8 From the ping command issued in step 2 the IOLAN will pickup and use the IP address entered into the ARP table in step 1 You are no...

Page 92: ...rk The TCP connection can be configured to be initiated from the network a serial device connected to the serial port or both This is sometimes referred to as a raw connection or a TCP raw connection...

Page 93: ...h a modem for dial in or dial out access to the network z Remote Access SLIP The Remote Access SLIP profile configures a serial port to allow a remote user to establish a SLIP connection to the IOLAN...

Page 94: ...er the Default user s parameters are inherited by users logging into the IOLAN who are being authenticated by an external authentication method see Authentication for more information or are accessing...

Page 95: ...viceManager can be used to assign an IP address to a new IOLAN and the WebManager requires that the IOLAN already have an IP address before it can be used to configure the IOLAN When using WebManager...

Page 96: ...ger has system information and some navigation options on the far right hand side DeviceManager The DeviceManager has a navigation tree that you can use to access the available Configuration and Stati...

Page 97: ...iguration page you can often navigate the tabs in the configuration area to access all of the configuration options EasyPort Web WebManager also launches EasyPort Web which is a browser based manageme...

Page 98: ...iceManager DeviceManager 2 When the DeviceManager starts it searches the network for IOLANs If your IOLAN is not in the local network and you do not have a multicast enabled router in your network and...

Page 99: ...to get an IP address from the DHCP BOOTP server this will permanently enable DHCP BOOTP in your IOLAN s configuration until you change it If your network does not have a DHCP BOOTP server the IOLAN w...

Page 100: ...IOLAN s IP address and click the Delete button Logging in to the IOLAN To log in to the IOLAN double click on the IOLAN in the Device Server List You will be prompted for the admin Password the defau...

Page 101: ...or Soft AP mode To connect to the IOLAN type the IP address of the IOLAN into the Address field as such http 10 10 234 34 You will see the login screen Logging into the IOLAN Type in the admin passwor...

Page 102: ...in the IOLAN native binary format dme or as a text file txt which can be edited with a text editor Either configuration version can be imported into the DeviceManager IOLAN configuration files saved...

Page 103: ...configuration windows are available z IP Settings This window configures the IOLAN s name IP address and Ethernet information z Advanced This window configures hosts that the IOLAN will be communicati...

Page 104: ...1 IP address Field Format IPv4 address Subnet Mask The network subnet mask For example 255 255 0 0 IP Address The IOLAN s unique IPv4 network Interface 2 WLAN address Field Format IPv4 address Subnet...

Page 105: ...rameters based on the information contained in the advertisement If no Router Advertisement message is received the IOLAN will attempt to connect to a DHCPv6 server to obtain IPv6 addresses and other...

Page 106: ...the DHCPv6 server Default Enabled DHCPv6 Settings IPv6 Address es When enabled the IOLAN will accept IPv6 address es from the DHCPv6 server Default Disabled DHCPv6 Settings Network Prefix When enable...

Page 107: ...riptions Configure the appropriate parameters Use the following IPv6 address Enable this option when you want to enter a specific IPv6 address Default Disabled IPv6 Address x Specify the complete IPv6...

Page 108: ...erface Default Disabled Disable IP Forwarding between Ethernet Interfaces x SCS and SDS8 16 32C models with two Ethernet interfaces When enabled no IP traffic will be forwarded between Ethernet interf...

Page 109: ...and duplex of the installed 1000Base X SFP The IOLAN SCS16C DSFP can also detect speed and duplex with a SGMII SFP interface that supports inband auto negotiation If the SGMII SFP does not support in...

Page 110: ...can connect wirelessly to an Access Point AP wireless network The IOLAN is preconfigure to run in Client mode The IOLAN supports up to 8 client profiles for connecting to different Access Points AP s...

Page 111: ...econd IOLAN is configured in Client Mode Note The WLAN network can be disabled WLAN Global Settings Selecting the WLAN tab will allow you to z set the WLAN parameters z add edit and delete profiles z...

Page 112: ...t AP mode to facilitate the connection of wireless clients Passive Scan Only In passive scan mode the IOLAN will scan all channels and listen for beacons being sent by the AP s on these channels In ac...

Page 113: ...tomatically added by the IOLAN as a profile priority 1 Antenna Rx Diversity MRC The IOLAN uses these techniques to optimize receive signals on it s wireless antennas 4 port units only 2 4 GHz supports...

Page 114: ...Radio Band The IOLAN can operate over 2 4GHz or 5GHz To support connections to one or the other bands use 2 4 5 Values 2 4 5 2 4 5 Default 2 4 5 dual band Scan DFS Channel The IOLAN supports DFS When...

Page 115: ...111 WLAN Security Encryption...

Page 116: ...the TX key index to use Values 1 4 Username Specify a username to identify the IOLAN to the Radius server Values max of 254 characters Default none Password Specify a password to identify the IOLAN to...

Page 117: ...onal encryption wpa personal tkip aes Default aes wpa2 personal tkip aes Default aes Security Key Specify a security key for this connection Value 64 hexadecimal digits or as a passphrase of 8 63 prin...

Page 118: ...this information to identify the packet data network PDN that mobile data devices want to communicate with In addition to identifying a PDN an APN may be used to define the type of service It can ass...

Page 119: ...ters Password If required enter the password to use for this connection Data Options 0 127 characters PIN If required by your MicroSIM card enter a PIN Value 8 characters Radio Access Technology Selec...

Page 120: ...he configuration the symbolic name will be used Functionality You can configure up to 50 hosts using IPv4 or IPv6 internet addresses on desktop IOLAN models you can configure up to 100 hosts on rack m...

Page 121: ...Name The name of the host This is used only for the IOLAN configuration Field Format Up to 14 characters no spaces IP Address The host s IP address Field Format IPv4 or IPv6 address Fully Qualified Do...

Page 122: ...Host Specify a specify host that will provide access to the route destination z Interface Specify the IPv6 tunnel Remote Access PPP defined serial port or Remote Access SLIP defined serial port that...

Page 123: ...r local network Default Default IP Address When the route Type is defined as Host this field will contain the IP address of the host If the route Type is defined as Network the network portion of the...

Page 124: ...ever you can add DNS and or WINS servers to supplement the DHCP supplied server Field Descriptions The following buttons are available on this window Interface The Interface list is comprised of confi...

Page 125: ...r can be configured z On the Advanced tab for Remote Access PPP and Remote Access SLIP profiles configured for a serial port to determine the exchange of RIP packets between the IOLAN and remotely con...

Page 126: ...uthentication Data Options z None No authentication for RIP z Password Simple RIP password authentication z MD5 Use MD5 RIP authentication Default None Password Specify the password that allows the ro...

Page 127: ...ure the IOLAN s dynamic DNS parameters to match the Host s configuration on the DynDNS com server Every time the IOLAN gets assigned a new IP address it will update DynDNS com with the new IP address...

Page 128: ...r account IP address schema was set up with DynDNS org Refer to www DynDNS org for information about this parameter Data Options Dynamic Static Custom Default Dynamic Wildcard Adds an alias to yourcom...

Page 129: ...do not auto delete should the IP address change infrequently This parameter will only take effect if HTTPS is selected as the connection method Default Disabled Validation Criteria Button Launches the...

Page 130: ...connection Data Options z Any Will use the first encryption format that can be negotiated z AES z 3DES z DES z ARCFOUR z ARCTWO z AES GCM z Default Any Min Key Size The minimum key size value that wi...

Page 131: ...This is an EDH key exchange using an RSA key and certificate z EDH DSS This is an EDH key exchange using a DSA key and certificate z ADH This is an anonymous key exchange which does not require a priv...

Page 132: ...ate Data Options Maximum 128 characters Organization An entry for the organization for example Accounting This field is case sensitive in order to successfully match the information in the peer SSL TL...

Page 133: ...129 Advanced Edit Button Edits an existing IPv6 tunnel Delete Button Deletes an IPv6 tunnel If a tunnel is associated with a route it cannot be deleted until the route is either changed or deleted...

Page 134: ...nterface When the closest 6to4 router responds it will create the IPv6 tunnel encapsulating and decapsulating IPv6 traffic sent to and from the IOLAN z Teredo When enabled the Teredo protocol encapsul...

Page 135: ...authenticated When users are connecting to the IOLAN via serial ports the user database can be used to z Have the user authenticated prior to establishing a connection to a network host z Establish a...

Page 136: ...the IOLAN Functionality The Users window displays the users who have been configured You can add users edit existing users or delete users from this window You cannot delete the pre configured admin u...

Page 137: ...y You must minimally provide a User Name and Level for a user Field Descriptions Configure the following parameters User Name The name of the user Restrictions Do not use spaces Password The password...

Page 138: ...l port via the Terminal Profile The CLI commands are limited to those used for initiating a session If connection to the IOLAN is done with Telnet or SSH from the network the user will be presented wi...

Page 139: ...cated logs in successfully Within the Terminal profile there are a number of settings that apply to possible Services Once it is known which user is connected and which service is to be used then the...

Page 140: ...s subnet mask For example a subnet mask of 255 255 0 0 IPv6 Interface Indentifier Used for User Service PPP sets the IPv6 address of the remote user Enter the address in IPv6 format Field Format The...

Page 141: ...nificant performance improvement particularly when interactive applications are being used For example when the user is typing a single character can be transmitted and thus have the overhead of the f...

Page 142: ...t appears in the Menu or CLI The IOLAN supports one custom language that must be downloaded to the IOLAN Default English See Language Support for more information about Custom Languages Hotkey Prefix...

Page 143: ...option Sessions Multiple sessions can be run simultaneously to the same host or to different hosts Users can switch between different sessions and also between sessions and the IOLAN using Hotkey com...

