IRIS-4 Technical Reference Manual.docx 12/01/2023
page 21
Communication tests
Each communication path is tested by sending a test poll and test alarm. If these tests fail, the failure is
displayed together with possible measures that can be taken to solve the problem.
5.3.1.1
Connection failed
If the call did not reach the ISA system, these are the remedies for the possible
causes:
Check that the ARC IP address entered is correct for the ARC.
Check the LAN IP address setup for the terminal
and confirm with the customer IT department that you have the correct addresses for their network.
If using Ethernet on a Virtual Private Network (VPN), the ARC IP would be defined for that VPN but not
correct for cellular connections which will not be on the VPN. If this is the case, please have the ARC
operator check the ISA setup for this account to have a separate address for the cellular connection.
Ensure the alarm and polling port (TCP Port 53165) is not blocked outbound by the customer’s firewall.
For cellular connections, ensure the SIM card is set up for cellular Machine-to-Machine data and configured
with the correct Access Point (APN) details.
5.3.1.2
Connection made, Poll failed
This indicates that the test poll or alarm call has reached the ISA system, but the
account number is not valid.
Check that the programmed account number is correct.
Check with the ARC that the account in ISA is correctly set up.
5.3.1.3
Authentication failed
This indicates that the test poll call has reached the ISA system, but the security
keys do not match.
Check if the terminal has recently been replaced or defaulted. If so, the ISA
operator will need to reload the security key into the terminal using the Allocator
App.
The security key is a feature designed to prevent substitution attacks against both the terminal and the ARC.
When enabled, the ARC and terminal use an agreed private key. This key must be used for all future polling
authentication. Both the terminal and the Polling Engine authenticate each other, thus ensuring a
replacement terminal cannot be used to fool a Polling Engine into thinking its status is unaffected during
malicious tampering; it also makes sure the terminal will be aware if its IP traffic has been maliciously
redirected to a different ISA system.
If the installer has recently replaced or defaulted the terminal, the ISA operator must reload the security key,
e.g., by using the Allocator App.
Checking S/W version
Once the terminal has established its first connection path, it will check its
software version with an external server operated by AddSecure.
The Checking S/W Version screen is displayed.
