RACOM MG102i Operating Manual Download Page 142

Page: 142 / 175

Root CA:

The root Certificate Authority (CA) which issues certificates, its key can be
used to certify it at trusted third party on other systems.

Web Server:

The certificates for the Web server required for running HTTP over SSL
(HTTPS).

SSH Server:

The DSS/DSA keys for the SSH server.

SSH Authorization

The keys used for SSH authorization.

OpenVPN:

Server or client keys and certificates for running OpenVPN tunnels.

IPsec:

Server or client keys and certificates for running IPsec tunnels.

WLAN:

Keys and certificates for implementing certificate-based WLAN authentication
(e.g. WPA-EAP-TLS).

Authorities:

Other certificate authorities which we trust when establishing SSL client
connections.

For each certificate section it is possible to perform the following operations:

generate locally:

Generate key and certificate locally on M!DGE/MG102i

upload files:

Key and certificate will be uploaded. We support files in PKCS12,
PKCS7, PEM/DER format as well as RSA/DSS keys in OpenSSH or
Dropbear format.

enroll via SCEP:

Enroll key and certificate via SCEP

download certificate:

Download key and certificate in ZIP format (files will be encoded in
PEM format)

create signing request:

Generate key locally and create a signing request to retrieve a certi-
ficate signed by another authority

MG102iGPRS/UMTS/HSPA+/LTE router – © RACOM s.r.o.

142

Web Configuration

Summary of Contents for MG102i

Page 1: ...rating manual MG102i GPRS UMTS HSPA LTE router 1 8 12 8 2017 www racom eu RACOM s r o Mirova 1283 592 31 Nove Mesto na Morave Czech Republic Tel 420 565 659 511 Fax 420 565 659 512 E mail racom racom...

Page 2: ......

Page 3: ...uter 22 5 3 Connecting MG102i to a programming PC 22 5 4 Basic setup 23 6 Installation 24 6 1 Mounting 24 6 2 Antenna mounting 24 6 3 Power supply 24 7 Web Configuration 25 7 1 HOME 25 7 2 INTERFACES...

Page 4: ...connectors SMA 12 4 3 Eth RJ45 Plug pin numbering 13 4 4 USB connector 13 4 5 Screw terminal 14 4 6 Reset button 15 4 7 Indication LEDs 16 4 8 DIN rail bracket 20 4 9 MG102i with DIN rail bracket 21 1...

Page 5: ...s of data are rare when wireless devices such as the M DGE MG102i are used in an appro priate manner within a well constructed network M DGE MG102i should not be used in situations where failure to tr...

Page 6: ...the power supply 5 Setting of IP address of the connected computer By default the DHCP server is enabled thus you can allow the Dynamic Host Configuration Protocol DHCP on your computer to lease an I...

Page 7: ...because of fully compatible interface settings and behaviour on all HW interfaces MG102i and M DGE cellular routers are from the same product family shares the same source code and setting of many fea...

Page 8: ...ndards EN 301 489 1 V1 9 2 EMC EN 301 489 7 V1 3 1 EN 301 489 17 V2 2 1 EN 301 489 24 V1 5 1 EN 300 328 V1 8 1 EN 300 440 2 V1 4 1 EN 50 121 3 2 2006 EN 50 121 4 2006 EN 55022 2010 EN 55024 2010 EN 61...

Page 9: ...ernet LAN WAN bridging IP passthrough VLAN management USB autorun device server Serial port login console device server protocol server SDK Digital I O WiFi WLAN GNSS with a valid GPS license Routing...

Page 10: ...edundancy Modbus TCP System Administration Section 7 7 SYSTEM Configuration via Web Manager Configuration via Command Line Interface CLI accessible via Secure Shell SSH and telnet Batch configuration...

Page 11: ...TS etc devices dynamically upon each connection Please read Chapter 1 in the application note SCADA serial protocols over GPRS routers 1 which describes how to efficiently solve this problem using RAC...

Page 12: ...connectors SMA MG102i uses SMA antenna connectors Mob 1 Mob 2 for GSM UMTS LTE antenna connection Mob 1 for 1st UMTS module Mob 2 for LTE as auxiliary second connector or for 2nd UMTS GPS for GPS act...

Page 13: ...RX 3 RX 6 4 2 3 USB MG102i uses USB 1 1 Host A interface USB interface is wired as standard Fig 4 4 USB connector Tab 4 2 USB pin description wire signal USB pin red 5 V 1 white Data 2 green Data 3 b...