Page 144: ...z SSH For information on the SSH connection window see SSH Settings z RLogin For information on the RLogin connection window see Rlogin Settings Default None Settings Button Click this button to conf...

Page 145: ...erial Port Access Specifies the user access rights to each IOLAN serial port device There can be multiple users connected to a particular serial device and these settings determine the rights of this...

Page 146: ...information z Advanced Configures those parameters that are applicable to specific environments You will find modem and TruePort configuration options in addition to others here See Advanced for more...

Page 147: ...143 Serial Ports Editing a Serial Port In the Serial Port Settings window click on a serial port and then click the Edit button the following window is displayed...

Page 148: ...resenting a typical application of the profile is displayed When you have selected the appropriate profile for the serial port click OK and those serial port profile configuration options will be disp...

Page 149: ...everal functions that are common to more than one profile These functions are z Hardware Configure the physical serial line parameters See Hardware Tab Field Descriptions z Email Alert Configure email...

Page 150: ...ter a custom baud rate the IOLAN will calculate the closest baud rate available to the hardware The exact baud rate calculated can be viewed in the Serial Ports statistics Range 50 230400 custom suppo...

Page 151: ...by the modem Final delay configure the time in ms between the time of character transmission and when RTS is dropped Initial delay range 0 1000 ms Final delay range 0 1000 ms Default Off Enable Inboun...

Page 152: ...local echo to be enabled in order to monitor the loopback data to determine that line contention has occurred If your application cannot handle loopback data echo suppression should be enabled Defaul...

Page 153: ...ject field of the email notification From This field can contain an email address that might identify the IOLAN name or some other value Reply To The email address to whom all replies to the email not...

Page 154: ...smitted to the network A value of zero 0 ignores this parameter Range 0 1024 bytes Default 0 Idle Time The amount of time in milliseconds that must elapse between characters before the packet is trans...

Page 155: ...imal 0 FF Default 0 EOF2 Character When enabled creates a sequence of characters that must be received to define the end of the frame if the EOF1 character is not immediately followed by the EOF2 char...

Page 156: ...this is case sensitive so keep that in mind when enabling and configuring this option Configure the following parameters Note Some combinations of cipher groups are not available on FIPS firmware vers...

Page 157: ...rtificate authority CA list file to the IOLAN Default Disabled Validation Criteria Button Click this button to create peer certificate validation criteria that must be met for a valid SSL TLS connecti...

Page 158: ...for the SSL connection Data Options z Any Will use the first encryption format that can be negotiated z AES z 3DES z DES z ARCFOUR z ARCTWO z AES GCM z Default Any Min Key Size The minimum key size v...

Page 159: ...H RSA This is an EDH key exchange using an RSA key and certificate z EDH DSS This is an EDH key exchange using a DSA key and certificate z ADH This is an anonymous key exchange which does not require...

Page 160: ...the information in the peer SSL TLS certificate Data Options Maximum 64 characters Organization Unit An entry for the unit in the organization for example Payroll This field is case sensitive in orde...

Page 161: ...ork Configure the following parameters Protocol Specify the connection method that users will use to communicate with a serial device connected to the IOLAN through the network Data Options Telnet SSH...

Page 162: ...gured number of seconds the connection will send a gratuitous ACK to the network peer thus either ensuring the connection stays active OR causing a dropped connection condition to be recognized This p...

Page 163: ...timeout Session Timeout Use this timer to forcibly close the session connection when the Session Timeout expires Default 0 seconds so the port will never timeout Range 0 4294967 seconds about 49 days...

Page 164: ...connections are terminated Range 0 127 alpha numeric characters Non printable ascii characters must be entered in this format 027 The decimal numbers within the brackets must be 3 digits long example...

Page 165: ...the client software when it is configured z TruePort Full mode This mode allows complete device control and operates as if the device was directly connected to the Workstation Server s local serial p...

Page 166: ...multiple hosts feature all TruePort clients must be running in Lite mode Default Disabled Send Name on Connect When enabled the port name will be sent to the host upon session initiation This will be...

Page 167: ...he IOLAN See Adding Editing a Multihost Entry for more information Edit Button Highlight an existing host and click the Edit button to edit a host in the list of hosts that will be receiving communica...

Page 168: ...nfigured host that the serial device will communicate to through the IOLAN Default None TCP Port Specify the TCP port that the IOLAN will use to communicate to the Primary Host Default 0 Backup Host S...

Page 169: ...led the EIA 232 signals remain inactive before and after the TruePort connection and the TruePort client will control the state of the signals during the established TruePort connection Default Enable...

Page 170: ...end the connection Range 0 4294967 seconds about 49 days Default 0 seconds so the port will never timeout Session Timeout Use this timer to forcibly close the session connection when the Session Timeo...

Page 171: ...ection to a remote modem Range 1 99 Default 45 seconds Dial Retry The number of times the IOLAN will attempt to re establish a connection with a remote modem Range 0 99 Default 2 Modem The name of the...

Page 172: ...ommunicates to a device using a specific TCP socket This is often referred to as a RAW connection Functionality The TCP Sockets profile permits a raw connection to be established in either direction m...

Page 173: ...onfigured host the IOLAN will connect to TCP Port The TCP Port that the IOLAN will use to communicate to the client Default 0 Connect to Multiple Hosts When enabled allows a serial device connected to...

Page 174: ...list of hosts that will be receiving communication from the serial device connected to the IOLAN Delete Button Click the Delete button to delete a host to the list of hosts that will be receiving comm...

Page 175: ...led Enable TCP Keepalive Enables a per connection TCP keepalive feature After the configured number of seconds the connection will send a gratuitous ACK to the network peer thus either ensuring the co...

Page 176: ...econds so the port will never timeout Range 0 4294967 seconds about 49 days Session Strings Controls the sending of ASCII strings to serial devices at session start and session termination as follows...

Page 177: ...he number of seconds the IOLAN will wait to establish a connection to a remote modem Range 1 99 Default 45 seconds Dial Retry The number of times the IOLAN will attempt to re establish a connection wi...

Page 178: ...e 0 0 0 0 z The IP address can be auto learned if both start end IP address are left blank default If the Start IP Address field is set to 255 255 255 255 and the End IP Address is left at its default...

Page 179: ...nge defined for this entry zAny Port Any UDP port will be accepted as long as the data originates from a host in the IP range defined for this entry zPort Only data originating from the UDP port confi...

Page 180: ...Address as 0 0 0 0 z 255 255 255 255 This selection is only valid in conjunction with the LAN to Serial setting It will accept all UDP packets received for this serial port regardless of the originat...

Page 181: ...LAN will listen for UDP packets on the specified port Default 1000 port number for example 10001 for serial port 1 Direction The direction in which information is received or relayed z Disabled UDP se...

Page 182: ...gured by the Listen for connections on UDP port parameter Default Auto Learn Port The UDP port to use Default 0 zero HTTP Tunnel Specify the HTTP tunnel to be used for this connection Session Strings...

Page 183: ...ile is used to access pre defined hosts on the network from the terminal Functionality This profile can be configured for users z who must be authenticated by the IOLAN first and then a connection to...

Page 184: ...AN See User Service Settings for field descriptions of the various User Service Settings Connect to Remote System When the serial port is started the IOLAN will initiate a connection to the specified...

Page 185: ...en enabled the user can lock his terminal with a password using the Hotkey Prefix default Ctrl a a l lowercase L The IOLAN prompts the user for a password and a confirmation Default Disabled Hotkey Pr...

Page 186: ...the monitor DSR or monitor DCD options are set the string will also be sent when the monitored signal is raised Range 0 127 alpha numeric characters Range hexadecimal 0 FF z Delay after Send If confi...

Page 187: ...ings The Telnet settings apply when the User Service is set to Telnet or the Terminal profile specifies a Telnet connection to a host Configure the following parameters Limit Connection to User Makes...

Page 188: ...character Typing the interrupt character interrupts the current process This value is in hexadecimal Default 3 ASCII value C Quit Defines the quit character Typing the quit character closes and exits...

Page 189: ...60 User This name is passed on to the specified host for the Rlogin session so that the user is only prompted for a password Note Some combinations of cipher groups are not available on FIPS firmware...

Page 190: ...a Options z 3DES z Blowfish Default 3DES SSH2 When enabled selects an SSH version 2 connection If both SSH 1 and SSH 2 are selected the IOLAN will attempt to make an SSH 2 connection first If that con...

Page 191: ...ere Subnet Mask The network subnet mask For example 255 255 0 0 If your user is authenticated by RADIUS and the RADIUS parameter Framed Netmask is set in the RADIUS file the IOLAN will use the value i...

Page 192: ...if the remote end is address 192 101 34 146 your local IP address can be 192 101 34 145 Do not use the IOLAN s main IP address in this field if you do so routing will not take place correctly IPv4 Re...

Page 193: ...ace Identifier must be zero therefore abcd abcd abcd abcd is the expected format ACCM Specifies the ACCM Asynchronous Control Character Map characters that should be escaped from the data stream Field...

Page 194: ...or CHAP security protocols in the Authentication field and z you wish to dedicate this line to a single remote user who will be authenticated by the IOLAN or z you are using the IOLAN as a router back...

Page 195: ...nticated by the IOLAN or z you are using the IOLAN as a router back to back with another IOLAN Remote password means the following z When PAP is specified this is the password the IOLAN will use to au...

Page 196: ...orts Microsoft s Callback Control Protocol CBCP The user is allowed 30 seconds to enter a telephone number after which the IOLAN ends the call Default Disabled Challenge Interval The interval in minut...

Page 197: ...IP address negotiation is where the IOLAN allows the remote end to specify its IP address When On the IP address specified by the remote end will be used in preference to the Remote IP Address set fo...

Page 198: ...al port to be configured to support a serial printer device that can be access by the network General Tab Field Descriptions Configure the following parameter Map CR to CR LF Defines the default end o...

