manualshive.com logo in svg

Comtrol DeviceMaster LT, Руководство пользователя

Поделиться
Скачать
Comtrol DeviceMaster LT Скачать руководство пользователя страница 45

DeviceMaster LT User Guide

: 2000586 

Rev. B

 DeviceMaster LT Security  - 45

DeviceMaster LT Security

This subsection provides a basic understanding of the DeviceMaster LT security 
options, and the repercussions of setting these options. See 

Removing 

DeviceMaster LT Security Features

 on Page 131 if you need to reset DeviceMaster 

LT security options. See 

Returning the DeviceMaster LT to Factory Defaults

 on 

Page 133 if you want to return the DeviceMaster LT settings to their default 
values. 

Understanding Security Methods and Terminology

The following table provides background information and definitions.

Term or 

Issue

Explanation

CA (Client 
Authentication 
certificate) 

If configured with a CA certificate, the DeviceMaster LT requires all SSL/TLS 
clients to present an RSA identity certificate that has been signed by the 
configured CA certificate. As shipped, the DeviceMaster LT is not configured 
with a CA certificate and all SSL/TLS clients are allowed.

This uploaded CA certificate that is used to validate a client's identity is 
sometimes referred to as a 

trusted root certificate

, a 

trusted authority 

certificate

, or a 

trusted CA certificate

. This CA certificate might be that of a 

trusted commercial certificate authority or it may be a privately generated 
certificate that an organization creates internally to provide a mechanism to 
control access to resources that are protected by the SSL/TLS protocols.

See 

Key and Certificate Management

 on Page 61 for more information. This 

section does not discuss the creation of CA Certificates.

Client 
Authentication

A process using paired keys and identity certificates to prevent unauthorized 
access to the DeviceMaster LT. Client authentication is discussed in 

Client 

Authentication

 on Page 54 and 

Changing Keys and Certificates

 on Page 64.

DH Key Pair 
Used by SSL 
Servers 

This is a private/public key pair that is used by some cipher suites to encrypt 
the SSL/TLS handshaking messages. Possession of the private portion of the 
key pair allows an eavesdropper to decrypt traffic on SSL/TLS connections 
that use DH encryption during handshaking.

The DH (Diffie-Hellman) key exchange, also called exponential key exchange, 
is a method of digital encryption that uses numbers raised to specific powers 
to produce decryption keys on the basis of components that are never directly 
transmitted, making the task of a would-be code breaker mathematically 
overwhelming.

The most serious limitation of Diffie-Hellman (DH key) in its basic or 

pure

 

form is the lack of authentication. Communications using Diffie-Hellman all 
by itself are vulnerable to 

man in the middle attacks

. Ideally, Diffie-Hellman 

should be used in conjunction with a recognized authentication method such 
as digital signatures to verify the identities of the users over the public 
communications medium.

See 

Certificates and Keys

 on Page 54 and 

Key and Certificate Management

 on 

Page 61 for more information.

† All DeviceMaster LT units are shipped from the factory with identical configurations. They 

all have the identical, self-signed, Comtrol Server RSA Certificates, Server RSA Keys, Server 
DH Keys, and no Client Authentication Certificates. For maximum data and access security, 
you should configure all DeviceMaster LT units with custom certificates and keys.

Содержание DeviceMaster LT

Страница 1: ...User Guide ...

Страница 2: ...es mentioned herein may be trademarks and or registered trademarks of their respective owners Second Edition July 18 2014 Copyright 2014 Comtrol Corporation All Rights Reserved Comtrol Corporation makes no representations or warranties with regard to the contents of this document or to the suitability of the Comtrol product for any particular purpose Specifications subject to change without notice...

Страница 3: ...Uploading SocketServer with PortVision DX 24 Customizing PortVision DX 26 Accessing DeviceMaster LT Documentation from PortVision DX 27 How to Download Documentation 27 How to Open Previously Downloaded Documents 28 Device Driver NS Link Installation 29 Overview 29 Before Installing the NS Link Driver 29 Linux Installations 30 Windows Installations 31 Supported Operating Systems 31 Installation Ov...

Страница 4: ...Keys and Certificates 64 Connecting Serial Devices 65 RJ45 Null Modem Cables RS 232 66 RJ45 Null Modem Cables RS 422 66 RJ45 Straight Through Cables RS 232 485 66 RJ45 Loopback Plugs 67 RJ45 RS 485 Test Cable 67 Connecting RJ45 Devices 67 Managing the DeviceMaster LT 69 Rebooting the DeviceMaster LT 69 Updating Firmware Across WANs Windows 70 Uploading SocketServer to Multiple DeviceMaster LTs 74 ...

Страница 5: ...eviceMaster LT 104 Uploading Firmware Telnet Method Linux 104 Setting Up a TFTP Server in Linux 104 Uploading the Firmware 105 Configuring Passwords 106 RedBoot Command Overview 107 Hardware Specifications 109 Locating DeviceMaster LT Specifications 109 External Power Supply Specifications 109 Notices 110 Radio Frequency Interference RFI FCC 15 105 110 Labeling Requirements FCC 15 19 110 Modificat...

Страница 6: ...29 TX RX LEDs 129 Network and Device LEDs 130 Removing DeviceMaster LT Security Features 131 Serial Connection Method 131 Returning the DeviceMaster LT to Factory Defaults 133 Clearing the Flash 134 Clearing EEPROM 134 Telnet Access 134 Serial Port Access 135 Web Server Access 135 Technical Support 136 ...

Страница 7: ...r LT Technical Support suggests installing one DeviceMaster LT at a time to avoid configuration problems using Hardware Installation on Page 11 2 Install PortVision DX Comtrol recommends connecting the DeviceMaster LT to a PC or laptop running Windows and that you install PortVision DX for easy IP address configuration and firmware updates See PortVision DX Requirements on Page 14 and refer to Ins...

Страница 8: ...agement Console See Configuring the NS Link Driver for Windows on Page 35 which provides an overview of COM port configuration 4 Configure device properties you can refer to Configuring COM Port Properties for Windows on Page 38 5 Optionally you may need to configure one or more ports for socket mode See Socket Port Configuration on Page 41 for information about configuring socket ports using the ...