Page 14: ...g DO1 6 7 Digital output Dry contact relay Normally open with MG102i without powering See Section 7 2 7 Digital I O for details DO2 8 9 Digital input 1 See Section 7 2 7 Digital I O DI1 10 Digital inp...

Page 15: ...f the applied voltage is 40 V input circuit damage is likely 4 2 5 Reset button Fig 4 6 Reset button The Reset button is placed close to the SIM holders and it is labeled Reset Use a blunt tool with 1...

Page 16: ...s up green on VPN VPN connection is being established green blinking WLAN connection is being established blinking WLAN WLAN connection is up on Weak Medium Excellent WLAN signal red orange green GPS...

Page 17: ...more GSM 0 2 to 1 5 to 3 10 to 6 15 to 11 23 to 16 24 or more UMTS 2 or less 9 to 3 15 to 10 30 to 16 40 to 31 70 to 41 71 or more LTE Tab 4 10 LED Colour red orange green Colour 34 to 0 70 to 35 71 o...

Page 18: ...ltage 40 VDC 2 digital outputs Relay outputs 1 st NO 2 nd NC Limiting continuous current 1 A Max switching voltage 60 VDC 42 VAC Vrms Max switching capacity 60 W on 13 pin terminal block USB service i...

Page 19: ...nas DIN rail bracket Mounting kit 4 5 Models offerings Ordering code Part No s Trade name MG102i Type according internal module s MG102i U MG102i L MG102i 2U Code according to next HW modules e g MG10...

Page 20: ...ress groups 25 10 OpenVPN clients 30 10 Static routes Mobile IP DynDNS server V Voice Gateway receive VoIP packets from LAN and change it to calls to the GSM UMTS network and transform calls incoming...

Page 21: ...MG102i with DIN rail bracket DIN rail bracket Installation bracket for DIN rail mounting For usage details see chapter Mounting and chapter Dimen sions 21 RACOM s r o MG102iGPRS UMTS HSPA LTE router...

Page 22: ...rity Switch on the power supply 5 2 Powering up your wireless router Switch on your power supply The status LED flashes for a few seconds and after 8 seconds it starts blinking to a green light After...

Page 23: ...gree to the terms and conditions The user is now obliged to accept our end user license agree ment during the initial MG102i setup 5 4 Basic setup The M DGE MG102i Web Manager can always be reached vi...

Page 24: ...range of suitable antennas Beware of the deflective effects caused by large metal surfaces elevators machine housings etc close meshed iron constructions and choose the antenna location accordingly F...

Page 25: ...dashboard during normal operation The highest priority link which has been established successfully will become the so called hotlink which holds the default route for outgoing packets Detailed infor...

Page 26: ...in order of priority the priorities can be changed using the arrows on the right side of the window A link can be either established when the switch occurs or permanently to minimize link downtime 1s...

Page 27: ...e established a small subnet containing the cellular IP is created by default the netmask is 255 255 255 248 This small subnet consists of a network and broadcast address as a regular subnet In some s...

Page 28: ...horitative hosts A link will be declared as down if all trials have failed The link will be considered up again if at least one host is reachable You may further specify an emergency action if no upli...

Page 29: ...ing Network Debugging Ping The first response typically takes a longer time than the following ones in GPRS UMTS networks the Ping timeout should be set to the longer time than with the first response...

Page 30: ...tors ETH1 usually forms the LAN1 interface which should be used for LAN purposes Other interfaces can be used to connect other LAN segments or for configuring a WAN link The LAN10 interface will be av...

Page 31: ...iation which will configure the link speed automatically to comply with other devices in the network In case of negotiation problems you may assign the modes manually but it has to be ensured that all...

Page 32: ...with the same VLAN ID as defined on the router Further 802 1P introduces a priority field which influences packet scheduling in the TCP IP stack The following priority levels from the lowest to the h...

Page 33: ...or the LAN mode The Alias IP address enables configuring the LAN inteface with a second IP address subnet Note Setting of the IP address is interconnected with the DHCP Server if enabled menu the SERV...

Page 34: ...preferred protocol when communicating with another WAN access device like a DSL modem Username PPPoE user name to be used for authentication at the access device Password PPPoE password to be used for...