Page 199: ...he IOLAN or when a kill line command is issued on this serial port If the monitor DSR or monitor DCD options are set the string will also be sent when the monitored signal is raised Range 0 127 alpha...

Page 200: ...ablished communication can go both ways A more detailed implementation of the Serial Tunneling profile is as follows The Server Tunnel will also support Telnet Com Port Control protocol as detailed in...

Page 201: ...ess of the Tunnel Server TCP Port The TCP port that the IOLAN will use to connect to the Tunnel Server Default 10000 serial port number so serial port 5 is 10005 HTTP Tunnel Specify the HTTP tunnel to...

Page 202: ...e sent to the serial device on power up of the IOLAN or when a kill line command is issued on this serial port If the monitor DSR or monitor DCD options are set the string will also be sent when the m...

Page 203: ...it can configure the modem and the issue a dial out request ATTD The IOLAN will then translate the dial request into a TCP connection and data will be begin to flow in both directions The connection...

Page 204: ...o Host Mapping Button When your modem application provides a phone number in an AT command string you can map that phone number to the destination host See Phone Number to Host Mapping for information...

Page 205: ...I signal Default Disabled RTS Signal Always On Specify this option to make the RTS signal always act as a RTS signal Default Enabled RTS Signal Acts as DCD Specify this option to make the RTS signal a...

Page 206: ...recognized This parameter needs to be used in conjunction with Monitor Connection Status Interval parameter found in the Serial Advanced Advanced Settings tab The interval specifies the inactivity per...

Page 207: ...ing window Configure the following parameters Add Button Click the Add button to display a window that allows you to configure the phone number or AT command your modem application sends and the IOLAN...

Page 208: ...sed as assigned Digital Inputs or Digital Outputs General Tab Field Descriptions The General tab displays the signal pins This window is also used to enable disable the signal pins Highlight a signal...

Page 209: ...re an inactive status will be displayed as active Default Disabled Trigger When the trigger condition is met triggers the specified alarm action Data Options z Disabled No alarm settings This is the d...

Page 210: ...and the value that caused the alarm to trigger or clear The syslog message is associated with Level Critical Default Disabled SNMP When enabled sends an SNMP trap when an alarm is triggered or cleare...

Page 211: ...Slave gateway depending on your configuration and requirements If your model supports I O see Modbus I O Access for more information on using the Modbus protocol to access I O data Functionality The M...

Page 212: ...t the Modbus Master on the Serial Port will communicate with Advanced Slave Settings Button Click this button to configure global Modbus Slave settings UID Range You can specify a range of UIDs 1 247...

Page 213: ...how long to wait in milliseconds after a character to determine the end of frame Range 10 10000 Default 30 ms Message Timeout Time to wait in milliseconds for a response message from a Modbus TCP or s...

Page 214: ...e available Add Button Adds an entry into the Modbus Destination Slave IP Settings table Edit Button Edits an entry in the Modbus Destination Slave IP Settings table Delete Button Deletes an entry fro...

Page 215: ...xample 10 10 10 1 10 10 10 2 10 10 10 3 etc you can specify a UID range not supported with IPv6 addresses and the IOLAN will automatically increment the last digit of the configured IP address Therefo...

Page 216: ...lt TCP UDP TCP Port The destination port of the remote Modbus TCP Slave that the IOLAN will connect to Range 0 65535 Default 502 TCP UDP Port The network port number that the Slave Gateway will listen...

Page 217: ...e device This feature supersedes the Broadcast feature Default Disabled Remap UID Specify the UID that will be inserted into the message header for the Slave Modbus serial device Range 1 247 Default 1...

Page 218: ...t profile configures a serial port to communicate with a Remote Power Switch s RPS administration port This allows network access to the RPS and permits access to statistics and control of the RPS s p...

Page 219: ...lay can be used to provide the serial device with time to process the string before the session is initiated or terminated Default 10 ms Name Specify a name for the plug to make it easier to recognize...

Page 220: ...his plug will be cycled in an attempt to recover the host Default None Ping z Interval Specify the frequency in minutes at which the configured host will be PING ed Default 15 minutes z Timeout Specif...

Page 221: ...l This gives system administrators the time to take appropriate action Default Disabled z Delay Specify a delay in minutes before cycling the power on the plug Default 5 Minutes Send Notification Spec...

Page 222: ...nt to use a secrets file you must download the secrets file to the IOLAN for CHAP or PAP authentication the files must be downloaded to the IOLAN using the names chap secrets and pap secrets respectiv...

Page 223: ...RADIUS file the IOLAN will use the value in the RADIUS file in preference to the value configured here The exception to this rule is a Framed Address value in the RADIUS file of 255 255 255 254 this...

Page 224: ...e same network or subnetwork as the IOLAN If you enable Negotiate IP Address Automatically the IOLAN will ignore the remote IP address value you enter here and will allow the remote end to specify its...

Page 225: ...be refused Data Options None no authentication will be performed PAP is a one time challenge of a client device requiring that it respond with a valid username and password A timer operates during wh...

Page 226: ...ingle remote user who will be authenticated by the IOLAN or z you are using the IOLAN as a router back to back with another IOLAN Password means the following z When PAP is specified this is the passw...

Page 227: ...expires before the remote end has been authenticated successfully the link will be terminated Range 1 255 Default 1 minute CHAP Challenge Interval The interval in minutes for which the IOLAN will iss...

Page 228: ...escaped The bits are specified as the most significant bit first and are numbered 31 0 Thus if bit 17 is set the 17th character should be escaped that is 0x11 XON The value 000a0000 will cause the con...

Page 229: ...lt 30 seconds Echo Request Retries The maximum number of times an echo request packet will be re sent before the link is terminated Range 0 255 Default 3 Configure NAK Retries The maximum number of ti...

Page 230: ...u want the modem to dial a number when the serial port is started enable this parameter Default Disabled Dial In Out Enable this option when you want the serial port to do either of the following z ac...

Page 231: ...and is issued on this serial port If the monitor DSR or monitor DCD options are set the string will also be sent when the monitored signal is raised Range 0 127 alpha numeric characters Range hexadeci...

Page 232: ...01 34 145 Do not use the IOLAN s main IP address in this field if you do so routing will not take place correctly Remote IP Address The IPv4 address of the remote end of the SLIP link Choose an addres...

Page 233: ...the following options z None Disables RIP over the SLIP interface z Send Sends RIP over the SLIP interface z Listen Listens for RIP over the SLIP interface z Send and Listen Sends RIP and listens for...

Page 234: ...t If the device is remote and will be dialing in via modem or ISDN TA enable this parameter Default Disabled Dial In If the device is remote and will be dialing in via modem or ISDN TA enable this par...

Page 235: ...also specify the program executable and any parameters you want to pass to the program in the Command Line field The custom application is automatically run when the serial port is started General Tab...

Page 236: ...and is issued on this serial port If the monitor DSR or monitor DCD options are set the string will also be sent when the monitored signal is raised Range 0 127 alpha numeric characters Range hexadeci...

Page 237: ...Local port buffering is limited to 256Kb and will be flushed after the IOLAN reboots To view the local port buffer for a particular serial port you must 1 Connect to the device on that serial port by...

Page 238: ...ension to indicate data encrypted files or DAT for unencrypted files If the data is encrypted the Decoder utility application must be run on the NFS server to convert the encrypted data to a readable...

Page 239: ...ote port log files Default device_server portlogs Encrypt Data Determines if the data sent to the NFS host is sent encrypted or in the clear across the LAN NOTE When NFS encryption is enabled the Deco...

Page 240: ...ial port device across a network with get a connection socket refused until z All data from previous connections on that serial port has drained z There are no other connections z Up to a 1 second int...

Page 241: ...in angle brackets for example ESC b is 027 b Default menu Session Escape String When a user connects to the IOLAN through the network the string is used to access the Reverse Session Menu Data Option...

Page 242: ...Modems are usually configured for PPP SLIP dial in out connections although some modems do support raw data communication When you click on the Modems tab you will see the following If any modems hav...

Page 243: ...aud rates that the IOLAN is capable of achieving the baud rate can be mapped to a different value on the IOLAN Through TruePort you can map the baud rate of the host COM port to a higher baud rate for...

Page 244: ...the concept of creating sessions for a user see Sessions Tab for more information Authentication ensures that the user is defined within the authentication database with the exception of using the Gu...

Page 245: ...s in combination For example you can specify the Primary Authentication Method as Local and the Secondary Authentication Method as RADIUS Therefore some users can be defined in the IOLAN Local others...

Page 246: ...e Guest Password in again to verify that it is correct Enable Login Once When this option is selected only one user with the same username can be signed in at one time Should the same user with the sa...

Page 247: ...the secondary RADIUS authentication host should the first RADIUS host fail to respond Default None Secret The secret password shared between the IOLAN and the RADIUS authentication host Authentication...

Page 248: ...in seconds that the IOLAN waits to receive a reply after sending out a request to a RADIUS accounting or authentication host If no reply is received before the timeout period expires the IOLAN will r...

Page 249: ...abled Use the following NAS IPv6 Address When enabled the IOLAN will send the specified IPv6 address to the RADIUS server Default Disabled IPv6 Address The IPv6 address that the IOLAN will send to the...

Page 250: ...need to be configured to use this feature Field Descriptions Host Name The name or IP address of the LDAP Microsoft Active Directory host If you use a host name that host must either have been defined...

Page 251: ...st Checking this parameter will cause the IOLAN to encrypt the password using MD5 digest before sending it to server If this option is not checked the password is sent to the server in the clear Defau...

Page 252: ...should the primary TACACS host fail to respond Default None Authentication Authorization Port The port number that TACACS listens to for authentication requests Default 49 Authentication Authorizatio...

