RACOM M!DGE Operating Manual Download Page 89

Page: 89 / 113

Access Control List for Exposed Host on OpenVPN Interface

Description

Range

D e f a u l t
Value

Parameter

0 = deny all
1 = permit entries
0 = permit all

[0,1,2]

firewall_exposed_host_openvpn.policy

The exposed host

hostname

void

firewall_exposed_host_openvpn.host

Source host / net

hostname

void

with j =

[0..19]

firewall_exposed_host_openvpn.<j>.

target

netmask

void

firewall_exposed_host_open-

vpn.<j>.mask

3.2.4. VPN related Parameters

OpenVPN

Description

Range

Default Value

Parameter

0 = disabled
1= enabled

[0,1]

vpn.status

0 = Standard mode
1= Expert mode

[0,1]

vpn.mode

0 = crertificate-based authentication
1= credential-based authentication

[0,1]

vpn.auth

OpenVPN server FQHN

hostname

void

vpn.configuration.serverAd-

dress

OpenVPN server port

[1 .. 65535]

void

vpn.configuration.serverPort

OpenVPN server FQHN

hostname

void

vpn.configuration.serverAd-

dress2

OpenVPN server port

[1 .. 65535]

1194

vpn.configuration.serverPort2

tun = tun device
tap = tap device

[tun, tap]

tun

vpn.configuration.devType

0 = disabled
1= enabled

[0,1]

vpn.configuration.compres-

sionStatus

For credential-based authentication

username

void

vpn.configuration.username

For credential-based authentication

password

void

vpn.configuration.password

IPsec Parameters

Description

Range

Default Value

Parameter

0 = disabled
1= enabled

[0,1]

ipsec.status

ipaddress

void

ipsec.remote.serverIp

0 = crertificate-based authentication
1= credential-based authentication

Ipaddress

void

ipsec.remote.lanAddress

Configuration

Summary of Contents for M!DGE

Page 1: ...ating manual GPRS EDGE UMTS routers M DGE MG102 1 1 11 16 2011 www racom eu RACOM s r o Mirova 1283 592 31 Nove Mesto na Morave Czech Republic Tel 420 565 659 511 Fax 420 565 659 512 E mail racom raco...

Page 2: ......

Page 3: ...Log and Log Files 104 5 3 Network Protocol Analyzer 104 6 Customer Service 106 6 1 Support 106 A Connectors and Cables 107 A 1 Pin Assignments for the Communication Interfaces 107 A 2 Ethernet Plug E...

Page 4: ...nt panel 10 1 5 Components on the back panel 11 A 1 Pin assignment COM interface RS232 107 A 2 Pin assignment COM interface RS485 107 A 3 Pin assignment Ethernet Interface 108 A 4 Pin assignment power...

Page 5: ...an in troduction to M DGE MG102 Wireless Router The following chapters describe the installation and the configuration In next description is used the notation router instead of GPRS EDGE UMTS router...

Page 6: ...yes UMTS HSDPA HSUPA yes yes WLAN 2 2 2 2 2 2 1 SIM card sockets 4 4 4 4 4 4 2 Ethernet ports 1 1 1 1 1 1 1 Serial ports yes yes yes Integrated GPS re ceiver 2 2 Digital inputs out puts Following mod...

Page 7: ...en yellow red Mob Good GSM signal yellow on Bad GSM signal red on VPN connection is up on green VPN VPN connection is down off Input set on yellow In1 Input not set off Input set on yellow In2 Input n...

Page 8: ...nt of screw terminal signal pin VGND 1 V1 12 48 V 2 VGND 3 V2 12 48 V 4 RxD 5 TxD 6 GND 7 Out1 Dry contact relay Normally open with M DGE without powering 8 9 Out2 Dry contact relay Normally open with...

Page 9: ...nel has 10 status indicators In addition there are two SIM card slots and a reset button at the front panel Fig 1 3 The Front Panel The following table describes the components on the front panel 9 RA...

Page 10: ...gnal off Software update running Mobile connection is being established blinking slowly green UMTS GSM Front Mobile connection is up on Mobile connection is down off WLAN connection is being establish...