Page 35: ...restart PIN un locking and trigger another network registration attempt Configuration A SIM card is generally assigned to a default modem but this may switch for instance if you set up two WWAN inter...

Page 36: ...ial in Server so one can use PPP over the Circuit Switched Networks analog modem style Network selection LAI is a globally unique number that identifies the country network provider and LAC of any giv...

Page 37: ...to be dialed in the international format e g 420xx Access point name The access point name APN being used Authentication The authentication scheme being used if required this can be PAP or and CHAP Us...

Page 38: ...ing with a WLAN or Wi Fi module you can operate it either as client access point or managed mode As a client it can create an additional WAN link which for instance can be used as backup link As acces...

Page 39: ...er configure the following settings Operation type Specifies the desired IEE 802 11 operation mode 802 11a can be used in the 5 GHz band higher throughput in 20 40 MHz mode can be achieved with 802 11...

Page 40: ...tion settings You may also perform a WLAN network scan and pick the settings from the discovered information directly The credentials can be obtained by the operator of your WLAN access point Running...

Page 41: ...s WPA PSK WPA 802 1x can be used to authenticate against a remote RADIUS server which can be configured in Sec tion 7 7 2 Authentication WPA WPA2 mixed mode WPA2 should be preferred over WPA1 running...

Page 42: ...be configured in Section 7 7 2 Authentication WPA TLS EAP TLS performs authentication using certificates which can be configured in Sec tion 7 7 6 Keys Certificates Running in the client mode it is po...

Page 43: ...information directly The authentication credentials have to be obtained by the operator of the remote access point WLAN IP Settings This section lets you configure the TCP IP settings of your WLAN net...

Page 44: ...ddress netmask In routing mode the IP address and netmask for this WLAN network 7 2 5 USB Administration Enable or disable the USB administration If enabled any supported USB converter can be attached...

Page 45: ...ck has been plugged in Following files must exist in the root directory of a FAT16 32 formatted stick For authentication autorun key For a software update sw update img For a configuration update cfg...

Page 46: ...IAL2 USB is available Five possibilities are available None The serial port is not used at all Login console A possibility to control the unit via the CLI commands when connected to the serial port 11...

Page 47: ...e number of stop bits used to indicate the end of a frame Software flow control In XON XOFF software flow control either end can send a stop XOFF or start XON character to the other end to control the...

Page 48: ...e stream of bytes continues Consequently a perman ent data stream coming to the serial interface results in a sequence of MTU sized frames sent over the network The default value is set to 1400 bytes...

Page 49: ...he M DGE MG102i router processed there and are forwarded as unicasts through the mobile network to their destination When the gateway defined in the Routing table belongs to the Ethernet LAN UDP datag...

Page 50: ...is currently implemented The parameters described in this section are typical of most protocols There is only a link to them in description of the respective Protocol Mode of Connected device List bo...

Page 51: ...r the COM port server to which the SCADA device is connected via serial interface A translation between the Protocol address and the IP address UDP port pair has to be done It can be done either via T...

Page 52: ...in Hexa decimal or Decimal format according to the List box value Protocol address length can be 1 byte but for the DNP3 and UNI protocols support 2 bytes addresses IP The IP address to which Protocol...

Page 53: ...d frames from the mobile network are sent to the respective COM according to the UDP port setting Parameters Destination IP This is the IP address of the destination Unit UDP port Interface This is th...

Page 54: ...parameters are described in Common parameters Mode of Connected device Master Broadcast Note There is no the possibility to set Broadcast address since Cactus broadcast messages always have the addre...

Page 55: ...air When the Unit receives a data frame from the connected device it generates the ACK frame 0x1006 locally When the Unit receives the data frame from the mobile network it sends the frame to the con...

Page 56: ...tation is generated when address byte is 0xFF 2B ADDR Two byte address IEC 870 5 101 standard is 1 byte The frame is 1 byte longer than the standard one There is the Intel sequence of bytes low byte h...

Page 57: ...T COMMAND 0x13 to its Master The Unit does not accept the next WAIT COMMAND discards it till the Wait timeout expires The Recommended value is in the 1 10 seconds range Modbus Modbus RTU is a serial p...

Page 58: ...the COM in terface However from time to time RB period the RB packets are transferred over the network in order to check whether the respective Slave is still on When the RB response from the Slave t...