Page 253: ...y alphanumeric string Each shared secret must be configured on both client and server sides Use Alternate Service Names The TACACS service name for Telnet or SSH is normally raccess The service name f...

Page 254: ...egacy If you are running SecurID 3 x or 4 x you need to run in Legacy Mode If you are running SecurID 5 x or above do not select Legacy Mode Default Disabled NIS Domain The NIS domain name Primary NIS...

Page 255: ...IOLAN Using SSH This scenario applies to serial ports configured for Console Management using the SSH protocol In the following example users are connecting to the IOLAN via SSH from the LAN Therefor...

Page 256: ...rough the IOLAN All the SSH negotiation is being done between the IOLAN and the target servers therefore the following keys need to be exchanged z Download the SSH Host Public Key to the IOLAN for eac...

Page 257: ...efault Enabled DSA When a client SSH session requests DSA authentication the IOLAN s SSH server will authenticate the user via DSA Default Enabled Keyboard Interactive The user types in a password for...

Page 258: ...S CBC encryption is enabled disabled Default Enabled AES CTR The IOLAN SSH server s AES CTR encryption is enabled disabled Default Enabled AES GCM The IOLAN SSH server s AES GCM encryption is enabled...

Page 259: ...Certificate Enable this option when you want the Validation Criteria to match the Peer Certificate for authentication to pass If you enable this option you need to download an SSL TLS certificate auth...

Page 260: ...lable on the Cipher Suite window Note Some combinations of cipher groups may not be available on some firmware versions Add Button Adds a cipher to the cipher list Edit Button Edits a cipher in the ci...

Page 261: ...n Data Options z Any Will use the first encryption format that can be negotiated z AES z 3DES z DES z ARCFOUR z ARCTWO z AES GCM z Default Any Min Key Size The minimum key size value that will be used...

Page 262: ...A This is an EDH key exchange using an RSA key and certificate z EDH DSS This is an EDH key exchange using a DSA key and certificate z ADH This is an anonymous key exchange which does not require a pr...

Page 263: ...mation in the peer SSL TLS certificate Data Options Maximum 128 characters Organization An entry for the organization for example Accounting This field is case sensitive in order to successfully match...

Page 264: ...er client perfect forward secrecy no protocol ESP mode tunnel not transport opportunistic encryption no aggressive mode no IKE Phase 1 Proposals The following IKE Phase 1 proposals are supported by th...

Page 265: ...dd Button Click this button to add a new IPsec VPN tunnel Edit Button Select an existing IPsec VPN tunnel to edit the tunnel s parameters Delete Button Select an existing IPsec VPN tunnel to remove th...

Page 266: ...a Options z Shared Secret A text based secret that is used to authenticate the IPsec tunnel case sensitive This applies to all VPN tunnels IPsec and L2TP IPsec z RSA Signature RSA signatures are used...

Page 267: ...ld Format IPv4 address IPv6 address FQDN defaultroute Local External IP Address When NAT Traversal NAT_T is enabled this is IOLAN s external IP address or FQDN When the IOLAN is behind a NAT router th...

Page 268: ...bnet mask of the remote IPv4 network Keep the default value when you are configuring a host to host VPN connection Default 255 255 255 255 Remote IPv6 Prefix Bits The prefix bits of the remote IPv6 ne...

Page 269: ...Locality An entry for the location for example Chicago This field is case sensitive in order to successfully match the information in the remote X 509 certificate Data Options Maximum 128 characters...

Page 270: ...entry for an email address for example acct anycompany com This field is case sensitive in order to successfully match the information in the remote X 509 certificate Data Options Maximum 64 character...

Page 271: ...nsitive This applies to all VPN tunnels IPsec and L2TP IPsec X 509 Certificate Specify the remote X 509 certificate validation criteria that must match for successful authentication case sensitive Not...

Page 272: ...n Highlight an Exception List entry and click the Delete button to remove the entry from the list IP Address The IP address of the host that will communicate with the IOLAN outside of the VPN tunnel F...

Page 273: ...scription Configure the following parameter Use NAT Traversal NAT_T NAT Traversal should be enabled when the IOLAN is communicating through a router gateway to a remote VPN that also has NAT Traversal...

Page 274: ...more information on setup requirements for these scenarios Functionality The information in this section applies only to setting up HTTP tunnels A minimum of two IOLAN s must be configured to create a...

Page 275: ...sts from this IP address Shared Secret If a secret is defined then both sides of the tunnel must set the same secret A secret is used to ensure that the Tunnel is being established with the correct pe...

Page 276: ...be used by the Terminal Server to authenticate with the proxy server if authentication is required by the proxy server Password The password which will be used by the Terminal Server to authenticate...

Page 277: ...ves for HTTP connections Keepalives are used to prevent idle connections from closing In most cases this value does not need to be changed Default 30 seconds Maximum Connection Age The maximum amount...

Page 278: ...e HTTP tunnel to use for this connection Destination The address of an external host on the peer IOLAN s LAN If the destination is a serial port on the Peer IOLAN or the peer IOLAN itself select Same...

Page 279: ...ocal TCP port If not en tered the IP address of the IOLAN is used Limited access to attached serial devices only Allow only attached serial devices to connect to this destination Add button Acts like...

Page 280: ...bling daemons can also be used as an added security method for accessing the IOLAN By default all daemon and client applications are enabled except IPsec and running on the IOLAN Field Descriptions En...

Page 281: ...ey and certificate to the IOLAN You also need to set the SSL Passphrase parameter with the same password that was used to generate the key See Keys and Certificates for more information SSH Server SSH...

Page 282: ...ct the key or certificate that you want to download to the IOLAN or upload the Management Module s SSH Public Key Data Options z Upload Server SSH Public Key used for SSH management access z Download...

Page 283: ...er Private Key SSH Host Public Key z DSA Server SSH Public Key SSH User Public Key SSH User Private Key SSH Host Public Key User Name v The name of the user for whom you are downloading the SSH User P...

Page 284: ...OLAN Technical Specifications Digital I O z 2 or 4 channels depending on model z software selectable as inputs or outputs z optical isolation of 2000V rms Digital Input z Dry Contact Logic 0 open Logi...

Page 285: ...ings See Advanced Slave Modbus Settings on page 282 for field descriptions Allow Modbus TCP Application API Allows a host running a Modbus TCP application to communicate to the I O channels using the...

Page 286: ...e IOLAN will listen to for I O channel data requests from TruePort Default 33816 Allow I O Access via API through TruePort Allows serial application access to the I O over the network using the TruePo...

Page 287: ...ault Enabled Remapped Used for single device port operation Older Modbus devices may not include a UID in their transmission header When this option is selected you can specify the UID that will be in...

Page 288: ...ides a per channel or per serial signal output pin trigger mechanism that is activated when there are no TCP sessions for the specified amount of time Field Descriptions Configure the following parame...

Page 289: ...o accommodate network traffic and monitoring PC application requirements For details of the UDP I O datagram see I O UDP on page 309 Field Descriptions Configure the following parameters Enable UDP Br...

Page 290: ...e of IP addresses for IPV4 or IPV6 that the IOLAN will listen for messages from and or send messages to Field Format IPv4 or IPv6 address End IP Address The last host IP address in the range of IP add...

Page 291: ...ure tab configures the temperature scale settings for T4 models Field Descriptions Configure the following parameter Temperature Scale Select the temperature scale that will be used to display tempera...

Page 292: ...le in an industrial freezer warehouse the IOLAN A4R2 is used to monitor humidity transducers which are in place to help prevent freezer burn If the humidity reaches a certain percentage monitored by a...

Page 293: ...tage Default Current Range Select the range for the measurement type Data Options z Current 0 20 mA 4 20 mA z Voltage 10V 5V 1V 500mV 150mV Default Current is 0 20 mA Voltage is 10V Alarm Settings But...

Page 294: ...ve or active to inactive z You can choose to invert the signal which is useful if your sensor is wired in such a way that closed is actually inactive whereas closed is normally considered active z You...

Page 295: ...bers the activity transition active to inactive or inactive to active Data Options None Inactive to Active Active to Inactive Default None Invert Signal When enabled inverts the actual condition of th...

Page 296: ...gs when an alarm is triggered or cleared The email alert data includes the severity level and the value that caused the alarm to trigger or clear The Email Alert is associated with Level Critical Defa...

Page 297: ...igital output will either pulse you get to specify the active and inactive pulse times continuously or for a specified number of pulse counts z You can choose to manually activate deactivate the Digit...

Page 298: ...ill be grounded when active z Source Specifies that the channel will provide voltage when active z Sink and Source Specifies that channel will be grounded when it is inactive and will provide voltage...

Page 299: ...g pulse mode Range 1 9999 x 100 ms Default 1 100 ms Active Signal Width How long the channel will be active during the pulse mode Range 1 9999 x 100 ms Default 1 100 ms Delay When a deactivate command...

Page 300: ...output and then specify a delay before the output goes from inactive to active or active to inactive z You can also specify a failsafe action that can either active or inactivate the Relay output when...

Page 301: ...the specified time interval after it is manually started z Active to Inactive Delay The channel output will go inactive after the specified time interval after it is manually started Default Manual P...

Page 302: ...te IOLAN relay channel and the door open close is logged by an application on a remote host Active Signal Width How long the channel will be active during the pulse mode Range 1 9999 x 100 ms Default...

Page 303: ...at from input channel to output channel application consists of 20 bytes per status 10 bytes are currently used and 10 are being reserved for future use z Message type 1 Byte z 0 Digital input status...

Page 304: ...TLS parameters not available when Local connection is configured see SSL TLS Settings Tab Field Descriptions on page 152 Configure the following parameters Enable I O extension When enabled the digit...

Page 305: ...host functionality Local connection When this option is enabled the input or output depending on how the channel or serial signal pin is configured will be associated with another local IOLAN I O cha...

