background image

ICX35-HWC ♦ Industrial Cellular Gateway 

ICX35-HWC Webpage 

3G/4G LTE 

User Manual  

 

ProSoft Technology, Inc. 

Page 33 of 127 

Parameter

 

Description

 

Default Gateway 

Interface to be used as a default gateway. By default, it is set to 

Cellular 

interface

. It can also be set to pass the traffic through one of the configured 

tunnels - 

OpenVPN Server 1

Select the OpenVPN 
Server to be configured 

The OpenVPN Server instance that is being configured. 

TLS Renegotiation Time  Transport layer Security renegotiation time in seconds. This controls how 

often the underlying SSL/TLS session renegotiates. This provides additional 
security by frequently rekeying the session keys. Default value: 3600. 

Server Address 

IP address or hostname of the VPN server. This is the IP Address that you 
are creating the tunnel to. In the previous example, this is the public IP 
Address of the ICX35-HWC in pass through mode that is being used as the 
default connection to the Linux server. 

Server Port 

Service port number on the VPN server. The default port is 

1194

. This is the 

port number for the OpenVPN. Port 1194 is the default port designated for 
OpenVPN. This is the port number used for the previous example. 

Encryption Cypher 

Cipher used to encrypt data channel packets. The default value is 

BF-CBC

Some of the ciphers that are supported by OpenVPN are not available in this 
list because they are considered insecure. However, these can still be used 
by using a custom configuration file. 

Static Routes 

Static routes to remote networks to be specifically accessed through the 
configured OpenVPN connection. A maximum of 3 static routes are supported 
per tunnel. 

Enable User / Password 
Authentication 

Alternative authentication method based on username and password. Enter a 

Username

 and 

Password

.  

Credential Files 

Certificate Authority

 - VPN authentication that issues certificates for VPN, 

Secure Internal Communication (SIC), and users. 
 

Client Certificate

 - Issued by a certificate authority as proof of identity. 

 

Client Key

 - Password to the corresponding client certificate.  

 
Click the 

Choose File

 button to locate these files. Internally, they are 

renamed (Example: file_OpenVPN_CA.crt), and stored in the appropriate 

Current File

 area. 

 

Note: These Credential files are mandatory in order to enable OpenVPN. 

They can either be uploaded individually or have their content added inline, 

within the custom configuration file. If by mistake you uploaded them and 
also have them inline in the configuration file, the files uploaded individually 

will take precedence. 

Custom Config File 

Click the 

Choose File

 button to locate and upload a custom OpenVPN 

configuration file, which overrides any credential files previously loaded. If you 
have not previously uploaded any credential files, the Custom Configuration 
File should include them.  

Protocol 

The protocol to use when connecting with the remote: 

TCP

 or 

UDP

 (default). 

  

The following table lists the OpenVPN default values: 

Parameter

 

Default Value

 

Server/Client 

Client 

Interface 

Tun 

Protocol 

UDP 

Authorization 

None 

Encryption Cipher 

Undefined (Should be defined by the server). Default: 

BF-CBC

 

TLS Renegotiation Time 

3600 seconds 

LZO Compression 

Adaptive 

Port 

User-configurable. Default: 

1194

 

Server address 

User-configurable 

Содержание ICX35-HWC

Страница 1: ...ICX35 HWC Industrial Cellular Gateway 3G 4G LTE July 14 2022 User Manual...

Страница 2: ...rein Information in this document including illustrations specifications and dimensions may contain technical inaccuracies or typographical errors ProSoft Technology makes no warranty or representatio...

Страница 3: ...A CLASSE I DIVISION 2 Do not operate the ProSoft Technology Wireless products in areas where blasting is in progress where explosive atmospheres may be present near medical equipment near life support...

Страница 4: ...n Using CDMA 18 2 3 3 SIM Card Security 19 2 3 4 SIM Card PIN Verification 19 2 3 5 Unblocking a SIM Card 21 2 4 Connecting to the Internet Using the ICX35 HWC 24 3 ICX35 HWC Webpage 25 3 1 Status Tab...

Страница 5: ...3 Watchdog Configuration on ICX35 HWC Webpage 100 9 Firmware Procedures 101 9 1 Gateway Firmware Install 102 9 2 Radio Firmware Install 103 9 2 1 Verizon Support 104 10 ICX35 HWC Tech Notes 105 10 1...