Page 59: ...the Unit does not respond to RB packets from the Master received over the mobile network RTU address Hex Default 01 Active only when the Local simulation RB is On The connected RTU s address is suppo...

Page 60: ...en into account Note 2 The first byte in the packet has the sequence number 1 not 0 Broadcast Address translation Table Mask Slave Broadcast accept DLE timeout ms Default 1000 min 300 max 8190 M DGE M...

Page 61: ...he Master and only one response to a request is supported in the second mode Master Master communication or combination of UNI protocol with ASYNC LINK protocol and spontaneous packet generation on re...

Page 62: ...sponse from a Slave No 1 is delivered after the respective timeout expired and the Master generates the re quest for the next Slave No 2 in the meantime In such a case the delayed response from No 1 w...

Page 63: ...boot at default which corresponds to the default state as the hardware will be initialized at power up The digital inputs and outputs can also be monitored and controlled by SDK scripts 63 RACOM s r o...

Page 64: ...etting more information about how to incorporate it The GPS values can also be queried by the CLI and used in SDK scripts Note A valid license key is required for running GPS Administrative status Ena...

Page 65: ...port IP hostname which provides us the informa tion of GPS satellites via data transmission APN Access point name the same as for data transmission set for the mobile connection Note Please consider...

Page 66: ...e provides you with a satellite view with some additional details In the HOME menu under GNSS status you can see the current status together with a lot of information about satellites in range MG102iG...

Page 67: ...A frames Further on each satellite also comes with the following details PRN The PRN code of the satellite also referred as satellite ID as stated in GPGSA frames Elevation The elevation up down angle...

Page 68: ...mation after which an emergency action will be taken Emergency action The corresponding emergency action You can either let just restart the server which also re initializes GPS on the module or also...

Page 69: ...to reach the gateway or network behind Metric The routing metric of the interface default 0 The routing metric is used by routing protocols higher metrics have the effect of making a route less favour...

Page 70: ...s 10 This number can be increased to 30 with a SERVER licence 7 3 2 Extended Routes Extended routes can be used to perform policy based routing they generally precede static routes Extended routes can...

Page 71: ...hing is connected 7 3 3 Multipath Routes Multipath routes perform weighted IP session distribution for particular subnets across multiple interfaces At least two interfaces must be defined to establis...

Page 72: ...messages IGMP proxy IGMP proxy which is able to maintain multicast groups on a particular interface and distribute incoming multicast packets towards the downstream interfaces on which hosts have joi...

Page 73: ...us Specifies whether the BGP routing protocol is active AS number The number of the autonomous system to which the M DGE MG102i router belongs available range 1 4294967295 Redistribute connected route...

Page 74: ...uthentication is disabled Multihop Allow multiple hops between this router and the peer router instead of requiring the peer to be directly connected The Networks tab allows to add IP network prefixes...

Page 75: ...te Redistribute the routers default route Disable when redundancy backup Disables the OSPF protocol when the router is set to slave mode by the VRRP redundancy protocol The interfaces tab is used to d...

Page 76: ...icense key is required for running Mobile IP It boasts with very small outages during switchover while keeping all IP sessions alive which is being accomplished by communicating with the static public...

Page 77: ...of nodes represented in 8 chars hex Authentication type The used authentication can be prefix suffix md5 or hmac md5 Shared secret The shared secret used for authentication can be a 128 bit hex or ASC...

Page 78: ...the following settings SPI The home address of the network Authentication type The mask for the home network Shared secret The shared secret used for the mobile node authentication at the home agent...

Page 79: ...ut of the available bandwidth In case of demands for other class or qdisc algorithms please contact our support team in order to evaluate the best approach for your application QoS Administration The...

Page 80: ...nterfaces operating in a mobile environment are suffering variable bandwidths thus rather lower values should be used In case an interface has been activated the system will automatically create the f...

Page 81: ...dress and netmask used to match the source address of packets Destination Specifies a network address and netmask used to match the destination target address of packets Protocol Specifies the protoco...

Page 82: ...d by order that means traversing the list from top to bottom until a matching rule is found If there is no matching rule found the packet is allowed Administrative status Enable or disable packet filt...

Page 83: ...ddress of matching packets can be ANY LOCAL addressed itself Group or Specify specified by address netmask Protocol Used IP protocol of matching packets Destination port s Destination port of matching...