Page 306: ...ist of hosts that will be receiving communication from the I O channel or serial signal pin Define a primary host and backup When this option is enabled you need to define a primary host that the I O...

Page 307: ...303 Channels TCP Port Specify the TCP port that the I O channel or serial signal pin will use to communicate to the Host Default 0...

Page 308: ...perature sensors with an alarm set to send a syslog message if the temperature rises above 31o C z Pt100 a 385 50 to 150C z Pt100 a 392 50 to 150C z Pt1000 a 385 40 to 160C z Pt100 a 385 0 to 100C z P...

Page 309: ...Pt100 a 385 200 to 200C Pt100 a 392 50 to 150C Pt100 a 392 0 to 100C Pt100 a 392 0 to 200C Pt100 a 392 0 to 400C Pt100 a 392 200 to 200C Pt1000 a 385 40 to 160C NiFe604 a 518 80 to 100C NiFe604 a 518...

Page 310: ...severity alarm levels Configure the following parameters Trigger alarm when input value is Specify the value that will trigger an alarm the measurement is based on the Type and Range that you specify...

Page 311: ...ops below the specified Trigger value other severity level trigger values must decrease in value with each subsequent level If the Trigger Type is High an alarm is triggered when the input is higher t...

Page 312: ...ype is Low Email When enabled sends an email alert to an email account s set up in the System settings when an alarm is triggered or cleared The email alert data includes the severity level and the va...

Page 313: ...ctions is comprised of its own subset of bytes z Version The current version of the format of I O UDP broadcast packet z Total Packet Length The total length of the UDP packet z Analog Section The Ana...

Page 314: ...l Data 18 bytes 3 Analog channels The following values make up the Analog Channel Data for each enabled Analog channel z curRawValue The current raw value received by the channel z minRawValue The min...

Page 315: ...he Serial Pin Signal Data this value will always be 2 Bytes z Pin Enabled This based upon the configuration of the signal pins on the serial port When the serial port profile is set to Control I O and...

Page 316: ...ct to the IOLAN to access I O Modbus Serial Application Connected to the Serial Port Your Modbus serial application can be connected right to the IOLAN serial port to access I O Modbus Serial Applicat...

Page 317: ...z 05 write coil z 06 write single register z 08 diagnostics echo the request z 15 force multiple coils z 16 write multiple registers There are four Modbus data models All coil register values are in...

Page 318: ...d to reset a latched alarm state A write of any value will clear the alarm latch for the specific Analog input z MB_REG_HR_AI_CLEAR_MAX Used to reset the Analog input maximum value reached A write of...

Page 319: ..._REG_DO_DTR The status of DTR output signal 1 is Active 0 is Inactive z MB_REG_DO_RTS The status of RTS output signal 1 is Active 0 is Inactive This section contains descriptions of serial port holdin...

Page 320: ...6150 R W MB_REG_HR_DO_SENSOR_PULSE_ISW 6213 6214 R W MB_REG_HR_DO_SENSOR_PULSE_ASW 6277 6278 R W MB_REG_HR_DO_SENSOR_PULSE_COUNT 6341 6342 R W MB_REG_HR_AI_CLEAR_ALARM_LATCH 2049 2050 2051 2052 W MB_R...

Page 321: ..._SENSOR 6657 6658 6659 6660 R W Holding Registers MB_REG_HR_DI_SENSOR_LATCH 6145 6146 6147 6148 R W MB_REG_HR_DO_SENSOR_PULSE_ISW 6209 6210 6211 6212 R W MB_REG_HR_DO_SENSOR_PULSE_ASW 6273 6274 6275 6...

Page 322: ...ial connection to communicate with the IOLAN over the network to access I O data You also have the option of enabling SSL as a security option to encrypt the data that is communicated between the IOLA...

Page 323: ...You also have the option of enabling SSL as a security option to encrypt the data that is communicated between the IOLAN and the host machine SSL TLS must be configured in the Server settings and on t...

Page 324: ...back the application TruePort will create a COM port to which the application can write commands to and read responses from Since all communications are done via this COM port the application need on...

Page 325: ...4D2 A4R2 Registers on page 316 D4 D4 D2R2 Registers on page 317 D2 R2 D4 D2R2 Registers on page 317 Note Numeric values provided in the API documentation are in Hexadecimal Hex format Byte s of Bytes...

Page 326: ...se 0x04 0x06 0x10 0x03 0x0F 0x30 0x10 0x20 Current 0x1003 Minimum 0x0F30 and Maximum 0x1020 Set Commands The following tables show the general structure to be used for set commands Command Format Note...

Page 327: ...Value 1 1 Command code from request 2 2 Starting register number see A4 T4 Registers on page 315 A4D2 A4R2 Registers on page 316 or D4 D2R2 Registers on page 317 for this value from request 4 2 Number...

Page 328: ...ger 3 IO_DI_ALARM_SERIAL_DCD Trap for the Digital input DCD serial pin Trigger 4 IO_DI_ALARM_SERIAL_CTS Trap for the Digital input CTS serial pin Trigger 5 IO_AI_ALARM_LEVEL1 Trap for Analog input Ala...

Page 329: ...ttings allow you to configure the option card slot for the specific card being installed in the unit IOLAN Functionality In order to activate the option card you must install the card into the PCI slo...

Page 330: ...OLAN will be directly accessible via that IP address If a dynamic public IP address has been assigned you may access your IOLAN with the assistance of a dynamic DNS service provider These service prov...

Page 331: ...access their network See the internet provider documentation for more information User Name Specify the name required by your internet provider to access their network Password Specify the password re...

Page 332: ...that IP address If a dynamic public IP address has been assigned you may access your IOLAN with the assistance of a dynamic DNS service provider These service providers provide a method of accessing y...

Page 333: ...to communicate with its wireless provider See Remote Access PPP Profile for information on how to configure PPP PIN If you have locked your SIM using a PIN you must enter this PIN here in order to all...

Page 334: ...e the second Ethernet interface on the unit All configuration parameters related to Interface 2 will now apply to the fiber card If the options card configuration is changed to None or the card is rem...

Page 335: ...privileges the WebManager will first be displayed with an option to proceed to EasyPort Web The Clustering Slave List window displays the slave IOLAN entries and the number of ports on those slave IOL...

Page 336: ...Field Format IPv4 Number of Ports Specify the number of ports in the Slave IOLAN that you are adding to the clustering group Data Options 1 2 4 8 18 24 36 48 Default 1 Starting Slave TCP Port Specify...

Page 337: ...o configure the individual serial port settings If you click the Retrieve Port Names button the DeviceManager will connect to the clustering slave IOLAN and download all the serial port names you can...

Page 338: ...guring Range 1 99999 Master TCP Port Specify the TCP port number you want to map to the Slave IOLAN TCP Port User s will use this TCP port number to access the Slave IOLAN s port Default 1024 and then...

Page 339: ...le for the hardware Functionality Email notification requires an SMTP host that is accessible by the IOLAN to process the email messages sent by the IOLAN When you enable email notification at the Ser...

Page 340: ...otification Subject A text string which can contain spaces that will display in the Subject field of the email notification From This field can contain an email address that might identify the IOLAN n...

Page 341: ...und to be valid the communication with the email server will be terminated No authentication will take place and the email message will not be forwarded to the email server If this option is not check...

Page 342: ...enabled by default it is enabled for these settings to work Primary Host The first preconfigured host that the IOLAN will attempt to send system log messages to messages will be displayed on the host...

Page 343: ...s MIB found on the CD ROM packaged with the IOLAN file into your SNMP manager before you connect to the IOLAN SNMP Tab Field Descriptions Configure the following parameters Note Ensure that the SNMP s...

Page 344: ...urity is used z Auth User authentication is used z Auth Priv User authentication and privacy encryption settings are used Default None V3 Read Write Auth Algorithm Specify the authentication algorithm...

Page 345: ...onfirm Password Retype the user s authentication password V3 Read Only Privacy Algorithm Specify the read only user s privacy algorithm encryption Data Options DES AES Default DES V3 Read Only Privacy...

Page 346: ...traps Same user name is used for all traps sent by this system V3 Trap Security Level Select the security level for the V3 traps This must match the configuration set up in the SNMP manager Data Optio...

Page 347: ...Eastern Standard Time GMT 5 00 the IOLAN s time is actually three hours ahead of your PC s time Therefore if you set the IOLAN s time to 2 30 pm in the DeviceManager the IOLAN s actual internal clock...

Page 348: ...1 4 Default 4 Enable Authentication Sets NTP SNTP server authentication on or off Default Off Key ID Specify the key id associated with this host This key must exist in the ntp sntp symmetric key fil...

Page 349: ...ature will not work Field Format Maximum 4 characters and minimum 3 characters do not use angled brackets Summer Time Offset The offset from standard time in minutes Valid values are 0 to 180 Range 0...

Page 350: ...g the Custom App Plugin profile for the serial port The system level custom application or plugin will begin execution immediately following the system startup It runs on the context of the whole syst...

Page 351: ...prompt For security reasons you can turn off the display of this information Default Disabled Use Custom Login Prompt When set and a custom language file is in use the login prompt and password prompt...

Page 352: ...through a firewall on port 8080 using EasyPort Web To end and close a Telnet session type CTRL then type quit To end and close a SSH session on a new line type period Disable Caching When this option...

Page 353: ...file name in the Filename field to access it as the message of the day no SFTP FTP Host parameter is required when the file is internal Configure the following parameters Configuration File The path...

Page 354: ...allows it Therefore if a very large file is being transferred and is interrupted the entire file is not resent just the part of the file that was not received Retry The number of times the IOLAN will...

Page 355: ...server using the Name field If Keyboard Interactive is checked the IOLAN will also send the configured Password field Default Disabled Name Enter the user name that will be used to automatically log i...