Страница 6: ...lar Technology Definitions 120 12 Appendix A Belden Horizon Remote Packet Capture 122 13 Proxy ARP 124 13 1 Proxy ARP Sample Topology 124 13 2 Configuring Proxy ARP in ICX35 HWC 125 13 3 Proxy ARP Sta...

Страница 7: ...is ideal for programming and maintenance of remote equipment remote data collection SCADA and machine to machine M2M applications It operates on LTE GSM and CDMA networks with a single device The ICX...

Страница 8: ...20G 11ms Operational IEC 60068 2 27 30G 11ms Non Operational Vibration IEC 60068 2 6 10G 10 to 150 Hz Ethernet Port 1 10 100 Base T RJ45 connector Serial Port 1 DB9 female serial tunneling encapsulati...

Страница 9: ...configured on the web server The ICX35 HWC reverts to the configured server address once the jumper is removed Resets the ICX35 HWC to factory defaults The jumper should be kept until all the LEDs st...

Страница 10: ...radio be sure to observe the proper polarity markings on the power connector Wiring the connector incorrectly can cause serious damage to the radio which will not be covered under the ProSoft warrant...

Страница 11: ...er Manual ProSoft Technology Inc Page 11 of 127 To use the connector lever insert it into the connector as shown Press down on the installation tool to use it as a lever to open the connector s contac...

Страница 12: ...ize 2FF Mini SIM on the front of the module 2 Ensure that the module is connected to the network 3 Apply power to the module 4 Log into the ICX35 HWC configuration webpage The default IP address of th...

Страница 13: ...password must comply with the following rules 1 Password field must have between 8 40 characters 2 Password must contain characters from three of the following four categories Uppercase characters Low...

Страница 14: ...inRecords txt The last 100 login attempts are logged 2 2 Assigning a LAN IP Address 1 Select the Configuration tab and select the Basic option 2 Enter a name for the module in the Module Name field 3...

Страница 15: ...otocol for end devices a If YES enable the DHCP SERVER option and select a DHCP Range of IP addresses applicable to multiple end devices DHCP Range This allows you to enter a range of IP addresses tha...

Страница 16: ...d On the laptop set the TCP IPv4 properties Non PC devices such PLC s do not require the Preferred DNS Server entry 7 In the ICX35 HWC configuration webpage click APPLY The page automatically redirect...

Страница 17: ...ber Identity Module SIM in the ICX35 HWC is a smartcard that securely stores the key identifying a cellular subscriber Generally you will only need to install a SIM once in the life of the cellular ga...

Страница 18: ...ble for computers or other devices to connect directly to the ICX35 HWC 7 The GSM network information is now displayed on the Status webpage 2 3 2 Connection Using CDMA 1 When the ICX35 HWC is powered...

Страница 19: ...M card requires a reconfiguration of the SIM settings Most mobile devices offer SIM PIN protection At startup if the PIN security function is active the user must enter a 4 to 8 digit PIN to enable th...

Страница 20: ...7 To disable this feature select DISABLE from step 2 above and continue through the steps Important If the wrong PIN Code is entered and submitted more than three times the SIM card becomes blocked N...

Страница 21: ...e than three times the SIM card becomes blocked During this time ICX35 HWC WAN cellular connectivity is disabled The SIM PIN status shows SIM Blocked on the Status System Status webpage WAN section Yo...

Страница 22: ...Contact your service provider to provide you with the PUK code You will need the phone number that is assigned to the SIM card Important It is recommended to keep the PUK written down in a safe place...

Страница 23: ...ular Gateway Connecting to the ICX35 HWC 3G 4G LTE User Manual ProSoft Technology Inc Page 23 of 127 6 Upon success the following message is displayed 7 The SIM Status is now Unlocked PIN Verification...

Страница 24: ...achieved using the following steps 1 Connect the laptop LAN port to the Ethernet port on the ICX35 HWC 2 On the laptop set the TCP IPv4 properties Where IP address The assigned IP address of your lap...

Страница 25: ...oSoft Technology Inc Page 25 of 127 3 ICX35 HWC Webpage There are three main tabs of the ICX35 HWC webpages Status Configuration Administrator 3 1 Status Tab The Status tab displays the current settin...

Страница 26: ...Shows the total number of bytes sent and received on an ongoing basis in bytes This number is reset on the Plan Start Day unless changed by clicking on the Reset Period Usage button Previous Period C...

Страница 27: ...ver Enables Disables DHCP functionality DHCP Range Used when DHCP Server is enabled DHCP range of end devices Lease Time Used when DHCP Server is enabled Enter the lease time using seconds minutes or...

Страница 28: ...Soft Technology Inc Page 28 of 127 3 2 2 Advanced The Configuration Advanced tab allows you to configure the following Cellular Interface Cellular Usage Tracking DDNS VPN Serial Encapsulation NTP Netw...

Страница 29: ...sets the keep alive ping period time in seconds When Enabled the two fields listed below appear Keep Alive Ping Address Time to keep a connected address connection alive Keep Alive Ping Period Number...

Страница 30: ...e day that the Usage Value Counter resets on Plan Size Maximum number of megabytes MB or gigabytes GB of WAN data usage before 3G communications are shut down until the next plan start day You can als...

Страница 31: ...TTL value may affect how long it takes an ICX35 HWC to see a change in IP address for example the IP address changes because of a reboot It may take the ICX35 HWC upwards of 30 minutes to see the new...

Страница 32: ...VPN is an open source software application that implements virtual private network VPN techniques for creating secure point to point or site to site connections in routed or bridged configurations and...

Страница 33: ...e specifically accessed through the configured OpenVPN connection A maximum of 3 static routes are supported per tunnel Enable User Password Authentication Alternative authentication method based on u...

Страница 34: ...icate that an OpenVPN connection is established You can now pass secured data between the two LAN devices Verify this with a simple ping from one LAN device to the other With two tunnels connected the...

Страница 35: ...ed during authentication of the tunnel It is a free form string although typically it is a FQDN name or an IP address Max length is 28 Note Use the prefix when the IPSec tunnel is established between...

Страница 36: ...s the concept of Local ID and RemoteID to identify each device ICX35 1 West Parameter Description Name ICX35 HWC 1 West WAN IP WAN IP Address of ICX35 HWC 1 LAN IP 192 168 1 150 Local Identifier West...

Страница 37: ...Remote Subnet IP 192 168 1 0 Remote Subnet Mask 255 255 255 0 Preshared Key presharedkey this can be any string LAN Device 2 Connected to ICX35 2 Parameter Description IP Address 192 168 0 30 ICX35 HW...

Страница 38: ...sets the scheme for the serial port RS 232 only Note For RS 422 485 network connectivity an RS 232 to RS 422 485 converter is recommended Baud Rate Baud rate used on the ICX35 HWC serial port Data Bit...

Страница 39: ...for the encapsulation process Master Slave Master Slave Timeout Bits Length of time the gateway will wait when no further serial data is received before encapsulating and transmitting data 0 to 65535...

Страница 40: ...cription Role Network role for the encapsulation process Master Slave Master Slave Timeout Bits Sets the length of time the gateway will wait when no further serial data is received before encapsulati...

Страница 41: ...al ProSoft Technology Inc Page 41 of 127 If Slave is selected the Encapsulation table is not visible You can add an entry to the Client Table list Click on the ADD ENTRY TO CLIENT TABLE LIST button Th...

Страница 42: ...time the gateway will wait when no further serial data is received before encapsulating and transmitting data 0 to 65535 Port Type Type of IP connection TCP or UDP for the encapsulated data The Master...

Страница 43: ...ime the gateway will wait when no further serial data is received before encapsulating and transmitting data 0 to 65535 Port Type This parameter specifies the type of IP connection TCP only for the en...

Страница 44: ...time the gateway will wait when no further serial data is received before encapsulating and transmitting data 0 to 65535 Port Type This parameter specifies the type of IP connection TCP only for the...

Страница 45: ...eceived before encapsulating and transmitting data 0 to 65535 Port Type Only TCP connections are supported for this protocol selection DF1 Error Checking Specifies which type of error checking is used...

Страница 46: ...a is received before encapsulating and transmitting data 0 to 65535 Port Type Only TCP connections are supported for this protocol selection DF1 Error Checking Specifies which type of error checking i...

Страница 47: ...d before encapsulating and transmitting data 0 to 65535 Port Type Only TCP connections are supported for this protocol selection DF1 Error Checking This parameter specifies which type of error checkin...

