DeviceMaster LT User Guide
: 2000586
Rev. B
DeviceMaster LT Security - 59
Configure/Enable Security Features Overview
Enable Secure
Config Mode
If
Secure Config Mode
is enabled, unencrypted access to
administrative and diagnostic functions is disabled.
Secure
Config Mode
changes DeviceMaster LT behavior as follows:
•
Telnet access to administrative and diagnostic functions is
disabled. SSH access is still allowed.
•
Unencrypted access to the web server via Port 80 (http://
URLs) is disabled.
•
Encrypted access to the web server via Port 443 (https://
URLs) is still allowed.
•
Administrative commands that change configuration or
operating state which are received using the Comtrol
proprietary TCP driver protocol on TCP Port 4606 are
ignored.
•
Administrative commands that change configuration or
operating state that are received using the Comtrol MAC
mode proprietary Ethernet protocol number 0x11FE are
ignored.
Enable
Monitoring
Secure Data via
Telnet
When checked, this allows the monitor command to be used
while
Secure Data Mode
is enabled. When unchecked, the
monitor command can only be used if
Secure Data Mode
is not
enabled. You must click
Save
and reboot the DeviceMaster LT for
the change to go into affect. This option is disabled by default.
The
Enable Monitoring Secure Data via Telnet
feature allows you to
monitor serial data being sent/received on a serial port (either
via NS-Link or SocketServer). The monitoring is done by
telnetting to the DeviceMaster LT and using the following
commands:
•
monitor [-ac] portnumber
Display a live hex dump of TX/RX data for the specified
serial port. You can only monitor one port at a time. The live
dump will continue until the
Enter
key is pressed. See the
following detailed description and examples. The data is
logged when it is written/read to/from the serial port driver's
TX/RX buffers -- as such, the relative timing between RX/TX
bytes is not precise, but it should be sufficient to debug most
problems (especially frame-oriented, command/response
serial protocols).
Monitoring serial data through a telnet connection does
generate extra network traffic and may have small effects on
the timing of DeviceMaster LT operations when large
amounts of data are being logged at high baud rates. See
on Page 60 for more information.
-
The
-a
option enables displaying of ASCII representation
of data in a column to the right the hex representation.
See
-
The
-c
option enables the use of color instead of < and >
to indicate the data flow direction. Tx is green and Rx is
red. See
(
continued
)
Security
Option
Description