Page 356: ...LAN Authentication Keyboard Interactive Allow Keyboard Interactive to be used as the method of authenticating the IOLAN Baud Rate x Specifies the baud rate of the line connected to the dedicated conso...

Page 357: ...d for the Power Management profile you will be able to control the RPS s power plugs either universally or individually power on off the whole RPS or individual plugs Field Descriptions The following...

Page 358: ...reboot is performed or a kill line is issued on this port Waiting reboot Monitored host has not responded to all PING retries It is now marked as needing a reboot and is executing the delay before reb...

Page 359: ...Button Turns the selected plug off and then on Monitor Host If host monitoring has been enabled on this plug these buttons control the state of the feature as follows On Button Enables the host monit...

Page 360: ...The following buttons are available Power Plug Status This Power Plug Status window displays the status of all the plugs associated with a serial port Click OK to close this window On Button Turns th...

Page 361: ...ton Clears the alarm Note that if the condition that tripped the alarm still exists the alarm will not look like it s cleared but will reflect the appropriate alarm level severity Alarm Level 0 means...

Page 362: ...nnels When you start the IPsec tunnels the Boot Action configured for each IPsec tunnel is what determines its state The following buttons are available Start Button Starts all IPsec VPN tunnels Stop...

Page 363: ...in order to connect Profiles without a matching AP and disabled profiles will not be on this list Note Open WEP Shared WEP or 802 1x WEP security will be matched as equivalent SSID The configured net...

Page 364: ...Ad Hoc networks Security Displays the security type used for this connection between the IOLAN and the AP Start WPS The IOLAN will scan 120 seconds all networks to find the closest AP that is current...

Page 365: ...e that you can save the file as either a dme or a txt file Either file format can be imported into the DeviceManager and downloaded to the IOLAN in the future The dme is a binary file and the txt file...

Page 366: ...s button 4 Reboot the IOLAN z In WebManager 1 In the navigation tree select the Administration option 2 In the configuration area click the Backup Restore button 3 Select the tab corresponding to the...

Page 367: ...k Add to add the IOLAN to the download list You can also click on the IOLAN entry and edit any information and then click Update to make the edits permanent IP Address Enter the IP address of the IOLA...

Page 368: ...f the IOLAN gets reset to its factory defaults it will be reset to defaults that the Administrator specified There are two ways you can set the custom factory default configuration z Download a file t...

Page 369: ...calibrate the I O channel s by selecting Tools I O Channels Calibrate In WebManager you calibrate the I O channel s by selecting I O Channels Calibrate Calibrating Analog Input To calibrate an Analog...

Page 370: ...nd maximum range value to the channel in either mV or Ohms for example to calibrate for thermocouple J 0 to 760C you will be prompted to first apply 80mV and then 80mV to the channel Also you cannot a...

Page 371: ...ation Click Yes to proceed with calibration You are now prompted to apply 0 mA to the positive and negative terminals Once that is done click Yes to proceed You are now prompted to apply 20 mA to the...

Page 372: ...e the following parameters Rebooting the IOLAN When you download any file configuration keys certificates firmware etc to the IOLAN you must reboot the IOLAN for it to take effect by selecting Tools R...

Page 373: ...ive method French and German language files are provided on the supplemental CD To load one of the supplied languages into the IOLAN so the Menu or CLI fields appear in another language do the followi...

Page 374: ...s supplied on the supplemental diskette CD might also have been updated We will endeavour to provide a list of those changes in another text file on the same supplemental CD If you are already using o...

Page 375: ...efinition file that is being downloaded to the IOLAN 5 In the Terminal profile select the Terminal Type Termx that you custom defined Creating Terminal Definition Files To create new terminal definiti...

Page 376: ...0 character limit On some versions of UNIX some of the capabilities are appended with a millisecond delay of the form n These are ignored by the IOLAN and can be left out The acsc capability if define...

Page 377: ...Password If the admin user password is lost there are only two possible ways to recover it z reset the IOLAN to the factory defaults z have another user that has Admin level rights if one is already c...

Page 378: ...l port that is connected to the serial Modbus Master to the Modbus Gateway profile 2 In the Modbus Gateway profile on the General tab set the Mode to Modbus Master 3 Still on the General tab click the...

Page 379: ...ts as a Slave Gateway when the Modbus Master resides on the TCP Ethernet network and the Modbus Slaves are connected to the serial ports on the IOLAN Note The IOLAN provides a single gateway to the ne...

Page 380: ...le the Modbus Master parameter 3 Click the Destination Slave IP Mappings button and click the Add button in the Destination Slave IP Mappings window 4 Configure the Destination Slave IP Mappings windo...

Page 381: ...serial ports because they all must be configured to communicate through the one Slave Gateway To configure the Modbus Gateway on serial port 1 do the following 1 Select the Modbus Gateway profile for...

Page 382: ...you just added Enter the Phone number that the modem will be calling 4 Still on the Advanced tab set the Idle Timeout parameter to a value that is not zero setting this value to zero creates a perman...

Page 383: ...LPD and RCP protocols as well as print handling software using TCP IP Remote Printing Using LPD When setting up a serial line that access a printer using LPD do the following 1 Set the serial port to...

Page 384: ...ne_name or rcp filename IOLAN_Name line_name where is the IOLAN serial port number Remote Printing Using Host Based Print Handling Software Printers connected to the IOLAN can be accessed by TCP IP ho...

Page 385: ...ow to configure an IPsec tunnel between serial devices connected to the IOLAN and a host network NAT Traversal NAT_T is enabled in this example on both sides because the VPN tunnel is going private ne...

Page 386: ...382 Configuring a Virtual Private Network...

Page 387: ...gZqLzjxu9 XJIA2SAGV LL3epPqW2fV5ORxVrf7uWn7I5FQ Note that the pound sign indicates a comment line and all characters in that line are ignored The key value itself should not have an carriage returns 3...

Page 388: ...VPN tunnel since they are included in the network configuration as part of the 172 16 45 0 subnetwork 1 Configure the IPsec tunnel in the IOLAN 2 Click the Remote Validation Criteria button and enable...

Page 389: ...c connections 4 Enable the IPsec service found in Security Services Host to Host The following example shows how to configure two IOLANs to work as VPN gateways for a host to host IPsec tunnel NAT Tra...

Page 390: ...herefore subject to change any is entered for the Remote IP Address to indicate that it will accept a VPN connection from any host network this is necessary because the Left IOLAN VPN gateway is DHCP...

Page 391: ...ublic network Configure the IPsec tunnel in the IOLAN The Remote IP Address field is set to any to allow any VPN client to communicate in the IPsec tunnel that can validate the Secret Also the Remote...

Page 392: ...need to initiate the HTTP tunnel connection For more HTTP tunneling configuration parameters see HTTP Tunneling Configure a connect to HTTP tunnel on IOLAN 1 Note When HTTP tunneling is used TCP and U...

Page 393: ...configuration select serial ports and configure for Terminal profile Check HTTPS for se cure tunnel connection This must match config uration IOLAN 1 Match name on IOLAN 1 Protocol Telnet Select tunn...

Page 394: ...to an IP host 100 10 60 3 connection via an HTTP tunnel Because IOLAN 1 is behind the firewall it will need to initiate the tunnel connection to IOLAN 2 At the application level the serial device will...

Page 395: ...Tunnels Configure a connect to HTTP tunnel on IOLAN 1 Configure a Listen for connection HTTP tunnel on IOLAN 2 Add The IP host to the host table on IOLAN 2 IP address of IOLAN 2 Match name on IOLAN 2...

Page 396: ...o Host The following example will demonstrate how to setup an IP Host 10 10 100 2 to an IP Host 100 10 50 60 connection via an HTTP tunnel In this example the hosts are doing a TFTP transfer which use...

Page 397: ...ing HTTP Tunnels Configure a connect to HTTP tunnel on IOLAN 1 10 10 50 2 100 10 50 1 IOLAN 1 IOLAN 2 HTTP Tunnel Data 100 10 50 60 TFTP Server TFTP Client 10 10 100 2 IP address of IOLAN 2 Match name...

Page 398: ...On IOLAN 1 under HTTP Tunnel add a Tunnel destination The setup for HTTP Tunnel Host to Host is now complete Match name on IOLAN 1 Local Port number for TFTP packets Destination Port number for TFTP p...

Page 399: ...ch is not behind a firewall is required Because IOLAN 1 and IOLAN 3 are both behind a firewall each will need to initiate a connection to IOLAN2 who is in the open For more HTTP tunneling configuratio...

Page 400: ...396 Configuring HTTP Tunnels Configure a Listen for connection HTTP tunnel on IOLAN 2 Configure a second Listen for connection to IOLAN Match name on IOLAN 1 Match name on IOLAN 3...

Page 401: ...AN 1 under HTTP Tunnel add a Tunnel destination IP address of IOLAN 2 Match name on IOLAN 2 This is the port num ber the telnet client will use Destination port num ber to be used by IOLAN 1 for commu...

Page 402: ...he setup for HTTP Tunnel Relay is now complete Local port number to be used by IOLAN 2 for communications Destination port set to 23 for Telnet protocol Select tunnel2 Select TCP IP address of final d...

Page 403: ...he IOLAN parameters if the user has also been set up as a local user in the IOLAN and the Default User s parameters for any parameters that have not been set by either RADIUS or the user s local confi...

Page 404: ...Service Type is set to Framed or Callback Framed Supported values are z 1 PPP z 2 SLIP 8 Framed IP Address Response The IP Address to be assigned to this user for PPP or SLIP 9 Framed IP Netmask Resp...

Page 405: ...e Line Access Rights for port n where n is the line number Name Perle Line Access Port n Type 100 n Data Type Integer Value Disabled 0 ReadWrite 1 ReadInput 2 ReadInputWrite 3 ReadOutput 4 ReadOutputW...