Страница 48: ...ynchronize the clocks of data networks and the ICX35 HWC Parameter Description Enable NTP Enables the NTP feature NTP Server Server time updates for the ICX35 HWC Example pool ntp org NTP Mode Client...

Страница 49: ...X35 HWC Webpage 3G 4G LTE User Manual ProSoft Technology Inc Page 49 of 127 EIP EtherNet IP The ICX35 HWC can run as an explicit message server and will respond to requests received on the LAN An SMS...

Страница 50: ...ling the Modbus TCP Agent is a prerequisite for Diagnostics SMS features See Modbus TCP IP Communications for more information Parameter Description Enable Agent Enables the Modbus TCP Agent feature L...

Страница 51: ...ection Recovery feature Endpoint Address Configure a known WAN IP address Default 8 8 8 8 a known Google DNS address If the ICX35 HWC is not able to reach this WAN IP and the Endpoint Timeout paramete...

Страница 52: ...nual ProSoft Technology Inc Page 52 of 127 Proxy ARP Proxy ARP is a technique in which a proxy server on a given network answers the Address Resolution Protocol ARP queries for an IP address that is n...

Страница 53: ...nt device to be forwarded to the configured end device End Device Address parameter connected to the ICX35 HWC LAN Port Forwarding allows a remote client device to access multiples server devices conn...

Страница 54: ...om Port Range WAN port range through which data will be forwarded to each device To Port Range LAN device port range listening for forwarded traffic Exception Ports Lists the ports included in the Fro...

Страница 55: ...ores the file Reset Gateway to Default Configuration Restores the ICX35 HWC to factory defaults the previous configuration is lost A countdown timer is used during the reset When the countdown is comp...

Страница 56: ...ge access from the WAN Warning Belden Horizon currently uses port 443 to tunnel Selecting port 443 will prevent Belden Horizon from functioning properly HTTPS can function properly using port 8080 or...

Страница 57: ...g 50 40 20 15 or IP addresses followed by a CIDR netmask e g 50 40 20 0 8 allowing subnets to be whitelisted via a single whitelist entry Whitelists only apply to the cellular WAN interface No whitel...

Страница 58: ...web browser in the following format https xxx xxx xxx xxx 8080 Depending on your browser you may encounter a warning message It warns that the page was not securely loaded due to the unknown verifica...

Страница 59: ...y ICX35 HWC Webpage 3G 4G LTE User Manual ProSoft Technology Inc Page 59 of 127 Firefox 1 Click on the ADVANCED link 2 Click on the ADD EXCEPTION link 3 In the Add Security Exception window click on t...

Страница 60: ...C Industrial Cellular Gateway ICX35 HWC Webpage 3G 4G LTE User Manual ProSoft Technology Inc Page 60 of 127 Internet Explorer 1 Click on the CONTINUE TO THIS WEBSITE link Safari 1 Click on the CONTINU...

Страница 61: ...umbers include information useful for troubleshooting Higher numbers include all entries associated with lower level numbers This value can typically be left alone until instructed by a Technical Supp...

Страница 62: ...ient SMS Settings Parameter Description Message Center This is used to configure the Message Center Number used to send SMS The phone number is in international format including prefixes and country c...

Страница 63: ...s With or without periods Warning The new SMS Message Center Number will be written to the SIM card Please note the current number before continuing Message SMS text message to be sent up to 160 chara...

Страница 64: ...f 127 3 3 5 Ping You can ping a remote device to determine whether you can connect to it Enter the WAN IP address or hostname to be pinged and click the PING button 3 3 6 License This section contains...

Страница 65: ...n webpage click on Administrator System 2 Under the Belden Horizon section click on the ACTIVATE button Note During the activation process the ACTIVATE button will be greyed out for 60 seconds 3 An al...

Страница 66: ...n you can take a tour of the features of the Belden Horizon utility 7 When ready activate the ICX35 HWC within the tour or you can click on the ADD A GATEWAY button at the top of the screen It will pr...

Страница 67: ...nfiguration In more complex installations such as those requiring long lengths of cable and or multiple connections it is imperative that the installer follow maximum dBi gain guidelines in accordance...

Страница 68: ...er Manual ProSoft Technology Inc Page 68 of 127 5 2 Connecting the Radio to a Network Device The application ports are located on the front of the radio The Ethernet port uses a standard RJ45 connecto...

Страница 69: ...n Ethernet hub a 10 100 1000 Base T Ethernet switch or directly to a PC The module will detect the cable type and use the appropriate pins to send and receive Ethernet signals Ethernet cabling is like...

Страница 70: ...Serial Port Basics RS 232 The use of hardware handshaking control and monitoring of signal lines depends on the requirements of the networked device If no hardware handshaking will be used the cable t...

Страница 71: ...WC has a connection to cellular tower Blinking Green ICX35 HWC is attempting to connect to cellular tower Solid Red Duplicate IP EtherNet IP Non recoverable network fault Blinking Red Established conn...

Страница 72: ...n Faster Blink Flashes at a steady fast rate About 3 Hz 333 ms ICX35 HWC is transmitting or receiving data Note The WWAN LED indicates a physical connection state between the ICX35 HWC and the cell to...

Страница 73: ...following features ICX35 HWC diagnostic data retrieval ICX35 HWC diagnostic counter reset Receiving SMS text message from the ICX35 HWC Sending SMS text message to the ICX35 HWC Example application T...

Страница 74: ...6 1 Creating a New RSLogix 5000 Project 1 Open the File menu and select New 2 Select your controller Type 3 Select the Revision of your controller Revision 16 or newer only 4 Enter a Name for your co...

Страница 75: ...invoked to complete the registration Alternatively the EDS file can be downloaded from the product web page at www prosoft technology com and registered manually using the EDS Hardware Installation T...

Страница 76: ...2 This action opens the Select Module Type dialog box Select the 1756 ENBT under the Communication Module Type Category and click the CREATE button 3 Enter the Name Slot Revision and IP Address of the...

Страница 77: ...w click the right mouse button on the ETHERNET icon to open a shortcut menu On the shortcut menu choose NEW MODULE Note For both ControlLogix and CompactLogix controllers the Ethernet icon is located...

Страница 78: ...Inc Page 78 of 127 6 The ETHERNET BRIDGE now appears in the Controller Organizer window under the 1756 ENBT module 7 Double click the ETHERNET BRIDGE icon in the Controller Organizer window to open t...

Страница 79: ...WC AOI v1 6 file from www prosoft technology com Also the ICX35 HWC firmware version must be v1 2 2 or later 1 In the Controller Organizer window expand the Tasks folder and subfolders until you reach...

Страница 80: ...ual ProSoft Technology Inc Page 80 of 127 4 Navigate to the location on your PC where you saved the Add On Instruction for example Desktop Select the L5X file and click the IMPORT button 5 This action...

Страница 81: ...SLogix will indicate that the import is in progress 7 When the import is complete the new rung with the Add On Instruction will be visible as shown in the following illustration 8 The procedure has al...

Страница 82: ...of 127 6 3 EtherNet IP and SMS Text Message Features 6 3 1 ICX35 HWC Diagnostic Data Retrieval The ICX35 HWC AOI can retrieve the ICX35 HWC status from the radio and display it in RSLogix 5000 1 Enter...

Страница 83: ...messages received since power on SMS_MSGs_Rx_Free_Buffer_Coun ter DINT Number of free slots in the Rx SMS buffer Max 500 message storage PowerOnTime_Year INT Power on time year PowerOnTime_Month INT P...

Страница 84: ...reset to 0 They cannot be individually reset ICX35 STATUS Min_RSSI ICX35 STATUS Max_RSSI ICX35 STATUS Cell_Net_Disconnects ICX35 STATUS LAN_KBytes_Sent ICX35 STATUS LAN_KBytes_Received ICX35 STATUS WA...

Страница 85: ...SMS text devices AT T Users For SMS texting functionality you must power up the ICX35 HWC with the SIM installed within 72 hours after AT T activates the SIM card 1 The text message contents are enter...

Страница 86: ...S text message to phone number 800 111 2222 the format should be entered into the ICX35 SMS WRITE Phone_Number_x controller tag array as follows 18001112222 5 To trigger the SMS text messages enter 1...

Страница 87: ...ICX35 HWC Please note that some cellular providers do not offer this capability 1 Enter a 1 in the ICX35 CONTROL Read_SMS controller tag and press ENTER 2 The ICX35 SMS READ controller tag array popu...

