35
4.5 LOCAL LOGIN AND VPN SECURE REMOTE ACCESS
4.5.1 Local Internet or LAN Ethernet Connection
Disconnect Ethernet cable during normal operation.
Network communication may be over a LAN or through a local Ethernet switch or router. Direct connection to
a PC is also supported. If you connect an Ethernet cable directly between a PC and the MACS, the MACS/D
will be reachable at IP Address 10.190.190.3. The PC should be configured for a Static IP Address within the
10.190.190.X subnet (but not 10.190.190.3), with a Netmask of 255.255.255.0.
4.5.2 Remote Access to Internet for MACS/D Systems - VPN Setup
Note: This section is generally used for Factory Remote Service.
The MACS/D has an automatic call home feature that allows the factory to access the MACS/D system controller
remotely. For this to operate, the firewall of the local network may need configuration to allow the specific
protocols required.
The Call Home port number is 62665. This port needs to be enabled for outbound connections from the MACS/D
to the server.
The MACS/D also uses the TINC tunneling protocol to communicate with our VPN server. This is port 655.
The MACS/D will also allow local connections using SSH and HTTP. These are not required for any external
connections.
TCP Port
Protocol
Direction
62665
Call Home
Outbound
655
TINC
Outbound
22
SSH
Inbound - Local
80
HTTP
Inbound - Local
4.5.3 MAC Address
The unit’s MAC address will be in the format 00:d0:69:_ _:_ _:_ _, where 00:d0:69 is the vendor ID and the final
six characters are the unique address on the MCC Ethernet port. The full MAC address can be found on the rear
panel of the MXA Controller under the L-com LAN connector bracket. The MAC address changes only if the
embedded computer is replaced. Replacement of the embedded MCC consequently requires revision of the VPN
server table MAC address.
Table 2. Port Summary