Page 11: ...Connector SMA female UMTS GSM Antenna Back Sub D 9 model 2009 or RJ45 port model 2010 RS232 default or RS485 configurable COM Back 4 Ethernet ports 4port Eth switch 4 LANs 1WAN 3LANs according to set...

Page 12: ...ion 3 1 8 Services COM Server Tunneling of the serial line over IP Modbus RTU to Modbus TCP Gateway DHCP Server DNS Proxy Server Dynamic DNS Client E mail Client Notification via E mail and SMS SMS Cl...

Page 13: ...n EDGE Circuit Switched Data CSD 1 5 2 Access to a Remote Network M DGE MG102 can be used to access a remote network Possible setups are Access via public IP address Access via M DGE MG102 initiated V...

Page 14: ...our application demands it you may install SIM cards for two different networks of two different mobile network operators If you only use one SIM card insert it in SIM socket 1 M DGE has only one SIM...

Page 15: ...er supply which must have a limited and SELV circuit output 2 3 GPRS EDGE UMTS router assembly Routers M DGE MG102 are special devices which require skilled assembly For subsequent maintenance RACOM s...

Page 16: ...GE MG102 we recommend configuring it using the M DGE MG102 Web Manager 3 1 Configuration via the M DGE MG102 Web Manager The M DGE MG102 Web Manager can always be reached via the Ethernet interface Af...

Page 17: ...c IP address on your PC e g 192 168 1 10 mask 255 255 255 0 so that it is operating in the same subnet as the M DGE MG102 The factory default IP address is 192 168 1 1 The default subnet mask is 255 2...

Page 18: ...ome This page gives you a system overview It helps you when initially setting up device but also functions as dashboard during normal operation GPRS EDGE UMTS routersM DGE MG102 RACOM s r o 18 Configu...

Page 19: ...ext link in the priority list You can configure each link to be either established when the switch occurs or permanently in order to minimize link downtime Description Step This link will be used if e...

Page 20: ...cription Parameter The required signal strength for GSM UMTS in order to qualify the link as a fallback alternative Mobile The required signal strength for WLAN in order to qualify the link as a fallb...

Page 21: ...segment and the headers must not add up to more than the number of bytes in the maximum transmission unit MTU Description Parameter The maximum segment size MSS for the mobile interface MSS adjust me...

Page 22: ...2 168 2 0 24 Port 4 MG102 M DGE uses two Ethernet interfaces It is possible set the same LAN for both or LAN1 and LAN2 or LAN and WAN combination Separated mode LANs MG102 IP Address Network Ports 192...

Page 23: ...ses auto negotiation will work IP Settings Define the M DGE MG102 LAN Usually the first address within that LAN is assigned to the router Provide that IP address and net mask in dot decimal notation o...

Page 24: ...nfigured Static configuration allows you to set the IP parameters DHCP means that the IP configuration will be retrieved automatically from an external DHCP server IP mode Enable or disable the PPPoE...

Page 25: ...concentrator Leave it blank unless you have many services and need to specify the one you need to connect to Service name This may be left blank and the client will connect to any access concentrator...

Page 26: ...case of link loss the connection is reestablished Administrative connection status Number of redialing attempts before switching to the next profile Redial at tempts Time in minutes after that an idle...

Page 27: ...tor or from our APN database Access point name Use Challenge Handshake Authentication Protocol CHAP or Password Authen tication Protocol PAP Authentication method Ckeck this if the connection is made...

Page 28: ...emps reached Fallback Profile will be needed after the number of redial attemp will be ex ceeded Interfaces Mobile Administrators ping check failed Fallback Profile will be used in case that number of...

Page 29: ...is disabled It is not recommended to disable PIN protection since a SIM card thief could misuse an unprotected SIM Description Parameter The PIN code for the SIM card PIN code Enable or disable PIN p...

Page 30: ...the pin assignments on chapter Appendix A Connectors and Cables Physical pro tocol This property specifies the baud rate of the COM port Baud rate This property specifies the parity used with every fr...

Page 31: ...ntrol In RTS CTS hardware flow control the computer and the modem use the RTS and CTS lines respectively to control the flow of data Hardware flow control USB Port valid only for M DGE Description Par...

Page 32: ...mal switching voltage 60 W Maximal switching capacity Digital I O Management To manage digital inputs and outputs via TCP software is required that handles the TCP connection For test purposes e g tel...

Page 33: ...ASCII characters Description Pattern Turn all digital outputs off 00000000 Turn output 2 on turn output 1 off 00000001 Turn output 1 on turn output 2 off 00000010 Turn output 1 on turn output 2 on 00...

Page 34: ...ed decimal or host network names Destination The network s IP address together with its address mask defines a range of IP ad dresses For IP subnets the address mask is referred to as the subnet mask...

Page 35: ...r Local Host The access from the WAN interface to M DGE MG102 itself and its local applications can be managed using this filter Access Control for Exposed Host from WAN and OpenVPN The access from th...

Page 36: ...it into multiple LANs this filter manages the access from any LAN port to any VPN Tunnel Use the option specify permitted networks to permit access to certain networks Those networks might be any peer...

Page 37: ...from the outside Internet Description Parameter Enable or disable NAPT NAPT needs to be enabled normally i e when using Internet Access Internet Service Providers will not route your private LAN Addr...

Page 38: ...NAPT on OpenVPN Interface The same settings as above but for other interface Expert Mode Upload text files with firewall rules GPRS EDGE UMTS routersM DGE MG102 RACOM s r o 38 Configuration...

Page 39: ...t come with the OpenVPN software A Guide to basic RSA Key Management is found under http openvpn net easyrsa html For alternative authentication methods see http openvpn net index php documentation ho...

Page 40: ...ddress First server address First OpenVPN server port default 1194 First server port Second OpenVPN server address optional Second server ad dress Second OpenVPN server port optional Second server por...

Page 41: ...OpenVPN client configurations Typically such a zip file includes files such as client conf The client configuration file referring to ca crt OpenVPN root certificate file client crt OpenVPN client ce...

Page 42: ...flicts If OpenVPN is enabled and the configuration mode is set to server expert configuration all configura tions conf will be started after M DGE MG102 startup Consider the following points when runn...

Page 43: ...IPsec Administration Description Parameter Enable or disable IPsec IPsec administrative status IPsec Configuration 43 RACOM s r o GPRS EDGE UMTS routersM DGE MG102 Configuration...

Page 44: ...GPRS EDGE UMTS routersM DGE MG102 RACOM s r o 44 Configuration...

Page 45: ...ice IKE encryption method IKE encryption IKE hash method IKE hash IKE Diffie Hellman Group IKE Diffie Hell man Group Use Perfect Forward Secrecy This feature increases security as with PFS penet ratio...

Page 46: ...that was supported by Microsoft Dial up Networking Users that are allowed to connect to the PPTP server are defined under the section User Accounts Description Parameter Enable disable PPTP server PPT...

Page 47: ...r can be enabled or disabled Consequently the device will allow incoming calls or not Dial in administrative status Shows whether a connection is active or not Dial in operational status Dial in Serve...

Page 48: ...cket Timeout If data is received on serial line waits for more data for the configured time to avoid to much segmentation which would lead on inefficiency Max Latency Timeout Limits the maximum latenc...

Page 49: ...TCP for modbus gateway Protocol on TCP IP The protocol implicitely defined on the COM port Protocol on COM port TCP Configuration Description Parameter The protocol implicitely defined on the COM port...

Page 50: ...supervisor monitors connectivity and automatically recovers the connections in case of link loss First you should check the option monitor connection establishment to make sure that problems during c...

Page 51: ...ait until sending the next probe in case the last probe was unsuccessful Retry interval Number of consecutive unsuccessful probes that are required until the next recovery action is initiated Consecut...

Page 52: ...ned or manually configured DNS servers DHCP Server Administration Description Parameter The Dynamic Host Configuration Protocol DHCP server can be enabled or disabled If it is enabled it will answer t...

Page 53: ...DNS proxy server as third DNS server DNS server 3 DNS Proxy Server The DNS Proxy enabled M DGE MG102 forwards DNS requests to the DNS server provided by the mobile operator Devices within the M DGE MG...

Page 54: ...tatus Dynamic DNS Configuration Description Parameter DynDNS Service according Dynamic Network Services Inc www dyndns com Please consult www dyndns com for more details Service type URL under which M...

Page 55: ...means that no notification via e mail will be performed E mail client status E mail Client Configuration Description Parameter Sender s e mail address From e mail address SMTP server address Server ad...

Page 56: ...rror reported PPP_ERR See manual and logs to identify the problem PPP connection failure VPN connection up tun0 tap0 interface address VPN_IP VPN connection established VPN connection down VPN connect...

Page 57: ...al Input 1 off Input change IN2 is On Digital Input 2 on Input change IN2 is Off Digital Input 2 off Output change OUT1 is On changed from DIO_SOURCE Digital Output 1 on Output change OUT1 is Off chan...

Page 58: ...tal output 1 possible values include on off DST_OUT1 Status of digital output 2 possible values include on off DST_OUT2 Subscribers Subscribers are recepients of SMS or e mail event notifications It i...

Page 59: ...Event Processor Notifications can be generated or digital outputs can be set based on the occurrence of several events 59 RACOM s r o GPRS EDGE UMTS routersM DGE MG102 Configuration...

Page 60: ...on the GPS data stream see chapter Section 4 1 GPS Server Description Parameter Enable or disable GPS data stream GPS status Destination address of application where the GPS data will be sent to Desti...

Page 61: ...SMS can be enabled or disabled Disabling receiving SMS means that controlling M DGE MG102 via SMS will not be possible SMS control Description Parameters Com mand A SMS with the following information...

Page 62: ...all connections on the mobile interface Dial out and VPN discon nect M DGE MG102 will be restarted reboot Set administrative status of the mobile connection to disabled manual method Set administrati...

Page 63: ...arameter SSH server port Port The standard port 22 is used For higher security change it to different number This number shall be used as parametr in SSH command 63 RACOM s r o GPRS EDGE UMTS routersM...

Page 64: ...traps will be sent to Trap target host The port where the traps will be sent to Trap target port A trap will be sent if signal strength goes lower than this Signal strength trap threshold dBm No furt...

Page 65: ...startup trap is implemented using the standard coldStart warmStart traps The system shutdown trap is sent when the system is rebooted via the reboot function of the web in terface or when the watchdo...

Page 66: ...ed port default 2157 for arriving UDP packets with a string in the payload If an UPD package is arriving the event Arriving UDP Message is fired see chapter Use the Event Manager the section called Ev...

Page 67: ...ractive communication between the subscribers and applications across a GSM Network A sample USSD service is the bill status service accessed by dialing 141 or similar numbers in between and ac cordin...

Page 68: ...Web Server Description Parameter Web server port for http connections HTTP port Web server port for https connections HTTPS port GPRS EDGE UMTS routersM DGE MG102 RACOM s r o 68 Configuration...

Page 69: ...rs or remotely over RADIUS Description Parameter Enable or disable the captive portal Administrative Status Define whether user must accept by pressing a button or they have to au thenticate to a RADU...

Page 70: ...3 1 9 System Authentication GPRS EDGE UMTS routersM DGE MG102 RACOM s r o 70 Configuration...

Page 71: ...GE MG102 offers automatic and manual file based configuration A single text file cfg or a zip archive zip containing one or more of the following files can be up loaded When uploading a zip file the f...

Page 72: ...col used to transfer the new user configuration file to M DGE MG102 You will need an appropriate server Protocol The server and directory where the new s configuration file can be downloaded Server IP...

Page 73: ...ent key certificate_mode templateProfiles if available Current configura tion files The following files are acceppted for upload cfg max size 100KB zip max size 100KB The zip file may include user con...

Page 74: ...o be initiated by pressing and holding the Reset button for at least five seconds The factory reset will also set the IP address of the Ethernet interface to 192 168 1 1 You will be able to communicat...

Page 75: ...Troubleshooting Network Debugging 75 RACOM s r o GPRS EDGE UMTS routersM DGE MG102 Configuration...

Page 76: ...Log Files Log files can be viewed a downloaded here Please provide these files when placing a support re quest System Log Redirection GPRS EDGE UMTS routersM DGE MG102 RACOM s r o 76 Configuration...

Page 77: ...the syslog messages will be forwarded to A Syslog server has to be running on this IP address You can use free TFTP server TFTPD32 for example IP address Restart Tech Support 77 RACOM s r o GPRS EDGE...

Page 78: ...e For using of this feature a connection to Internet is required System Information Provide this information when placing a support request GPRS EDGE UMTS routersM DGE MG102 RACOM s r o 78 Configurati...

Page 79: ...from GPS use a non existing address of NTP server e g 1 1 1 1 Description Parameter Enable disable time synchronisation NTP state Host name of NTP server NTP server Host name of optional second NTP se...

Page 80: ...ware can be downloaded Server IP address and path The result of the last try will be displayed here Last software up date Manual Software Update The easiest way to update the M DGE MG102 Software is t...

Page 81: ...ters Server IP address and path The result of the last try will be displayed here Last software update Step by Step Description Para meter Connect your PC with MG102 using a network cable 1 If the IP...

Page 82: ...4 On the web page SYSTEM Manual Software Update enter the IP address and path of the TFTP server 192 168 1 2 as follows 5 Press Apply and confirm by pressing OK Wait until the update is complete See...

Page 83: ...nfiguration If you are using the Web Manager and its forms to configure M DGE MG102 you may skip this chapter A configuration parameter consists of two main parts its name latter called key and its va...

Page 84: ...Z 0 9 _ username All but password 0 9 phone number Time e g for automatic software or config uration update hh mm ss 0 9 and time 3 2 1 Interfaces related Parameters Ethernet Description Range Defaul...

Page 85: ...hMeth od Acess Point Name hostname void dialout profiles 0 apn 0 off 1 enable IP header compression 0 1 void dialout profiles 0 IPHC 0 off 1 enable software compression 0 1 void dialout profiles 0 IPS...

Page 86: ...witch never elpas8h elaps16h elaps24h never dialout profiles 1 switchCon dition r e d i a l A t t e m p t s Reached 0 disabled 1 enabled 0 1 0 network MSS status Maximum Segment Size 100 1500 1400 net...

Page 87: ...ription Range D e f a u l t Value Parameter 0 NAPT off 1 NAPT on 0 1 1 with j 0 49 napt_mobile status External port range start 1 65535 void napt_mobile j extPort start External por range end 1 65535...

Page 88: ...ct Access Control List Local Host Description Range D e f a u l t Value Parameter 0 deny all 1 permit entries 0 permit all 0 1 2 2 firewall_local_host policy Source host net hostname void with j 0 19...

Page 89: ...r FQHN hostname void vpn configuration serverAd dress OpenVPN server port 1 65535 void vpn configuration serverPort 2 nd OpenVPN server FQHN hostname void vpn configuration serverAd dress2 2 nd OpenVP...

Page 90: ...0 1 1 ipsec dpd state For credential based authentication 5 120 30 ipsec dpd cycle 1 10 3 ipsec dpd failureCount PPTP Server Description Range Default Value Parameter 0 disabled 1 enabled 0 1 1 networ...

Page 91: ...1 enabled 0 1 void serial_srv opt rtscts RS232 RS485 RS232 serial_srv opt phys_proto DNS Proxy Server Description Range Default Value Parameter 0 DNS Proxy off 1 DNS Proxy on 0 1 1 network DNS status...

Page 92: ...ult Value Parameter 0 disabled 1 enabled 0 1 1 sms receiving status 0 disabled 1 enabled 0 1 0 sms sending status SMSC number phone number void sms sending gateway SMSC number phone number void sms se...

Page 93: ...ge Event Message password void events logInGUI message Event Message password void events logFailedGUI message Event Message password void events restartCrash message Event Message password void event...

Page 94: ...nt Processor Description Range Default Value Parameter 0 1 2 9 void evtProc sequence hostname void with l 0 9 evtProc l eventName Send send message Switch switch digital I O send switchOn switchOff vo...

Page 95: ...e Parameter 1 65535 2157 udpMessage receiving udp Port 3 2 6 System related Parameters User Accounts Description Range D e f a u l t Value Parameter not set reset admin password password void user adm...

Page 96: ...isabled 1 enabled 0 1 1 swu_auto status hh mm ss time swu_auto time hostname swu_auto url Configuration Update Description Range Default Value Parameter 0 disabled 1 enabled 0 1 1 cfg_auto status hh m...

Page 97: ...Local Area Identity LAI or set the network selection method to automatic void cli select Show a status overview of M DGE MG102 string cli status Print the cli help message usage string cli help Abort...

Page 98: ...ge network sim1 sim2 Example cli network sim1 cli set produces no return value and no error message To check if the modification took place use cli get Note The following commands are identical cli ne...

Page 99: ...ate of the SIM Card cli status overview interfaces sim_state show the state of the PIN cli status overview interfaces pin_state show the actual signal strength cli status overview interfaces sig nal_s...

Page 100: ...vices sms_rec_state show the state of the SMS sending service cli status overview services sms_send_state show the state of the E Mail service cli status overview services email_state show the state o...

Page 101: ...Usage and Return Value Command Not for end user use Root rights are required Exit 101 RACOM s r o GPRS EDGE UMTS routersM DGE MG102 Configuration...

Page 102: ...on fix time Time 2 Latitude of fix latitude N S Latitude 3 Longitude of fix longitude E W Longitude 4 0 Invalid 1 GPS fix 6 estimated quality Fix Quality 5 Number of satellites in view satellites Numb...

Page 103: ...ation 11 A autonomic valid E estimated N not valid White spaces Mode 12 Used by program to check for transmission errors CS Checksum 13 Carriage return and line feed CR LF White spaces 14 PNMID Racom...

Page 104: ...the SIM page PIN code required See the Debug Log under Check APN phone number username password Connection failed 5 2 System Log and Log Files Find more information about troubleshooting tools The We...

Page 105: ...105 RACOM s r o GPRS EDGE UMTS routersM DGE MG102 Troubleshooting...

Page 106: ...6 Customer Service 6 1 Support Please send questions or comments about M DGE MG102 to support racom eu GPRS EDGE UMTS routersM DGE MG102 RACOM s r o 106 Customer Service...

Page 107: ...ce RS232 COM RS232 DSUB9F In Out signal pin O CD 1 O RxD 2 I TxD 3 I DTR 4 GND 5 O DSR 6 I RTS 7 O CTS 8 RI 9 Tab A 2 Pin assignment COM interface RS485 COM RS485 DSUB9F In Out signal pin 1 2 I O RxD...

Page 108: ...3 Power connector Tab A 4 Pin assignment power plug Power MSTB 2 5 2 ST 5 08 Phoenix Contact signal pin 1 2 A 4 Cable ETH RS232 Fig A 4 RJ 45 and RS232 D SUB 9 Tab A 5 Pin assignment Ethernet Interfac...

Page 109: ...sers of the duty to observe the restrictions concerning the utilization of radio devices at petrol stations in chemical plants or in the course of blasting works in which explosives are used Switch of...

Page 110: ...lectronic equipment containing these hazardous substances lead cadmium mercury hexavalent chromium polybrominated biphenyls PBBs and polybrominated diphenyl ethers PBDEs End of life recycling programm...

Page 111: ...et Radio Service GSM Global Packet Radio Service GUI Graphical User Interface HSCSD High Speed Circuit Switched Data HSDPA High Speed Downlink Packet Access HSUPA High Speed Uplink Packet Access HTML...

Page 112: ...SW Software TCP Transmission Control Protocol TFTP Trivial File Transfer Protocol UDP User Datagram Protocol UMTS Universal Mobile Telecommunications System URL Universal Resource Locator VPN Virtual...

Page 113: ...Appendix D Revision History 2011 11 01 Revision 1 1 1 XML version 113 RACOM s r o GPRS EDGE UMTS routersM DGE MG102 Revision History...

Search results

Summary of Contents for M!DGE

Reviews:

Related manuals for M!DGE

Brands by name

Popular brands

RACOM M!DGE, Operating Manual

Search results

Summary of Contents for M!DGE

Reviews:

Related manuals for M!DGE

Brands by name

Popular brands