Страница 9: ...r information for configuration procedures 3 Connect the serial devices to the DeviceMaster LT Refer to Connecting Serial Devices on Page 65 for cabling and connector information Locating Software and Documentation You can access the appropriate software assembly PortVision DX and DeviceMaster LT documentation from the Comtrol ftp site using any of these methods Comtrol Software and Documentation ...

Страница 10: ...Other DeviceMaster models use a unique version of SocketServer Device Driver Linux Install if you want tty ports Refer to the Readme file compressed in the Linux driver assembly for driver configuration procedures Windows 8 Windows Server 2012 Windows 7 Windows Server 2008 Windows Vista Windows Server 2003 Windows XP Install if you want COM ports Refer to the DeviceMaster Device Driver NS Link Use...

Страница 11: ...ort setting is RS 232 4 Apply power to the DeviceMaster LT by connecting the AC power adapter to the DeviceMaster LT the power cord to the power adapter and plugging the power cord into a power source See External Power Supply Specifications on Page 109 if you want to provide your own power supply 5 Verify that the STAT LED has completed the boot cycle and network connection for the DeviceMaster L...

Страница 12: ...12 Hardware Installation DeviceMaster LT User Guide 2000586 Rev B Hardware Installation ...

Страница 13: ...tServer and upload it into the DeviceMaster LT Page 24 Organize how PortVision DX displays your Comtrol Ethernet attached products Access the latest documentation for your Comtrol Ethernet attached product PortVision DX Overview PortVision DX automatically detects Comtrol Ethernet attached products physically attached to the local network segment so that you can configure the network address uploa...

Страница 14: ...perations that are affected how the DeviceMaster LT interacts with PortVision DX when security is enabled using the web interface SocketServer NS Link PortVision DX must scan the DeviceMaster LT before configuring security PortVision DX locates the DeviceMaster LT before setting either Secure Data Mode or Secure Config Mode If PortVision DX discovers the DeviceMaster LT after setting security the ...

Страница 15: ...X or use the link below to download the latest version 1 Locate PortVision DX using one of the following methods to download the latest version Software and Documentation CD You can use the CD menu system to check the version on the CD against the latest released version FTP site subdirectory ftp ftp comtrol com dev_mstr portvision_dx Note Depending on your operating system you may need to respond...

Страница 16: ...Configuration DeviceMaster LT User Guide 2000586 Rev B Installing PortVision DX 5 Click Next or optionally browse to a different location and then click Next 6 Click Next to configure the shortcuts 7 Click Install ...

Страница 17: ...e following program to make changes to this computer query 11 Select the Comtrol Ethernet attached products that you want to locate and then click Scan Note If the Comtrol Ethernet attached product is not on the local segment and it has been programmed with an IP address it will be necessary to manually add the Comtrol Ethernet attached product to PortVision DX 12 Go to Step 6 in the next section ...

Страница 18: ...aster LT is not on the same physical segment you can add it manually using Adding a New Device in PortVision DX on Page 75 1 If you have not done so install PortVision DX Installing PortVision DX on Page 15 2 Start PortVision DX using the PortVision DX desktop shortcut or from the Start button click All Programs Comtrol PortVision DX PortVision DX 3 Depending on your operating system you may need ...

Страница 19: ...operties screen using one of these methods Double click the DeviceMaster LT in the Device Tree or Device List pane Highlight the DeviceMaster LT in the Device Tree or Device List pane and click the Properties button Right click the DeviceMaster LT in the Device Tree or Device List pane and click Properties in the popup menu Highlight the DeviceMaster LT click the Manage menu and then Properties ...

Страница 20: ...commends using an IP address 9 Change the DeviceMaster LT network properties as required for your site If you want to disable IP communications on the DeviceMaster LT click Disable IP To use the DeviceMaster LT with DHCP click DHCP IP and make sure that you provide the MAC address of the device to the network administrator Make sure that the administrator reserves the IP address subnet mask and ga...

Страница 21: ... DeviceMaster LTs that share common values you can save the configuration file and load that configuration onto other DeviceMaster LTs See Using SocketServer Configuration Files on Page 77 for more information 12 Click Close to exit the Properties window 13 Go to Checking the SocketServer Version on Page 22 to check the SocketServer version You should update SocketServer firmware before any furthe...

Страница 22: ...er an NS Link version of SocketServer loads on the DeviceMaster LT Note Technical Support recommends that you update to the latest version of SocketServer before installing an NS Link device driver or configuring socket ports Use the following procedure to check the SocketServer version on the DeviceMaster LT and check the ftp site for the latest version 1 If necessary open PortVision DX Start Pro...

Страница 23: ... that contains the latest version of SocketServer ftp ftp comtrol com dev_mstr LT software socketserver 4 If the version on the web site is later than the version on the DeviceMaster LT download the file and then go to Uploading SocketServer with PortVision DX on Page 24 If the SocketServer version on the DeviceMaster LT is current you are ready to continue the installation and configuration proce...

Страница 24: ...T is on the other side of several switches a router or wireless go to Updating Firmware Across WANs Windows on Page 70 which provides more reliable uploads 1 Make sure that you have downloaded the latest SocketServer version from ftp ftp comtrol com dev_mstr rts software socketserver 2 If necessary open PortVision DX Start Programs Comtrol PortVision DX PortVision DX or use the desktop shortcut 3 ...

Страница 25: ...dvisory message about waiting to use the device until the status reads ON LINE In the next polling cycle PortVision DX updates the Device List pane and displays the new SocketServer version or right click the DeviceMaster LT and click Refresh 6 If the upload fails reset the Bootloader timeout to 60 seconds and then repeat Steps 3 through 5 For procedures see Changing the Bootloader Timeout on Page...

Страница 26: ...ices You can even create sessions tailored for specific audiences You can also add shortcuts to other applications using Tools Applications Customize feature The following illustrates how you can customize your view See the PortVision DX Help system for detailed information about modifying the view For example the above screen shot illustrates devices layered in folders ...

Страница 27: ...ocuments 1 If necessary open PortVision DX Start Programs Comtrol PortVision DX PortVision DX or use the desktop shortcut 2 Click Help Documentation 3 Optionally click the DOWNLOAD THE CURRENT DOCUMENTATION CATALOG ONLINE button to make sure that the latest documentation is available to PortVision DX 4 Select the product Category from the drop list 5 Select the document you want to download from t...