Страница 88: ...from the cellular network faster than the PLC polling rate If a receiving PLC is offline during the sending of more than 250 SMS messages upon reconnection it will only poll the last 250 received SMS...

Страница 89: ...aging 3G 4G LTE User Manual ProSoft Technology Inc Page 89 of 127 6 3 6 Rebooting the ICX35 HWC This controller tag reboots the ICX35 HWC Note This feature requires ICX35 HWC v1 4 78 firmware or later...

Страница 90: ...to 30024 DINT Number of bytes received WAN since power on Diag SMS_MSGs_Sent 30025 to 30026 DINT Number of SMS messages sent since power on Diag SMS_MSGs_Received 30027 to 30028 DINT Number of SMS mes...

Страница 91: ...s that the SMS will be sent to SMS TX_MessageString 40006 to 40085 SINT 160 SMS text message string to be transmitted SMS TX_Ph_Number1 40086 to 40097 SINT 24 Phone number including prefixes country c...

Страница 92: ...to read from ICX35 HWC Modbus address 30121 Each 16 bit Modbus address contains 2 characters 1 byte each of the SMS text message Example A 100 character text message occupies 50 Modbus addresses SMS...

Страница 93: ...ltiple scenarios for the watchdog functionality No Belden Horizon connection due to no data plan left No Belden Horizon connection and data plan left No Belden Horizon connection No Belden Horizon con...

Страница 94: ...e device is active in Belden Horizon The number of attempts to reach Belden Horizon are less than the configured threshold watchdog percentatagefail Data Plan Limit and Stop Data After Plan Limit Reac...

Страница 95: ...his scenario the watchdog mechanism will reboot the device at the time interval specified minutes This is configurable from the local UI via the Belden Horizon Timeout parameter C No Belden Horizon co...

Страница 96: ...ocal UI via the Belden Horizon Timeout parameter E No connection to the configured endpoint address Note This case is made for the devices that are not activated in Belden Horizon The default endpoint...

Страница 97: ...reboot the device at the time interval specified minutes in the configuration file watchdog endpointtimeout 15 This scenario applies if the device is not active in Belden Horizon This is configurable...

Страница 98: ...tagefail is set to 10 watchdog endpointtimeout is set to 15 watchdog endpointaddr is set to 8 8 8 8 watchdog armed is set to 0 system ntpport 123 system eipenable 0 system mbenable 0 system mbport 502...

Страница 99: ...itself after 15 minutes Cases No connection to the configured endpoint address check watchdog endpointaddr parameter by default there is no endpoint configured No Belden Horizon connection while endp...

Страница 100: ...ions to Enable disable the Connection Recovery watchdog mechanism Configure the desired Endpoint Address Default value is 8 8 8 8 Configure the timeout that manages the connection to Belden Horizon ap...

Страница 101: ...rt and software upgrades The Radio Firmware Install is for daughterboard changes of the ICX35 HWC It is for cellular technology upgrades only Warning If you are using an ICX35 HWC with ProSoft Technol...

Страница 102: ...ease contact ProSoft Technology technical support for the v1 1 firmware file 1 On the ICX35 HWC webpage click on ADMINISTRATOR SYSTEM 2 Under the Gateway Firmware Install section click the CHOOSE FILE...

Страница 103: ...ADMINISTRATOR SYSTEM 2 Under the Radio Firmware Install section click the CHOOSE FILE button 3 Browse to the spk firmware file location and click OK 4 Click the INSTALL button then click OK in confir...

Страница 104: ...5 HWC A to Verizon CDMA mode You can use the same procedure to convert back to GSM mode using GSM internal radio software file 1 Download the CDMA internal radio software file from the ICX35 HWC webpa...

Страница 105: ...onfigurations of the ICX35 HWC using Pass Through End Device to End Device mode VPN OpenVPN in End Device to End Device mode VPN OpenVPN in DHCP mode This chapter does not go into End Device configura...

Страница 106: ...ram illustrates a Pass Through mode configuration example In this scenario the laptop wants to communicate with a ControlLogix rack To configure the ICX35 HWC you must supply WAN IP This number is sup...

Страница 107: ...1 1 ICX35 HWC Configuration Parameters 1 Log in to the ICX35 HWC built in web server 2 Navigate to Configuration Basic 3 Enter the Gateway Name and APN of your network 4 Using the previous example the...

Страница 108: ...the APPLY button 5 Perform the same procedure for the ICX35 2 10 1 3 End Device Parameter Notes When configuring the end device keep the following points in mind The IP Address of the end device must...

Страница 109: ...enario with OpenVPN In this scenario Virtual OpenVPN addresses are assigned by the VPN server If the end device 172 020 000 220 wants to communicate with 192 168 000 211 it must address the device thr...

Страница 110: ...is scenario configure the ICX35 1 for Pass Through 1 Log in to the ICX35 1 built in web server 2 Navigate to Configuration Basic 3 Enter the Gateway Name and APN of the network 4 In the example the IC...

Страница 111: ...End Device 1 When configuring the end device keep the following points in mind The IP Address of the end device connected to ICX35 1 must match the value entered in the End Device Address parameter i...

Страница 112: ...n at the top of the diagram 7 If user password authentication is configured on the server enable the User Password Authentication box and provide credentials in the User and Password fields 8 Browse a...

Страница 113: ...trial Cellular Gateway ICX35 HWC Tech Notes 3G 4G LTE User Manual ProSoft Technology Inc Page 113 of 127 10 3 OpenVPN with DHCP Enabled Example The following diagram illustrates the use of OpenVPN wit...

Страница 114: ...of the module in the Gateway Name field 4 Enter the access point name in the APN field Get this from your cellular provider 5 Enter the LAN IP and subnet mask in the IP Address and Subnet Mask fields...

Страница 115: ...e credentials in the User and Password fields 16 Choose and upload the Credential Files Your Server Administrator will provide you with the certificate files and location 17 Click the APPLY button 10...

Страница 116: ...Provide the Certificate Authority file Note The Client Certificate and Client Key files are not used with this type of authentication Therefore this type of authentication is less secure than the defa...

Страница 117: ...d 3 Provide the Certificate Authority Client Certificate and Client Key files Note All authentication methods Username Password Certification and Key must be valid in order for the client to connect t...

Страница 118: ...ficate Authority Client Certificate and Client Key credential files Your OpenVPN Server 1 Administrator provides the three certificate files Note Certificate keys are mandatory as separate files if a...

Страница 119: ...dress for OpenVPN servers OpenVPN server has a default IP address 10 8 0 1 24 It also leases to clients from the same subnet 10 8 0 0 24 When using the ICX35 HWC with multiple OpenVPN servers it is im...

Страница 120: ...mode When EDGE is not available your ICX35 HWC will fall back to GPRS for the connection to your cellular provider to provide continued connectivity EV DO EV DO Evolution Data Optimized provides a bro...

Страница 121: ...are maximized to provide a faster throughput reaching speeds up to 2 0 Mbit s for the uplink and 7 2 Mbit s for the downlink Please check with your network provider on the availability of HSUPA LTE L...

Страница 122: ...nc Page 122 of 127 12 Appendix A Belden Horizon Remote Packet Capture A remote packet capture option is enabled from Belden Horizon to capture the tcpdump on LAN or WAN interface for a specified durat...

Страница 123: ...Remote Packet Capture 3G 4G LTE User Manual ProSoft Technology Inc Page 123 of 127 3 The captured tcpdump is stored in Belden Horizon Once the file capture is complete follow the prompts to save to y...

Страница 124: ...but configured as if they are all on the same subnet It can be used to create a subnet effect without changing the network configuration of the devices 13 1 Proxy ARP Sample Topology The example above...

Страница 125: ...forward the broadcast and the ARP request never makes it to the S1 server However when the Proxy ARP is enabled on the ICX35 HWC router 1 The ICX35 HWC router sees the ARP request from H2 on the 10 1...

Страница 126: ...HWC Industrial Cellular Gateway Proxy ARP 3G 4G LTE User Manual ProSoft Technology Inc Page 126 of 127 13 3 Proxy ARP Status Check To view the status of the Proxy ARP go to Status System Status Proxy...

Страница 127: ...s North America Corporate Location Europe Middle East Africa Regional Office Phone 1 661 716 5100 info prosoft technology com Languages spoken English Spanish REGIONAL TECH SUPPORT support prosoft tec...

Отзывы: