B&B Electronics SPECTRE Скачать руководство пользователя страница 45

Страница: 45 / 90

B&B Electronics, Inc.

SPECTRE Configuration Manual

710-10001-02 Rev. 3.0

www.bb-elec.com

www.bb-europe.com

Item

Description

Description

Description of tunnel.

Remote IP
Address

IP address or domain name of the remote host.

Remote ID

Identification of remote host. The ID contains two parts: a

hostname

and a

domain-name

Remote Subnet

Remote Subnet address

Remote Subnet
Mask

Remote Subnet mask

Local ID

Identification of local host. The ID contains two parts: a

hostname

and

domain-name

Local Subnet

Local subnet address

Local subnet mask Local subnet mask
Key Lifetime

Lifetime key data part of tunnel. The minimum value of this parameter
is 60s. The maximum value is 86400 s.

IKE Lifetime

Lifetime key service part of tunnel. The minimum value of this
parameter is 60s. The maximum value is 86400 s.

Rekey Margin

Specifies the amount of time before the connection will be re-
established. The maximum value must be less than half of the
parameters IKE and Key Lifetime.

Rekey Fuzz

Specifies the maximum percentage by which the Rekey Margin should
be randomly increased to randomize re-keying intervals

DPD Delay

Defines time after which IPsec tunnel verification occurs

DPD Timeout

Defines the timeout (in seconds) for a DPD response.

NAT traversal

If address translation between two end points of the IPsec tunnel is
used, it needs to allow NAT Traversal

Aggressive mode

If this parameter is enabled, the IPsec tunnel will be connected faster,
but encryption will set permanently on 3DES-MD5.

Authenticate Mode

Defines the authentication mode:



Pre-shared key

shared key for both sides.



X.509 Certificate

Pre-shared Key

Shared key for both sides of the tunnel

CA Certificate

This certificate is necessary for Authentication mode x.509.

Remote Certificate

This certificate is necessary for Authentication mode x.509.

Local Certificate

This certificate is necessary for Authentication mode x.509.

Local Private Key

This private key is necessary for Authentication mode x.509.

Local Passphrase

This Local Passphrase is necessary for Authentication mode x.509.

Extra Options

Use this parameter to define additional parameters of the IPsec
tunnel, for example security parameters etc.

Table 30: IPsec tunnel configuration

The certificates and private keys have to be in PEM format.

Содержание SPECTRE

Страница 1: ...710 10001 02 Rev 3 0 www bb elec com www bb europe com SPECTRE Router CONFIGURATION MANUAL...

Страница 2: ...eproduced or transmitted in any form or by any means electronic or mechanical including photography recording or any information storage and retrieval system without written consent Information in thi...

Страница 3: ...uations Useful tips or information of special interest GPL license Source codes under GPL license are available free of charge by sending an email to support bb elec com Router version The properties...

Страница 4: ...31 1 10 8 Dial in Access 32 1 10 9 PPPoE bridge mode configuration 32 1 11 PPPoE configuration 34 1 12 Firewall configuration 35 1 13 NAT configuration 37 1 14 OpenVPN tunnel configuration 40 1 15 IPS...

Страница 5: ...38 Update firmware 81 1 39 Reboot 81 2 Router Configuration over Telnet 82 3 Wi Fi Configuration 83 3 1 Wi Fi Access Point 83 3 2 WLAN DHCP 84 3 3 Wireless Network Scanning 85 3 4 Wi Fi Start Log 86...

Страница 6: ...ration 2 33 Fig 22 Example of GPRS configuration 3 33 Fig 23 PPPoE configuration 34 Fig 24 Example 5 Network Topology for Firewall Application 36 Fig 25 Example 5 Firewall configuration 36 Fig 26 Exam...

Страница 7: ...73 Fig 58 Example of Serial Extension using USB port 73 Fig 59 Startup script 74 Fig 60 Example of Startup script 74 Fig 61 Up Down script 75 Fig 62 Example of Up Down script 75 Fig 63 Example of auto...

Страница 8: ...en SIM card configurations 32 Table 20 Dial In access configuration 32 Table 21 PPPoE configuration 34 Table 22 Firewall configuration 35 Table 23 NAT configuration 37 Table 24 Configuration of send a...

Страница 9: ...ion 68 Table 53 TCP Keep Alive Configuration 68 Table 54 CD signal description 69 Table 55 DTR signal description 69 Table 56 USB port configuration 1 71 Table 57 USB PORT configuration 2 71 Table 58...

Страница 10: ...a the Web interface To access the router over the web interface enter http xxx xxx xxx xxx into the URL for the browser where xxx xxx xxx xxx is the router IP address The modem s default IP address is...

Страница 11: ...ecurity certificate If you do click on Continue to this website If you wish to prevent this message you must install a security certificate into the router Since the domain name in the certificate is...

Страница 12: ...on Bcast Broadcast address Mask Network Subnet Mask MTU Maximum transmittable packet size Metric Number of routers that the packet must pass through RX packets number of received packets errors number...

Страница 13: ...et mask default gateway IP address of router and DNS server IP address of router For each client in the list the DHCP status window displays the following information Item Description lease Assigned I...

Страница 14: ...N connection during each logging period The router has standard intervals such as the previous 24 hours and last week and also includes information one user defined interval Period Definition of the p...

Страница 15: ...established for each SIM card during the period Item Description RX data Total volume of received data TX data The total volume of data sent Connections Number of times that a PPP connection was estab...

Страница 16: ...IPsec status 1 6 DynDNS status The router supports DynamicDNS using a DNS server on www dyndns org If Dynamic DNS is configured the status can be displayed by selecting menu option DynDNS Refer to www...

Страница 17: ...deleted and a new log file is started The program syslogd can be run on the router to configure the system log The syslogd option s followed by decimal number will set the maximum number of lines in t...

Страница 18: ...duplex mode Default Gateway IP address of Default gateway for the router When entering IP address of default gateway all packets for which the record was not found in the routing table are sent to th...

Страница 19: ...ble a static DHCP server MAC Address MAC address of a DHCP client IP Address Assigned IP address Table 11 Configuration of static DHCP server Example of the network interface configuration for a dynam...

Страница 20: ...B B Electronics Inc SPECTRE Configuration Manual 20 710 10001 02 Rev 3 0 www bb elec com www bb europe com Fig 10 Example 1 LAN Configuration Page...

Страница 21: ...to 192 168 1 4 The address is allocated for 10 minutes The client with MAC address 01 23 45 67 89 ab has IP address 192 168 1 10 The client with MAC address 01 54 68 18 ba 7e has IP address 192 168 1...

Страница 22: ...ample of the network interface configuration with default gateway and DNS server Default gateway IP address is 192 168 1 20 DNS server IP address is 192 168 1 20 Fig 13 Example 3 Network Topology Fig...

Страница 23: ...network In some cases the PPP connection could still be active but the router will not be able to send data over the cellular network This feature is used to verify that data can be sent over the PPP...

Страница 24: ...com Example of the VRRP protocol Fig 15 Example 4 Network Topology for VRRP configuration Fig 16 Example 4 VRRP configuration of main router Main router Virtual server ID 5 Host priority 255 192 168 1...

Страница 25: ...B B Electronics Inc SPECTRE Configuration Manual 25 710 10001 02 Rev 3 0 www bb elec com www bb europe com Fig 17 Example 4 VRRP configuration of backup router...

Страница 26: ...3 0 www bb elec com www bb europe com 1 10 Mobile WAN configuration The SPECTRE RT industrial router does not display the Mobile WAN Configuration option Select the Mobile WAN menu item to enter the c...

Страница 27: ...ic UMTS provider Refer to Section 1 10 3 for activating the router on the Sprint CDMA network The carrier selection drop down list is not available on LTE devices For LTE devices the carrier must be s...

Страница 28: ...s not filled in the network operator will automatically assign an IP address when the connection is established If a static IP address is supplied by the operator the time required to connect to the n...

Страница 29: ...can also be found on the Mobile WAN status web page when Sprint is selected as the primary carrier 2 Connect the antennas and Ethernet cable to the router and power up the device 3 Select Sprint as t...

Страница 30: ...n is selected the router stops sending ping questions to the Ping IP Address and it will watch traffic in PPP connection If PPP connection is without traffic longer than the Ping Interval then the rou...

Страница 31: ...ata limit is exceeded will switch the router to off line mode Item Description Switch to other SIM card when connection fails If the PPP connection fails the router will switch to the secondary SIM ca...

Страница 32: ...ows Initial Timeout 60 min Subsequent Timeout 30 min Additive Constant 20 min The first attempt to switch back to the primary SIM card or APN shall be carried out after 60 minutes The second attempt w...

Страница 33: ...ty on the PPP link Fig 20 Example of GPRS configuration 1 Figure 20 shows an example of how to configure the router to automatically switch to the backup SIM card when it exceeds the data limit of 800...

Страница 34: ...or a PPPoE server After a PPPoE connection is established the router obtains the IP address of the PPPoE Server device and all communications from the device are forwarded to the industrial router It...

Страница 35: ...eters can be defined for each filter Source Source IP Address Protocol and Target Port Item Description Source single address allows access to only the specific IP address defined in the Source IP Add...

Страница 36: ...r has allowed the following access from host address 171 92 5 45 using any protocol from host address 10 0 2 123 using TCP protocol on any ports from host address 142 2 26 54 using ICMP protocol Fig 2...

Страница 37: ...ll incoming traffic from the PPP to a single internal host address Item Description Send all incoming packets to default server Select this item to route all traffic received over the PPP connection t...

Страница 38: ...uration with one host connected to the router Fig 26 Example 6 Network Topology for Basic NAT Fig 27 Example 6 Basic NAT Configuration In this configuration it is important to select Send all remainin...

Страница 39: ...bb europe com Example NAT configuration with additional connected equipment Fig 28 Example 7 Network Topology for Advanced NAT Fig 29 Example 7 Advanced NAT Configuration 162 209 13 222 192 168 1 2 8...

Страница 40: ...cate using UDP TCP server OpenVPN will communicate using TCP in server mode TCP client OpenVPN will communicate using TCP in client mode UDP TCP port Port by which the tunnel will communicate Remote I...

Страница 41: ...cation by CA Certificate Local Certificate and Local Private Key X 509 Certificate client enables authentication by CA Certificate Local Certificate and Local Private Key X 509 Certificate server enab...

Страница 42: ...B B Electronics Inc SPECTRE Configuration Manual 42 710 10001 02 Rev 3 0 www bb elec com www bb europe com Fig 31 OpenVPN tunnel configuration...

Страница 43: ...255 0 255 255 255 0 Local Interface IP Address 19 16 1 0 19 16 2 0 Remote Interface IP Address 19 16 2 0 19 18 1 0 Compression LZO LZO Authenticate mode none none Table 28 Example OpenVPN configurati...

Страница 44: ...unnel IPsec is a protocol which is used to create a secure connection between two LANs Up to 4 IPsec tunnels may be created Item Description Create This item enables the individual tunnels Description...

Страница 45: ...rgin should be randomly increased to randomize re keying intervals DPD Delay Defines time after which IPsec tunnel verification occurs DPD Timeout Defines the timeout in seconds for a DPD response NAT...

Страница 46: ...t will exchange new keys is defined as follows Lifetime Rekey margin random value in range from 0 to Rekey margin Rekey Fuzz 100 By default the time for the exchange of keys is between Minimum time 1h...

Страница 47: ...255 255 0 Local Subnet 192 168 1 0 192 168 2 0 Local Subnet Mas 255 255 255 0 255 255 255 0 Authenticate mode pre shared key pre shared key Pre shared key test test Table 31 Example 8 IPsec Configura...

Страница 48: ...l Edit Configure the GRE tunnel Table 32 Overview GRE tunnels Fig 36 GRE tunnels configuration Item Description Description Description of tunnel Remote IP Address IP address of the remote side of the...

Страница 49: ...RE tunnel Configuration Configuration A B Remote IP Address 10 0 0 2 10 0 0 1 Remote Subnet 192 168 2 0 192 168 1 0 Remote Subnet Mask 255 255 255 0 255 255 255 0 Table 34 Example 9 GRE Tunnel Configu...

Страница 50: ...the IP address of the server Server IP Address IP address of server Client Start IP Address Start IP address in range which is offered by server to clients Client End IP Address End IP address in ran...

Страница 51: ...t Start IP Address 192 168 1 2 Client End IP Address 192 168 1 254 Local IP Address 192 168 1 1 Remote IP Address Remote Subnet 192 168 2 0 192 168 1 0 Remote Subnet Mask 255 255 255 0 255 255 255 0 U...

Страница 52: ...nd end IP address range offered by the server PPTP client For a client you must enter the IP address of the server Server IP Address IP address of server Local IP Address IP address of the local side...

Страница 53: ...PTP Client Server IP Address 10 0 0 1 Local IP Address 192 168 1 1 Remote IP Address Remote Subnet 192 168 2 0 192 168 1 0 Remote Subnet Mask 255 255 255 0 255 255 255 0 Username username username Pas...

Страница 54: ...ription Hostname Third order domain registered on server www dyndns org Username Username for login to DynDNS server Password Password for login to DynDNS server Server If you want to use a different...

Страница 55: ...selected the router will function as an NTP server for other devices on the LAN Item Description Primary NTP Server Address IP or domain address primary NTP server Secondary NTP Server Address IP or d...

Страница 56: ...for access to the SNMP agent Contact How to contact the person who manages the router Name Designation of the router Location Location of the router Table 41 SNMP configuration Select the Enable I O...

Страница 57: ...tput For the expansion port CNT the following range of OID is used OID Description 1 3 6 1 4 1 30140 2 1 1 0 Analogy input AN1 range 0 4095 1 3 6 1 4 1 30140 2 1 2 0 Analogy input AN2 range 0 4095 1 3...

Страница 58: ...guration Fig 46 Example of the MIB browser It is important to set the IP address of the SNMP agent router in the field Remote SNMP agent After entering the IP address it is possible show object identi...

Страница 59: ...st use the SMTP server of the operator Example settings for the SMTP client Fig 48 SMTP configuration An E mail can be sent from the Startup script The following command is used to send emails with fo...

Страница 60: ...is set using parameters BIN1 BIN4 Add timestamp to SMS Adds a time stamp to the sent SMS messages The timestamp has the format YYYY MM DD hh mm ss Phone Number 1 The telephone numbers that the SMS me...

Страница 61: ...et binary I O output to 1 set out1 0 Set binary output on port 1 to a 0 set out1 1 Set binary output on port 1 to a 1 set profile std Set standard profile set profile alt1 Set alternative profile 1 se...

Страница 62: ...nables to send SMS on entered tel number AT CMGL ALL List of all SMS messages AT CMGR index Read of the definite SMS all SMS has our index AT CMGD index SMS delete according to index Table 51 AT comma...

Страница 63: ...ored sent SMS ALL all SMS messages sender number tel number from which the SMS was received date date SMS message received time time SMS message received Example CMGL 1 REC UNREAD 420721123456 08 02 0...

Страница 64: ...s been powered up GSM signal strength xx dBm The format of the Router PPP connection SMS message is as follows Router Unit ID has established PPP connection IP address xxx xxx xxx xxx After a PPP disc...

Страница 65: ...ics Inc SPECTRE Configuration Manual 65 710 10001 02 Rev 3 0 www bb elec com www bb europe com Router configuration for sending SMS messages via the serial interface on PORT1 Fig 50 Example of SMS con...

Страница 66: ...Inc SPECTRE Configuration Manual 66 710 10001 02 Rev 3 0 www bb elec com www bb europe com Example of the router configuration for accepting SMS messages from every phone number Fig 51 Example of SMS...

Страница 67: ...Inc SPECTRE Configuration Manual 67 710 10001 02 Rev 3 0 www bb elec com www bb europe com Example of the router configuration for accepting SMS messages from two phone numbers Fig 52 Example of SMS...

Страница 68: ...ol parity bit none even odd Stop Bits Number of stop bits Split Timeout Inter character Timeout If no characters are received within this amount of time any buffered characters will be sent over the E...

Страница 69: ...tive TCP connection is off Table 54 CD signal description Select Use DTR as control of TCP connection to use DTR to control when TCP connections are allowed CD on the router DTR Description server Des...

Страница 70: ...ension 192 168 1 100 ppp0 10 0 0 1 192 168 1 1 ppp0 10 0 0 2 Settings in application on PC TCP connection on 10 0 0 2 2000 Settings in the router Mode TCP server Server Address TCP Port 2000 ETH RS 23...

Страница 71: ...CP server The router will listen to incoming requests regarding the TCP connection TCP client The router will connect to a TCP server on the specified IP address and TCP port Server Address In mode TC...

Страница 72: ...ctions are allowed CD on the router DTR Description server Description client Active The router will accept a TCP connection Router creates a TCP connection Nonactive The router does not accept incomi...

Страница 73: ...192 168 1 100 ppp0 10 0 0 1 192 168 1 1 ppp0 10 0 0 2 Settings in application on PC TCP connection on 10 0 0 2 2000 Settings in the router Mode TCP server Server Address TCP Port 2000 ETH USB RS 232 P...

Страница 74: ...will be executed after all of the initialization scripts are run Fig 59 Startup script Any changes to the startup scripts will take effect the next time the router is power cycled or rebooted Example...

Страница 75: ...is started or goes down Any scripts entered into the Up script window will run after a PPP WAN connection is established Script commands entered into the Down Script window will run when the PPP WAN...

Страница 76: ...ory of the connected USB device Both Router will check for new firmware or configuration files in both places Base URL Base URL or IP address from which the configuration file will be downloaded Unit...

Страница 77: ...r configurations each day at 1 00 a m An example is given for the SPECTRE 3G router with MAC address 00 11 22 33 44 55 Firmware http router cz spectre3g bin Configuration file http router cz 00 11 22...

Страница 78: ...button is pressed Any changes will take effect after restarting router through the Reboot menu in the web administrator or using an SMS message Example of usage profiles Profiles can be used to switc...

Страница 79: ...the SMSC information The phone number can be entered with or without an international prefix For example 420 xxx xxx xxx If you are unable to send or receive SMS messages contact your carrier to find...

Страница 80: ...ing an HTTP request in the form GET send_exec cgi phone 2B420712345678 message Test HTTP 1 1 Authorization Basic cm9vdDpyb290 The HTTP request will be sent to TCP connection on router port 80 Router s...

Страница 81: ...file and press the Update button to begin the update Do not turn off the router during the firmware update Fig 73 Update firmware During the firmware update the router will show the following message...

Страница 82: ...bout available memory gsmat Send an AT commend gsminfo Display information about signal quality gsmsms SMS send hwclock display change time in RTC ifconfig display change interface configuration io re...

Страница 83: ...link is located on the User Modules customization web page The link to Wi Fi AP information is in the Status section Item Description hostapd state dump Time stamp of actual WiFi status num_sta Numbe...

Страница 84: ...sk default gateway IP address of router and DNS server IP address of router to each device The following table lists the information that is displayed in the DHCP status window for each attached clien...

Страница 85: ...imers for all stations in the same Basic Service Set BSS synchronized All stations shall maintain a local TSF timer freq Frequency band of access point AP beacon interval Period of time synchronizatio...

Страница 86: ...Wi Fi AP The basic component Wi Fi AP hostapd is the exception This component writes its log entries to the System Log Fig 78 Wi Fi AP Start Log 3 5 System Log If there are problems with Wi Fi connect...

Страница 87: ...use US as the default country code If no country code is specified or if the wrong country code is entered then the router may violate country specific regulations for the use of the Wi Fi frequency b...

Страница 88: ...key 32 hexadecimal digits 128b WEP key WPA PSK Type Type of key for WPA PSK authentication 256 bit secret ASCII passphrase PSK File WPA PSK Key for WPA PSK authentication This key must be entered acco...

Страница 89: ...B B Electronics Inc SPECTRE Configuration Manual 89 710 10001 02 Rev 3 0 www bb elec com www bb europe com Fig 80 Wi Fi AP Configuration Page...

Страница 90: ...is not connected with LAN router Yes Bridged mode is allowed WLAN network is connected with one or more LAN network in router In this case the setting of most items in this table is ignored Instead it...

Результаты поиска

Содержание SPECTRE

Отзывы:

Похожие инструкции для SPECTRE

Бренды по названию

Популярные бренды

B&B Electronics SPECTRE, Руководство по настройке

Результаты поиска

Содержание SPECTRE

Отзывы:

Похожие инструкции для SPECTRE

Бренды по названию

Популярные бренды