Страница 28: ...ment 1 If necessary open PortVision DX Start Programs Comtrol PortVision DX PortVision DX or use the desktop shortcut 2 Click Help Documentation 3 Click the Open the local copy of the document button to view the document Note If the document fails to open it may be that your browser has been disabled You can still access the document by clicking the Browse the folder for already downloaded documen...

Страница 29: ...configured in the DeviceMaster LT Configuring the Network Settings on Page 18 Checked to see if the latest version of SocketServer resides on the DeviceMaster LT Checking the SocketServer Version on Page 22 using PortVision DX or you can open your browser enter the DeviceMaster LT IP address to view the version on the Server Status page If necessary uploaded the latest version of SocketServer Uplo...

Страница 30: ...rtVision DX on a Windows system you can use RedBoot which is discussed in Configuring the Network Settings on Page 102 2 Make sure that you verify that you have the latest version of SocketServer loaded on the DeviceMaster LT If you do not want to install PortVision DX Page 15 to check the SocketServer version you can a Open SocketServer to check the version by opening your browser and entering th...

Страница 31: ...to install device drivers on Windows systems excluding Windows Server 2003 and Windows XP Installation Overview for Windows The following NS Link device driver installation and configuration procedures are discussed in this subsection Install the NS Link device driver and Comtrol Drivers Management Console using the Installation Wizard Configure the COM ports using the Comtrol Drivers Management C...

Страница 32: ...t to install in the default location 4 Click Install 5 Leave the Launch DeviceMaster Driver Installation box checked If you do not check this box you can use the shortcut under the Start button at Programs Comtrol DeviceMaster DeviceMaster Driver Installation Wizard 6 Click Finish to complete the installation of the wizard ...

Страница 33: ... LT User Guide 2000586 Rev B Device Driver NS Link Installation 33 NS Link for Windows Installation 7 Click Next to start the driver installation 8 Click Install and Next 9 Select the DeviceMaster LT from the list ...

Страница 34: ...s DeviceMaster LT model that you want to install and click Ok 11 Repeat Steps 9 and 10 for each DeviceMaster LT that you are installing and click Next 12 Click Proceed You may see the popup at the right for each port 13 Return to the Installation Wizard and click Close 14 Go to the next subsection for NS Link driver configuration procedures ...

Страница 35: ... shortcut or Start Programs Comtrol DeviceMaster DeviceMaster Driver Management Console 2 Highlight the Device Name of the DeviceMaster LT that you want to configure 3 Select the MAC address from the drop down list or enter the address from the MAC address label on the DeviceMaster LT If you programmed the IP address using PortVision DX the IP address displays in the IP Mode text box after you sel...

Страница 36: ...f you want use IP mode and the IP address is configured for your network click the IP Mode radio button and click Apply If you want to use SSL Mode you must set the DeviceMaster LT to IP mode Click the Network Settings button and click Modify to make any network settings changes 6 Optionally click Enable SSL Mode if you want to configure secure COM ports The DeviceMaster LT must be configured usin...

Страница 37: ...ate file 9 Configure the device properties a If desired change the User Friendly Device Name b Optionally set a different Keep Alive Timeout period You can set the amount of time in seconds that this DeviceMaster LT waits until it closes this connection and frees all the ports associated with it c Optionally set the TCP Timeout Multiplier value d Optionally click a different Scan Rate ms e Optiona...

Страница 38: ...features that you want to use c Optionally click the RTS Toggle Options button If your communications application does not toggle RTS when transmitting in RS 485 mode If you are using an external RS 232 to RS 485 converter which is attached to a port that is configured for RS 232 d Click the appropriate options for your environment e Click OK to save the changes and return to the port General tab ...

Страница 39: ...socket mode Socket Port Configuration on Page 41 Enabling Secure Data Mode In addition to enabling SSL mode in the driver you must Enable Secure Data Mode in the NS Link web page Use the following procedure to implement the Enable Secure Data Mode option 1 Access the NS Link web page using one of these methods Open your web browser enter the IP address and press Enter Right click the DeviceMaster ...

Страница 40: ...40 Device Driver NS Link Installation DeviceMaster LT User Guide 2000586 Rev B Enabling Secure Data Mode ...

Страница 41: ...TCP connection UDP connection See SocketServer Architecture on Page 42 for more information about socket port support Network settings after initial configuration Security which is discussed in detail starting on Page 45 Email notification services RFC1006 ISO over TCP Note For socket service configuration procedures or detailed information each field see the web page Help system Web Page Help Sys...

Страница 42: ... or that make use of UDP s broadcast capabilities UDP differs from TCP in that a UDP transmission does not first require a connection to be opened before sending data and the receiving device does not issue acknowledgements to the sender PC or Mainframe LAN WAN Ethernet Hub DeviceMaster Serial Device IP socket application Ethernet Hub TCP IP Socket Mode DeviceMaster DeviceMaster Ethernet Hub Ether...

Страница 43: ...nfigure additional settings a Click the Network tab to change the network settings b Click the Security tab to enable DeviceMaster LT security c Click the Email tab to configure email notification services d Click the RFC1006 tab to configure RFC1006 settings PortVision DX There are several ways to access the socket configuration NS Link or SocketServer page for the DeviceMaster LT using PortVisio...

Страница 44: ... is the same as the NS Link web page If the NS Link driver is not running not installed or disabled SocketServer loads when you open a web browser session Your SocketServer or NS Link version may be different than these examples The top illustration shows the web page before a NS Link device driver installation and the bottom illustration shows the web page after a device driver installation ...

Страница 45: ...tificates Client Authentication A process using paired keys and identity certificates to prevent unauthorized access to the DeviceMaster LT Client authentication is discussed in Client Authentication on Page 54 and Changing Keys and Certificates on Page 64 DH Key Pair Used by SSL Servers This is a private public key pair that is used by some cipher suites to encrypt the SSL TLS handshaking message...

Страница 46: ...rtificates Although the components of a PKI are generally understood a number of different vendor approaches and services are emerging Meanwhile an Internet standard for PKI is being worked on The public key infrastructure assumes the use of public key cryptography which is the most common method on the Internet for authenticating a message sender or encrypting a message Traditional cryptography h...

Страница 47: ...s it with User B s private key In addition to encrypting messages which ensures privacy User B can authenticate User B to User A so that User A knows that it is really User B who sent the message by using User B s private key to encrypt a digital certificate See Key and Certificate Management on Page 61 for more information SSH Secure Shell Secure Shell SSH allows data to be exchanged using a secu...

Страница 48: ...arties still appear to be communicating with each other The attack gets its name from the ball game where two people try to throw a ball directly to each other while one person in between them attempts to catch it In a man in the middle attack the intruder uses a program that appears to be the server to the client and appears to be the client to the server The attack may be used simply to gain acc...

Страница 49: ... PKI implementation methodology and consultation service that it plans to vend to other companies for a fixed price Xcert whose Web Sentry product that checks the revocation status of certificates on a server using the Online Certificate Status Protocol OCSP Netscape whose Directory Server product is said to support 50 million objects and process 5 000 queries a second Secure E Commerce which allo...

Страница 50: ...e disabled by setting the server port number to 1 and is enabled by default 161 SNMP UDP Port 161 is used by the SNMP agent if SNMP is enabled which is the default 4606 TCP Port 4606 is required if you want to use NS Link or PortVision DX if you want to update firmware without setting up a TFTP server and this port cannot be disabled 4607 TCP Port 4607 is only used for diagnostic purposes and isn ...

Страница 51: ...d ID commands are still allowed Requires SSL encryption of NS Link TCP connections Port 4606 Not directly supported by NS Link drivers for Windows and Linux The Linux driver has been tested using stunnel but manual setup is required Requires SSH instead of telnet connection to the diagnostic log TCP Port 4607 Two values for http READ and WRITE commands A2 Enable Secure Config Encrypts authenticate...

Страница 52: ...rt 23 SSH on Port 22 SSH on Port 22 SSH on Port 22 web clear on Port 80 SSL on Port 443 SSL on Port 443 SSL on Port 443 SMTP SNMP user configured disabled disabled RedBoot MAC enabled disabled disabled RedBoot 4606 enabled disabled disabled RedBoot telnet user configured disabled disabled Weakest Strongest 0 1 2 3 3 4 Supported by None Password Authentication Secure Config Secure Data Key Certific...

Страница 53: ...and man in the middle attacks on the communications channel Two slightly different SSL protocols are supported by the DeviceMaster LT SSLv3 and TLSv1 The DeviceMaster LT uses third party MatrixSSL library from PeerSec Networks http www peersec com matrixssl html SSL Authentication DeviceMaster LT SSL authentication has the following features Authentication means being able to verify the identity o...

Страница 54: ... the DeviceMaster LT by SSL clients This allows you to restrict access to the DeviceMaster LT to a limited set of clients which have been configured with corresponding ID certificates DeviceMaster LT units will be shipped without an authority certificate and will not require clients to present ID certificates This allows any and all SSL clients to connect to the DeviceMaster LT Certificates and Ke...

Страница 55: ...y certificate that the DeviceMaster LT uses during SSL TLS handshaking to identify itself It is used most frequently by SSL server code in the DeviceMaster LT when clients open connections to the DeviceMaster LT s secure web server or other secure TCP ports If a DeviceMaster LT serial port configuration is set up to open as a client a TCP connection to another server device the DeviceMaster LT als...

Страница 56: ... 3 28 seconds Since there is a certain amount of overhead for each block of data sent received on an SSL connection the SocketServer polling rate and size of bocks that are written to the SocketServer also has a noticeable effect on CPU usage Writing larger blocks of data and a slower SocketServer polling rate will decrease CPU usage and allow somewhat higher throughputs SSL Cipher Suites This sub...

Страница 57: ...ndard reference book is SSL and TLS by Eric Rescorla Wikipedia page on SSL TLS provides a good overview http en wikipedia org wiki TLS openssl contains command line tools to do the following More information is available at http www openssl org Create examine keys certificates Act as client or server ssldump is a command line tool that displays a human readable dump of an SSL connection s handshak...

Страница 58: ...ata Mode is enabled TCP connections which carry data to from the serial ports will be encrypted using SSL or TLS security protocols This includes the following TCP connections to the per serial port TCP ports default is 8000 8001 8002 and so forth are encrypted using SSL TLS TCP connections to TCP Port 4606 on which the DeviceMaster LT implements the Comtrol proprietary serial driver protocol are ...

Страница 59: ...to affect This option is disabled by default The Enable Monitoring Secure Data via Telnet feature allows you to monitor serial data being sent received on a serial port either via NS Link or SocketServer The monitoring is done by telnetting to the DeviceMaster LT and using the following commands monitor ac portnumber Display a live hex dump of TX RX data for the specified serial port You can only ...

Страница 60: ...abcABC123 61 62 63 41 42 43 31 32 33 abcABC123 61 62 63 41 42 43 31 32 33 abcABC123 61 62 63 41 42 43 31 32 33 abcABC123 61 62 63 41 42 43 31 32 33 abcABC123 Continued from the previous page Enable Monitoring Secure Data via Telnet securemon enable disable By default monitoring of TX RX data when in Secure Data Mode is not allowed through telnet an insecure protocol This command allows you to over...

Страница 61: ... 41 42 43 31 32 33 61 62 63 41 42 43 31 32 33 The a and c options can be used together dm monitor ac 1 Serial monitoring started for port 1 press Enter to stop 61 62 63 41 42 43 31 32 33 61 62 63 41 42 43 31 abcABC123abcABC1 32 33 61 62 63 41 42 43 31 32 33 61 62 63 41 42 23abcABC123abcAB 43 31 32 33 61 62 63 41 42 43 31 32 33 61 62 63 C123abcABC123abc 41 42 43 31 32 33 61 62 63 41 42 43 31 32 33 ...

Страница 62: ...al port configuration is set up to open as a client a TCP connection to another server device the DeviceMaster also uses this certificate to identify itself as an SSL client if requested by the server In order to function properly this certificate must be signed using the Server RSA Key This means that the server RSA certificate and server RSA key must be replaced as a pair DH Key pair used by SSL...

Страница 63: ...ity settings in the DeviceMaster LT 1 Enter the IP address of the DeviceMaster LT in the Address field of your web browser and press the Enter key 2 Click the Security tab 3 Click the appropriate check boxes in the Security Configuration area to enable or disable security accordingly Refer to the help system or Configure Enable Security Features Overview on Page 58 for detailed information 4 After...

Страница 64: ...and press the Enter key 2 Click the Security tab 3 Click Set for the appropriate key or certificate option in the Keys and Certificate Management area to configure security keys and certificates Refer to the help system or Key and Certificate Management subsection on Page 64 for detailed information 4 Click Browse to locate the key or certificate file highlight the file and click Open 5 Click Uplo...

Страница 65: ...ormation Connector pin assignments below RJ45 Null Modem Cables RS 232 on Page 66 RJ45 Null Modem Cables RS 422 on Page 66 RJ45 Straight Through Cables RS 232 485 on Page 66 RJ45 Loopback Plugs on Page 67 RJ45 RS 485 Test Cable on Page 67 Connecting RJ45 Devices on Page 67 You can build your own null modem or straight through RJ45 serial cables if you are using the DB9 to RJ45 adapters using the f...

Страница 66: ...uses different pinouts Please refer to the documentation for the peripheral to determine the pinouts for the signals above RJ45 Straight Through Cables RS 232 485 Use the following figure if you need to build an RS 232 or RS 485 straight through cable Straight through cables are used to connect modems and other DCE devices For example a straight through cable can be used to connect COM2 of one PC ...

Страница 67: ...ormation to connect serial devices to RJ45 connectors 1 Connect your serial devices to the appropriate serial port on the DeviceMaster LT using the appropriate cable Note Refer to the hardware manufacturer s installation documentation if you need help with connector pinouts or cabling for the peripheral device 2 Verify that the DeviceMaster LT LEDs indicate that the devices are communicating prope...

Страница 68: ...rial Devices DeviceMaster LT User Guide 2000586 Rev B Connecting RJ45 Devices 3 You can refer to DeviceMaster LT LEDs on Page 129 for information about the remaining LEDs Note The RX TX LEDs cycle during a reboot cycle ...

Страница 69: ...scusses checking the Bootloader version and downloading the latest Bootloader Checking the NS Link Version on Page 87 Accessing SocketServer Commands in Telnet SSH Sessions PortVision DX on Page 90 Note You can optionally refer to RedBoot Procedures on Page 99 if you want to perform procedures at the RedBoot level Rebooting the DeviceMaster LT There are many ways to reboot the DeviceMaster LT Opti...

Страница 70: ...ou do not have a TFTP server you can download the appropriate one for your Windows operating system from the Comtrol ftp site ftp ftp comtrol com contribs utilities 3rd_party_utils_free tftp_server Note Depending on your Windows operating system you may need to respond to a Security Warning popup a Unzip the tftp server that you downloaded to your host system in a location that you can easily find...

Страница 71: ...gram Comtrol PortVision DX PortVision DX or the desktop shortcut 5 Change the Bootloader Timeout value to 60 seconds a Right click the DeviceMaster LT in the Device List pane for which you want to upload the latest SocketServer and click Properties b Change the Bootloader Timeout value to 60 click Apply Changes and then Close Note If the PuTTY screen flashes in the background and does not appear a...

Страница 72: ...hich you want to upload the latest SocketServer and click Telnet SSH Session 7 Leave the popup set to Telnet and Selected Port 23 and click Ok 8 Make sure that the Bootloader version number displays with the RedBoot prompt If the RedBoot prompt does not appear reboot the DeviceMaster LT and try again You must be at the RedBoot prompt for the following steps to work Repeat Steps 6 through 7 ...

Страница 73: ...IP_Addr Download_Filename Note The tftp Server_IP_Addr can be viewed in the application Page 70 and if you renamed the file as suggested the file name is 1 bin 11 At the RedBoot prompt type go after the raw file string appears 12 Close the PuTTY window and click Ok 13 In PortVision DX highlight the DeviceMaster LT in the Device List pane that you updated and click Refresh You may need to click Ref...

Страница 74: ...aster LTs on the Main screen that you want to update and use one of the following methods Click the Upload button Right click and then click Advanced Upload Firmware Click Advanced Upload Firmware in the Manage menu 3 Browse click the firmware bin file Open Please locate the new firmware and then click Yes Upload Firmware It may take a few moments for the firmware to upload onto the DeviceMaster L...

Страница 75: ...PortVision DX displays the programmed IP addresses in the Device List pane after the next refresh cycle Adding a New Device in PortVision DX You can add a new DeviceMaster LT manually if you do not want to scan the network to locate and add new DeviceMaster LTs but there may be cases where you want to use the Add New Device window to Configure DeviceMaster LT units that are not on the local networ...

Страница 76: ...s was entered Local Using the IP Address or MAC Address Use the following procedure to add a local DeviceMaster LT to PortVision DX if you do not want to scan the network 1 Locate the network information or MAC address of the DeviceMaster LT you want to add 2 Access the New Device window using one of these methods Click Add New Device in the Manage menu Right click a folder or a RocketLinx switch ...

Страница 77: ...er Configuration File Use this procedure to save a configuration file using the Main screen Note Optionally you can save a configuration file by accessing the Software Settings tab in the Properties screen and then clicking the Save Settings to a File button 1 If you have not done so install PortVision DX Installing PortVision DX on Page 15 and Scan the network 2 Highlight the DeviceMaster LT in t...

Страница 78: ...l take 25 seconds per device and it may also reboot the devices 3 Browse to the location of the configuration file click the file name dc and then Open 4 Click the All check box or click only the properties that you want to load for each property page in the configuration file and then click Done Note If you click All every selected DeviceMaster LTs will be programmed with the same IP address 5 Cl...

Страница 79: ...e the driver configuration file in portions Device level configuration parameters Port configuration parameters You must upload each port s configuration parameters separately Saving Device Level Configuration Use the following procedure to create and save a configuration file 1 If necessary open the Comtrol Drivers Management Console using one of these methods Windows Control Panel go to your Con...

Страница 80: ... Console using one of these methods Windows Control Panel go to your Control Panel and click the Comtrol Drivers Management Console Shortcut located under Start Program Files Comtrol DeviceMaster LT Comtrol Drivers Management Console 2 Depending on your operating system you may need to click Yes to the Do you want to allow the following program to make changes to this computer User Account Control...

Страница 81: ...l information for your DeviceMaster LT 1 If necessary open the Comtrol Drivers Management Console using one of these methods Windows Control Panel go to your Control Panel and click on the Comtrol Drivers Management Console Shortcut located under Start Program Files Comtrol DeviceMaster LT Comtrol Drivers Management Console 2 Depending on your operating system you may need to click Yes to the Do y...

Страница 82: ...tion is saved on the DeviceMaster LT 9 Go to the next procedure if you want to restore port settings from a configuration file Loading Port Configuration Use the following procedure to load the configuration file for port level settings for your DeviceMaster LT Note Device driver configuration files must be for the same model with the same port density 1 If necessary open the Comtrol Drivers Manag...

Страница 83: ...hat you want to load 6 Highlight the configuration file and click Open The configuration file loads in a few moments 7 Make the appropriate choice for your situation Click No to the ComtrolApplet message if you are using the file to set up multiple DeviceMaster LTs with the same port level settings Click Yes to the ComtrolApplet message if you are using the file to restore a specific DeviceMaster ...

Страница 84: ...ress which is compatible with this local network If necessary refer to Configuring the Network Settings on Page 18 Note You should return the Bootloader Timeout value back to 15 seconds after you upload SocketServer Use the following procedure to change the Bootloader timeout to 45 seconds You can use this procedure to return the Bootloader timeout to 15 seconds after you have successfully uploade...

Страница 85: ...iceMaster LT in the Device List pane click Refresh You may need to do this several times until you catch the reboot cycle in the Device List pane The Bootloader version is briefly displayed during the reboot cycle before SocketServer loads 5 Check the Comtrol web site to see if a later version is available 6 Go to the next subsection if you need upload a new version of Bootloader Uploading Bootloa...

Страница 86: ...anced Upload Firmware browse to the Bootloader bin file and then click Open 4 Click Yes to the Upload Firmware message that warns you that this is a sensitive process 5 Click Ok to the second Upload Firmware message 6 Right click the DeviceMaster LT and click Refresh until the Bootloader version displays in the Device List pane and verify that the new version loaded ...

Страница 87: ...rtVision DX 2 If necessary click Scan to locate the DeviceMaster LT The Device List pane displays the NS Link SocketServer version 3 Check the Comtrol ftp site to see if a later version is available To check the NS Link version you will need to check to see what version of SocketServer is available You can use this link to check to see what version of SocketServer NS Link is available at ftp ftp c...

Страница 88: ...ings are independent of the socket serial port settings on the web page If you are using COM ports and also have configured the port for socket services you must restore the default port settings in the driver and web page NS Link COM Port You can use this procedure to reset NS Link serial port settings 1 Open the Comtrol Drivers Management Console using Start Programs Comtrol DeviceMaster LT or u...

Страница 89: ... LT User Guide 2000586 Rev B Managing the DeviceMaster LT 89 Socket Port 3 When the Reboot page appears click the Set configuration for all ports to factory default settings check box 4 Click the Yes Reboot button ...

Страница 90: ... SSH session using PortVision DX Use the appropriate procedure for your site Telnet Session below SSH Session on Page 92 Telnet Session Use the following procedure to access a telnet session with PortVision DX 1 In PortVision DX PortVision DX right click the DeviceMaster LT in the Device List pane for which you want to open a telnet session and click Telnet SSH Session 2 Leave the popup set to Tel...

Страница 91: ...86 Rev B Managing the DeviceMaster LT 91 Telnet Session 3 If necessary enter the password and press Enter If a password has not been set press Enter 4 You can type help to refer to available commands supported by SocketServer NS Link ...

Страница 92: ...ession Use the following procedure to access an SSH session with PortVision DX 1 In PortVision DX PortVision DX right click the DeviceMaster LT in the Device List pane for which you want to open an SSH session and click Telnet SSH Session 2 Click SSH and leave the port number at the default ...

Страница 93: ... depending on the operating system respond to the security notification 4 Press Enter Note The DeviceMaster LT does not have a user name 5 If necessary enter the password and press Enter If a password has not been set press Enter 6 You can type help to refer to available SocketServer NS Link commands ...

Страница 94: ...n DX You can open a Telnet or SSH session using PortVision DX to access RedBoot commands Use the following procedure to access a telnet or SSH session with PortVision DX 1 In PortVision DX PortVision DX right click the DeviceMaster LT in the Device List pane for which you want to open a telnet session and click Telnet SSH Session 2 Select Telnet or SSH leave the Selected Port number and click Ok ...

Страница 95: ...t Note If the PuTTY screen flashes in the background and does not appear as shown above make sure that Enable Telnet ssh has not been disabled in SocketServer To check this return to PortVision DX right click the DeviceMaster LT in the Device List pane and click Webpage Click the Security tab and if necessary verify that the Enable Telnet ssh option is enabled If it is not click the option and the...

Страница 96: ...iceMaster LT User Guide 2000586 Rev B Accessing RedBoot Commands in Telnet SSH Sessions PortVision DX 5 Quickly re open the telnet or SSH session using the previous steps 6 Select Telnet or SSH leave the Selected Port number and click Ok ...

Страница 97: ...elnet SSH Sessions PortVision DX 7 Press Enter You can type help to review the RedBoot commands You can also refer to RedBoot Command Overview on Page 107 Note The dm prompt should be replaced by a redboot prompt If not you can reset the Bootloader timeout for a longer time period and retry this procedure ...

Страница 98: ...98 Managing the DeviceMaster LT DeviceMaster LT User Guide 2000586 Rev B Accessing RedBoot Commands in Telnet SSH Sessions PortVision DX ...

Страница 99: ... RedBoot Overview To access RedBoot you can use one of the following methods A serial connection between Port 1 on the DeviceMaster LT and a COM port on a PC Page 100 If you plan on using the serial method you will need a null modem cable a terminal program installed and configured on the PC and a Bootloader Timeout value in excess of 15 seconds If the Bootloader Timeout value has been reduced to ...

Страница 100: ...Data bits 8 Parity None Stop bits 1 Flow control None Note If you do not disable Bootloader from loading Steps 3 through 5 within the time out period default is fifteen seconds an application will be loaded from flash and started If this happens repeat Steps 3 through 5 The DM command is the only case sensitive command and must be in uppercase 3 Reset the DeviceMaster LT Note Depending on the mode...

Страница 101: ...ession enter the DeviceMaster LT IP address and the password 5 Type dis to disable the Bootloader 6 Verify that the system responds with a Loading disabled message Password Comtrol DeviceMaster RTS Model ID 5002535 SocketServer 9 18 Built Wed Aug 28 11 08 48 CST 2013 IP Addr 192 168 11 52 Mask 255 255 0 0 Gateway 192 168 0 254 MAC Addr 00 c0 4e 29 ff f5 dm reset Comtrol DeviceMaster Bootloader Ver...

Страница 102: ...ns with the DeviceMaster LT using the serial Page 100 or telnet Page 101 method 2 Enter ip addr mask gateway and press the Enter key to configure the IP address Where addr IP address you want to use mask matches you network subnet mask gateway assigned by your network administrator Make sure that each value is separated by a space 3 Verify that RedBoot responds with your configured network informa...

Страница 103: ...thod 2 At the RedBoot prompt type version The Bootloader information displays 3 Type reset to reset the DeviceMaster LT if you do not have any other related RedBoot tasks Note Optionally you can install PortVision DX on a Windows system on the network and see the Bootloader version in the Device List pane Reboot the DeviceMaster LT right click the DeviceMaster LT and click Refresh Device until the...

Страница 104: ...are using Linux and do not have a TFTP server installed you can use Setting Up a TFTP Server in Linux below If you have a TFTP server installed you can skip to Uploading the Firmware on Page 105 Setting Up a TFTP Server in Linux Use this procedure to set up a TFTP server 1 Install and enable the tftp server software usr bin up2date tftp server sbin chkconfig tftp on 2 Enter the following command s...

Страница 105: ...s Enter if a password has not been set up 7 At the RedBoot prompt type dis and press Enter to disable the Bootloader 8 Verify that the system responds with an Loading disabled message 9 Load the file from a TFTP server using the following command and then press Enter load r b 0x28000000 h TFTP Server_IP_Addr Downloaded_File_Name 10 When the RedBoot prompt appears after approximately one minute if ...

Страница 106: ...s to the DeviceMaster LT configuration 1 Establish communications with the DeviceMaster LT using the serial Page 100 or telnet method Page 101 2 Type password your_password and press Enter Note If you forget your password you can reprogram the password using the serial method which bypasses the password Note The Bootloader version on your DeviceMaster LT may be different than the version displayed...

Страница 107: ...uest an encrypted password click md5 Some browsers do not support the md5 command boardrev Displays the board revision cache ON OFF Manages machine caches channel 1 channel number Displays or switches the console channel chassis Displays chassis information cksum b location l length Computes a 32 bit checksum POSIX algorithm for a range of memory disable Disables automatic load of the default appl...

Страница 108: ...econf disable enable Sets or displays secure config enable securedata disable enable Sets or displays secure data enable Displays short help snmp disable enable Sets or displays SNMP enable telnet disable enable Sets or displays telnet server enable Disables telnet teltimeout seconds Shows or sets telnet time out terse Terse command response mode timeout seconds Displays or sets Bootloader time ou...

Страница 109: ...ications for the power supply shipped with the DeviceMaster LT This table provides the specifications if you intend on using your own power Comtrol Power Supply 5 30VDC Input line frequency Input line voltage Output voltage Output current 43 63 Hz 90 260 VAC 5 30VDC 275 mA 24VDC External Power Supply 5 30VDC Output voltage Current Power 5 30VDC 200 mA Min 24VDC 4 5 W Any power supply that meets cu...

Страница 110: ...nto an outlet on a circuit different from that to which the receiver is connected Consult the dealer or an experienced radio TV technician for help Labeling Requirements FCC 15 19 This equipment complies with part 15 of FCC rules Operation is subject to the following two conditions This device may not cause harmful interference This device must accept any interference received including interferen...

Страница 111: ... problem Verify that you are using the correct types of cables on the correct connectors and that all cables are connected securely Note Most customer problems reported to Comtrol Technical Support are eventually traced to cabling or network problems Verify that the network IP address subnet mask and gateway is correct and appropriate for the network Make sure that the IP address programmed into t...

Страница 112: ...r testing procedures Port Monitor program which checks for errors modem control and status signals In addition it provides you with raw byte input and output counts See Testing Ports Using Port Monitor PMon2 on Page 115 for procedures Enable the Verbose Event Log feature on the Device General tab and then reboot the system Reboot the system then reset the power on the DeviceMaster LT and watch the...

Страница 113: ... using a sniffer to track NS Link packets filtering for Port 4606 will easily track the packet The packet should also contain the MAC address of the device and the originating PC so that it can be determined if the packet is able to travel the full distance one way or not If the 4606 packet is found on one side of a firewall or router using sniffer and not on the other side then that port needs to...

Страница 114: ...al NS Link driver load process is 1 If NS Link determines that it needs to load a device it resets the device It does this to get the device into RedBoot mode Only RedBoot accepts load binary commands which are needed to load the NS Link binary into the DeviceMaster LT 2 After a 6 second delay NS Link sends an ID query to the device This query is to verify that the device is in RedBoot and can acc...

Страница 115: ...n documentation Overview This procedure will check whether the DeviceMaster LT can Communicate through the Comtrol device driver Determine if a port is open with an application Testing Comtrol COM Ports If necessary Installing PortVision DX on Page 15 to install PortVision DX which contains Port Monitor 1 Start PortVision DX from the Start menu select Programs Comtrol PortVision DX PortVision DX o...

Страница 116: ...ors are Overrun Errors represent receive buffer overflow errors If this is the case you will have to configure either software or hardware handshaking to control the flow of data The most common errors are Overrun errors Framing Errors indicate that there is an synchronization error between the beginning of a data frame and the end of the data frame A frame usually consists of a start bit 8 data b...

Страница 117: ...hlight or shift click to add multiple statistics and click Ok Note See the Port Monitor help system if you need an explanation of a column 8 Scroll to the right to view the new columns 9 If you want to capture this session you can save a current session as a report To do this select one of the following save options File Save As File Save if the report already exists in an older format Save Active...

Страница 118: ... application can be used to troubleshoot communications on a port by port basis Send and Receive Test Data This sends data out the transmit line to the loopback plug which has the transmit and receive pins connected thus sending the data back through the Rx line to Test Terminal which then displays the received data in the terminal window for that port This test is only testing the Tx and Rx signa...

Страница 119: ...rams Comtrol PortVision DX PortVision DX or click the desktop shortcut 3 Select Tools Applications Test Terminal WCom2 4 Select File Open Port the appropriate port or ports from the Open Ports drop list and Ok Note If you left Port Monitor open from the previous subsection you should show that the port is open Go to the appropriate procedure to send and receive test data Sending and Receiving Test...

Страница 120: ...s expected Note Do NOT forget to restart the communications application Loopback Test RS 232 The Loopback Test tests the modem control hardware handshaking signals It only has meaning in RS 232 mode on serial connector interfaces with full RS 232 signals If performed under the following conditions the test will always fail because full modem control signals are not present RS 422 RS 485 RJ11 conne...

Страница 121: ... RS 485 2 Wire This procedure shows how to use Test Terminal WCom2 to test two RS 485 2 Wire Half Duplex ports 1 In PortVision DX click Tools Applications Test Terminal WCom2 to start Test Terminal 2 Open two ports RS 485 ports This example uses COM40 and COM41 Test Terminal will open two windows note that both ports show Receiving on the status bar ...

Страница 122: ...T User Guide 2000586 Rev B Sending and Receiving Data RS 485 2 Wire 3 Right click in both COM windows and remove the check mark for Receive Both COM ports show Ready on the status bar 4 Right click in ONE window and select the Receive option from the pop up ...

Страница 123: ...ecessary to also disable the RTS and DTR options from the right click pop up menu in each COM port 6 Right click and remove the check mark on the Sending COM port 7 Right click and remove the check mark on the Receiving COM port Neither COM port is sending or receiving data but shows Ready on the Status bar 8 Reverse the sending receiving windows one at a time Set the Receive option first then in ...

Страница 124: ...DeviceMaster LT to factory default values You may want to save the DeviceMaster LT socket configuration using Saving a SocketServer Configuration File on Page 77 1 If necessary install PortVision DX using Installing PortVision DX on Page 15 and scan the network to locate the DeviceMaster LT that you want to test 2 Right click the DeviceMaster LT and click Webpage 3 Scroll to the bottom of the home...

Страница 125: ...The following example tests Port 1 6 Scroll down TCP Connection Configuration options click the Enable option and leave all other settings on this page at their default values Note the Port number as it is needed later in this procedure In this example the port number is 8000 7 Scroll to the bottom of the page and click the Save button 8 Click Ok when the Port Configuration Updated page appears ...

Страница 126: ...the port has been enabled 10 Leave the web page open 11 Attach the loopback plug that was shipped with the DeviceMaster LT to the serial port of the DeviceMaster LT See Connecting Serial Devices on Page 65 if you need to build a loopback plug 12 Right click the DeviceMaster LT in the Device List pane and click Telnet SSH Session ...

Страница 127: ...ort Testing 13 Enter the socket number of the port that you are testing Step 6 and click Ok PuTTY loads 14 Type 123 If 112233 displays you need to disable local echo Use the following steps to disable local echo a Go to c Program Files x86 Comtrol PortVision DX b Execute PUTTY EXE to open the application ...

Страница 128: ...tion d Return to the Session menu highlight Default Settings and then click Save e Click Cancel to close PuTTY f Close the telnet PuTTY session that you opened from PortVision DX g Re open the telnet session by right clicking the DeviceMaster LT and select the Telnet SSH Session option h Enter the Socket Port number and then click Ok i Enter 123 single digits should appear ...

Страница 129: ...n discusses RX and TX LEDS on the DeviceMaster LT The RX yellow and TX green LEDs function accordingly when the cable is attached properly to a serial device Note The RX TX LEDs cycle during the reboot cycle The LEDs do not function as described until the port has been opened by an application You can use Test Terminal to open a port or ports if you want to test a port or ports The RX green and TX...

Страница 130: ...can check the DeviceMaster LT status on line If the Status LED on the DeviceMaster LT is lit it indicates the DeviceMaster LT has power and it has completed the boot cycle The Status LED flashes while booting and it takes approximately 15 seconds for the Bootloader to complete the cycle When the Bootloader completes the cycle the LED has a solid steady light that blinks approximately every 10 seco...

Страница 131: ...g may be used to discover IP addresses If the IP range is unknown a full scan from 0 0 0 1 to 255 255 255 255 may take a long time An Ethernet cable A PC Laptop with a telnet application installed such as PuTTY included in PortVision DX Serial Connection Method Use the following procedure to set up serial connection with a terminal server program for example Test Terminal WCom2 HyperTerminal or Mi...

Страница 132: ...removes the authentication level 8 If you do not know the IP address enter ip and press Enter 9 Enter timeout 15 and press Enter which sets a reasonable timeout value Note If the Bootloader timeout has been set too low to allow console port access and the IP address cannot be discovered then the DeviceMaster LT must be returned to Comtrol for re flashing 10 Connect the DeviceMaster LT directly to ...

Страница 133: ...requires powering off the DeviceMaster LT The non volatile memory is in the form of flash and EEPROM memories The flash memory is used for non volatile program storage Leaving the factory there are two programs stored in the flash Bootloader binary bootloader bin The bootloader binary is loaded into DRAM for execution when the device is turned on After a period of time the bootloader loads the def...

Страница 134: ...ivalent or telnet Refer to the appropriate procedure for your situation Telnet Access Serial Port Access on Page 135 Web Server Access on Page 135 Telnet Access Use this procedure to access the DeviceMaster LT configuration through telnet Note To reset authentication see Serial Port Access on Page 135 or use the RedBoot Command Overview on Page 107 1 Open a telnet session enter the DeviceMaster LT...

Страница 135: ...ally use SocketServer or the NS Link equivalent to access the DeviceMaster LT configuration and reset many values to their default values Some of the values require resetting the DeviceMaster LT to take effect After changing the IP addresses and resetting the DeviceMaster LT it will not reconnect automatically You will need to use the new IP address to reconnect Note The authentication method and ...

Страница 136: ...d to factory default values If you choose to verify the values the IP address has been reset to 192 168 250 250 Technical Support If you are using an NS Link driver for a Windows system you should review the troubleshooting section in the DeviceMaster LT Device Driver NS Link User Guide for Windows Page 9 before contacting Technical Support It contains troubleshooting procedures that you should pe...

Отзывы:

Нет отзывов

Бренды по названию

Популярные бренды

Загрузить еще бренды