Page 406: ...EVSESS xx where xx is the serial port being accesses otherwise 00 for a ILOAN management session For Device manager sessions DEVMGR For HTTP sessions HTTP 95 NAS IPv6 Address Response The IPv6 address...

Page 407: ...ack NAS prompt Equivalent to IOLAN User Service DSPrompt z 6 Administrative User z 11 Callback Administrative User Equivalent to IOLAN User Service DSPrompt and the User gets Admin privileges 14 Login...

Page 408: ...ns a type of Virtual 5 will be sent For a PPP connection type a type of Async 0 will be sent For all direct connect service types a type of Async 0 will be sent 77 Connect Info For reverse telnet reve...

Page 409: ...amed Compression VJ Compression field under either SLIP or PPP Framed MTU MTU field under SLIP MRU field under PPP Idle Timeout Idle Timeout under the serial port Advanced settings Login Service Corre...

Page 410: ...TE Perle Line Access Port 3 103 integer Perle ATTRIBUTE Perle Line Access Port 4 104 integer Perle ATTRIBUTE Perle Line Access Port 5 105 integer Perle ATTRIBUTE Perle Line Access Port 6 106 integer P...

Page 411: ...Clustered Port Access Disabled 0 VALUE Perle Clustered Port Access Enabled 1 Perle User Level Values VALUE Perle User Level Admin 1 VALUE Perle User Level Normal 2 VALUE Perle User Level Restricted 3...

Page 412: ...t up as a local user in the IOLAN and the Default User s parameters for any parameters that have not been set by either TACACS or the User s local configuration User and Serial Port parameters can be...

Page 413: ...rvice ppp routing addr port ppp vj slot compression callback dialstring true Send and Listen false None IPv4 or IPv6 address TCP port number true or false phone number no punctuation Settings when Per...

Page 414: ...l x 4 7 Restricted x 0 3 Menu timeout x x session timeout in seconds idletime x x Idle timeout in seconds Perle_User_Service x x 0 Telnet x 1 Rlogin x 2 TCP_Clear x 3 SLIP x 4 PPP x 5 SSH x 6 SSL_RAW...

Page 415: ...TACACS server in response to an authentication request for Reverse Users The TACACS service needs to be set to EXEC raccess or just raccess on the well known port Name Value s Description priv lvl 12...

Page 416: ...d Output Write x 6 Read Output Input x 7 Read Output Write timeout x x session timeout in seconds idletime x x Idle timeout in seconds Perle_Clustered_Port_Access x x 0 Disabled x 1 Enabled Settings f...

Page 417: ...SHA384 Kx DH Au DSS Enc AES GCM 256 Mac SHA384 DHE RSA AES256 GCM SHA384 Kx DH RSA Enc AES GCM 256 Mac SHA384 DHE RSA AES256 SHA256 Kx DH RSA Enc AES 256 Mac SHA256 AES256 GCM SHA384 Kx RSA RSA Enc AE...

Page 418: ...MD5 Kx DH Au None Enc RC4 128 MD5 RC4 SHA Kx RSA AU RSA Enc RC4 128 SHA1 RC54 MD5 Kx RSA Au RSA Enc RC4 128 MD5 ECDHE ECDSA DES CBC3 SHA Kx ECDH Au ECDSA Enc 3DES 168 SHA1 EDH RSA DES CBC3 SHA Kx DH...

Page 419: ...SSL TLS Ciphers 415 Valid SSL TLS Ciphers EXP RC4 MD5 Kx RSA 512 Au RSA Enc RC4 40 MD5 Full Name Key Exchange Authentication Encryption Key Size HMAC...

Page 420: ...ho mode Determines whether characters sent from the serial device will be echoed back by the IOLAN when VModem is in command mode Any AT commands not supported will return an ok if n 1 n 0 disable ech...

Page 421: ...TCP connection exists default AT F Sets the modes back to the factory defaults This is a hard coded default configuration which does not look at any user configuration ATS2 Sets the value of the S2 re...

Page 422: ...pin Pin 9 is available in the SDS model only The following table provides pinout information Pinout EIA 232 EIA 422 EIA 485 Full Duplex EIA 485 Half Duplex 1 Shield Shield Shield Shield 2 out TxD 3 in...

Page 423: ...llowing table provides pinout information 18 RTS 19 RTS 20 out DTR 21 RxD RxD 22 RxD RxD 25 CTS Pinout EIA 232 EIA 422 EIA 485 Full Duplex EIA 485 Half Duplex 1 Shield Shield Shield Shield 2 in RxD 3...

Page 424: ...l 15 RxD RxD 18 CTS 19 CTS 20 in DSR 21 TxD TxD DATA 22 TxD TxD DATA 25 RTS IOLAN model Number of Pins See desktop 1 port 2 port 4 port and 8 port 10 RJ45 for desktop and rack mount models rack mount...

Page 425: ...rack mount IOLAN models have an 8 pin RJ45 connector The following table provides pinout information The power in pin Pin 1 can be 9 30VDC The 2 port IOLAN has power in on Port 2 only The 4 port IOLAN...

Page 426: ...CS48C SCS32C SCS16C SCS8C Sun Cisco models only The following table provides pinout information including the different pinouts for the Admin port and serial ports Pinout 8 pin EIA 232 Admin Port EIA...

Page 427: ...separate table below The following table provides pinout information for the serial ports The following table provides pinout information for the Admin port For some models Perle supply s a RJ45 Admin...

Page 428: ...9 male connection used on the 1 port IOLAN that is serial only not I O W or G models The following table provides pinout information Pinout 10 pin EIA 232 1 DTR out 2 TxD out 3 RxD in 4 DCD in 5 RTS o...

Page 429: ...9 male connection used on the 1 2 port IOLAN W and G models The following table provides pinout information Pinout 9 pin EIA 232 EIA 422 485 Full Duplex EIA 485 Half Duplex 1 in DCD 2 in RxD RxD 3 out...

Page 430: ...r the RJ45 Ethernet connection used on the IOLAN SDS P or IOLAN SCS P models The following table provides pinout information Pinout Standard 802 3AF Unit 4 Wire 802 3AF Unit 8 Wire 1 Tx Tx Voltage Tx...

Page 431: ...Connector The following diagrams show how the null modem cable should be configured when connecting to a terminal DB25 DB25 Male DB25 Female IOLAN DS1 DB25 DTE Terminal DB25 DTE 2 TxD 3 RxD 3 RxD 2 T...

Page 432: ...ty or medical unit models Cabling for SCS48C SCS32C SCS16C SCS8C Sun Cisco and SDS32C SDS16C SDS8C Electrical Utility IOLAN RJ45 Terminal DB25 DTE 10 pin 8 pin 4 DSR 3 20 DTR 3 RTS 2 5 CTS 5 TxD 4 3 R...

Page 433: ...Pinouts and Cabling Diagrams 429 EIA 232 Cabling Diagrams DB9 Male IOLAN DS1 DB9 Male Terminal DB25 DTE 3 TxD 3 RxD 2 RxD 2 TxD 7 RTS 5 CTS 8 CTS 4 RTS 6 DSR 20 DTR 5 GND 7 GND 4 DTR 6 DSR...

Page 434: ...s cabling table does NOT apply to SCS48C SCS32C SCS16C SCS8C Sun Cisco SDS32C SDS16C SDS8C Electrical Utility or medical unit models IOLAN DS1 DB25 DTE Modem DB25 DCE 2 TxD 2 RxD 3 RxD 3 TxD 4 RTS 4 C...

Page 435: ...Pinouts and Cabling Diagrams 431 EIA 232 Cabling Diagrams DB9 Male IOLAN DS1 DB9 Male Modem DB25 DCE 1 DCD 8 DCD 2 RxD 3 TxD 3 TxD 2 RxD 4 DTR 20 DTR 5 GND 7 GND 6 DSR 6 DSR 7 RTS 4 CTS 8 CTS 5 RTS...

Page 436: ...bling Diagrams 432 EIA 232 Cabling Diagrams DB9 Male 485 mode IOLAN models W L A G IOLAN DS1 DB9 Male Modem DB25 DCE 1 DCD 8 DCD 2 RxD 3 TxD 3 TxD 2 RxD 4 DTR 20 DTR 5 GND 7 GND 6 DSR 6 DSR 7 RTS 4 CT...

Page 437: ...85 not applicable for I O models 1 Port IOLAN DB25 Male Female Jumper Method To change the settings do the following 1 Unplug the IOLAN from the electrical outlet and disconnect everything from the bo...

Page 438: ...he following 3 To change the power pin out locate D11 For the fixed 5V DC output jumper pins 1 and 2 For the output to equal the external adapter input jumper pins 2 and 3 4 To turn line termination o...

Page 439: ...new settings 1 Port IOLAN RJ45 DIP Switch Method To change the settings do the following 1 Unplug the IOLAN from the electrical outlet and disconnect everything from the box 2 Open the case by unscrew...

Page 440: ...he case You should see the following 3 To change the power pin out locate J4 For the fixed 5V DC output jumper pins 1 and 2 For the output to equal the external adapter input jumper pins 2 and 3 4 To...

Page 441: ...B9 DIP Switch Method To change the settings do the following 1 Unplug the IOLAN from the electrical outlet and disconnect everything from the box 2 Open the case by unscrewing the two side screws one...

Page 442: ...should see the following 3 To change the power pin out locate J4 For the fixed 5V DC output jumper pins 1 and 2 For the output to equal the external adapter input jumper pins 2 and 3 4 To turn line t...

Page 443: ...on with the new settings 2 Port IOLAN DIP Switch Method To change the settings do the following 1 Unplug the IOLAN from the electrical outlet and disconnect everything from the box 2 Open the case by...

Page 444: ...and Jumper J8 for Half Duplex Rx Tx To turn line termination on for Line 2 locate and jumper J209 for Full Duplex Rx or locate and Jumper J210 for Half Duplex Rx Tx 5 Close the IOLAN case by replacing...

Page 445: ...hange the settings do the following 3 To change the power pin out locate the set of three pins associated with the line you want to set Serial Port 1 is P3 Serial Port 2 is P2 Serial Port 3 is P6 and...

Page 446: ...he diagram below shows how to set jumper for any digital board To change the settings do the following 1 Detach the IOLAN from the electrical power source and disconnect everything from the box 2 Open...

Page 447: ...Open the case by unscrewing the five side screws two on each side plus the grounding screw and lifting off the top of the case You should see the following configuration for the analog input board 3...

Page 448: ...settings Digital Input Wet Contact If you are using a wet contact for your Digital input for channel D1 connect one wire to D1 and the other wire to GND The power source is supplied by external source...

Page 449: ...For a Digital output sink ground configuration for channel D1 follow the diagram below Digital Output Source For a Digital output source voltage configuration for channel D1 follow the diagram below D...

Page 450: ...negative wire to A1 and optionally the shield to GND If you have the positive negative wires reversed the output will always read 0 zero Voltage To connect to Channel A1 with a 2 wire shielded cable...

Page 451: ...e positive wire to A1 and the negative wire to A1 you will not be using the A1s connection RTD 2 Wire In a 2 wire RTD configuration connect the excite wire to A1 the return wire to A1 and jumper the s...

Page 452: ...Relay channel R1 for a circuit that is normally inactive connect one wire to the COM common connector and one wire to the NO normally open connector Normally Closed Contact To connect relay channel R1...

Page 453: ...N You use TruePort when you want to connect extra terminals to a server using the IOLAN rather than a multi port serial card TruePort is especially useful when you want to improve data security as you...

Page 454: ...ct on starting from the register defined in byte 2 above n Data for write Some values must be read written as a unit consisting of 2 consecutive registers If the request is to write the data to write...

Page 455: ...iption 01 Illegal Function The function code received in the query is not an allowable action for the server or slave 02 Illegal Data Address The data address received in the query is not an allowable...

Page 456: ...m card and the Perle PCI adapter card used with a wireless WAN card in your SCS rack mount model The location and brackets are slightly different for the 32 port and 48 port SCS rack mount models but...

Page 457: ...the bracket just behind the face plate unscrew the two screws at the top of the 8 port 16 port 32 port removable face plate or the two side screws of the 48 port removable face plate of the piece you...

Page 458: ...d 9 Slide the PCI adapter card into the PCI slot 10 You can now replace the top of the IOLAN chassis by aligning it and sliding it into the base You can throw away the face plate as you will not be ne...

Page 459: ...or configuration options Inserting SFP modules into SPF slots The IOLAN SCS16C DSFP requires that you install an SFP module s into the SFP slot s on the back of the IOLAN Compatible SFP s are z Variou...

Page 460: ...ked position and use the clasp to pull the SFP towards you 3 If the SFP module is not equipped with a clasp then with your fore finger and thumb firmly grip the SFP and pull towards you Note WARNING I...

Page 461: ...rossover Adapter z RJ45F to DB9M DTE Crossover Adapter z RJ45F to DB9F DTE Crossover Adapter z Sun Cisco RJ45M Connector Cable for Rack Mount Models The adapters cable can be purchased as a kit or ind...

Page 462: ...45F to DB25M DCE Modem Adapter The following diagram shows the IOLAN RJ45FJDB25M DCE modem adapter pinouts This is model number DBA0013 RJ45F DB25M TxD 4 2 RxD RxD 5 3 TxD GND 6 7 GND DTR 8 20 DTR DSR...

Page 463: ...45F to DB25F DTE Crossover Adapter The following diagram shows the IOLAN RJ45JDB25F DTE crossover adapter pinouts This is model number DBA0010 RJ45F DB25F TxD 4 3 RxD RxD 5 2 TxD GND 6 7 GND DTR 8 6 D...

Page 464: ...e RJ45F to DB9M DTE Crossover Adapter The following diagram shows the IOLAN RJ45JDB9M crossover adapter pinouts This is model number DBA0021 RJ45F DB9M TxD 4 2 RxD RxD 5 3 TxD GND 6 5 GND DTR 8 1 DCD...

Page 465: ...Models This is a 3 meter RJ45MJRJ45M 8 wire Sun Cisco modular cable The following diagram shows how the IOLAN RJ45M cable is configured when connecting to the supplied Sun Cisco RJ45 cable This model...

Page 466: ...45F to DB25F DTE Crossover Adapter z RJ45F to DB9M DTE Crossover Adapter z RJ45F to DB9F DTE Crossover Adapter z Sun Cisco Roll Over Adapter for Rack Mount Models The adapters cable can be purchased a...

Page 467: ...er Kit RJ45F to DB25M DCE Modem Adapter The following diagram shows the IOLAN RJ45FJDB25M DCE modem adapter pinouts This is model number DBA0013C RJ45F DB25M TxD 3 2 TxD RxD 6 3 RxD GND 4 GND 5 7 GND...

Page 468: ...RJ45F to DB25F DTE Crossover Adapter The following diagram shows the IOLAN RJ45JDB25F DTE crossover adapter pinouts This is model number DBA0010C RJ45F DB25F TxD 3 3 RxD RxD 6 2 TxD GND 4 GND 5 7 GND...

Page 469: ...Kit RJ45F to DB9M DTE Crossover Adapter The following diagram shows the IOLAN RJ45JDB9M crossover adapter pinouts This is model number DBA0021C RJ45F DB9M TxD 3 2 RxD RxD 6 3 TxD GND 4 GND 5 5 GND DTR...

Page 470: ...del number DBA0020C Sun Cisco Roll Over Adapter for Rack Mount Models This is a RJ45MJRJ45F Sun Cisco adapter This model number is DBA0031C The Sun Cisco RJ45M connector attaches to the Sun Cisco Cons...

Page 471: ...the Perle website www perle com downloads when you access the webpage select your specific IOLAN model z If the IOLAN is already in Console mode and the Power LED stays red you need to make arrangemen...

Page 472: ...devices should be able to communicate with it ping telnet etc Also protocols such as ARP and proxy ARP will work properly z Use the show routes command command line only or view the Routes statistics...

Page 473: ...tered a single static gateway in the bootptab file entry If yes the other gateways will be ignored Access to host lost after a few minutes z If the route to this host goes through routers make sure th...

Page 474: ...oaded one The default line type in the IOLAN is Dumb which does not support the graphics characters necessary to view the text based menus Screen corruption when using the text based menu system z Ver...

Page 475: ...s You observe TFTP errors when the IOLAN boots for example TFTP File not found filename TFTP Timed out This has a number of causes including z The file names you specified to DHCP BOOTP do not exist o...

Page 476: ...line z Disable CHAP re challenge parameter challenge_interval in the IOLAN Some PPP client software does not work when receiving CHAP re challenges PPP is not running successfully over your 485 half...

Page 477: ...y that the peer has been configured for an SSL TLS client connection Certificate did not match configuration z The message is displayed when Validate Peer Certificate has been enabled but the configur...

Page 478: ...the following 1 In Control Panel double click the Network Connections icon 2 Double click the Local Area Connection entry 3 In the Local Area Connection Status window click the Properties button on t...

Page 479: ...ve the following information ready Making a support query via the Perle web page If you have an internet connection please send details of your problem to Technical Support using the email links provi...

Page 480: ...tails via a website form This form is on the Perle website www perle com in the Support Services area Click here to access our web site at the following URL http www perle com support_services rma_for...

Page 481: ...Allow Multiple Hosts to connect z Connect to Multiple Hosts z Monitor DSR or DCD z Signals high when not under Trueport client control z Message of the day z Session timeout TCP Socket Profile The fol...

Page 482: ...z One translate rule per line z The fields on a line are separated by a comma Line format for one UID is port master_uid slave_uid z port is the IOLAN port number that the slave is connected to z mas...

Page 483: ...ure 2 Down load the modbus_remap file that you created to the IOLAN using z Device Manager use tools advanced custom files dialog download other file z Web Manager use administration custom files page...

Page 484: ...than 20 characters or a 40 character hex digit string key ID key type message digest key 1 MD5 CeR 9LRTY a0 P GOA ascii string 2 MD5 POE 9KRMY P0 PZOQ ascii string 3 MD5 E 9KRRTS 9LRTpp ascii string 4...

Page 485: ...ess network can take up to 2 minutes Most USB modems have LEDs indicating the connection status A solid green or blue LED on your USB modem usually indicate a successful wireless connection If the con...

Page 486: ...urer manufacturer name Product product name Vendor id id Stor Prod Id id Attempting to flip USB modem into modem mode Action None The IOLAN is attempting to initialize the USB modem Wait a minute and...

Page 487: ...different USB modem or search the internet linux community for a usb_modeswitch configuration file for that vendor and product id Contact Perle support if there is no information on the internet perta...

Page 488: ...modem that is not in our database but is available by way of the linux internet community please follow instruction below on how to download the file to the IOLAN or contact Perle support for assista...

Page 489: ...Running H F 2 Modem not connecting to the network vvvv Vendor ID pppp Storage Product ID At this point you can either re boot the IOLAN or kill the PCI port to re try the USB modem...

Page 490: ...er to log straight into a specific host A direct connection is recommended where a user logging in to the Device Server is not required Ethernet A high speed 10Mbps 100Mbps cable technology that conne...

Page 491: ...the number for callback when they dial in RPC Remote Procedure Call A type of protocol that allows a program on one computer to execute a program on a server computer Silent Connection Silent connect...

Reviews:

No comments