Page 84: ...e administration page lets you specify the interfaces on which masquerading will be performed NAT will hereby use the address of the selected interface and choose a random source port for outgoing con...

Page 85: ...l rule description Incoming interface Interface from which matching packets are received Source The source address or network from which matching packets are received Map Choosing whether the rule app...

Page 86: ...ined Source address ports Source address ports of matching packets if Map is set to host Source network netmask Source network netmask of matching packets if Map is set to network Rewrite to address p...

Page 87: ...fter the bootup Tunnel Configuration The router supports a single server tunnel and up to 4 client tunnels You can specify tunnel parameters in standard configuration or upload an expert mode file whi...

Page 88: ...ed from or to a particular interface You can also set the MTU for the tunnel Authentication You can choose between credential based where you have to specify a username and password and certificate ba...

Page 89: ...etwork behind the tunnel If in doubt create an extra static route pointing to the correct interface Negotiate DNS If enabled the system will use the nameservers which have been negotiated over the tun...

Page 90: ...xed addresses to the other ones as well You may specify the network behind the clients as well as the routes to be pushed to each client This can be useful for routing purposes e g in case you want to...

Page 91: ...d key exchange Negotiating keys for encryption and authentication is generally done by the Internet Key Exchange protocol IKE which consists of two phases IKE phase 1 IKE authenticates the peer during...

Page 92: ...ns and SPIs Security Payload Identifiers for a faster tunnel re establishment Detection cycle Set the delay in seconds between Dead Peer Detection RFC 3706 keepalives R_U_THERE R_U_THERE_ACK that are...

Page 93: ...the local router which can be FQDN username FQDN or IP address Local ID The local ID value Peer ID type The identification type for the remote router Peer ID The peer ID value Note When using certific...

Page 94: ...56 IKE Diffie Hellman group The IKE Diffie Hellman group 2 5 and 16 21 SA life time The Security Association lifetime Perfect forward secrecy PFS This feature heavily increases security as PFS avoids...

Page 95: ...od MD5 SHA1 SHA256 SHA384 SHA512 SA life time The Security Association lifetime in seconds Perfect forward secrecy PFS Specifies whether Perfect Forward Secrecy PFS should be used This feature increas...

Page 96: ...k The NAT address must reside in the network previously specified as the local network Note Since the firmware 3 7 40 103 the maximum number of networks for individual IPsec tunnels has increased from...

Page 97: ...ress within the tunnel Client address range Specifies a range of IP addresses assigned to each client Username password The common username password configuration Once configured individual clients ca...

Page 98: ...l that can encapsulate a wide variety of network layer protocols inside virtual point to point links over IP GRE is defined in RFC 1701 1702 and 2784 It does not provide encryption nor authorization b...

Page 99: ...d generally apply a required service type of 2G only so that the modem registers to GSM only Naturally a concurrent use of mobile Dial Out and Dial In connection is not possible Note The Dial in Serve...

Page 100: ...ronment that is easy to dig in However feel free to contact us via support racom eu and we will happily support you in finding a programming solution to your specific problem The Language The arena sc...

Page 101: ...d prior to utilizing them in the SDK Let s now pay some attention to the very powerful API function nb_status It can be used to query the router s status values in the same manner as they can be shown...

Page 102: ...l ntp org network ntp ping 1 network ntp interval 256 network ntp gpstime 0 network ntp access 0 address 192 168 1 0 network ntp access 0 netmask 255 255 255 0 network ntp access 1 address network ntp...

Page 103: ...gger you can finally set up an SDK job now The test event usually serves as a good facility to check whether yourjob is working as expected The admin section also offers facilities to troubleshoot any...

Page 104: ...internal flash Enable watchdog This option enables watchdog supervision for each script If the script does not respond or is stopped with an exit code not equal null the system is rebooted The status...

Page 105: ...time specification which together with the condition specifies the time s when the trigger should be pulled Event The system event upon which the trigger should be pulled You can now add your persona...

Page 106: ...address 192 168 0 2 and enable the NTP synchronisation printf The NTP server was previously using IP address printf nb_config_get network ntp server0 printf n n nb_config_set network ntp server0 192 1...

Page 107: ...essage to the phone number associated with a SIM modem It generally requires a password to be given on the first line and a command on the second such as admin01 status We strongly recommend to use au...

Page 108: ...DGE midge 0002A9FFC32E WAN1 WWAN1 is up 10 204 8 3 Mobile1 HSPA 65 dBm LAI 23003 DIO IN1 off IN2 off OUT1 off OUT2 on 7 6 2 DHCP Server This section can be used to individually configure a DHCP servic...

Page 109: ...on the net which have for instance been negotiated during WAN link negotiation By pointing DNS requests to the router one can reduce outbound DNS traffic as it is caching already resolved names but i...

Page 110: ...s the IP address range which is allowed to poll the NTP server Note See the description of how to set the correct router time in the section called Time Region 7 6 5 Dynamic DNS Dynamic DNS client on...

Page 111: ...ress The address of the server which shall be updated Server port The port of the server which shall be updated TSIG key name The name of the TSIG key which is allowed to perform updates TSIG key The...

Page 112: ...rver port SMTP server port typically 25 Authentication Choose the required authentication method to authenticate against the SMTP server Encryption The optional encryption for the e mail messaging non...

Page 113: ...event manager you can notify remote systems about system events A notification can be sent using E Mail SMS or SNMP traps Events E Mail address The E Mail address to which the notification shall be se...

Page 114: ...shed call outgoing 702 Dynamic DNS update failed ddns update failed 802 DDNS Dynamic DNS update succeeded ddns update succeeded 801 Dial In connection went down dialin down 409 DIALIN Dial In connecti...

Page 115: ...d usb serial removed 906 USB storage device has been added usb storage added 901 USB storage device has been removed usb storage removed 902 WAN link went down wan down 101 WAN WAN link came up wan up...

Page 116: ...twork by LAI in the SIMs section We identify SIMs based on their IMEI number and track their statistics in a non volatile manner The relevant page can be used to enable the SMS service and specify on...

Page 117: ...r the specified modem or dropping them Messages which are not matching any of the rules below will be dispatched to the first available modem Filtering serves a concept of firewalling incoming message...

Page 118: ...eb Manager the SSH and Telnet services can be used to log into the system Valid users include root and admin as well as additional users as they can be created in the User Accounts section Please note...

Page 119: ...root users will be blocked Other users may have access as usual but with restricted privileges Disable password based login By turning on this option all users will have to authenticate by SSH keys wh...

Page 120: ...nsions contain support for Rebooting the device Updating to a new system software via FTP TFTP HTTP Updating to a new system configuration via FTP TFTP HTTP Getting WWAN GNSS WLAN DIO information Note...

Page 121: ...1 1 1 3 6 1 4 1 33555 10 40 12 0 The return value can be one of 1 succeeded 2 failed 3 inprogress 4 notstarted run software update snmpset v 3 u admin n l authNoPriv a MD5 x DES A admin01admin01 192...

Page 122: ...wever it is possible to define its communities and author itive host which will be granted administrative access Read community Defines the community name for read access Admin community Defines the c...

Page 123: ...master and another the backup device they both define a virtual gateway IP address which will be distributed by gratuitous ARP messages for updating the ARP cache of all LAN hosts and thus redirectin...

Page 124: ...e Modbus TCP there is no need to use and configure this feature Just send data transparently as TCP over the cellular network But if you combine Modbus TCP and Modbus RTU within one network you should...

Page 125: ...atagram is always set to FF In such a case you can use the Replace PLC address option so that the Unit ID is replaced by some Modbus RTU address Thanks to this parameter regular Mask Table address tra...

Page 126: ...le 7 7 SYSTEM 7 7 1 System Settings Local host name The local system hostname Application area The desired application area which influences the system behaviour such as registration timeouts when ope...

Page 127: ...port status or right M DGE or lower MG102i for the connection status indication You may configure toggle mode so that the LEDs periodically show both bank states See the LEDs description in Section 4...

Page 128: ...are available when running initial time update Time zone Time zone based on your geographical location Daylight saving changes This option can be used to reflect daylight saving changes e g switching...

Page 129: ...is a built in power user that has permission to access the Web Manager and other administrative services and is used by several services as the default user Keep in mind that the admin password will b...

Page 130: ...Manager and other services supporting and incorporating remote authentication Administrative status Enable or disable remote authentication Server address RADIUS server address Secret Secret used to a...

Page 131: ...nfiguration will be set to factory defaults Also keep in mind that some hardware features may not work e g if not implemented in that version In doubt please consult our support team A software image...

Page 132: ...wnload the files from a specifc URL URL The server URL where the firmware files should be downloaded from Sup ported protocols are TFTP HTTP HTTPS and FTP protocol serv er path file Software Profiles...

Page 133: ...a complete package zip containing the configuration file and a packed version of other essential files such as certificates File Configuration This section can be used to download the currently runni...

Page 134: ...uration directives stay the same as in the currently running configuration Automatic Updates Status Enable disable automatic configuration update Time of day Time of day when the system will check for...

Page 135: ...factory defaults which will reside active even when a factory reset has been initiated e g by your service staff Please ensure that this corresponds to a working configuration A real factory reset to...

Page 136: ...ote host Define the target host IP or hostname Time To Live TTL number of hops on the resulting route and the timeout in seconds max time to wait for the final respond The tcpdump utility generates a...

Page 137: ...to 1000 For downloading the file just click on the Download button The captured file can be also downloaded from the tmp directory via the appropriate file manager The darkstat utility can be used to...

Page 138: ...arate window Displaying graphs and individual host statistics are supported System Debugging Log files can be viewed downloaded and reset here Please study them carefully in case of any issues MG102iG...

Page 139: ...Default debugging levels for individual daemons are as follows configd 4 watchdog 4 swupdate 5 wwan managerc 5 led manager 5 139 RACOM s r o MG102iGPRS UMTS HSPA LTE router Web Configuration...

Page 140: ...afterwards Tech Support You can generate and download a tech support file here We strongly recommend providing this file when getting in touch with our support team either by e mail or via our online...

Page 141: ...le in a plain text anyway 7 7 6 Keys Certificates The key and certificate page lets you generate required files for securing your services such as the HTTPS WebServer and SSH server Keep in mind that...

Page 142: ...g WPA EAP TLS Authorities Other certificate authorities which we trust when establishing SSL client connections For each certificate section it is possible to perform the following operations generat...

Page 143: ...me of the organizational unit to which the certificate issuer belongs Location L The certificate owner s location State ST The certificate owner s state Country C The certificate owner s country usual...

Page 144: ...PKCS12 RSA DSS keys can be converted from OpenSSH or Dropbear formats It is possible to specify the passphrase for opening the private key Please note that the system will generally apply the system w...

Page 145: ...has been rejected you are required to erase the certificate first and then start the enrollment process all over again Authorities For SSL client connections as used by SDK functions or when download...

Page 146: ...that may be licensed under GPL LGPL or other open source licenses It further provides de tailed information for each package including the relevant license text and the corresponding source URL The u...

Page 147: ...147 RACOM s r o MG102iGPRS UMTS HSPA LTE router Web Configuration...

Page 148: ...7 8 LOGOUT Log out from Web Manager MG102iGPRS UMTS HSPA LTE router RACOM s r o 148 Web Configuration...

Page 149: ...ents by hitting the TAB key at any time This applies to commands but also to arguments and generally offers a convenient way for working on the shell Please note that each CLI session will perform an...

Page 150: ...CLI if at the beginning of the line CTRL d Drag the character before point forward moving point forward as well If point is at the end of the line then this transposes the two characters before point...

Page 151: ...to logout history Show command history exit Exit 8 3 Getting config parameters The get command can be used to get configuration values not the current values get h Usage get hsvfc parameter parameter...

Page 152: ...reset missing config values with factory defaults s show update status Available update targets software Perform software update firmware Perform module firmware update config Update configuration li...

Page 153: ...WAN interface status openvpn OpenVPN connection status ipsec IPsec connection status pptp PPTP connection status gre GRE connection status dialin Dial In connection status mobileip MobileIP status dio...

Page 154: ...ceable output Available interfaces Mobile1 wwan0 See the example below scan s Mobile1 NETWORK1_NAME EUROTEL CZ NETWORK1_LAI 23002 NETWORK1_RAT GSM NETWORK1_SERVICE CSD NETWORK1_STATUS Current NETWORK2...

Page 155: ...services configd Configuration daemon dnsmasq DNS DHCP server dropbear SSH server firewall Firewall and NAPT gpsd GPS daemon gre GRE connections ipsec IPsec connections lighttpd HTTP server link mana...

Page 156: ...r2net qosd gpsd rrsp2 rrsp21 link manager wwanmd wwan manager 8 12 Resetting system The reset command can be used to reset the router back to factory defaults reset h Usage reset h facility Available...

Page 157: ...d to configure and control the router remotely It is enabled in factory configuration thus can be used for deployment purposes but disabled as soon as the admin account has been set up The service can...

Page 158: ...38 which usually done by common clients such as wget lynx curl Response The returned response will always contain a status line in the format return msg with return values of OK if succeeded and ERROR...

Page 159: ...served char i e arg0 key0 arg1 val0 arg2 key1 arg3 val1 arg4 key2 arg5 val2 etc Examples http 192 168 1 1 cli php version 2 output html usr admin pwd admin01 command set arg0 snmp status arg1 1 http 1...

Page 160: ...admin pwd 127 admin01 command update arg0 software arg1 tftp 192 168 1 254 latest http 192 168 1 1 cli php version 2 output html usr admin pwd admin01 command update arg0 config arg1 tftp 192 168 1 2...

Page 161: ...ct Notes The address has to be a valid E Mail address such as abc abc com the at sign can be encoded with 40 The E Mail client must be properly configured prior to using that function In case of stdou...

Page 162: ...Examples http 192 168 1 1 cli php version 2 output html usr admin pwd admin01 command send arg0 ussd arg1 0 arg2 2A100 23 MG102iGPRS UMTS HSPA LTE router RACOM s r o 162 Command Line Interface...

Page 163: ...The Web Manager displays messages in the status bar in the footer of a web page There are three levels Green The action was performed successfully Yellow Warning please consider the information Red Er...

Page 164: ...formation about boot up process and about running processes can be found in the Linux like Log files see the SYSTEM Troubleshooting System Debugging menu MG102iGPRS UMTS HSPA LTE router RACOM s r o 16...

Page 165: ...o extreme ambient conditions Protect the communication module against dust moisture and high temperature We remind the users of the duty to observe the restrictions concerning the utilization of radio...

Page 166: ...electronic equipment containing these hazardous substances lead cadmium mercury hexavalent chromium polybrominated biphenyls PBBs and polybrominated diphenyl ethers PBDEs End of life recycling progra...

Page 167: ...standards used for demonstration of conformity Safety Health EN 60950 1 2006 A11 2009 A1 2010 A12 2011 A2 2013 RED article 3 1a EN 62311 2008 EMC EN 55024 2010 RED article 3 1b EN 55032 2012 EN 61000...

Page 168: ...orave Czech Republic Tel 420 565 659 511 Fax 420 565 659 512 E mail racom racom eu Part Number Description MG102i L dual SIM GPRS EDGE HSPA LTE router 5Eth RS232 2DI 2DO MG102i U dual SIM GPRS EDGE UM...

Page 169: ...freight If circumstances do not permit the equipment to be returned to RACOM then the customer is liable and agrees to reim burse RACOM for expenses incurred by RACOM during servicing the equipment on...

Page 170: ...l System for Mobile communications GUI Graphical User Interface HSCSD High Speed Circuit Switched Data HSDPA High Speed Downlink Packet Access HSUPA High Speed Uplink Packet Access HTML Hypertext Mark...

Page 171: ...TCP Transmission Control Protocol TFTP Trivial File Transfer Protocol UDP User Datagram Protocol UMTS Universal Mobile Telecommunications System URL Universal Resource Locator VPN Virtual Private Netw...

Page 172: ...1 ethernet 30 event manager 113 F factory reset 135 features 18 key features 7 file configuration 133 firewall 81 G glossary 170 GPS 64 H home 25 I implementation notes 11 indication LEDs 16 installat...

Page 173: ...22 services 100 SIM 35 SIM card 22 SMS 115 SNMP agent 119 software update 130 specification 18 standards 8 start 6 system 126 bootloader 127 leds 127 restart 128 settings 126 syslog 126 T technical sp...

Page 174: ...174...

Page 175: ...r FW version 3 7 40 x 2015 01 10 Revision 1 4 Added section Section 7 7 8 Legal Notice 2015 11 03 Revision 1 5 Complete manual revision for FW version 3 8 40 x 2016 03 21 Revision 1 6 Update sections...

Search results

Summary of Contents for MG102i

Reviews:

Related manuals for MG102i

Brands by name

Popular brands

RACOM MG102i, Operating Manual

Search results

Summary of Contents for MG102i

Reviews:

Related manuals for MG102i

Brands by name

Popular brands