Waveshare WS-431E Скачать руководство пользователя страница 58 | Manualshive

Страница: 58 / 68

Waveshare WS-431E Скачать руководство пользователя страница 58

WS-431E

4G Router

www.waveshare.com

58 / 68

www.waveshare.com/wiki

Figure 61 Domain name whitelist

4.7. VPN FUNCTION

VPN (Virtual Private Network) is divided into PPTP, L2TP, IPSec, OpenVPN, GRE, etc. Next,

the principles of creating VPN by these protocols are introduced respectively.

PPTP: a point-to-point tunneling protocol, which uses a TCP (port 1723) connection to

maintain the tunnel, uses the general routing encapsulation (GRE) technology to encapsulate the
data into PPP data frames and transmit them through the tunnel, and encrypts or compresses
the load data in the encapsulated PPP frames. The MPPE will encrypt the PPP frame through the
encryption key generated by the MS-CHAP V2 authentication process.

L2TP: It is a Layer 2 tunneling protocol, similar to PPTP. At present, G806 supports tunnel

password authentication, CHAP and other authentication methods, and the encryption method
supports MPPE encryption and L2TP OVER IPSec pre-shared key encryption.

IPSec: Protocol is not a single protocol, it gives a set of architecture for application and

network data security on IP layer, including network authentication protocols ESP, IKE and some
algorithms for network authentication and encryption. Among them, ESP protocol is used to
provide security services and IKE protocol is used for key exchange.

OpenVPN: Support certificate-based two-way authentication, that is, the client needs to

authenticate the server, and the server needs to authenticate the client.

GRE: GRE (General Routing Encapsulation) protocol encapsulates data packets of some

network layer protocols (such as IP and IPX) so that these encapsulated data packets can be

«
...
56
57
58
59
60
...
»

Содержание WS-431E

Страница 1: ...WS 431E 4G Router www waveshare com 1 68 www waveshare com wiki WS 431E 4G Router User Manual Figure 1 WS 431E 4G Router...

Страница 2: ...us Wifi etc 1x WAN RJ45 port configurable for LAN 10 100 Mbps supports automatic MDI MDIX 1 5KV electromagnetic isolation protection 2 x LAN RJ45 port 10 100 Mbps supports automatic MDI MDIX 1 5KV ele...

Страница 3: ...APN 11 4 2 1 APN CONFIGURATION BY WEB SERVER 11 4 2 2 CREATE A VPN CLIENT 12 4 3 NETWORKING MODE 12 4 3 1 WAN LAN 4G 12 4 3 2 LAN LAN 4G 13 4 4 COMMON FUNCTIONS 15 4 4 1 4G INTERFACE 15 4 4 2 LAN INT...

Страница 4: ...ter www waveshare com 4 68 www waveshare com wiki 4 6 3 COMMUNICATION RULES 38 4 6 4 ACCESS RESTRICTION 56 4 7 VPN FUNCTION 58 4 7 1 PPTP CLIENT 59 4 7 2 L2TP CLIENT 61 4 7 3 IPSEC 63 4 7 4 OPENVPN 65...

Страница 5: ...vice robots inspection robots unmanned vehicle networking massage chair networking AGV car and other industrial application scenarios 2 2 SPECIFICATIONS CELLULAR NETWORK PARAMETERS Frequency band TDD...

Страница 6: ...ds light up after being connected to 4G network SIG 2 signal strength indicator lights up one indicates that the signal is average lights up two indicates that the signal is strong POWER SUPPLY Power...

Страница 7: ...102 104 28mm excluding power terminal antenna and antenna base Installation method 35mm guide rail installation hanging ear installation 3 QUICK START 4G router provides a wireless remote fast networ...

Страница 8: ...work cable and the WiFi antenna and the full frequency antenna are connected to the corresponding antenna interface in turn Networking Insert the SIM card in the power off state the front of the card...

Страница 9: ...then you can directly surf the Internet Let s go to the Settings to check the network status through the default parameters of WS 431E Default parameters of WS 431E as follows SSID WS 431E XXXX IP Add...

Страница 10: ...dmin for the user name and password On the left menu bar select Network Network Diagnosis ping If the domain name can be pinged the network connection is normal You can also directly open the browser...

Страница 11: ...antenna 2 Plug the SIM card in socket 3 Power on the module by power adaptor and check the LED status 4 Connect PC or mobile to the WS 431E router via LAN interface or Wi Fi interface Wi Fi password...

Страница 12: ...ww waveshare com 12 68 www waveshare com wiki Figure 9 APN configuration 4 2 2 CREATE A VPN CLIENT User can set VPN client configuration by Web Server as follow Figure 10 VPN Client 4 3 NETWORKING MOD...

Страница 13: ...r can change to 4G interface to connect internet In this mode user can also connect to router through WIFI To achieve this mode user don t need to change the router s parameters Just connect the cable...

Страница 14: ...WS 431E 4G Router www waveshare com 14 68 www waveshare com wiki Figure 12 Switch WAN LAN interface Application diagram as follow...

Страница 15: ...e com wiki Figure 13 LAN LAN 4G networking 4 4 COMMON FUNCTIONS 4 4 1 4G INTERFACE WS 431E 4G Router supports one 4G interface to access internet Functional diagram as follow Figure 14 4G interface Us...

Страница 16: ...ault settings One LAN interface WAN LAN used as WAN interface IP address 192 168 1 1 Subnet mask 255 255 255 0 Open DHCP function User can configure LAN interface by Web Server as follow Figure 16 LAN...

Страница 17: ...CP Server as follow Figure 17 DHCP function 4 4 3 WAN INTERFACE WS 431E supports one WAN interface and WAN interface can switch between WAN LAN interface WAN interface supports DHCP and Static IP and...

Страница 18: ...share com wiki Figure 18 WAN interface 4 4 4 WLAN INTERFACE Default parameters as follows SSID WS 431E XXXX XXXX MAC Password www waveshare com Channel auto HT Mode auto Encryption mixed psd Figure 19...

Страница 19: ...8 www waveshare com wiki Entering WLAN interface configuration web user can change follow parameters User can configure SSID on Web Server as follow Figure 21 WLAN interfaceConfigure SSID User can con...

Страница 20: ...WS 431E 4G Router www waveshare com 20 68 www waveshare com wiki Figure 22 Configure password Other settings on Web Server as follow...

Страница 21: ...WS 431E 4G Router www waveshare com 21 68 www waveshare com wiki Figure 23 Other settings You can view the list of wifi clients on the wireless screen...

Страница 22: ...ure 24 WiFi client list page 4 4 5 NETWORK DIAGNOSIS User can use network diagnosis function by Web Server as follow Figure 25 Network diagnosis Ping User can do PING test to a specific address in WS...

Страница 23: ...p Can analyse DNS into IP address 4 4 6 MODULE NAME AND TIME ZONE WS 431E default module name is WS 431E and default Time Zone is New York time zone User can configure module name and Time Zone by Web...

Страница 24: ...y Next hop The address to forward to empty Metric Number of packet hops empty Figure 27 Static route parameter table Static route describes the routing rules of Ethernet packets Test example Test envi...

Страница 25: ...e com 25 68 www waveshare com wiki Figure 29 Add routing table page 4 5 BASIC FUNCTIONS 4 5 1 WEB SERVER PASSWORD Default password is root this password is used to enter Web Server User can change pas...

Страница 26: ...68 www waveshare com wiki Figure 30 Web Server password 4 5 2 RESTORE Hardware restore Press Reload button over 5 seconds and release WS 431E will restore default settings and reset User can restore d...

Страница 27: ...WS 431E 4G Router www waveshare com 27 68 www waveshare com wiki Figure 31 Restore default settings 4 5 3 UPGRADE FIRMWARE VERSION Upgrade by Web Server as follow Figure 32 Upgrade firmware version...

Страница 28: ...Web Server after about 1 minute User can choose saving settings User should keep powering up and LAN WIFI connection during the whole upgrade process 4 5 4 RESET Reset time is about 40 60 seconds Rese...

Страница 29: ...e of IP address when accessing external network MSS clamping limits the size of message MSS which is generally 1460 A Rule 1 Input and forwarding from LAN port to wired WAN port are accepted If there...

Страница 30: ...uter s settings and the router is also capable of connecting to the internet However devices connected to the LAN port are not allowed to access the internet In this case the LAN to WAN forwarding rul...

Страница 31: ...s of the WAN port on the router Note IP dynamic masquerading and MSS clamping must be turned on on WAN port and IP dynamic masquerading and MSS clamping are prohibited on LAN port IP address masquerad...

Страница 32: ...wiki Figure 37 SNAT setting 1 Then set the Source NAT and change the source IP address of the packet leaving the router to a fixed IP which is located under firewall Traffic rules Fix the source IP ad...

Страница 33: ...WS 431E 4G Router www waveshare com 33 68 www waveshare com wiki Figure 38 SNAT setting 2 Click Add and Edit...

Страница 34: ...Name The name of this firewall rule Protocol Configurable TCP UDP TCP UDP ICMP TCP UDP Source IP address Need to match the source IP of input traffic Empty means matching all source IPS empty Source p...

Страница 35: ...when adding SNAT port Modify the source port of matching traffic to this port empty means using the source port empty Figure 40 SNAT setting 4 3 Port forwarding Port forwarding allows computers or se...

Страница 36: ...ick the Save Apply button in the lower right corner to make the settings take effect The above setting 192 168 1 1 80 is the router s own web server If we want to access a device within the local area...

Страница 37: ...t or port range such as 8000 9000 Description It is a DMZ function when the external port and the internal port are empty empty Internal region Router subnet area lan Internal IP Router LAN area IP ad...

Страница 38: ...er www waveshare com 38 68 www waveshare com wiki Figure 43 DMZ setting one Click Add and save Figure 44 DMZ setting two Note Port mapping and DMZ functions cannot be used at the same time 4 6 3 COMMU...

Страница 39: ...to external network WAN indicates the rules for external network to access internal network LAN Source MAC address The source MAC that needs to match the rule can be multiple Macs When there are mult...

Страница 40: ...f the access Empty stands for all empty action You can choose to discard accept reject and do nothing when you receive such a packet Discard packets that receive this rule will be discarded Accept pac...

Страница 41: ...the source MAC addresses and source IP address options if only the specific IP in the local area network is restricted from accessing the specific IP of the external network you need to fill in the I...

Страница 42: ...2 68 www waveshare com wiki Figure 46 Firewall IP blacklist 2 Select WAN in the destination zone fill in the destination address that is forbidden to access and click Save and Apply after the setting...

Страница 43: ...WS 431E 4G Router www waveshare com 43 68 www waveshare com wiki Figure 47 Firewall IP blacklist 3...

Страница 44: ...irewall IP blacklist 4 Once this configuration is set up the blacklist function will be implemented 2 IP address Whitelist First add the communication rule of IP or MAC address to be whitelisted enter...

Страница 45: ...one and select any as the source MAC address and source address if it is a specific IP that allows a specific IP in the LAN to access the external network you need to fill in the IP address or MAC add...

Страница 46: ...com 46 68 www waveshare com wiki Figure 49 Firewall IP white list 2 Select WAN in the target zone fill in the IP allowed to access in the target address and click Save and Apply after the setting Acc...

Страница 47: ...l communications are rejected The source address is set to any the destination address is set to any and the action is selected to Reject Pay attention to the order of the two rules The allowed rules...

Страница 48: ...WS 431E 4G Router www waveshare com 48 68 www waveshare com wiki Figure 51 Firewall IP white list 4 3 Denies a subnet device access to a specified IP First add a forwarding rule...

Страница 49: ...e protocol the specified source IP cannot ping the specified target IP and TCP UDP connection can be established If All protocols is selected the specified destination IP cannot be ping for the specif...

Страница 50: ...is to prohibit the 8899 port of a device with a source MAC of 48 95 07 AB 58 7B if the port is left blank it will be all ports by default and to prohibit the establishment of a TCP connection with a...

Страница 51: ...WS 431E 4G Router www waveshare com 51 68 www waveshare com wiki Figure 54 Firewall setting 3 4 Disable Ping function First add a forwarding rule...

Страница 52: ...WS 431E 4G Router www waveshare com 52 68 www waveshare com wiki Figure 55 Firewall setting 1 Protocol selects ICMP...

Страница 53: ...rbidden to ping according to the demand and the source port number is not required to be filled in Select all the destination IP and you can fill in whether ping to a certain IP is prohibited or ping...

Страница 54: ...igure 57 Firewall setting 3 Click Apply to take effect immediately after the setting is completed To temporarily disable the Ping function or other firewall policy settings uncheck the box on the righ...

Страница 55: ...WS 431E 4G Router www waveshare com 55 68 www waveshare com wiki Figure 58 Firewall setting 4 No ping function takes effect...

Страница 56: ...onnected to routers cannot access other domain names except those set in whitelist and multiple blacklists and whitelists can be set This function is turned off by default 1 Domain name blacklist Firs...

Страница 57: ...name and correct domain name of the rule and then click Save The rule will take effect immediately and the devices connected to the router will not be able to access other domain names except the doma...

Страница 58: ...s a Layer 2 tunneling protocol similar to PPTP At present G806 supports tunnel password authentication CHAP and other authentication methods and the encryption method supports MPPE encryption and L2TP...

Страница 59: ...e These protocols can build VPN and you can choose a more suitable protocol according to your own needs 4 7 1 PPTP CLIENT Before application you need to get the address account password and encryption...

Страница 60: ...content needs to communicate with the outside replace the internal address with the public address If this item is disabled the network address translation function cannot be realized Peer subnet mask...

Страница 61: ...ate detection 4 7 2 L2TP CLIENT L2TP is a Layer 2 tunneling protocol similar to PPTP At present WS 431E supports tunnel password authentication MPPE encryption and L2TP OVER IPSec pre shared key encry...

Страница 62: ...OVER IPSec encryption Server address fill in the IP or domain name of the VPN server to be connected Interface wan_4G wan_wired and automatic can be selected according to different networking modes Us...

Страница 63: ...ace the internal address with the public address If this item is disabled the network address translation function cannot be realized Peer subnet mask after filling in correctly the subnet interworkin...

Страница 64: ...e fill in the IP domain name of the peer Negotiation mode main mode aggressive mode aggressive negotiation mode with main mode as the default Tunnel types subnet to subnet subnet to host host to subne...

Страница 65: ...on There are four options disabled DH1 DH2 and DH5 This setting should be consistent between this end and the peer Enable DPD Detection What action should be taken when the DPD declares the peer as de...

Страница 66: ...VPN server Use LZO Compression Enable or disable the use of LZO compression for transmitting data NAT Settings This function is turned on by default When the content needs to communicate with the out...

Страница 67: ...basic configuration Description Peer WAN IP The WAN IP address of the remote GRE peer Local WAN IP the addresses of local wan_wired and wan_4G which are input differently according to the networking...

Страница 68: ...wiki For example 172 16 10 1 24 corresponding to IP of 172 16 10 1 and subnet mask of 255 255 255 0 Local tunnel IP IP address of local GRE tunnel TTL set the TTL of GRE channel which is 255 by defaul...

Отзывы:

Нет отзывов

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды