Lantronix SCS1600 Скачать руководство пользователя страница 38 | Manualshive

Страница: 38 / 52

Lantronix SCS1600 Скачать руководство пользователя страница 38

SCS1600/3200 User Guide

4: Application Setup

RSA Method from Unix (OpenSSH) - No Passphrase

sshuser@UNIXHOST /# SSH –1 SSHUSER 172.19.21.51

Lantronix SCS Version B1.0/405(011102)

Type HELP at the ‘Local_33>’ prompt for assistance.

Username>

RSA Method from Unix (OpenSSH) - with Passphrase

sysadmin@UNIXHOST/# -1sysadmin
172.19.21.51
[email protected]’s password:
Lantronix SCS200 Version B1.0/405(011102)
Type HELP at the ‘Local_34>’ ‘prompt for assistance

Username>
Username/Password Authentication Setup

New authentication keys are generated within a few minutes based on the list of
authorized user public keys. A file called

host_rsa_key

contains the authorized users’

private identity keys. A file called

host_rsa_key.pub

contains the authorized users’

public identity keys.

As you add individual users, add their public keys to the

AUTHORIZED_KEYS

file on

your workstation and FTP the updated file to the SCS.

Setting up DSA Shared Key Authentication (for SSHv2)

This procedure assumes you have generated the DSA authentication keys and copied
the public half of the key pair to a file called

AUTHORIZED_KEYS2

on your local

computer.

1. FTP to the IP address of the SCS.

2. Log in with the username

root

and enter the privileged password (

system

by

default).

3. Change directories to

/flash/ssh/

.

4.

Put

the

AUTHORIZED_KEYS2

file into that directory.

5. Reboot the SCS. New authentication keys will be generated within a few minutes

based on the list of authorized user public keys.

A file called

host_dsa_key

contains the authorized users’ private identity keys. A file

called

host_dsa_key.pub

contains the authorized users’ public keys.

As you add individual users, add their public keys to the

AUTHORIZED_KEYS2

file on

your workstation and FTP the updated file to the SCS.

Setting up Username/Password Authentication (SSHv1 or SSHv2)

The SCS also supports username/password authentication through an internal user
database, Radius, or SecureID.

If RSA authentication fails, the SCS prompts for a username and password (or just a
password, if the SSH client forwarded the username). The SCS checks the user’s name
and password against the Radius, SecureID, and local authentication databases, in order

4-16

«
...
36
37
38
39
40
...
»

Содержание SCS1600

Страница 1: ...SCS1600 and SCS3200 User Guide Part No 900 234 Rev D December 2003 ...

Страница 2: ...her own expense will be required to take whatever measures may be required to correct the interference Note This product has been designed to comply with the limits for a Class A digital device pursuant to Part 15 of FCC Rules These limits are designed to provide reasonable protection against such interference when operating in a commercial environment This equipment generates uses and can radiate...

Страница 3: ..._______________2 6 Power ________________________________________________________2 6 Temperature ___________________________________________________2 6 Humidity ______________________________________________________2 6 Altitude _______________________________________________________2 6 3 Installation ____________________________________________ 3 1 Connecting the SCS ______________________________...

Страница 4: ..._____________4 10 Creating an Email Site __________________________________________4 11 Dial Out ISP Connection ____________________________________________4 12 Com Port Redirector _______________________________________________4 13 SSH Connections _________________________________________________4 14 Defining Supported SSH Connections ______________________________4 14 Creating an AUTHORIZED_KEYS...

Страница 5: ...___5 6 Set Server Bootgateway ip_address_________________________________5 5 Show Server ___________________________________________________5 6 6 Updating Software ______________________________________ 6 1 Choosing the Right Software File ______________________________________6 1 Obtaining Software _________________________________________________6 1 Via the Web __________________________________...

Страница 6: ...ent notification Authentication Accountability Browser based configuration HTML pages in firmware Server configuration via any browser EZWebCon utility Provides initial SCS configuration Extracting and downloading configuration to multiple SCS units Command line editing Context sensitive online help Re loadable operating code Stored in Flash ROM Upgradeable using FTP TFTP and EZWebCon Diagnostics ...

Страница 7: ... terminal connections to any network host supporting Telnet Rlogin Allows you to initiate a TCP IP login session DNS Domain Name Servers Lets a network nameserver translate text node names into numeric IP addresses SNMP Simple Network Management Protocol Commands that allow system administrators to monitor and manage nodes on a LAN Local Area Network and respond to queries from other network hosts...

Страница 8: ...s include Connections Pinouts Cables and Adapters Specifications Connections The SCS1600 and SCS3200 are distinguished by the number of asynchronous RJ45 serial ports they are equipped with The SCS1600 has 16 ports while the SCS3200 has 32 ports Both units include an AUI connector and a UTP port 10 100BASE T for Ethernet connections They both support baud rates between 300 and 230 400 bits per sec...

Страница 9: ...d in the following sections RJ45 Serial Connectors Lantronix servers are RS 423 compliant and are thus limited by the equipment at the remote end of the serial line If the SCS is connected to an RS 232 device it is subject to the RS 232 limits shown below If connected to an RS 423 device it is subject to the RS 423 limitations RS 232 lines are limited to 15m 50 ft in length at 9600 baud and 2 m 6 ...

Страница 10: ...ing an RJ45 port to a DTE device such as a terminal that has a DB25 connector you will need to use an RJ45 DTE DB25 adapter To connect an RJ45 port to a DB25 connector on a DCE device you will need an RJ45 DCE DB25 adapter The pinout information for both connections is shown below Pinouts of RJ45 DB25 Connections 2 3 ...

Страница 11: ... Physical Requirements RJ45 to DB9 The arrows in the figure below represent the direction of the signal Both the transmit and receive ground signals on the SCS connector are wired to the signal ground on a DB9 adapter RJ45 DTE DB9 Adapter 2 4 ...

Страница 12: ... 200 0062 Cable 6 6 2M RJ45 to RJ45 Cat5 200 0063 Cable 16 4 5M RJ45 to RJ45 Cat5 200 0064 Cable 32 8 10M RJ45 to RJ45 Cat5 2000065 Cable 49 2 15M RJ45 to RJ45 Cat5 200 0112 Cable 100 30M RJ45 to RJ45 Cat5 Adapters listed below are pinned for use with straight through Cat5 cable Lantronix Adapter Part Numbers Part Description 200 2066A Adapter RJ45 to DB25M DCE for ETS SCSxx00 SCSxx05 200 2067A Ad...

Страница 13: ...pid temperature changes may affect operation Do not operate near heating or cooling devices or areas that open to the outdoors Operating range 5 to 50 C 41 to 122 F Storage range 40 to 66 C 40 to 151 F Max temp change 20 C 36 F per hour Humidity Operation 10 to 90 non condensing Ideal 40 to 60 Storage 10 to 90 non condensing Altitude Note For operations above 2 4 km 8 000 ft decrease the operating...

Страница 14: ...re you begin consider the following points The IP address must be configured before any TCP IP functionality is available You cannot use the web browser interface until an IP address is assigned Most configuration commands require privileged user status You must enter the Set Privileged command to become the privileged user The default privileged password is system Connecting the SCS Your SCS shou...

Страница 15: ...very two seconds Assigning an IP Address You must assign an IP address to the SCS before you can perform any configurations We recommend you use the first method listed below EZWebCon EZWebCon Method EZWebCon is the recommended method for initially configuring the SCS EZWebCon is located on the distribution CD ROM Installation instructions are provided in the README file Use the following steps to...

Страница 16: ...ays Enter IP Settings 5 Enter the IP related settings a For IP Address enter the desired IP address b For Subnet Mask change the values provided only if you wish to use a mask other than the default The default value should be correct in most cases 6 For Gateway Address select None 7 Click Next The Assign IP address Assignment Status window displays 3 3 ...

Страница 17: ...e reset button command line or web interface will enable DHCP See page 3 1for information on resetting hardware or page 5 5 for information on the Flush NVR command Command Line Method To assign an IP address to the SCS via a terminal 1 Attach a terminal to the first serial port port 1 and press Enter You see a Local prompt at which you can enter configuration commands 2 Once you are connected bec...

Страница 18: ... hardware address and intended IP address 2 Ping that IP address This process typically requires super user privileges Entering ARP and Ping UNIX arp s 192 0 1 228 00 80 a3 xx xx xx ping 192 0 1 228 Windows Host 1 Type ARP A at the DOS command prompt to verify that there is at least one entry in the ARP table 2 If there is no other entry beside the local machine ping another IP machine on your net...

Страница 19: ...ame in the configuration file does not exist If this is the case create a file in the download path to get the BOOTP daemon to respond BOOTP and RARP are enabled by default on the SCS If you wish to disable them use the Define Server BOOTP Disabled and Define Server RARP Disabled commands Configuring the SCS Once you have assigned the IP address you can configure your SCS using any of the methods ...

Страница 20: ...ername in the Username field and access default login password in the Password field 4 Click the Login button The Server Configuration window displays Server Configuration Window 5 Select a link from the left navigation column to configure the SCS The root privileged level authorization window displays 3 7 ...

Страница 21: ...figuration page displays Note For added security change the login and privileged passwords from their default settings You can set both passwords in the Server section of the web pages Web Browser Method To launch the web browser interface outside of EZWebCon open a standard browser and enter the SCS s IP address for example http 172 19 21 51 or resolvable text name into the URL Location field Fol...

Страница 22: ... 0 1 88 7000 access not echoed Lantronix SCS Version n n n yymmdd Type Help at the Local prompt for assistance Enter Username Command Line Method To monitor or configure the SCS via a terminal attach a terminal to the serial port port and press Enter You will see a Local prompt at which you can enter configuration commands See the SCS Reference Manual for a complete list of available commands Note...

Страница 23: ... the IP address of the SCS 3 Log in with the username root and enter the privileged password system by default 4 Change directories to flash 5 Put the text files into the desired directory 6 Reboot the SCS Subsequent users logging in or out of the SCS see the text in the prelogin txt and postlogin txt files respectively The standard company product version banner displays if either of these two fi...

Страница 24: ...SH client software Enabling Menu Mode If others need to access devices attached to the SCS but you wish to limit their options use menu mode Menus allow users to access often used hosts and services without needing to know command syntax the IP address of the non local devices or the socket numbers involved You can enable menu mode on either individual serial ports or on port 0 the network port te...

Страница 25: ...ser interface by performing the following steps 1 Click the Menu link under the Quick Setup options Menu Settings 2 Enter a title for your menu in the Title field 3 Create menu entries by entering a description which will be displayed in the menu and a corresponding command that will be run when that entry is selected Each menu entry can do one of the following Connect to a device on the network u...

Страница 26: ...ore than one command in the Command field by separating each command with a semicolon The most common use of this is in the form connect local or remote portname command for example connect local port_2 disconnect This command can be shortened to con loc port_2 disc The disconnect command closes the connection to that port when you return to the menu The SCS has default hot keys defined for Telnet...

Страница 27: ...ween several connections from a serial port using a terminal you must configure four things on the serial port configuration pages the Local switch Forward switch Backward switch and the Break Control setting which must be changed from Local to Remote Enabling Menu Mode for a Port For a port to use the menu you just configured you must enable menu mode for that port Menu mode can also be enabled o...

Страница 28: ...hat port When you log into a port with menu mode enabled you are presented with an initial login screen Login Screen Lantronix SCSxx Version B3 6 3 000410 Type HELP at the Local prompt for assistance Username 1 Enter your user name in this case user and press Enter Login Screen part 2 Username user Press CR to continue 2 As instructed press Enter once more to see the actual menu 3 Type the number ...

Страница 29: ...emote user dial up 1 Create a user account a From the Quick Setup column on the left select Users b Enter the user name and click Create c Click the Configure link next to the user name d Enter a password in the Password field e For a PPP connection type set PPP in the Login Command field f For a terminal emulation connection to the console menu enter menu in the Login Command field g For a termin...

Страница 30: ... serial connections are controlled on a per port basis Break conditions originating from incoming Telnet and SSH connections are based on the settings for port 0 the network template port You must define where the break condition will be processed using the Set Define Port Break Local Remote command for each serial port and port 0 The default break sequence for port 0 is Ctrl Y There is no default...

Страница 31: ...mote The AltBreak sequence causes a break condition to be generated to the target port Note The target port s break settings do not apply or affect this situation Template port 0 is set to Break Local The AltBreak sequence returns the user to a local SCS command prompt The user Telnets to the SCS Local prompt and issues a Connect Local command to a serial port Template port 0 is set to Break Remot...

Страница 32: ...NVR AT F Resets modem NVR to factory settings AT V Views current and NVR settings AT W Writes settings to NVR AT Z Restores settings from NVR The SCS holds DTR low until it forms a valid network session The attached device can then monitor the SCS DTR output by tying it to its CD input In addition the SCS has DSRLogout enabled so if the attached device drops its DTR the network connection terminat...

Страница 33: ...hanges the specified port to access remote 4 Click the Email Events checkbox This setting enables email notification for the serial log 5 Click the Update Port Settings button to save changes 6 When a port that has Email Events enabled receives a burst of 20 or more characters in its serial log the port buffers incoming data for up to 25 seconds or until the log file reaches 1500 bytes before send...

Страница 34: ...d is 32 c In the Mailhost field enter a valid SMTP mailhost The mailhost can be either a numeric IP address or if a nameserver and domain name are configured a hostname The maximum number of characters for this field is 24 d In the Reply to field enter an email address that will receive any responses to the email message The maximum number of characters for this field is 32 e In the Subject field ...

Страница 35: ...button The default route is now set to site outgoing Note Local Ethernet routes should not be used To share an ISP connection with the local LAN NAT Network Address Translation must be used For more information on SCS IP routing and NAT see the SCS Reference Manual 5 Reboot the SCS for these changes to take effect Com Port Redirector The Com Port Redirector application allows Microsoft Windows bas...

Страница 36: ...H Mode command you can use the following parameters SSH Parameters Effect Parameter Incoming host to SCS Outbound SCS to host V1ONLY SCS offers only SSHv1 connections SCS only connects using SSHv1 V2ONLY SCS offers only SSHv2 connections SCS only connects using SSHv2 V1PREFER SCS offers both v1 and v2 and the client chooses If both SSHv1 and SSHv2 are available chooses SSHv1 V2PREFER default SCS o...

Страница 37: ...n the AUTHORIZED_KEYS or AUTHORIZED_KEYS2 file on the SCS If the user s identity key is not listed in the AUTHORIZED_KEYS file on the SCS then the authentication attempt fails If the identity key is listed then the process continues 3 The SSH client then sends the private half of the user s identity key to the SCS 4 The SCS compares the private half of the user s identity key to the key stored in ...

Страница 38: ...rated the DSA authentication keys and copied the public half of the key pair to a file called AUTHORIZED_KEYS2 on your local computer 1 FTP to the IP address of the SCS 2 Log in with the username root and enter the privileged password system by default 3 Change directories to flash ssh 4 Put the AUTHORIZED_KEYS2 file into that directory 5 Reboot the SCS New authentication keys will be generated wi...

Страница 39: ...on Unix Non Unix Platforms To form an SSH connection from a non Unix platform to an SCS 1 Start your SSH client software 2 Enter the SCS host name or IP Address and specify the public key file to use 3 If connecting directly to a serial port on the SCS specify the port number 22xx where xx is the port number 4 If your RSA key is passphrase protected enter your password 5 If you are not using an RS...

Страница 40: ...command disallows unsecure Telnet and TCP connection attempts Access is through SSH only Port User Restrictions You can constrain user access to specific ports on the SCS using the Set Def Authentication User command This command currently only affects users authenticated against the local SCS database To reject network connections to ports not on a user s port target list use the command Set Defi...

Страница 41: ...less settings Note Some unexplained errors might be caused by duplicate IP addresses on the network Make sure that your SCS s IP address is unique Technical Support If you are experiencing an error that is not described in this chapter or if you are unable to fix the error you may Check our online knowledge base at www lantronix com support com E mail us at support lantronix com Call us at 800 422...

Страница 42: ...vity for each serial port On the SCS3200 a single LED does the same for each port The five other LEDs on the right side of the unit are labeled Activity OK 100 Link Power A red LED during boot mode typically signals an error but red LED patterns during normal operations do not signal an error Refer to the following table for an understanding of LED functions LED Functions LED Function TX Indicates...

Страница 43: ...ctions including the cable pinouts Try another serial device or cable or cycle power on the SCS The SCS completes its power up and boot procedures but there s no noticeable serial activity A rapidly blinking OK LED may signal boot failure Reboot the unit When the SCS is running normally the OK LED blinks every two seconds The terminal shows a Boot prompt rather than a Local prompt The SCS is not c...

Страница 44: ...oting Area to Check Explanation The SCS name and hardware address in the host s etc ethers file The SCS name and hardware address must be in this file for the host to answer an RARP request The SCS name and IP address in the etc hosts file The SCS name and IP address must be in this file for the host to answer a RARP request The operating system Many operating systems do not start an RARP server a...

Страница 45: ...reload it into Flash ROM This is necessary when a new version of software is released and you wish to upgrade your unit If the SCS cannot download the file the code in Flash ROM is still usable Flush NVR This command is used to restore the SCS s non volatile RAM to its factory default settings It resets everything that is configurable on the SCS including the unit s IP address Help Displays a one ...

Страница 46: ...fault Set Server Secondary ip_address Specifies a backup loadhost The IP address should be in standard numeric format no text names are allowed The backup loadhost is queried if the primary host cannot load the server Set Server Software filename Specifies the name of the file to load The SCS automatically adds SYS to the filename you specify Note that all protocols must have a filename specified ...

Страница 47: ...S from the Lantronix web site www lantronix com or by using anonymous FTP ftp lantronix com Via the Web You can download the latest version of the firmware from the Technical Support area of the Lantronix web site The files are listed as SCS1600 SYS SCS3200 SYS Note Netscape Navigator may try to open the file as an ASCII text file To avoid this hold down the Shift key when choosing the software fi...

Страница 48: ...mware 3 Follow the EZWebCon prompts FTP Method Note This feature is supported on firmware versions v1 0 5 and higher 1 Use an FTP client to open an FTP session to the IP address of the SCS 2 Log in with the username of root 3 Enter the privileged user password the default is system 4 Make sure your FTP client is set to do a binary transfer 5 Stay in the same directory the default login directory i...

Страница 49: ...ic to the specified IP address Note This functionality requires boot code V1 3 TFTP Method Some TFTP implementations require a specific directory for the firmware file See your host s documentation for instructions To manually configure the SCS s IP parameters for a TFTP software reload use the following process 1 Log in to the SCS via Telnet or by direct serial connection 2 Enter the commands sho...

Страница 50: ...Ensure the file and pathnames are enclosed in quotes to preserve case Ensure that TFTP is enabled on the host several major UNIX vendors ship their systems with TFTP disabled by default TFTP For remote network reload specify a boot gateway router with the Set Define Server Boot Gateway ip_address command Ensure that the Ethernet circuit has the service characteristic enabled MOP Ensure that the MO...

Страница 51: ... Test IEC61000 4 3 1996 Radiated Immunity Field Test IEC61000 4 4 1995 Electrical Fast Transient Test IEC61000 4 5 1995 Power Supply Surge Test IEC61000 4 6 1996 Conducted Immunity Test IEC61000 4 8 1993 Magnetic Field Test IEC61000 4 11 1994 Voltage Dips Interrupts Test Supplementary Information This Class A digital apparatus complies with Canadian ICES 003 CSA and has been verified as being comp...

Страница 52: ...ntronix Lantronix will ship the replacement media to the customer In no event will Lantronix be responsible to the user in contract in tort including negligence strict liability or otherwise for any special indirect incidental or consequential damage or loss of equipment plant or power system cost of capital loss of profits or revenues cost of replacement power additional expenses in the use of ex...

Отзывы:

Нет отзывов

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды