Table of Contents
Hardware ................................................................................................. 28
Software .................................................................................................. 29
Security ................................................................................................... 30
What’s Included...................................................................................... 31
What You Need to Supply...................................................................... 31
Available Accessories............................................................................ 32
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
3
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Desktop Models ......................................................................................32
Medical Unit Models ...............................................................................33
Electric Utility models ............................................................................33
Power Options.................................................................................... 33
Overview..................................................................................................34
1-Port........................................................................................................35
2-Port........................................................................................................36
4-Port........................................................................................................36
I/O .............................................................................................................37
Rack Mount..............................................................................................38
Medical Unit.............................................................................................39
Electric Utility models ............................................................................40
Console/Serial Switch ............................................................................41
Console Mode .................................................................................... 41
4
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Medical Unit Models............................................................................... 43
I/O Models ............................................................................................... 43
DC Power Models (excluding Electric Utility models) ........................ 44
Electric Utility Models ............................................................................ 46
Wiring................................................................................................. 46
Configures an IP Address...................................................................... 52
Requires a Configured IP Address ....................................................... 52
Overview.................................................................................................. 54
Access Platforms ................................................................................... 54
Features................................................................................................... 54
Connecting to the IOLAN Using DeviceManager ................................ 54
Using DeviceManager ............................................................................ 56
Overview.................................................................................................. 57
Access Platforms ................................................................................... 57
Features................................................................................................... 57
5
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Overview..................................................................................................60
Access Platforms....................................................................................60
Features...................................................................................................60
Using the CLI...........................................................................................61
Overview..................................................................................................61
Access Platforms....................................................................................61
Features...................................................................................................61
Using the Menu .......................................................................................62
Overview..................................................................................................63
Features...................................................................................................63
Overview..................................................................................................65
Access Platforms....................................................................................65
Features...................................................................................................65
Overview..................................................................................................67
Access Platforms....................................................................................67
6
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Changes to the IOLAN+ Interface ......................................................... 68
Using DeviceManager ............................................................................ 75
Using WebManager ................................................................................ 76
Using ARP-Ping...................................................................................... 78
For an IPv6 Network............................................................................... 78
DeviceManager ....................................................................................... 84
WebManager ........................................................................................... 85
EasyPort Web ......................................................................................... 85
Starting a New Session.......................................................................... 86
Assigning a Temporary IP Address to a New IOLAN.......................... 87
Adding/Deleting IOLANs Manually ....................................................... 88
Logging in to the IOLAN ........................................................................ 88
Logging into the IOLAN ......................................................................... 89
Creating a New IOLAN Configuration in DeviceManager ................... 89
7
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
IPv4 Settings ...........................................................................................92
Field Descriptions............................................................................... 92
IPv6 Settings ...........................................................................................93
Field Descriptions............................................................................... 93
Advanced.................................................................................................96
Field Descriptions............................................................................... 96
Host Table................................................................................................98
Functionality ....................................................................................... 98
Field Descriptions............................................................................... 98
Adding/Editing a Host ............................................................................99
Route List ..............................................................................................100
Functionality ..................................................................................... 100
DNS/WINS..............................................................................................102
Functionality ..................................................................................... 102
RIP..........................................................................................................103
Functionality ..................................................................................... 103
8
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Dynamic DNS........................................................................................ 105
Overview .......................................................................................... 105
Functionality..................................................................................... 105
IPv6 Tunnels ......................................................................................... 110
Overview .......................................................................................... 110
Overview................................................................................................ 113
Functionality ......................................................................................... 113
Common Tabs....................................................................................... 116
Overview .......................................................................................... 116
Console Management Profile .............................................................. 127
Overview .......................................................................................... 127
Functionality..................................................................................... 127
TruePort Profile .................................................................................... 130
Overview .......................................................................................... 130
Functionality..................................................................................... 130
9
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
TCP Sockets Profile..............................................................................136
Functionality ..................................................................................... 136
UDP Sockets Profile .............................................................................142
Functionality ..................................................................................... 142
Terminal Profile.....................................................................................144
Functionality ..................................................................................... 145
SSH Settings .................................................................................... 153
Printer Profile ........................................................................................161
Functionality ..................................................................................... 162
Functionality ..................................................................................... 164
10
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Overview .......................................................................................... 169
Functionality..................................................................................... 169
Modbus Gateway Profile...................................................................... 173
Overview .......................................................................................... 173
Functionality..................................................................................... 173
Power Management Profile.................................................................. 179
Overview .......................................................................................... 179
Functionality..................................................................................... 179
Overview .......................................................................................... 181
Functionality..................................................................................... 181
Remote Access (SLIP) Profile ............................................................. 190
Overview .......................................................................................... 190
Custom Application Profile ................................................................. 193
Overview .......................................................................................... 193
Functionality..................................................................................... 193
Overview................................................................................................ 194
Functionality ......................................................................................... 194
Field Definitions.................................................................................... 195
11
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Modems Tab..........................................................................................199
Functionality ..................................................................................... 199
Functionality ..................................................................................... 200
Field Definitions................................................................................ 200
Overview................................................................................................202
Functionality..........................................................................................202
General Tab ...........................................................................................203
Functionality ..................................................................................... 203
Services Tab..........................................................................................205
Functionality ..................................................................................... 205
Advanced Tab .......................................................................................207
Sessions Tab.........................................................................................209
Functionality ..................................................................................... 209
12
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Authentication ...................................................................................... 214
Local ...................................................................................................... 215
Overview .......................................................................................... 215
RADIUS.................................................................................................. 216
Overview .......................................................................................... 216
Kerberos................................................................................................ 218
LDAP...................................................................................................... 219
Overview .......................................................................................... 219
TACACS+ .............................................................................................. 220
Overview .......................................................................................... 220
SecurID.................................................................................................. 221
Overview .......................................................................................... 221
NIS.......................................................................................................... 222
Overview................................................................................................ 223
Functionality ......................................................................................... 223
Field Descriptions ................................................................................ 225
Overview................................................................................................ 226
Functionality ......................................................................................... 226
Field Descriptions ................................................................................ 227
13
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Overview................................................................................................231
Functionality..........................................................................................231
IPsec.......................................................................................................232
L2TP/IPsec.............................................................................................237
Exceptions.............................................................................................238
Advanced...............................................................................................239
Field Description............................................................................... 239
Overview................................................................................................240
Functionality..........................................................................................240
Field Descriptions.................................................................................240
Overview................................................................................................246
UDP Functionality.................................................................................250
14
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Temperature Functionality .................................................................. 252
Overview .......................................................................................... 252
Analog ................................................................................................... 253
Overview .......................................................................................... 253
Digital Input........................................................................................... 255
Overview .......................................................................................... 255
Functionality..................................................................................... 255
Digital Output........................................................................................ 258
Overview .......................................................................................... 258
Functionality..................................................................................... 258
Relay...................................................................................................... 261
Overview .......................................................................................... 261
Digital I/O Extension............................................................................. 263
Overview .......................................................................................... 263
Functionality..................................................................................... 264
Temperature.......................................................................................... 269
Alarm Settings ...................................................................................... 271
UDP Unicast Format............................................................................. 274
UDP Unicast Example .......................................................................... 277
Modbus Serial Application Connected to the Network..................... 277
15
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Function Codes.....................................................................................278
A4/T4 Registers.....................................................................................280
D4/D2R2 Registers................................................................................282
Serial Pin Signals..................................................................................282
Introduction...........................................................................................285
Setup......................................................................................................285
Get Commands .....................................................................................286
Set Commands......................................................................................287
Error Codes ...........................................................................................289
Overview................................................................................................291
16
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Overview .......................................................................................... 293
Overview................................................................................................ 295
Functionality ......................................................................................... 295
Overview................................................................................................ 296
Field Descriptions ................................................................................ 296
Email Alerts........................................................................................... 299
Overview .......................................................................................... 299
Functionality..................................................................................... 299
Syslog.................................................................................................... 301
Overview .......................................................................................... 301
SNMP ..................................................................................................... 302
Overview .......................................................................................... 302
Time ....................................................................................................... 304
Overview .......................................................................................... 304
Functionality..................................................................................... 304
17
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Field Description............................................................................... 307
Advanced...............................................................................................308
Chapter 14 Controlling the RPS, I/O Channels, and IPsec Tunnels
313
Overview................................................................................................313
Field Descriptions.................................................................................313
Plug Control ..........................................................................................314
Overview................................................................................................315
Field Descriptions.................................................................................315
Overview................................................................................................316
18
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Uploading Configuration Files ............................................................ 322
Specifying a Custom Factory Default Configuration ........................ 322
Calibrating Analog Input...................................................................... 323
Calibrating Temperature Input ............................................................ 324
Calibrating Analog Channels .............................................................. 325
Resetting Calibration Data................................................................... 325
Loading a Supplied Language ............................................................ 327
Translation Guidance........................................................................... 328
Software Upgrades and Language Files ............................................ 328
Creating Terminal Definition Files ...................................................... 329
19
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Overview................................................................................................333
Host-to-Host ..........................................................................................343
20
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Accessing the IOLAN from the Network Users ................................. 357
DB25 Male ............................................................................................. 363
DB25 Female......................................................................................... 364
RJ45....................................................................................................... 365
DB9 Male (Serial Only) ......................................................................... 369
DB9 Male I/O.......................................................................................... 370
Terminal DB25 Connector ................................................................... 371
DB25 Male ....................................................................................... 371
DB9 Male ......................................................................................... 373
Modem DB25 Connector...................................................................... 374
DB25 Male ....................................................................................... 374
DB9 Male ......................................................................................... 375
21
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
1-Port IOLAN RJ45................................................................................378
1-Port IOLAN DB9 .................................................................................379
2-Port IOLAN .........................................................................................380
Digital I/O Module..................................................................................382
Digital I/O ...............................................................................................385
Analog Input..........................................................................................387
Voltage ............................................................................................. 387
Temperature Input ................................................................................388
Relay Output..........................................................................................389
22
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
API Request Format ............................................................................. 392
API Response Format .......................................................................... 392
Error Codes...................................................................................... 393
RJ45F to DB25M DTE Crossover Adapter.......................................... 398
RJ45F to DB25M DCE Modem Adapter .............................................. 399
RJ45F to DB25F DTE Crossover Adapter .......................................... 400
RJ45F to DB9M DTE Crossover Adapter............................................ 401
RJ45F to DB9F DTE Crossover Adapter ............................................ 402
RJ45F to DB25M DTE Crossover Adapter.......................................... 403
RJ45F to DB25M DCE Modem Adapter .............................................. 404
RJ45F to DB25F DTE Crossover Adapter .......................................... 405
RJ45F to DB9M DTE Crossover Adapter............................................ 406
RJ45F to DB9F DTE Crossover Adapter ............................................ 407
Sun/Cisco Roll-Over Adapter for Rack Mount Models...................... 407
Power/Ready LED Labels .................................................................... 410
23
Download from Www.Somanuals.com. All Manuals Search And Download.
Table of Contents
Repair Procedure..................................................................................418
24
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Preface
About This Book
This guide provides the information you need to:
z
z
configure the IOLAN
incorporate the IOLAN into your production environment
Intended Audience
This guide is for administrators who will be configuring the IOLAN.
Some prerequisite knowledge is needed to understand the concepts and examples in this guide:
z
z
If you are using an external authentication application(s), working knowledge of the
authentication application(s).
Knowledge of TFTP, the transfer protocol the IOLAN uses.
Documentation
The following documentation is included on the IOLAN installation CD:
z
z
z
z
z
z
z
z
z
z
z
z
IOLAN 1-Port Quick Start Guide
IOLAN 2-4-Port Quick Start Guide
IOLAN Rack Mount Quick Start Guide
IOLAN I/O Quick Start Guide
IOLAN Electric Utility Terminal Server Quick Start Guide
IOLAN SDS/SCS/STS/MDC User’s Guide
IOLAN SDS/SCS/STS/MDC Command Line Reference Guide
IOLAN MDC Hardware Installation Guide
TruePort User’s Guide
TruePort Installation and Configuration Guide for Windows NT
Online Help in the DeviceManager (automatically installed with the DeviceManager application)
Link to knowledge base
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
25
Download from Www.Somanuals.com. All Manuals Search And Download.
Typeface Conventions
Typeface Conventions
Most text is presented in the typeface used in this paragraph. Other typefaces are used to help you
identify certain types of information. The other typefaces are:
Typeface Example
Usage
At the C: prompt, type:
add host
This typeface is used for code examples and system-
generated output. It can represent a line you type in, or a
piece of your code, or an example of output.
Set the value to TRUE.
The typeface used for TRUEis also used when referring to
an actual value or identifier that you should use or that is
used in a code example.
subscribe project subject
The italicized portion of these examples shows the
typeface used for variables that are placeholders for
values you specify. This is found in regular text and in
code examples as shown. Instead of entering project,
you enter your own value, such as stock_trader, and
for yourcode, enter the name of your program.
run yourcode.exec
File, Save
This typeface and comma indicates a path you should
follow through the menus. In this example, you select
Save from the File menu.
IOLAN User’s Guide
This typeface indicates a book or document title.
more information.
This indicates a cross-reference to another chapter or
section that you can click on to jump to that section.
Online Help
Online help is provided in the DeviceManager. You can click on the What’s This button (
or
)
and then click on a field to get field-level help. Or, you can press the F1 key to get window-level
help. You can also get the User’s Guide online by selecting Help, Help Topics.
26
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction
Chapter
1
1
About the IOLAN
The IOLAN is an Ethernet communications/terminal server that allows serial devices to be connected
directly to LANs. The IOLAN can connect to a wide range of devices including:
z
z
z
z
z
z
z
Terminals for multi-user UNIX systems
Data acquisition equipment (manufacturing, laboratory, scanners, etc.)
Retail point-of-sale equipment (bar coding, registers, etc.)
PCs using terminal emulation or SLIP/PPP
Modems for remote access and Internet access
ISDN adapters for branch remote access and Internet access
All types of serial printers
The performance and flexibility of the IOLAN allows you to use a wide range of high speed devices
in complex application environments. The IOLAN products will work in any server environment
running TCP/UDP/IP.
IOLAN Family Models
The IOLAN comes in several different models to meet your network needs:
z
DS—Offered as a 1-port unit (DB25M, DB25F, RJ45, and DB9M interfaces available), this
model provides general IOLAN functionality and supports software configurable serial interface
protocols EIA-232/422/485.
z
z
TS—This model is available with two serial ports (RJ45 only) and supports EIA-232 only. The
TS model is similar to the DS model supporting only general IOLAN functionality.
SDS—This model is available in both desktop and rack mount configurations. Both models
support software configurable serial interface protocols EIA-232/422/485. The SDS model has
the advanced secure IOLAN feature set in addition to the general IOLAN functionality.
z
z
z
STS—This model comes in one desktop model and several rack mount configurations. All
models support EIA-232 only. The STS model has the advanced secure IOLAN feature set in
addition to the general IOLAN functionality.
SCS—This model comes in several rack mount configurations. All models support EIA-232
only and have an internal PCI card interface. The SCS model has the advanced secure IOLAN
feature set in addition to the general IOLAN functionality.
MDC—Offered as a 4-port and 8-port unit (RJ45 only), this model is a medical unit compliant
with IEC 60601-1 and has galvanically isolated EIA-232 serial ports. The MDC model has the
advanced secure IOLAN feature set in addition to the general IOLAN functionality.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
27
Download from Www.Somanuals.com. All Manuals Search And Download.
IOLAN Features
IOLAN Features
The IOLAN is a communications server used for making serial network connections. It attaches to
your TCP/IP network and allows serial devices such as modems, terminals, or printers to access the
LAN. It also allows LAN devices to access devices or equipment attached to IOLAN serial ports.
This section highlights the hardware and software components you can expect to find in your IOLAN
model.
Hardware
Hardware Features
IOLAN Models
Desktop
Rack Mount
Medical
unit
DB25F
DB25M
RJ45
z
z
z
z
z
z
z
z
Serial Connectors
z
z
z
z
z
z
z
z
z
z
DB9M
RJ45
z
z
Galvanically Isolated
Serial Ports
z
z
EIA-232
EIA-422
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
z
Serial Interface
EIA-485
DB25F
DB25M
Serial Power In Pin
Serial Power Out Pin
RJ45
z
z
DB25F
DB25M
RJ45
z
z
z
z
Auto Sensing
Ethernet Interface
10/100
z
z
z
z
z
z
10/100/1000
PCI Interface
I/O Interface
Power over Ethernet
External AC
Internal AC
DC
z
z
z
z
z
z
z
z
z
z
z
z
Power Supply
z
z
z
z
z
z
z
z
z
z
z
Dedicated Console Port
28
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
IOLAN Features
Software
This section describes the supported software features available.
Accessing the IOLAN
All IOLAN models can be accessed through any of the following methods:
z
Easy Config Wizard, an easy configuration wizard that allows you to quickly setup the IOLAN
in a Windows environment
z
DeviceManager, a fully functional Windows 98/NT/2000/ME/Server 2003/XP/Server 2008/Vista
configuration/management tool
z
z
z
z
z
z
WebManager, a web browser (HTTP/HTTPS) option for configuring/managing the IOLAN
Menu, a window-oriented menu interface for configuration and user access
CLI, a Command Line Interface option for configuration/management and user access
SNMP, allowing remote configuration via SNMP as well as statistics gathering
DHCP/BOOTP, a method of automatically updating the IOLAN
IOLAN+ interface, for IOLAN+ users, IOLAN models with 16 ports or fewer can be configured
using the IOLAN+ menu
General Features
Basic IOLAN software features are available on all IOLAN models.
z
z
z
z
z
z
z
z
z
z
z
z
IPv6 support.
Support for TCP/IP and UDP protocols including telnet and raw connections.
Printer support via LPD and RCP.
Virtual modem emulation.
‘Fixed tty’ support for several operating systems using Perle’s TruePort utility.
DHCP/BOOTP for automated network-based setup.
Dynamic statistics and line status information for fast problem diagnosis.
Multisession support when accessing the IOLAN from either the serial port or the network.
Modbus master/slave/gateway support.
An SDK for custom programs and plugin support.
I/O interface on the IOLAN I/O models (Analog, Temperature, Digital, and Relay).
Ability to disable services (for example, Telnet, TruePort, Syslog, SNMP, Modbus, HTTP) for
additional security.
Introduction 29
Download from Www.Somanuals.com. All Manuals Search And Download.
IOLAN Features
Advanced Features
Advanced IOLAN software features can be found on all IOLAN models except DS and TS models.
z
External authentication using any of the following systems:
–
–
–
–
–
–
RADIUS
Kerberos
TACACS+
NIS
SecurID
LDAP
z
z
z
z
z
z
z
z
z
z
z
z
z
z
Support for TCP/IP and UDP protocols.
Dynamic DNS with DYNDNS.org.
Domain Name Server (DNS) support.
®
WINS support for Windows environments.
Remote access support including PPP, SLIP, and SLIP with VJ Compression.
Ability to remotely manage the Perle Remote Power Switch (RPS).
Ability to cluster several IOLANs.
Email alert notification.
PPP authentication via PAP or CHAP.
SSH connections (supported ciphers are Blowfish, 3DES, AES, CAST128, and Arcfour).
SSL/TLS connections.
Logging via Syslog.
RIP authentication (via password or MD5).
SNTP (versions 1, 2, 3, and 4 are supported).
Security
The IOLAN security features can include (depending on your IOLAN model):
z
z
z
z
Supervisory and serial port password protection.
Ability to set serial port access rights.
Ability to assign users access level rights to control their access.
Trusted host filtering (IP filtering), allowing only those hosts that have been configured in the
IOLAN access to the IOLAN.
z
z
z
z
Idle port timers, which close a connection that has not been active for a specified period of time.
Ability to individually disable network services that won’t be used by the IOLAN.
SSH client/server connections (SSH 1 and SSH 2).
SSL/TLS client/server data encryption (TLSv1 and SSLv2).
30
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Hardware and
Connectivity
Chapter
2
2
Introduction
This chapter describes how to physically set up your IOLAN unit. It includes an overview of the
IOLAN hardware components and how to power up the IOLAN to make sure it works correctly.
IOLAN Components
What’s Included
The following components are included with your product:
z
z
IOLAN unit
External power supply (1-, 2-, and 4-port desktop models only)
SDS P (Power Over Ethernet) models and I/O models do not have an external power
supply.
z
Quick Start Guide (all IOLAN models except medical unit models). Soft copy exists on the
CDROM.
z
z
z
Warranty card
A CD-ROM containing documentation, firmware, configuration software, TruePort, etc.
All IOLAN models (except medical unit models) that have an RJ45 serial connector(s) come
with an RJ45JDB9F adapter
Added components for rack mount models:
z
z
z
3’ CAT5 RJ45 Administration cable
Rack mounting kit
pinout diagrams).
Added components for medical unit models:
z
z
z
multi-function wall plate and associated mounting kit
IOLAN MDC Hardware Installation Guide (a soft copy also exists on the CDROM)
IOLAN MDC & Philips DeviceLink II System Integration Guide
What You Need to Supply
Before you can begin, you need to have the following:
z
z
z
A serial cable(s) to connect serial devices to your IOLAN unit
An Ethernet CAT5 10/100/1000BASE-T cable to connect the IOLAN unit to the network
Connection to power (Only applies to DC, I/O and Electric Utility models)
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
31
Download from Www.Somanuals.com. All Manuals Search And Download.
Power Supply Specifications
Available Accessories
The following accessories are available for purchase for the various IOLAN models (except medical
unit models):
z
z
z
z
z
z
z
z
z
DIN Rail Mounting Kit (35mm) for the desktop models and Electric Utility models.
IOLAN modem card for SCS rack mount models
PCI adapter card for SCS rack mount models (for wireless WAN cards)
3 meter RJ45M-RJ45M 8-wire Sun/Cisco modular cable
RJ45 to DB25 DTE Male adapter
RJ45 to DB25 DCE Male adapter
RJ45 to DB25 DTE Female adapter
RJ45 to DB9 Male DTE adapter
RJ45 to DB9 Female DTE adapter
Contact your distributor for details.
Power Supply Specifications
Desktop Models
If you are providing a power supply for a desktop IOLAN model, your power supply must meet the
following requirements:
z
z
Output between 9-30V DC.
DC barrel connector: The cable attached to the power supply should be about 20AWG, length 6
feet approx. The barrel dimensions of the cable-plug are OD=5.5, ID=2.1, and length= 9.5mm,
with a straight barrel, and positive polarity on the inside and negative polarity on the outside.
z
Power can also be provided by:
z
z
z
z
Serial Port 1, pin 1 on the DS/SDS1 models
Serial Port 2, pin 1 on the SDS2 model
Serial Port 4, pin 1 on the SDS4/SCS4 models
Ethernet on the P series models (Power over Ethernet)
Power Over Ethernet (PoE) Models
The 1-port/4-port SDS P models can be powered by either the external DC power supply (included)
or PoE or both. The 2-port SDS P does not accommodate an external power supply and can be
powered only through PoE.
The IOLAN SDS P model is considered a Powered Device (PD) and can only accept power from an
IEEE 802.3AF compliant Power Source Equipment (PSE) device. The IOLAN PoE can receive up to
13W of power using one of the following methods to connect to a PSE:
z
z
Using the two unused twisted pair wires (10/100Mb only).
Using the two data pairs or “phantom power” method (100Mb).
I/O Models
The power supply for a desktop IOLAN I/O model must meet the following requirement:
z
Output between 9-30V DC and a minimum of 600mA current.
The maximum load for the Relay channel is 1A @ 30VDC or 0.5A @ 120VAC.
32
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Power Supply Specifications
Rack Mount Models (except Electric Utility models)
DC Power Requirements
The IOLAN DC is supplied with an integral Terminal Connections block to facilitate connection to a
DC source(s). The DC supply(s) should have adequate over-current protection within the closed rack
system and comply with local or national standards applicable to the installation territory. You need
wire gauge 20 to 22 AWG to connect the IOLAN rack mount unit to the power source.
The equipment must be grounded for safety and to ensure ESD protection for correct
operation and protection of the internal circuitry.
AC Power Requirements
AC power rack mount units come with standard power cords, specific to your country, that should be
used to power the IOLAN unit.
Medical Unit Models
The MDC model comes with standard power cords, specific to your country, that should be used to
power the IOLAN unit.
Electric Utility models
Power Options
The Electrical Utility series of IOLAN units can be purchased with two different power source
options;
HV -
Single High Voltage power input with nominal AC range of 100V-240V (50-60Hz) or
nominal DC range of 125V-250V.
DHV - Dual Redundant High Voltage power inputs with nominal AC range of 100V-240V (50-
60Hz) or nominal DC range of 125V-250V. Either power source can be used to supply
power to the unit. When both power inputs are live, the unit operates in a load sharing
fashion. Note that the power input pairs are electrically isolated from each other. This means
that when using both power inputs either input can be in either the AC or DC range.
DC Power Requirements
The IOLAN can be powered via a DC source. The following are the ranges for the DC voltage
supported by the unit;
Minimum: 88 VDC
Nominal: 125 -250 VDC
Maximum: 300 VDC
The DC supply(s) should have adequate over-current protection within the closed rack system and
comply with local or national standards applicable to the installation territory. You need wire gauge
14 to 18AWG to connect the IOLAN rack mount unit to the power source.
Note:
The equipment must be grounded for safety and to ensure ESD protection for correct
operation and protection of the internal circuitry.
AC Power Requirements
The IOLAN can be powered via an AC source. The following are the ranges for the AC voltage
supported by the unit;
Minimum: 85 VAC
Nominal: 100 -240 VAC
Maximum: 265VAC
You need wire gauge 14 to 18AWG to connect the IOLAN rack mount unit to the power source.
Hardware and Connectivity 33
Download from Www.Somanuals.com. All Manuals Search And Download.
Getting to Know Your IOLAN
Getting to Know Your IOLAN
This section describes the hardware components found on your IOLAN unit.
Overview
All IOLANs have the same basic hardware components to allow you to connect to serial devices,
connect to the network, monitor LAN and serial activity, and manage the unit. Below is a list of these
components:
z
z
Serial Port(s)—Connector(s) that will be used to connect to a serial device.
Activity—This LED blinks to indicate LAN activity. (For medical unit models, the LED is
indicated by the
symbol.)
z
z
Link10/100—This LED indicates the Ethernet connection speed for desktop models only:
–
–
–
Green—10 Mbits
Amber—100 Mbits
Off—no LAN connection
Link10/100/1000—This LED indicates the Ethernet connection speed for rack mount models
only:
–
–
–
Green—10/100 Mbits
Amber—1000 Mbits
Off—no LAN connection
34
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Getting to Know Your IOLAN
z
Power/Ready —This LED can cycle through several colors (amber, green, red) during a boot
process, but should complete with a solid green light. The label of the LED, and whether or not
the LED blinks green after power depends on the IOLAN, as shown in the table below. You can
IOLAN Model LED Label
Green light
Desktop
Power/Ready Solid — Indicates the IOLAN has completed the power up
cycle.
Blinks — After power up, a blinking green light indicates
that the console switch is in the on position.
Rack mount
Medical unit
System Ready Solid — Indicates the IOLAN has completed the power up
cycle.
Solid — Indicates the IOLAN has completed the power up
cycle.
z
z
External Power Supply—For all IOLAN models, this can be an external AC power supply, DC
terminal, or power cord, depending on the model.
Console/Serial Switch—Found on desktop models only (rack mount models have a dedicated
console port), this switch determines whether port 1 functions as a serial port or a console port. If
you have an extended temperature or I/O model, you will see two console switches.
Console/Serial Switch 1 is used to determine the console/serial setting for Port 1 and the
Console/Serial Switch 2 is not used.
z
z
Reset—The inset RESET button will reboot all IOLAN desktop and rack mount models if
pushed in and released quickly. It will reset the IOLAN to factory defaults if pushed in and held
for more than three seconds. (The RESET button is not available on medical unit models.)
Serial Activity—All IOLAN models (except medical unit models) have an LED that blinks for
serial activity.
z
z
Tx—Blinks with transmit serial activity. There is a Tx LED for each serial port.
Rx—Blinks with receive serial activity. There is an Rx LED for each serial port.
z
Ethernet—The Ethernet connector. SCS models have dual Ethernet.
1-Port
This section describes the components found on the IOLAN 1-port models.
Console/Serial
Switch
Reset
External Power Supply
Ethernet
Power/Ready
Link/10/100
Activity (LAN)
Serial Activity
Serial Port
Hardware and Connectivity 35
Download from Www.Somanuals.com. All Manuals Search And Download.
Getting to Know Your IOLAN
The 1-port IOLAN has one serial connection that is one of the following connectors: DB25 male,
DB25 female, RJ45, or DB9 male.
2-Port
This section describes the components found on the IOLAN 2-port models.
Console/Serial
Reset
Switch
External Power Supply
Ethernet
Power/Ready
Link/10/100
Activity (LAN)
Serial Activity
Serial Ports
The 2-port IOLAN has two RJ45 serial connections. The 2-port IOLAN can support an 8-pin
connector if there is no requirement for power in (pin 1) or power out (pin 10) pins. The 2-Port P
model (Power over Ethernet) does not come with an external power supply connector.
4-Port
This section describes the components found on the IOLAN 4-port models.
Console/Serial
Reset
Switch
External Power Supply
Ethernet
Power/Ready
Link/10/100
Activity (LAN)
Serial Activity
Serial Ports
36
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Getting to Know Your IOLAN
The 4-port IOLAN model has four RJ45 serial connections.
I/O
This sections describes the basic components found on the IOLAN I/O models.
Top View
The following image shows a typical IOLAN I/O model. Your I/O model may have I/O connectors in
slightly different positions.
External Power Supply
Power/Ready
Link/10/100
Activity (LAN)
Serial Activity
End View
The IOLAN I/O model shown is an A4D2. Different IOLAN I/O models have different I/O connector
configurations.
I/O connectors
I/O connectors
External Power Supply
Reset
Console/Serial
Switch
Serial Port
Ethernet
All IOLAN I/O models have a DB9M serial connector.
Hardware and Connectivity 37
Download from Www.Somanuals.com. All Manuals Search And Download.
Getting to Know Your IOLAN
Rack Mount
This section describes the basic components of all rack mount IOLAN models. This example uses the
IOLAN SCS with dual Ethernet and dual AC power.
Console Port/LED View
Server LEDs
Power ON/OFF
Serial Activity
Console Port
Serial/Ethernet View
Serial Ports
Dual Ethernet
Dual AC Power
PCI Card Faceplate
(SCS models only)
Reset
38
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Getting to Know Your IOLAN
Medical Unit
This section describes the basic components found on the IOLAN medical unit models.
Top View
Power
LAN Activity
Serial View
Serial Ports
Power/Ethernet View
Power ON/OFF
AC Power
Ethernet
Hardware and Connectivity 39
Download from Www.Somanuals.com. All Manuals Search And Download.
Getting to Know Your IOLAN
Electric Utility models
This section describes the basic components of the Electric Utility models. This example uses the
SDS32C DHV model.
Front (LED/Console port)View
Server LEDs
Serial Activity
Console Port
Back (Serial/Ethernet/power) View
Serial ports
Ethernet port
Reset switch Power/relay
40
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Getting to Know Your IOLAN
Console/Serial Switch
Located at the back of the desktop IOLAN models is a switch that controls whether serial port 1 is in
Console or Serial mode.
The SDS T (Extended Temperature) models have two switches, Switch 1 is used for
Console/Serial mode and Switch 2 is unused.
Look at your model to verify the direction of the ON switch position. ON indicates that serial port 1
is in Console mode; otherwise serial port 1 is in Serial mode.
Console Mode
Console mode is used when you have a direct connection between a serial device (like a terminal or a
PC) and the IOLAN, accessed by the Admin user to configure/manage the IOLAN. Console mode
automatically sets serial port settings as:
z
z
z
z
z
z
Serial Interface to EIA-232
Speed to 9600
Flow Control to No
Bits to 8
Stop Bits to 1
Parity to None
Console mode also displays extra system messages.
Serial port 1 will ignore any Serial Port settings when in Console mode, so you need to turn Console
mode off to use serial port 1 in your network.
When the console switch is in the on position, the Power/Ready LED will blink green.
Serial Mode
Serial mode is used when the IOLAN acts as a communications server, or anytime you are not
connecting directly to the IOLAN to configure it. You can connect directly to the IOLAN in Serial
mode, but the IOLAN will not display all the messages/information you will get in Console mode.
Hardware and Connectivity 41
Download from Www.Somanuals.com. All Manuals Search And Download.
Powering Up the IOLAN
Dedicated Console Port
The rack mount IOLAN models have a dedicated Console port, located on the LED side of the
IOLAN. You can use the supplied Administration cable (with the supplied RJ45JDB9F adapter if
needed) to connect a terminal to the Console/Admin port to view diagnostic information and/or
configure the IOLAN using the Menu or Command Line Interface (CLI). You can configure the baud
rate and flow control of the dedicated Console port.
Powering Up the IOLAN
Desktop/Rack Mount Models (excluding Electric Utility models)
To power up the desktop or rack mount IOLAN, perform the following steps:
1. Rack mount models only: Using the rack mount brackets included with your IOLAN, you can
rack mount the IOLAN from the front or the back of the chassis, depending on your
environment. Make sure you don’t block the IOLAN’s side air vents. Each IOLAN is 1U in
height, and does not require any extra space between units; therefore, you can rack mount up to
five IOLANs in a 5U rack.
2. Plug the external power supply into the IOLAN and then into the electrical outlet. Connect it to
the PSE if you have a P series (Power over Ethernet) model.
3. Rack mount models only: Power on the IOLAN unit using the Power ON/OFF switch.
4. You will see the LEDs blink for several seconds and then remain a solid green, indicating that it
is ready to configure/use.
Before you start to configure the IOLAN, you should set the desktop IOLAN jumpers if you want to
terminate the line or use the power in pin feature (instead of an external power supply, if your
desktop IOLAN model supports it).
In some circumstances, the setting of jumpers may be required:
z
z
z
IOLAN DS and SDS models where EIA-422/485 line termination is required.
IOLAN I/O models with Digital I/O for setting the channels as input or output.
IOLAN I/O models with Analog I/O for setting Voltage/Current.
desktop model.
42
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Powering Up the IOLAN
Medical Unit Models
To power up the medical unit IOLAN, perform the following steps:
1. You can attach the multi-function wall plate included with your medical unit IOLAN to the wall,
then mount the IOLAN on the wall plate. Alternatively, you can mount the IOLAN on a tabletop
or any suitable horizontal surface. See the IOLAN MDC Hardware Installation Guide for more
information on how to mount the medical unit IOLAN.
2. Plug a power cable into the left side (power/Ethernet panel) of the IOLAN unit and then into the
electrical outlet.
3. Power on the IOLAN unit using the Power ON/OFF switch.
4. You will see the LEDs blink for several seconds and then remain a solid green, indicating that it
is ready to configure/use.
I/O Models
To power up the IOLAN, perform the following steps:
1. Unplug the power plugable terminal block from the IOLAN.
2. Loosen the screws and then insert your positive (+) wire into the left terminal and screw it down.
Insert the negative (-) wire into the right terminal and screw it down as shown below:
9-30 VDC
-
+
Right
Left
3. Plug the power terminal block back into the IOLAN.
4. Plug the power supply into the electrical outlet.
5. You will see the LEDs blink for several seconds and then remain a solid green, indicating that it
is ready to configure/use.
Before you start to configure the IOLAN, you should set the IOLAN jumpers for Digital I/O (see
Hardware and Connectivity 43
Download from Www.Somanuals.com. All Manuals Search And Download.
Powering Up the IOLAN
DC Power Models (excluding Electric Utility models)
To power up the IOLAN with DC power requirements, perform the following steps:
1. Verify that the power switch on the IOLAN unit and the power source is in the Off position.
2. Connect the primary and secondary DC input using the following specifications:
a. Use wire gauge 20 to 22 AWG.
b. Strip insulation 7mm from wire ends. (If using stranded wire, twist all strands together to
ensure all wire strands are used for the connection.)
c. Connect supply with reference to the terminal block diagram and electrical specifications:
Earthing wire
Secondary Supply: Negative (-) wire
Secondary Supply: Positive (+) wire
Primary Supply: Negative (-) wire
Primary Supply: Positive (+) wire
DC Power Supply
When connecting only a single power supply source, ensure the connection is the
primary supply and the secondary terminals are left unconnected.
Primary Supply:
Positive (+) wire to Circuit 1, terminal marked +
Negative (-) wire to Circuit 1, terminal marked -
Secondary (back-up) Supply:
Positive (+) wire to Circuit 2, terminal marked +
Negative (-) wire to Circuit 2, terminal marked -
Note:
When connecting dual power supply sources, the IOLAN supports a common
positive (+) circuit arrangement ONLY.
Earthing Wire:
Ground wire to terminal marked with circular earthing symbol.
Screws:
Tighten terminal connector block screws to 7 lbs-inches torque.
3. Switch On the power supplies.
4. Switch On the IOLAN. (The power LEDS 1 and 2 will indicate the status of the power source at
the respective input. If both the primary and secondary power source are available, both LED 1
and LED 2 will be luminated indicated power detected from each input.)
44
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Powering Up the IOLAN
Disconnecting 48V Power Supplies from the IOLAN
To disconnect the power supply(s) from the IOLAN, do the following:
1. Switch off the IOLAN.
2. Switch off the power source(s).
3. Disconnect all DC power input cables from the IOLAN terminal connector block.
4. Remove any attached devices to the serial or Ethernet port(s).
Your IOLAN is ready to be moved.
Hardware and Connectivity 45
Download from Www.Somanuals.com. All Manuals Search And Download.
Powering Up the IOLAN
Electric Utility Models
To power up the IOLAN, Electric Utility models, perform the following steps:
1.
Ensure that the power supply side of the connection is been powered down before
attempting to connect the wires on the IOLAN side.
2.
3.
Connect the power as outlined in the “wiring” section below which matches your model.
Enable power to unit. Unit should now power up.
Wiring
WARNING
This unit should be installed in a restricted access location where access can only be
gained by service personnel or users who have been instructed about the reasons for the
restrictions applied to the location and about any precautions that shall be taken; and
access is through the use of a tool or lock and key, or other means of security, and is
controlled by the authority responsible for the location.
All equipment must be installed according to the applicable country wiring codes.
Note:
The Electric Utility series of IOLAN units do not have a power switch, and an
appropriately rated circuit breaker must be installed externally to the unit. If two power
sources are used, each source must have a circuit breaker. As a safety precaution you
should not rely upon the unit's front panel LEDs as a power indicator.
For power and relay wiring, the use of ring terminals size #6 (M3.5) is recommended using stranded
wire size AWG 18-14. Tighten all screws to a torque of 12 Lb-in (1.36 Nm).
Grounding
The Electric Utility series of IOLAN units have a chassis ground screw. This connection must be
connected to "Equipment Ground" for DC installations or "Safety Ground" for AC installations. A
second “earth ground” connection is provided for secondary grounding. This should only be used in
conjunction with the grounding screw provided on the terminal connector.
For “ground” the use of ring terminal size #8 (M4) is recommended using stranded wire size AWG 18-
14. Tighten screw to a torque of 12 Lb-in (1.36 Nm).
Note:
For your safety, before attempting to connect or modify any of the electrical connections
to the unit, please be sure all wiring is disconnected from any live power source. Power
should only be applied when you are sure that the wiring is correct and any safety covers
are properly installed.
46
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Powering Up the IOLAN
Wiring up an HV unit
Terminal # Description
Usage
1
Normally Open Normally Open is a fail-safe relay connection. Use this with the
Common terminal to act as switch contacts that remain open when
the unit is powered off or in a failure state.
2
3
Common
Common is a fail-safe relay connection. Use this terminal in
conjunction with the Normally Open or Normally Closed terminals.
Normally
Closed
Normally Closed is a fail-safe relay connection. Use this with the
Common terminal to act as switch contacts that remain closed
when the unit is powered off or in a failure state.
4
5
6
E
+ / L
- / N
+ / L is connected to the positive (+) input for DC sources or to the
Live input for AC sources. Use with partner terminal -/N.
- / N is connected to the negative (-) input for DC sources or to the
Neutral input for AC sources. Use with partner terminal +/L.
Chassis Ground Chassis Ground must be connected to "Equipment Ground" for DC
installations or "Safety Ground" for AC installations.
Earth Ground
Earth Ground is a connection to the chassis that can be used for
earth bonding.
NOTES:
1.
2.
3.
4.
For terminal# 1 through 6, the use of ring terminals size #6 (M3.5) is recommended using stranded wire size AWG
18-14. Tighten all screws to a torque of 12 Lb-in (1.36 Nm).
For terminal# E, the use of ring terminal size #8 (M4) is recommended using stranded wire size AWG 18-14.
Tighten screw to a torque of 12 Lb-in (1.36 Nm).
Use the “Chassis Ground” terminal connection for grounding the unit. “Earth Ground” should be used as secondary
grounding source only.
Be sure to replace the clear plastic electrical safety shield before applying power to the unit.
Hardware and Connectivity 47
Download from Www.Somanuals.com. All Manuals Search And Download.
Powering Up the IOLAN
Wiring up a DHV unit
Terminal # Description
Usage
1
Normally Open Normally Open is a fail-safe relay connection. Use this with the
Common terminal to act as switch contacts that remain open when
the unit is powered off or in a failure state.
2
3
Common
Common is a fail-safe relay connection. Use this terminal in
conjunction with the Normally Open or Normally Closed terminals.
Normally
Closed
Normally Closed is a fail-safe relay connection. Use this with the
Common terminal to act as switch contacts that remain closed
when the unit is powered off or in a failure state.
4
5
Chassis Ground Chassis Ground must be connected to "Equipment Ground" for DC
installations or "Safety Ground" for AC installations.
+ / L (source 1) + / L (Source 1) is connected to the positive (+) input for DC
sources or to the Live input for AC sources. Use with partner
terminal -/N(Source 1).
6
7
8
E
- / N(source 1) - / N (Source 1) is connected to the negative (-) input for DC
sources or to the Neutral input for AC sources. Use with partner
terminal +/L(Source 1).
+ / L (source 2) + / L (Source 2) is connected to the positive (+) input for DC
sources or to the Live input for AC sources. Use with partner
terminal -/N(Source 2).
- / N(source 2) - / N (Source 2) is connected to the negative (-) input for DC
sources or to the Neutral input for AC sources. Use with partner
terminal +/L(Source 2).
Earth Ground
Earth Ground is a connection to the chassis that can be used for
earth bonding.
NOTES:
48
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Powering Up the IOLAN
1. For terminal# 1 through 8, the use of ring terminals size #6 (M3.5) is recommended using stranded wire size AWG
18-14. Tighten all screws to a torque of 12 Lb-in (1.36 Nm).
2. For terminal# E, the use of ring terminal size #8 (M4) is recommended using stranded wire size AWG 18-14. Tighten
screw to a torque of 12 Lb-in (1.36 Nm).
3.
Use the “Chassis Ground” terminal connection for grounding the unit. “Earth Ground” should be used as secondary
grounding source only.
4. Be sure to replace the clear plastic electrical safety shield before applying power to the unit.
Wiring up a the Fail-Safe Relay
The Electric Utility series of IOLAN units are also fashioned with a Fail-Safe Relay. The relay is engaged
after the unit is powered up and the software has loaded properly. Should a failure occur, the relay will be
disengaged until the unit returns to a normal state of operation. A failure is defined as a condition which
causes the unit to stop running.
A SPDT set of contacts are provided to the user. These three contact connections are known as "Common",
"Normally Open" and "Normally Closed", and are electrically isolated to the relay. The contacts are rated for
voltages up to 30V DC /AC with a maximum current of 3A.
Hardware and Connectivity 49
Download from Www.Somanuals.com. All Manuals Search And Download.
Powering Up the IOLAN
50
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuration Methods
Chapter
3
3
Introduction
This chapter provides information about the different methods you can use to configure the IOLAN.
Before you can configure the IOLAN, you must assign an IP address to the IOLAN. See the Chapter
Once an IP address is assigned to the IOLAN, you can use any of the configuration methods to:
z
z
z
z
z
z
z
z
z
Configure users.
Configure IOLAN server parameters.
Configure serial port parameters.
Configure network parameters.
Configure time parameters.
Reboot the IOLAN.
Manage the Perle Remote Power Switch (when applicable).
Manage I/O channels (when applicable).
View statistics while connected to the IOLAN.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
51
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuration Methods Overview
Configuration Methods Overview
Some of the IOLAN configuration methods have the capability of configuring an IP address, which is
the first required configuration step for a new IOLAN. Once the IOLAN has been assigned an IP
address, any of the configuration methods can be used to configure the IOLAN.
Configures an IP Address
Following is a list of methods for setting the IOLAN IP address and a short explanation of when you
would want to use that method:
z
Easy Config Wizard—The Easy Config Wizard is available from the CD ROM included with
your IOLAN. You can use the Easy Config Wizard to set the IOLAN’s IP address and configure
serial ports. This configuration method would typically be used when:
z
z
z
z
All ports are to have the same configuration.
Only the most commonly used profiles are required.
Straightforward application with no advanced functionality required.
Easy Config is installed on a Windows-based PC with local network access to the IOLAN.
z
DeviceManager—Use this method when you can connect the IOLAN to the network and access
the IOLAN from a Windows PC. The DeviceManager is a Windows-based application that can
®
be used for IOLAN configuration and management. The DeviceManager can be used to assign
an IP address and perform the complete configuration and management of the IOLAN.
z
z
Direct Connection—Use this method when you can connect to the IOLAN from a serial
terminal or from a computer running terminal emulation software over a serial port. Using this
method, you will need to configure and/or manage the IOLAN using either the Menu or CLI.
DHCP/BOOTP—Use this method when you have a BOOTP or DHCP server running and you
can connect the IOLAN to your network. The IOLAN will automatically obtain an IP address
from a local network DHCP/BOOTP server when this service is enabled (it is disabled by
default). You can also configure certain IOLAN parameters that will be passed from the
DHCP/BOOTP server to the IOLAN when it boots up. Other configurators such as
DeviceManager, CLI, or Menu can be used to set this option, and obtain the initial IP address.
z
z
ARP-Ping—Use this method when you can connect the IOLAN to the network and want to
assign a temporary IP address to the IOLAN by specifying an ARP entry from your PC and then
pinging it.
IPv6 Network—When the IOLAN is connected to an IPv6 network, its local link address is
determined using stateless auto configuration.
Once an IP address has been assigned to the IOLAN, in most cases, you can continue to use the same
method if it is a configurator or you can switch to any other configuration method.
Requires a Configured IP Address
The following configuration methods require that an IP address already be assigned to the IOLAN.
z
z
WebManager—WebManager is a fully functional, browser-based configuration method.
IOLAN+ Interface—The IOLAN+ interface is available on IOLAN models that are 1-16 ports
(this is not supported on DS1, TS2, and medical unit models) and uses the interface that is
available on the IOLAN+ product line.
52
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Easy Config Wizard
Easy Config Wizard
The Easy Config Wizard is a configuration wizard that will configure all the serial ports on your
IOLAN to one of the following:
z
z
z
z
z
z
Console Management
TruePort (Virtual COM Port)
TCP Sockets (Raw TCP)
Terminal
Printer (not supported on DS1/TS2 models)
Serial Tunneling
You can launch the Easy Config Wizard from the Perle website or from the installation CD-ROM.
The Easy Config Wizard has been designed to walk you through the configuration process for any of
the available configuration options shown on the Welcome window.
Configuration Methods 53
Download from Www.Somanuals.com. All Manuals Search And Download.
DeviceManager
DeviceManager
Overview
The DeviceManager is a Windows-based application that can be used to connect to the IOLAN to
IOLAN with DeviceManager.
Access Platforms
The DeviceManager can be run from Windows 98/NT/2000/ME/Server 2003/XP/Server 2008/Vista.
DeviceManager can be installed from the product CD-ROM or downloaded from the Perle website.
Unless the IOLAN has already been configured with a Gateway, DeviceManager can only access
IOLANs in the local subnet. The DeviceManager can be accessed by only the admin user.
Features
DeviceManager supports the following features:
z
z
z
z
z
z
The ability to download the same configuration file to several IOLANs in one operation.
The ability to save a configuration file locally in text format, in addition to the binary format.
The ability to create a configuration file without being connected to the IOLAN.
The ability to open a session to the IOLAN and download a (saved) configuration file to it.
The ability to download/upload keys/certificates to/from the IOLAN.
The ability to download custom files, such as new terminal definitions and a custom language
files to the IOLAN.
Connecting to the IOLAN Using DeviceManager
Before you can use DeviceManager, you need to install it on your Windows operating system from
the IOLAN CD-ROM or you can download it from the Perle website. After the DeviceManager
application is installed, click Start, All Programs, Perle, DeviceManager, DeviceManager to start
the application. When you launch the DeviceManager, it will scan the network for IOLANs:
54
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
DeviceManager
All discovered IOLANs will be displayed on the list along with their name and IP address. When a
new IOLAN is discovered on the network, that has not yet been assigned an IP address, it will be
displayed with an IP Address of Not Configured. To configure the IP address, click on the IOLAN
and then click the Assign IP button.
Choose the method you want to use to assign an IP address to the IOLAN:
z
z
Type in the IP address that you want to assign to this IOLAN.
Enable the Have the IOLAN automatically get a temporary IP Address option. This will turn
on DHCP/BOOTP, so the IOLAN will attempt to get its IP address from your DHCP/BOOTP
server. If you don’t have a DHCP/BOOTP server, DeviceManager will temporarily assign an IP
address in the range of 169.254.0.1-169.254.255.255that will be used only for the duration
of the DeviceManager/IOLAN communication.
After you configure the IP address, click the Assign IP button.
The refreshed list will now display the assigned IP address for the new IOLAN. To connect to the
IOLAN, click the IOLAN entry and click OK. You will be asked to supply the Admin password (the
factory default password is superuser).
If you have a successful connection, the DeviceManager will retrieve the configuration and then
display the IOLAN’s System Information and you can begin configuring the IOLAN.
The DeviceManager does not automatically update the IOLAN’s configuration. You must
download the configuration changes to the IOLAN and then reboot the IOLAN to make the
configuration changes take effect.
Configuration Methods 55
Download from Www.Somanuals.com. All Manuals Search And Download.
DeviceManager
Using DeviceManager
After you have successfully connected to the IOLAN, DeviceManager displays the following
window:
Menu/Quick Access Buttons
Navigation
Tree
Display Area
Download Button
Navigating the Options
The left-hand navigation tree allows you to quickly and easily navigate the various Configuration and
Statistics pages of DeviceManager. Further navigation is available in the form of buttons and tabs in
the display area of DeviceManager, depending on where you are in the navigation tree, as shown in
the below.
Notice that when you expand a parent node in the tree (e.g., Serial), the tree displays the same
options that appear as buttons in the display area, as shown below. This gives you the choice of using
the navigation tree or buttons to navigate the options.
56
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
WebManager
Downloading the Configuration
When you have completed all your configuration changes, click the Download All Changes button
to download the configuration to the IOLAN. You must reboot the IOLAN for your configuration
changes to take effect.
WebManager
Overview
The WebManager is a web browser-based method of configuring/managing the IOLAN. It follows
the same design as the DeviceManager, so it is easy to switch between the WebManager and
Access Platforms
You can access the IOLAN through WebManager from any system that can run a web browser.
WebManager can be accessed by the admin user or any user who has Admin Level privileges.
Features
WebManager supports the following features:
z
z
z
z
The ability to open a session to the IOLAN and download a (saved) configuration file to it.
The ability to save a configuration file locally in text format, in addition to the binary format.
The ability to download/upload keys/certificates to/from the IOLAN.
The ability to download custom files, such as new terminal definitions and a custom language
files to the IOLAN.
z
From WebManager, you can launch EasyPort Web, which can be used to:
z
z
access clustered IOLANs
access ports configured with the Console Server profile and launch an SSH or Telnet session
to those console ports
z
exercise power management capability (when using the Perle Remote Power Switch)
Configuration Methods 57
Download from Www.Somanuals.com. All Manuals Search And Download.
WebManager
Connecting to the IOLAN Using WebManager
Before you can connect to the IOLAN using WebManager, the IOLAN must already be configured
IOLAN.
To connect to the IOLAN through the WebManager:
1. Open your web browser and type in the IP address of the IOLAN that you want to
manage/configure and press Enter; for example: http://123.123.123.123.
2. If you successfully connect to the IOLAN, a login screen will appear.
3. If you are accessing the IOLAN in non-secure HTTP, just type in the Admin password (the
factory default password is superuser) If the IOLAN has already been configured for secure
access mode (HTTPS), select the For a Secure Login Click Here link and then type in the
Admin password.
The secure HTTP (HTTPS) mode requires that the SSL Passphrase is already defined
in the IOLAN configuration and the SSL/TLS certificate/private key and CA list must
more information.
58
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
WebManager
Using WebManager
After you have successfully logged into WebManager, you will see the following:
Navigation
Tree
System
Information
You navigate through the different configuration windows by selecting an option in the left-hand
navigation tree. When you click on an option that is under a folder, more navigation options are
displayed:
Navigation Tabs
The Network folder contains two configuration options, IP Address and Advanced. Notice that
when the IP Address option is selected, there are more navigation options in the form of the tabs, IP
Settings and Advanced.
Remember that in the WebManager, it is necessary to press the Apply button to save your changes.
Configuration Methods 59
Download from Www.Somanuals.com. All Manuals Search And Download.
Command Line Interface
Command Line Interface
Overview
The Command Line Interface (CLI) is a command line option for IOLAN configuration/management.
See the Command Line Interface Reference Guide for a full breakdown of all the CLI commands and
their functionality.
Access Platforms
The CLI is accessed by any application that supports a Telnet or SSH session to the IOLAN’s IP
address, such as Putty, SecureCRT, or from a command prompt. You can also access the CLI from a
dumb terminal or PC connected to a serial port.
Features
The CLI supports the following features:
z
z
z
z
You can access the IOLAN from any application that supports Telnet or SSH.
The ability to clear the ARP table (cache).
The ability to save a configuration file locally in text format, in addition to the binary format.
For existing IOLAN+ customers, the native IOLAN+ CLI to be used by entering the iolan+
command. See your IOLAN User’s Guide for information on using the IOLAN+ CLI.
The IOLAN+ CLI is not supported on IOLAN models with more than 16 ports or the
DS1/TS2 and medical unit models.
Connecting to the IOLAN Using the CLI
There are two ways you can access the IOLAN, through the network (Ethernet connection) or
through the serial connection. If you are accessing the IOLAN through the network, the IOLAN must
already have a known IP address configured; see Using a Direct Serial Connection to Specify an IP
Through the Network
To connect to the IOLAN through the network to configure/manage it using the CLI, do the
following:
1. Start a Telnet or SSH session to the IOLAN’s IP address; for example:
telnet 10.10.201.100
2. You will get a Login: prompt. You can login as the admin user or as a user with Admin Level
rights. If the login is successful, you will get a prompt that displays the IOLAN model and
number of ports:
Login: admin
Password:
SDS2#
You will see a prompt that displays the model and number of the IOLAN. You are now ready to
start configuring/managing your IOLAN using the CLI.
60
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Menu
Through the Serial Port
To connect to the IOLAN through the serial port to configure/manage it using the CLI (or Menu), see
After you have established a connection to the IOLAN, you will get a Login: prompt. You can login
as the admin user or as a user with Admin Level rights. If the login is successful, you will get a
prompt that displays the IOLAN model and number of ports:
Login: admin
Password:
SDS2#
You will see a prompt that displays the model and number of the IOLAN. You are now ready to start
configuring/managing your IOLAN using the CLI
Using the CLI
After you have successfully logged in, you can start configuring/managing the IOLAN by typing in
commands at the prompt. If you are not sure what commands are available, you can type a ?
(question mark) at any time during a command to see your options.
See the Command Line Interface Reference Guide for more information about the CLI.
Menu
Overview
The Menu is a graphical representation of the CLI. You can look up Menu parameter explanations in
the Command Line Interface Reference Guide. The only operations that the Menu does not support
are the downloading and uploading of files to/from the IOLAN.
Access Platforms
The Menu is accessed by any application that supports a Telnet or SSH session to the IOLAN’s
IP address, such as Putty, SecureCRT, or from a command prompt. You can also access the Menu
from a dumb terminal or PC connected to a serial port.
Features
The Menu supports the following features:
z
z
You can access the IOLAN from any application that supports Telnet or SSH.
For existing IOLAN+ customers, the native IOLAN+ menu interface can be used by entering the
iolan+command to display and use the native IOLAN+ menu interface. See your IOLAN
67 for more information about IOLAN+ interface.
Connecting to the IOLAN Using the Menu
To connect the IOLAN using the Menu, follow the directions for Connecting to the IOLAN Using
Configuration Methods 61
Download from Www.Somanuals.com. All Manuals Search And Download.
Menu
Using the Menu
After you have successfully logged in, type screen at the prompt and press Enter. You will be asked
to enter a terminal type, and then you will see the following Menu:
To navigate through the Menu options, do the following:
1. Highlight a Menu option by using the keyboard up and down arrows to navigate the list.
2. When the Menu item you want to access is highlighted, press the Enter key to either get to the
next list of options or to get the configuration screen, depending on what you select.
3. When you are done configuring parameters in a screen, press the Enter key and then the Enter
key again to Accept and exit the form.
4. If you want to discard your changes, press the Esc key to exit a screen, at which point you will
be prompted with Changes will be lost, proceed? (y/n), type yto discard your changes or nto
return to the screen so you can press Enter to submit your changes.
5. If there are a number of predefined options available for a field, you can scroll through those
items by pressing the Space Bar or you can type l(lowercase L) to get a list of options, use the
up/down arrows to highlight the option you want, and then press Enter to select it.
62
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP/BOOTP
DHCP/BOOTP
Overview
Several IOLAN parameters can be configured through a DHCP/BOOTP server during the IOLAN
bootup. This is particularly useful for configuring multiple IOLANs.
Not all configuration parameters are supported in the DHCP/BOOTP configuration (see
use another configuration method, such as DeviceManager, WebManager or CLI, to complete the
configuration.
Features
DHCP/BOOTP supports the following features:
z
z
DHCP/BOOTP can supply the IOLAN’s IP address.
The DHCP/BOOTP server can configure certain server and user configuration parameters when
the IOLAN is booted.
z
z
z
The DHCP/BOOTP server can auto-configure the IOLAN with basic setup information (IP
address, subnet/prefix bits, etc.).
The DHCP/BOOTP server can download a new version of firmware when the IOLAN is
rebooted.
The DHCP/BOOTP server can download a full configuration file when the IOLAN is rebooted.
Connecting to the IOLAN Using DHCP/BOOTP
The IOLAN will automatically request an IP address from the DCHP/BOOTP server when the
Obtain IP address automatically using DHCP/BOOTP parameter is enabled. To enable the Obtain
Using DHCP/BOOTP
To use DHCP/BOOTP, edit the bootp file with IOLAN configuration parameters. You can use
DHCP/BOOTP to perform the following actions on a single or multiple IOLANs on bootup:
z
z
z
z
auto-configure with minimal information; for example, only an IP address
auto-configure with basic setup information (IP address, subnet/prefix bits, etc.)
download a new version of firmware
download a full configuration file
DHCP/BOOTP is particularly useful for multiple installations: you can do all the IOLANs’
configuration in one DHCP/BOOTP file, rather than configure each IOLAN manually. Another
advantage of DHCP/BOOTP is that you can connect the IOLAN to the network, turn on its power
and let autoconfiguration take place. All the configuration is carried out for you during the
DHCP/BOOTP process.
Configuration Methods 63
Download from Www.Somanuals.com. All Manuals Search And Download.
DHCP/BOOTP
DHCP/BOOTP Parameters
The following parameters can be set in the DHCP/BOOTP bootp file:
z
z
z
z
SW_FILE—The full path, pre-fixed by hostname/IP address (IPv4 or IPv6), and file name of the
firmware update.
CONFIG_FILE—The full path, pre-fixed by hostname/IP address (IPv4 or IPv6), and file name
of the configuration file.
GUI_ACCESS—Access to the IOLAN from the HTTP or HTTPS WebManager. Values are on
or off.
AUTH_TYPE—The authentication method(s) employed by the IOLAN for all users. You can
specify the primary and secondary authentication servers, separated by a comma. This uses the
following numeric values for the authentication methods.
–
–
–
–
–
–
–
–
0—None (only valid for secondary authentication)
1—Local
2—RADIUS
3—Kerberos
4—LDAP
5—TACACS+
6—SECURID
7—NIS
z
z
z
z
SECURITY—Restricts IOLAN access to devices listed in the IOLAN’s host table. Values are
yesor no.
TFTP_RETRY—The number of TFTP retries before aborting. This is a numeric value, for
example, 5.
TFTP_TMOUT—The time, in seconds, before retrying a TFTP download/upload. This is a
numeric value, for example, 3.
CUSTOM_LANG—The full path, pre-fixed by a hostname/IP address (IPv4 or IPv6), and file
name of a translated language file. For example,
192.101.34.211 /accounting/Iolan_ds_german.txt.
z
EXTRA_TERM1—(EXTRA_TERM2, EXTRA_TERM3) The full path, pre-fixed by a
hostname/IP address (IPv4 or IPv6), and file name of a termcap file for a specific terminal type.
64
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP
SNMP
Overview
The IOLAN supports configuration and management through SNMP. SNMP Management tools
(SNMP client/MIB browser software) can be used to set IOLAN configuration parameters and/or
view IOLAN statistics.
Before you can configure/manage the IOLAN using SNMP, you need to set the IOLAN IP address
and configure a read-write user for SNMP version 3 or a community for SNMP version 1 or 2. You
can use DeviceManager, CLI, or the Menu to set the IP address and user/community (don’t forget to
reboot the IOLAN before connecting with the SNMP manager to make your changes take effect).
Access Platforms
You can access the IOLAN SNMP MIB from any system that runs your SNMP client/MIB browser
software.
Features
SNMP supports the following features:
z
z
You can configure SNMP traps.
Since not all versions of SNMP support secure communication, password parameters must be set
using another configuration method.
Connecting to the IOLAN Using SNMP
Before you can connect to the IOLAN through an SNMP Management tool or MIB browser, you
need to set the following components through another configuration method.
1. Configure a known IP address on the IOLAN.
2. Configure a read-write user for SNMP version 3 or a community for SNMP version 1 or 2 on the
IOLAN.
3. Reboot the IOLAN to make sure the changes take effect.
To connect to the IOLAN through an SNMP Management tool or MIB browser, do the following:
1. Load the perle-sds.MIBfile from the IOLAN CD-ROM or Perle website into your SNMP
manager (this MIB works for all SDS, SCS, STS, and MDC models).
You need to have the following MIBs installed in your SNMP manager (these are
usually part of the standard SNMP client/MIB browser):
z
z
z
SNMPv2-SMI
SNMPv2-TC
IPV6-TC
2. Verify that the read-write user for SNMP version 3 or a community for SNMP version 1 or 2
match the configuration on the IOLAN.
3. Type in the IOLAN’s IP address and connect to the IOLAN.
You are now ready to start configuring the IOLAN using SNMP.
Configuration Methods 65
Download from Www.Somanuals.com. All Manuals Search And Download.
SNMP
Using the SNMP MIB
After you have successfully connected to the IOLAN through your SNMP Management tool or MIB
browser, expand the PERLE-IOLAN-SDS-MIB folder to see the IOLAN’s parameter folders. Below is
an example of the configurable parameters under the ServicesInfo folder.
The first variable in each folder is the Status variable, for example, serviceStatus. When you
perform a GETon this variable, one of the following values will be returned:
z
z
1—Indicates that the container folder is active with no changes.
2—Indicates that the container folder is active with change(s).
Once you have completed setting the variables in a folder, you will want to submit your changes to
the IOLAN. To do this, set the Status variable to 4. If you want to discard the changes, set the Status
variable to 6.
z
z
4—Indicates that the changes in the container folder are to be submitted to the IOLAN.
6—Indicates that the changes in the container folder are to be discarded.
If you want to save all the changes that have been submitted to the IOLAN, you need to expand the
adminInfo container folder and SETthe adminFunction to 1 to write to FLASH. To make the
configuration changes take effect, SETthe adminFunction to 3 to reboot the IOLAN.
66
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
IOLAN+ Interface
IOLAN+ Interface
Overview
For environments that have both IOLAN and IOLAN+ models or for users who prefer to configure
using the IOLAN+ Menu or CLI, the IOLAN+ user interface is available. The IOLAN+ interface is
supported on all IOLAN SDS, SCS, and STS models up to and including 16 serial ports.
Access Platforms
The Menu is accessed by any application that supports a Telnet or SSH session to the IOLAN’s
IP address, such as Putty, SecureCRT, or from a command prompt. You can also access the Menu
from a dumb terminal or PC connected to a serial port.
Connecting to the IOLAN to Use the IOLAN+ Interface
To connect the IOLAN to using the IOLAN+ interface, follow the directions for Connecting to the
Using the IOLAN+ Interface
After you have successfully logged in to the IOLAN, you can type iolan+at the CLI command
prompt to access the IOLAN+ configuration menu (you must have User Level Normal or Admin).
The IOLAN and the IOLAN+ admin user share the same password. The default admin
password is superuser(not iolan).
If you choose to use the IOLAN+ configuration interface, you should always configure the IOLAN
using the IOLAN+ interface. The IOLAN/IOLAN+ fields do not map directly between the two
interfaces. If you configure a field in the IOLAN configuration interface to a value that is invalid in
the IOLAN+ interface and then attempt to use the IOLAN+ interface, the invalid field value will
show up as ****** (all asterisks), although the IOLAN will interpret the value as valid.
Configuration Methods 67
Download from Www.Somanuals.com. All Manuals Search And Download.
IOLAN+ Interface
Changes to the IOLAN+ Interface
You should be aware that the following IOLAN+ configuration fields are no longer supported:
z
You no longer have the option of selecting access, Authentication/Logging. Also, kill, reboot,
and stats are not available.
z
When you select port, the following fields are not available on the Port Setup Menu:
** Administrator **
Hardware
PORT SETUP MENU
Flow ctrl
REMOTE-ADMIN
Keys
Speed
[9600 ]
Flow ctrl
[None
]
Hot [^A] Intr [^C]
Quit [^]] Kill [^\]
Del [^H] Sess N/A
Echo [^E]
Parity
[None ]
[8]
Input Flow [Enabled ]
Output Flow [Enabled ]
Bit
Stop
Break
[1 ]
[Disabled] IP Addresses
Monitor DSR
Monitor DCD
Interface
[No ]
[No ]
Src [
Dst [
]
]
Mask [
]
[EIA-232]
Access
Access
User
Name [abcd
Options
Keepalive
[Local ]
N/A
]
[No ]
N/A
UDP Retries
Terminal type [dumb ]
Rlogin/Telnet
Debug options
Retry Interval
Authentication
Mode
N/A
N/A
TERM [
]
[5]
[CLI ]
[No ]
N/A
Video pages
CLI/Menu
Map CR to CR LF [No ]
[Raw ]
Hex data
Secure
MOTD
N/A
N/A
Connection [None
Host [
]
Reset Term
]
]
[Yes ]
Remote Port
Local Port
[0
[10001]
________________________________________________________________________________
z
User, Name—only when using LPD/LPR, Name no longer is used as the queue name
z
z
z
z
z
z
z
z
Options, Rlogin/Telnet
Options, Debug options
Options, Hex data
Options, Secure
Keys, Sess
Access, UDP Retries
Access, Retry Interval
Access, Authentication
68
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
IOLAN+ Interface
z
When you select line, Access, the following fields are not available on the Access Menu:
** Administrator **
TTY Name
ACCESS MENU
REMOTE-ADMIN
Access
Authentication Mode
UDP Retries Interval
1 [abcd
] [Local ] N/A
] [Local ] N/A
[Raw ]
[Raw ]
N/A
N/A
N/A
N/A
2 [abcdef
________________________________________________________________________________
z
Authentication
UDP Retries
Interval
z
z
z
When you select line, Options, the following fields are not available on the Options Menu:
** Administrator **
TTY Opt CR
OPTIONS MENU
REMOTE-ADMIN
HEX
Rlogin/Telnet Keepalive
1
2
N/A [No ] N/A
N/A [No ] N/A
N/A
N/A
[No ]
[No ]
________________________________________________________________________________
z
Opt
z
z
HEX
Rlogin/Telnet
Configuration Methods 69
Download from Www.Somanuals.com. All Manuals Search And Download.
IOLAN+ Interface
z
When you select access, Remote access sites., the following fields are not available on the
Remote Access Systems Screen:
** Administrator **
REMOTE ACCESS SYSTEMS SCREEN
REMOTE-ADMIN
Sitename
User name
Password
[
[
[
]
]
]
Device type (
)
Service type N/A
Inactivity
N/A
Phone number [
Login-script N/A
]
________________________________________________________________________________
z
Service type
Inactivity
z
z
Login-script
z
When you select access, Remote site devices., the following fields are not available on the
Remote Site Device Screen:
** Administrator **
REMOTE SITE DEVICES SCREEN
]
REMOTE-ADMIN
Type
[
IP Addresses
Src Addr
Dst Addr
N/A
N/A
Modem
Config
[
N/A
N/A
]
Dial Comm
Hang Up
PPP Configuration
Dialer Configuration
Dial Timeout [45]
Dial Retries [2 ]
Restart timer [3 ]
Max Retries
Inactivity
[10]
[0
]
________________________________________________________________________________
z
IP Address, Src Address
IP Address, Dst Address
Modem, Dial Comm
Modem, Hang Up
z
z
z
70
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
IOLAN+ Interface
When you select server, the following fields are not available on the Server Configuration menu:
** Administrator **
SERVER CONFIGURATION
REMOTE-ADMIN
N/A
Name
IP address
Subnet mask
[wchiewsds2
[172.16.22.7
[255.255.0.0
]
Debug mode
]
]
Ethernet address (00:80:d4:88:88:88)
Ethernet speed [AUTO
]
]
Language
Identification
Lock
[English ]
[
[Disabled]
Password limit
CR to initiate
SNAP encoding
Boot host
[3 ]
N/A
N/A
[
] Boot diagnostics
N/A
N/A
Boot file
[
]
Init file
MOTD file
Domain name
Name server
WINS server
[
]
[
]
[
]
[
]
]
NS Port
[
________________________________________________________________________________
z
Debug mode
CR to initiate
SNAP encoding
Boot diagnostics
NS Port
z
z
z
z
A new parameter was added, Interface, to the to Port Setup Menu, to specify whether you are setting
up the serial line as a EIA-232 or EIA-422 line.
Configuration Methods 71
Download from Www.Somanuals.com. All Manuals Search And Download.
IOLAN+ Interface
72
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Getting Started
Chapter
4
4
Introduction
There are several different configuration methods available to configure the IOLAN (see Chapter 3,
minimal configuration requirements for the IOLAN through either Easy Config Wizard (cannot
configure users using this method), DeviceManager, or WebManager:
If you are setting up the IOLAN medical unit (MDC) model, you must first install the latest
firmware to take advantage of the full feature set available with the MDC model. The latest
firmware can be found either on the CD-ROM that came with the IOLAN or on the Perle
to download the latest IOLAN firmware.
1. Setting up the network—This minimally consists of configuring an IP address or enabling
DHCP/BOOTP. Once the IOLAN has an IP address, you can use any configuration method.
2. Setting up the serial ports—You will want to select the serial port profile that matches the serial
port requirement/scenario for your serial device.
3. Setting up users—This is an optional step, which is only required when your implementation
requires users to access the IOLAN and you are not using external authentication.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
73
Download from Www.Somanuals.com. All Manuals Search And Download.
Easy Configuration Wizard
Easy Configuration Wizard
The Easy Config Wizard quickly sets up the IOLAN’s network configuration and all serial ports to
one of the following:
z
z
z
Console Management—Allows users on the network to connect to a serial device that is
connected to a serial port on the IOLAN.
TruePort (Virtual COM Port)—Allows a networked system to communicate with your serial
device through a virtual COM or TTY port, using the Perle TruePort software.
TCP Sockets (Raw TCP)—Allows hosts on the network to communicate with a serial device
that requires raw data throughput (such as a printer or card reader) connected to the IOLAN
serial port.
z
Terminal—Allows a terminal device to connect to a specified host on the network through a
serial port on the IOLAN.
z
z
Printer—Allows hosts on the network to talk to a printer using LPD connected to the IOLAN.
Serial Tunneling—Allows IOLANs on the network to establish a virtual link between their
serial ports. Typically, one IOLAN’s serial port is configured as a Tunnel Server and the other
IOLAN’s serial port is configured as a Tunnel Client.
74
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Setting Up the Network
Setting Up the Network
The most important part of setting up the network is assigning an IP address to the IOLAN, whether
this is a static IP address or enabling a DHCP/BOOTP-assigned IP address. You should also assign a
name to the IOLAN, to make it easier to recognize. This section deals primarily with setting the IP
address.
Using DeviceManager
To use the DeviceManager, you must first install it on a Windows operating system. The
DeviceManager is able to automatically discover all IOLANs on your local network, even if they
have not yet been assigned an IP address. If routers on the network have been setup to propagate
multicasts, DeviceManager will also be able to discover IOLANs in other networks. The
DeviceManager installation wizard can be found on the CD-ROM included in the IOLAN package.
1. Connect the IOLAN to the network.
2. Power on the IOLAN.
3. From the CD-ROM that was included in the IOLAN packaging, select the DeviceManager link.
4. Click on the link under Location and click Open to automatically start the DeviceManager
installation.
5. Install the DeviceManager by following the installation wizard. On the last window, check the
Yes, I want to launch DeviceManager now. box and click the Finish button.
6. When you launch the DeviceManager, it will automatically scan the local network and display
any IOLANs that it can find.
7. Any IOLAN that does not have an IP address will be displayed as Not Configured, with the
Model and MAC Address to identify the IOLAN. Highlight the IOLAN that you want to assign
an IP address to and click the Assign IP button.
8. Choose the method you want to use to assign an IP address to the IOLAN:
z
z
Type in the IP address that you want to assign to this IOLAN.
Enable the Have the IOLAN automatically get a temporary IP address option. This will
turn on DHCP/BOOTP, so the IOLAN will attempt to get its IP address from your
DHCP/BOOTP server. If you don’t have a DHCP/BOOTP server, DeviceManager will
temporarily assign an IP address in the range of 169.254.0.1-169.254.255.255that will
be used only for the duration of the DeviceManager/IOLAN communication.
Click the Assign IP button.
9. You are now ready to configure the IOLAN. Double-click the IOLAN you just configured IP
address for to open a configuration session. Type superuser(the factory default Admin user
password) in the Login window and click OK.
10. Expand the Server Configuration folder and select Server. Verify the IP address configuration.
You should also enter a name in the Server Name field to make the IOLAN easily identifiable.
11. To make your edits take effect, you need to download the new configuration file and then reboot
the IOLAN. Download the configuration file to the IOLAN by selecting Tools, Download
Configuration to Unit or click the Download All Changes button.
12. Reboot the IOLAN by selecting Tools, Reboot Server or click the Reboot IOLAN button.
For more information on configuring the IOLAN using DeviceManager, see Chapter 5, Using
Getting Started 75
Download from Www.Somanuals.com. All Manuals Search And Download.
Setting Up the Network
Using WebManager
To use the WebManager as your configurator, you must first assign an IP address to the IOLAN. You
can use the Easy Config Wizard to assign an IP address to the IOLAN or any of the other methods
described in this section. Once the IP address is assigned to the IOLAN, simply type the IP address
into the Address field of your web browser and press the Enter key.
Using a Direct Serial Connection to Specify an IP Address
You can connect to the IOLAN’s serial console port using a PC with a terminal emulation package,
such as HyperTerminal or a terminal.
This procedure does not apply to IOLAN medical unit models.
1. Connect the IOLAN to your PC or dumb terminal. Make sure the DIP switch is in Console mode
(for desktop models, this sets the IOLAN serial port 1 to EIA-232) or that you are connected to
the dedicated Console port (for rack mount models). When connecting a terminal or PC directly
(without modems), the EIA-232 signals need to be crossed over (‘null modem’ cable). See
2. Using a PC emulation application, such as HyperTerminal, or from a dumb terminal, set the Port
settings to 9600 Baud, 8 Data bits, No Parity, 1 Stop Bits, and No Hardware Flow control to
connect to the IOLAN. You can change these settings for future connections on the rack mount
models (the IOLAN must be rebooted for these changes to take place).
3. When prompted, type adminfor the User and superuserfor the Password. You should now see
the a prompt that displays the model type and port number; for example, SCS16#.
4. You are now logged into the IOLAN and can set the IP address by typing from the command line
using the Command Line Interface (CLI).
For single Ethernet connection models, type:
set server internet <ipv4address>
For dual Ethernet connection (SCS) models, type:
set server internet eth1 <ipv4address>
Where ipv4address is the IP Address being assigned to the IOLAN.
5. Type the following command:
save
6. If you are going to use another configuration method, such as WebManager or DeviceManager,
unplug a desktop IOLAN or turn Off a rack mount IOLAN. On a desktop IOLAN, change the
DIP switch to Off Serial (DIP switch in the up position) and connect it to your serial device. Plug
the IOLAN back in, automatically rebooting the IOLAN in the process.
unplug the IOLAN. If this is a desktop model, change the IOLAN DIP switch to Off Serial (DIP
switch in the up position) and connect it to your serial device. Plug the IOLAN back in,
automatically rebooting the IOLAN in the process.
76
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Setting Up the Network
Using a Direct Serial Connection to Enable BOOTP/DHCP
If you are using BOOTP, you need to add an entry in the BOOTP server for the IOLAN that
associates the MAC address (found on the back of the IOLAN) and the IP address that you want to
assign to the IOLAN. After you have made the MAC address/IP address association for BOOTP, use
the following directions for BOOTP or DHCP.
You can connect to the IOLAN using a PC with a terminal emulation package, such as
HyperTerminal or a dumb terminal.
This procedure does not apply to IOLAN medical unit models.
1. Connect the IOLAN to your PC or dumb terminal. Make sure the DIP switch is in Console mode
(for desktop models, this sets the IOLAN serial port to EIA-232) or that you are connected to the
dedicated Console port (for rack mount models). When connecting a terminal or PC directly
(without modems), the EIA-232 signals need to be crossed over (‘null modem’ cable). See
2. Using a PC emulation application, such as HyperTerminal, or from a dumb terminal, set the Port
settings to 9600 Baud, 8 Data bits, No Parity, 1 Stop Bits, and No Hardware Flow control to
connect to the IOLAN. You can change these settings for future connections on the rack mount
models (the IOLAN must be rebooted for these changes to take place).
3. When prompted, type adminfor the User and superuserfor the Password. You should now see
the a prompt that displays the model type and port number; for example, SCS16#.
4. You are now logged into the IOLAN and can set the IP address by typing from the command line
using the Command Line Interface (CLI). Type the following command:
set server internet dhcp/bootp on
5. Type the following command:
save
6. Type the following command:
reboot
7. When the IOLAN reboots, it will automatically poll for an IP address from the DHCP/BOOTP
server. If the IOLAN has dual Ethernet, each Ethernet connection will automatically be assigned
an IP address, you can access the IOLAN through either IP address.
8. To view the DHCP/BOOTP assigned IP address, type the following command:
show interface ethernet
If for some reason it cannot obtain an IP address from your DHCP/BOOTP server, you will have to
either reconnect to the IOLAN on the console port and reboot it or push the RESET button to access
the IOLAN.
information on the different IOLAN configuration methods.
Getting Started 77
Download from Www.Somanuals.com. All Manuals Search And Download.
Setting Up the Network
Using ARP-Ping
You can use the ARP-Ping (Address Resolution Protocol) method to temporarily assign an IP address
and connect to your IOLAN to assign a permanent IP address. To use ARP-Ping to temporarily assign
an IP address:
1. From a local UNIX/Linux host, type the following at the system command shell prompt:
arp -s a.b.c.d aa:bb:cc:dd:ee:ff
®
On a Windows 98 or newer system, type the following at the command prompt:
arp -s a.b.c.d aa-bb-cc-dd-ee-ff
(where a.b.c.dis the IPv4 address you want to temporarily assign to the IOLAN, and
aa:bb:cc:dd:ee:ffis the Ethernet (MAC) address of IOLAN (found on the back of the unit).
®
2. Whether you use UNIX or Windows , you are now ready to ping to the IOLAN. Here is a UNIX
example of the sequence to use:
arp -s 192.168.209.8 00:80:d4:00:33:4e
ping 192.168.209.8
From the ping command issued in step 2, the IOLAN will pickup and use the IP address entered into
For an IPv6 Network
The IOLAN has a factory default link local IPv6 address based upon its MAC Address. For example,
the link local address is:
IOLAN MAC Address: 00-80-D4-AB-CD-EF
Link Local Address: fe80::0280:D4ff:feAB:CDEF
By default, the IOLAN will listen for IPV6 router advertisements to obtain additional IPV6
addresses. No configuration is required, however, you can manually configure IPV6 addresses and
configuration options.
information on the different IOLAN configuration methods.
78
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Setting Up the Serial Port(s)
Setting Up the Serial Port(s)
The DeviceManager and WebManager have the following serial port profiles that will simplify serial
port setup:
z
z
z
Console Management—The Console Management profile configures a serial port to provide
network access to a console or administrative port. This profile sets up a serial port to support a
TCP socket that listens for a Telnet or SSH connection from the network.
TruePort—The TruePort profile configures a serial port to connect network servers or
workstations running the TruePort software to a serial device as a virtual COM port. This profile
is ideal for connecting multiple serial ports to a network system or server.
TCP Sockets—The TCP Sockets profile configures a serial port to allow a serial device to
communicate over a TCP network. The TCP connection can be configured to be initiated from
the network, a serial device connected to the serial port, or both. This is sometimes referred to as
a raw connection or a TCP raw connection.
z
z
UDP Sockets—The UDP Sockets profile configures a serial port to allow communication
between the network and serial devices connected to the IOLAN using the UDP protocol.
Terminal—The Terminal profile configures a serial port to allow network access from a terminal
connected to the IOLAN’s serial port. This profile is used to access predefined hosts on the
network from the terminal.
z
z
Printer—The Printer profile configures a serial port to support a serial printer that can be
accessed by the network.
Serial Tunneling—The Serial Tunneling profile configures a serial port to establish a virtual link
over the network to a serial port on another IOLAN. Both IOLAN serial ports must be
configured for Serial Tunneling (typically one serial port is configured as a Tunnel Server and
the other serial port as a Tunnel Client).
Getting Started 79
Download from Www.Somanuals.com. All Manuals Search And Download.
Setting Up the Serial Port(s)
z
Virtual Modem—The Virtual Modem (Vmodem) profile configures a serial port to simulate a
modem. When the serial device connected to the IOLAN initiates a modem connection, the
IOLAN starts up a TCP connection to another IOLAN configured with a Virtual Modem serial
port or to a host running a TCP application.
z
z
z
Control Signal I/O—The Control Signal I/O profile enables the use of the EIA-232 serial port
signal pins to be used as assigned Digital Inputs or Digital Outputs.
Modbus Gateway—The Modbus Gateway profile configures a serial port to act as a Modbus
Master Gateway or a Modbus Slave Gateway.
Power Management—The Power Management profile configures a serial port to communicate
with a Remote Power Switch’s (RPS) administration port. This allows network access to the RPS
and permits access to statistics and control of the RPS’s power plugs.
z
z
z
Remote Access (PPP)—The Remote Access (PPP) profile configures a serial port to allow a
remote user to establish a PPP connection to the IOLAN’s serial port. This is typically used with
a modem for dial-in or dial-out access to the network.
Remote Access (SLIP)—The Remote Access (SLIP) profile configures a serial port to allow a
remote user to establish a SLIP connection to the IOLAN’s serial port. This is typically used with
a modem for dial-in or dial-out access to the network.
Custom Application/Plugin—The Custom Application/Plugin profile configures a serial port to
run a custom application or IOLAN plugin. After you download the custom application files and
specify the application name and any parameters you want to pass to it, the IOLAN will execute
the application when the serial port is started.
Each serial port profile contains all the parameters that are required to completely configure the serial
port scenario represented by the profile.
To select a serial port profile in the DeviceManager, connect through the DeviceManager to the
IOLAN you are configuring and select Serial, Serial Ports in the navigation pane. Highlight the
serial port you want to configure and then click Edit.
When the default serial port profile Terminal displays, click the Change Profile button and select the
appropriate profile for the serial port. See Chapter 7, Configuring Serial Ports on page 113 for more
information on the serial port profiles and their configuration parameters.
80
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Setting Up Users
Setting Up Users
When you have a user who is accessing a device connected to a serial port from the network or who
is accessing the network from a device connected to a serial port through the IOLAN, you can create
a user account and configure the user’s access privileges. Notice that there is a Default user; the
Default user’s parameters are inherited by users logging into the IOLAN who are being authenticated
To add a user account, click on the Users page in the navigation pane.
Click the Add button to create a user account.
To quickly add a user, fill out the field in the General tab and click OK.
you can configure.
Getting Started 81
Download from Www.Somanuals.com. All Manuals Search And Download.
Setting Up Users
82
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Using DeviceManager
and WebManager
Chapter
5
5
Introduction
The DeviceManager and WebManager IOLAN managers have been designed to be very similar to
use. DeviceManager is a Windows-based application and WebManager is a browser-based
application. Both options use the IOLAN’s IP address to access the IOLAN; the DeviceManager can
be used to assign an IP address to a new IOLAN and the WebManager requires that the IOLAN
already have an IP address before it can be used to configure the IOLAN.
When using WebManager, you are required to click the Apply button each time you make a change to
a configuration window/tab. In DeviceManager, you must download your configuration changes to
the IOLAN either periodically or after you are done with the configuration changes. From both
managers you must reboot the IOLAN in order for you configuration changes to take effect.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
83
Download from Www.Somanuals.com. All Manuals Search And Download.
Navigating DeviceManager/WebManager
Navigating DeviceManager/WebManager
The DeviceManager and WebManager have very similar navigation methods. The left-hand side of
the manager is the navigation tree and the center is the configuration area. The DeviceManager has
menu and quick access buttons, whereas the WebManager has system information and some
navigation options on the far right-hand side.
DeviceManager
The DeviceManager has a navigation tree that you can use to access the available Configuration and
Statistics pages in the display area. When you select an option in the navigation tree, you can often
navigate the tabs or buttons in the display area to access the various configuration and statistics
DeviceManager.
Menu/Quick Access Buttons
Navigation Tree
Display Area
84
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Navigating DeviceManager/WebManager
WebManager
The WebManager uses a expandable/collapsible buttons with folders and pages for the navigation
tree. You can expand the buttons to view the folders and pages to see the available configuration
options. When you access a configuration page, you can often navigate the tabs in the configuration
area to access all of the configuration options.
Navigation
Tree
Configuration Area
System Info/
Navigation
EasyPort Web
WebManager also launches EasyPort Web, which is a browser-based management tool that can be
used to manage clustered IOLANs, Remote Power Switches (RPSs), power plugs, and I/O channels
(available only when an I/O model is accessed). EasyPort Web can also be launched by any user who
can connect to the IOLAN through a web browser.
Using DeviceManager and WebManager 85
Download from Www.Somanuals.com. All Manuals Search And Download.
Using DeviceManager to Connect to the IOLAN
Using DeviceManager to Connect to the IOLAN
DeviceManager can connect to existing IOLANs or assign an IP address to a new IOLAN. Whenever
you connect to the IOLAN through the DeviceManager, you connect as the Admin user and must
supply the password for the Admin user.
Starting a New Session
To start a new session and connect to the IOLAN using the DeviceManager:
1. Start the DeviceManager by selecting Start, All Programs, Perle, DeviceManager,
DeviceManager.
2. When the DeviceManager starts, it searches the network for IOLANs.
If you are not seeing IPv6 addresses in the list (you must expand the entry), see IPv6
If your IOLAN is not in the local network and you do not have a multicast enabled router in your
network and therefore is not displayed in the selectable list, but can be pinged from your PC, you
can add it to the selectable list by clicking the Add button.
Click the Add button and type in the IOLAN’s IP address; this field supports IPv4 and IPv6
addresses. Click the Close button when you have completed adding all the manual entries. Select
the manually added server to connect to it.
86
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Using DeviceManager to Connect to the IOLAN
Assigning a Temporary IP Address to a New IOLAN
You can temporarily assign an IP address to the IOLAN that is connected to your local network
segment, for the purpose of connecting to it and downloading a configuration file (containing a
permanent IP address). To temporarily assign an IP address to the IOLAN, do the following:
1. Click the Refresh button. The IOLAN will be displayed in the IP Address column as Not
Configured.
2. Select the new IOLAN and click the Assign IP button. The following window is displayed:
Version 3.1 or lower
Version 3.2 or higher
3. Type a valid temporary IP address into the address field or, in version 3.2 or higher, enable the
Have the IOLAN automatically get a temporary IP address. If you enable the temporary IP
address, the IOLAN will enable DHCP/BOOTP on your IOLAN and attempt to get an IP address
from the DHCP/BOOTP server (this will permanently enable DHCP/BOOTP in your IOLAN’s
configuration, until you change it). If your network does not have a DHCP/BOOTP server, the
IOLAN will temporarily assign an IP address in the range of 169.254.0.1-169.254.255.255
(this IP address is only assigned for the duration of the DeviceManager/IOLAN connection).
4. Click the Assign IP button.
5. Double-click the IOLAN in the IOLAN List. If this is the first time you are accessing the
IOLAN, type in the factory default Admin password, superuser, and click OK. The
DeviceManager will display a window indicating that it is trying to authenticate and connect you
on the IOLAN.
6. If the authentication and connection are successful, the Server Info window is displayed. You are
now ready to configure the IOLAN. If authentication was unsuccessful, try to connect to the
IOLAN again; you probably mistyped the password for the Admin user.
Using DeviceManager and WebManager 87
Download from Www.Somanuals.com. All Manuals Search And Download.
Using DeviceManager to Connect to the IOLAN
Adding/Deleting IOLANs Manually
To permanently add/delete the IOLAN to/from the IOLAN List, click the Add button. The following
window is displayed:
To permanently add the IOLAN to the IOLAN list, click the Add button and type in the IPv4 or IPv6
address of the IOLAN. To permanently delete the IOLAN from the IOLAN list, select the IOLAN’s
IP address and click the Delete button.
Logging in to the IOLAN
To log in to the IOLAN, double-click on the IOLAN in the Device Server List. You will be prompted
for the Admin Password (the default is superuser).
If the authentication and connection are successful, the IOLAN’s Server Info window is displayed.
If you cannot connect to the IOLAN, you can highlight the IOLAN and click the Ping button to
verify that the DeviceManager can communicate with the IOLAN’s IP Address. If the ping times out,
then you might need to set up a Gateway in your IOLAN or verify that your network is
communicating correctly.
88
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Using WebManager to Connect to the IOLAN
Using WebManager to Connect to the IOLAN
WebManager can only connect to IOLANs that already have an assigned IP address. To connect to
the IOLAN, type the IP address of the IOLAN into the Address field as such:
http://10.10.234.34.
You will see the login screen.
Logging into the IOLAN
Type in the Admin password in the Password field and click the Login button. A user who does not
have admin privileges can access EasyPort Web to access clustered serial ports, Perle Remote Power
Switches (RPS), and/or RPS plugs (must already be configured on this IOLAN) by typing their user
name and password on the login screen.
Configuration Files
Creating a New IOLAN Configuration in DeviceManager
In DeviceManager, when you select File, New, the New Configuration window is displayed.
Select the IOLAN model for which you want to create a new configuration file. Any configuration
file created in this manner can only be save locally. To download a created configuration file, you
must first connect to the IOLAN, import the created configuration file into DeviceManager (this is
not available in WebManager), and then download the configuration file to the IOLAN and reboot it.
Using DeviceManager and WebManager 89
Download from Www.Somanuals.com. All Manuals Search And Download.
Managing the IOLAN
Opening an Existing Configuration File
If you select the File, Open, a browse window is opened so you can select the configuration file you
want to edit. IOLAN configuration files saved in the DeviceManager can be in the IOLAN-native
binary format (.dme) or as a text file (.txt), which can be edited with a text editor. Either
configuration version can be imported into the DeviceManager. IOLAN configuration files saved
from WebManager can also be opened into DeviceManager.
Importing an Existing Configuration File
If you have a local, saved configuration file that you want to download to the IOLAN, you must first
connect to the IOLAN that you want to download the configuration file to. Once you have
successfully logged into the IOLAN, in DeviceManager select Tools, Import Configuration from a
File and in WebManager select Administration, Restore/Backup. You need to download the file in
DeviceManager and in both managers you need to reboot the IOLAN.
Managing the IOLAN
Most of the management tasks, such as setting the time/date, downloading keys/certificates,
downloading firmware, downloading custom files, resetting serial ports, etc., are found under the
Tools menu option in the DeviceManager and under Administration in WebManager.
90
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Network Settings
Chapter
6
6
Introduction
The Network section is used to configure the parameters that identify the
IOLAN within the network and how the IOLAN accesses hosts on the
network. The following configuration windows are available:
z
IP Settings—This window configures the IOLAN’s name, IP
more information.
z
Advanced—This window configures hosts that the IOLAN will be communicating with, routes,
information on these options.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
91
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Settings
IP Settings
IPv4 Settings
Overview
The parameters in IPv4 settings are used to access the IOLAN and are how the IOLAN accesses the
network.
Field Descriptions
Configure the following parameters:
System Name
The System Name is used for informational purposes by such tools as the
DeviceManager and is also used in conjunction with the Domain field to
construct a fully qualified domain name (FQDN).
Default: localhost
Domain
This field is combined with the System Name to construct the fully qualified
domain name (FQDN). For example, if the domain is mycompany.com and the
Server Name is set to accounting, the FQDN would be
accounting.mycompany.com.
Obtain IP Address When enabled, the IOLAN will request an IP address from the DHCP/BOOTP
automatically using server. By default, when this option is enabled, the IOLAN will also attempt to
DHCP/BOOTP
retrieve the DNS server, WINS server, and default gateway from the
DHCP/BOOTP server.
Default: Disabled
Use the following Assign a specific IP address to the IOLAN.
IP Address
Field Format: IPv4 address
IP Address
The IOLAN’s unique IPv4 network IP address.
Field Format: IPv4 address
Subnet Mask
The network subnet mask. For example, 255.255.0.0.
Default Gateway Specify the gateway IP address that will provide general access beyond the
local network.
Field Format: IPv4 address
Default Gateway When DHCP/BOOTP is enabled, you can enable this option to have the
Obtain
Automatically
IOLAN receive the Default Gateway IP address from the DHCP/BOOTP
server.
Default: Enabled
DNS Server
Specify the IP address of a DNS host in your network for host name resolution.
Field Format: IPv4 or IPv6 address
DNS Server Obtain When DHCP/BOOTP is enabled, you can enable this option to have the
Automatically
IOLAN receive the DNS IP address from the DHCP/BOOTP server.
Default: Enabled
WINS Server
Specify the IP address of a WINS (Windows Internet Naming Service) host in
your network for host resolution.
Field Format: IPv4 address
92
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Settings
WINS Server
Obtain
When DHCP/BOOTP is enabled, you can enable this option to have the
IOLAN receive the WINS IP address from the DHCP/BOOTP server.
Automatically
Default: Enabled
IPv6 Settings
Overview
Configure IPv6 settings when the IOLAN resides in an IPv6 network.
Field Descriptions
Configure the appropriate parameters:
Obtain IPv6
When enabled, you can configure the IOLAN to obtain the IPv6 address(es)
Address(es) using using IPv6 Autoconfiguration or a DHCPv6 server.
Default: Enabled
IPv6
When enabled, the IOLAN will send out a Router Solicitation message. If a
Autoconfiguration Router Advertisement message is received, the IOLAN will configure the IPv6
address(es) and configuration parameters based on the information contained in
the advertisement. If no Router Advertisement message is received, the IOLAN
will attempt to connect to a DHCPv6 server to obtain IPv6 addresses and other
configuration parameters.
Default: Enabled
DHCPv6
When enabled, requests IPv6 address(es) and configuration information from
the DHCPv6 server.
Default: Disabled
Custom IPv6
Address List
Displays the list of custom configured IPv6 addresses.
x
x
x
Add Button
Edit Button
Delete Button
Adds a custom IPv6 address.
Edits an existing IPv6 address.
Deletes an IPv6 address from the Custom IPv6 address list.
93
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Settings
x
Default Gateway
DSN Server
Specify the gateway IP address that will provide general access beyond the
local network.
Field Format: IPv6 address
Specify the IPv6 address of a DNS host in your network for host name
resolution.
Field Format: IPv6 address
DNS Server Obtain When DHCPv6 is enabled, you can enable this option to have the IOLAN
Automatically
receive the DNS IP address from the DHCPv6 server.
Default: Enabled
DHCPv6 Settings When enabled, the IOLAN will accept IPv6 address(es) from the DHCPv6
IPv6 Address(es)
server.
Default: Disabled
DHCPv6 Settings When enabled, the IOLAN will accept the network prefix from the DHCPv6
Network Prefix
server.
Default: Disabled
94
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Settings
Adding/Editing a Custom IPv6 Address
You can manually add one of the following:
z
The IPv6 network prefix (and the IOLAN will determine an IPv6 address based on the network
prefix and the IOLAN MAC address).
z
The complete IPv6 address.
Configure the following parameters:
Create a unique
When enabled, the IOLAN will derive an IPv6 address from the entered
IPv6 address on the network prefix and the IOLAN’s MAC address.
network
Default: Enabled
Network Prefix
Specify the IPv6 network prefix. The IOLAN will derive the complete IPv6
address from the entered network prefix and the IOLAN’s MAC address.
Default: Enabled
Network Prefix
IPv6 Prefix Bits
Specify the network prefix bits for the IPv6 address.
Range: 0-64
Default: 64
Use the following Enable this option when you want to enter a specific IPv6 address.
IPv6 address
Default: Disabled
x
IPv6 Address
Specify the complete IPv6 address.
Field Format: IPv6 address
x
IPv6 Address IPv6 Specify the network prefix bits for the IPv6 address.
Prefix Bits
Range: 0-128
Default: 64
95
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Settings
Advanced
Overview
The Advanced tab configures Active Standby (SCS models only), DNS update, IPv6 Advertising
Router settings, and the Ethernet interface(s) hardware speed and duplex.
Configure the parameters in the Advanced tab only if:
z
z
z
z
you have already set up Dynamic DNS with DynDNS.com
you want to enable Active Standby (SCS models only)
you want to specify the line speed and duplex
you want the IOLAN to act as an IPv6 Advertising Router
Field Descriptions
Configure the appropriate parameters:
Register Address in When this parameter is set, the IOLAN will provide the DHCP/DHCPv6 server
DNS
with a fully qualified domain name (FQDN), so that the DHCP/DHCPv6 server
can update the network's DNS server with the newly assigned IP address.
Default: Disabled
Domain Prefix
(SCS models only) A domain prefix to uniquely identify the Ethernet interface
to the DNS when the IOLAN has two Ethernet interfaces. The FQDN that is
sent to the DNS will be one of the following formats, depending on what is
configured in the System Settings section on the IPv4 Settings tab:
z
z
<Server Name>.<Domain Prefix>.<Domain Name>
<Server Name>.<Domain Prefix>
Field Format: Maximum 8 alphanumeric characters
Enable Active
Standby
(SCS models only) Active Standby permits the grouping of Ethernet LAN
connections to provide for link failover. Both Ethernet connections will have
the same Ethernet MAC address. Active standby refers to the process by which
a failure of one interface can be automatically overcome by having its traffic
routed to the other interface.
Default: Disabled
96
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
IP Settings
x
Monitoring Interval (SCS only) The interval in which the active interface is checked to see if it is
still communicating.
Default: 100 ms
Recovery Delay
(SCS only) The time that the IOLAN will wait to make the secondary interface
(Ethernet 2) active after it has been detected as up.
Default: 200 ms
Enable IPv6 Router When enabled, the IOLAN will periodically send IPV6 Router Advertisement
Advertisement
messages and respond to Router Solicitation messages. The Router
Advertisement message can be configured to contain any of the following
information:
z
z
z
DHCPv6—Use the DHCPv6 server to obtain additional IPV6 address(es)
and configuration parameters.
DHCPv6 Configuration Options—Use DHCPv6 server to obtain
additional configuration parameters.
Network Prefixes—Advertise the selected custom configured network
prefixes.
Default: Disabled
Advertise DHCPv6 When enabled, the Router Advertisement message indicates to use the
DHCPv6 server for obtaining additional IPv6 addresses and configuration
parameters.
Default: Disabled
Advertise DHCPv6 When enabled, the Router Advertisement message indicates to use the
Configuration
Options
DHCPv6 server to obtain additional configuration parameters.
Default: Disabled
Advertise the
The network prefix of the IPV6 addresses created in the IPv6 Settings tab in
following Network the Custom IPv6 Address List are included in the Router Advertisement
Prefix(es)
message. You can choose to enabled or disable specific network prefixes from
being advertised to hosts.
Default: Enabled
Interface 1
Define the Ethernet connection speed (desktop models can support up to 100
Hardware Speed Mbps and rack mount and medical unit models can support up to 1000 Mbps).
and Duplex
Data Options:
z
z
z
z
z
z
Auto—automatically detects the Ethernet interface speed and duplex
10 Mbps Half Duplex
10 Mbps Full Duplex
100 Mbps Half Duplex
100 Mbps Full Duplex
1000 Mbps Full Duplex
Default: Auto
Interface 2
Define the Ethernet connection speed (available on SCS models only).
Hardware Speed
and Duplex
Data Options:
z
z
z
z
z
z
Auto—automatically detects the Ethernet interface speed and duplex
10 Mbps Half Duplex
10 Mbps Full Duplex
100 Mbps Half Duplex
100 Mbps Full Duplex
1000 Mbps Full Duplex
Default: Auto
97
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Advanced
Host Table
Overview
The Host table contains the list of hosts that will be accessed by an IP address or Fully Qualified
Domain Name (FQDN) from the IOLAN. This table will contain a symbolic name for the host as
well as its IP address or FQDN. When a host entry is required elsewhere in the configuration, the
symbolic name will be used.
Functionality
You can configure up to 20 hosts using IPv4 or IPv6 internet addresses on desktop IOLAN models;
you can configure up to 49 hosts on rack mount and medical unit IOLAN models.
Field Descriptions
Configure the appropriate parameters:
IP Filtering
Data Options:
z
z
Allow all traffic—Allows any host to connect to the IOLAN.
Allow traffic only to/from hosts defined with IP addresses—A security
feature that when enabled, the IOLAN will only accept data from or send
data to hosts configured in the IOLAN’s Host Table.
Default: Allow all traffic
Add Button
Edit Button
Delete Button
Adds a host to the host table.
Changes a host that already exists in the host table.
Deletes a host from the host table.
98
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Adding/Editing a Host
Configure the appropriate parameters:
Host Name
The name of the host. This is used only for the IOLAN configuration.
Field Format: Up to 14 characters, no spaces.
IP Address
The host’s IP address.
Field Format: IPv4 or IPv6 address
Fully Qualified
Domain Name
When you have DNS defined in the IOLAN, you can enter a DNS resolvable
fully qualified domain name (note: FQDN’s are excluded as accessible hosts
when IP Filtering is enabled).
99
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Route List
Overview
Entering routes in the routing list enables the identification of gateways to be used for accessing
specific hosts or external networks from the IOLAN's local network.
Functionality
There are three types of routes:
z
z
z
Default—A route that provides general access beyond your local network.
Host—A route defined for accessing a specific host external to your local network.
Network—A route defined for accessing a specific network external to your local network.
You can specify up to 20 routes on desktop IOLAN models; you can specify up to 49 routes on rack
mount and medical unit IOLAN models.
Two types or gateways (method of accessing specific hosts or external networks) can be configured:
z
z
Host—Specify a specify host that will provide access to the route destination.
Interface—Specify the IPv6 tunnel, Remote Access (PPP)-defined serial port, or Remote Access
(SLIP)-defined serial port that will provide access to the route destination.
Field Descriptions
The following buttons are available on this window:
Add Button
Edit Button
Delete Button
Adds a route to the Route List.
Changes an existing route in the Route List.
Deletes a route from the Route List.
100
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Adding/Editing Routes
From the Route List tab, if you click the Add or Edit button, you will be able to add a new or edit an
existing route.
Configure the appropriate parameters:
Type
Specify the type of route you want to configure.
Data Options:
z
z
z
Host—A route defined for accessing a specific host external to your local
network.
Network—A route defined for accessing a specific network external to
your local network.
Default—A route which provides general access beyond your local
network.
Default: Default
IP Address
When the route Type is defined as Host, this field will contain the IP address of
the host. If the route Type is defined as Network, the network portion of the IP
address must be specified and the Host port of the address will be set to 0.
Example: to access network 10.10.20, the address 10.10.20.0 would be
specified in this field.
Format: IPv4 or IPv6 address
IPv4 Subnet Mask When the route is a Network route, you must specify the network’s subnet
mask.
IPv6 Prefix Bits
Host
If the IP address is IPv6, then you must specify the network’s prefix bits.
Range: 0-128
Select this option when a host is being used at the route gateway.
Default: Enabled, None
101
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Interface
The Interface list is comprised of configured IPv6 tunnels and serial ports
defined for Remote Access (PPP) and Remote Access (SLIP) profiles. Select
this option when you want to use the specified interface as the gateway to the
destination.
Field Option(s): IPv6 tunnels, Remote Access (PPP) and Remote Access
(SLIP) serial ports
Default: Disabled
DNS/WINS
Overview
You can configure WINS servers for PPP-client name resolution and DNS servers for PPP-client
name resolution and IOLAN host name resolution (for example, when specifying Bootup file).
Functionality
You can configure up to four DNS and four WINS servers. If you specified a DNS and/or WINS
server on the Network, IP Settings tabs (either IPv4 or IPv6), it will be automatically entered into the
appropriate list. If the DNS and/or WINS server is provided by a DHCP server, these will NOT be
viewable in the list, however, you can add DNS and/or WINS servers to supplement the DHCP
supplied server.
Field Descriptions
The following buttons are available on this window:
Add DNS Button
Edit DNS Button
Adds a DNS server.
Edits an existing DNS server.
Delete DNS Button Deletes a DNS server.
Add WINS Button Adds a WINS server.
Edit WINS Button Edits an existing WINS server.
Delete WINS
Button
Deletes a WINS server.
102
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Editing/Adding DNS/WINS Servers
Configure the parameter:
DNS IP Address
You can configure up to four DNS servers.
Field Format: IPv4 or IPv6 address
WINS IP Address You can configure up to four WINS servers.
Field Format: IPv4 address
RIP
Overview
The Routing Information Protocol (RIP) is a routing protocol used with almost every TCP/IP
implementation. Its function is to pass routing information from a router or gateway to a neighboring
router(s) or gateway(s). RIP messages contain information about destinations which can be reached
and the number of hops which are required. The hop-count is the basic metric of RIP and so RIP is
referred to as a “distance vector protocol”. RIP messages are carried in UDP datagrams.
Functionality
You can configure RIP to selectively advertise networks remotely connected via a SLIP/PPP link on
the Ethernet connection, and pass RIP routing information to remotely connected clients. As this can
be undesirable in some environments, this behavior can be configured and is defaulted to the non-
routing behavior.
Transmission and reception of Routing Information Protocol (RIP) packets over PPP and SLIP
connections can be configured on a per user basis or on a per serial port basis.
The Routing parameter can be configured:
z
On the Advanced tab for Remote Access (PPP) and Remote Access (SLIP) profiles configured
for a serial port to determine the exchange of RIP packets between the IOLAN and remotely
connected users connected from the serial side.
z
z
On the Services tab for each local user to determine the exchange of RIP packets between the
IOLAN and remotely connected users connected from the serial side.
By the RADIUS server for users authenticated by RADIUS, the RADIUS-defined Framed-
Routing parameter determines the exchange of RIP packets.
There are four options for setting the Routing parameters:
z
None—Routing information is not exchanged across the link. This is the default setting for a line
and a locally defined user.
z
z
z
Send—Routing information is only transmitted to the remote user.
Listen—Routing information is only received from the remote user.
Send and Listen—Routing information is transmitted to and received from the remote user.
The local User Routing parameter or RADIUS Framed-Routing parameter, if set, override the serial
port Routing parameter for a connection.
103
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Field Descriptions
Configure the appropriate parameters:
Ethernet Mode
Enable/disable RIP (Routing Information Protocol) mode for the Ethernet
interface.
Data Options:
z
z
z
z
None—Disables RIP over the Ethernet interface.
Send—Sends RIP over the Ethernet interface.
Listen—Listens for RIP over the Ethernet interface.
Send and Listen—Sends RIP and listens for RIP over the Ethernet
interface.
Default: None
Authentication
Method
Specify the type of RIP authentication.
Data Options:
z
z
z
None—No authentication for RIP.
Password—Simple RIP password authentication.
MD5—Use MD5 RIP authentication.
Default: None
Password
Specify the password that allows the router tables to be updated.
Confirm Password Retype in the password to verify that you typed in it correctly.
ID
The MD5 identification key.
Start Date
The start date that the MD5 key becomes valid. The date format is dependent
on your system’s settings.
Start Time
End Date
The time that the MD5 key becomes valid. The time format is dependent on
your system’s settings.
The last day that the MD5 key is valid. The date format is dependent on your
system’s settings.
104
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
End Time
The time that the MD5 key becomes invalid. The time format is dependent on
your system’s settings.
Key
The MD5 key that is being used by your routers.
Confirm Key
Retype the MD5 key that is being used by your routers to verify that it was
typed correctly.
Dynamic DNS
Overview
Dynamic DNS Service providers enable users to access a server connected to the internet that has
been assigned a dynamic IP address. The IOLAN product line has built-in support for the
Functionality
When the IOLAN is assigned a dynamic IP address, it will inform the DynDNS.com service provider
of its new IP address. Users can then use DynDNS.com as a DNS service to get the IP address of the
IOLAN. In order to take advantage of this service, the following steps need to be taken.
1. Create an account with DynDNS.com and configure the name your IOLAN will be known by on
the internet (the Host name). For example, create a host name such as
yourcompanySCS.DynDNS.org.
2. Enable the Network Dynamic DNS feature and configure the IOLAN’s dynamic DNS
parameters to match the Host’s configuration on the DynDNS.com server. Every time the
IOLAN gets assigned a new IP address, it will update DynDNS.com with the new IP address.
3. Users accessing the IOLAN via the internet can now access it via its fully qualified host name.
For example, telnet yourcompanySCS.DynDNS.org.
Field Descriptions
Configure the appropriate parameters:
Enable Dynamic
Enables/disables the dynamic DNS feature. When Dynamic DNS is enabled,
DNS for the system the IOLAN will automatically update its IP address with DynDNS.org if it
changes.
Default: Disabled
Host
Specify the registered hostname with DynDNS.org that will be updated with
the IOLAN’s IP address should it change. Put in the full name; for example,
mydeviceserver.dyndns.org.
105
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
User Name
Password
Specify the user name used to access the account set up on the DynDNS.org
server.
Specify the password used to access the account set up on the DynDNS.org
server.
Account Settings
Button
Click this button to configure the Dynamic DNS DynDNS.org account
information.
Account Settings
Enter the information about your DynDNS.com account so the IOLAN can communicate IP address
updates. These settings are global and apply to all Dynamic DNS settings.
Configure the appropriate parameters:
System Type
Specify how your account IP address schema was set up with DynDNS.org.
Refer to www.DynDNS.org for information about this parameter.
Data Options: Dynamic, Static, Custom
Default: Dynamic
Wildcard
Adds an alias to *.yourcompanySCS.dyndns.orgpointing to the same IP
address as entered for yourcompanySCS.dyndns.org.
Connection Method Specify how the IOLAN is going to connect to the DynDNS.org server.
Data Options:
z
z
z
HTTP
HTTP through Port 8245
HTTPS—for a secure connection to the DynDNS server
Default: Disabled
Cipher Suite Button Launches the cipher information window so you can specify the type of
encryption that will be used for data that is transferred between the
DynDNS.org server and the IOLAN.
106
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Validate Peer
Certificate
Enables/disables peer validation between the DynDNS.org server and the
IOLAN. This may be desirable, since the DynDNS user name and password are
sent from the IOLAN to the DynDNS server when the IP address needs to be
updated and when an account refresh is performed. Account refreshes are done
periodically to ensure that DynDNS accounts do not auto-delete should the IP
address change infrequently. This parameter will only take effect if HTTPS is
selected as the connection method.
Default: Disabled
Validation Criteria Launches the peer validation criteria window so you can specify the
Button
information used to validate the connection between the DynDNS.org server
and the IOLAN.
Cipher Suite Field Descriptions
The SSL/TLS cipher suite is used to encrypt data between the IOLAN and the client. You can specify
up to five cipher groups.
The following buttons are available:
Add Button
Adds a cipher to the cipher list.
Edit Button
Edits a cipher in the cipher list.
Delete Button
Move Up Button
Deletes a cipher from the cipher list.
Moves a cipher up in preference in the cipher list.
Move Down Button Moves a cipher down in preference in the cipher list.
107
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Adding/Editing a Cipher Suite
Configure the following parameters:
Encryption
Select the type of encryption that will be used for the SSL connection.
Data Options:
z
z
z
z
z
z
Any—Will use the first encryption format that can be negotiated.
AES
3DES
DES
ARCFOUR
ARCTWO
Default: Any
Min Key Size
Max Key Size
Key Exchange
The minimum key size value that will be used for the specified encryption
type.
Data Options: 40, 56, 64, 128, 168, 256
Default: 40
The maximum key size value that will be used for the specified encryption
type.
Data Options: 40, 56, 64, 128, 168, 256
Default: 256
The type of key to exchange for the encryption format.
Data Options:
z
Any—Any key exchange that is valid is used (this does not, however,
include ADH keys).
z
z
RSA—This is an RSA key exchange using an RSA key and certificate.
EDH-RSA—This is an EDH key exchange using an RSA key and
certificate.
z
z
EDH-DSS—This is an EDH key exchange using a DSA key and
certificate.
ADH—This is an anonymous key exchange which does not require a
private key or certificate. Choose this key if you do not want to
authenticate the peer device, but you want the data encrypted on the
SSL/TLS connection.
Default: Any
108
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
HMAC
Select the key-hashing for message authentication method for your encryption
type.
Data Options:
z
z
z
Any
MD5
SHA1
Default: Any
Validation Criteria Field Descriptions
If you choose to configure validation criteria, the information in the peer SSL/TLS certificate must
match exactly the information configured in this window in order to pass peer authentication and
create a valid SSL/TLS connection.
Configure the following parameters:
Country
A country code; for example, US. This field is case sensitive in order to
successfully match the information in the peer SSL/TLS certificate.
Data Options: Two characters
State/Province
Locality
An entry for the state/province; for example, IL. This field is case sensitive in
order to successfully match the information in the peer SSL/TLS certificate.
Data Options: Maximum 128 characters
An entry for the location; for example, Chicago. This field is case sensitive in
order to successfully match the information in the peer SSL/TLS certificate.
Data Options: Maximum 128 characters
Organization
An entry for the organization; for example, Accounting. This field is case
sensitive in order to successfully match the information in the peer SSL/TLS
certificate.
Data Options: Maximum 64 characters
Organization Unit An entry for the unit in the organization; for example, Payroll. This field is
case sensitive in order to successfully match the information in the peer
SSL/TLS certificate.
Data Options: Maximum 64 characters
109
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Common Name
Email
An entry for common name; for example, the host name or fully qualified
domain name. This field is case sensitive in order to successfully match the
information in the peer SSL/TLS certificate.
Data Options: Maximum 64 characters
An entry for an email address; for example, [email protected]. This field
is case sensitive in order to successfully match the information in the peer
SSL/TLS certificate.
Data Options: Maximum 64 characters
IPv6 Tunnels
Overview
IPv6 tunnels transport IPv6 data packets from one IPv6 network to another IPv6 network over an
IPv4 network. In addition to creating the IPv6 tunnel, you must also create the route that will
transport the data packets through the IPv4 network in the Route List (see Route List on page 100 for
more information).
Field Descriptions
The following buttons are available:
Add Button
Edit Button
Delete Button
Adds an IPv6 tunnel.
Edits an existing IPv6 tunnel.
Deletes an IPv6 tunnel. If a tunnel is associated with a route, it cannot be
deleted until the route is either changed or deleted.
110
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Adding/Editing an IPv6 Tunnel
When you add/edit an IPv6 tunnel, you are determining how an IPv6 message will reach an IPv6
device through an IPv4 network.
Configure the following parameters:
Name
The name of the IPv6 tunnel.
Field Format: Maximum 16 alphanumeric characters
Default: ipv6_tunnel1
Mode
The method or protocol that is used to create the IPv6 tunnel.
z
Manual—When enabled, the IOLAN will manually create the IPv6 tunnel
to the specified Remote Host through the specified Interface.
z
6to4—When enabled, the IOLAN will broadcast to the multicast address
192.88.99.1 through the specified Interface. When the closest 6to4 router
responds, it will create the IPv6 tunnel, encapsulating and decapsulating
IPv6 traffic sent to and from the IOLAN.
z
Teredo—When enabled, the Teredo protocol encapsulates the IPv6 packet
as an IPv4 UDP message, allowing it to pass through most network
address translator (NAT) boxes and create an IPv6 tunnel to the specified
Remote Host (a Teredo server) through the specified Interface.
Default: Manual
Remote Host
Interface
The IPv4 host that can access the IPv6 network when the Mode is Manual.
The Teredo server when the Mode is Teredo.
Default: None
The interface that the IOLAN is going to use to access the Remote Host. The
list is comprised of the Ethernet interface(s) and serial ports configured for the
Remote Access (PPP) or Remote Access (SLIP) profiles.
Default: Ethernet 1
111
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
112
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring Serial Ports
Chapter
7
7
Introduction
The Serial section is used to configure the serial ports on your IOLAN. The
following configuration windows are available:
z
Serial Ports—Configures the type of connection that the serial port is
being used for. This is accomplished by selecting a connection profile and
then configuring the applicable parameters for that profile. See Serial
z
z
Port Buffering—Configures serial port data buffering preferences. See
Advanced—Configures those parameters that are applicable to specific
environments. You will find modem and TruePort configuration options, in addition to others,
Serial Ports
Overview
Each IOLAN serial port can be connected to serial device. Each serial port can then be configured
according to a serial port profile that coincides with the serial device attached to that serial port and
how the serial device is accessed/used.
Functionality
When you select the Serial Ports navigation option, you will see a list with the number of serial ports
on your IOLAN. As you configure the serial ports, the information for each serial port is displayed.
To configure/change a serial port, click the Edit button.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
113
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Ports
Editing a Serial Port
In the Serial Port Settings window, click on a serial port and then click the Edit button, the
following window is displayed:
114
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Ports
Click the Change Profile button to select a different serial port profile if you don’t want the
displayed profile:
As you select the different serial port profiles, a short description and a picture representing a typical
application of the profile is displayed. When you have selected the appropriate profile for the serial
port, click OK and those serial port profile configuration options will be displayed.
Copying a Serial Port
Once you configure a serial port, you can copy the serial port settings to other serial ports by
selecting a serial port and then clicking the Copy button on the Serial Ports Settings window.
115
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Resetting a Serial Port
When you change a serial port’s configuration, you can download the configuration file to the
IOLAN and then reset a specific serial port(s) to see how you change affects the serial port’s
behavior. To reset a serial port, select Tools, Reset, Serial Port(s).
Serial Port Profiles
Common Tabs
Overview
There are several functions that are common to more than one profile. These functions are:
z
z
z
z
Email Alert—Configure email alerts for the serial line (these can also be configured globally for
116
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Hardware Tab Field Descriptions
The Hardware tab configures all the serial port hardware connection information. The window below
shows an SDS1 model; your Hardware tab might display a subset of the parameters described,
depending on the IOLAN model and supported hardware.
Configure the following parameters:
Serial Interface
Specifies the type of serial line that is being used with the IOLAN.
Data Options: EIA-232, EIA-422, or EIA-485.
SCS/STS/MDC models support only EIA-232.
Default: EIA-232
Speed
Specifies the baud rate of the serial line; keep in mind that speed is affected by
the length of the cable. You can also specify a custom baud rate. When you
enter a custom baud rate, the IOLAN will calculate the closest baud rate
available to the hardware. The exact baud rate calculated can be viewed in the
Serial Ports statistics.
Range: 50-230400, custom supports 50-1843200
Default: 9600
Data Bits
Parity
Specifies the number of bits in a transmitted character.
Default: 8
Specifies the type of parity being used for the data communication on the serial
port. If you want to force a parity type, you can specify Mark for 1or Space for
0.
Data Options: Even, Odd, Mark, Space, None
Default: None
Stop Bits
Specifies the number of stop bits that follow a byte.
Data Options: 1,1.5, 2. 1.5 is only available on the 1-port and 2-port models,
but not on the modem line (Serial Port 2) of the SDS1M model.
Default: 1
117
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Duplex
Used with a EIA-485 serial interface, specify whether the serial port is Full
Duplex (communication both ways at the same time) or Half Duplex
(communication in one direction at a time).
Default: Full
TX Driver Control Used with a EIA-485 serial interface, if your application supports RTS
(Request To Send), select this option. Otherwise, select Auto.
Default: Auto
Flow Control
Defines whether the data flow is handled by the software (Soft), hardware
(Hard), Both, or None. If you are using SLIP, set to Hard only. If you are
using PPP, set to either Soft or Hard (Hard is recommended). If you select
Soft with PPP, you must set the ACCM parameter when you configure PPP for
the Serial Port.
Data Options: Soft, Hard, Both, None
Default: None
Enable Inbound
Flow Control
Determines if input flow control is to be used.
Default: Enabled
Enable Outbound Determines if output flow control is to be used.
Flow Control
Default: Enabled
Monitor DSR
Specifies whether the EIA-232 signal DSR (Data Set Ready) should be
monitored. This is used with modems or any device that sends a DSR signal.
When it is monitored and the IOLAN detects a DSR signal, the serial port
profile is started. The Monitor DSR parameter is not available for medical unit
models. If both Monitor DCD and Monitor DSR are enabled, both signals must
be detected before the serial port profile is started.
Default: Disabled
Monitor DCD
Specifies whether the EIA-232 signal DCD (Data Carrier Detect) should be
monitored. This is used with modems or any other device that sends a DCD
signal. When it is monitored and the IOLAN detects a DCD signal, the serial
port profile is started. If both Monitor DCD and Monitor DSR are enabled, both
signals must be detected before the serial port profile is started.
Default: Disabled
Enable Echo
Suppression
This parameter applies only to EIA-485 Half Duplex mode. All characters will
be echoed to the user and transmitted across the serial ports. Some EIA-485
applications require local echo to be enabled in order to monitor the loopback
data to determine that line contention has occurred. If your application cannot
handle loopback data, echo suppression should be enabled.
Default: Disabled
Enable Line
Termination
Used with EIA-422 and EIA-485 on SDS 8-port and 16-port rack mount
IOLAN models, specifies whether or not the line is terminated; use this option
when the serial port is connected to a device at the end of the serial network.
Default: Disabled
118
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Email Alert Tab Field Descriptions
Email notification can be set at the Server and/or serial port levels. You can set unique email
notifications for each serial port because the person who administers the IOLAN might not be the
same person who administers the serial device(s) attached to the IOLAN port. Therefore, email
notification can be sent to the proper person(s) responsible for the hardware.
The following event triggers an email notification on the Serial Port for the specified Level:
z
z
DSR signal loss, Warning Level
I/O alerts, Critical Level
Configure the following parameters:
Enable Port Email Enable/disable email alert settings for this serial port.
Alert
Default: Disabled
Use System Email Determines whether you want the Serial Port to inherit the Email Alert settings
Alert Settings
from the System Email Alert configuration. If this is enabled, System and
Serial Port notification events will have the same Email Alert setting.
Default: Enabled
Level
Choose the event level that triggers an email notification.
Data Options: Emergency, Alert, Critical, Error, Warning, Notice, Info,
Debug
Default: Emergency
To
An email address or list of email addresses that will receive the email
notification.
Subject
From
A text string, which can contain spaces, that will display in the Subject field of
the email notification.
This field can contain an email address that might identify the IOLAN name or
some other value.
Reply To
The email address to whom all replies to the email notification should go.
Outgoing Mail
Server (SMTP)
The SMTP host (email server) that will process the email notification request.
This can be either a host name defined in the IOLAN host table or the SMTP
host IP address.
119
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Packet Forwarding Tab Field Descriptions
The Packet Forwarding tab can be used to control/define how and when serial port data packets are
sent from the IOLAN to the network.
Configure the following parameters:
Minimize Latency This option ensures that all application data is immediately forwarded to the
serial device and that every character received from the device is immediately
sent on the network. Select this option for timing-sensitive applications.
Default: Enabled
Optimize Network This option provides optimal network usage while ensuring that the application
Throughput
performance is not compromised. Select this option when you want to
minimize overall packet count, such as when the connection is over a WAN.
Default: Disabled
Prevent Message This option detects the message, packet, or data blocking characteristics of the
Fragmentation
serial data and preserves it throughout the communication. Select this option
for message-based applications or serial devices that are sensitive to inter-
character delays within these messages.
Default: Disabled
Delay Between
Messages
The minimum time, in milliseconds, between messages that must pass before
the data is forwarded by the IOLAN.
Range: 0-65535
Default: 250 ms
Custom Packet
Forwarding
This option allows you to define the packet forwarding rules based on the
packet definition or the frame definition.
Default: Disabled
120
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Packet Definition When enabled, this group of parameters allows you to set a variety of packet
definition options. The first criteria that is met causes the packet to be
transmitted. For example, if you set a Force Transmit Timer of 1000 ms and a
Packet Size of 100 bytes, whichever criteria is met first is what will cause the
packet to be transmitted.
Default: Enabled
Packet Size
The number of bytes that must be received from the serial port before the
packet is transmitted to the network. A value of zero (0) ignores this parameter.
Range: 0-1024 bytes
Default: 0
Idle Time
The amount of time, in milliseconds, that must elapse between characters
before the packet is transmitted to the network. A value of zero (0) ignores this
parameter.
Range: 0-65535 ms
Default: 0
Enable Trigger1
Character
When enabled, specifies the character that when received will define when the
packet is ready for transmission. The actual transmission of the packet is based
on the Trigger Forwarding Rule.
Range: Hex 0-FF
Default: 0
Enable Trigger2
Character
When enabled, creates a sequence of characters that must be received to
specify when the packet is ready for transmission (if the End Trigger1
character is not immediately followed by the End Trigger2 character, the
IOLAN waits for another End Trigger1 character to start the End Trigger1/End
Trigger2 character sequence). The actual transmission of the packet is based on
the Trigger Forwarding Rule.
Range: Hex 0-FF
Default: 0
Frame Definition When enabled, this group of parameters allows you to control the frame that is
transmitted by defining the start and end of frame character(s). If the internal
buffer (1024 bytes) is full before the EOF character(s) are received, the packet
will be transmitted and the EOF character(s) search will continue.
Default: Disabled
SOF1 Character
When enabled, the Start of Frame character defines the first character of the
frame, any character(s) received before the Start of Frame character is ignored.
Range: Hex 0-FF
Default: 0
SOF2 Character
When enabled, creates a sequence of characters that must be received to create
the start of the frame (if the SOF1 character is not immediately followed by the
SOF2 character, the IOLAN waits for another SOF1 character to start the
SOF1/SOF2 character sequence).
Range: Hex 0-FF
Default: 0
Transmit SOF
Character(s)
When enabled, the SOF1 or SOF1/SOF2 characters will be transmitted with
the frame. If not enabled, the SOF1 or SOF1/SOF2 characters will be stripped
from the transmission.
Default: Disabled
121
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
EOF1 Character Specifies the End of Frame character, which defines when the frame is ready to
be transmitted. The actual transmission of the frame is based on the Trigger
Forwarding Rule.
Range: Hex 0-FF
Default: 0
EOF2 Character When enabled, creates a sequence of characters that must be received to define
the end of the frame (if the EOF1 character is not immediately followed by the
EOF2 character, the IOLAN waits for another EOF1 character to start the
EOF1/EOF2 character sequence), which defines when the frame is ready to be
transmitted. The actual transmission of the frame is based on the Trigger
Forwarding Rule.
Range: Hex 0-FF
Default: 0
Trigger
Determines what is included in the Frame (based on the EOF1 or EOF1/EOF2)
Forwarding Rule or Packet (based on Trigger1 or Trigger1/Trigger2). Choose one of the
following options:
z
z
z
Strip-Trigger—Strips out the EOF1, EOF1/EOF2, Trigger1, or
Trigger1/Trigger2, depending on your settings.
Trigger—Includes the EOF1, EOF1/EOF2, Trigger1, or
Trigger1/Trigger2, depending on your settings.
Trigger+1—Includes the EOF1, EOF1/EOF2, Trigger1, or
Trigger1/Trigger2, depending on your settings, plus the first byte that
follows the trigger.
z
Trigger+2—Includes the EOF1, EOF1/EOF2, Trigger1, or
Trigger1/Trigger2, depending on your settings, plus the next two bytes
received after the trigger.
Default: Trigger
122
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
SSL/TLS Settings Tab Field Descriptions
You can create an encrypted connection using SSL/TLS for any serial port profile that accesses the
IOLAN from the network. When you enable this feature, it will automatically use the global
SSL/TLS settings (configured on Security, SSL/TLS), although you can configure unique SSL/TLS
settings for the serial port.
When configuring SSL/TLS, the following configuration options are available:
z
z
You can set up the IOLAN to act as an SSL/TLS client or server.
There is an extensive selection of SSL/TLS ciphers that you can configure for your SSL/TLS
z
You can enable peer certificate validation, for which you must supply the validation criteria that
was used when creating the peer certificate (this is case sensitive, so keep that in mind when
enabling and configuring this option).
Configure the following parameters:
Enable SSL/TLS
Activates the SSL/TLS settings for the serial port.
Default: Disabled
Use global settings Uses the SSL/TLS settings configured in the Security section for the serial
port.
Default: Enabled
SSL/TLS Version Specify whether you want to use:
z
Any—The IOLAN will try a TLSv1 connection first. If that fails, it will
try an SSLv3 connection. If that fails, it will try an SSLv2 connection.
z
z
TLSv1—The connection will use only TLSv1.
SSLv3—The connection will use only SSLv3.
Default: Any
SSL/TLS Type
Specify whether the IOLAN serial port will act as an SSL/TLS client or server.
Default: Client
Cipher Suite Button Click this button to specify SSL/TLS connection ciphers.
Validate Peer
Certificate
Enable this option when you want the Validation Criteria to match the Peer
Certificate for authentication to pass. If you enable this option, you need to
download an SSL/TLS certificate authority (CA) list file to the IOLAN.
Default: Disabled
123
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Validation Criteria Click this button to create peer certificate validation criteria that must be met
Button
for a valid SSL/TLS connection.
Cipher Suite Field Descriptions
The SSL/TLS cipher suite is used to encrypt data between the IOLAN and the client. You can specify
up to five cipher groups.
The following buttons are available on this window:
Add Button
Adds a cipher to the cipher list.
Edit Button
Edits a cipher in the cipher list.
Delete Button
Move Up Button
Deletes a cipher from the cipher list.
Moves a cipher up in preference in the cipher list.
Move Down Button Moves a cipher down in preference in the cipher list.
124
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Adding/Editing a Cipher Suite
Configure the following parameters:
Encryption
Select the type of encryption that will be used for the SSL connection.
Data Options:
z
z
z
z
z
z
Any—Will use the first encryption format that can be negotiated.
AES
3DES
DES
ARCFOUR
ARCTWO
Default: Any
Min Key Size
Max Key Size
Key Exchange
The minimum key size value that will be used for the specified encryption
type.
Data Options: 40, 56, 64, 128, 168, 256
Default: 40
The maximum key size value that will be used for the specified encryption
type.
Data Options: 40, 56, 64, 128, 168, 256
Default: 256
The type of key to exchange for the encryption format.
Data Options:
z
Any—Any key exchange that is valid is used (this does not, however,
include ADH keys).
z
z
RSA—This is an RSA key exchange using an RSA key and certificate.
EDH-RSA—This is an EDH key exchange using an RSA key and
certificate.
z
z
EDH-DSS—This is an EDH key exchange using a DSA key and
certificate.
ADH—This is an anonymous key exchange which does not require a
private key or certificate. Choose this key if you do not want to
authenticate the peer device, but you want the data encrypted on the
SSL/TLS connection.
Default: Any
125
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
HMAC
Select the key-hashing for message authentication method for your encryption
type.
Data Options:
z
z
z
Any
MD5
SHA1
Default: Any
Validation Criteria Field Descriptions
If you choose to configure validation criteria, the information in the peer SSL/TLS certificate must
match exactly the information configured in this window in order to pass peer authentication and
create a valid SSL/TLS connection.
Configure the following parameters:
Country
A country code; for example, US. This field is case sensitive in order to
successfully match the information in the peer SSL/TLS certificate.
Data Options: Two characters
State/Province
Locality
An entry for the state/province; for example, IL. This field is case sensitive in
order to successfully match the information in the peer SSL/TLS certificate.
Data Options: Maximum 128 characters
An entry for the location; for example, Chicago. This field is case sensitive in
order to successfully match the information in the peer SSL/TLS certificate.
Data Options: Maximum 128 characters
Organization
An entry for the organization; for example, Accounting. This field is case
sensitive in order to successfully match the information in the peer SSL/TLS
certificate.
Data Options: Maximum 64 characters
Organization Unit An entry for the unit in the organization; for example, Payroll. This field is
case sensitive in order to successfully match the information in the peer
SSL/TLS certificate.
Data Options: Maximum 64 characters
126
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Common Name
Email
An entry for common name; for example, the host name or fully qualified
domain name. This field is case sensitive in order to successfully match the
information in the peer SSL/TLS certificate.
Data Options: Maximum 64 characters
An entry for an email address; for example, [email protected]. This field
is case sensitive in order to successfully match the information in the peer
SSL/TLS certificate.
Data Options: Maximum 64 characters
Console Management Profile
Overview
The Console Management profile provides access through the network to a console or administrative
port of a server or router attached to the IOLAN’s serial port. This profile configures the IOLAN’s
serial port to set up a TCP socket that will listen for a Telnet or SSH connection from the network.
Functionality
Use the Console Management profile when you are configuring users who need to access a serial
console port from the network.
General Tab Field Descriptions
The Console Management General tab configures how the serial port will be accessed by the user
through the network.
Configure the following parameters:
Protocol
Specify the connection method that users will use to communicate with a serial
device connected to the IOLAN through the network.
Data Options: Telnet, SSH
Default: Telnet
127
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Listen for
The port number that the IOLAN will listen on for incoming TCP connections.
Connections on
TCP Port
Default: 10001, depending on the serial port number
Enable IP Aliasing Enables/disables the ability to access a serial device connected to the serial port
by an IP address (or host name that can be resolved to the Internet Address in a
DNS network) instead of the IOLAN’s IP address and port number.
Default: Disabled
IP Address
Users can access serial devices connected to the IOLAN through the network
by the specified Internet Address (or host name that can be resolved to the
Internet Address in a DNS network).
Field Format: IPv4 or IPv6 Address
Advanced Tab Field Descriptions
The Console Management Advanced tab configures serial port options that may be required by
certain applications.
Configure the following parameters:
Authenticate User Enables/disables login/password authentication for users connecting from the
network.
Default: Disabled
Enable TCP
Keepalive
Enables a per-connection TCP keepalive feature. After the configured number
of seconds, the connection will send a gratuitous ACK to the network peer,
thus either ensuring the connection stays active OR causing a dropped
connection condition to be recognized.
This parameter needs to be used in conjunction with Monitor Connection
Status Interval parameter found in the Serial, Advanced, Advanced Settings
tab. The interval specifies the inactivity period before "testing" the connection.
Default: Disabled
Enable Message of Enables/disables the display of the message of the day.
the Day (MOTD)
Default: Disabled
128
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Enable Microsoft When enabled, a user can access SAC (the interface of the Microsoft
Special
Emergency Management Systems utility) through EasyPort Web when the
Administrator
Console (SAC)
support
IOLAN’s serial port is connected to a Microsoft Server 2003 or Microsoft
Server 2008 host.
Default: Disabled
Multisessions
The number of extra network connections available on a serial port, in addition
to the single session that is always available. Enabling multisessions will
permit multiple users to monitor the same console port. Each user monitoring
the port can be assigned different privileges to this port.
Range: Dependent on model:
z
z
z
z
1-port: 0-3
2-port: (4 x #-of-ports) -1
STS/SDS 4+ ports: (2 x #-of-ports) -1
SCS 4+ ports: (2 x (#-of-ports + 1)) -1
Default: 0
Idle Timeout
Use this timer to close a connection because of inactivity. When the Idle
Timeout expires, the IOLAN will end the connection.
Range: 0-4294967 seconds (about 49 days)
Default: 0 seconds so the port will never timeout
Break Handling
Specifies how a break is interpreted.
Data Range:
z
z
z
z
None—The IOLAN ignores the break key completely and it is not passed
through to the host.
Local—The IOLAN deals with the break locally. If the user is in a
session, the break key has the same effect as a hot key.
Remote—When the break key is pressed, the IOLAN translates this into a
telnet break signal which it sends to the host machine.
Break Interrupt—On some systems such as SunOS, XENIX, and AIX, a
break received from the peripheral is not passed to the client properly. If
the client wishes to make the break act like an interrupt key (for example,
when the stty options -ignbrkand brkintrare set).
Default: None
Dial In
If the console port is remote and will be dialing in via modem or ISDN TA,
enable this parameter.
Default: Disabled
Dial Out
If you want the modem to dial a number when the serial port is started, enable
this parameter.
Default: Disabled
Dial Timeout
The number of seconds the IOLAN will wait to establish a connection to a
remote modem.
Range: 1-99
Default: 45 seconds
Dial Retry
The number of times the IOLAN will attempt to re-establish a connection with
a remote modem.
Range: 0-99
Default: 2
129
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Modem
Phone
The name of the predefined modem that is used on this line.
The phone number to use when Dial Out is enabled.
TruePort Profile
Overview
TruePort is especially useful when you want to improve data security, as you can enable an SSL/TLS
connection between the TruePort host port and the IOLAN. TruePort is COM Port redirector that is
supplied with the IOLAN. TruePort can be installed as a client on a Workstation or Server and
supports a variety of operating systems. It, in conjunction with the IOLAN, emulates a local serial
port (COM port), to the application, to provide connectivity to a remote serial device over the
network. The TruePort profile operates in conjunction with the TruePort software.
Functionality
TruePort is a COM port redirector utility for the IOLAN. It can be run in two modes (these modes
will be set on the client software when it is configured):
z
TruePort Full mode—This mode allows complete device control and operates as if the device
was directly connected to the Workstation/Server’s local serial port. It provides a complete COM
port interface between the attached serial device and the network. All serial controls, baud rate
control, etc., are sent to the IOLAN and replicated on its associated serial port.
z
TruePort Lite mode—This mode provides a simple raw data interface between the application
and the remote serial port. Although the port will still operate as a COM port, control signals are
ignored. In this mode, the serial communications parameters must be configured on the IOLAN.
See the TruePort User’s Guide for more details about the TruePort client software.
130
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
General Tab Field Descriptions
The TruePort General tab determines how the TruePort connection is initiated and then sets up the
appropriate connection parameters.
Configure the following parameters:
Connect to remote When enabled, the IOLAN initiates communication to the TruePort client.
system
Default: Enabled
Host Name
TCP Port
The configured host that the IOLAN will connect to (must be running
TruePort).
Default: None
The TCP Port that the IOLAN will use to communicate through to the TruePort
client.
Default: 10001 for serial port 1, then increments by one for each serial port
Connect to
Multiple Hosts
When enabled, the IOLAN will establish a connection to multiple clients
(Hosts). When using the multiple hosts feature, all TruePort clients must be
running in Lite mode.
Default: Disabled
Define Additional Click this button to define the hosts that this serial port will connect to. This
Hosts Button
button is also used to define the Primary/Backup host functionality.
information.
Listen for
Connection
When enabled, the IOLAN will wait for connections to be initiated by the
TruePort Client.
Default: Disabled
TCP Port
The TCP Port that the IOLAN will use to communicate through to the TruePort
client.
Default: 10001 for serial port 1, then increments by one for each serial port
Allow Multiple
When this option is enabled, multiple hosts can connect to a serial device that
Hosts to Connect is connected to this serial port. Note: These multiple clients (Hosts) need to be
running TruePort in Lite mode.
Default: Disabled
131
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Adding/Editing Additional TruePort Hosts
You can define a list of hosts that the serial device will communicate to through TruePort Lite or a
primary/backup host.
Configure the following parameters:
Define additional When this option is enabled, you can define up to 49 hosts that the serial device
hosts to connect to connected to this serial port will attempt communicate to. With this mode of
operation, the IOLAN will connect to multiple hosts simultaneously.
Default: Enabled
Add Button
Click the Add button to add a host to the list of hosts that will be receiving
communication from the serial device connected to the IOLAN.
Edit Button
Highlight an existing host and click the Edit button to edit a host in the list of
hosts that will be receiving communication from the serial device connected to
the IOLAN.
Delete Button
Highlight an existing host and click the Edit button to edit a host in the list of
hosts that will be receiving communication from the serial device connected to
the IOLAN.
Define a primary When this option is enabled, you need to define a primary host that the serial
host and backup... device connected to this serial port will communicate to and a backup host, in
the event that the IOLAN loses communication to the primary host. The
IOLAN will first establish a connection to the primary host. Should the
connection to the primary host be lost (or never established), the IOLAN will
establish a connection the backup host. Once connected to the backup, the
IOLAN will attempt to re-establish a connection to the Primary host, once this
is successfully done, it gracefully shuts down the backup connection.
Default: Disabled
Primary Host
TCP Port
Specify a preconfigured host that the serial device will communicate to through
the IOLAN.
Default: None
Specify the TCP port that the IOLAN will use to communicate to the Primary
Host.
Default: 0
Backup Host
TCP Port
Specify a preconfigured host that the serial device will communicate to through
the IOLAN if the IOLAN cannot communicate with the Primary Host.
Default: None
Specify the TCP port that the IOLAN will use to communicate to the Backup
Host.
Default: 10000
Adding/Editing a Multihost Entry
When you click the Add or Edit button, the Host Entry window appears. The hosts in the multihost
list must already be defined. If you add a host that was defined with its fully qualified domain name
(FQDN), it must be resolvable by your configured DNS server.
Configure the following parameters:
132
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Host Name
TCP Port
Specify the preconfigured host that will be in the multihost list.
Default: None
Specify the TCP port that the IOLAN will use to communicate to the Primary
Host.
Default: 10000 + serial port number - 1 (so serial port 47 defaults to 10046)
133
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Advanced Tab Field Descriptions
The TruePort Advanced tab determines how the TruePort connection is initiated and then sets up the
appropriate connection parameters.
Configure the following parameters:
Signals high
when...
This option has the following impact based on the state of the TruePort
connection:
z
TruePort Lite Mode—When enabled, the EIA-232 signals remain active
before, during, and after the TruePort connection is established. When
disabled, the EIA-232 signals remain inactive when there is no TruePort
connection and active when there is a TruePort connection.
z
TruePort Full Mode—When enabled, the EIA-232 signals remain active
before and after the TruePort connection and the TruePort client will
control the state of the signals during the established TruePort connection.
When disabled, the EIA-232 signals remain inactive before and after the
TruePort connection and the TruePort client will control the state of the
signals during the established TruePort connection.
Default: Enabled
Enable Message of Enables/disables the display of the message of the day.
the Day (MOTD)
Default: Disabled
Enable TCP
Keepalive
Enables a per-connection TCP keepalive feature. After the configured number
of seconds, the connection will send a gratuitous ACK to the network peer,
thus either ensuring the connection stays active OR causing a dropped
connection condition to be recognized.
This parameter needs to be used in conjunction with Monitor Connection
Status Interval parameter found in the Serial, Advanced, Advanced Settings
tab. The interval specifies the inactivity period before "testing" the connection.
Default: Disabled
134
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Enable Data
Logging
When enabled, serial data will be buffered if the TCP connection is lost. When
the TCP connection is re-established, the buffered serial data will be sent to its
destination (this option is not available when Monitor DSR, Monitor DCD, or
Multihost is enabled).
The data buffer is 4K for desktop models and 32K for rack mount and medical
unit models. If the data buffer is filled, incoming serial data will overwrite the
oldest data.
Default: Disabled
Idle Timeout
Use this timer to close a connection because of inactivity. When the Idle
Timeout expires, the IOLAN will end the connection.
Range: 0-4294967 seconds (about 49 days)
Default: 0 seconds so the port will never timeout
Session Timeout
Use this timer to forcibly close the session/connection when the Session
Timeout expires.
Default: 0 seconds so the port will never timeout
Range: 0-4294967 seconds (about 49 days)
Dial In
If the device is remote and will be dialing in via modem or ISDN TA, enable
this parameter.
Default: Disabled
Dial Out
If you want the modem to dial a number when the serial port is started, enable
this parameter.
Default: Disabled
Dial Timeout
The number of seconds the IOLAN will wait to establish a connection to a
remote modem.
Range: 1-99
Default: 45 seconds
Dial Retry
The number of times the IOLAN will attempt to re-establish a connection with
a remote modem.
Range: 0-99
Default: 2
Modem
Phone
The name of the predefined modem that is used on this line.
The phone number to use when Dial Out is enabled.
135
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
TCP Sockets Profile
Overview
The TCP Socket profile allows for a serial device to communicate over a TCP network. The TCP
connection can be initiated from a host on the network and/or a serial device. This is typically used
with an application on a Workstation or Server that communicates to a device using a specific TCP
socket. This is often referred to as a RAW connection.
Functionality
The TCP Sockets profile permits a raw connection to be established in either direction, meaning that
the connection can be initiated by either the Workstation/Server or the IOLAN.
General Tab Field Descriptions
Configure the following parameters:
Listen for
Connection
When enabled, the IOLAN listens for a connection to be established by the
Workstation/Server on the network.
Default: Enabled
136
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
TCP Port
The TCP port that the IOLAN will use to listen for incoming connections.
Default: 10000 plus the serial port number, so serial port 5 would have a
default of 10005
Allow Multiple
When this option is enabled, multiple hosts can connect to the serial device that
Hosts to Connect is connected to this serial port.
Default: Disabled
Connect To
When enabled, the IOLAN initiates communication to the Workstation/Server.
Default: Disabled
Host Name
TCP Port
The name (resolvable via DNS) or IP address of the configured host the
IOLAN will connect to.
The TCP Port that the IOLAN will use to communicate to the client.
Default: 0
Connect to
Multiple Hosts
When enabled, allows a serial device connected to this serial port to
communicate to multiple hosts.
Default: Disabled
Define Additional Click this button to define the hosts that this serial port will connect to. This
Hosts Button button is also used to define the Primary/Backup host functionality.
Initiate Connection If the serial port hardware parameters have been setup to monitor DSR or
Automatically
DCD, the host session will be started once the signals are detected. If no
hardware signals are being monitored, the IOLAN will initiate the session
immediately after being powered up.
Default: Enabled
Initiate Connection Initiates a connection to the specified host when any data is received on the
When any data is serial port.
received
Default: Disabled
Initiate Connection Initiates a connection to the specified host only when the specified character is
When <hex value> received on the serial port.
is received
Default: Disabled
Permit
Connections in
When this option is enabled, the connection can be initiated by either the
IOLAN or a host.
Both Directions
Default: Disabled
137
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Adding/Editing Additional Hosts
You can define a list of hosts that the serial device will communicate to or a primary/backup host.
Configure the following parameters:
Define additional When this option is enabled, you can define up to 49 hosts that the serial device
hosts to connect to connected to this serial port will attempt communicate to. With this mode of
operation, the IOLAN will connect to multiple hosts simultaneously.
Default: Enabled
Add Button
Edit Button
Click the Add button to add a host to the list of hosts that will be receiving
communication from the serial device connected to the IOLAN.
Highlight an existing host and click the Edit button to edit a host in the list of
hosts that will be receiving communication from the serial device connected to
the IOLAN.
Delete Button
Click the Delete button to delete a host to the list of hosts that will be receiving
communication from the serial device connected to the IOLAN.
Define a primary When this option is enabled, you need to define a primary host that the serial
host and backup... device connected to this serial port will communicate to and a backup host, in
the event that the IOLAN loses communication to the primary host. The
IOLAN will first establish a connection to the primary host. Should the
connection to the primary host be lost (or never established), the IOLAN will
establish a connection the backup host. Once connected to the backup, the
IOLAN will attempt to re-establish a connection to the Primary host, once this
is successfully done, it gracefully shuts down the backup connection.
Default: Disabled
Primary Host
TCP Port
Specify a preconfigured host that the serial device will communicate to through
the IOLAN.
Default: None
Specify the TCP port that the IOLAN will use to communicate to the Primary
Host.
Default: 0
Backup Host
TCP Port
Specify a preconfigured host that the serial device will communicate to through
the IOLAN if the IOLAN cannot communicate with the Primary Host.
Default: None
Specify the TCP port that the IOLAN will use to communicate to the Backup
Host.
Default: 10000
Adding/Editing a Multihost Entry
When you click the Add or Edit button, the Host Entry window appears. The hosts in the multihost
list must already be defined (see Host Table on page 98 to learn how to create a host). If you add a
host that was defined with its fully qualified domain name (FQDN), it must be resolvable by your
configured DNS server.
Configure the following parameters:
Host Name
Specify the preconfigured host that will be in the multihost list.
Default: None
138
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
TCP Port
Specify the TCP port that the IOLAN will use to communicate to the Host.
Default: 0
139
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Advanced Tab Field Descriptions
Configure the following parameters:
Authenticate User Enables/disables login/password authentication for users connecting from the
network.
Default: Disabled
Enable TCP
Keepalive
Enables a per-connection TCP keepalive feature. After the configured number
of seconds, the connection will send a gratuitous ACK to the network peer,
thus either ensuring the connection stays active OR causing a dropped
connection condition to be recognized.
This parameter needs to be used in conjunction with Monitor Connection
Status Interval parameter found in the Serial, Advanced, Advanced Settings
tab. The interval specifies the inactivity period before "testing" the connection.
Default: Disabled
Enable Message of Enables/disables the display of the message of the day.
the Day (MOTD)
Default: Disabled
Enable Data
Logging
When enabled, serial data will be buffered if the TCP connection is lost. When
the TCP connection is re-established, the buffered serial data will be sent to its
destination (this option is not available when Monitor DSR, Monitor DCD, or
Multihost is enabled).
The data buffer is 4K for desktop models and 32K for rack mount and medical
unit models. If the data buffer is filled, incoming serial data will overwrite the
oldest data.
Default: Disabled
Idle Timeout
Use this timer to close a connection because of inactivity. When the Idle
Timeout expires, the IOLAN will end the connection.
Range: 0-4294967 seconds (about 49 days)
Default: 0 seconds so the port will never timeout
Session Timeout
Use this timer to forcibly close the session/connection when the Session
Timeout expires.
Default: 0 seconds so the port will never timeout
Range: 0-4294967 seconds (about 49 days)
140
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Dial In
If the device is remote and will be dialing in via modem or ISDN TA, enable
this parameter.
Default: Disabled
Dial Out
If you want the modem to dial a number when the serial port is started, enable
this parameter.
Default: Disabled
Dial Timeout
The number of seconds the IOLAN will wait to establish a connection to a
remote modem.
Range: 1-99
Default: 45 seconds
Dial Retry
The number of times the IOLAN will attempt to re-establish a connection with
a remote modem.
Range: 0-99
Default: 2
Modem
Phone
The name of the predefined modem that is used on this line.
The phone number to use when Dial Out is enabled.
141
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
UDP Sockets Profile
Overview
The UDP profile configures a serial port to broadcast UDP data to systems and/or receive UDP data
from systems.
Functionality
When you configure UDP, you are setting up a range of IP addresses and the port numbers that you
will use to send serial data to the LAN (using UDP) or receive UDP data from the LAN which will be
forwarded to the serial port.
When you configure UDP for “LAN to Serial”, the following options are available:
z
To receive data from a specific IP address, enter this address in the Start IP Address field and
leave the End IP Address field at its default value (0.0.0.0). For the port, you can enter a
specific “source” port or leave as 0 to accept any source port.
z
z
To receive data from a range of IP address, fill in the Start IP Address field with the low IP
address for the range and the End IP Address field with the high IP address for the range.
To receive data from any IP address and any UDP port, leave the Start IP Address field, the End
IP Address field and the Port field at its default value of 0. The IP address on the first UDP
message received will than be the only IP address accepted from that point on. This is the “auto
learn” feature of the UDP profile.
z
If the Start IP Address field is set to 255.255.255.255and the End IP Address is left at its
default value (0.0.0.0), the IOLAN will accept UDP packets from any source address. If you
want the IOLAN to receive data only from the first IP address is sees (auto learn the sender IP
address), leave the Start IP Address field at its default value (0.0.0.0).
When you configure UDP for “Serial to LAN”, the following options are available:
z
To send data to a specific IP address, enter this address in the Start IP Address field and leave
the End IP Address field at its default value (0.0.0.0).
z
To send data to a range of IP address, fill in the Start IP Address field with the low IP address
for the range and the End IP Address field with the high IP address for the range. A separate
UDP message with the same serial data will be sent to each host in the configured range.
142
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
An example UDP configuration is described based on the following window.
The UDP configuration window, taken from the DeviceManager, is configured to:
z
UDP Entry 1
All hosts that have an IP address that falls within the range of 172.16.1.1to 172.16.1.25
and listen to Port 33001will be sent the data from the serial device in UDP format. The serial
device will only receive UDP data from the hosts in that range with a source Port of 33001. The
IOLAN will listen for data on the port value configured in the Listen for connections on UDP
port parameter. (10001 in above example)
z
z
UDP Entry 2
All UDP data received from hosts that have an IP address that falls within the range of
172.16.1.20to 172.16.1.50and Port 33010will be sent to the serial device. The IOLAN
will not send any data received on its serial port.
UDP Entry 3
All hosts that have an IP Address that falls within the range of 172.16.1.75to 172.16.1.80
and who listen to Port 33009will receive UDP data from the serial device. The IOLAN will
listen for messages on the port value configured in the Listen for connections on UDP port
parameter. No UDP data will be sent to the serial device.
z
UDP Entry 4
This entry is disabled since Direction is set to Disabled.
General Tab Field Descriptions
Configure the following parameters:
Listen for
connections on
UDP port
The IOLAN will listen for UDP packets on the specified port.
Default: 1000+<port-number> (for example, 10001 for serial port 1)
143
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Direction
The direction in which information is received or relayed:
z
z
Disabled—UDP service not enabled.
LAN to Serial—UDP Port can be set to Auto Learn or Port. The IOLAN
will listen on port value configured in the Listen for connections on UDP
port parameter for messages coming from the learned or configured port.
z
z
Serial to LAN—UDP Port can be set to Port only. The IOLAN will listen
on the port value configured in the Listen for connections on UDP port
parameter and will send to the configured port.
Both—Messages are relayed in both directions. UDP Port can be set to
Auto Learn or Port. For messages coming from the LAN to the serial
device, IOLAN will listen on port value configured in the Listen for
connections on UDP port parameter for messages coming from the
learned or configured port. For messages going from the serial device to
the LAN, the IOLAN will listen on the port value configured in the Listen
for connections on UDP port parameter and will send to the configured
or learned (if Auto Learn is enabled, the IOLAN must receive a UDP
message before it can send one, since the port must first be ’learned’) port.
Default: Both for UDP 1 and Disabled for all other UDP ranges
Start IP Address
End IP Address
The first host IP address in the range of IP addresses (for IPv4 or IPv6) that the
IOLAN will listen for messages from and/or send messages to.
Field Format: IPv4 or IPv6 address
The last host IP address in the range of IP addresses (for IPv4, not supported
for IPv6) that the IOLAN will listen for messages from and/or send messages
to.
Field Format: IPv4 address
UDP Port
Determines how the IOLAN’s UDP port that will send/receive UDP messages
is defined:
z
Auto Learn—The IOLAN will only listen to the first port that it receives a
UDP packet from. Applicable when Direction is set to LAN to Serial or
Both.
z
z
Any Port—The IOLAN will receive messages from any port sending UDP
packets. Applicable when Direction is set to LAN to Serial.
Port—The port that the IOLAN will use to relay messages to
servers/hosts. This option works with any Direction except Disabled. The
IOLAN will listen for UDP packets on the port configured by the Listen
for connections on UDP port parameter.
Default: Auto Learn
Port
The port that the IOLAN will use to relay messages to servers/hosts. This
option works with any Direction except Disabled. The IOLAN will listen for
UDP packets on the port configured by the Listen for connections on UDP
port parameter.
Default: 0 (zero)
Terminal Profile
Overview
The Terminal profile allows network access from a terminal connected to the IOLAN’s serial port.
This profile is used to access pre-defined hosts on the network from the terminal.
144
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Functionality
This profile can be configured for users:
z
who must be authenticated by the IOLAN first and then a connection to a host can be
established.
z
who are connecting through the serial port directly to a host.
145
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
General Tab Field Descriptions
Configure the following parameters:
Terminal Type
Specifies the type of terminal connected to the line.
Data Options:
z
z
z
z
z
z
z
z
z
Dumb
WYSE60
VT100
ANSI
TVI925
IBM3151TE
VT320 (specifically supporting VT320-7)
HP700 (specifically supporting HP700/44)
Term1, Term2, Term3 (user-defined terminals)
Default: Dumb
Require Login
When users access the IOLAN through the serial port, they must be
authenticated, using either the local user database or an external authentication
server.
Default: Enabled
User Service
Settings Button
After a user has been successfully authenticated, the IOLAN will connect to
the specified host using the specified protocol according to:
z
z
the User Service parameter for locally configured users
the Default User Service parameter for users who are externally
authenticated
z
TACACS+/RADIUS for externally authenticated users where the target
host is passed to the IOLAN
User Service Settings.
146
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Connect to Remote When the serial port is started, the IOLAN will initiate a connection to the
System
specified host using the specified protocol. With this option, user
authentication will not be performed by the IOLAN.
Default: Disabled
Protocol
Specify the protocol that will be used to connect to the specified host.
Data Options: Telnet, SSH, Rlogin
Default: Telnet
Settings Button
Host Name
TCP Port
Click this button to define the settings for the protocol that will be used to
connect the user to the specified host.
The name (resolvable via DNS) or IP address of the configured host the
IOLAN will connect to.
The TCP Port that the IOLAN will use to connect to the host.
Default: Telnet-23, SSH-22, Rlogin-513
Automatically
If the serial port hardware parameters have been setup to monitor DSR or
DCD, the host session will be started once the signals are detected. If no
hardware signals are being monitored, the IOLAN will initiate the session
immediately after being powered up.
Default: Enabled
When any data is Initiates a connection to the specified host when any data is received on the
received
serial port.
Default: Disabled
When <hex value> Initiates a connection to the specified host only when the specified character is
is received
received on the serial port.
Default: Disabled
147
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Advanced Tab Field Descriptions
Configure the following parameters:
Enable Message of Enables/disables the display of the message of the day.
the Day (MOTD)
Default: Disabled
Reset Terminal on When enabled, resets the terminal definition connected to the serial port when
disconnect
a user logs out.
Default: Disabled
Allow Port Locking When enabled, the user can lock his terminal with a password using the
Hotkey Prefix (default Ctrl-a) ^a l (lowercase L). The IOLAN prompts the
user for a password and a confirmation.
Default: Disabled
Hotkey Prefix
The prefix that a user types to lock a serial port or redraw the Menu.
Data Range:
z
^a l—(Lowercase L) Locks the serial port until the user unlocks it. The
user is prompted for a password (any password, excluding spaces) and
locks the serial port. Next, the user must retype the password to unlock the
serial port.
z
^r—When you switch from a session back to the Menu, the screen may
not be redrawn correctly. If this happens, use this command to redraw it
properly. This is always Ctrl R, regardless of the Hotkey Prefix.
You can use the Hotkey Prefix key to lock a serial port only when the Allow
Port Locking parameter is enabled.
Default: Hex 01 (Ctrl-a, ^a)
148
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Idle Timeout
Session Timeout
Dial Timeout
Dial Retry
Use this timer to close a connection because of inactivity. When the Idle
Timeout expires, the IOLAN will end the connection.
Range: 0-4294967 seconds (about 49 days)
Default: 0 seconds so the port will never timeout
Use this timer to forcibly close the session/connection when the Session
Timeout expires.
Default: 0 seconds so the port will never timeout
Range: 0-4294967 seconds (about 49 days)
The number of seconds the IOLAN will wait to establish a connection to a
remote modem.
Range: 1-99
Default: 45 seconds
The number of times the IOLAN will attempt to re-establish a connection with
a remote modem.
Range: 0-99
Default: 2
Dial In
If the device is remote and will be dialing in via modem or ISDN TA, enable
this parameter.
Default: Disabled
Dial Out
If you want the modem to dial a number when the serial port is started, enable
this parameter.
Default: Disabled
149
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
User Service Settings
Login Settings
These settings apply to users who are accessing the network from a terminal connected to the
IOLAN’s serial port. The Telnet, Rlogin, SSH, SLIP, PPP settings take effect when the connection
method is defined in the user’s profile (or are passed to the IOLAN by a RADIUS or TACACS+
server when those authentication methods are being used).
Configure the following parameters:
Limit Connection Makes the serial port dedicated to the specified user. The user won’t need to
to User
enter their login name - just their password.
Initial Mode
Specifies the initial interface a user navigates when logging into the serial port.
Data Options: Menu, Command Line
Default: Command Line
Terminal Pages
The number of video pages the terminal supports.
Range: 1-7
Default: 5 pages
150
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Telnet Settings
The Telnet settings apply when the User Service is set to Telnet or the Terminal profile specifies a
Telnet connection to a host.
Configure the following parameters:
Terminal Type
Type of terminal attached to this serial port; for example, ANSI or WYSE60.
Enable Local Echo Toggles between local echo of entered characters and suppressing local echo.
Local echo is used for normal processing, while suppressing the echo is
convenient for entering text that should not be displayed on the screen, such as
passwords. This parameter can be used only when Enable Line Mode is
enabled.
Default: Disabled
Enable Line Mode When enabled, keyboard input is not sent to the remote host until Enter is
pressed, otherwise input is sent every time a key is pressed.
Default: Disabled
Map CR to CRLF When enabled, maps carriage returns (CR) to carriage return line feed (CRLF).
Default: Disabled
Interrupt
Quit
Defines the interrupt character. Typing the interrupt character interrupts the
current process. This value is in hexadecimal.
Default: 3 (ASCII value ^C)
Defines the quit character. Typing the quit character closes and exits the
current telnet session. This value is in hexadecimal.
Default: 1c (ASCII value FS)
EOF
Defines the end-of-file character. When Enable Line Mode is enabled, entering
the EOF character as the first character on a line sends the character to the
remote host. This value is in hexadecimal.
Default: 4 (ASCII value ^D)
Erase
Echo
Defines the erase character. When Line Mode is Off, typing the erase character
erases one character. This value is in hexadecimal.
Default: 8 (ASCII value ^H)
Defines the echo character. When Line Mode is On, typing the echo character
echoes the text locally and sends only completed lines to the host. This value is
in hexadecimal.
Default: 5 (ASCII value ^E)
151
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Escape
Defines the escape character. Returns you to the command line mode. This
value is in hexadecimal.
Default: 1d (ASCII value GS)
Rlogin Settings
The Rlogin settings apply when the User Service is set to Rlogin or the Terminal profile has Require
Login selected and specifies an Rlogin connection to a host.
Configure the following parameter:
Terminal Type
Type of terminal attached to this serial port; for example, ANSI or WYSE60.
When Connect to remote system is selected, the Rlogin window requires the name of the user who
is connecting to the host.
Configure the following parameters:
Terminal Type
User
Type of terminal attached to this serial port; for example, ANSI or WYSE60.
This name is passed on to the specified host for the Rlogin session, so that the
user is only prompted for a password.
152
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
SSH Settings
The SSH settings apply when the User Service is set to SSH or the Terminal profile specifies an
SSH connection to a host.
Configure the following parameters:
Terminal Type
Verbose Mode
Type of terminal attached to this serial port; for example, ANSI or WYSE60.
When enabled, displays debug messages on the terminal.
Default: Disabled
Enable
Compression
When enabled, requests compression of all data. Compression is desirable on
modem lines and other slow connections, but will only slow down things on
fast networks.
Default: Disabled
Auto Login
When enabled, creates an automatic SSH login, using the Name and Password
values.
Default: Disabled
Name
The name of the user logging into the SSH session.
Field Format: Up to 20 alphanumeric characters, excluding spaces
Password
SSH1
The user’s password when Auto Login is enabled.
Field Format: Up to 20 alphanumeric characters, excluding spaces
When enabled, selects an SSH version 1 connection.
Default: Enabled
SSH1 Cipher
Select the encryption method (cipher) that you want to use for your SSH
version 1 connection:
Data Options:
z
z
3DES
Blowfish
Default: 3DES
SSH2
When enabled, selects an SSH version 2 connection. If both SSH 1 and SSH 2
are selected, the IOLAN will attempt to make an SSH 2 connection first. If that
connection fails, it will attempt to connect to the specified host using SSH 1.
Default: Enabled
153
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
SSH2 Ciphers
Opt1-5
Select the order of negotiation for the encryption method (ciphers) that the
IOLAN will use for the SSH version 2 connection:
Data Options:
z
z
z
z
z
3DES
Blowfish
AES
Arcfour
CAST
RSA
DSA
When enabled, an authentication method used by SSH version 1 and 2. Use
RSA authentication for the SSH session.
Default: Enabled
When enabled, an authentication method used by SSH version 2. Use DSA
authentication for the SSH session.
Default: Enabled
Keyboard
When enabled, the user types in a password for authentication.
Authentication
Default: Enabled
SLIP Settings
The SLIP settings apply when the User Service is set to SLIP.
Configure the following parameters:
Local IP Address The IPv4 address of the IOLAN end of the SLIP link. For routing to work you
must enter an IP address in this field. Choose an address that is part of the same
network or subnetwork as the remote end; for example, if the remote end is
address 192.101.34.146, your local IP address can be 192.101.34.145. Do not
use the IOLAN’s (main) IP address in this field; if you do so, routing will not
take place correctly.
Remote IP Address The IPv4 address of the remote end of the SLIP link. Choose an address that is
part of the same network or subnetwork as the IOLAN. If your user is
authenticated by the IOLAN, this remote IP address will be overridden if you
have set a Framed IP Address for the user. If your user is authenticated by
RADIUS and the RADIUS parameter Framed-Address is set in the RADIUS
file, the IOLAN will use the value in the RADIUS file in preference to the
value configured here.
Subnet Mask
The network subnet mask. For example, 255.255.0.0. If your user is
authenticated by RADIUS and the RADIUS parameter Framed-Netmask is set
in the RADIUS file, the IOLAN will use the value in the RADIUS file in
preference to the value configured here.
154
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
MTU
The Maximum Transmission Unit (MTU) parameter restricts the size of
individual SLIP packets being sent by the IOLAN. Enter a value between 256
and 1006 bytes; for example, 512. The default value is 256. If your user is
authenticated by the IOLAN, this MTU value will be overridden when you
have set a Framed MTU value for the user. If your user is authenticated by
RADIUS and the RADIUS parameter Framed-MTU is set in the RADIUS file,
the IOLAN will use the value in the RADIUS file in preference to the value
configured here.
Default: 256
Routing
Determines the routing mode (RIP, Routing Information Protocol) used on the
SLIP interface as one of the following options:
z
z
z
z
None—Disables RIP over the SLIP interface.
Send—Sends RIP over the SLIP interface.
Listen—Listens for RIP over the SLIP interface.
Send and Listen—Sends RIP and listens for RIP over the SLIP interface.
This is the same function as the Framed-Routing attribute for RADIUS
authenticated users.
Default: None
VJ Compression
When enabled, Van Jacobson compression is used on this link. When enabled,
C-SLIP, or compressed SLIP, is used. When disabled, plain SLIP is used. C-
SLIP greatly improves the performance of interactive traffic, such as Telnet or
Rlogin.
If your user is authenticated by the IOLAN, this VJ compression value will be
overridden if you have set a Framed Compression value for a user. If your
user is authenticated by RADIUS and the RADIUS parameter Framed-
Compression is set in the RADIUS file, the IOLAN will use the value in the
RADIUS file in preference to the value configured here.
Default: Enabled
155
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
PPP Settings
The PPP settings apply when the User Service is set to PPP.
Configure the following parameters:
IPv4 Local IP
Address
The IPV4 IP address of the IOLAN end of the PPP link. For routing to work,
you must enter a local IP address. Choose an address that is part of the same
network or subnetwork as the remote end; for example, if the remote end is
address 192.101.34.146, your local IP address can be 192.101.34.145. Do not
use the IOLAN’s (main) IP address in this field; if you do so, routing will not
take place correctly.
IPv4 Remote IP
Address
The IPV4 IP address of the remote end of the PPP link. Choose an address that
is part of the same network or subnetwork as the IOLAN. If you set the PPP
parameter IP Address Negotiation to On, the IOLAN will ignore the remote IP
address value you enter here and will allow the remote end to specify its IP
address. If your user is authenticated by RADIUS and the RADIUS parameter
Framed-Address is set in the RADIUS file, the IOLAN will use the value in
the RADIUS file in preference to the value configured here. The exception to
this rule is a Framed-Address value in the RADIUS file of 255.255.255.254;
this value allows the IOLAN to use the remote IP address value configured
here.
IPv4 Subnet Mask The network subnet mask. For example, 255.255.0.0. If your user is
authenticated by RADIUS and the RADIUS parameter Framed-Netmask is set
in the RADIUS file, the IOLAN will use the value in the RADIUS file in
preference to the value configured here.
IPv6 Local
The local IPv6 interface identifier of the IOLAN end of the PPP link. For
Interface Identifier routing to work, you must enter a local IP address. Choose an address that is
part of the same network or subnetwork as the remote end. Do not use the
IOLAN’s (main) IP address in this field; if you do so, routing will not take
place correctly.
Field Format: The first 64 bits of the Interface Identifier must be zero,
therefore, ::abcd:abcd:abcd:abcd is the expected format.
156
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
IPv6 Remote
The remote IPv6 interface identifier of the remote end of the PPP link. Choose
Interface Identifier an address that is part of the same network or subnetwork as the IOLAN. If
you enable Negotiate IP Address Automatically, the IOLAN will ignore the
remote IP address value you enter here and will allow the remote end to
specify its IP address. If your user is authenticated by RADIUS and the
RADIUS parameter Framed-Interface-ID is set in the RADIUS file, the
IOLAN will use the value in the RADIUS file in preference to the value
configured here.
Field Format: The first 64 bits of the Interface Identifier must be zero,
therefore, ::abcd:abcd:abcd:abcd is the expected format.
ACCM
Specifies the ACCM (Asynchronous Control Character Map) characters that
should be escaped from the data stream.
Field Format: This is entered as a 32-bit hexadecimal number with each bit
specifying whether or not the corresponding character should be escaped. The
bits are specified as the most significant bit first and are numbered 31-0. Thus
if bit 17 is set, the 17th character should be escaped, that is, 0x11 (XON). The
value 000a0000 will cause the control characters 0x11 (XON) and 0x13
(XOFF) to be escaped on the link, thus allowing the use of XON/XOFF
(software) flow control. If you have selected Soft Flow Control on the Serial
Port, you must enter a value of at least 000a0000 for the ACCM.
Default: 00000000, which means no characters will be escaped
MRU
The Maximum Receive Unit (MRU) parameter specifies the maximum size of
PPP packets that the IOLAN’s port will accept. If your user is authenticated by
the IOLAN, the MRU value will be overridden if you have set a MTU value for
the user. If your user is authenticated by RADIUS and the RADIUS parameter
Framed-MTU is set in the RADIUS file, the IOLAN will use the value in the
RADIUS file in preference to the value configured here.
Range: 64-1500 bytes
Default: 1500
Authentication
The type of authentication that will be done on the link. You can use PAP or
CHAP to authenticate a serial port or user on the IOLAN, from a remote
location, or authenticate a remote client/device, from the IOLAN.
When setting either PAP and CHAP, make sure the IOLAN and the remote
client/device have the same setting. For example, if the IOLAN is set to PAP,
but the remote end is set to CHAP, the connection will be refused.
Data Options:
z
z
None
PAP—is a one time challenge of a client/device requiring that it respond
with a valid username and password. A timer operates during which
successful authentication must take place. If the timer expires before the
remote end has been authenticated successfully, the link will be
terminated.
z
CHAP—challenges a client/device at regular intervals to validate itself
with a username and a response, based on a hash of the secret (password).
A timer operates during which successful authentication must take place.
If the timer expires before the remote end has been authenticated
successfully, the link will be terminated.
Default: CHAP
157
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
User
Complete this field only if you have specified PAP or CHAP (security
protocols) in the Authentication field, and
z
you wish to dedicate this line to a single remote user, who will be
authenticated by the IOLAN, or
z
you are using the IOLAN as a router (back-to-back with another IOLAN).
When Connect is set to Dial Out or both Dial In/Dial Out are enabled, the User
is the name the remote device will use to authenticate a port on this IOLAN.
The remote device will only authenticate your IOLAN’s port when PAP or
CHAP are operating. You can enter a maximum of sixteen alphanumeric
characters; for example, tracy201. When connecting together two networks,
enter a dummy user name; for example, DS_HQ.
Note If you want a reasonable level of security, the user name and password
should not be similar to a user name or password used regularly to login to the
IOLAN. External authentication can not be used for this user.
Field Format: You can enter a maximum of 254 alphanumeric characters.
Password
Complete this field only if you have specified PAP or CHAP (security
protocols) in the Security field and:
z
you wish to dedicate this serial port to a single remote user, who will be
authenticated by the IOLAN, or
z
you are using the IOLAN as a router (back-to-back with another IOLAN)
Password means the following:
z
When PAP is specified, this is the password the remote device will use to
authenticate the port on this IOLAN.
z
When CHAP is specified, this is the secret (password) known to both ends
of the link upon which responses to challenges shall be based.
Field Format: You can enter a maximum of 16 alphanumeric characters.
Remote User
Complete this field only if you have specified PAP or CHAP (security
protocols) in the Security field, and
z
you wish to dedicate this line to a single remote user, who will be
authenticated by the IOLAN, or
z
you are using the IOLAN as a router (back-to-back with another IOLAN)
When Dial In or Dial In/Dial Out is enabled, the Remote User is the name the
IOLAN will use to authenticate the port on the remote device. Your IOLAN
will only authenticate the port on the remote device when PAP or CHAP are
operating. When connecting together two networks, enter a dummy user name;
for example, DS_SALES.
Note If you want a reasonable level of security, the user name and password
should not be similar to a user name or password used regularly to login to the
IOLAN. This option does not work with external authentication.
Field Format: You can enter a maximum of 254 alphanumeric characters.
158
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Remote Password Complete this field only if you have specified PAP or CHAP (security
protocols) in the Security field, and
z
you wish to dedicate this serial port to a single remote user, and this user
will be authenticated by the IOLAN, or
z
you are using the IOLAN as a router (back-to-back with another IOLAN)
Remote password means the following:
z
When PAP is specified, this is the password the IOLAN will use to
authenticate the remote device.
z
When CHAP is specified, this is the secret (password) known to both ends
of the link upon which responses to challenges will be based.
Remote Password is the opposite of the parameter Password. Your IOLAN
will only authenticate the remote device when PAP or CHAP is operating.
Field Format: You can enter a maximum of 16 alphanumeric characters.
Routing
Determines the routing mode (RIP, Routing Information Protocol) used on the
PPP interface.This is the same function as the Framed-Routing attribute for
RADIUS authenticated users.
Data Options
z
z
z
z
None—Disables RIP over the PPP interface.
Send—Sends RIP over the PPP interface.
Listen—Listens for RIP over the PPP interface.
Send and Listen—Sends RIP and listens for RIP over the PPP interface.
Default: None
Configure Req.
Timeout
The maximum time, in seconds, that LCP (Link Control Protocol) will wait
before it considers a configure requestpacket to have been lost.
Range: 1-255
Default: 3 seconds
Configure Req.
Retries
The maximum number of times a configure requestpacket will be re-sent
before the link is terminated.
Range: 0-255
Default: 10 seconds
Terminate Req.
Timeout
The maximum time, in seconds, that LCP (Link Control Protocol) will wait
before it considers a terminate requestpacket to have been lost.
Range: 1-255
Default: 3 seconds
Terminate Req.
Retries
The maximum number of times a terminate requestpacket will be re-sent
before the link is terminated.
Range: 0-255
Default: 2 seconds
Configure NAK
Retries
The maximum number of times a configure NAKpacket will be re-sent
before the link is terminated.
Range: 0-255
Default: 10 seconds
159
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Authentication
Timeout
The timeout, in minutes, during which successful PAP or CHAP authentication
must take place (when PAP or CHAP are specified). If the timer expires before
the remote end has been authenticated successfully, the link will be terminated.
Range: 1-255
Default: 1 minute
Roaming Callback A user can enter a telephone number that the IOLAN will use to callback
him/her. This feature is particularly useful for a mobile user. Roaming callback
can only work when the User Enable Callback parameter is enabled. Enable
Roaming Callback therefore overrides (fixed) User Enable Callback.To use
Enable Roaming Callback, the remote end must be a Microsoft Windows OS
that supports Microsoft’s Callback Control Protocol (CBCP). The user is
allowed 30 seconds to enter a telephone number after which the IOLAN ends
the call.
Default: Disabled
Challenge Interval The interval, in minutes, for which the IOLAN will issue a CHAP re-challenge
to the remote end. During CHAP authentication, an initial CHAP challenge
takes place, and is unrelated to CHAP re-challenges. The initial challenge takes
place even if re-challenges are disabled. Some PPP client software does not
work with CHAP re-challenges, so you might want to leave the parameter
disabled in the IOLAN.
Range: 0-255
Default: 0 (zero), meaning CHAP re-challenge is disabled
Address/Control
Compression
This determines whether compression of the PPP Address and Control fields
take place on the link. For most applications this should be enabled.
Default: Enabled
Protocol
Compression
This determines whether compression of the PPP Protocol field takes place on
this link.
Default: Enabled
VJ Compression
When enabled, Van Jacobson Compression is used on this link. If your user is
authenticated by the IOLAN, this VJ compression value will be overridden if
you have enabled the User, Enable VJ Compression parameter. If the user is
authenticated by RADIUS and the RADIUS parameter Framed-Compression
is set in the RADIUS file, the IOLAN will use the value in the RADIUS file in
preference to the value configured here.
Default: Enabled
Magic Negotiation Determines if a line is looping back. If enabled (On), random numbers are sent
on the link. The random numbers should be different, unless the link loops
back.
Default: Disabled
IP Address
Negotiation
Specifies whether or not IP address negotiation will take place. IP address
negotiation is where the IOLAN allows the remote end to specify its IP
address. When On, the IP address specified by the remote end will be used in
preference to the Remote IP Address set for a Serial Port. When Off, the
Remote IP Address set for the Serial Port will be used.
Default: Disabled
160
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Dynamic DNS
Button
Launches the Dynamic DNS window when IP Address Negotiation is enabled,
which can then update the DNS server with the IP address that is negotiated
and accepted for the PPP session.
Printer Profile
Overview
The Printer profile allows for the serial port to be configured to support a serial printer device that
can be access by the network.
General Tab Field Descriptions
Configure the following parameter:
Map CR to CR/LF Defines the default end-of-line terminator as CR/LF (ASCII carriage-return
line-feed) when enabled.
Default: Disabled
161
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Serial Tunneling Profile
Overview
The Serial Tunneling profile allows two IOLANs to be connected back-to-back over the network to
establish a virtual link between two serial ports based on RFC 2217.
Functionality
The serial device that initiates the connection is the Tunnel Client and the destination is the Tunnel
Server, although once the serial communication tunnel has been successfully established,
communication can go both ways.
A more detailed implementation of the Serial Tunneling profile is as follows:
Serial
Client
Serial
Network
Server
Tunnel
IOLAN
IOLAN
Tunnel
The Server Tunnel will also support Telnet Com Port Control protocol as detailed in RFC 2217.
Serial
Network
Server
Tunnel
IOLAN
Running
2217 Application
The IOLAN serial port signals will also follow the signals on the other serial port. If one serial port
receives DSR then it will raise DTR on the other serial port. If one serial port receives CTS then it
will raise RTS on the other serial port. The CD signal is ignored.
162
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
General Tab Field Descriptions
Configure the following parameters:
Act As Tunnel
Server
The IOLAN will listen for an incoming connection request on the specified
Internet Address on the specified TCP Port.
Default: Enabled
TCP Port
The TCP port that the IOLAN will listen for incoming connection on.
Default: 10000+serial port number; so serial port 5 is 10005.
Enable TCP
Keepalive
Enables a per-connection TCP keepalive feature. After the configured number
of seconds, the connection will send a gratuitous ACK to the network peer,
thus either ensuring the connection stays active OR causing a dropped
connection condition to be recognized.
This parameter needs to be used in conjunction with Monitor Connection
Status Interval parameter found in the Serial, Advanced, Advanced Settings
tab. The interval specifies the inactivity period before "testing" the connection.
Default: Disabled
Act as Tunnel
Client
The IOLAN will initiate the connection the Tunnel Server.
Default: Disabled
Host Name
TCP Port
A preconfigured host name that is associated with the IP address of the Tunnel
Server.
The TCP port that the IOLAN will use to connect to the Tunnel Server.
Default: 10000+serial port number; so serial port 5 is 10005.
163
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Virtual Modem Profile
Overview
Virtual Modem (Vmodem) is a feature of the IOLAN that provides a modem interface to a serial
device. It will respond to AT commands and provide signals in the same way that a serially attached
modem would. This feature is typically used when you are replacing dial-up modems with the
IOLAN in order to provide Ethernet network connectivity.
Functionality
The serial port will behave in exactly the same fashion as it would if it were connected to a modem.
Using AT commands, it can configure the modem and the issue a dial-out request (ATTD). The
IOLAN will then translate the dial request into a TCP connection and data will be begin to flow in
both directions. The connection can be terminated by “hanging” up the phone line.
You can also manually start a connection by typing ATD<ip_address>,<port_number>and end
the connection by typing +++ATH. The ip_address can be in IPv4 or IPv6 formats and is the IP
address of the receiver. For example, ATD123.34.23.43,10001or you can use
ATD12303402304310001, without any punctuation (although you do need to add zeros where there
are not three digits presents, so that the IP address is 12 digits long).
164
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
General Tab Field Descriptions
Configure the following parameters:
Listen on TCP Port The IOLAN TCP port that the IOLAN will listen on.
Default: 10000 + serial port number (for example, serial port 12 defaults to
10012)
Connect
When enabled, automatically establishes the virtual modem connection when
Automatically At the serial port becomes active.
Startup
Default: Enabled
Host Name
TCP Port
The preconfigured target host name.
The port number the target host is listening on for messages.
Default: 0 (zero)
Connect Manually When enabled, the virtual modem requires an AT command before it
Via AT Command establishes a connection. Specify this option when your modem application
sends a phone number or other AT command to a modem. The serial device
can supply an IP address directly or it can provide a phone number that will be
translated into an IP address by the IOLAN using the mapping table.
Default: Disabled
Phone Number to When your modem application provides a phone number in an AT command
Host Mapping
string, you can map that phone number to the destination host.
Button
window that appears when you click this button.
Send Connection When enabled, the connection success/failure indication strings are sent to the
Status As
connected device, otherwise these indications are suppressed. This option also
determines the format of the connection status results that are generated by the
virtual modem.
Default: Enabled
Verbose String
When enabled, the connection status is sent by text strings to the connected
device.
Default: Disabled
165
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Success String
Failure String
Numeric Codes
String that is sent to the serial device when a connection succeeds.
Default: CONNECT <speed>, for example, CONNECT 9600
String that is sent to the serial device when a connection fails.
Default: NO CARRIER
When enabled, the connection status is sent to the connected device using the
following numeric codes:
z
z
z
z
z
z
z
z
0 OK
1 CONNECTED
2 RING
3 NO CARRIER
4 ERROR
6 ITERFACE DOWN
7 CONNECTION REFUSED
8 NO LISTNER
Default: Enabled
Advanced Tab Field Descriptions
Configure the following parameters:
Echo characters in When enabled, echoes back characters that are typed in (equivalent to
command mode
ATE0/ATE1 commands).
Default: Disabled
DTR Signal Always Specify this option to make the DTR signal always act as a DTR signal.
On
Default: Enabled
DTR Signal Acts as Specify this option to make the DTR signal always act as a DCD signal.
DCD
Default: Disabled
166
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
DTR Signal Acts as Specify this option to make the DTR signal always act as a RI signal.
RI
Default: Disabled
RTS Signal Always Specify this option to make the RTS signal always act as a RTS signal.
On
Default: Enabled
RTS Signal Acts as Specify this option to make the RTS signal always act as a DCD signal.
DCD
Default: Disabled
RTS Signal Acts as Specify this option to make the RTS signal always act as a RI signal.
RI
Default: Disabled
DCD Signal Always When you configure the DTR or RTS signal pin to act as a DCD signal, enable
On
this option to make the DCD signal always stay on.
Default: Enabled
DCD Signal On
when host
When you configure the DTR or RTS signal pin to act as a DCD signal, enable
this option to make the DCD signal active only during active communication.
connection
established
Default: Disabled
Additional modem You can specify additional virtual modem commands that will affect how
initialization
virtual modem starts. The following commands are supported: ATQn, ATVn,
ATEn, +++ATH, ATA, ATI0, ATI3, ATS0, AT&Z1, AT&Sn, AT&Rn,
AT&Cn, AT&F, ATS2, ATS12, ATO (ATD with no phone number), and
ATDS1.
detailed explanation of the support initialization commands.
Enable Message of When enabled, displays the Message of the Day (MOTD) when a successful
the Day (MOTD) virtual modem connection is made.
Default: Disabled
Enable TCP
Keepalive
Enables a per-connection TCP keepalive feature. After the configured number
of seconds, the connection will send a gratuitous ACK to the network peer,
thus either ensuring the connection stays active OR causing a dropped
connection condition to be recognized.
This parameter needs to be used in conjunction with Monitor Connection
Status Interval parameter found in the Serial, Advanced, Advanced Settings
tab. The interval specifies the inactivity period before "testing" the connection.
Default: Disabled
AT Command
Response Delay
The amount of time, in milliseconds, before an AT response is sent to the
requesting device.
Default: 250 ms
167
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Phone Number to Host Mapping
If your modem application dials using a phone number, you can add an entry in the Phone Number to
Host Mapping window that can be accessed by all serial ports configured as Virtual Modem. You
need to enter the phone number sent by your modem application and the IOLAN IP address and TCP
Port that will be receiving the “call”. 1-port models support up to 4 entries, all other desktop models
support up to 8 entries, and rack mount and medical unit models support up to 48 entries.
The following buttons are available:
Add Button
Click the Add button to display a window that allows you to configure the
phone number or AT command your modem application sends and the
IOLAN’s IP address and TCP port number that is receiving the call.
Edit Button
Click on a phone number entry and click the Edit button to change any values
configured for the phone number.
Delete Button
Click on a phone number entry and click the Delete button to remove it from
the phone number list.
168
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
VModem Phone Number Entry
Create an entry in the Phone Number to Host Mapping window.
Configure the following parameters:
Phone Number
Specify the phone number your modem application sends to the modem. Note:
The IOLAN does not validate the phone number, so it must be entered in the
exact way the application will send it. For example, if you enter 555-1212 in
this table and the application sends 5551212, the IOLAN will not match the
two numbers.
Host IP Address
TCP Port
Specify the IP address of the IOLAN that is receiving the virtual modem
connection.
Field Format: IPv4 or IPv6 address
Specify the TCP Port on the IOLAN that is set to receive the virtual modem
connection.
Default: 0
Control Signal I/O Profile
Overview
The Control Signal I/O profile is only available on IOLAN I/O models. When you configure a serial
port for Control Signal I/O, you are using the DSR, DCD, CTS, DTR, and RTS serial pins for I/O
channel Digital Input (DSR, DCD, and CTS) or Digital Output (DTR and RTS).
Functionality
The Control Signal I/O profile enables the use of the EIA-232 serial port pins to be used as assigned
Digital Inputs or Digital Outputs.
169
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
General Tab Field Descriptions
The General tab displays the signal pins. This window is also used to enable/disable the signal pins.
Highlight a signal and then click the Edit button to configure the signal pin’s parameters.
Input Signal Field Descriptions
Configure the following parameters:
Description
Provide a description of the channel, making it easier to identify.
Data Options: Maximum 20 characters, including spaces
Latch
Latches (remembers) the activity transition (active to inactive or inactive to
active).
Data Options: None, Inactive-to-Active, Active-to-Inactive
Default: None
Invert Signal
When enabled, inverts the actual condition of the I/O signal in the status;
therefore, an inactive status will be displayed as active.
Default: Disabled
170
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Trigger
When the trigger condition is met, triggers the specified alarm action.
Data Options:
z
z
Disabled—No alarm settings. This is the default.
Inactive—When the expected Digital input is active, going inactive will
trigger an alarm.
z
Active—When the expected Digital input is inactive, going active will
trigger an alarm.
Default: Disabled
Auto Clear Mode When enabled, automatically clears the alarm when the trigger condition
changes; for example, if the Trigger is Inactive and the alarm is triggered, once
the input becomes active again, the alarm will automatically be cleared
Default: Enabled
Manual Clear
Mode
When enabled, a triggered alarm must be manually cleared.
Default: Disabled
Email
Syslog
SNMP
When enabled, sends an email alert to an email account(s) set up in the System
settings when an alarm is triggered or cleared. The email alert data includes the
severity level and the value that caused the alarm to trigger or clear. The Email
Alert is associated with Level Critical.
Default: Disabled
When enabled, sends a message to syslog when an alarm is triggered or
cleared. The syslog entry includes the severity level and the value that caused
the alarm to trigger or clear. The syslog message is associated with Level
Critical.
Default: Disabled
When enabled, sends an SNMP trap when an alarm is triggered or cleared. The
trap consists of the severity level and whether the alarm was triggered or
cleared.
Default: Disabled
171
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Output Signal Field Descriptions
Configure the following parameters:
Description
Provide a description of the channel, making it easier to identify.
Data Options: Maximum 20 characters, including spaces
Failsafe Action
When there has been no I/O activity within the specified time (set in the I/O
Interfaces, Settings on the Failsafe Timer tab) and the Failsafe Timer is
triggered.
Data Options:
z
z
z
None—The state of the Digital/Relay output remains the same, no change.
Activate Output—Activates the channel.
Deactivate Output—Deactivates the channel.
Default: None
172
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Modbus Gateway Profile
Overview
Each serial port can be configured as either a Modbus Master gateway or a Modbus Slave gateway,
depending on your configuration and requirements. If your model supports I/O, see Modbus I/O
Functionality
The Modbus Gateway profile configures a serial port to act as a Modbus Master Gateway or a
Modbus Slave Gateway.
173
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
General Tab Field Descriptions
Configure the following parameters:
Mode
Specify how the Modbus Gateway is defined on the serial port.
Data Options:
z
Modbus Master—Typically, the Modbus Master is connected to the
Serial Port and is communicating to Modbus Slaves on the network.
z
Modbus Slave—Typically, the Modbus Master is accessing the IOLAN
through the network to communicated to Modbus Slaves connected to the
IOLAN’s Serial Ports.
Default: Modbus Master Gateway
Destination Slave Click this button to launch the Destination Slave IP Settings window, where
IP Mappings
Button
you can configure the TCP/Ethernet Modbus Slaves that the Modbus Master on
the Serial Port will communicate with.
Advanced Slave
Settings Button
Click this button to configure global Modbus Slave settings.
UID Range
You can specify a range of UIDs (1-247), in addition to individual UIDs.
Field Format: Comma delimited; for example, 2-35, 50, 100-103
Modbus/RTU
Select this option when the Modbus/RTU protocol is being used for
communication between the Modbus Master and Slave.
Default: Enabled
Modbus/ASCII
Append CR/LF
Select this option when Modbus/ASCII protocol is being used for
communication between the Modbus Master and Slave.
Default: Disabled
When Modbus/ASCII is selected, adds a CR/LF to the end of the transmission;
most Modbus devices require this option.
Default: Enabled
174
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Advanced Field Descriptions
Configure the following parameters:
Idle Timeout
Use this timer to close a connection because of inactivity. When the Idle
Timeout expires, the IOLAN will end the connection.
Range: 0-4294967 seconds (about 49 days)
Default: 0 (zero), which does not timeout, so the connection is permanently
open.
Enable Modbus
Exceptions
Click this button to launch the Destination Slave IP Settings window, where
you can configure the TCP/Ethernet Modbus Slaves that the Modbus Master on
the Serial Port will communicate with.
Character Timeout Used in conjunction with the Modbus RTU protocol, specifies how long to
wait, in milliseconds, after a character to determine the end of frame.
Range: 10-10000
Default: 30 ms
Message Timeout Time to wait, in milliseconds, for a response message from a Modbus TCP or
serial slave (depending if the Modbus Gateway is a Master Gateway or Slave
Gateway, respectively) before sending a Modbus exception.
Range: 10-10000
Default: 1000 ms
175
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Modbus Slave IP Settings Field Descriptions
This window is used to configure the Modbus Slaves.
The following buttons are available:
Add Button
Edit Button
Delete Button
Adds an entry into the Modbus Destination Slave IP Settings table.
Edits an entry in the Modbus Destination Slave IP Settings table.
Deletes an entry from the Modbus Destination Slave IP Settings table.
176
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Adding/Editing Modbus Slave IP Settings
Configure the following parameters:
UID Start
UID End
Type
When Destination is set to Host and you have sequential Modbus Slave IP
addresses (for example, 10.10.10.1, 10.10.10.2, 10.10.10.3, etc.), you can
specify a UID range (not supported with IPv6 addresses) and the IOLAN will
automatically increment the last digit of the configured IP address. Therefore,
you can specify a UID range of 1-100, and the IOLAN will route Master
Modbus messages to all Modbus Slaves with IP addresses of 10.10.10.1 -
10.10.10.100.
Range: 1-247
Default: 0 (zero)
When Destination is set to Host and you have sequential Modbus Slave IP
addresses (for example, 10.10.10.1, 10.10.10.2, 10.10.10.3, etc.), you can
specify a UID range (not supported with IPv6 addresses) and the IOLAN will
automatically increment the last digit of the configured IP address. Therefore,
you can specify a UID range of 1-100, and the IOLAN will route Master
Modbus messages to all Modbus Slaves with IP addresses of 10.10.10.1 -
10.10.10.100.
Range: 1-247
Default: 0 (zero)
Specify the configuration of the Modbus Slaves on the network.
Data Options:
z
Host—The IP address is used for the first UID specified in the range. The
last octet in the IPv4 address is then incremented for subsequent UID’s in
that range.
z
Gateway—The Modbus Master Gateway will use the same IP address
when connecting to all the remote Modbus slaves in the specified UID
range.
Default: Host
Start IP Address
The IP address of the TCP/Ethernet Modbus Slave.
Field Format: IPv4 or IPv6 address
177
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
End IP Address
Protocol
Displays the ending IP address of the TCP/Ethernet Modbus Slaves, based on
the Start IP address and the UID range (not supported for IPv6 addresses).
Field Format: IPv4 address
Specify the protocol that is used between the Modbus Master and Modbus
Slave(s).
Data Options: TCP or UDP
Default: TCP
UDP/TCP Port
The destination port of the remote Modbus TCP Slave that the IOLAN will
connect to.
Range: 0-65535
Default: 502
Modbus Slave Advanced Settings Field Descriptions
Configure the following parameters:
TCP/UDP Port
The network port number that the Slave Gateway will listen on for both TCP
and UDP messages.
Default: 502
Next Request Delay A delay, in milliseconds, to allow serial slave(s) to re-enable receivers before
issuing next Modbus Master request.
Range: 0-1000
Default: 50 ms
Enable Serial
When enabled, a UID of 0 (zero) indicates that the message will be broadcast to
Modbus Broadcasts all Modbus Slaves.
Default: Disabled
Request Queuing When enabled, allows multiple, simultaneous messages to be queued and
processed in order of reception.
Default: Enabled
178
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Embedded
Remapped
When this option is selected, the address of the slave Modbus device is
embedded in the message header.
Default: Enabled
Used for single device/port operation. Older Modbus devices may not include a
UID in their transmission header. When this option is selected, you can specify
the UID that will be inserted into the message header for the Modbus slave
device. This feature supersedes the Broadcast feature.
Default: Disabled
Remap UID
Specify the UID that will be inserted into the message header for the Slave
Modbus serial device.
Range: 1-247
Default: 1
Enable SSL/TLS When enabled, Modbus Slave Gateway messages to remote TCP Modbus
using global
settings
Masters are encrypted via SSL/TLS.
Default: Disabled
Power Management Profile
Overview
The Power Management profile applies when there is a Perle Remote Power Switch (RPS) connected
information on how to actively management the RPS.
Functionality
The Power Management profile configures a serial port to communicate with a Remote Power
Switch’s (RPS) administration port. This allows network access to the RPS and permits access to
statistics and control of the RPS’s power plugs.
179
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
General Tab Field Descriptions
Configure the following parameters:
RPS Name
RPS Model
Specify a name for the RPS.
Specify the RPS model.
Data Options: RSP820, RPS830, RPS1620, RPS1630
Default: RSP820
Edit Button
Highlight a plug and then click the Edit button to configure the plug.
Editing Power Management Plug Settings Field Descriptions
Configure the following parameters:
Plug
Displays the plug number you are configuring.
Name
Specify a name for the plug to make it easier to recognize and manage.
Power Up Interval Specify the amount of time, in seconds, that the RPS will wait before powering
up a plug. This can be useful if you have peripherals that need to be started in a
specific order.
Data Options: .5, 1, 2, 5, 15, 30, 60, 120, 180, 300
Default: .5 seconds
180
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Default State
Sets the default state of the plug.
Data Options: On, Off
Default: Off
Associated Port
When a server or router has its console port connected to one of the serial ports
on this IOLAN and that server/router is also powered by this RPS, the
server/router serial port number should be entered here. This will give you
direct access to some RPS commands when managing that server or router
(using Telnet or SSH).
Remote Access (PPP) Profile
Overview
The Remote Access (PPP) profile configures a serial port to allow a remote user to establish a PPP
connection to the IOLAN’s serial port. This is typically used with a modem for dial-in or dial-out
access to the network or a wireless WAN card.
Functionality
There are two options for PPP user authentication:
1. You can configure a specific user/password and a specific remote user/password per a serial port.
2. You can create a secrets file with multiple users and their passwords that will globally
authenticate users on all serial ports.
You can use configure PPP authentication in the configuration or in the secrets file, but not both.
If you want to use a secrets file, you must download the secrets file to the IOLAN for CHAP or PAP
authentication; the files must be downloaded to the IOLAN using the names chap-secretsand
pap-secrets, respectively. The file can be downloaded to the IOLAN under the Custom Files
option by selecting the Download Other File parameter.
In the Remote Access (PPP) profile, you must also specify the Authentication option as PAP or
CHAP on the Authentication tab, but must leave the User, Password, Remote User, and Remote
Password fields blank.
An example of the CHAP secrets file follows:
# Secrets for authentication using CHAP
# client
barney
fred
server
fred
barney
secret
acceptable local IP addresses
flintstone1234567890 192.168.43.1
wilma
192.168.43.2
An example of the PAP secret file follows:
# Secrets for authentication using PAP
# client
barney
server
*
secret
flintstone1234567890
acceptable local IP addresses
181
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
fred
*
wilma
General Tab Field Descriptions
Configure the following parameters:
IPv4 Local IP
Address
The IPV4 IP address of the IOLAN end of the PPP link. For routing to work,
you must enter a local IP address. Choose an address that is part of the same
network or subnetwork as the remote end; for example, if the remote end is
address 192.101.34.146, your local IP address can be 192.101.34.145. Do not
use the IOLAN’s (main) IP address in this field; if you do so, routing will not
take place correctly.
IPv4 Remote IP
Address
The IPV4 IP address of the remote end of the PPP link. Choose an address that
is part of the same network or subnetwork as the IOLAN. If you set the PPP
parameter IP Address Negotiation to On, the IOLAN will ignore the remote IP
address value you enter here and will allow the remote end to specify its IP
address. If your user is authenticated by RADIUS and the RADIUS parameter
Framed-Address is set in the RADIUS file, the IOLAN will use the value in
the RADIUS file in preference to the value configured here. The exception to
this rule is a Framed-Address value in the RADIUS file of 255.255.255.254;
this value allows the IOLAN to use the remote IP address value configured
here.
IPv4 Subnet Mask The network subnet mask. For example, 255.255.0.0. If your user is
authenticated by RADIUS and the RADIUS parameter Framed-Netmask is set
in the RADIUS file, the IOLAN will use the value in the RADIUS file in
preference to the value configured here.
Negotiate IP
Address
Automatically
Specifies whether or not IP address negotiation will take place. IP address
negotiation is where the IOLAN allows the remote end to specify its IP
address. When On, the IP address specified by the remote end will be used in
preference to the Remote IP Address set for a Serial Port. When Off, the
Remote IP Address set for the Serial Port will be used.
Default: Disabled
Dynamic DNS
Button
Launches the Dynamic DNS window when IP Address Negotiation is enabled,
which can then update the DNS server with the IP address that is negotiated
and accepted for the PPP session.
182
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
IPv6 Local
The local IPv6 interface identifier of the IOLAN end of the PPP link. For
Interface Identifier routing to work, you must enter a local IP address. Choose an address that is
part of the same network or subnetwork as the remote end. Do not use the
IOLAN’s (main) IP address in this field; if you do so, routing will not take
place correctly.
Field Format: The first 64 bits of the Interface Identifier must be zero,
therefore, ::abcd:abcd:abcd:abcd is the expected format.
IPv6 Remote
The remote IPv6 interface identifier of the remote end of the PPP link. Choose
Interface Identifier an address that is part of the same network or subnetwork as the IOLAN. If
you enable Negotiate IP Address Automatically, the IOLAN will ignore the
remote IP address value you enter here and will allow the remote end to
specify its IP address. If your user is authenticated by RADIUS and the
RADIUS parameter Framed-Interface-ID is set in the RADIUS file, the
IOLAN will use the value in the RADIUS file in preference to the value
configured here.
Field Format: The first 64 bits of the Interface Identifier must be zero,
therefore, ::abcd:abcd:abcd:abcd is the expected format.
IPv6 Global
Network Prefix
You can optionally specify an IPv6 global network prefix that the IOLAN will
advertise to the device at the other end of the PPP link.
Default: 0:0:0:0
IPv6 Prefix Bits
Specify the prefix bits for the IPv6 global network prefix.
Default: 64
183
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Authentication Tab Field Descriptions
Configure the following parameters:
Authentication
The type of authentication that will be done on the link. You can use PAP or
CHAP to authenticate a serial port or user on the IOLAN, from a remote
location, or authenticate a remote client/device, from the IOLAN.
When setting either PAP and CHAP, make sure the IOLAN and the remote
client/device have the same setting. For example, if the IOLAN is set to PAP,
but the remote end is set to CHAP, the connection will be refused.
Data Options:
z
z
None
PAP—is a one time challenge of a client/device requiring that it respond
with a valid username and password. A timer operates during which
successful authentication must take place. If the timer expires before the
remote end has been authenticated successfully, the link will be
terminated.
z
CHAP—challenges a client/device at regular intervals to validate itself
with a username and a response, based on a hash of the secret (password).
A timer operates during which successful authentication must take place.
If the timer expires before the remote end has been authenticated
successfully, the link will be terminated.
Default: CHAP
User
Complete this field only if you have specified PAP or CHAP (security
protocols) in the Authentication field, and
z
you wish to dedicate this line to a single remote user, who will be
authenticated by the IOLAN, or
z
you are using the IOLAN as a router (back-to-back with another IOLAN).
When Connect is set to Dial Out or both Dial In/Dial Out are enabled, the User
is the name the remote device will use to authenticate a port on this IOLAN.
The remote device will only authenticate your IOLAN’s port when PAP or
CHAP are operating. You can enter a maximum of sixteen alphanumeric
characters; for example, tracy201. When connecting together two networks,
enter a dummy user name; for example, DS_HQ.
Note If you want a reasonable level of security, the user name and password
should not be similar to a user name or password used regularly to login to the
IOLAN. External authentication can not be used for this user.
Field Format: You can enter a maximum of 254 alphanumeric characters.
184
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Password
Complete this field only if you have specified PAP or CHAP (security
protocols) in the Security field and:
z
you wish to dedicate this serial port to a single remote user, who will be
authenticated by the IOLAN, or
z
you are using the IOLAN as a router (back-to-back with another IOLAN)
Password means the following:
z
When PAP is specified, this is the password the remote device will use to
authenticate the port on this IOLAN.
z
When CHAP is specified, this is the secret (password) known to both ends
of the link upon which responses to challenges shall be based.
Field Format: You can enter a maximum of 16 alphanumeric characters.
Remote User
Complete this field only if you have specified PAP or CHAP (security
protocols) in the Security field, and
z
you wish to dedicate this line to a single remote user, who will be
authenticated by the IOLAN, or
z
you are using the IOLAN as a router (back-to-back with another IOLAN)
When Dial In or Dial In/Dial Out is enabled, the Remote User is the name the
IOLAN will use to authenticate the port on the remote device. Your IOLAN
will only authenticate the port on the remote device when PAP or CHAP are
operating. When connecting together two networks, enter a dummy user name;
for example, DS_SALES.
Note If you want a reasonable level of security, the user name and password
should not be similar to a user name or password used regularly to login to the
IOLAN. This option does not work with external authentication.
Field Format: You can enter a maximum of 254 alphanumeric characters.
Remote Password Complete this field only if you have specified PAP or CHAP (security
protocols) in the Security field, and
z
you wish to dedicate this serial port to a single remote user, and this user
will be authenticated by the IOLAN, or
z
you are using the IOLAN as a router (back-to-back with another IOLAN)
Remote password means the following:
z
When PAP is specified, this is the password the IOLAN will use to
authenticate the remote device.
z
When CHAP is specified, this is the secret (password) known to both ends
of the link upon which responses to challenges will be based.
Remote Password is the opposite of the parameter Password. Your IOLAN
will only authenticate the remote device when PAP or CHAP is operating.
Field Format: You can enter a maximum of 16 alphanumeric characters.
Authentication
Timeout
The timeout, in minutes, during which successful PAP or CHAP authentication
must take place (when PAP or CHAP are specified). If the timer expires before
the remote end has been authenticated successfully, the link will be terminated.
Range: 1-255
Default: 1 minute
185
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
CHAP Challenge The interval, in minutes, for which the IOLAN will issue a CHAP re-challenge
Interval
to the remote end. During CHAP authentication, an initial CHAP challenge
takes place, and is unrelated to CHAP re-challenges. The initial challenge takes
place even if re-challenges are disabled. Some PPP client software does not
work with CHAP re-challenges, so you might want to leave the parameter
disabled in the IOLAN.
Range: 0-255
Default: 0 (zero), meaning CHAP re-challenge is disabled
Enable Roaming
Callback
A user can enter a telephone number that the IOLAN will use to callback
him/her. This feature is particularly useful for a mobile user. Roaming callback
can only work when the User Enable Callback parameter is enabled. Enable
Roaming Callback therefore overrides (fixed) User Enable Callback.To use
Enable Roaming Callback, the remote end must be a Microsoft Windows OS
that supports Microsoft’s Callback Control Protocol (CBCP). The user is
allowed 30 seconds to enter a telephone number after which the IOLAN ends
the call.
Default: Disabled
Dynamic DNS Field Descriptions
Dynamic DNS can be enabled and configured on a serial port level. If you enable Dynamic DNS and
leave the parameters blank, the Dynamic DNS system parameters will be used (Network, Advanced,
Dynamic DNS tab).
Configure the following parameters:
Enable Dynamic
DNS for this Serial
Port
Enables/disables the ability to register a new IP address with the DNS server.
Default: Disabled
Host
Specify the host name that will be updated with the PPP session’s IP address
on the DNS server.
User Name
Password
Specify the user name used to access the DNS server.
Specify the password used to access the DNS server.
Account Settings
Button
Click this button to configure the Dynamic DNS DynDNS.org account
information.
Account Settings window.
186
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Advanced Tab Field Descriptions
Configure the following parameters:
Routing
Determines the routing mode (RIP, Routing Information Protocol) used on the
PPP interface.This is the same function as the Framed-Routing attribute for
RADIUS authenticated users.
Data Options
z
z
z
z
None—Disables RIP over the PPP interface.
Send—Sends RIP over the PPP interface.
Listen—Listens for RIP over the PPP interface.
Send and Listen—Sends RIP and listens for RIP over the PPP interface.
Default: None
ACCM
Specifies the ACCM (Asynchronous Control Character Map) characters that
should be escaped from the data stream.
Field Format: This is entered as a 32-bit hexadecimal number with each bit
specifying whether or not the corresponding character should be escaped. The
bits are specified as the most significant bit first and are numbered 31-0. Thus
if bit 17 is set, the 17th character should be escaped, that is, 0x11 (XON). The
value 000a0000 will cause the control characters 0x11 (XON) and 0x13
(XOFF) to be escaped on the link, thus allowing the use of XON/XOFF
(software) flow control. If you have selected Soft Flow Control on the Serial
Port, you must enter a value of at least 000a0000 for the ACCM.
Default: 00000000, which means no characters will be escaped
MRU
The Maximum Receive Unit (MRU) parameter specifies the maximum size of
PPP packets that the IOLAN’s port will accept. If your user is authenticated by
the IOLAN, the MRU value will be overridden if you have set a MTU value for
the user. If your user is authenticated by RADIUS and the RADIUS parameter
Framed-MTU is set in the RADIUS file, the IOLAN will use the value in the
RADIUS file in preference to the value configured here.
Range: 64-1500 bytes
Default: 1500
187
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Configure Request The maximum time, in seconds, that LCP (Link Control Protocol) will wait
Timeout
before it considers a configure requestpacket to have been lost.
Range: 1-255
Default: 3 seconds
Configure Request The maximum number of times a configure requestpacket will be re-sent
Retries
before the link is terminated.
Range: 0-255
Default: 10 seconds
Terminate Request The maximum time, in seconds, that LCP (Link Control Protocol) will wait
Timeout
before it considers a terminate requestpacket to have been lost.
Range: 1-255
Default: 3 seconds
Terminate Request The maximum number of times a terminate requestpacket will be re-sent
Retries
before the link is terminated.
Range: 0-255
Default: 2 seconds
Configure NAK
Retries
The maximum number of times a configure NAKpacket will be re-sent
before the link is terminated.
Range: 0-255
Default: 10 seconds
Enable
This determines whether compression of the PPP Address and Control fields
Address/Control
take place on the link. For most applications this should be enabled.
Compression
Default: Enabled
Enable Protocol
Compression
This determines whether compression of the PPP Protocol field takes place on
this link.
Default: Enabled
Enable VJ
Compression
When enabled, Van Jacobson Compression is used on this link. If your user is
authenticated by the IOLAN, this VJ compression value will be overridden if
you have enabled the User, Enable VJ Compression parameter. If the user is
authenticated by RADIUS and the RADIUS parameter Framed-Compression
is set in the RADIUS file, the IOLAN will use the value in the RADIUS file in
preference to the value configured here.
Default: Enabled
Enable Magic
Negotiation
Determines if a line is looping back. If enabled (On), random numbers are sent
on the link. The random numbers should be different, unless the link loops
back.
Default: Disabled
Idle Timeout
Use this timer to close a connection because of inactivity. When the Idle
Timeout expires, the IOLAN will end the connection.
Range: 0-4294967 seconds (about 49 days)
Default: 0 (zero), which does not timeout, so the connection is permanently
open.
Direct Connect
Specify this option when a modem is not connected to this serial port.
Default: Enabled
188
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Dial In
If the device is remote and will be dialing in via modem or ISDN TA, enable
this parameter.
Default: Disabled
Dial Out
Dial In/Out
If you want the modem to dial a number when the serial port is started, enable
this parameter.
Default: Disabled
Enable this option when you want the serial port to do either of the following:
z
z
accept a call from a modem or ISDN TA
dial a number when the serial port is started
Default: Disabled
MS Direct Host
Specify this option when the serial port is connected to a Microsoft Guest
device.
Default: Enabled
MS Direct Guest
Dial Timeout
Enable this option when the serial port is connected to a Microsoft Host device.
Default: Disabled
The number of seconds the IOLAN will wait to establish a connection to a
remote modem.
Range: 1-99
Default: 45 seconds
Dial Retry
The number of times the IOLAN will attempt to re-establish a connection with
a remote modem.
Range: 0-99
Default: 2
Modem
Phone
The name of the predefined modem that is used on this line.
The phone number to use when Dial Out is enabled.
189
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Remote Access (SLIP) Profile
Overview
The Remote Access (SLIP) profile configures a serial port to allow a remote user to establish a SLIP
connection to the IOLAN’s serial port. This is typically used with a modem for dial-in or dial-out
access to the network.
General Tab Field Descriptions
Configure the following parameters:
Local IP Address The IPv4 address of the IOLAN end of the SLIP link. For routing to work you
must enter an IP address in this field. Choose an address that is part of the same
network or subnetwork as the remote end; for example, if the remote end is
address 192.101.34.146, your local IP address can be 192.101.34.145. Do not
use the IOLAN’s (main) IP address in this field; if you do so, routing will not
take place correctly.
Remote IP Address The IPv4 address of the remote end of the SLIP link. Choose an address that is
part of the same network or subnetwork as the IOLAN. If your user is
authenticated by the IOLAN, this remote IP address will be overridden if you
have set a Framed IP Address for the user. If your user is authenticated by
RADIUS and the RADIUS parameter Framed-Address is set in the RADIUS
file, the IOLAN will use the value in the RADIUS file in preference to the
value configured here.
Subnet Mask
The network subnet mask. For example, 255.255.0.0. If your user is
authenticated by RADIUS and the RADIUS parameter Framed-Netmask is set
in the RADIUS file, the IOLAN will use the value in the RADIUS file in
preference to the value configured here.
190
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Advanced Tab Field Descriptions
Configure the following parameters:
MTU
The Maximum Transmission Unit (MTU) parameter restricts the size of
individual SLIP packets being sent by the IOLAN. Enter a value between 256
and 1006 bytes; for example, 512. The default value is 256. If your user is
authenticated by the IOLAN, this MTU value will be overridden when you
have set a Framed MTU value for the user. If your user is authenticated by
RADIUS and the RADIUS parameter Framed-MTU is set in the RADIUS file,
the IOLAN will use the value in the RADIUS file in preference to the value
configured here.
Default: 256
Routing
Determines the routing mode (RIP, Routing Information Protocol) used on the
SLIP interface as one of the following options:
z
z
z
z
None—Disables RIP over the SLIP interface.
Send—Sends RIP over the SLIP interface.
Listen—Listens for RIP over the SLIP interface.
Send and Listen—Sends RIP and listens for RIP over the SLIP interface.
This is the same function as the Framed-Routing attribute for RADIUS
authenticated users.
Default: None
VJ Compression
When enabled, Van Jacobson compression is used on this link. When enabled,
C-SLIP, or compressed SLIP, is used. When disabled, plain SLIP is used. C-
SLIP greatly improves the performance of interactive traffic, such as Telnet or
Rlogin.
If your user is authenticated by the IOLAN, this VJ compression value will be
overridden if you have set a Framed Compression value for a user. If your
user is authenticated by RADIUS and the RADIUS parameter Framed-
Compression is set in the RADIUS file, the IOLAN will use the value in the
RADIUS file in preference to the value configured here.
Default: Enabled
Direct Connect
If the device is remote and will be dialing in via modem or ISDN TA, enable
this parameter.
Default: Disabled
191
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Dial In
If the device is remote and will be dialing in via modem or ISDN TA, enable
this parameter.
Default: Disabled
Dial Out
Dial In/Out
If you want the modem to dial a number when the serial port is started, enable
this parameter.
Default: Disabled
Enable this option when you want the serial port to do either of the following:
z
z
accept a call from a modem or ISDN TA
dial a number when the serial port is started
Default: Disabled
Dial Timeout
Dial Retry
The number of seconds the IOLAN will wait to establish a connection to a
remote modem.
Range: 1-99
Default: 45 seconds
The number of times the IOLAN will attempt to re-establish a connection with
a remote modem.
Range: 0-99
Default: 2
Modem
Phone
The name of the predefined modem that is used on this line.
The phone number to use when Dial Out is enabled.
192
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Profiles
Custom Application Profile
Overview
The Custom App/Plugin profile is used in conjunction with custom applications created for the
IOLAN by using the Perle SDK. See the SDK Programmer’s Guide (the SDK and guide are
accessible via a request form located on the Perle website at
www.perle.com/supportfiles/SDK_Request.shtml) for information about the functions that
are supported.
Functionality
You must download the program and any ancillary files to the IOLAN and set the serial port to the
Custom App/Plugin profile to actually run a custom application. You must also specify the program
executable and any parameters you want to pass to the program in the Command Line field. The
custom application is automatically run when the serial port is started.
General Tab Field Description
Configure the following parameter:
Command Line
The name of the SDK program executable that has been already been
downloaded to the IOLAN, plus any parameters you want to pass to the
program.Use the shellCLI command as described in the SDK Programmer’s
Guide to manage the files that you have downloaded to the IOLAN. For
example, using sample outraw program, you would type:
outraw 192.168.2.1:10001 Acct:10001
if you were starting the application on a serial port.
Field Format: Maximum of 80 characters
193
Download from Www.Somanuals.com. All Manuals Search And Download.
Port Buffering
Port Buffering
Overview
The Port Buffering feature allows data activity on the IOLAN’s serial ports to be held in memory for
viewing at a later stage without affecting the normal operation of the serial ports.
Port Buffering is only supported on serial port(s) configured for the Console Management
profile.
Functionality
Port Buffering is required by system administrators to capture important information from devices
attached to the IOLAN. If a device (such as a Router) has a problem and sends a warning message
out of its console port while no one is connected, the warning can be lost. With Port Buffering
enabled, the messages will be captured in memory or in a file and can be viewed later to aid
administrators in diagnosing and fixing problems.
Local Port Buffering
Port buffer information for the serial port can be viewed after successful connection to a device on a
serial port. The user can toggle between communicating to the device on the serial port and viewing
the port buffer data for that device by entering a the View Buffer String (default ~view). Local port
buffering is limited to 256Kb and will be flushed after the IOLAN reboots.
To view the local port buffer for a particular serial port, you must:
1. Connect to the device on that serial port by Telnet or SSH (the serial port(s) must be set to the
Console Management profile to support this type of connection).
2. Once you have established a connection to a device, you can enter the View Buffer String at any
time to switch the display to the content of the port buffer for that particular serial port.
3. To return to communicating to the device, press the ESC key and the communication session will
continue from where you left off.
To navigate through the port buffer data, the following chart illustrates the keyboard keys or “hot
keys” that can be used to view the port buffer data. Press the ESC key and to continue to
communicate with the device on that particular serial port.
Keyboard
Page Up
Page Down
Home
Buttons Hot Keys
<CTRL>B
Direction
Up
<CTRL>F
Down
<CTRL>T
Top of the buffer data (oldest data)
Bottom of the buffer (latest data)
Exit viewing port buffer data.
End
<CTRL>E
ESC
194
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Port Buffering
Remote Port Buffers
The Remote Port Buffering feature allows data received from serial ports on the IOLAN to be sent to
a remote server on the LAN. The remote server, supporting Network File System (NFS), allows
administrators to capture and analyze data and messages from the serial device connected to the
IOLAN serial port.
Remote Port Buffering data can be encrypted or raw and/or time stamped. The data is transmitted to
an NFS server where a unique remote file is created for each serial port using the configured serial
port Name for the file name. If the serial port Name parameter is left blank, the IOLAN will create
unique files using the IOLAN’s Ethernet MAC address and serial port number. It is recommended
that a unique NFS directory and serial port Name be configured if multiple IOLANs use the same
NFS host for Remote Port Buffering.
The filenames will be created on the NFS host with a .ENCextension to indicate data encrypted files
or .DATfor unencrypted files. If the data is encrypted, the Decoder utility application must be run on
the NFS server to convert the encrypted data to a readable file for administrators to analyze. The
The data that is sent to the remote buffer file is appended to the end of the file (even through IOLAN
reboots), so you will want to create a size limit on the file on your remote NFS host, to keep the
buffer file size from becoming too large for your system.
Field Definitions
Port buffering displays or logs data received on the IOLAN serial port.
Configure the following parameters:
Enable Local
Buffering
Enables/disables local port buffering on the IOLAN.
Default: Disabled
View Port
Buffering String
The string used by a a session connected to a serial port to display the port
buffer for that particular serial port.
Data Options: Up to an 8 character string. You can specify control
(unprintable) codes by putting the decimal value in angle brackets < > (for
example, Escape b is <027>b).
Default: ~view
Enable Remote
(NFS) Buffering
Enables/disables port buffering on a remote system. When you enable this
option, you have the ability to save the buffered data to a file(s) (one file is
created for each serial port) and/or send it to the Syslog host for viewing on the
Syslog host’s monitor.
Default: Disabled
195
Download from Www.Somanuals.com. All Manuals Search And Download.
Port Buffering
NFS Host
The NFS host that the IOLAN will send data to for its Remote Port Buffering
feature. The IOLAN will open a file on the NFS host for each serial port
configured for Console Management, and will send serial port data to be
written to that file(s).
Default: None
NFS Directory
Encrypt Data
The directory and/or subdirectories where the Remote Port Buffering files
will be created. For multiple IOLANs using the same NFS host, it is
recommended that each IOLAN have its own unique directory to house the
remote port log files.
Default: /device_server/portlogs
Determines if the data sent to the NFS host is sent encrypted or in the clear
across the LAN.
NOTE: When NFS encryption is enabled, the Decoder utility software is
required to be installed on the NFS host for decrypting the data to a readable
format. The Decoder utility software can be found on the installation CD-ROM
Default: Disabled
Enable Port
When enabled, buffered data is sent to the syslog host to be viewed on the
Buffering to Syslog host’s monitor.
Default: Disabled
Add Time Stamp to Enable/disable time stamping of the serial port buffer data.
Data
Default: Disabled
Enable Key Stroke When enabled, key strokes that are sent from the network host to the serial
Buffering
device on the IOLAN’s serial port are buffered.
Default: Disabled
196
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Advanced
Advanced Serial Settings Tab
Overview
Advanced serial port settings apply to all serial ports.
Field Descriptions
Configure the following parameters:
Process Break
Signals
Enables/disables proprietary inband SSH break signal processing, the Telnet
break signal, and the out-of-band break signals for TruePort.
Default: Disabled
Flush Data Before When enabled, deletes any pending outbound data when a port is closed.
Closing Serial Port
Default: Disabled
Deny Multiple
Network
Connections
Allows only one network connection at a time per a serial port. Application
accessing a serial port device across a network with get a connection (socket)
refused until:
z
z
z
All data from previous connections on that serial port has drained
There are no other connections
Up to a 1 second interconnection poll timer has expired
This also enables a per-connection TCP keepalive feature. After approximately
3 minutes of network connection idle time, the connection will send a
gratuitous ACK to the network peer, thus either ensuring the connection stays
active OR causing a dropped connection condition to be recognized by all peer
network connections.
Applications using this feature need to be aware that there can be some
considerable delay between a network disconnection and the port being
available for the next connection attempt, allowing any data sent on prior
connections to be transmitted out of the serial port. Application network retry
logic needs to accommodate this feature.
Default: Disabled
197
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Serial Port Menu When a user connects to the IOLAN through the network, the string used to
String
access the Easy Port Access menu without disconnecting the network
connection.
Data Options: You can specify control (unprintable) codes by putting the
decimal value in angle brackets < > (for example, ESC-b is <027>b).
Default: ~menu
Session Escape
String
When a user connects to the IOLAN through the network, the string is used to
access the Reverse Session Menu.
Data Options: You can specify control (unprintable) codes by putting the
decimal value in angle brackets < > (for example, ESC-b is <027>b).
Default: <026>s (Ctrl-z s)
PowerManagement Users accessing the IOLAN through the network can enter the string to bring
Menu String
up the Power Bar Management menu.
Data Options: You can specify control (unprintable) codes by putting the
decimal value in angle brackets < > (for example, ESC-b is <027>b).
Default: <016> (Ctrl-p)
Monitor
Connection
Interval Status
Specify how often, in seconds, the IOLAN will send a TCP Keepalive to
services that support TCP Keepalive.
Default: 30 seconds
198
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
Modems Tab
Overview
You need to configure a modem if there is a modem connected to the IOLAN. If your IOLAN model
contains an internal modem or a PCI slot (SCS models) for a modem card, a permanent modem string
called internal_modem or IOLAN modem, respectively, exists permanently in your configuration.
Functionality
Modems are usually configured for PPP/SLIP dial in/out connections, although some modems do
support raw data communication. When you click on the Modems tab, you will see the following:
If any modems have been configured, they will be displayed.
Adding/Editing a Modem
You can add new modems or edit existing modems through the following window:
Configure the following parameters:
Name
The name of the modem.
Restrictions: Do not use spaces.
Initialization String The initialization string of the modem; see your modem’s documentation.
199
Download from Www.Somanuals.com. All Manuals Search And Download.
Advanced
TruePort Baud Rate Tab
Overview
The TruePort utility acts as a COM port redirector that allows applications to talk to serial devices
across a network as though the serial devices were directly attached to the server. For IOLAN I/O
models, you can also monitor and control I/O through the TruePort client.
Functionality
Since some older applications may not support the higher baud rates that the IOLAN is capable of
achieving, the baud rate can be mapped to a different value on the IOLAN. Through TruePort, you
can map the baud rate of the host COM port to a higher baud rate for the serial line that connects the
utility.
Field Definitions
Configure the following parameter:
Actual Baud Rate The actual baud rate that runs between the IOLAN and the connected serial
device.
Range: 50-230400, you can also specify a custom baud rate
200
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring Users
Chapter
8
8
Introduction
You can configure up to four users in the IOLAN’s local user database
for all DS, SDS, and STS 1-port to 4-port desktop models, in addition
to the Admin user. You can configure up to 48 users in the IOLAN’s
local user database for all STS, SCS, and SDS rack mount models and
all MDC medical unit models, in addition to the Admin user. A user
can even represent a device, like a barcode reader or a card swipe
device, that you want to be authenticated.
When users are connecting to the IOLAN via serial ports, the user
database can be used to:
z
Have the user authenticated prior to establishing a connection to a
network host.
z
z
Establish a different connection type to the host specific to each user.
Create a profile different from the Default user profile.
When users are connecting to the IOLAN from a network connection, the user database can be used
to:
z
z
Provide authentication on the IOLAN prior to establishing a serial connection via PPP or SLIP.
Authenticate users prior to providing access to a serially attached console port (such as a Unix
server or router).
You do not need user accounts for users who are externally authenticated.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
201
Download from Www.Somanuals.com. All Manuals Search And Download.
User Settings
User Settings
Overview
The Users window allows you to add, edit, and delete users from the IOLAN.
Functionality
The Users window displays the users who have been configured. You can add users, edit existing
the parameters available when adding or editing a user.
202
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Adding/Editing Users
Adding/Editing Users
General Tab
Overview
The General tab configures the basic user information.
Functionality
You must, minimally, provide a User Name and Level for a user.
Field Descriptions
Configure the following parameters:
User Name
The name of the user.
Restrictions: Do not use spaces.
Password
The password the user will need to enter to login to the IOLAN.
Confirm Password Enter the user’s password again to verify it is entered correctly.
203
Download from Www.Somanuals.com. All Manuals Search And Download.
Adding/Editing Users
Level
The access that a user is allowed.
Data Options:
z
Admin—The admin level user has total access to the IOLAN. You can
create more than one admin user account but we recommend that you only
have one. They can monitor and configure the IOLAN. Users configured
with this level can access the unit either via serial Terminal Profile
connection or via a network originated Telnet or SSH connection to the
IOLAN.
z
z
Normal—The Normal level user has limited access to the IOLAN.
Limited CLI commands and Menu access are available with the ability to
configure the user’s own configuration settings. Users configured with this
level can access the unit either via serial Terminal Profile connection or
via a network originated Telnet or SSH connection to the IOLAN.
Restricted—The Restricted level user can only access predefined sessions
or access the Easy Port Access menu. Users configured with this level will
be restricted to pre-defined sessions or limited CLI commands when
connecting through the serial port via the Terminal Profile. The CLI
commands are limited to those used for initiating a session. If connection
to the IOLAN is done with Telnet or SSH from the network, the user will
be presented with the Easy Port Access menu.
z
Menu—The menu level user will only be able to access predefined
session when connecting through a serial port with the Terminal profile or
will be limited to the Easy Port Access menu when connecting from the
network. The Easy Port Access allows the user to connect to the accessible
line without disconnecting their initial connection to the IOLAN. Does not
have any access to CLI commands.
When the Admin user logs into the IOLAN, the prompt ends with a #, whereas
all other users’ prompts ends with a $or £, depending on the character set.
Default: Normal
A technique for giving a serially attach user (dial-in or terminal attached), the same menus as
one that is network connected is to do the following:
1. Define the serial port with a Terminal Profile using telnet protocol with a direct
connection to Host IP address 127.0.0.0 (local loop back).
2. When the user connects to that serial port a Telnet session will be established to the
IOLAN and the user will appear to have connected from the network.
204
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Adding/Editing Users
Services Tab
Overview
The Services tab configures the connection parameters for a user. Any connection parameters
configured in this window will override the serial port connection parameters.
Functionality
When a Terminal profile is set for the serial port and Require Login has been selected, user’s
accessing the IOLAN through the serial port will be authenticated. Once authentication is successful,
the Service specified here is started. For example, if the Service Telnet is specified, the IOLAN will
start a Telnet connection to the specified Host IP/TCP Port after the user is successfully authenticated
(logs in successfully).
Within the Terminal profile, there are a number of settings that apply to possible Services. Once it is
known which user is connected, and which service is to be used, then the settings from both the
Terminal profile and the user are used. User parameters take precedence over serial port parameters.
Field Descriptions
Configure the following parameters:
Service
Used in conjunction with the Terminal Profile. After the user has successfully
been authenticated, the specified service is started.
Data Options: DSPrompt, Telnet, SSH, RLogin, SLIP, PPP, TCP Raw, SSL
Raw
Default: DSPrompt
Host IP
When the User Service is set to Telnet or TCP Clear, the target host IP
address. If no IP address is specified, the Host IP value in the Default User
configuration will be used.
Default: None
205
Download from Www.Somanuals.com. All Manuals Search And Download.
Adding/Editing Users
TCP Port
When the User Service is Telnet, this is the target port number. The default
value will change based on the type of Service selected; the most common
known port numbers are used as the default values.
IPv4 Address
Used for User Service PPP or SLIP, sets the IP address of the remote user.
Enter the address in dot decimal notation as follows:
z
n.n.n.n—(where n is a number) Enter the IP address of your choice. This
IP address will then be used in preference to the Remote IP Address set
for a line.
The following IP addresses have a special meaning:
z
255.255.255.254—The IOLAN will use the Remote IP Address set in the
PPP settings for the serial port that this user is connecting to.
z
255.255.255.255—When the User Service is PPP, the IOLAN will allow
the remote machine to specify its IP address (overriding the IP address
negotiation value configured in the PPP settings).
z
255.255.255.255—When the User Service is SLIP, the IOLAN will use
the Remote IP Address set for the line (no negotiation).
Default: 255.255.255.254
IPv4 Subnet Mask If the remote user is on a subnet, enter the network’s subnet mask. For
example, a subnet mask of 255.255.0.0.
IPv6 Interface
Indentifier
Used for User Service PPP, sets the IPv6 address of the remote user. Enter the
address in IPv6 format.
Field Format: The first 64 bits of the Interface Identifier must be zero,
therefore, ::abcd:abcd:abcd:abcd is the expected format.
MTU
Used for User Service PPP or SLIP, specifies the maximum size of packets, in
bytes, being transferred across the link. On noisy links it might be preferable to
fragment large packets being transferred over the link, since there will a be
quicker recovery from errors.
Data Options:
z
PPP—MTU will be the maximum size of packets that the IOLAN will
negotiate for this port. This value is negotiated between the two ends of
the link.
z
SLIP—MTU will be the maximum size of packets being sent by the
IOLAN.
The User MTU value will override the MTU/MRU values set for a Serial Port.
Range: PPP: 64-1500 bytes, SLIP: 256-1006 bytes
Default: PPP is 1500 bytes, SLIP is 256 bytes
Routing
Determines the routing mode used for RIP packets on the PPP and SLIP
interfaces. Values are:
z
z
z
z
None—RIP packets are neither received nor sent by the IOLAN.
Send—RIP packets can only be sent by the IOLAN.
Listen—RIP packets can only be received by the IOLAN.
Send and Listen—RIP packets are sent and received by the IOLAN.
Default: None
206
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Adding/Editing Users
Enable VJ
Compression
Used for User Service PPP or SLIP, determines whether Van Jacobsen
Compression is used on the link. VJ compression is a means of reducing the
standard TCP/IP header from 40 octets to approximately 5 octets. This gives a
significant performance improvement, particularly when interactive
applications are being used. For example, when the user is typing, a single
character can be transmitted and thus have the overhead of the full TCP/IP
header. VJ Compression has minimal effect on other types of links, such as ftp,
where the packets are much larger. The User VJ Compression option will
override the VJ Compression value set for a Serial Port.
Default: Disabled
Advanced Tab
Overview
The Advanced tab is used to configure those parameters that control the user session; this includes
session length, language, the hotkey used for switching between sessions, access to clustered ports,
etc.
Field Descriptions
Configure the following parameters:
Idle Timeout
The amount of time, in seconds, before the IOLAN closes a connection due to
inactivity. The default value is 0 (zero), meaning that the Idle Timer will not
expire (the connection is open permanently). The User Idle Timeout will
override all other Serial Port Idle Timeout parameters.
Range: 0-4294967
Default: 0
207
Download from Www.Somanuals.com. All Manuals Search And Download.
Adding/Editing Users
Session Timeout
The amount of time, in seconds, before the IOLAN forcibly closes a user’s
session (connection). The default value is 0 (zero), meaning that the session
timer will not expire (the session is open permanently, or until the user logs
out). The User Session Timeout will override all other Serial Port Session
Timeout parameters.
Range: 0-4294967
Default: 0
Enable Callback
When enabled, enter a phone number for the IOLAN to call the user back (the
Enable Callback parameter is unrelated to the Serial Port Remote Access
(PPP) profile Dial parameter).
Note: the IOLAN will allow callback only when a user is authenticated. If the
protocol over the link does not provide authentication, there will be no
callback. Therefore, when the Serial Port profile is set to Remote Access
(PPP), you must use either PAP or CHAP, because these protocols provide
authentication.
The IOLAN supports another type of callback, Roaming Callback, which is
configurable when the Serial Port profile is set to Remote Access (PPP).
Default: Disabled
Phone Number
Language
The phone number the IOLAN will dial to callback the user (you must have set
Enable Callback enabled).
Restrictions: Enter the number without spaces.
You can specify whether a user will use English or Custom Language as the
language that appears in the Menu, CLI, or WebManager. The IOLAN supports
one custom language that must be downloaded to the IOLAN.
Default: English
Languages.
Hotkey Prefix
The prefix that a user types to control the current session.
Data Options:
z
^a number—To switch from one session to another, press ^a (Ctrl-a) and
then the required session number. For example, ^a 2 would switch you to
session 2. Pressing ^a 0 will return you to the IOLAN Menu.
z
z
z
z
^a n—Display the next session. The current session will remain active.
The lowest numbered active session will be displayed.
^a p—Display the previous session. The current session will remain
active. The highest numbered active session will be displayed.
^a m—To exit a session and return to the IOLAN. You will be returned to
the menu. The session will be left running.
^a l—(Lowercase L) Locks the serial port until the user unlocks it. The
user is prompted for a password (any password, excluding spaces) and the
serial port is locked. The user must retype the password to unlock the
serial port.
z
^r—When you switch from a session back to the Menu, the screen may
not be redrawn correctly. If this happens, use this command to redraw it
properly. This is always Ctrl R, regardless of the Hotkey Prefix.
The User Hotkey Prefix value overrides the Serial Port Hotkey Prefix value.
You can use the Hotkey Prefix keys to lock a serial port only when the serial
port’s Allow Port Locking parameter is enabled.
Default: Hex 01 (Ctrl-a or ^a)
208
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Adding/Editing Users
Sessions Tab
Overview
The Sessions tab is used to configure specific connections for users who are accessing the network
through the IOLAN’s serial port.
Functionality
Users who have successfully logged into the IOLAN (User Service set to DSprompt) can start up to
four login sessions on network hosts. These users start sessions through the Easy Port Menu option
Sessions.
Multiple sessions can be run simultaneously to the same host or to different hosts. Users can switch
between different sessions and also between sessions and the IOLAN using Hotkey commands (see
Hotkey Prefix on page 208 for a list of commands).
Users with Admin or Normal privileges can define new sessions and use them to connect to Network
hosts; they can even configure them to start automatically on login to the IOLAN. Restricted and
Menu users can only start sessions predefined for them in their user configuration.
209
Download from Www.Somanuals.com. All Manuals Search And Download.
Adding/Editing Users
Field Descriptions
Configure the following parameters:
Session 1, 2, 3, 4 You can configure up to four (4) sessions that the user can select from to
connect to a specific host after that user has successfully logged into the
IOLAN (used only on serial ports configured for the Terminal profile).
Data Options:
z
z
None—No connection is configured for this session.
z
z
Default: None
Settings Button
Click this button to configure the connection parameters for this session.
Connect
Automatically
Specify whether or not the session(s) will start automatically when the user
logs into the IOLAN.
Default: Disabled
Host
The host that the user will connect to in this predefined session.
Default: None
TCP Port
The TCP port that the IOLAN will use to connect to the host in this predefined
session.
Default: Telnet-23, SSH-22, Rlogin-513
210
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Adding/Editing Users
Serial Port Access Tab
Overview
The Serial Port Access tab controls the user’s read/write access on any given IOLAN serial port.
This pertains to users that are connecting from the network to a serial over a Console Management
type session.
This can be useful when you have multiple users connecting to the same serial device and you wish
to control the viewing and/or the write to and from the device. See the Multisessions and User
settings.
Field Descriptions
Configure the following parameters:
Serial Port Access Specifies the user access rights to each IOLAN serial port device. There can be
multiple users connected to a particular serial device and these settings
determine the rights of this user for any of the listed serial ports.
Data Options:
z
z
Read/Write—The user has read and write access to the serial port.
Read In—The User will see data going to the serial port, from all
network-connected users that have write privileges to this serial port.
z
Read Out—The user will have access to all data originating from the
serial device.
Users can read data going in both directions by selecting both the Read In and
Read Out options.
Default: Read/Write
Allow Access to
Clustered Ports
When enabled, allows the user access to IOLANs that have been configured in
the clustering group.
Default: Enabled
211
Download from Www.Somanuals.com. All Manuals Search And Download.
Adding/Editing Users
212
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring Security
Chapter
9
9
Introduction
The Security group includes the following configuration options:
z
Authentication—When a serial port is configured for the
Console Management or TCP Sockets profile, the user can be
authenticated either locally in the IOLAN user profile or
externally. This option configures the external authentication
z
z
SSH—This configuration window configures the SSH server in
SSL/TLS—This configuration window configures global
SSL/TLS settings, which can be overridden on the serial port
z
z
VPN—This configuration window configures the Virtual Personal Network (VPN) IPsec and
Services—This configuration window is used to enable/disabled client and daemon services that
Authentication
Authentication can be handled by the IOLAN or through an external authentication server.
Authentication is different from authorization, which can restrict a user’s access to the network
page 209 for more information). Authentication ensures that the user is defined within the
authentication database—with the exception of using the Guest authentication option under Local
Authentication, which can accept any user ID as long as the user knows the configured password.
For external authentication, the IOLAN supports RADIUS, Kerberos, LDAP, TACACS+, SecurID,
and NIS. You can specify a primary authentication method and a secondary authentication method. If
the primary authentication method fails (cannot connect to the server or authentication fails), the
secondary authentication method is tried (unless you enable the Only Use as backup option, in
which case the secondary authentication method will be tried only when the IOLAN cannot
communicate with the primary authentication host). This allows you to specify two different
authentication methods. If you do specify two different authentication methods, the user will be
prompted for his/her username once, but will be prompted for a password for each authentication
method tried. For example, user Alfred’s user ID is maintained in the secondary authentication
database, therefore, he will be prompted for his password twice, because he is not in the primary
authentication database.
Unlike the other external authentication methods, RADIUS and TACACS+ can also send back Serial
Port and User parameters that are used for the duration of the connection. Therefore, any parameters
configured by RADIUS or TACACS+ will override the same parameters configured in the IOLAN.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
213
Download from Www.Somanuals.com. All Manuals Search And Download.
Authentication
Authentication
In the Authentication window, you can select up to two methods of authentication made up of
external authentication options and/or the local user database.
Configure the following parameters:
Primary
The first authentication method that the IOLAN attempts.
Authentication
Method
Data Options: Local, RADIUS, Kerberos, LDAP, TACACS+, SecurID, NIS
Default: Local
Secondary
Authentication
Method
If the Primary Authentication Method fails, the next authentication method
that the IOLAN attempts. You can choose to use authentication methods in
combination. For example, you can specify the Primary Authentication
Method as Local and the Secondary Authentication Method as RADIUS.
Therefore, some users can be defined in the IOLAN (Local) others in RADIUS.
Data Options: None, Local, RADIUS, Kerberos, LDAP, TACACS+, SecurID,
NIS
Default: None
Settings Button
Click this button to configure the authentication method.
Only use as backup The secondary authentication method will be tried only when the IOLAN
cannot communicate with the primary authentication host.
Default: Disabled
Only authenticate When enabled, the IOLAN will only authenticate the admin user in the local
admin user in the user database, regardless of any external authentication methods configured.
local database
When disabled, a user called admin must exist when only external
authentication methods are configured, or you will not be able to access the
IOLAN as the admin user, except through the console port.
Default: Enabled
214
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Authentication
Local
Overview
When Local authentication is selected, the user must either be configured in the IOLAN’s User List
or you must enable Guest users.
Field Descriptions
Configure the following parameters:
Enable Guest Mode Allow users who are not defined in the Users database to log into the IOLAN
with any user ID and the specified password. Guest users inherit their settings
from the Default User’s configuration.
Default: Disabled
Guest Password
The password that Guest users must use to log into the IOLAN.
Confirm Password Type the Guest Password in again to verify that it is correct.
215
Download from Www.Somanuals.com. All Manuals Search And Download.
Authentication
RADIUS
Overview
RADIUS is an authentication method that the IOLAN supports that can send back User information;
RADIUS.
General Field Descriptions
Configure the following parameters:
First Authentication Name of the primary RADIUS authentication host.
Host
Default: None
Second
Name of the secondary RADIUS authentication host, should the first RADIUS
Authentication Host host fail to respond.
Default: None
Secret
The secret (password) shared between the IOLAN and the RADIUS
authentication host.
Authentication Port The port that the RADIUS host listens to for authentication requests.
Default: 1812
Enable Accounting Enables/disables RADIUS accounting.
Default: Disabled
First Accounting
Host
Name of the primary RADIUS accounting host.
Default: None
Second Accounting Name of the secondary RADIUS accounting host.
Host
Default: None
Secret
The secret (password) shared between the IOLAN and the RADIUS accounting
host.
216
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Authentication
Account Port
The port that the RADIUS host listens to for accounting requests.
Default: 1813
Enable Accounting Enables/disables whether or not the IOLAN validates the RADIUS accounting
Authenticator
response.
Default: Enabled
Retry
The number of times the IOLAN tries to connect to the RADIUS server before
erroring out.
Range: 0-255
Default: 5
Timeout
The time, in seconds, that the IOLAN waits to receive a reply after sending out
a request to a RADIUS accounting or authentication host. If no reply is
received before the timeout period expires, the IOLAN will retry the same host
up to and including the number of retry attempts.
Range: 1-255
Default: 3 seconds
Attributes Field Descriptions
Configure the following parameters:
NAS-Identifier
This is the string that identifies the Network Address Server (NAS) that is
originating the Access-Request to authenticate a user.
Field Format: Maximum 31 characters, including spaces
Automatically
When enabled, the IOLAN will send the IOLAN’s Ethernet 1 IPv4 address to
determine NAS-IP- the RADIUS server.
Address
Default: Enabled
217
Download from Www.Somanuals.com. All Manuals Search And Download.
Authentication
Use the following When enabled, the IOLAN will send the specified IPv4 address to the RADIUS
NAS-IP-Address
server.
Default: Disabled
IP Address
The IPv4 address that the IOLAN will send to the RADIUS server.
Default: 0.0.0.0
Automatically
determine NAS-
IPv6-Address
When enabled, the IOLAN will send the IOLAN’s IPv6 address to the
RADIUS server.
Default: Enabled
Use the following When enabled, the IOLAN will send the specified IPv6 address to the RADIUS
NAS-IPv6-Address server.
Default: Disabled
IPv6 Address
The IPv6 address that the IOLAN will send to the RADIUS server.
Field Format: IPv6 address
Kerberos
Field Descriptions
Configure the following parameters:
Realm
The Kerberos realm is the Kerberos host domain name, in upper-case letters.
KDC Domain
The name of a host running the KDC (Key Distribution Center) for the
specified realm. The host name that you specify must either be defined in the
IOLAN’s Host Table before the last reboot or be resolved by DNS.
KDC Port
The port that the Kerberos server listens to for authentication requests.
Default: 88
218
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Authentication
LDAP
Overview
If you are using LDAP with TLS, you need to download a CA list to the IOLAN that includes the
certificate authority (CA) that signed the LDAP certificate on the LDAP host by selecting Tools,
the LDAP certificate.
Field Descriptions
Configure the following parameters:
Host Name
The name or IP address of the LDAP host. If you use a host name, that host
must either have been defined in the IOLAN’s Host Table before the last
reboot or be resolved by DNS. If you are using TLS, you must enter the same
string you used to create the LDAP certificate that resides on your LDAP
server.
Port
The port that the LDAP host listens to for authentication requests.
Default: 389
Base
The domain component (dc) that is the starting point for the search for user
authentication.
Enable TLS
Enables/disables the Transport Layer Security (TLS) with the LDAP host.
Default: Disabled
TLS Port
Specify the port number that LDAP will use for TLS.
Default: 636
219
Download from Www.Somanuals.com. All Manuals Search And Download.
Authentication
TACACS+
Overview
TACACS+ is an authentication method that the IOLAN supports that can send back User
that can be sent back by TACACS+.
Field Descriptions
Configure the following parameters:
Authentication/
Authorization
Primary Host
The primary TACACS+ host that is used for authentication.
Default: None
Authentication/
Authorization
Secondary Host
The secondary TACACS+ host that is used for authentication, should the
primary TACACS+ host fail to respond.
Default: None
Authentication/
The port number that TACACS+ listens to for authentication requests.
Authorization Port
Default: 49
Authentication/
Authorization
Secret
The TACACS+ shared secret is used to encrypt/decrypt TACACS+ packets in
communications between two devices. The shared secret may be any
alphanumeric string. Each shared secret must be configured on both client and
server sides.
Enable
Authorization
Enables authorization on the TACACS+ host, meaning that IOLAN-specific
parameters set in the TACACS+ configuration file can be passed to the IOLAN
after authentication.
Default: Disabled
Enable Accounting Enables/disables TACACS+ accounting.
Default: Disabled
Accounting
The primary TACACS+ host that is used for accounting.
Primary Host
Default: None
220
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Authentication
Accounting
Secondary Host
The secondary TACACS+ host that is used for accounting, should the primary
accounting TACACS+ host fail to respond.
Default: None
Accounting Port
The port number that TACACS+ listens to for accounting requests.
Default: 49
Accounting Secret The TACACS+ shared secret is used to encrypt/decrypt TACACS+ packets in
communications between two devices. The shared secret may be any
alphanumeric string. Each shared secret must be configured on both client and
server sides.
SecurID
Overview
If you need to reset the SecurID secret, select Tools, Reset, Reset SecurID Node Secret.
Field Descriptions
Configure the following parameters:
Primary/Master
Host
The first SecurID server that is tried for user authentication.
Default: None
Replica/Slave Host If the first SecurID server does not respond to an authentication request, this is
the next SecurID server that is tried for user authentication.
Default: None
UDP Port
The port number that SecurID listens to for authentication requests.
Default: 5500
Encryption Type
The type of encryption that will be used for SecurID server communication.
Data Options: DES, SDI
Default: SDI
s
Legacy
If you are running SecurID 3.x or 4.x, you need to run in Legacy Mode. If you
are running SecurID 5.x or above, do not select Legacy Mode.
Default: Disabled
221
Download from Www.Somanuals.com. All Manuals Search And Download.
Authentication
NIS
Field Descriptions
Configure the following parameters:
NIS Domain
The NIS domain name.
Primary NIS Host The primary NIS host that is used for authentication.
Default: None
Secondary NIS Host The secondary NIS host that is used for authentication, should the primary NIS
host fail to respond.
Default: None
222
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
SSH
SSH
Overview
The IOLAN contains SSH Server software that you need to configure if the IOLAN is going to be
accessed via SSH. If you specify more than one Authentication method and/or Cipher, the IOLAN
will negotiate with the client and use the first authentication method and cipher that is compatible
with both systems.
Functionality
When you are using the SSH connection protocol, keys need to be distributed to all users and the
IOLAN. Below are a couple of example scenarios for key/certificate distribution.
Users Logging into the IOLAN Using SSH
This scenario applies to serial ports configured for Console Management using the SSH protocol. In
the following example, users are connecting to the IOLAN via SSH from the LAN. Therefore, the
following keys need to be exchanged:
z
Upload the IOLAN SSH Public Key to each user’s host machine who is connecting and logging
into the IOLAN using SSH.
z
Download the SSH Public Key from each user’s host machine who is connecting and logging
into the IOLAN using SSH.
Lynn
Device Server Public Key
Lynn Private Key
Tracy
Device Server Public Key
Tracy Private Key
SSH
Network
Device Server
Device Server Private Key
Lynn Public Key
Dennis
Device Server Public Key
Dennis Private Key
Server
Tracy Public Key
Dennis Public Key
223
Download from Www.Somanuals.com. All Manuals Search And Download.
SSH
Users Passing Through the IOLAN Using SSH (Dir/Sil)
This scenario applies to serial ports configured for the Terminal profile and are required to login to
the IOLAN. The user’s service is set to the SSH protocol, therefore, users first log into the IOLAN
and then are connected to a specified host (configured for the user when User Service SSH is
selected) through an SSH connection. Lynn and Tracy automatically connect to the HR Server and
Dennis automatically connects to the Development Server via SSH through the IOLAN. All the SSH
negotiation is being done between the IOLAN and the target servers, therefore, the following keys
need to be exchanged:
z
Download the SSH Host Public Key to the IOLAN for each of the hosts that the IOLAN is
connecting to.
z
z
Download the SSH User Private Key for each user whose User Service is set to SSH.
Copy the SSH User Public Key to the host that the user is connecting to (this is done outside the
scope of the IOLAN).
Lynn
Tracy
Sales Server
SSH
Device Server
Sales Server Private Key
Dennis Public Key
Sales Server Public Key
HR Server Public Key
Lynn Private Key
Dennis
Tracy Private Key
Dennis Private Key
HR Server
HR Server Private Key
Lynn Public Key
Tracy Public Key
224
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
SSH
Field Descriptions
Configure the following parameters:
Allow SSH-1
Protocol
Allows the user’s client to negotiate an SSH-1 connection, in addition to SSH-
2.
Default: Disabled
RSA
DSA
When a client SSH session requests RSA authentication, the IOLAN’s SSH
server will authenticate the user via RSA.
Default: Enabled
When a client SSH session requests DSA authentication, the IOLAN’s SSH
server will authenticate the user via DSA.
Default: Enabled
Keyboard-
Interactive
The user types in a password for authentication.
Default: Enabled
Password
3DES
The user types in a password for authentication.
Default: Enabled
The IOLAN SSH server’s 3DES encryption is enabled/disabled.
Default: Enabled
CAST
The IOLAN SSH server’s CAST encryption is enabled/disabled.
Default: Enabled
Blowfish
Arcfour
AES
The IOLAN SSH server’s Blowfish encryption is enabled/disabled.
Default: Enabled
The IOLAN SSH server’s Arcfour encryption is enabled/disabled.
Default: Enabled
The IOLAN SSH server’s AES encryption is enabled/disabled.
Default: Enabled
225
Download from Www.Somanuals.com. All Manuals Search And Download.
SSL/TLS
Break String
The break string used for inband SSH break signal processing. A break signal
is generated on a specific serial port only when the server's break option is
enabled and the user currently connected using reverse SSH has typed the
break string exactly.
Field Format: maximum 8 characters
Default: ~break, where ~ is tilde
Enable Verbose
Output
Displays debug messages on the terminal.
Default: Disabled
Allow Compression Requests compression of all data. Compression is desirable on modem lines
and other slow connections, but will only slow down things on fast networks.
Default: Disabled
SSL/TLS
Overview
When SSL/TLS is configured, data is encrypted between the IOLAN and the host/device (which must
also support SSL/TLS). When you configure the SSL/TLS settings in the System section, you are
configuring the default global SSL/TLS settings; you are not configuring an SSL/TLS server.
Functionality
You can create an encrypted connection using SSL/TLS for the following profiles: TruePort, TCP
Sockets, Terminal (the user’s Service must be set to SSL_Raw), Serial Tunneling, Virtual Modem,
and Modbus.
When configuring SSL/TLS, the following configuration options are available:
z
z
You can set up the IOLAN to act as an SSL/TLS client or server.
There is an extensive selection of SSL/TLS ciphers that you can configure for your SSL/TLS
z
You can enable peer certificate validation, for which you must supply the validation criteria that
was used when creating the peer certificate (this is case sensitive).
226
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
SSL/TLS
Field Descriptions
Configure the following parameters:
SSL/TLS Version Specify whether you want to use:
z
Any—The IOLAN will try a TLSv1 connection first. If that fails, it will
try an SSLv3 connection. If that fails, it will try an SSLv2 connection.
z
z
TLSv1—The connection will use only TLSv1.
SSLv3—The connection will use only SSLv3.
Default: Any
SSL/TLS Type
Specify whether the IOLAN serial port will act as an SSL/TLS client or server.
Default: Client
Cipher Suite Button Click this button to specify SSL/TLS connection ciphers.
Validate Peer
Certificate
Enable this option when you want the Validation Criteria to match the Peer
Certificate for authentication to pass. If you enable this option, you need to
download an SSL/TLS certificate authority (CA) list file to the IOLAN.
Default: Disabled
Validation Criteria Click this button to create peer certificate validation criteria that must be met
Button
for a valid SSL/TLS connection.
SSL Certificate
Passphrase
This is the SSL/TLS passphrase used to generate an encrypted RSA/DSA
private key. This private key and passphrase are required for both HTTPS and
SSL/TLS connections, unless an unencrpyted private key was generated, then
the SSL passphrase is not required. Make sure that you download the SSL
private key and certificate if you are using the secure HTTP option (HTTPS) or
SSL/TLS. If both RSA and DSA private keys are downloaded to the IOLAN,
they need to be generated using the same SSL passphrase for both to work.
227
Download from Www.Somanuals.com. All Manuals Search And Download.
SSL/TLS
Cipher Suite Field Descriptions
The SSL/TLS cipher suite is used to encrypt data between the IOLAN and the client. You can specify
up to five cipher groups.
The following buttons are available on the Cipher Suite window:
Add Button
Adds a cipher to the cipher list.
Edit Button
Edits a cipher in the cipher list.
Delete Button
Move Up Button
Deletes a cipher from the cipher list.
Moves a cipher up in preference in the cipher list.
Move Down Button Moves a cipher down in preference in the cipher list.
228
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
SSL/TLS
Adding/Editing a Cipher
Configure the following parameters:
Encryption
Select the type of encryption that will be used for the SSL connection.
Data Options:
z
z
z
z
z
z
Any—Will use the first encryption format that can be negotiated.
AES
3DES
DES
ARCFOUR
ARCTWO
Default: Any
Min Key Size
Max Key Size
Key Exchange
The minimum key size value that will be used for the specified encryption
type.
Data Options: 40, 56, 64, 128, 168, 256
Default: 40
The maximum key size value that will be used for the specified encryption
type.
Data Options: 40, 56, 64, 128, 168, 256
Default: 256
The type of key to exchange for the encryption format.
Data Options:
z
Any—Any key exchange that is valid is used (this does not, however,
include ADH keys).
z
z
RSA—This is an RSA key exchange using an RSA key and certificate.
EDH-RSA—This is an EDH key exchange using an RSA key and
certificate.
z
z
EDH-DSS—This is an EDH key exchange using a DSA key and
certificate.
ADH—This is an anonymous key exchange which does not require a
private key or certificate. Choose this key if you do not want to
authenticate the peer device, but you want the data encrypted on the
SSL/TLS connection.
Default: Any
229
Download from Www.Somanuals.com. All Manuals Search And Download.
SSL/TLS
HMAC
Select the key-hashing for message authentication method for your encryption
type.
Data Options:
z
z
z
Any
MD5
SHA1
Default: Any
Validation Criteria Field Descriptions
If you choose to configure validation criteria, then the information in the peer SSL/TLS certificate
must match exactly the information configured in this window in order to pass peer authentication
and create a valid SSL/TLS connection.
Configure the following parameters:
Country
A country code; for example, US. This field is case sensitive in order to
successfully match the information in the peer SSL/TLS certificate.
Data Options: Two characters
State/Province
Locality
An entry for the state/province; for example, IL. This field is case sensitive in
order to successfully match the information in the peer SSL/TLS certificate.
Data Options: Maximum 128 characters
An entry for the location; for example, Chicago. This field is case sensitive in
order to successfully match the information in the peer SSL/TLS certificate.
Data Options: Maximum 128 characters
Organization
An entry for the organization; for example, Accounting. This field is case
sensitive in order to successfully match the information in the peer SSL/TLS
certificate.
Data Options: Maximum 64 characters
Organization Unit An entry for the unit in the organization; for example, Payroll. This field is
case sensitive in order to successfully match the information in the peer
SSL/TLS certificate.
Data Options: Maximum 64 characters
230
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
VPN
Common Name
Email
An entry for common name; for example, the host name or fully qualified
domain name. This field is case sensitive in order to successfully match the
information in the peer SSL/TLS certificate.
Data Options: Maximum 64 characters
An entry for an email address; for example, [email protected]. This field
is case sensitive in order to successfully match the information in the peer
SSL/TLS certificate.
Data Options: Maximum 64 characters
VPN
Overview
A Virtual Private Network (VPN) creates a secure, dedicated communications network tunnelled
through another network.
You can configure the IOLAN for:
z
z
z
z
a host-to-host Virtual Private Network (VPN) connection
a host-to-network VPN connection
a network-to-network VPN connection
or host/network-to-IOLAN VPN connection (allowing serial devices connected to the IOLAN to
communicate data to a host/network).
In addition to being able to configure up to 64 IPsec tunnels, you can configure an L2TP/IPsec tunnel
that will allow hosts to create a VPN tunnel to the IOLAN. The L2TP/IPsec VPN protocol is required
by the Windows XP operating system.Windows Vista and Server 2008 support both VPN protocols.
Before you enable/configure any VPN tunnels, you should configure any exceptions or you
might not be able to access the IOLAN except through a VPN tunnel or the console port. See
Note:
If you are configuring IPsec and/or L2TP/IPsec, you must also enable the IPsec service
found in Security, Services navigation tree.
Functionality
The information in this section applies only to setting up IPsec VPN tunnels, not L2TP/IPsec VPN
tunnels.
The IOLAN can be configured as a VPN gateway using the IPsec protocol. You can configure the
VPN connection using two IOLANs as the local and remote VPN gateways or the IOLAN as the
local VPN gateway and a host/server running the VPN software as the remote VPN gateway.
If the VPN tunnel is being configured for an IPv6 network that is going through a router(s), the
router(s) must have manual IPv6 address entry capability, similar to what Windows Vista provides.
VPN servers/clients can support various VPN parameters. However, the following parameters are
REQUIRED to be set to the following values to support a VPN tunnel between the IOLAN and a
VPN server/client:
perfect forward secrecy: no
protocol: ESP
mode: tunnel (not transport)
opportunistic encryption: no
aggressive mode: no
231
Download from Www.Somanuals.com. All Manuals Search And Download.
VPN
IKE Phase 1 Proposals
The following IKE Phase 1 proposals are supported by the IOLAN VPN gateway:
z
z
z
Ciphers—3DES, AES
Hashes—MD5, SHA1
Diffie-Hellman Groups—2 (MODP1024), 5 (MODP1536), 14 (MODP2048), 15 (MODP3072),
16 (MODP4096), 17 (MODP6144), 18 (MODP8192)
ESP Phase 2 Proposals
The following ESP Phase 2 proposals are supported by the IOLAN VPN gateway:
z
z
Ciphers—3DES, AES
Authentication Algorithms—MD5, SHA1, SHA2
IPsec
When an IPsec tunnel becomes active, you are requiring that all access to the IOLAN go through the
for more information on exceptions) or you will not be able to access the IOLAN through the
network unless you are configured to go through the IPsec tunnel (you can still access the IOLAN
through the Console port).
Field Descriptions
The following buttons are available:
Add Button
Edit Button
Delete Button
Click this button to add a new IPsec VPN tunnel.
Select an existing IPsec VPN tunnel to edit the tunnel’s parameters.
Select an existing IPsec VPN tunnel to remove the tunnel.
232
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
VPN
Adding/Editing the IPsec Tunnel
When you click the Add button or select an IPsec tunnel and click the Edit button, the following
window is displayed:
Configure the following parameters:
Name
Provide a name for the IPsec VPN tunnel to make it easy to identify.
Text Characteristics: Maximum of 16 characters, spaces not allowed
Authentication
Method
Specify the authentication method that will be used between VPN peers to
authenticate the VPN tunnel.
Data Options:
z
Shared Secret—A text-based secret that is used to authenticate the IPsec
tunnel (case sensitive). This applies to all VPN tunnels (IPsec and
L2TP/IPsec).
z
RSA Signature—RSA signatures are used to authenticate the IPsec
tunnel. When using this authentication method, you must download the
IPsec RSA public key to the IOLAN and upload the IPsec RSA public key
from the IOLAN to the VPN gateway.
z
X.509 Certificate—X.509 certificates are used to authenticate the IPsec
tunnel. When using this authentication method, you must include the
signing authority’s certificate information in the SSL/TLS CA list and
download it to the IOLAN.
Default: Shared Secret
233
Download from Www.Somanuals.com. All Manuals Search And Download.
VPN
Secret/Remote
Validation Criteria
Button
Depending on the Authentication Method:
Shared Secret—Specify the text-based secret that is used to authenticate the
IPsec tunnel (case sensitive). This applies to all VPN tunnels (IPsec and
L2TP/IPsec).
X.509 Certificate—Specify the remote X.509 certificate validation criteria that
must match for successful authentication (case sensitive). Note that all
validation criteria must be configured to match the X.509 certificate. An
asterisk (*) is valid as a wildcard.
information on the X.509 certificate validation criteria.
Local Device
When the VPN tunnel is established, one side of the tunnel is designated as
Right and the other as Left. You are configuring the IOLAN-side of the VPN
tunnel.
Data Options: Left, Right
Default: Left
Local IP Address The IP address of the IOLAN. You can specify %defaultroutewhen the IP
address of the IOLAN is not always known (for example, when it gets its IP
address from DHCP). When %defaultrouteis used, a default gateway must
be configured in the route table (Network, Advanced, Route List tab).
Field Format: IPv4 address, IPv6 address, FQDN, %defaultroute
Local External IP When NAT Traversal (NAT_T) is enabled, this is IOLAN’s external IP address
Address
or FQDN. When the IOLAN is behind a NAT router, this will be its public IP
address.
Field Format: IPv4 address, IPv6 address, FQDN
Local Next Hop
The IP address of the router/gateway that will forward data packets to the
remote VPN (if required). The router/gateway must reside on the same subnet
at the IOLAN. Leave this parameter blank if you want to use the Default
Gateway configured in the IOLAN.
Field Format: IPv4 or IPv6 address
Local Host/Network The IP address of a specific host, or the network address that the IOLAN will
Address
provide a VPN connection to.
Field Format: IPv4 or IPv6 address
Local IPv4 Subnet The subnet mask of the local IPv4 network. Keep the default value when you
Mask
are configuring a host-to-host VPN connection.
Default: 255.255.255.255
Local IPv6 Prefix The prefix bits of the local IPv6 network. Keep the default value when you are
Bits
configuring a host-to-host VPN connection.
Default: 0
Remote IP Address The IP address or FQDN of the remote VPN peer. If you want to accept a VPN
connection from any VPN peer, you can enter %anyin this field.
Field Format: IPv4 address, IPv6 address, FQDN, %any
Remote External IP When NAT Traversal (NAT_T) is enabled, the remote VPN’s public external IP
Address
address or FQDN.
Field Format: IPv4 address, IPv6 address, FQDN
234
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
VPN
Remote Next Hop The IP address of the router/gateway that will forward data packets to the
IOLAN (if required). The router/gateway must reside on the same subnet at the
remote VPN.
Field Format: IPv4 or IPv6 address
Remote
Host/Network
Address
The IP address of a specific host or the network address that the IOLAN will
provide a VPN connection to. If the IPsec tunnel is listening for connections
(Boot Action set to Add), and the field value is left at 0.0.0.0, any VPN peer
with a private remote network/host that conforms to RFC 1918 (10.0.0.0/8,
172.16.0.0./12, 192.168.0.0/16) will be allowed to use this tunnel if it
successfully authenticates.
Field Format: IPv4 or IPv6 address
Remote IPv4
Subnet Mask
The subnet mask of the remote IPv4 network. Keep the default value when you
are configuring a host-to-host VPN connection.
Default: 255.255.255.255
Remote IPv6 Prefix The prefix bits of the remote IPv6 network. Keep the default value when you
Bits
are configuring a host-to-host VPN connection.
Default: 0
Boot Action
Determines the state of the VPN network when the IOLAN is booted.
Data Options:
z
z
z
Start—Starts the VPN network, initiating communication to the remote
VPN.
Add—Adds the VPN network, but doesn’t initiate a connection to the
remote VPN.
Ignore—Maintains the VPN network configuration, but the VPN network
is not started and cannot be started through the IPsec command option.
When defining peer VPN gateways, one side should be defined as Start
(initiate) and the other as Add (listen). It is invalid to define both gateways as
Add. VPN connection time can take longer when both gateways are set to
Start, as both sides will attempt to initiate the same VPN connection.
Default: Start
Shared Secret Field Description
When the Authentication Method is set to Shared Secret, you can enter a secret that applies to all
VPN tunnels (both the IPsec and L2TP/IPsec protocols) to successfully authenticate and create a
valid connection.
Configure the following parameter:
Secret
When the Authentication Method is set to Shared Secret, enter the case-
sensitive secret word.This applies to all VPN tunnels (IPsec and L2TP/IPsec).
Field Format: Maximum of 16 characters, spaces not allowed
235
Download from Www.Somanuals.com. All Manuals Search And Download.
VPN
Remote Validation Criteria Field Descriptions
When the Authentication Method is set to X.509 Certificate, you can configure the remote
validation criteria. The information in the remote X.509 certificate must match exactly the
information configured in this window in order to successfully authenticate and create a valid
connection.
Configure the following parameters:
Country
A country code; for example, US. This field is case sensitive in order to
successfully match the information in the remote X.509 certificate.
Data Options: Two characters, asterisk (*) works as a wildcard
State/Province
Locality
An entry for the state/province; for example, IL. This field is case sensitive in
order to successfully match the information in the remote X.509 certificate.
Data Options: Maximum 128 characters, asterisk (*) works as a wildcard
An entry for the location; for example, Chicago. This field is case sensitive in
order to successfully match the information in the remote X.509 certificate.
Data Options: Maximum 128 characters, asterisk (*) works as a wildcard
Organization
An entry for the organization; for example, Accounting. This field is case
sensitive in order to successfully match the information in the remote X.509
certificate.
Data Options: Maximum 64 characters, asterisk (*) works as a wildcard
Organization Unit An entry for the unit in the organization; for example, Payroll. This field is
case sensitive in order to successfully match the information in the remote
X.509 certificate.
Data Options: Maximum 64 characters, asterisk (*) works as a wildcard
Common Name
Email
An entry for common name; for example, the host name or fully qualified
domain name. This field is case sensitive in order to successfully match the
information in the remote X.509 certificate.
Data Options: Maximum 64 characters, asterisk (*) works as a wildcard
An entry for an email address; for example, [email protected]. This field
is case sensitive in order to successfully match the information in the remote
X.509 certificate.
Data Options: Maximum 64 characters, asterisk (*) works as a wildcard
236
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
VPN
L2TP/IPsec
Many operating systems support L2TP/IPsec VPN tunnels, however, Windows XP requires this VPN
tunnel protocol. When L2TP/IPsec is enabled, the IOLAN will listen for L2TP/IPsec VPN tunnel
requests.
When you enable L2TP/IPsec, you are requiring that all access to the IOLAN go through the
information on exceptions) or you will not be able to access the IOLAN through the network unless
you are configured to go through the L2TP/IPsec tunnel (you can still access the IOLAN through the
Console port).
Field Descriptions
Configure the following parameters:
Allow L2TP/IPsec When enabled, the IOLAN listens for L2TP/IPsec VPN tunnel connections.
connections
Note: to allow non-VPN tunnel connections to the IOLAN, you must create
entries in the VPN Exceptions list.
Default: Disabled
Local IP Address The IPv4 address that the IOLAN will listen on for L2TP/IPsec connections. If
the default value (0.0.0.0) is kept, the IOLAN will use the Default Gateway
value (if no Default Gateway is specified, L2TP/IPsec VPN connections will
not be established).
Default: 0.0.0.0
Authentication
Method
Specify the authentication method that will be used between VPN peers to
authenticate the VPN tunnel.
Data Options:
z
z
Shared Secret—A text-based secret that is used to authenticate the IPsec
tunnel (case sensitive).
X.509 Certificate—X.509 certificates are used to authenticate the IPsec
tunnel. When using this authentication method, you must include the
signing authority’s certificate information in the SSL/TLS CA list and
download it to the IOLAN.
Default: Shared Secret
237
Download from Www.Somanuals.com. All Manuals Search And Download.
VPN
Remote Validation Depending on the Authentication Method:
Criteria
Shared Secret—Specify the text-based secret that is used to authenticate the
IPsec tunnel (case sensitive). This applies to all VPN tunnels (IPsec and
L2TP/IPsec).
X.509 Certificate—Specify the remote X.509 certificate validation criteria
that must match for successful authentication (case sensitive). Note that all
validation criteria must be configured to match the X.509 certificate. An
asterisk (*) is valid as a wildcard.
information on the X.509 certificate validation criteria.
IPv4 Local IP
Address
Specify the unique IPv4 address that hosts accessing the IOLAN through the
L2TP tunnel will use.
Field Format: IPv4 address
IPv4 Remote IP
Start Address
Specify the first IPv4 address that can be assigned to incoming hosts through
the L2TP tunnel.
Field Format: IPv4 address
IPv4 Remote IP
End Address
Specify the end range of the IPv4 addresses that can be assigned to incoming
hosts through the L2TP tunnel.
Field Format: IPv4 address
Authentication
Specify the authentication method that will be used for the L2TP tunnel.
Data Options: CHAP, PAP, Both
Default: Both
Exceptions
Exceptions allow specific hosts or any host in a network to access the IOLAN outside of a VPN
tunnel. This is especially useful when allowing local network hosts access to the IOLAN when VPN
tunnels have been configured for remote user security.
Field Descriptions
The following buttons are available:
Add Button
Edit Button
Click the Add button to add a VPN exception to the Exception List.
Highlight an Exception List entry and click the Edit button to change the entry.
238
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
VPN
Delete Button
Highlight an Exception List entry and click the Delete button to remove the
entry from the list.
Adding/Editing a VPN Exception
The following parameters are available:
IP Address
The IP address of the host that will communicate with the IOLAN outside of
the VPN tunnel.
Field Format: IPv4 or IPv6 address
Network
The network address that will communicate with the IOLAN outside of the
VPN tunnel.
Field Format: IPv4 or IPv6 address
IPv4 Subnet Mask The IPv4 subnet mask for the IPv4 network.
Default: 0.0.0.0
IPv6 Prefix Bits
The IPv6 prefix bits for the IPv6 network.
Range: 0-128
Default: 0
Advanced
Field Description
Configure the following parameter:
Use NAT Traversal NAT Traversal should be enabled when the IOLAN is communicating through
(NAT_T)
a router/gateway to a remote VPN that also has NAT Traversal enabled.
Default: Enabled
239
Download from Www.Somanuals.com. All Manuals Search And Download.
Services
Services
Overview
Services are either daemon or client processes that run on the IOLAN. You can disable any of the
services for security reasons.
Functionality
If you disable any of the daemons, it can affect how the IOLAN can be used or accessed. For
example, if you disable WebManager (HTTPS and HTTP) services, you will not be able to access the
IOLAN with the WebManager. If you disable the DeviceManager service, the DeviceManager will
not be able to connect to the IOLAN. If you do not want to allow users to Telnet to the IOLAN, you
can disable the Telnet Server service; therefore, disabling daemons can also be used as an added
security method for accessing the IOLAN.
By default, all daemon and client applications are enabled, except IPsec, and running on the IOLAN.
Field Descriptions
Enable/disable the following options:
Telnet Server
Telnet daemon process in the IOLAN listening on TCP port 23.
Default: Enabled
TruePort Full
Mode
The TruePort daemon process in the IOLAN that supports TruePort Full Mode
on UDP port 668. You can still communicate with the IOLAN in Lite Mode
when this service is disabled.
Default: Enabled
Syslog Client
Modbus
Syslog client process in the IOLAN.
Default: Enabled
Modbus daemon process in the IOLAN listening on port 502.
Default: Enabled
SNMP
SNMP daemon process in the IOLAN listening on port 161.
Default: Enabled
240
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Services
DeviceManager
DeviceManager daemon process in the IOLAN. If you disable this service, you
will not be able to connect to the IOLAN with the DeviceManager application.
The DeviceManager listens on port 33812 and sends on port 33813.
Default: Enabled
WebManager
(HTTP)
WebManager daemon process in the IOLAN listening on port 80.
Default: Enabled
WebManager
(HTTPS)
Secure WebManager daemon process in the IOLAN listening on port 443.
Default: Enabled
If you are using the WebManager in secure mode (HTTPS), you need to
download the SSL/TLS private key and certificate to the IOLAN. You also
need to set the SSL Passphrase parameter with the same password that was
information.
SSH Server
SNTP Client
SSH daemon process in the IOLAN listening on TCP port 22.
Default: Enabled
Simple Network Time Protocol client process in the IOLAN.
Default: Enabled
Dynamic Routing Dynamic Routing daemon process in the IOLAN listening on port 520.
(RIP)
Default: Enabled
IPsec
IPsec daemon process in the IOLAN listening and sending on UDP port 500.
Default: Disabled
241
Download from Www.Somanuals.com. All Manuals Search And Download.
Keys and Certificates
Keys and Certificates
When you are using SSH, SSL/TLS, LDAP, or HTTPS, you will need to install keys and/or
certificates or get server keys in order to make those options work properly. All certificates need to be
created and all keys need to be generated outside of the IOLAN, with the exception of the IOLAN
SSH Public keys, which already exist in the IOLAN. SSH keys must be generated using the
OpenSSH format.
Certificate Authorities (CAs) such as Verisign, COST, GTE CyberTrust, etc. can issue certificates. Or,
you can create a self-signed certificate using a utility such as OpenSSL.
To download or keys, a certificate, or a CA list or to upload the IOLAN public SSH key, select Tools,
Advanced, Keys and Certificates.
The following fields are available:
Key / Certificate
Select the key or certificate that you want to download to the IOLAN or upload
the IOLAN SSH Public Key.
Data Options:
z
z
z
z
z
z
z
z
Upload Server SSH Public Key, used for Console Management serial
ports set to SSH connections
Download SSH User Public Key, used for Console Management serial
ports set to SSH connections
Download SSH User Private Key, used for IOLAN Users on serial ports
set to the Terminal profile using SSH connections
Download SSH Host Public Key, used for IOLAN Users on serial ports
set to the Terminal profile using SSH connections
Download SSL/TLS Private Key, required if using HTTPS and/or
SSL/TLS
Download SSL/TLS Certificate, required if using HTTPS and/or
SSL/TLS
Download SSL/TLS CA, required if using LDAP with TLS, SSL/TLS,
and/or X.509 certificate authentication for an IPsec tunnel
Upload IPsec RSA Public Key, must be installed on the remote VPN
gateway when the RSA Signature is the IPsec tunnel authentication
method
z
Download IPsec RSA Public Key, from the remote VPN gateway when
RSA Signature is the IPsec tunnel authentication method
File Name
The file that you are going to download/upload to/from the IOLAN via TFTP.
242
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Keys and Certificates
Key Type
Specify the type of authentication that will be used for the SSH session. The
following list details the keys that support each key type.
Data Options:
z
z
z
*RSA—Server SSH Public Key, SSH User Public Key, SSH User Private
Key, SSH Host Public Key
DSA—Server SSH Public Key, SSH User Public Key, SSH User Private
Key, SSH Host Public Key
**RSA1—SSH User Private Key, SSH Host Public Key
*RSA is used with SSH-2
**RSA1 is used with SSH-1
v
User Name
Host Name
The name of the user for whom you are downloading the SSH User Public or
Private Key to the IOLAN.
The name of the host for which you are downloading the SSH Host Public or
Private Key to the IOLAN.
IPsec Tunnel Name Select the IPsec tunnel that the RSA public key is being used to authenticate.
243
Download from Www.Somanuals.com. All Manuals Search And Download.
Keys and Certificates
244
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring I/O
Interfaces
Chapter 10
10
Introduction
There is a line of IOLANs that can control/monitor the following types
of I/O:
z
z
z
z
Analog Input
Digital Input/Output
Relay Output
Temperature Input
Some of the models are I/O combinations and some of the models support one I/O type, although all
of the SDS I/O models are extensions of the feature rich, extended temperature SDS IOLAN.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
245
Download from Www.Somanuals.com. All Manuals Search And Download.
Settings
Settings
Overview
The I/O Interfaces Settings window configures the parameters that are global to all I/O channels.
I/O Access Functionality
Field Descriptions
Configure the following parameters:
Enable I/O Access Enables/disables Modbus as the communication protocol for all the I/O
to Modbus protocol channels.
Default: Disabled
UID
This is the UID you are assigning to the IOLAN, which is acting as a Modbus
slave.
Default: 255
Advanced Modbus Click this button to configure global Modbus Slave settings.
Settings Button
Allow Modbus TCP Allows a host running a Modbus/TCP application to communicate to the I/O
Application (API) channels using the standard Modbus API.
Default: Permanently enabled when Enable I/O Access via Modbus protocol
is enabled
coil/registration descriptions.
Allow Modbus
RTU/ASCII via
TruePort
Enables/disables serial Modbus application access to the I/O over the network
using the TruePort COM redirector feature.
Default: Disabled
285 for the Perle API.
246
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Settings
Enable I/O Access Enables/disables serial application access to the I/O over the network using the
via TruePort
TruePort COM redirector feature.
Default: Disabled
Enable SSL
Encryption
Enables/disables SSL encryption for the I/O data between the IOLAN and the
TruePort host.
Default: Disabled
Listen TCP Port
The TCP port that the IOLAN will listen to for I/O channel data requests from
TruePort.
Default: 33816
Allow I/O Access Allows serial application access to the I/O over the network using the TruePort
via API through
TruePort
COM redirector feature via a custom application using the Perle API.
Default: Permanently enabled when Enable I/O Access via TruePort is
enabled
285 for the Perle API.
Advanced Slave Modbus Settings
The parameters in this window configure global Modbus gateway settings that apply to all serial ports
configured first as the Modbus Gateway profile and then as a Modbus Slave.
Configure the following parameters:
TCP/UDP Port
The network port number that the Slave Gateway will listen on for both TCP
and UDP messages.
Default: 502
Next Request Delay A delay, in milliseconds, to allow serial slave(s) to re-enable receivers before
issuing next Modbus Master request.
Range: 0-1000
Default: 50 ms
Enable Serial
When enabled, a UID of 0 (zero) indicates that the message will be broadcast to
Modbus Broadcasts all Modbus Slaves.
Default: Disabled
247
Download from Www.Somanuals.com. All Manuals Search And Download.
Settings
Request Queuing When enabled, allows multiple, simultaneous messages to be queued and
processed in order of reception.
Default: Enabled
Embedded
Remapped
When this option is selected, the address of the slave Modbus device is
embedded in the message header.
Default: Enabled
Used for single device/port operation. Older Modbus devices may not include a
UID in their transmission header. When this option is selected, you can specify
the UID that will be inserted into the message header for the Modbus slave
device. This feature supersedes the Broadcast feature.
Default: Disabled
Remap UID
Specify the UID that will be inserted into the message header for the Slave
Modbus serial device.
Range: 1-247
Default: 1
Enable SSL/TLS
When enabled, Modbus Slave Gateway messages to remote TCP Modbus
using global settings Masters are encrypted via SSL/TLS.
Default: Disabled
248
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Settings
Failsafe Timer Functionality
Overview
The Failsafe Timer tab configures the I/O failsafe timer. The Failsafe Timer is enabled on a global
basis and provides a trigger mechanism that can be configured for each channel when no I/O
traffic/management has occurred for the specified amount of time. A Failsafe Action can be
configured for each Digital Output channel, each Serial Signal Output pin (DTR and RTS), and each
Relay channel to either Activate or Deactivate the output.
The Failsafe Timer has a different function when I/O Extension is enabled for Digital Output
channels, Relay channels, or the Serial Signal Output pins (DTR and RTS). For I/O Extension, the
Failsafe Timer provides a per channel or per serial signal output pin trigger mechanism that is
activated when there are no TCP sessions for the specified amount of time.
Field Descriptions
Configure the following parameters:
Enable I/O Failsafe Enables/disables the Failsafe Timer. This is the global setting that must be
Timer
enabled to set the Failsafe Action on the channel for digital output and relay
channels or output signal pins. When this timer expires because of no I/O
activity within the specified time interval, the Failsafe Action set for the
channel determines the action on the output. When the channel or serial signal
pin is configured for I/O extension, the timer expires there are no TCP sessions
for the specified time interval.
Default: Disabled
Timeout
The number of seconds that must elapse before the channel/serial signal pin
Failsafe Action is triggered.
Range: 1-9999
Default: 30 seconds
249
Download from Www.Somanuals.com. All Manuals Search And Download.
Settings
UDP Functionality
Overview
The UDP tab configures the I/O UDP broadcast settings. The I/O UDP broadcast feature periodically
broadcasts the I/O channel status in a UDP message.
You can configure up to four sets of IP address entries (each entry consisting of a start and end IP
address range) to broadcast I/O status data. The broadcast frequency of the UDP packets to the
configured UDP IP addresses can be defined to accommodate network traffic and monitoring PC
Field Descriptions
Configure the following parameters:
Enable UDP
Broadcast of I/O
Status
Enables/disables UDP broadcast of I/O channel status (data).
Default: Disabled
Broadcast Interval Enter the interval, in seconds, for UDP broadcasts of I/O channel status (data).
Range: 1-9999
Default: 30 seconds
Settings Button
Click this button to configure the UDP IP addresses that will receive the I/O
status information.
Settings window.
250
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Settings
I/O UDP Settings
Configure the following parameters:
UDP Entry
Start IP Address
End IP Address
Port
When enabled, broadcasts I/O status (data) to the specified range of IP
addresses.
Default: Disabled
The first host IP address in the range of IP addresses (for IPV4 or IPV6) that
the IOLAN will listen for messages from and/or send messages to.
Field Format: IPv4 or IPv6 address
The last host IP address in the range of IP addresses (for IPV4, not required for
IPV6) that the IOLAN will listen for messages from and/or send messages to.
Field Format: IPv4 address
The UDP port that the IOLAN will use to relay messages to servers/hosts.
Default: 0 (zero)
251
Download from Www.Somanuals.com. All Manuals Search And Download.
Settings
Temperature Functionality
Overview
The Temperature tab configures the temperature scale settings for T4 models.
Field Descriptions
Configure the following parameter:
Temperature Scale Select the temperature scale that will be used to display temperature data.
Data Options: Fahrenheit or Celsius
Default: Celsius
252
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Channels
The Channels section displays the I/O Channels window, through which you can enable/disable the
I/O channels.
Highlight a channel and then click the Edit button to configure the parameters for that channel.
Analog
Overview
Analog channels monitor current/voltage input. Note that the internal jumpers must match the
out how to set the internal jumpers.
For example, in an industrial freezer warehouse, the IOLAN A4R2 is used to monitor humidity
transducers, which are in place to help prevent freezer burn. If the humidity reaches a certain
percentage (monitored by an Analog channel) a syslog message is sent to the Monitoring Application.
The Monitoring Application then sends a command to the IOLAN via the Perle API that causes the
Relay channel to activate an internal freezer dehumidifier. The relay is turned off when the Analog
channel sends a clear syslog message to the Monitoring Application and the Relay channel is
deactivated.
A4D2
Relay
Network
Analog
Analog I/O
Relay
IOLAN
Monitoring
Application
Industrial
Freezers
Analog
253
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Field Descriptions
Configure the following parameters:
Description
Provide a description of the channel, making it easier to identify.
Data Options: Maximum 20 characters, including spaces
Type
Select the type of input being measured.
Data Options: Current or Voltage
Default: Current
Range
Select the range for the measurement type.
Data Options:
z
z
Current—0-20 mA, 4-20 mA
Voltage—+/- 10V, +/- 5V, +/- 1V, +/- 500mV, +/- 150mV
Default: Current is 0-20 mA. Voltage is +/- 10V.
Alarm Settings
Button
Click the Alarm Settings button to specify the trigger and clear levels for the
alarms. Notice that the Analog Alarm Settings window has two alarm
configuration views, a basic alarm view and an advanced alarm view.
254
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Digital Input
Overview
When the channel is set for digital input, it monitors voltage or current. Note that the internal jumpers
must match the software setting and must be set to Input, which is the default; see Digital I/O Module
on page 382 to find out how to set the internal jumpers.
Functionality
The Digital input channels allow you to configure the following options:
z
You can choose to remember the last state change, or latch, that occurred. Your options are to
latch (remember) when the state changes from inactive to active or active to inactive.
z
z
You can choose to invert the signal, which is useful if your sensor is wired in such a way that
closed is actually inactive, whereas closed is normally considered active.
You can also configure an alarm trigger and clear mode based on whether the Digital input is
active or inactive, sending an email, syslog message, and/or SNMP trap when the alarm is
triggered or cleared.
In an industrial freezer warehouse example, a D4 is used to monitor the open door sensor, so that
every time a freezer door is opened, an alarm is triggered and a syslog message is sent to a syslog
server, where the monitoring application notes the time.
D4
Input
Network
Digital I/O
IOLAN
Monitoring
Application
Input
Industrial
Freezers
255
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Field Descriptions
Configure the following parameters:
Description
Provide a description of the channel, making it easier to identify.
Data Options: Maximum 20 characters, including spaces
Input Mode
When selected, the channel will be reading the status of the line (input). The
internal jumpers must match the software configuration; the internal jumpers
are factory configured for Input Mode.
Default: Input Mode
Latch
Latches (remembers) the activity transition (active to inactive or inactive to
active).
Data Options: None, Inactive-to-Active, Active-to-Inactive
Default: None
Invert Signal
Trigger
When enabled, inverts the actual condition of the I/O signal in the status;
therefore, an inactive status will be displayed as active.
Default: Disabled
When the trigger condition is met, triggers the specified alarm action.
Data Options:
z
z
Disabled—No alarm settings. This is the default.
Inactive—When the expected Digital input is active, going inactive will
trigger an alarm.
z
Active—When the expected Digital input is inactive, going active will
trigger an alarm.
Default: Disabled
256
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Auto Clear Mode When enabled, automatically clears the alarm when the trigger condition
changes; for example, if the Trigger is Inactive and the alarm is triggered, once
the input becomes active again, the alarm will automatically be cleared
Default: Enabled
Manual Clear
Mode
When enabled, a triggered alarm must be manually cleared.
Default: Disabled
Email
Syslog
SNMP
When enabled, sends an email alert to an email account(s) set up in the System
settings when an alarm is triggered or cleared. The email alert data includes the
severity level and the value that caused the alarm to trigger or clear. The Email
Alert is associated with Level Critical.
Default: Disabled
When enabled, sends a message to syslog when an alarm is triggered or
cleared. The syslog entry includes the severity level and the value that caused
the alarm to trigger or clear. The syslog message is associated with Level
Critical.
Default: Disabled
When enabled, sends an SNMP trap when an alarm is triggered or cleared. The
trap consists of the severity level and whether the alarm was triggered or
cleared.
Default: Disabled
257
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Digital Output
Overview
When the channel is set for digital output, either voltage is applied to the channel or the channel is
grounded. Note that the internal jumpers must match the software setting and must be set to Output
internal jumpers.
Functionality
The Digital output channels support three types of Digital output: sink (voltage), source (ground), and
sink and source (apply voltage or ground). For the output type, you can configure the following
options:
z
z
You can choose to manually activate/deactivate the Digital output.
You can choose to manually activate/deactivate the Digital output and then specify that the
Digital output will either pulse (you get to specify the active and inactive pulse times)
continuously or for a specified number of pulse counts.
z
z
You can choose to manually activate/deactivate the Digital output and then specify a delay before
the output goes from inactive to active or active to inactive.
You can also specify a failsafe action that can either activate or inactivate the Digital output
information).
In an industrial freezer warehouse, the IOLAN D4 is used to monitor the freezer doors. When one of
the industrial freezer doors are left open for more than five minutes, the Monitoring Application
(using the Perle API) starts the Digital output sink, causing the strobe light on top of the offending
freezer to activate.
Output
D4
Input
Network
Digital I/O
Output
IOLAN
Monitoring
Application
Input
Industrial
Freezers
258
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Field Descriptions
Configure the following parameters:
Description
Provide a description of the channel, making it easier to identify.
Data Options: Maximum 20 characters, including spaces
Output Mode
When selected, the channel will drive the line (output). The internal jumpers
must match the software configuration, so if you change this setting to Output
Mode, you will have to also change the internal hardware jumpers.
Default: Disabled
Type
Specify the type of digital output.
Data Options:
z
z
z
Sink—Specifies that the channel will be grounded when active.
Source—Specifies that the channel will provide voltage when active.
Sink and Source—Specifies that channel will be grounded when it is
inactive and will provide voltage when it is active.
Default: Sink
Output
Specify how the channel output will be handled.
Data Options:
z
z
Manual—You must manually manipulate the channel output.
Pulse—Activates and deactivates the channel output activity in intervals
after it is manually activated.
z
z
Inactive-to-Active Delay—The channel output will remain inactive for
the specified time interval after it is manually started.
Active-to-Inactive Delay—The channel output will go inactive after the
specified time interval after it is manually started.
Default: Manual
259
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Pulse Mode
Pulse Count
When Output is set to Pulse, you can specify the manner of the pulse.
Data Options:
z
z
Continuous—Continuously pulses active and inactive.
Count—Pulses an active/inactive sequence for the specified number of
times.
Default: Continuous
The channel output will pulse for the specified number of times; each count
consists of an active/inactive sequence.
Default: 1
Inactive Signal
Width
How long the channel will remain inactive during pulse mode.
Range: 1-9999 x 100 ms
Default: 1 (100 ms)
Active Signal
Width
How long the channel will be active during the pulse mode.
Range: 1-9999 x 100 ms
Default: 1 (100 ms)
Delay
How long to delay an active-to-inactive or inactive-to-active setting after it is
manually started.
Range: 1-9999 x 100 ms
Default: 1 (100 ms)
Failsafe Action
When there has been no I/O activity within the specified time (set in the I/O
Interfaces, Settings on the Failsafe Timer tab) and the Failsafe Timer is
triggered.
Data Options:
z
z
z
None—The state of the Digital/Relay output remains the same, no change.
Activate Output—Activates the channel.
Deactivate Output—Deactivates the channel.
Default: None
260
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Relay
Overview
Relay channels can open or close a contact for a higher voltage circuit using a lower level control
voltage. The Relay output channels work as a physical on/off switch, and are used to drive higher
voltage devices with a lower controlling voltage.
You can configure the following Relay output channel options:
z
z
You can choose to manually activate/deactivate the Relay output.
You can choose to manually activate/deactivate the Relay output and then specify that the Relay
output will either pulse (you get to specify the active and inactive pulse times) continuously or
for a specified number of pulse counts.
z
z
You can choose to manually activate/deactivate the Relay output and then specify a delay before
the output goes from inactive to active or active to inactive.
You can also specify a failsafe action that can either active or inactivate the Relay output when
information).
In an industrial freezer warehouse, the IOLAN A4R2 is used to monitor humidity transducers, which
are used to help prevent freezer burn. If the humidity reaches a certain percentage (monitored by an
Analog channel) a syslog message is sent to the Monitoring Application, causing the Relay channel
to activate an internal freezer dehumidifier. The Relay channel is deactivated when the Analog
channel sends a clear syslog message to the Monitoring Application and the Relay channel is
deactivated.
A4D2
Relay
Network
Analog
Relay I/O
Relay
IOLAN
Monitoring
Application
Industrial
Freezers
Analog
261
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Field Descriptions
Configure the following parameters:
Description
Provide a description of the channel, making it easier to identify.
Data Options: Maximum 20 characters, including spaces
Output
Specify how the channel output will be handled.
Data Options:
z
z
Manual—You must manually manipulate the channel output.
Pulse—Activates and deactivates the channel output activity in intervals
after it is manually activated.
z
z
Inactive-to-Active Delay—The channel output will remain inactive for
the specified time interval after it is manually started.
Active-to-Inactive Delay—The channel output will go inactive after the
specified time interval after it is manually started.
Default: Manual
Pulse Mode
Pulse Count
When Output is set to Pulse, you can specify the manner of the pulse.
Data Options:
z
z
Continuous—Continuously pulses active and inactive.
Count—Pulses an active/inactive sequence for the specified number of
times.
Default: Continuous
The channel output will pulse for the specified number of times; each count
consists of an active/inactive sequence.
Default: 1
Inactive Signal
Width
How long the channel will remain inactive during pulse mode.
Range: 1-9999 x 100 ms
Default: 1 (100 ms)
262
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Active Signal
Width
How long the channel will be active during the pulse mode.
Range: 1-9999 x 100 ms
Default: 1 (100 ms)
Delay
How long to delay an active-to-inactive or inactive-to-active setting after it is
manually started.
Range: 1-9999 x 100 ms
Default: 1 (100 ms)
Failsafe Action
When there has been no I/O activity within the specified time (set in the I/O
Interfaces, Settings on the Failsafe Timer tab) and the Failsafe Timer is
triggered.
Data Options:
z
z
z
None—The state of the Digital/Relay output remains the same, no change.
Activate Output—Activates the channel.
Deactivate Output—Deactivates the channel.
Default: None
Digital I/O Extension
Overview
The Digital I/O extension feature connects a digital input signal to digital output(s)/relay(s) and/or a
TCP/IP application over an IP network. Therefore, when the state of the digital input changes, you
can also change the state of the digital output or relay channel or output serial signal pin on a local
I/O channel(s), other IOLAN I/O channels, other IOLAN serial signal pins, or the data can be sent to
an application(s).
For example, when the door opens (I/O digital input sensor) in a factory, a light goes on in the
reception office (remote IOLAN relay channel), and the door open/close is logged by an application
on a remote host.
Warehouse
IOLAN
Reception
Network
IOLAN
Remote Host
263
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Functionality
The Digital I/O extension feature requires the digital input to be connected to one or more digital
outputs/relays (local or on another IOLAN model), output serial signal pins, and/or TCP/IP
applications. In order to create a successful connection between the input and output or application,
one side must be must be set to Listen for connection and the other side must be set to Connect to.
When the state of an input channel changes, a message is sent to all sessions currently associated with
that channel.
When the IOLAN is communicating to an application, there is no need for the output channel or
application to respond to messages from the input channel. Each input channel is reported
individually, so the receiving application gets the status only at the point at which the channel state
has changed.
The message format (from input channel to output channel/application) consists of 20 bytes per
status; 10 bytes are currently used and 10 are being reserved for future use.
Message Type Input Number IOLAN MAC
Current Alarm Current Status
Reserved
(1 Byte) (1 Byte) Address (6 Bytes) State (1 Byte) of Input (1 Byte) (10 Bytes)
z
z
Message type: (1 Byte)
z
z
0 = Digital input status
1 = Serial I/O status
Input number: (1 Byte)
z
z
Digital input will be 1, 2, 3, or 4 to represent the channel number
Serial I/O will be 5 = DSR, 6 = DCD, or 7 = CTS
z
z
MAC Address of the IOLAN sending the input information. (6 Bytes)
Current Alarm State: (1 Byte)
z
z
0 = Not in alarm
1 = In Alarm
z
z
Current Status of Input: (1 Byte)
z
z
0 = Inactive for digital input.
1 = Active for digital input.
Reserved for future use. Reserved bytes will have the value 0x00. (10 Bytes)
Applications should be written in such a way so that they look at the Message type byte to determine
the format of the message. If the application encounters a Message type it does not recognize, it
should discard the message and read the next 20 byte block.
264
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Field Descriptions
The Local connection option is different depending on whether you are configuring a Digital Input
or a Digital Output/Relay channel. The Local connection option for Digital Input lists all the local
Digital Output channels or output serial signal pins that it is associated with. Digital Input can be
connected to multiple local Digital Output or Relay channels or output serial signal pins. However, a
Digital Output can only be associated with one Digital Input channel or input serial signal pin. The
Local connection option for Digital Output configures the specific local Digital Input channel or
input serial signal pin on the same IOLAN that it is to be connected to.
For a description of the SSL/TLS parameters (not available when Local connection is configured),
Digital Input/DSR/DCD/CTS
Digital Output/Relay/DTR/RTS
Configure the following parameters:
Enable I/O
extension
When enabled, the digital channel can be connected to:
z
A Digital output or relay (if the I/O model supports relay) channel on the
same IOLAN
z
z
Output Serial Signal Pins (DTR/RTS)
A Digital output channel on another IOLAN(s) or output serial signal pins
(DTR/RTS) on another IOLAN(s)
z
A TCP/IP application(s) running on a host on the network
Default: Disabled
Listen for
connection
When enabled, the channel/serial signal pin will wait for connections to be
initiated by another I/O channel or a TCP/IP application.
Default: Enabled
Input TCP Port
The TCP port that the channel/serial signal pin will use to listen for incoming
connections.
Default: 2000 for channel 1, then increments by one for each channel
265
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Allow Multiple
When this option is enabled, multiple I/O channels and/or TCP/IP applications
Hosts to Connect can connect to this channel/serial signal pin.
Default: Disabled
Connect to
When enabled, the channel/serial signal pin initiates communication to another
I/O channel or a TCP/IP application.
Default: Enabled
Host Name
TCP Port
The configured host or another IOLAN that the I/O channel will connect to.
Default: None
The TCP Port that the channel/serial signal pin will use to communicate to
another IOLAN or a TCP/IP application.
Default: 2000 for channel 1, then increments by one for each channel
Connect to Multiple When enabled, input channel or serial signal pin can communicate to multiple
Hosts
hosts running a TCP/IP application or I/O channels.
Default: Disabled
Define Additional Click this button to define the hosts/IOLANs that this channel or serial signal
Hosts Button
pin will connect to. This button is also used to define the Primary/Backup host
functionality.
Local connection When this option is enabled, the input or output, depending on how the channel
or serial signal pin is configured, will be associated with another local IOLAN
I/O channel or serial signal pin.
z
When the channel is configured as digital input or when configuring an
input serial signal pin, the Output Channels parameter displays all the
local digital output signals or relays that it is associated with.
z
When the channel is configured as digital output, you must select a local
digital input channel or input serial signal pin on the IOLAN.
Note that the Failsafe Action is not compatible this option.
Default: Disabled
Enable TCP
Keepalive
Enables a per-connection TCP keepalive feature. After the configured number
of seconds, the connection will send a gratuitous ACK to the network peer,
thus either ensuring the connection stays active OR causing a dropped
connection condition to be recognized.
This parameter needs to be used in conjunction with Monitor Connection
Status Interval parameter found in the Serial, Advanced, Advanced Settings
tab. The interval specifies the inactivity period before "testing" the connection.
Default: Disabled
266
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Adding/Editing Additional Hosts
You can define a list of hosts that the I/O channel will communicate to or a primary/backup host.
Configure the following parameters:
Define additional When this option is enabled, you can define up to 49 hosts/IOLANs that the
hosts to connect to I/O channel or serial signal pin will attempt communicate to. With this mode of
operation, the I/O channel will connect to multiple hosts/IOLANs
simultaneously.
Default: Enabled
Add Button
Edit Button
Delete Button
Click the Add button to add a host to the list of hosts that will be receiving
communication from the I/O channel or serial signal pin.
Highlight an existing host and click the Edit button to edit a host in the list of
hosts that will be receiving communication from the I/O channel.
Click the Delete button to delete a host to the list of hosts that will be receiving
communication from the I/O channel or serial signal pin.
Define a primary When this option is enabled, you need to define a primary host that the I/O
host and backup... channel will communicate to and a backup host, in the event that the I/O
channel loses communication to the primary host. The I/O channel will first
establish a connection to the primary host. Should the connection to the
primary host be lost (or never established), the I/O channel will establish a
connection the backup host. Once connected to the backup, the I/O channel will
attempt to re-establish a connection to the Primary host, once this is
successfully done, it gracefully shuts down the backup connection.
Default: Disabled
Primary Host
TCP Port
Specify a preconfigured host that the I/O channel or serial signal pin will
communicate to.
Default: None
Specify the TCP port that the I/O channel or serial signal pin will use to
communicate to the Primary Host.
Default: 2000 for channel 1, then increments by one for each channel
Backup Host
TCP Port
Specify a preconfigured host that the I/O channel or serial signal pin will
communicate to if the I/O channel cannot communicate with the Primary Host.
Default: None
Specify the TCP port that the channel or serial signal pin will use to
communicate to the Backup Host.
Default: 0
Adding/Editing a Multihost Entry
When you click the Add or Edit button, the Host Entry window appears. The hosts in the multihost
list must already be defined (see Host Table on page 98 to learn how to create a host). If you add a
host that was defined with its fully qualified domain name (FQDN), it must be resolvable by your
configured DNS server.
Configure the following parameters:
Host Name
Specify the preconfigured host that will be in the multihost list.
Default: None
267
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
TCP Port
Specify the TCP port that the I/O channel or serial signal pin will use to
communicate to the Host.
Default: 0
268
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Temperature
Temperature input channels monitor RTD or thermocouple temperature sensors inputs for the most
common ranges. You can also configure severity alarms that can send an email, a syslog message,
more information about the alarms.
RTD ranges are:
z Pt100 a=385 -50 to 150C
z Pt100 a=385 0 to 100C
z Pt100 a=385 0 to 200C
z Pt100 a=385 0 to 400C
z Pt100 a=392 -50 to 150C
z Pt100 a=392 0 to 100C
z Pt100 a=392 0 to 200C
z Pt100 a=392 0 to 400C
z Pt1000 a=385 -40 to 160C
z NiFe604 a=518 -80 to 100C
z NiFe604 a=518 0 to 100C
z Pt100 a=385 -200 to 200C z Pt100 a=392 -200 to 200C
IEC RTD 100 ohms.=0.00385
JIS RTD 100 ohms.=0.00392
Thermocouple ranges are:
z B 500 to 1800C
z E 0 to 1000C
z J 0 to 760C
z K 0 to 1370C
z R 500 to 1750C
z S 500 to 1750C
z T -100 to 400C
In the following example, a Temperature I/O IOLAN is used to monitor industrial freezer temperature
o
sensors, with an alarm set to send a syslog message if the temperature rises above 31 C.
T4
Network
Temperature I/O
IOLAN
Monitoring
Application
Industrial
Freezers
269
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Field Descriptions
Configure the following parameters:
Description
Provide a description of the channel, making it easier to identify.
Data Options: Maximum 20 characters, including spaces
Type
Specify the type of sensor you are using to measure temperature.
Data Options: RTD, Thermocouple
Default: RTD
Range
Specify the temperature range that you want to measure.
Data Options:
z
RTD—Pt100 a=385 -50 to 150C, Pt100 a=385 0 to 100C,
Pt100 a=385 0 to 200C, Pt100 a=385 0 to 400C,
Pt100 a=385 -200 to 200C, Pt100 a=392 -50 to 150C,
Pt100 a=392 0 to 100C, Pt100 a=392 0 to 200C,
Pt100 a=392 0 to 400C, Pt100 a=392 -200 to 200C,
Pt1000 a=385 -40 to 160C, NiFe604 a=518 -80 to 100C,
NiFe604 a=518 0 to 100C
z
Thermocouple—B 500 to 1800C, E 0 to 1000C,
J 0 to 760C, K 0 to 1370C, R 500 to 1750C,
S 500 to 1750C, T -100 to 400C
Default: RTD is Pt100 a=385 -50 to 150C. Thermocouple is J 0 to 760C.
s
Alarm Settings
Button
Click the Alarm Settings button to specify the trigger and clear levels for the
alarms. Notice that the Analog Alarm Settings window has two alarm
configuration views, a basic alarm view and an advanced alarm view.
270
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Alarm Settings
Analog and Temperature input models support an Alarm mechanism in which you can specify up to
five severity levels of alarm triggers and clear levels; the alarm triggers/clear levels can activate in
either increasing or decreasing severity levels.
Each time an alarm is triggered or cleared, you can specify any combination of the following to be
initiated:
z
z
z
An SNMP trap
An email message
A message to syslog
Basic Analog Alarm Settings
The basic Analog Alarm Settings window allows you to configure one severity alarm, whereas the
advanced window allows you to configure up to five severity alarm levels.
Configure the following parameters:
Trigger alarm when Specify the value that will trigger an alarm, the measurement is based on the
input value is
Type and Range that you specify. This value must not fall within the scope of
the value used to clear an alarm.
Clear alarm when Specify that value that will clear an alarm, the measurement is based on the
input value is
Type and Range that you specify. This value must not fall within the scope of
the value used to trigger an alarm.
Send Email Alert When enabled, sends an email alert to an email account(s) set up in the System
settings when an alarm is triggered or cleared. The email alert data includes the
severity level and the value that caused the alarm to trigger or clear. The Email
Alert is associated with Level Critical.
Default: Disabled
271
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Send Syslog Alert When enabled, sends a message to syslog when an alarm is triggered or
cleared. The syslog entry includes the severity level and the value that caused
the alarm to trigger or clear. The syslog message is associated with Level
Critical.
Default: Disabled
Send SNMP Alert When enabled, sends an SNMP trap when an alarm is triggered or cleared. The
trap consists of the severity level and whether the alarm was triggered or
cleared.
Default: Disabled
Advanced Analog Alarm Settings
The advanced Analog Alarm Settings window expands the basic alarm settings options to up to five
severity levels.
Configure the following parameters:
Trigger Type
If the Trigger Type is Low, an alarm is triggered when the input drops below
the specified Trigger value; other severity level trigger values must decrease in
value with each subsequent level. If the Trigger Type is High, an alarm is
triggered when the input is higher than the specified Trigger value; other
severity level trigger values must increase in value with each subsequent level.
Clear Mode
Level 1-5
To clear an alarm, the input must drop below the specified value when Trigger
Type is High or go above the specified value when Trigger Type is Low.
Defines the Level severity settings for up to five levels. If the Trigger Type is
Low, an alarm is triggered when the input drops below the specified Trigger
value; other severity level trigger values must decrease in value with each
subsequent level. If the Trigger Type is High, an alarm is triggered when the
input is higher than the specified Trigger value; other severity level trigger
values must increase in value with each subsequent level.
272
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Channels
Trigger
If the Trigger Type is Low, an alarm is triggered when the input drops below
the specified Trigger value; other severity level trigger values must decrease in
value with each subsequent level. If the Trigger Type is High, an alarm is
triggered when the input is higher than the specified Trigger value; other
severity level trigger values must increase in value with each subsequent level.
Clear
Email
To clear an alarm, the input must drop below the specified value when Trigger
Type is High or go above the specified value when Trigger Type is Low.
When enabled, sends an email alert to an email account(s) set up in the System
settings when an alarm is triggered or cleared. The email alert data includes the
severity level and the value that caused the alarm to trigger or clear. The Email
Alert is associated with Level Critical.
Default: Disabled
Syslog
SNMP
When enabled, sends a message to syslog when an alarm is triggered or
cleared. The syslog entry includes the severity level and the value that caused
the alarm to trigger or clear. The syslog message is associated with Level
Critical.
Default: Disabled
When enabled, sends an SNMP trap when an alarm is triggered or cleared. The
trap consists of the severity level and whether the alarm was triggered or
cleared.
Default: Disabled
273
Download from Www.Somanuals.com. All Manuals Search And Download.
I/O UDP
I/O UDP
Industrial applications often monitor the status of I/O devices such as sensors, alarms, relays, etc. by
polling for I/O data. The IOLAN’s I/O UDP feature can help to minimize network traffic by
broadcasting I/O status to industrial applications on specified intervals, providing I/O status in a
timely manner.
The IOLAN’s I/O UDP broadcast feature sends the status of attached I/O devices to defined hosts on
the network. Depending upon the IOLAN model and the configuration of the I/O channels, the UDP
packet contains the current status and/or data of each enabled I/O channel or serial pin signal.
UDP Unicast Format
PC applications must be able to interpret the UDP packet to obtain I/O channel status and data. This
section provides the detailed structure of the UDP datagram and its data format.
UDP Broadcast Packet
Version Total Packet Length Analog Section Digital/Relay Section Serial Pin Signal Section
(1 Byte)
(2 Bytes)
Each section, with the exceptions of the Version and Total Packet Length sections, is comprised of its
own subset of bytes.
Note:
All 2 byte values are in big Endian (network) order. All 4 byte values are IEEE 754 single
precision floating point numbers in big Endian (network) order.
z
z
z
Version—The current version of the format of I/O UDP broadcast packet.
Total Packet Length—The total length of the UDP packet.
Analog Section—The Analog Section of the UDP packet, which contains data/status of the
Analog I/O channels. The Analog Channel Data subsection (within the Analog Section) will only
exist if the channel(s) is enabled.
z
z
Digital/Relay Section—The Digital/Relay Section of the UDP packet, which contains status of
Digital and Relay I/O channels. The Channel Data subsection within the Digital/Relay Section
will always be present.
Serial Pin Signal Section—The Serial Pin Signal Section of the UDP packet, which contains the
status of the IOLAN’s serial port’s control signal pins. The Serial Pin Signal Data subsection
within the Serial Signal Pins Section will always be present.
274
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
I/O UDP
Analog Section
The Analog Section of the UDP packet is comprised of I/O data for each enabled Analog channel.
If the IOLAN I/O model does not support Analog channels, the Analog Channel Data
subsection of the Analog Section will NOT be present in the UDP packet.
Section Channel
Length Enabled
Analog Channel Data (for each enabled channel)
2 Bytes
1 Byte
curRawValue minRawValue maxRawValue curEngValue minEngValue maxEngValue
2 Bytes
2 Bytes
2 Bytes
4 Bytes
4 Bytes
4 Bytes
z
z
Section Length—The total length of the Analog section (this value will vary, the field length is 2
Bytes). This value will vary because it will contain one Analog Channel Data subsection
(18 bytes) for each Analog channel that is enabled.
Channel Enabled—The Channel Enabled field is 1 byte in least significant bit order, for each
channel. If the channel is enabled, the bit is set to 1. If the channel is disabled, the bit is set to 0
(zero).
Channel Enabled (1 Byte, one bit for each channel)
Channel 4 Channel 3 Channel 2 Channel 1
z
Analog Channel Data—Consists of Analog Channel Data for each enabled Analog channel on
the IOLAN. If an Analog channel is disabled, there is no data for that channel. Therefore, the
Analog Section will contain the Section Length value, the Channel Enabled value, and 18 bytes
of I/O data for each enabled Analog channel. For example, an IOLAN I/O model with four
Analog channels that has only three of those Analog channels enabled will contain 54 bytes of
Analog Channel Data (18 bytes * 3 Analog channels).
The following values make up the Analog Channel Data for each enabled Analog channel:
z
z
z
z
curRawValue—The current raw value received by the channel.
minRawValue—The minimum raw value received by the channel until it is cleared.
maxRawValue—The maximum raw value received from the channel until it is cleared.
curEngValue—The current raw value that has been converted to voltage/current for Analog
or Celsius/Fahrenheit for Temperature.
z
z
minEngValue—The minimum raw value that has been converted to voltage/current for
Analog or Celsius/Fahrenheit for Temperature until it is cleared.
maxEngValue—The maximum raw value that has been converted to voltage/current for
Analog or Celsius/Fahrenheit for Temperature until it is cleared.
275
Download from Www.Somanuals.com. All Manuals Search And Download.
I/O UDP
Digital/Relay Section
The Digital/Relay Section of the UDP packet provides the status of Digital and Relay channels. The
data for the status of each channel is represented by 1 byte, with each bit representing a channel (least
significant bit format).
The Digital/Relay Channel Data subsection is present in the UDP packet regardless of
whether or not the IOLAN model supports Digital/Relay channels.
Length Channel
Enabled
Digital/Relay Channel Data (1 Byte, one bit for each channel)
2 Bytes
1 Byte
Channel 4 Channel 3 Channel 2 Channel 1
z
z
Length—The length of Digital/Relay Section within the UDP packet (this value will always be 2
Bytes).
Channel Enabled—This is based on the configuration of the Digital/Relay channels. The
Channel Enabled field is 1 byte in least significant bit order, for each channel. If the channel is
enabled, the bit is set to 1. If the channel is disabled, the bit is set to 0 (zero).
Channel Enabled (1 Byte, one bit for each channel)
Channel 4 Channel 3 Channel 2 Channel 1
z
Digital/Relay Channel Data—Each bit represents a channel status, 1 for on or 0 for off (unless
the channel has been configured to be inverted, in which case 0 is on and 1 if off).
Serial Pin Signal Section
The Serial Pin Signal Section of the UDP packet provides the status of the serial pin signals from the
IOLAN’s serial port. Each serial pin signal (DSR, DTR, CTS, etc.) is mapped to a bit in the 1-byte
data section.
The Serial Pin Signal Data subsection is present in the UDP packet regardless of whether or
not the serial port is configured for the Control I/O profile or the serial pin signals are
enabled.
Length
Pin
Enabled
Serial Pin Signal Data (1 Byte, one bit for each signal)
RTS DTR CTS DCD
2 Bytes
1 Byte
DSR
z
z
Length—The total length of the Serial Pin Signal Data (this value will always be 2 Bytes).
Pin Enabled—This based upon the configuration of the signal pins on the serial port. When the
serial port profile is set to Control I/O and a serial pin signal(s) is enabled, the bit is set to 1. For
any serial pin signals that are disabled, the bit is set to 0 (zero) and any data associated with those
serial pin signals should be ignored.
Pin Enabled (1 Byte, one bit for each serial pin signal)
RTS
DTR
CTS
DCD
DSR
z
Serial Pin Signal Data—1 byte with each bit being set to high (1) or low (0) for the appropriate
serial pin signals.
276
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
I/O Modbus Slave
UDP Unicast Example
For an example of the I/O UDP unicast, see the sample program, ioudpbcast.c, found on your CD-
ROM.
I/O Modbus Slave
If you have a Modbus serial or TCP application, it can access I/O connected to the IOLAN when the
I/O Global Modbus Slave is enabled. You must supply a unique UID for the IOLAN, as it will act as
a Modbus Slave.
There are three ways your Modbus Application can connect to the IOLAN to access I/O.
Modbus Serial Application Connected to the Serial Port
Your Modbus serial application can be connected right to the IOLAN serial port to access I/O.
UID: 15
Serial
Power
IOLAN
PC running a
Modbus Serial
Application
I/ODigital
Output
Modbus Serial Application Connected to the Network
If you want to access the I/O from a LAN connection, you can install TruePort on the PC running the
the network.
UID: 15
Power
Network
IOLAN
PC running a
Modbus Serial
I/ODigital
Application
Output
277
Download from Www.Somanuals.com. All Manuals Search And Download.
Modbus I/O Access
Modbus TCP Application
If you have a Modbus RTU or Modbus ASCII program, you can access the I/O by connecting to the
IOLAN over the network.
UID: 15
IOLAN
Power
Network
PC running a
Modbus RTU
or ASCII
I/ODigital
Output
Application
Modbus I/O Access
The section defines the function codes and registers you will need to access the I/O through Modbus
TCP, Modbus serial, or Modbus serial/TruePort.
Function Codes
The following function codes are supported by the IOLAN:
z
z
z
z
z
z
z
z
01 read coils
03 read multiple holding registers
04 read input registers
05 write coil
06 write single register
08 diagnostics (echo the request)
15 force multiple coils
16 write multiple registers
There are four Modbus data models:
Discrete Input
Coils
Not used
Digital Input (DI), Alarm state for DI, Digital Output (DO). All coils
are Boolean values and are 1 byte.
Input Registers (IR)
Holding Registers
Analog Input (AI), Alarm state for AI. All Input Registers are 2 bytes
long.
Status (R), Control value (R/W or W). Holding Registers with _ENG
registers are 4 bytes long, all other Holding Registers are 2 bytes
long.
All coil/register values are in decimal.
278
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Modbus I/O Access
I/O Coil/Register Descriptions
This section contains descriptions of I/O coils:
z
z
z
MB_REG_DI_SENSOR—Status of Digital input. 1 is Active, 0 is Inactive. If Invert Signal is
configured on, 0 is Active, 1 is Inactive. If input is Latched, returns latched status.
MB_REG_DI_SENSOR_ALARM_STATE—Indication if input is in alarm state. 1 is In Alarm
state, 0 is Not in Alarm state. A write of any value clears the alarm state.
MB_REG_DO_SENSOR—Status of Digital output. 1 is Active, 0 is Inactive. If Invert Signal
is configured on, 0 is Active, 1 is Inactive.
This section contains descriptions of I/O holding registers:
z
MB_REG_HR_DI_SENSOR_LATCH—The latch status of the Digital input. 1 is Latched, 0 is
Not latched. A write of any value will clear the latch.
z
MB_REG_HR_DO_SENSOR_PULSE_ISW—Inactive Signal Width. This is how long the
channel will remain inactive during pulse mode in increments of 100ms. Valid values are 1-9999.
The default is 1 (100 ms).
z
MB_REG_HR_DO_SENSOR_PULSE_ASW—Active Signal Width. This is how long the
channel will be active during the pulse mode in increments of 100ms. Valid values are 1-9999.
The default is 1 (100 ms).
z
z
z
z
MB_REG_HR_DO_SENSOR_PULSE_COUNT—The number of times the channel output
will pulse. Each count consists of an active/inactive sequence. The default is 1 cycle.
MB_REG_HR_AI_CLEAR_ALARM_LATCH—Used to reset a latched alarm state. A write
of any value will clear the alarm latch for the specific Analog input.
MB_REG_HR_AI_CLEAR_MAX—Used to reset the Analog input maximum value reached.
A write of any value will reset the maximum.
MB_REG_HR_AI_CLEAR_MIN—Used to reset the Analog input minimum value reached. A
write of any value will reset the minimum.
This section contains descriptions of I/O input registers:
z
MB_REG_IR_CURR_ENG—The current value of an Analog or Temperature input converted
to appropriate units. For Analog, this will be in voltage or current, depending on the
configuration. For the Temperature, this value will be in Celsius or Fahrenheit, depending on
configuration.
z
z
z
z
z
z
MB_REG_IR_MIN_ENG—The minimum converted value ever reached on this input since the
IOLAN was re-started or a manual clear was issued.
MB_REG_IR_MAX_ENG—The maximum converted value ever reached on this input since
the IOLAN was re-started or a manual clear was issued.
MB_REG_IR_CURR_RAW—The current raw value received from the Analog to Digital
converter. This is a hexadecimal value in the range of 0 -0xFFFF.
MB_REG_IR_MIN_RAW—The minimum raw value ever reached on this input since the
IOLAN was re-started or a manual clear was issued.
MB_REG_IR_MAX_RAW—The maximum converted value ever reached on this input since
the IOLAN was re-started or a manual clear was issued.
MB_REG_IR_ALARM_LEVEL—This gives the current alarm severity level for the
corresponding Analog input. Severity levels range from 0 (not in alarm) to 5 (highest alarm
severity).
279
Download from Www.Somanuals.com. All Manuals Search And Download.
Modbus I/O Access
Serial Port Coil/Register Descriptions
This section contains descriptions of serial port coils:
z
z
z
z
z
z
MB_REG_DI_DSR—The status of the DSR input signal. 1 is Active, 0 is Inactive. If Invert
Signal is configured on, 0 is Active, 1 is Inactive. If input is Latched, returns latched status.
MB_REG_DI_DSR_ALARM_STATE—The alarm state of DSR input signal. 1 is In Alarm
state, 0 is Not in Alarm state. A write of any value clears the alarm state.
MB_REG_DI_DCD—The status of DCD line. 1 is Active, 0 is Inactive. If Invert Signal is
configured on, 0 is Active, 1 is Inactive.
MB_REG_DI_DCD_ALARM_STATE—The alarm state of DCD input signal. 1 is in Alarm
state, 0 is Not in Alarm state. A write of any value clears the alarm state.
MB_REG_DI_CTS—The status of CTS input signal. 1 is Active, 0 is Inactive. If Invert Signal
is configured on, 0 is Active, 1 is Inactive.
MB_REG_DI_CTS_ALARM_STATE—The alarm state of CTS input signal. 1 is Alarm, 0 is
Not in Alarm. A write of any value clears the alarm state.
z
z
MB_REG_DO_DTR—The status of DTR output signal. 1 is Active, 0 is Inactive.
MB_REG_DO_RTS—The status of RTS output signal. 1 is Active, 0 is Inactive.
This section contains descriptions of serial port holding registers:
z
z
z
MB_REG_HR_DI_DSR_LATCH—The latched status for the DSR signal. 1 is Latched, 0 is
Not Latched. A write any value will clear the latch.
MB_REG_HR_DI_DCD_LATCH—The latched status for the DCD signal. 1 is Latched, 0 is
Not Latched. A write any value will clear the latch.
MB_REG_HR_DI_CTS_LATCH—The latched status for the CTS signal. 1 is Latched, 0 is
Not Latched. A write any value will clear the latch.
A4/T4 Registers
The following registers are supported by the IOLAN A4 and T4 Input models:
Data Model
A1/T1 A2/T2 A3/T3 A4/T4 R/W
Holding Registers:
MB_REG_HR_AI_CLEAR_ALARM_LATCH 2049
2050
2114
2178
2051
2115
2179
2052
2116
2180
W
W
W
MB_REG_HR_AI_CLEAR_MAX
MB_REG_HR_AI_CLEAR_MIN
2113
2177
Input Registers:
MB_REG_IR_CURR_ENG
MB_REG_IR_MIN_ENG
MB_REG_IR_MAX_ENG
MB_REG_IR_CURR_RAW
MB_REG_IR_MIN_RAW
MB_REG_IR_MAX_RAW
MB_REG_IR_ALARM_LEVEL
2080
2082
2084
2086
2087
2088
2089
2112
2114
2116
2118
2119
2120
2121
2144
2146
2148
2150
2151
2152
2153
2176
2178
2180
2182
2183
2184
2185
R
R
R
R
R
R
R
280
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Modbus I/O Access
A4D2/A4R2 Registers
The following coils and registers are supported by the IOLAN A4D2 and A4R2 I/O models:
Data Model
Coils:
A1
A2
A3 A4 D1/R1 D2/R2 R/W
MB_REG_DI_SENSOR
-----
-----
-----
----- ----- ----- 6149
----- ----- ----- 6213
----- ----- ----- 6661
6150
6214
6662
R
MB_REG_DI_SENSOR_ALARM_STATE
MB_REG_DO_SENSOR
R/W
R/W
*
Holding Registers:
MB_REG_HR_DI_SENSOR_LATCH
MB_REG_HR_DO_SENSOR_PULSE_ISW
MB_REG_HR_DO_SENSOR_PULSE_ASW
-----
-----
-----
----- ----- ----- 6149
----- ----- ----- 6213
----- ----- ----- 6277
----- ----- ----- 6341
6150
6214
6278
6342
-----
R/W
R/W
R/W
R/W
W
MB_REG_HR_DO_SENSOR_PULSE_COUNT -----
MB_REG_HR_AI_CLEAR_ALARM_LATCH 2049 2050 2051 2052 -----
MB_REG_HR_AI_CLEAR_MAX
MB_REG_HR_AI_CLEAR_MIN
2113 2114 2115 2116 -----
2177 2178 2179 2180 -----
-----
W
-----
W
Input Registers:
MB_REG_IR_CURR_ENG
MB_REG_IR_MIN_ENG
MB_REG_IR_MAX_ENG
MB_REG_IR_CURR_RAW
MB_REG_IR_MIN_RAW
MB_REG_IR_MAX_RAW
MB_REG_IR_ALARM_LEVEL
2080 2112 2144 2176 -----
2082 2114 2146 2178 -----
2084 2116 2148 2180 -----
2086 2118 2150 2182 -----
2087 2119 2151 2183 -----
2088 2120 2152 2184 -----
2089 2121 2153 2185 -----
-----
-----
-----
-----
-----
-----
-----
R
R
R
R
R
R
R
*For DI alarm state, read will get state, write will clear alarm.
281
Download from Www.Somanuals.com. All Manuals Search And Download.
Modbus I/O Access
D4/D2R2 Registers
The following coils and registers are supported by the IOLAN D4 and D2R2 I/O models:
Data Model
Coils:
MB_REG_DI_SENSOR
D1
D2
D3/R1 D4/R2
R/W
6145
6209
6657
6146
6210
6658
6147
6211
6659
6148
6212
6660
R
MB_REG_DI_SENSOR_ALARM_STATE
MB_REG_DO_SENSOR
R/W
R/W
*
Holding Registers:
MB_REG_HR_DI_SENSOR_LATCH
MB_REG_HR_DO_SENSOR_PULSE_ISW
MB_REG_HR_DO_SENSOR_PULSE_ASW
6145
6209
6273
6146
6210
6274
6338
6147
6211
6275
6339
6148
6212
6276
6340
R/W
R/W
R/W
R/W
MB_REG_HR_DO_SENSOR_PULSE_COUNT 6337
*For DI alarm state, read will get state, write will clear alarm.
Serial Pin Signals
The following coils and registers are supported by the IOLAN I/O models:
Data Model
Coils:
Pin
R/W
MB_REG_DI_DSR
4225
4289
4353
4417
4481
4545
4673
4737
R
MB_REG_DI_DSR_ALARM_STATE
MB_REG_DI_DCD
R/W
R
MB_REG_DI_DCD_ALARM_STATE
MB_REG_DI_CTS
R/W
R
MB_REG_DI_CTS_ALARM_STATE
MB_REG_DO_DTR
R/W
R/W
R/W
MB_REG_DO_RTS
Holding Registers:
MB_REG_HR_DI_DSR_LATCH
MB_REG_HR_DI_DCD_LATCH
MB_REG_HR_DI_CTS_LATCH
4097
4609
5121
R/W
R/W
R/W
282
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
TruePort I/O
TruePort I/O
You can see a sample API I/O over TruePort program called ioapiotp.c on the CD-ROM.
TruePort/Modbus Combination
If you have a Modbus serial application running on a PC that is connected to a network, you can use
TruePort as a virtual serial connection to communicate with the IOLAN over the network to access
I/O data. You also have the option of enabling SSL as a security option to encrypt the data that is
communicated between the IOLAN and the host machine (SSL/TLS must be configured in the Server
settings and on the TruePort host).
UID: 15
Power
Network
PC running a
Modbus Serial
Application/
TruePort
IOLAN
I/ODigital
Output
The host running TruePort must be in Modbus/ASCII or Modbus/RTU mode.
283
Download from Www.Somanuals.com. All Manuals Search And Download.
TruePort I/O
API Over TruePort Only
If you have a custom application that talks to a serial port, you can use TruePort as a virtual serial
port to communicate with the IOLAN over the network to access I/O data using the Perle API. You
also have the option of enabling SSL as a security option to encrypt the data that is communicated
between the IOLAN and the host machine (SSL/TLS must be configured in the Server settings and
the API.)
Power
Network
IOLAN
PC running
Custom
I/ODigital
Output
Application (API)/
TruePort
The host running TruePort must be in I/O API mode.
284
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Accessing I/O Data Via TruePort
Accessing I/O Data Via TruePort
Introduction
Analog and Digital I/O data, as well as output control, can be accessed in several ways. To have
access from an application running on a workstation or server, the I/O Applications Program Interface
(API) provided within Trueport can be used. This API uses a command/response format to get or set
data on each individual I/O channel register. A sample program (ioapiotp.c) demonstrating typical
usage can be found on the IOLAN product CD-ROM.
Setup
After TruePort has been properly installed and configured on the workstation or server and initiated
from the application, it will setup a connection to the appropriate IOLAN. It will then be available to
relay commands to the IOLAN and communicate responses back the application. TruePort will create
a COM port to which the application can write commands to and read responses from. Since all
communications are done via this COM port, the application need only use standard serial
communication interface calls.
The following steps should be taken:
1. Install the Trueport software on the server or workstation on which the application will be
running.
2. Configure the virtual communication port (COM) (see Trueport User Guide for details).
3. Run the application. Typically the application will:
a. Open the COM port.
b. Send Commands to the COM port using standard write commands.
c. Read Responses from the COM port using standard read commands.
All commands are forwarded to the IOLAN over the network where the specific I/O
channel registers are modified or read, and then responses are sent back to TruePort
where they will be made available to be read from the COM port.
d. Once the desired operations are completed, the COM port can be closed.
285
Download from Www.Somanuals.com. All Manuals Search And Download.
Accessing I/O Data Via TruePort
Format of API Commands
There are two groups of commands:
z
z
Get Commands—Retrieve values of the I/O channel registers
Set Commands—Set values on the I/O channel registers.
All commands need to be written to the COM port as a single write.
I/O Channel registers are all assigned unique addresses, which need to be referenced in all of the
commands. Please refer to the documentation specific you the applicable mode, for the list and
addresses of all the registers.
Model
A4
Go to...
T4
A4D2
A4R2
D4
D2/R2
Get Commands
The following tables show the general structure to be used for Get commands.
Note:
Numeric values provided in the API documentation are in Hexadecimal (Hex) format.
Command Format
Byte(s)
# of Bytes
Value
1
1
Command Code:
z
z
z
0x01 – Get “coils” (Boolean register)
0x03 – Get “holding registers” (R/W registers)
0x04 – Get “input registers” (R only register)
2-3
4-5
2
2
for this value).
Number of registers to read. If this value is greater than 1, the response
will contain the values of multiple consecutive registers.
Response Format
Byte(s)
# of Bytes
Value
1
1
Command that this is a response to. If an error has been detected, the
command value will have the high bit set (OR with 0x80). For
example: The command is 0x04, so the command field in the response
would be 0x84.
2
1
n
Length of data (in bytes) starting in next byte.
Requested register values.
3-n
286
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Accessing I/O Data Via TruePort
Example 1: Read the status of the first digital input (DI1) on a D2R2 unit.
DI1 sensor is a coil register with the decimal value of 6145 (hex 0x1801).
Request: 0x01 0x18 0x01 0x00 0x01
Response: 0x01 0x01 0x01 (Digital input 1 is active)
Example 2: Read the values for the Inactive Signal Width, Active Signal Width, and Pulse
count for the second digital output (DO2) on a D4 unit.
DO2, Inactive Signal Width is a holding register with the decimal value of 6210 (hex 0x1842).
Request: 0x03 0x18 0x42 0x00 0x03
Response: 0x03 0x06 0x00 0x0A 0x00 0x11 0x00 0x0F
(Inactive =10*100ms, Active= 17*100ms, and Pulse count = 15)
Example 3: Read the raw current, minimum and maximum values of the third Analog input
(A3) on an A4D2 unit.
A3 current raw value is an input register with the decimal value of 2150 (hex 0x0866).
Request: 0x04 0x08 0x86 0x00 0x03
Response: 0x04 0x06 0x10 0x03 0x0F 0x30 0x10 0x20
(Current = 0x1003, Minimum = 0x0F30, and Maximum = 0x1020)
Set Commands
The following tables show the general structure to be used for set commands.
Numeric values provided in the API documentation are in Hexadecimal (Hex) format.
Command Format
Byte(s)
# of Bytes
Value
1
1
Command Code (in hex):
z
z
0x0F – Set “Boolean registers” (R/W coils)
0x10 – Set “holding registers” (read/write registers)
2-3
4-5
2
2
for this value).
Number of registers to set. If this value is greater than 1, the response
will contain the values of multiple consecutive registers.
6
1
n
The length of the data (in bytes) to be written to the registers.
Data to be written to the registers.
7-n
If accessing registers which are 2 or 4 bytes, the data is in Network
order (Big endian) format (that is, MSB, LSB).
For Boolean registers, the value field will be a bit field with the LSBit
corresponding to the IO channel referenced by the starting register.
287
Download from Www.Somanuals.com. All Manuals Search And Download.
Accessing I/O Data Via TruePort
Successful Response Format
Byte(s)
# of Bytes
Value
1
2
1
2
Command code (from request).
for this value) from request.
4
2
Number of registers written.
Unsuccessful Response Format
Byte(s)
# of Bytes
Value
1
1
Command that this is a response to. If an error has been detected, the
command value will have the high bit set (OR with 0x80). For
example: The Command is 0x10, so the command field in the response
would be 0x90.
1
1
Example 1: Turn on the first relay on a D2R2 unit.
The first relay (R1) is a digital out coil register with a decimal value of 6659 (hex 0x1A03).
Request: 0x0F 0x1A 0x03 0x00 0x01 0x01 0x01
Response: 0x0F 0x1A 0x03 0x00 0x01
Example 2: Turn on the first and second relay on a D2R2 unit.
The first relay (R1) is a digital out coil register with a decimal value of 6659 (hex 0x1A03).
Request: 0x0F 0x1A 0x03 0x00 0x02 0x01 0x03 (03 = “00000011” which sets R1 and R2 to 1)
Response: 0x0F 0x1A 0x03 0x00 0x02
Note:
When reading or writing consecutive “Boolean” (coils) registers, the values of the registers
are combined into a single byte as shown by the example above. Two registers (coils) are
being written but the length of the data is 1 byte. The one byte contains the value for both
registers as follows:
288
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
I/O SNMP Traps
Error Codes
Code Name
Description
01 Illegal Function
The function code received in the query is not an allowable action for
the server (or slave).
02 Illegal Data
Address
The data address received in the query is not an allowable address for
the server (or slave).
03 Illegal Data Value A value contained in the query data field is not an allowable value for
server (or slave).
04 Slave Device
Failure
An unrecoverable error occurred while the server (or slave) was
attempting to perform the requested action.
I/O SNMP Traps
When you enable SNMP traps for Digital and Analog inputs, a value is returned when an alarm
triggers or clears. This section decodes the SNMP specific trap numbers. The value returned from the
trap will be the I/O channel number that is generating the trap.
Specific
Trap #
Alarm
Description
0
1
IO_DI_ALARM_SENSOR
IO_DI_ALARM_SERIAL_DSR
IO_DI_ALARM_SERIAL_DCD
IO_DI_ALARM_SERIAL_CTS
IO_AI_ALARM_LEVEL1
IO_AI_ALARM_LEVEL2
IO_AI_ALARM_LEVEL3
IO_AI_ALARM_LEVEL4
IO_AI_ALARM_LEVEL5
IO_DI_ALARM_SENSOR_CLEAR
Trap for the Digital input Trigger.
Trap for the Digital input DSR serial pin Trigger.
Trap for the Digital input DCD serial pin Trigger.
Trap for the Digital input CTS serial pin Trigger.
Trap for Analog input Alarm Level 1.
Trap for Analog input Alarm Level 2.
Trap for Analog input Alarm Level 3.
Trap for Analog input Alarm Level 4.
Trap for Analog input Alarm Level 5.
Trap for Digital input trigger Clear Mode.
2
3
4
5
6
7
8
9
10
IO_DI_ALARM_SERIAL_DSR_CLEAR Trap for Digital input DSR serial pin trigger Clear
Mode.
11
12
IO_DI_ALARM_SERIAL_DCD_CLEAR Trap for Digital input DCD serial pin trigger Clear
Mode.
IO_DI_ALARM_SERIAL_CTS_CLEAR Trap for Digital input CTS serial pin trigger Clear
Mode.
13
14
15
16
17
IO_AI_ALARM_LEVEL1_CLEAR
IO_AI_ALARM_LEVEL2_CLEAR
IO_AI_ALARM_LEVEL3_CLEAR
IO_AI_ALARM_LEVEL4_CLEAR
IO_AI_ALARM_LEVEL5_CLEAR
Trap for the Analog input Alarm Level 1 Clear.
Trap for the Analog input Alarm Level 2 Clear.
Trap for the Analog input Alarm Level 3 Clear.
Trap for the Analog input Alarm Level 4 Clear.
Trap for the Analog input Alarm Level 5 Clear.
289
Download from Www.Somanuals.com. All Manuals Search And Download.
I/O SNMP Traps
290
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring Clustering
Chapter 11
11
Introduction
Clustering is a way to provide access to the serial ports of many IOLANs
through a single IP address.
Clustering Slave List
Overview
The IP address that will be used to access all clustered serial ports will be that of the Master IOLAN
in the cluster. All other IOLANs in the cluster will be referred to as Slave IOLANs. Users can also
access slave serial ports using EasyPort Web; EasyPort Web is automatically launched when a user
types in the IP address of the Master IOLAN in a web browser. If the user has admin privileges, the
WebManager will first be displayed with an option to proceed to EasyPort Web.
The Clustering Slave List window displays the slave IOLAN entries and the number of ports on
those slave IOLANs.
No special configuration is required on the Slave IOLANs to enable this functionality.
The following buttons are available:
Add Button
Click this button to display a window to configure and add a new Slave
IOLAN’s configuration to the clustering group.
Delete Button
Select a Slave IOLAN and click this button to delete it from the clustering
group.
Advanced Button Select a Slave IOLAN and click this button to configure the individual Slave
IOLAN’s serial ports.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
291
Download from Www.Somanuals.com. All Manuals Search And Download.
Clustering Slave List
Adding Clustering Slaves
Overview
When you add a clustering slave IOLAN entry, you are adding the IOLAN that users will access
through this master IOLAN.
Field Descriptions
Configure the following parameters:
Server Name
Specify a name for the slave IOLAN in the clustering group. This name does
not have to correspond to the proper host name, as it is just used within the
IOLAN.
Field Format: Maximum 15 alphanumeric characters, including spaces
IP Address
Specify the IP address of the slave IOLAN in the clustering group.
Field Format: IPv4
Number of Ports
Specify the number of ports in the Slave IOLAN that you are adding to the
clustering group.
Data Options: 1, 2, 4, 8, 18, 24, 36, 48
Default: 1
Starting Slave TCP Specify the first TCP Port number (as specified in the slave IOLAN’s serial
Port
port configuration) on the slave host.
Default: 10001, and increments by one for each serial port
Starting Master
TCP Port
Specify the TCP port number you want to map the first slave IOLAN DS Port
number to. This number should not be a port number that is already in use by
the master IOLAN.
Default: 1024, and then increments by one for each new slave entry
Protocol
Specify the protocol that will be used to access the slave IOLAN port.
Data Options: SSH, Telnet
Field Format: Telnet
292
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Clustering Slave List
Advanced Clustering Slave Options
Overview
The Advanced button provides a means of configuring each individual serial port’s name, connection
protocol, and port association in the clustered IOLAN slave. The Clustering Slave Settings window
displays each clustered serial port slave entry, you need to click the Edit button to configure the
individual serial port settings.
If you click the Retrieve Port Names button, the DeviceManager will connect to the clustering slave
IOLAN and download all the serial port names--you can change the names and other settings when
you click the Edit button.
Editing Clustering Slave Settings
Change the individual serial port settings Slave Port Settings window.
Configure the following parameters:
Port Name
Specify a name for the port.
Default: A combination of the port number, the @ symbol, and the IP address;
293
Download from Www.Somanuals.com. All Manuals Search And Download.
Clustering Slave List
Slave TCP Port
Specify the TCP Port number configured on the Slave IOLAN that is
associated to the port number you are configuring.
Range: 1-99999
Master TCP Port Specify the TCP port number you want to map to the Slave IOLAN TCP Port.
User’s will use this TCP port number to access the Slave IOLAN’s port.
Default: 1024, and then increments by one for each new slave entry
Protocol
Specify the protocol that will be used to access the port.
Data Options: SSH, Telnet
Default: Telnet
294
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring the Option
Card
Chapter 12
12
Introduction
SCS models have a built-in option card slot that supports either a Perle
IOLAN modem card (purchased separately) or Perle PCI Adapter card
(purchased separately) for use with a user supplied wireless WAN card.
Option Card Settings
Overview
The Option Card settings allow you to configure the option card slot for either a Perle IOLAN
modem card or a Perle PCI Adapter/wireless WAN card.
Functionality
The Perle IOLAN modem card or Perle PCI Adapter/wireless WAN card slide into the PCI slot as
Configuring the IOLAN Modem Card
The IOLAN Modem card Configure button automatically takes you to the Terminal serial port
profile, although you can set and configure any serial port profile appropriate for modem use. See the
Chapter 7, Configuring Serial Ports on page 113 for information on the configuration options for the
serial port profile that fits your modem usage.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
295
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring a Wireless WAN Card
Configuring a Wireless WAN Card
Overview
SCS IOLAN models support a wireless WAN card that can be installed to permit access to the
IOLAN via the internet or other WAN network. When the PCI card type has been configured to be a
Wireless WAN card, the serial port associated with the wireless WAN card is automatically set to
PPP. No other PPP configuration is typically required. The wireless WAN card will establish a GPRS
data connection over the service provider’s GSM network. The service provider will assign an IP
address to your wireless connection. This address may be public or private and it may be dynamically
or statically assigned, depending on the type of account established with the service provider. If a
static, public IP address has been assigned, the IOLAN will be directly accessible via that IP address.
If a dynamic, public IP address has been assigned, you may access your IOLAN with the assistance
of a dynamic DNS service provider. These service providers provide a method of accessing your
device server using a standard URL (for example, yourcompany.dyndns.org), when the IP address
assigned by the Wireless provider is dynamic. The IOLAN SCS supports dynamic DNS updates to
Field Descriptions
Configure the following parameters:
Card
Specify the wireless WAN card you are using.
Data Options:
z
Sierra Wireless AirCard 881—You are using a Sierra Wireless AirCard
881 WAN card.
z
Sony Ericsson PC300—You are using a Sony Ericsson PC300 wireless
WAN card.
z
z
z
Sierra Wireless—You are using a Sierra wireless WAN card.
Sony Ericsson—You are using a Sony Ericsson wireless WAN card.
Use Standard Driver—If the wireless WAN card you are using is not
listed, try the standard driver.
z
Use Custom Driver—A custom driver downloaded from the Perle
website.
Default: Sierra Wireless AirCard 881
296
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring a Wireless WAN Card
APN
Specify the APN required by your internet provider to access their network.
See the internet provider documentation for more information.
User Name
Password
Specify the name required by your internet provider to access their network.
Specify the password required by your internet provider to access their
network.
Phone Number
Specify the phone number provided by your service provider to access their
wireless network.
Field Format: Probably similar to *99***1#
Initialization String Specify the initialization string required by your internet service provider for
your wireless WAN card.
When you click the Advanced button, the Remote Access (PPP) profile is displayed. The wireless
297
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring a Wireless WAN Card
298
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring the System
Chapter 13
13
Introduction
This chapter describes the alerts (email and syslog) that can be configured
for the IOLAN and the advanced options (SNMP, time, custom
applications/plugins, and other miscellaneous configuration options) that
you will want to look at to see if they are required for your implementation.
Alerts
Email Alerts
Overview
Email notification can be set at the Server and/or Line levels. You can set email notification at these
levels because it is possible that the person who administers the IOLAN might not be the same person
who administers the serial device(s) attached to the IOLAN port. Therefore, email notification can be
sent to the proper person(s) responsible for the hardware.
Functionality
Email notification requires an SMTP host that is accessible by the IOLAN to process the email
messages sent by the IOLAN. When you enable email notification at the Server level, you can also
use those settings at the serial port level, or you can configure email notification specifically for each
serial port. When you choose an event Level, you are selecting the lowest notification level; for
example, if you select Level Error, you will get notifications for all events that trigger Error, Critical,
Alert, and Emergency messages. The level order, from most inclusive to least inclusive, is as
follows: Debug, Info, Notice, Warning, Error, Critical, Alert, Emergency.
The following events trigger an email notification on the System for the specified Level:
z
Reboot, Alert Level
z
z
z
IOLAN System Failure, Error Level
Authentication Failure, Notice Level
Successful Login, Downloads (all), Configuration Save Commands, Info Level
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
299
Download from Www.Somanuals.com. All Manuals Search And Download.
Alerts
Field Descriptions
Configure the following parameters:
Enable Email Alert Enables/disables a global email alerts setting. Even if this option is disabled,
you can still configure individual serial port email alerts. When this option is
enabled, individual serial ports can inherit these email alerts settings.
Default: Disabled
Level
Choose the event level that triggers an email notification.
Data Options: Emergency, Alert, Critical, Error, Warning, Notice, Info,
Debug
Default: Emergency
To
An email address or list of email addresses that will receive the email
notification.
Subject
From
A text string, which can contain spaces, that will display in the Subject field of
the email notification.
This field can contain an email address that might identify the IOLAN name or
some other value.
Reply To
The email address to whom all replies to the email notification should go.
Outgoing Mail
Server
The SMTP host (email server) that will process the email notification request.
This can be either a host name defined in the IOLAN host table or the SMTP
host IP address.
300
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Alerts
Syslog
Overview
The IOLAN can be configured to send system log messages to a syslog daemon running on a remote
host if the Syslog service is activated. You can configure a primary and secondary host for the syslog
information and specify the level for which you want syslog information sent.
You must ensure that the Syslog Client service in the Security, Services window is enabled
(by default it is enabled) for these settings to work.
Field Descriptions
Configure the following parameters:
Primary Host
The first preconfigured host that the IOLAN will attempt to send system log
messages to; messages will be displayed on the host’s monitor.
Default: None
Secondary Host
If the IOLAN cannot communicate with the primary host, then the IOLAN will
attempt to send system log messages to this preconfigured host; messages will
be displayed on the host’s monitor.
Default: None
Level
Choose the event level that triggers a syslog entry.
Data Options: Emergency, Alert, Critical, Error, Warning, Notice, Info, Debug
Default: Emergency
301
Download from Www.Somanuals.com. All Manuals Search And Download.
Management
Management
SNMP
Overview
If you are using SNMP to manage/configure the IOLAN, or to view statistics or traps, you must set
up a User in SNMP version 3 or a Community in SNMP version 1,2 to allow your SNMP manager to
connect to the IOLAN; this can be done in the DeviceManager, WebManager, CLI, or Menu. You
must then load the perle-sds.MIB (found on the CD-ROM packaged with the IOLAN) file into your
SNMP manager before you connect to the IOLAN.
Ensure that the SNMP service found in the Security, Services page is enabled (by default it
is enabled).
Field Descriptions
Configure the following parameters:
Contact
The name and contract information of the person who manages this SMNP
node.
Location
The physical location of the SNMP node.
Community
The name of the group that devices and management stations running SNMP
belong to.
302
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Management
Internet Address The IP address of the SNMP manager that will send requests to the IOLAN. If
the address is 0.0.0.0, any SNMP manager with the Community name can
access the IOLAN. If you specify a network address, for example
172.16.0.0, any SNMP manager within the local network with the
Community name can access the IOLAN.
Field Format: IPv4 or IPv6 address
Permissions
Permits the IOLAN to respond to SNMP requests.
Data Options:
z
z
z
None—There is no response to requests from SNMP.
Readonly—Responds only to Read requests from SNMP.
Readwrite—Responds to both Read and Write requests from SNMP.
Default: None
V3 Read-Write
User
Specified user can view and edit SNMP variables.
V3 Read-Write
Security Level
Select the security level for the Read-Writer user. This must match the
configuration set up in the SNMP manager.
Data Options:
z
z
z
None—No security is used.
Auth—User authentication is used.
Auth/Priv—User authentication and privacy (encryption) settings are
used.
Default: None
V3
V3 Read-Write
Auth Algorithm
Specify the authentication algorithm that will be used for the read-write user.
Data Options: MD5, SHA
Default: MD5
V3 Read-Write
Auth Password
Type in the read-write user’s authentication password.
Retype the user’s authentication password.
V3 Read-Write
Confirm Password
V3 Read-Write
Privacy Algorithm
Specify the read-write user’s privacy algorithm (encryption).
Data Options: DES, AES
Default: DES
V3 Read-Write
Privacy Password
Type in the read-write user’s privacy password.
Retype the privacy password.
V3 Read-Write
Confirm Password
V3 Read-Only User Specified user can only view SNMP variables.
V3 Read-Only
Security Level
Select the security level for the Read-Only user. This must match the
configuration set up in the SNMP manager.
Data Options:
z
z
z
None—No security is used.
Auth—User authentication is used.
Auth/Priv—User authentication and privacy (encryption) settings are
used.
Default: None
303
Download from Www.Somanuals.com. All Manuals Search And Download.
Management
V3 Read-Only Auth Specify the authentication algorithm that will be used for the read-only user.
Algorithm
Data Options: MD5, SHA
Default: MD5
V3 Read-Only Auth Type in the read-only user’s authentication password.
Password
V3 Read-Only
Retype the user’s authentication password.
Confirm Password
V3 Read-Only
Privacy Algorithm
Specify the read-only user’s privacy algorithm (encryption).
Data Options: DES, AES
Default: DES
V3 Read-Only
Privacy Password
Type in the read-only user’s privacy password.
Retype the privacy password.
V3 Read-Only
Confirm Password
Trap
The trap receiver is the network management system (NMS) that should
receive the SNMP traps. This NMS must have the same SNMP community
string as the trap sender. The IOLAN supports SNMP traps for restart and
SNMP community authentication error.
Internet Address Defines the hosts (by IP address) that will receive trap messages generated by
the IOLAN. Up to four trap hosts can be defined.
Field Format: IPv4 or IPv6 address
Time
Overview
You can set standard and summer time (daylight savings time) in the IOLAN. You can specify the
summer time settings as absolute, on a fixed date and time, or relative, on something like the third
day of the third week at this time in June.
Functionality
The IOLAN has a real-time internal clock, allowing the date and time to be set and viewed. It will
maintain the time over a short power outage and after reboots of the IOLAN. If you do not set the
time, it will start the clock at the factory set time.
When you set the IOLAN’s time, the connection method and time zone settings can affect the actual
internal clock time that is being set. For example, if you are connecting to the IOLAN through the
DeviceManager and your PC’s time zone is set to Pacific Standard Time (GMT -8:00) and the
IOLAN’s time zone is set to Eastern Standard Time (GMT -5:00), the IOLAN’s time is actually three
hours ahead of your PC’s time. Therefore, if you set the IOLAN’s time to 2:30 pm in the
DeviceManager, the IOLAN’s actual internal clock time is 5:30 pm. This is the only configuration
method that interprets the time and converts it between time zones, as necessary.
304
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Management
Network Time Tab Field Descriptions
You can configure your SNTP client in the IOLAN to automatically synchronize the IOLAN’s time.
Configure the following parameters:
SNTP Mode
The SNTP mode.
Data Options:
z
z
None—SNTP is turned off.
Unicast—Sends a request packet periodically to the Primary host. If
communication with the Primary host fails, the request will be sent to the
Secondary host.
z
z
Multicast—Listen for any broadcasts from an SNTP server and then
synchronizes its internal clock to the message.
Anycast—Sends a request packet as a broadcast on the LAN to get a
response from any SNTP server. The first response that is received is used
to synchronize its internal clock and then operates in Unicast mode with
that SNTP server.
Default: None
SNTP Version
Version of SNTP.
Range: 1-4
Default: 4
Primary Host
The name of the primary SNTP server from the IOLAN host table. Valid with
Unicast and Multicast modes, although in Multicast mode, the IOLAN will
only accept broadcasts from the specified host SNTP server.
Secondary Host
The name of the secondary SNTP server from the IOLAN host table. Valid
with Unicast and Multicast modes, although in Multicast mode, the IOLAN
will only accept broadcasts from the specified host SNTP server.
305
Download from Www.Somanuals.com. All Manuals Search And Download.
Management
Time Zone/Summer Time Tab Field Descriptions
You can configure an automatic summer time (daylight savings time) time change.
Configure the following parameters:
Time Zone Name The name of the time zone to be displayed during standard time.
Field Format: Maximum 4 characters and minimum 3 characters (do not use
angled brackets < >)
Time Zone Offset The offset from UTC for your local time zone.
Field Format: Hours hh (valid -12 to +14) and minutes mm (valid 0 to 59
minutes)
Summer Time
Name
The name of the configured summer time zone; this will be displayed during
the summer time setting. If this parameter is not set, then the summertime
feature will not work.
Field Format: Maximum 4 characters and minimum 3 characters (do not use
angled brackets < >)
Summer Time
Offset
The offset from standard time in minutes. Valid values are 0 to 180.
Range: 0-180
Default: 60
Summer Time
Mode
You can configure the summer time to take effect:
z
z
None—No summer time change.
Fixed—The summer time change goes into effect at the specified time
every year. For example, April 15 at 1:00 pm.
z
Recurring—The summer time changes goes into effect every year at same
relative time. For example, on the third week in April on a Tuesday at 1:00
pm.
Default: None
Fixed Start Date
Fixed End Date
Sets the exact date and time in which the IOLAN’s clock will change to
summer time (daylight saving time) hours.
Sets the exact date and time in which the IOLAN’s clock will end summer time
hours and change to standard time.
306
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Management
Recurring Start
Date
Sets the relative date and time in which the IOLAN’s clock will change to
summer time (daylight saving time) hours. Sunday is considered the first day of
the week.
Recurring End Date Sets the relative date and time in which the IOLAN’s clock will end summer
time hours and change to standard time. Sunday is considered the first day of
the week.
Custom App/Plugin
Overview
You can create custom applications for the IOLAN by using the Perle SDK. See the SDK
Programmer’s Guide (the SDK and guide are accessible via a request form located on the Perle
functions that are supported. You must download the program and any ancillary files to the IOLAN
and set the Serial Port Profile to Custom App/Plugin to run a custom application. You must also
specify the program executable in the Command Line parameter.
A custom application or plugin can be run on the serial port. In this situation, the application will start
once the serial port is activated and operate solely on the context of that serial port and any network
communications related to that serial port. You could run a different custom application on each serial
port. The serial port custom application or plugin is configured by specifying the Custom
App/Plugin profile for the serial port.
The system level custom application or plugin will begin execution immediately following the system
startup. It runs on the context of the whole system and can access network communications as well as
any or all serial ports.
Field Description
Configure the following parameter:
Command Line
The name of the application that has been already been downloaded to the
IOLAN, plus any parameters you want to pass to the program. For example,
using sample outrawprogram (this is sample program supplied with the
SDK), you would type:
outraw -s 0 192.168.2.1:10001 Acct:10001
if you were starting the application on the Server (notice the -s 0parameter
specifies serial port 1 to this particular application).
Field Format: Maximum of 80 characters
307
Download from Www.Somanuals.com. All Manuals Search And Download.
Management
Advanced
Overview
Review the configuration options in the Advanced page to determine if any of them apply to your
implementation.
Login Tab Field Descriptions
Configure the following parameters:
Use System Name Displays the System Name field value instead of default product name. When
in Prompts
enabled, the Server Name is displayed in the IOLAN login prompt, CLI
prompt, WebManager login screen, and the heading of the Menu.
Default: Disabled
Display Login
Banner
This parameter concerns the banner information (product name/software
version). This banner information is presented to a user with a login prompt.
For security reasons, you can turn off the display of this information.
Default: Disabled
Use Custom Login When set, and a custom language file is in use, the login prompt will use the
Prompt
string defined in the language file as the login prompt instead of the default
prompt, login:.
Default: Disabled
Bypass Login
Password
When set, authorized users who do not have a password set, with the exception
of the Admin user, WILL NOT be prompted for a password at login with Local
Authentication.
Default: Disabled
Use a Generic
WebManager
Login Screen
When set, and the user connects to the IOLAN using WebManager, the
WebManager login screen that is displayed is generic — the Perle banner,
IOLAN model name, and firmware version are not displayed to the user.
Default: Disabled
Password Retry
Limit
The number of attempts a user is allowed to enter a password for a serial port
connection from the network, before the connection is terminated and the user
has to attempt to login again. For users logging into the serial port, if this limit
is exceeded, the serial port is disabled for 5 minutes. A user with Admin level
rights can restart the serial port, bypassing the timeout, by issuing a kill on the
disabled serial port.
Default: 3
308
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Management
Bootup Files Tab Field Descriptions
You must have a TFTP server running on any host that you are uploading or downloading files
to/from. When you specify the file path, the path must be relative to the default path set in your TFTP
server software.
Configure the following parameters:
Firmware Host
The host name or IP address of the server that contains the firmware file. If you
use a host name, it must exist in the IOLAN’s host table or be resolved by
DNS.
Field Format: Resolvable host name, IPv4 address, IPv6 address
Firmware File
The path and file name, relative to the default path of your TFTP server
software, of the update software for the IOLAN that will be loaded when the
IOLAN is rebooted.
Configuration Host The host name or IP address of the server that contains the configuration file. If
you use a host name, it must exist in the IOLAN’s host table or be resolved by
DNS.
Field Format: Resolvable host name, IPv4 address, IPv6 address
Configuration File The path and file name, relative to the default path of your TFTP server
software, of the configuration file for the IOLAN that will be loaded when the
IOLAN is rebooted.
309
Download from Www.Somanuals.com. All Manuals Search And Download.
Management
Message of the Day (MOTD) Tab Field Descriptions
The message of the day is displayed when users log into the IOLAN through a telnet or SSH session
or through WebManager or EasyPort Web.
There are two ways to retrieve the message of the day to be displayed to users when they log into the
IOLAN:
z
The message of the day file is retrieved from a TFPT server every time a user logs into the
IOLAN. You must have a TFTP server running on any host that you are uploading or
downloading files to/from when using TFTP. When you specify the file path, the path must be
relative to the default path set in your TFTP server software.
z
The message of the day file is downloaded to the IOLAN and retrieved locally every time a user
logs into the IOLAN. You can download an MOTD file to the IOLAN in the DeviceManager by
selecting Tools, Advanced, Custom Files and then selecting the Download Other File option
and browse to the MOTD file. In WebManager, select Administration, Custom Files and select
the Other File option and browse to the MOTD file. After the MOTD is downloaded to the
IOLAN, you must specify the MOTD file name in the Filename field to access it as the message
of the day (no TFTP Host parameter is required when the file is internal).
Configure the following parameters:
TFTP Host
The host that the IOLAN will be getting the Message of the Day file from.
Field Format: Resolvable host name, IPv4 address, IPv6 address
Filename
The path and file name, relative to the default path of your TFTP server
software, of the file that contains a string that is displayed when a user connects
to the IOLAN. The IOLAN will look for the file internally (it must already be
downloaded), if only the file is specified (no TFPT host) or the file cannot be
found on the specified TFPT host.
Display MOTD in When enabled, displays the Message of the Day to users who are logging into
WebManager/
EasyPort Web
WebManager or EasyPort Web.
Default: Disabled
310
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Management
TFTP Tab Field Descriptions
You must have a TFTP server running on any host that you are uploading or downloading files
to/from.
TFTP file transfers send via UDP packets. When the packet delivery is interrupted for any
reason and a timeout occurs, that packet is resent if the retry count allows it. Therefore, if a
very large file is being transferred and is interrupted, the entire file is not resent, just the part
of the file that was not received.
Configure the following parameters:
Retry
The number of times the IOLAN will retry to transmit a TPFT packet to/from a
host when no response is received. A value of 0 (zero) means that the IOLAN
will not attempt a retry should TFTP fail.
Range: 0-5
Default: 5
Timeout
The time, in seconds, that the IOLAN will wait for a successful transmit or
receipt of TFTP packets before retrying a TFTP transfer.
Range: 3-10
Default: 3 seconds
Console Port Tab Field Descriptions
This tab is found on rack mount models and is used to configure the Admin/Console port.
Configure the following parameters:
x
Baud Rate
Specifies the baud rate of the line connected to the dedicated console port.
Data Options: 9600, 19200, 38400, 57600, 115200
Default: 9600
Flow Control
For IOLAN models that have a dedicated console port, defines how the data
flow is handled.
Data Options:
z
z
z
Soft—Data flow control is handled by the software.
Hard—Data flow control is handled by the hardware.
None—There is no data flow control.
Default: None
311
Download from Www.Somanuals.com. All Manuals Search And Download.
Management
312
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Controlling the RPS, I/O
Channels, and IPsec
Tunnels
14
Chapter 14
Introduction
The Control section appears when the IOLAN is connected to a Remote Power Switch and/or an I/O
model or you want to control the IPsec tunnel.
RPS Control
Overview
When a Remote Power Switch’s (RPS) console port is attached to the IOLAN’s serial port and the
serial port is configured for the Power Management profile, you will be able to control the RPS’s
power plugs either universally or individually (power on/off the whole RPS or individual plugs).
Field Descriptions
The following buttons are available:
On Button
Off Button
Cycle Button
Turns all the RPS plugs on.
Turns all the RPS plugs off.
Turns all the RPS plugs off and then on.
Reset to Default
State Button
Resets all the RPS plugs to the default state as configured in the Power
Management profile settings.
Plug Control ButtonDisplays a window that allows you to manage the individual plugs on the RPS.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
313
Download from Www.Somanuals.com. All Manuals Search And Download.
RPS Control
Plug Control
Overview
When you click the Plug Control button, you can power on/off individual plugs.
Field Descriptions
The following buttons are available:
On Button
Off Button
Cycle Button
OK Button
Turns the selected plug on.
Turns the selected plug off.
Turns the selected plug off and then on.
Closes the window.
314
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Port Power Control
Serial Port Power Control
Overview
The Serial Port Power Control window allows you to manage the power plugs that have been
associated with the serial devices connected to the IOLAN.
Field Descriptions
The following buttons are available:
On Button
Off Button
Cycle Button
Turns the selected plug on.
Turns the selected plug off.
Turns the selected plug off and then on.
Power Plug Status Displays a window that provides the plug status for every plug associated with
Button the serial port.
Power Plug Status
This Power Plug Status window displays the status of all the plugs associated with a serial port.
Click OK to close this window.
315
Download from Www.Somanuals.com. All Manuals Search And Download.
I/O Channels
I/O Channels
Overview
When the DeviceManager is connected to an I/O model IOLAN, the I/O Status/Control option is
available. You can view the I/O status and manually control such options as clearing alarms, clearing
minimum/maximum values, resetting the channel(s), and activating/deactivating output.
The following buttons are available:
Reset Channel
Button
Resets the highlighted channel (click on a channel to highlight it).
Clear Alarm
Button
Clears the alarm. Note that if the condition that tripped the alarm still exists, the
alarm will not look like it’s cleared, but will reflect the appropriate alarm level
severity. Alarm Level 0 means that the alarm has not been triggered.
Clear Latched
Input Button
Clears the latched value.
Clear Minimum
Value Button
Clears the minimum value.
Clears the maximum value.
Manually activates the channel output.
Clear Maximum
Value Button
Activate Output
Button
Deactivate Output Manually deactivates the channel output.
Button
Reset All Channels Resets all the channels.
Button
Refresh Button
Resets the highlighted channel (click on a channel to highlight it).
316
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
IPsec Tunnel Control
IPsec Tunnel Control
You can start, stop, and restart all the IPsec tunnels. When you start the IPsec tunnels, the Boot
Action configured for each IPsec tunnel is what determines its state.
The following buttons are available:
Start Button
Stop Button
Restart Button
Starts all IPsec VPN tunnels.
Stops all IPsec VPN tunnels.
Stops and then starts all IPsec VPN tunnels.
317
Download from Www.Somanuals.com. All Manuals Search And Download.
IPsec Tunnel Control
318
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
System Administration
Chapter 15
15
Introduction
This chapter addresses the functions that the Admin user or a user with Admin Level privileges might
do. This chapter uses the DeviceManager as the configuration method described in most
administrative functions. As a general rule, administrative functions are accessed from the menu bar
in the DeviceManager and under the Administration option in the WebManager’s navigation tree.
Managing Configuration Files
Saving Configuration Files
When you connect to the IOLAN using either DeviceManager or WebManager, the IOLAN’s active
configuration file is loaded into the configurator. To save a backup of the configuration file locally,
do the following:
z
In DeviceManager:
1. From the menu bar, select File, Save As.
2. In the Save As dialog box, specify a name and format for the file. Notice that you can save
the file as either a .dmeor a .txt file. Either file format can be imported into the
DeviceManager and downloaded to the IOLAN in the future. The .dmeis a binary file and
the .txt file is a text file that can be viewed in any text editor.
3. Click Save.
z
In WebManager:
1. In the navigation tree, select the Administration option.
2. In the configuration area, click the Backup/Restore button.
3. In the Backup group box, select the format (Binary or Text) in which you want to save the
file. Either file format can be imported into the DeviceManager and downloaded to the
IOLAN in the future.
4. Click the Backup Configuration button.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
319
Download from Www.Somanuals.com. All Manuals Search And Download.
Managing Configuration Files
Downloading Configuration Files
You can download a configuration file to the IOLAN by doing the following:
z
In DeviceManager:
1. Connect to the IOLAN to retrieve the current configuration file.
2. Open the configuration file you want to download to the IOLAN by selecting File, Import
Configuration from a File and then browsing to the configuration file. This will replace the
retrieved configuration file.
3. Select Tools, Download Configuration to IOLAN or click the Download All Changes
button.
4. Reboot the IOLAN.
z
In WebManager:
1. In the navigation tree, select the Administration option.
2. In the configuration area, click the Backup/Restore button.
3. In the Restore group box, browse to the configuration file that you want to download to the
IOLAN.
4. Click the Restore Configuration button.
5. Reboot the IOLAN.
320
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Managing Configuration Files
Downloading Configuration Files to Multiple IOLANs
You can download a configuration file to multiple IOLANs at the same time by doing the following
in DeviceManager (DeviceManager is the only configurator that does this function):
1. Select Tools, Download Configuration to Multiple IOLANs.
2. Specify the IOLANs that you want to download the configuration to:
Enter the following information for each IOLAN that you want to configure with the same
configuration file:
IP Address
Enter the IP address of the IOLAN that you want to download the
configuration to.
Field Format: IPv4 or IPv6 address
Server Name
The name of the IOLAN. The IOLAN name that you put in this field is
passed into the configuration before it is downloaded to the IOLAN and
cannot be left blank.
Password
Enter the Admin user password for the IOLAN.
Reboot Server
Determines whether or not the IOLAN is rebooted after it has received the
new configuration. The new configuration definitions will not go into
effect until the IOLAN is rebooted.
3. Click Add to add the IOLAN to the download list. You can also click on the IOLAN entry and
edit any information and then click Update to make the edits permanent.
321
Download from Www.Somanuals.com. All Manuals Search And Download.
Managing Configuration Files
4. Click the Download> button to start the download process. A status window will display with
the configuration download status.
Uploading Configuration Files
When you upload a configuration to the DeviceManager, you are uploading the IOLAN’s working
configuration file. In most other configurators (the exception being SNMP), you are always seeing
the working configuration file.
In DeviceManager, select Tools, Upload Configuration from IOLAN. The working configuration
file will automatically be loaded into the DeviceManager.
Specifying a Custom Factory Default Configuration
When you receive the IOLAN, it comes with a factory default configuration that the IOLAN can be
reset to at any time. Administrators might find it useful to customize the factory default configuration
file, so that if the IOLAN gets reset to its factory defaults, it will be reset to defaults that the
Administrator specified.
There are two ways you can set the custom factory default configuration:
z
Download a file to the IOLAN—You can download a custom factory default file to the IOLAN
using any of the configuration methods. In DeviceManager, you must connect to the IOLAN and
then select Tools, Advanced, Custom Files, Custom Factory Default Configuration and then
specify the file. In WebManager, you must connect to the IOLAN and then select
Administration, Reset, Factory Defaults, Set Current Configuration as Factory Default.
z
Download the current configuration to the IOLAN—You can specify the configuration that
you are working with/on as the custom factory default configuration using any of the
configuration methods (you must be connected to the IOLAN). In DeviceManager, select Tools,
Advanced, Set Factory Default to IOLAN. In WebManager, select Administration, Reset,
Factory Defaults, Get and Set Factory Default Configuration File.
322
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Downloading IOLAN Firmware
Resetting the IOLAN to the Default Configuration
The RESET button is available on all IOLAN models (except medical unit models). The button
allows you to reset the IOLAN to its Perle or custom factory default configuration. The Power/Ready
LED color and the resetting of the IOLAN default configuration vary depending on how long you
press and hold the RESET button, as shown in the table below.
When you press and
hold the RESET
button for...
LED color
IOLAN system status
Less than 3 seconds
Blinking amber
Reboots
Between 3 and 10
seconds
Blinking amber, then turns Reboots and resets the configuration to the
solid amber when you factory default (either the Perle or custom
release the RESET button default configuration)
Over 10 seconds
Blinking amber, then turns Reboots and resets the configuration to the
solid amber when you
Perle factory default configuration
release the RESET button
Downloading IOLAN Firmware
To upgrade the IOLAN firmware (software):
z
In DeviceManager, select Tools, Advanced, Download Firmware to IOLAN. You can browse
to the firmware location. Once the firmware download is complete, you will be prompted to
reboot the IOLAN. You can choose to reboot the IOLAN at another time by selecting Tools,
Reset, Reboot IOLAN.
z
In WebManager, under the Administration option, select Update Firmware. Either browse to
the firmware file and then click the Upload button or configure the TFTP server and click the
Upload button. Note: If you use the TFTP option, the specified TFTP server must be on the same
subnet as the IOLAN.
Upgrading the firmware does not affect the IOLAN’s configuration file or downloaded custom files.
Calibrating I/O
All I/O channels are factory calibrated and should not need recalibration during initial use. However
should calibration be required, you can recalibrate in DeviceManager or WebManager. In
DeviceManager, you calibrate the I/O channel(s) by selecting Tools, I/O Channels, Calibrate. In
WebManager, you calibrate the I/O channel(s) by selecting I/O Channels, Calibrate.
Calibrating Analog Input
To calibrate an Analog input channel, read the section that applies to the type of input you are
calibrating. Note that calibration will be done for the active channel configuration; for example, if
Channel A1 is set to voltage, you cannot calibrate it for current. The voltage range configured for this
channel will also dictate what is being calibrated. For example, if this channel is configured for a
range of +/-10V, calibrating this channel will calibrate all channels which are configured for +/-10V.
During the calibration process, you will be asked to apply the minimum and maximum configured
range value to the channel; for example, to calibrate for voltage +/- 10V, you will be prompted to first
apply -10V and then +10V to the channel.
Also, you cannot actively calibrate disabled channels (although, for Voltage, if you enable the
channel and then set it for a range that has already been calibrated for another channel, it will also be
calibrated).
323
Download from Www.Somanuals.com. All Manuals Search And Download.
Calibrating I/O
Calibrating Voltage
When calibrating the IOLAN Analog input for voltage, you will need a calibration meter that is better
than .1% volts precision. When you calibrate one channel, all voltage channels are automatically
calibrated for that range; if another channel is set for a different range, you will need to calibrate that
channel separately, but all channels that use that range are also automatically calibrated.
Calibrating Current
When calibrating the IOLAN Analog input for current, you will need a calibration meter that is better
than .1% current precision. Each channel needs to be calibrated individually.
Calibrating Temperature Input
To calibrate an Analog (Temperature) input channel, read the section that applies to the type of input
you are calibrating. Note that calibration will be done for the active channel configuration; for
example, if Channel A1 is set to thermocouple, you cannot calibrate it for RTD. During the
calibration process, you will be asked to apply the minimum and maximum range value to the
channel in either mV or Ohms; for example, to calibrate for thermocouple J 0 to 760C, you will be
prompted to first apply -80mV and then +80mV to the channel.
Also, you cannot actively calibrate disabled channels (although if you enable the channel and then set
it for the type of thermocouple or RTD that has already been calibrated on another channel, it will
also be calibrated).
Calibrating Thermocouple
When calibrating the IOLAN Analog input for thermocouple, you will need a calibration meter that is
better than .15% accuracy. When you calibrate one channel, all thermocouple channels are
automatically calibrated for that range; if another channel is set for a different range, you will need to
calibrate that channel separately, but all channels that use that range are automatically calibrated.
Calibrating RTD
When calibrating the IOLAN Analog input for RTD, you will need a resistor that is better than .05%
Ohms accuracy. When you calibrate one channel, all RTD channels are automatically calibrated for
that range; if another channel is set for a different range, you will need to calibrate that channel
separately, but all channels that use that range are automatically calibrated.
324
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Calibrating I/O
Calibrating Analog Channels
Analog Input can be calibrated for Analog and Temperature IOLAN models.
Select the channel you want to calibrate. This example uses an A4 model that has channel A1 set to
Current with a Range of 0 to 20mA.
If you have not disabled confirmation messages (Tools, Options in DeviceManager only), you will
get prompted to verify channel calibration.
Click Yes to proceed with calibration. You are now prompted to apply 0 mA to the positive (+) and
negative (-) terminals. Once that is done, click Yes to proceed.
You are now prompted to apply 20 mA to the positive (+) and negative (-) terminals. Once that is
done, click Yes to proceed.
Once calibration is successfully completed, click OK to finish the process.
Resetting Calibration Data
You can reset the I/O channels calibrations to the factory calibrations in DeviceManager by selecting
Tools, I/O Channels, Reset Calibrate Data or in WebManager by selecting Administration, Reset,
I/O Calibration.
325
Download from Www.Somanuals.com. All Manuals Search And Download.
Setting the IOLAN’s Date and Time
Setting the IOLAN’s Date and Time
When you set the IOLAN’s time, the connection method and time zone settings can affect the actual
internal clock time that is being set. For example, if you are connecting to the IOLAN through the
DeviceManager and your PC’s time zone is set to Pacific Standard Time (GMT -8:00) and the
IOLAN’s time zone is set to Eastern Standard Time (GMT -5:00), the IOLAN’s time is actually three
hours ahead of your PC’s time. Therefore, if you set the IOLAN’s time to 2:30 pm in the
DeviceManager, the IOLAN’s actual internal clock time is 5:30 pm. This is the only configuration
method that interprets the time and converts it between time zones, as necessary.
All other configuration methods set the IOLAN’s internal clock time to the time specified, with no
interpretation.
To set the IOLAN’s system clock in DeviceManager, select Tools, Advanced, Set Unit Time/Date
and in WebManager select Administration, Date/Time. The Set Date/Time window is displayed.
Configure the following parameters:
Date
The IOLAN’s date. The format of the IOLAN’s date is dependent on the
Windows operating system and regional settings.
Time
The IOLAN’s internal clock time, based on your PC’s time zone. For example,
if your PC’s time zone is set to Pacific Standard Time (GMT -8:00) and the
IOLAN’s time zone is set to Eastern Standard Time (GMT -5:00), the
IOLAN’s time is three hours ahead of your PC’s time. If you set the IOLAN’s
time to 2:30 pm, the IOLAN’s actual internal clock time is 5:30 pm.
Use the PCs
Date/Time
When enabled, sets the IOLAN’s time to the PCs time.
Default: Enabled
This option is unique to the DeviceManager.
Rebooting the IOLAN
When you download any file (configuration, keys, certificates, firmware, etc.) to the IOLAN, you
must reboot the IOLAN for it to take effect by selecting Tools, Reset, Reboot Server in
DeviceManager and Administration, Reboot Unit in WebManager.
Resetting the IOLAN to Factory Defaults
You can reset the IOLAN to its factory default configuration by selecting Tools, Reset, Reset to
Factory Default in DeviceManager and Administration, Reset, Factory Defaults in WebManager.
The IOLAN will automatically reboot itself with the Perle factory default or custom factory default
configuration.
326
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Resetting the SecurID Node Secret
Resetting the SecurID Node Secret
If you are using SecurID external authentication, you can select Tools, Reset, Reset SecurID Node
Secret in DeviceManager and Administration, Reset, SecurID Secret in WebManager to reset the
node secret. You do not need to reboot the IOLAN for this to take effect, it works instantly.
Language Support
Two language files, in addition to English, are supplied on the supplemental CD, French and German.
You can use any of these language files to create a translation into a language of your choice. You
can download the language file (whether the language is supplied or translated) into the IOLAN and
select the Language option of Custom Language or Customlang (custom language), making the
Menu and CLI field labels display in the desired language.
You can view Menu or CLI in one other language only (as well as English). If you download another
language file, this new language will replace the first language you downloaded.
You can revert to English at any time; the English language is stored permanently in the IOLAN and
is not overwritten by your new language. Each user logged into the IOLAN can operate in either
English or the downloaded language.
Loading a Supplied Language
This section describes how to download a language file using the CLI, since it is the least intuitive
method. French and German language files are provided on the supplemental CD.
To load one of the supplied languages into the IOLAN, so the Menu or CLI fields appear in another
language, do the following:
1. Open the supplemental CD and identify the language file, either Iolan_ds_French.txtor
Iolan_ds_German.txt, or supply one of your own translated files.
2. Copy the language file to a host machine on the network; place it in the main file system or on
the main hard drive.
3. Either use the TFTP defaults in the IOLAN or, configure as necessary, TFTP in the IOLAN.
4. In the CLI of the IOLAN, enter the host IP address and file name; for example,
netload customlang 172.16.4.1 /temp/Iolan_ds_French.txt
The IOLAN will download the language file via TFTP.
In DeviceManager select Tools, Advanced, Custom Files and then select Download Custom
Language File and browse to the language file. In WebManager select Administration, Custom
Files and then specify the Custom Language File option and browse to the language file.
5. To set an individual user to the new language, go to the Users menu and, in the Language field
select Customlang. In the CLI (only) you can set individual users or all users to the new
language; see the set user *command.
6. The user will see the change of language when he/she logs out (Main Menu, Sessions Menu,
Logout) and logs back into the IOLAN. If, as Admin user, you change your language setting to
Customlang, you will see the text menus display in the new language when you save and exit
the Change User form. Users with Level Normal can also change their display language.
If you download a new software version, you can continue to use your language unchanged;
however, we recommend translating the new strings, which will be added to the end of the
language file. A Reset to Factory Defaults will reload the Customlang as English.
On successful download, the Customlang in the IOLAN will be overwritten by the new
language.
327
Download from Www.Somanuals.com. All Manuals Search And Download.
Language Support
Translation Guidance
To help you with your translation, of supplied ASCII text language files we offer the following
guidance:
z
The IOLAN will support languages other than English (and the supplied German and French
languages). The English language file, english.txt, displays the character length of each line
at the beginning of the line. If a translated line goes over that character length, it will be
displayed truncated in the Menu or CLI.
z
Translate line for line, do not omit lines if you do not know the translation; leave the original
untranslated text in place. Also, you must maintain the same sequential order of lines. It is a good
practice to translate the file using a text editor that displays line numbers, so you can periodically
verify that the line sequence has not changed from the original file (by comparing it to the
original file).
z
z
z
Keep all translations in quotes, otherwise the line will not display properly.
Each line must end with a carriage return.
If a line contains only numbers, for example 38400, leave that line in place, unchanged (unless
you are using a different alphabet).
Software Upgrades and Language Files
If you receive a software upgrade for the IOLAN, the language files supplied on the supplemental
diskette/CD might also have been updated. We will endeavour to provide a list of those changes in
another text file on the same supplemental CD.
The upgrade of your software (firmware) will not change the display of the language in the
Menu or CLI.
If you are already using one of the supplied languages, French or German, you probably want to
update the language file in the IOLAN. Until you update the IOLAN with the new language file, new
text strings will appear in English.
If you are already using a language translated from an earlier version, you probably want to amend
your translation. When a language file is updated, we will try to maintain the following convention:
1. New text strings will be added to the bottom of the file (not inserted into the body of the existing
file).
2. Existing text strings, if altered, will be altered in sequence; that is, in their current position in the
file.
3. The existing sequence of lines will be unchanged.
4. Until you have the changes translated, new text strings will appear in the Menu or CLI in
English.
328
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Downloading Terminal Definitions
Downloading Terminal Definitions
All terminal types can be used on the IOLAN. Some terminal types which are not already defined in
the IOLAN, however, are unable to use Full Screen mode (menus) and may not be able to page
through sessions properly. When installed, the IOLAN has several defined terminal types—Dumb,
WYSE60, VT100, ANSI, TVI925, IBM3151, VT320, and HP700.
If you are not using, or cannot emulate, any of these terminal types, you can add up to three
additional terminal definitions to the IOLAN. The terminal definitions can be downloaded from a
TCP/IP host.
To download terminal definitions, follow these steps:
1. Decide which TCP/IP host you are going to use. It must be a machine with enabled.
2. Configure TFTP in the IOLAN as necessary.
3. Select Tools, Advanced, Custom Files from the menu bar in DeviceManager and
Administration, Custom Files in WebManager.
4. From the File Type drop-down, select Download Terminal Definition. Select the terminal
definition option 1, 2, or 3 and then browse to the terminal definition file that is being
downloaded to the IOLAN.
5. In the Terminal profile, select the Terminal Type Termx that you custom defined.
Creating Terminal Definition Files
To create new terminal definition files, you need to copy and edit the information from the terminfo
database.
1. On a UNIX host, change directory to /usr/lib/terminfo/x(where x is the first letter of the
required terminal type). For a Wyse60, for example, you would enter the command
cd /usr/lib/terminfo/w.
2. The termcap files are compiled, so use the command infocmp termfileto read the required
file (for example: infocmp wy60).
3. Check the file for the attribute xmc#n(where n is greater than or equal to 1). This attribute will
corrupt menu and form displays making the terminal type unsuitable for using Menu mode.
4. If the terminal definition is suitable, change to a directory of your choice.
5. Rename and copy the file to the directory specified at step 4. using the command
infocmp termfile > termnwhere n is greater than or equal to 1; (for example,
infocmp wy50 > term1). Make sure the file has global read and execute permission for its
entire path.
6. Edit the file to include the following capabilities in this format:
term=
acsc=
bold=
civis=
clear=
cnorm=
cup=
rev=
rmacs=
rmso=
smacs=
smso=
page=
circ=
329
Download from Www.Somanuals.com. All Manuals Search And Download.
Resetting Configuration Parameters
For example:
term=AT386 | at386| 386AT |386at |at/386 console
acsc=jYk?lZm@qDtCu4x3
bold=\E[1m
civis=
clear=\E[2J\E[H
cnorm=
cup=\E[%i%p1%02d;%p2%02dH
rev=\E4A
rmacs=\E[10m
rmso=\E[m
smacs=\E[12m
smso=\E[7m
page=
circ=n
As you can see from the example, capabilities which are not defined in the terminfo file must
still be included (albeit with no value). Each entry has an 80 character limit.
On some versions of UNIX, some of the capabilities are appended with a millisecond delay
(of the form $<n>). These are ignored by the IOLAN and can be left out.
The ‘acsc’ capability, if defined, contains a list of character pairs. These pairs map the
characters used by the terminal for graphics characters to those of the standard (VT100)
character set.
Include only the following character pairs:
jx, kx, lx, mx, qx, tx, ux and xx
(where x must be substituted by the character used by the terminal). These are the box-
drawing characters used to display the forms and menus of Menu mode. They must be
entered in this order.
The last two capabilities will not be found in the terminfo file. In the page field you must
enter the escape sequence used by the terminal to change screens. The circ field defines
whether the terminal can use previous page and next page control sequences. It must be set
to y or n. These capabilities can be found in the documentation supplied with the terminal.
Resetting Configuration Parameters
You can reset the IOLAN to its factory default settings (this will reset it to the Perle factory default or
custom factory default settings, depending on what has been configured) through any of the following
methods:
z
You can push in the recessed button at the back of the IOLAN hardware for three to ten seconds
(pushing it in and then quickly releasing will just reboot the IOLAN)
z
z
z
DeviceManager, select Tools, Reset, Reset to Factory Defaults
CLI, at the command line type, reset factory
WebManager, select Administration, Reset, Factory Default, and then click the Reset to
Factory Defaults button
z
z
Menu, select Network Configuration, Reset to Factory Defaults
SNMP, in the adminInfo folder, Setthe adminFunction variable to 2
330
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Lost Admin Password
Lost Admin Password
If the Admin user password is lost, there are only two possible ways to recover it:
z
z
reset the IOLAN to the factory defaults
have another user that has admin level rights, if one is already configured, reset the Admin
password
331
Download from Www.Somanuals.com. All Manuals Search And Download.
Lost Admin Password
332
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Applications
Chapter 16
16
Introduction
This chapter provides examples of how to integrate the IOLAN within different network
environments or applications. Each scenario provides an example of a typical setup and describes the
configuration steps to achieve the IOLAN functionality feature.
Configuring Modbus
This sections provides a brief overview of the steps required to configure the IOLAN for your
Overview
This section describes the high-level steps required to configure the IOLAN as a Modbus Master or
Slave Gateway.
Configuring a Master Gateway
To configure a Master Gateway (Modbus Master connected to the serial side of the IOLAN), do the
following:
1. Set the serial port that is connected to the serial Modbus Master to the Modbus Gateway profile.
2. In the Modbus Gateway profile on the General tab, set the Mode to Modbus Master.
3. Still on the General tab, click the Destination Slave IP Mappings button to map the Modbus
Slave’s IP addresses and their UIDs that the serial Modbus Master will attempt to communicate
with.
4. For specialized configuration options, select the Advanced tab and configure as required.
Configuring a Slave Gateway
To configure a Slave Gateway (Modbus Master resides on the TCP/Ethernet network), do the
following:
1. Set the serial port that is connected to the serial Modbus Slave(s) to the Modbus Gateway
profile.
2. In the Modbus Gateway profile on the General tab, set the Mode to Modbus Slave.
3. Still on the General tab, specify the Modbus Slave UIDs that the TCP Modbus Master will
attempt to communicate with.
4. Still on the General tab, click the Advanced Slave Settings button to configure global Slave
Gateway settings.
5. For specialized configuration options, select the Advanced tab and configure as required.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
333
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring Modbus
Modbus Gateway Settings
The scenarios in this section are used to illustrate how the IOLAN’s Modbus Gateway settings are
incorporated into a Modbus device environment. Depending on how your Modbus Master or Slave
devices are distributed, the IOLAN can act as both a Slave and Master Gateway(s) on a multiport
IOLAN or as either a Slave or Master Gateway on a single port IOLAN.
Modbus Master Gateway
The IOLAN acts as a Master Gateway when the Modbus Master is connected to a serial port on the
IOLAN. Each Modbus Master can communicate to UIDs 1-247.
Modbus Slave
Serial
Master Gateway
EIA-232
TCP
Network
EIA-422/485
IOLAN
Modbus Master
Modbus Slave
Modbus Slave
Modbus Master
Modbus Slave Gateway
The IOLAN acts as a Slave Gateway when the Modbus Master resides on the TCP/Ethernet network
and the Modbus Slaves are connected to the serial ports on the IOLAN. Note: The IOLAN provides a
single gateway to the network-attached Modbus Masters. This means that all Modbus Slaves attached
to the IOLAN’s serial ports must have a unique UID. Multiple Masters on the network can
communicate with these Modbus Slaves. Note: If a transaction is in progress to a Modbus Slave,
other requests to that same device will be queued until that transaction is complete.
Modbus Master
Serial
Modbus Slave
Slave Gateway
EIA-232
TCP
Network
EIA-422/485
IOLAN
Modbus Slave
Modbus Slave
Modbus Master
Modbus Slave
334
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring Modbus
Modbus Serial Port Settings
Modbus Master Settings
When the Modbus Masters is attached to the IOLAN’s serial port, configure that serial port to the
Modbus Gateway profile acting as a Modbus Master. You must configure the Modbus TCP Slaves
on the TCP/Ethernet side so the IOLAN can properly route messages, using the Modbus Slave’s
UIDs, to the appropriate TCP-attached devices.
Modbus Slave
IP: 10.10.10.12
UID: 23
Master Gateway
Serial
EIA-232
TCP
Network
IOLAN
IP: 10.10.10.10
EIA-422/485
Modbus Master
Modbus Slave
IP: 10.10.10.11
UID: 22
Serial Port 1
Modbus Master
To configure the Modbus Master on serial port 1, do the following:
1. Select the Modbus Gateway profile for serial port 1.
2. On the General tab, enable the Modbus Master parameter.
3. Click the Destination Slave IP Mappings button and click the Add button in the Destination
Slave IP Mappings window.
4. Configure the Destination Slave IP Mappings window as follows:
The IOLAN will send a request and expect a response from the Modbus Slave with an IP
Address of 10.10.10.11 on Port 502 with UID 22 and from the Modbus Slave with and IP
Address of 10.10.10.12 on Port 502 with UID 23 (remember when Type is set to Host, the
IOLAN increments the last octet of the IP address for each UID specified in the range).
335
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring Modbus
Modbus Slave Settings
When you have Modbus Slaves on the serial side of the IOLAN, configure the serial port to the
Modbus Gateway profile acting as a Modbus Slave. There is only one Slave Gateway in the IOLAN,
so all Modbus serial Slaves must be configured uniquely for that one Slave Gateway; all serial
Modbus Slaves must have unique UIDs, even if they reside on different serial ports, because they all
must be configured to communicate through the one Slave Gateway.
Modbus Master
Slave Gateway
Serial Port 1
TCP
Network
EIA-422/485
IOLAN
IP: 10.10.10.10
Modbus Slave
Modbus Master
UID: 7
Modbus Slave
Modbus Slave
UID: 6
UID: 8
To configure the Modbus Gateway on serial port 1, do the following:
1. Select the Modbus Gateway profile for serial port 1.
2. On the General tab, enable the Modbus Slave parameter.
3. Still on the General tab, specify the UID Range as 6-8as shown below:
4. Click the Advanced Slave Settings button to verify that the default settings are acceptable.
336
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring PPP Dial On Demand
Configuring PPP Dial On Demand
The IOLAN can be configured to access remote networks via modems connected to the serial
interface of the IOLAN. By configuring the IOLAN for the Remote Access (PPP) profile, data that
is destined for the remote network will initiate a modem connection to the remote network to route
the data to its appropriate destination.
172.16.0.0
PPP Local IP Addr: 195.16.20.23
PPP Remote IP Addr: 195.16.20.24
Network
IOLAN
Local Host
204.16.0.0
Example shows IOLAN
configuration
Network
Remote Host
204.16.25.72
If you want to configure a serial port to use PPP dial on demand, do the following:
1. Create an entry for the modem and its initialization string (Serial, Advanced, Modems tab).
2. Set the serial port to Remote Access (PPP).
3. In Remote Access (PPP), select the Advanced tab. Enable the Connect option and select Dial
Out. Set the Modem parameter to the modem you just added. Enter the Phone number that the
modem will be calling.
4. Still on the Advanced tab, set the Idle Timeout parameter to a value that is not zero (setting this
value to zero creates a permanent connection).
5. On the General tab, enter one of the following:
z
z
A Local and/or Remote IPv4 Address
A Local and/or Remote IPv6 Interface Identifier
Note that this IP address or interface identifier should be on its own unique network; that is, not
part of the local or remote networks.
In this example, the local network has an IPv4 address of 172.16.0.0/16 and the remote network
has an IPv4 address of 204.16.0.0/16, so we arbitrarily assigned the PPP IPv4 Local IP Address
as 195.16.20.23and the PPP IPv4 Remote IP Address as 195.16.20.24.
337
Download from Www.Somanuals.com. All Manuals Search And Download.
Setting Up Printers
6. Next you need to create a gateway and destination route entry. Select Network, Advanced, and
the Route List tab.
For the destination, if you want the connection to be able to reach any host in the remote
network, set the Type to Network and specify the network IP address and subnet/prefix bits; if
you want the connection to go directly to a specific remote host, set the Type to Host and specify
the host’s IP address.
We want a specific host to the be destination, so we configured the Type as Host:
We also need to create a Gateway entry using the same PPP IPv4 local IP address. Any traffic
that goes through the gateway will automatically cause PPP to dial out:
Setting Up Printers
The IOLAN can communicate with printers on its serial ports using LPD and RCP protocols, as well
as print handling software using TCP/IP.
Remote Printing Using LPD
When setting up a serial line that access a printer using LPD, do the following:
1. Set the serial port to Printer and configure the Speed, Flow Control, Stop Bits, Parity, and Bits
parameters so that they match the printer’s port settings.
2. Save your settings and restart the serial port.
3. Verify that LPD has been configured on the network host. To configure LPD on the network
host, you need to know the name or IP address of the IOLAN and the print queue, either
raw_p<port_number>for a raw data connection or ascii_p<portnumber>for an ASCII
character connection. You can optionally append _dor _f to the queue name to add a
<control d>or <form feed>to the end of the print job.
338
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Setting Up Printers
Remote Printing Using RCP
When setting up a serial port that accesses a printer using RCP, do the following:
1. Set the serial port to Printer and configure the Speed, Flow Control, Stop Bits, Parity, and Bits
parameters so that they match the printer’s port settings.
2. Save your settings and restart the serial port.
3. To execute a print job, use either of the following syntaxes:
rcp <filename> <ip_address>:p<#>
or
rcp <filename> <IOLAN_Name>:p<#>
where <#>is the IOLAN serial port number.
Remote Printing Using Host-Based Print Handling Software
Printers connected to the IOLAN can be accessed by TCP/IP hosts using print handling software.
1. Set the serial port to TCP Sockets. Enable the Listen for connection option. On the Hardware
tab, configure the Speed, Flow Control, Stop Bits, Parity, and Bits parameters so that they
match the printer’s port settings.
2. Save your settings and restart the serial port.
3. The print handling software needs to know the Name of the IOLAN and the TCP Port number
assigned to the printer serial port.
339
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring a Virtual Private Network
Configuring a Virtual Private Network
You can configure the IOLAN to act as a Virtual Private Network (VPN) gateway using the IPsec
protocol. Any of the following scenarios can be configured using one IOLAN and a host/server
running IPsec software or two IOLANs, each acting as the VPN gateway. All the examples have NAT
Traversal (NAT_T) enabled, since both VPN gateways are running through routers.
IOLAN-to-Host/Network
The following example shows how to configure an IPsec tunnel between serial devices connected to
the IOLAN and a host/network. NAT Traversal (NAT_T) is enabled in this example (on both sides)
because the VPN tunnel is going private network to public network to private network. This example
uses an RSA signature for the authentication method, so the steps required to configure the
authentication are in this example.
Unencrypted
Data
External IP Address
196.15.23.56
External IP Address
199.24.23.88
Right
Remote VPN
Gateway
Router
Router
Internet
192.168.45.99
172.16.45.99
172.16.45.1
Left
192.168.45.45
IPsec Tunnel--Encrypted Data
Unencrypted
Data
192.168.45.87
192.168.45.12
1. Configure the IPsec tunnel in the IOLAN:
340
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring a Virtual Private Network
2. Use a utility (for example, Openswan’s newhostkey/showhostkey utilities) to generate the RSA
signature public key. Copy the public key portion to a file using the following format:
<description>=<keydata>
or just
<keydata>
For example:
# RSA 1024 bits scs48_vpn Tue Jan 3 15:29:33 2006
leftrsasigkey=0sAQOEmzSTdNv1ZUJW9UmPtUY84gM5AGEAOq9gUwFqnOUsESfnuXlxPe+Mc+uf
XYvg1vxYZ0XhdIh1FwFeeIQLyRvD447mjriMFjJfheMUtHqOZhvWSE18ZfGEXNOo7yagZqLzjxu9
XJIA2SAGV+/LL3epPqW2fV5ORxVrf7uWn7I5FQ==
Note that the pound sign (#) indicates a comment line and all characters in that line are ignored.
The key value itself should not have an carriage returns.
3. In the DeviceManager, select Tools, Advanced, Keys and Certificates. In the WebManager,
select Tools, Administration, Keys/Certificates. Download the RSA signature file to the
DeviceManager, specifying the IPsec tunnel it’s for:
4. In the same Keys and Certificates window, upload the IOLAN’s RSA signature public key:
Install the IOLAN’s public key in the remote VPN gateway for the Serial_Devices IPsec tunnel.
5. Enable the IPsec service found in Security, Services.
341
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring a Virtual Private Network
Network-to-Network
The following examples shows how to configure a network-to-network IPsec tunnel. This example
uses the X.509 Certificate authentication method, so it includes the configuration requirements for the
X.509 certificate. NAT Traversal (NAT_T) is enabled in this example (on both sides) because the
VPN tunnel is going private network to public network to private network. Notice also that the serial
devices connected to the IOLAN can be accessed by the VPN tunnel, since they are included in the
network configuration as part of the 172.16.45.0 subnetwork.
External IP Address
199.15.23.56
External IP Address
196.15.23.56
Right
Remote VPN
Gateway
Router
Router
Left
Internet
192.168.45.99
172.16.45.99
172.16.45.1
192.168.45.45
IPsec Tunnel--Encrypted Data
Unencrypted
Data
Unencrypted
Data
172.16.45.84
172.16.45.23
192.168.45.87
192.168.45.12
1. Configure the IPsec tunnel in the IOLAN:
2. Click the Remote Validation Criteria button and enable and populate the fields that are required
for the remote X.509 certificate validation. If you just want to validate the X.509 certificate
signer, you do not need to enable any of the remote validation criteria fields.
342
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring a Virtual Private Network
3. If the signer of the remote X.509 certificate has not already been included in the CA list file that
has already been downloaded to the IOLAN, you need to add (append) the signer of the X.509
certificate to the CA list file and then download the file to the IOLAN by selecting Tools,
Advanced, Keys and Certificates. In the Keys and Certificates window, select Download
SSL/TLS CA and the file name and click OK. Note that this file must be a concatenation of all
certificate signers required for any SSL/TLS, LDAP, SSH, and/or IPsec connections.
4. Enable the IPsec service found in Security, Services.
Host-to-Host
The following example shows how to configure two IOLANs to work as VPN gateways for a host-to-
host IPsec tunnel. NAT Traversal (NAT_T) is enabled in this example (on both sides) because the
VPN tunnel is going private network to public network to private network. In this example, both of
the IOLAN VPN gateways have a DHCP assigned IP address.
External IP Address
196.15.23.56
External IP Address
199.24.23.88
Right
IOLAN VPN
Gateway
Left
IOLAN VPN
Gateway
Router
Router
DHCP assigned IP
DHCP assigned IP
Internet
192.168.45.99
172.16.45.99
Unencrypted
Data
Unencrypted
Data
IPsec Tunnel--Encrypted Data
192.168.45.87
172.16.45.23
1. The following window configures the Left IOLAN VPN Gateway:
%defaultrouteis entered for the Local IP Address because the IP address is DHCP assigned
and is therefore subject to change.
343
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring a Virtual Private Network
2. The following window configures the Right IOLAN VPN Gateway:
%defaultrouteis entered for the Local IP Address because the IP address is DHCP assigned
and is therefore subject to change.
%anyis entered for the Remote IP Address to indicate that it will accept a VPN connection
from any host/network; this is necessary because the Left IOLAN VPN gateway is DHCP
assigned and cannot be known.
Also note that Boot Action on the Left IOLAN VPN gateway is set to Start, meaning that it will
try to initiate the VPN connection, while the Boot Action on the Right IOLAN VPN gateway is
set to Add, which will listen for a VPN connection request.
3. Enable the IPsec service found in Security, Services.
344
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring a Virtual Private Network
VPN Client-to-Network
The following example shows how to configure a VPN client-to-network IPsec tunnel. In this
example, the IOLAN will accept VPN connections from multiple VPN clients on private networks
that want to access the public 199.24.0.0 subnetwork through the VPN gateway. NAT Traversal
(NAT_T) is disabled in this example (on both sides) because the VPN tunnel is going private network
to public network.
Initiate Communication
VPN Client
Broadband
Router
Router
Right
Internet
199.24.10.10
172.16.45.99
199.24.10.1
172.16.45.45
IPsec Tunnel--Encrypted Data
Unencrypted
Data
199.24.45.87
199.24.45.12
Configure the IPsec tunnel in the IOLAN:
The Remote IP Address field is %anyto allow any VPN client to communicate in the IPsec tunnel
that can validate the Secret. Also, the Remote Host/Network field is configured for 0.0.0.0to
allow any remote peer private IP address (RFC 1918—10.0.0.0/8, 172.16.0.0./12, 192.168.0.0/16)
access to the IPsec tunnel. Lastly, the Boot Action is set to Add to listen for an IPsec tunnel
connection.
Enable the IPsec service found in Security, Services.
345
Download from Www.Somanuals.com. All Manuals Search And Download.
Configuring a Virtual Private Network
346
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
RADIUS and TACACS+
Appendix
A
A
Introduction
This chapter describes the parameters that can be passed to the IOLAN when a user logs into the
IOLAN (serial port set to profile Terminal) from external authentication RADIUS and TACACS+
servers.
RADIUS
Although RADIUS can be used strictly for external authentication, it can also be used to configure
line and user parameters. Therefore, when a user is being authenticated using RADIUS, it is possible
that the user’s configuration is a compilation of the parameters passed back from RADIUS, the
IOLAN parameters if the user has also been set up as a local user in the IOLAN, and the Default
User’s parameters for any parameters that have not been set by either RADIUS or the user’s local
configuration.
Supported RADIUS Parameters
This section describes the attributes which will be accepted by the IOLAN from a RADIUS server in
response to an authentication request.
Type
Name
Description
1
2
User-Name
User-Password
The name of the user to be authenticated.
The password of the user to be authenticated.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
347
Download from Www.Somanuals.com. All Manuals Search And Download.
RADIUS
Type
Name
Description
6
Service-Type
Indicates the service to use to connect the user to
the IOLAN. A value of 6 indicates administrative
access to the IOLAN. Supported values are:
z
z
1—Login
3—Callback-Login
Equivalent to the IOLAN User Service set by
Type 15, Login-Service.
z
z
2—Framed
4—Callback-Framed
Equivalent to the IOLAN User Service set by
Type 7, Framed-Protocol.
z
z
7—NAS prompt
9—Callback NAS-prompt
Equivalent to IOLAN User Service DSLogin.
z
z
6—Administrative User
11—Callback Administrative User
Equivalent to IOLAN User Service DSLogin
and the User gets Admin privileges.
7
Framed-Protocol
The link layer protocol to be used by this user.
Determines the User Service when Service-Type is
set to Framed or Callback-Framed. Supported
values are:
z
z
1—PPP
2—SLIP
8
Framed-IP-Address
Framed-IP-Netmask
Framed-MTU
The IP Address to be assigned to this user for PPP
or SLIP.
9
The subnet to be assigned to this user for PPP or
SLIP.
12
Attribute indicates the Maximum Transmission
Unit (MTU) to be configured for the user, when it is
not negotiated by some other means such as PPP.
13
Framed-Compression
Indicates a compression protocol to be used for the
PPP or SLIP link. Supported value is:
z
1—Van Jacobson TCP/IP compression.
14
15
Login-Host
Indicates the host with which the user can connect
to when the Service-Type is set to 1(Login) or 3
(Callback-Login).
Login-Service
Indicates the IOLAN User Service to use to
connect the user a host. Supported values are:
z
z
z
z
z
0—Telnet
1—Rlogin
2—TCP Clear
5—SSH
6—SSL Raw
348
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
RADIUS
Type
Name
Description
16
Login-TCP-Port
Indicates the TCP port with which the user is to be
connected when the Service-Type is set to 1(Login)
or 3(Callback-Login).
19
20
26
Callback-Number
Callback-ID
Specifies the callback phone number. This is the
same implementation as 20(Callback-ID), but
takes precedence if 20is set.
Specifies the callback phone number. This is the
same implementation as 19(Callback-Number), but
19takes precedence if both are set.
Vendor-Specific
Perle’s defined attributes for line access rights and
user level. See Perle RADIUS Dictionary Example
on page 352 for an example of this file.
Line Access Rights for port n (where n is the line
number):
Name: Perle-Line-Access-Port-n
Type: 100 + n
Data Type: Integer
Value: Disabled (0), ReadWrite(1), ReadInput(2),
ReadInputWrite (3), ReadOutput (4),
ReadOutputWrite (5), ReadOutputInput (6),
ReadOutputInputWrite (7)
Name: Perle-User-Level
Type: 100
Data Type: Integer
Value: Admin(1), Normal(2), Restricted(3),
Menu(4)
Name: Perle-Clustered-Port-Access
Type: 99
Data Type: Integer
Value: Disabled(0), Enabled(1)
27
28
Session-Timeout
Idle-Timeout
Maximum number of seconds the user will be
allowed to stay logged on.
Use this timer to close a connection because of
inactivity. When the Idle-Timeout expires, the
IOLAN will end the connection. The maximum
value is 4294967 seconds (about 49 days). A value
of 0 (zero) means the Idle-Timeout will not expire,
so the connection is permanently open.
96
Framed-Interface-Id
The remote IPv6 interface identifier for the remote
end of the PPP link.
RADIUS and TACACS+ 349
Download from Www.Somanuals.com. All Manuals Search And Download.
RADIUS
Accounting Message
This section describes the attributes which will be included by the IOLAN when sending an
accounting message to the RADIUS server.
Type
Name
Description
1
4
5
6
User-Name
NAS-IP-Address
NAS-Port
The name of the user to be authenticated.
IP Address of IOLAN LAN interface.
Port Line number of IOLAN.
Service-Type
Indicates the service to use to connect the user to the
IOLAN. A value of 6 indicates administrative access to
the IOLAN. Supported values are:
z
z
1—Login
3—Callback-Login
Equivalent to the IOLAN User Service set by Type
15, Login-Service.
z
z
2—Framed
4—Callback-Framed
Equivalent to the IOLAN User Service set by Type
7, Framed-Protocol.
z
z
7—NAS prompt
9—Callback NAS-prompt
Equivalent to IOLAN User Service DSPrompt.
z
z
6—Administrative User
11—Callback Administrative User
Equivalent to IOLAN User Service DSPrompt and the
User gets Admin privileges.
40
42
43
44
45
46
47
48
49
Acct-Status-Type
Acct-Input-Octets
Acct-Output-Octets
Acct-Session-ID
Acct-Authentic
Indicates if this is the beginning or end of a session.
Supported values are: 1 = Start 2 =Stop.
Number of bytes which were received from the user
during this session.
Number of bytes where were transmitted to the user
during this session.
A string which identifies the session. The same string
must be used in the start and stop messages.
Indicates how the user was authenticated. Supported
values are: 1 = Local 2 = RADIUS.
Acct-Session-Time
Acct-Input-Packets
Number of seconds for which the user has been
connected to a specific session.
Number of packets which were received from the user
during this session.
Acct-Output-Packets Number of packets which were transmitted to the user
during this session.
Acct-Terminate-Cause Indicates how the session was terminated: Supported
values include: 1 = User Request 2= Lost Carrier
3=Lost Service 4= Idle Timeout 5= Session Timeout
14 = Port Suspended 16 = Callback.
350
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
RADIUS
Mapped RADIUS Parameters to IOLAN Parameters
When authentication is being done by RADIUS, there are several Serial Port and User parameters
that can be set by the RADIUS server. Any parameters sent by that RADIUS server that are not
supported by the IOLAN are discarded. Below is a list of the RADIUS parameters and their IOLAN
parameters:
RADIUS Parameter
IOLAN Parameter
Service-Type
This has no IOLAN field, although it needs
to be set to Framed-Userin the RADIUS
server.
Framed-Protocol
Framed-Address
Set to SLIP or PPP service.
Remote IP Address field under either SLIP
or PPP.
Caution: the exception to the above rule is
a Framed-Addressvalue of
255.255.255.254. When this value is
specified in the RADIUS file, the unit will
use the Remote IP address configured for a
PPP line in the IOLAN.
Framed-Netmask
Framed-Compression
Framed-MTU
IPv4 Subnet Mask field under either SLIP
or PPP.
VJ Compression field under either SLIP or
PPP.
MTU field under SLIP.
MRU field under PPP.
Idle-Timeout
Login-Service
Idle Timeout under the serial port
Advanced settings.
Corresponds to one of the following User
Service parameters: Telnet, Rlogin, TCP
Clear, SSH, or SSL Raw.
Session-Timeout
Callback-Number
Session Timeout under the serial port
Advanced settings.
Combination of the Enable Callback and
Phone Number fields under User,
Advanced settings.
Callback-ID
Combination of the Enable Callback and
Phone Number fields under User,
Advanced settings.
RADIUS and TACACS+ 351
Download from Www.Somanuals.com. All Manuals Search And Download.
RADIUS
Perle RADIUS Dictionary Example
The IOLAN has defined Vendor Specific RADIUS attributes in order for the RADIUS server to be
configured to support the IOLAN features of Line Access Rights and User Level. These attributes
configured for RADIUS users to have this level of configuration.
See below for an example of the Perle defined attributes for the RADIUS server for a 4-port IOLAN
(although the dictionary can contain 48 ports, even if they are not all defined):
# Perle dictionary.
#
#
#
#
#
#
#
Perle Systems Ltd.
http://www.perle.com/
Enable by putting the line "$INCLUDE dictionary.perle" into
the main dictionary file.
# Version: 1.30 21-May-2008 Add attribute for clustered port access
# Version: 1.20 30-Nov-2005 Add new line access right values for ports
#
up to 49.
# Version: 1.10 11-Nov-2003 Add new line access right values
# Version: 1.00 17-Jul-2003 original release for vendor specific field
support
#
VENDOR Perle
1966
# Perle Extensions
ATTRIBUTE Perle-Clustered-Port-Access 99 integer Perle
ATTRIBUTE Perle-User-Level
100 integer Perle
101 integer Perle
102 integer Perle
103 integer Perle
104 integer Perle
105 integer Perle
106 integer Perle
107 integer Perle
108 integer Perle
109 integer Perle
ATTRIBUTE Perle-Line-Access-Port-1
ATTRIBUTE Perle-Line-Access-Port-2
ATTRIBUTE Perle-Line-Access-Port-3
ATTRIBUTE Perle-Line-Access-Port-4
ATTRIBUTE Perle-Line-Access-Port-5
ATTRIBUTE Perle-Line-Access-Port-6
ATTRIBUTE Perle-Line-Access-Port-7
ATTRIBUTE Perle-Line-Access-Port-8
ATTRIBUTE Perle-Line-Access-Port-9
ATTRIBUTE Perle-Line-Access-Port-10 110 integer Perle
ATTRIBUTE Perle-Line-Access-Port-11 111 integer Perle
ATTRIBUTE Perle-Line-Access-Port-12 112 integer Perle
ATTRIBUTE Perle-Line-Access-Port-13 113 integer Perle
ATTRIBUTE Perle-Line-Access-Port-14 114 integer Perle
ATTRIBUTE Perle-Line-Access-Port-15 115 integer Perle
ATTRIBUTE Perle-Line-Access-Port-16 116 integer Perle
ATTRIBUTE Perle-Line-Access-Port-17 117 integer Perle
ATTRIBUTE Perle-Line-Access-Port-18 118 integer Perle
ATTRIBUTE Perle-Line-Access-Port-19 119 integer Perle
ATTRIBUTE Perle-Line-Access-Port-20 120 integer Perle
ATTRIBUTE Perle-Line-Access-Port-21 121 integer Perle
ATTRIBUTE Perle-Line-Access-Port-22 122 integer Perle
ATTRIBUTE Perle-Line-Access-Port-23 123 integer Perle
ATTRIBUTE Perle-Line-Access-Port-24 124 integer Perle
ATTRIBUTE Perle-Line-Access-Port-25 125 integer Perle
ATTRIBUTE Perle-Line-Access-Port-26 126 integer Perle
ATTRIBUTE Perle-Line-Access-Port-27 127 integer Perle
ATTRIBUTE Perle-Line-Access-Port-28 128 integer Perle
ATTRIBUTE Perle-Line-Access-Port-29 129 integer Perle
352
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
RADIUS
ATTRIBUTE Perle-Line-Access-Port-30 130 integer Perle
ATTRIBUTE Perle-Line-Access-Port-31 131 integer Perle
ATTRIBUTE Perle-Line-Access-Port-32 132 integer Perle
ATTRIBUTE Perle-Line-Access-Port-33 133 integer Perle
ATTRIBUTE Perle-Line-Access-Port-34 134 integer Perle
ATTRIBUTE Perle-Line-Access-Port-35 135 integer Perle
ATTRIBUTE Perle-Line-Access-Port-36 136 integer Perle
ATTRIBUTE Perle-Line-Access-Port-37 137 integer Perle
ATTRIBUTE Perle-Line-Access-Port-38 138 integer Perle
ATTRIBUTE Perle-Line-Access-Port-39 139 integer Perle
ATTRIBUTE Perle-Line-Access-Port-40 140 integer Perle
ATTRIBUTE Perle-Line-Access-Port-41 141 integer Perle
ATTRIBUTE Perle-Line-Access-Port-42 142 integer Perle
ATTRIBUTE Perle-Line-Access-Port-43 143 integer Perle
ATTRIBUTE Perle-Line-Access-Port-44 144 integer Perle
ATTRIBUTE Perle-Line-Access-Port-45 145 integer Perle
ATTRIBUTE Perle-Line-Access-Port-46 146 integer Perle
ATTRIBUTE Perle-Line-Access-Port-47 147 integer Perle
ATTRIBUTE Perle-Line-Access-Port-48 148 integer Perle
ATTRIBUTE Perle-Line-Access-Port-49 149 integer Perle
# Perle Clustered Port Access Values
VALUE Perle-Clustered-Port-Access Disabled 0
VALUE Perle-Clustered-Port-Access Enabled
# Perle User Level Values
1
VALUE Perle-User-Level
VALUE Perle-User-Level
VALUE Perle-User-Level
VALUE Perle-User-Level
Admin
1
2
3
4
Normal
Restricted
Menu
# Perle Line Access Right Values
VALUE Perle-Line-Access-Port-1
VALUE Perle-Line-Access-Port-1
VALUE Perle-Line-Access-Port-1
VALUE Perle-Line-Access-Port-1
VALUE Perle-Line-Access-Port-1
VALUE Perle-Line-Access-Port-1
VALUE Perle-Line-Access-Port-1
VALUE Perle-Line-Access-Port-1
Disabled
Read-Write
Read-Input
Read-Input-Write
Read-Output
Read-Output-Write
Read-Output-Input
0
1
2
3
4
5
6
Read-Output-Input-Write 7
VALUE Perle-Line-Access-Port-2
VALUE Perle-Line-Access-Port-2
VALUE Perle-Line-Access-Port-2
VALUE Perle-Line-Access-Port-2
VALUE Perle-Line-Access-Port-2
VALUE Perle-Line-Access-Port-2
VALUE Perle-Line-Access-Port-2
VALUE Perle-Line-Access-Port-2
Disabled
Read-Write
Read-Input
Read-Input-Write
Read-Output
Read-Output-Write
Read-Output-Input
Read-Output-Input-Write 7
0
1
2
3
4
5
6
VALUE Perle-Line-Access-Port-3
VALUE Perle-Line-Access-Port-3
VALUE Perle-Line-Access-Port-3
VALUE Perle-Line-Access-Port-3
VALUE Perle-Line-Access-Port-3
VALUE Perle-Line-Access-Port-3
VALUE Perle-Line-Access-Port-3
VALUE Perle-Line-Access-Port-3
Disabled
Read-Write
Read-Input
Read-Input-Write
Read-Output
Read-Output-Write
Read-Output-Input
Read-Output-Input-Write 7
0
1
2
3
4
5
6
RADIUS and TACACS+ 353
Download from Www.Somanuals.com. All Manuals Search And Download.
TACACS+
VALUE Perle-Line-Access-Port-4
VALUE Perle-Line-Access-Port-4
VALUE Perle-Line-Access-Port-4
VALUE Perle-Line-Access-Port-4
VALUE Perle-Line-Access-Port-4
VALUE Perle-Line-Access-Port-4
VALUE Perle-Line-Access-Port-4
VALUE Perle-Line-Access-Port-4
Disabled
Read-Write
Read-Input
Read-Input-Write
Read-Output
Read-Output-Write
Read-Output-Input
Read-Output-Input-Write 7
0
1
2
3
4
5
6
...
TACACS+
Although TACACS+ can be used strictly for external authentication, it can also be used to configure
Serial Port and User parameters. Therefore, when a user is being authenticated using TACACS+, it is
possible that the user’s configuration is a compilation of the parameters passed back from the
TACACS+ authentication server, the User’s IOLAN parameters if the user has also been set up as a
local user in the IOLAN, and the Default User’s parameters for any parameters that have not been set
by either TACACS+ or the User’s local configuration.
User and Serial Port parameters can be passed to the IOLAN after authentication for users accessing
the IOLAN from the serial side and users accessing the IOLAN from the Ethernet side connections.
Accessing the IOLAN Through a Serial Port Users
This section describes the attributes which will be accepted by the IOLAN from a TACACS+ server
in response to an authentication request for Direct Users.
Name
Value(s)
Description
priv-lvl
12-15 (Admin)
8-11 (Normal)
4-7 (Restricted)
0-3 (Menu)
The IOLAN privilege level.
Perle_User_Service
0 (Telnet)
1 (Rlogin)
2 (TCP_Clear)
3 (SLIP)
Corresponds to the User Service setting in
the IOLAN.
If no value is specified, DSPrompt is the
default User Service.
4 (PPP)
5 (SSH)
6 (SSL_Raw)
service = telnet
Settings when Perle_User_Service is set to 0.
Settings when Perle_User_Service is set to 1.
{
addr =
port =
}
IPv4 or IPv6 address
TCP port number
service = rlogin
{
addr =
}
IPv4 or IPv6 address
354
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
TACACS+
Name
Value(s)
Description
service = tcp_clear
Settings when Perle_User_Service is set to 2.
Settings when Perle_User_Service is set to 3.
{
addr =
port =
}
IPv4 or IPv6 address
TCP port number
service = slip
{
routing =
true (Send and Listen)
false (None)
addr =
}
IPv4 or IPv6 address
service = ppp
{
Settings when Perle_User_Service is set to 4.
routing =
true (Send and Listen)
false (None)
addr =
port =
IPv4 or IPv6 address
TCP port number
ppp-vj-slot-compression true or false
callback-dialstring phone number, no
punctuation
}
service = ssh
Settings when Perle_User_Service is set to 5.
Settings when Perle_User_Service is set to 6.
{
addr =
port =
}
IPv4 or IPv6 address
TCP port number
service = ssl_raw
{
addr =
port =
}
IPv4 or IPv6 address
TCP port number
RADIUS and TACACS+ 355
Download from Www.Somanuals.com. All Manuals Search And Download.
TACACS+
Accessing the IOLAN Through a Serial Port User Example Settings
The following example shows the parameters that can be set for users who are accessing the IOLAN
from the serial side. These settings should be included in the TACACS+ user configuration file.
Service = EXEC
{
priv-lvl = x
# x = 12-15 (Admin)
# x = 8-11 (Normal)
# x = 4-7 (Restricted)
# x = 0-3 (Menu)
timeout=x
# x = session timeout in seconds
idletime=x
# x = Idle timeout in seconds
Perle_User_Service = x
# x = 0 Telnet
# x = 1 Rlogin
# x = 2 TCP_Clear
# x = 3 SLIP
# x = 4 PPP
# x = 5 SSH
# x = 6 SSL_RAW
# If not specified, command prompt
}
# Depending on what Perle_User_Service is set to
service = telnet
{
addr = x.x.x.x
port = x
}
# ipv4 or ipv6 addr
# tcp_port #
service = rlogin
{
addr = x.x.x.x
}
# ipv4 or ipv6 addr
service = tcp_clear
{
addr = x.x.x.x
port = x
}
# ipv4 or ipv6 addr
# tcp_port #
service = slip
{
routing=x
# x = true (Send and Listen)
# x = false (None)
# ipv4 addr
addr = x.x.x.x
}
356
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
TACACS+
service = ppp
{
routing=x
# x = true (Send and Listen)
# x = false (None)
addr = x.x.x.x
# ipv4 or ipv6 addr
ppp-vj-slot-compression = x # x =true or false
callback-dialstring = x # x = number to callback on
}
service = ssh
{
addr = x.x.x.x # ipv4 or ipv6 addr
port = x
}
# tcp_port #
service = ssl_raw
{
addr = x.x.x.x # ipv4 or ipv6 addr
port = x
}
# tcp_port #
Accessing the IOLAN from the Network Users
This section describes the attributes which will be accepted by the IOLAN from a TACACS+ server
in response to an authentication request for Reverse Users. The TACACS+ serviceneeds to be set
to EXEC/raccessor just raccesson the well known port.
Name
Value(s)
Description
priv-lvl
12-15 (Admin)
8-11 (Normal)
4-7 (Restricted)
0-3 (Menu)
The IOLAN privilege level.
Perle_Line_Access_#
# = port number
0 (Disabled)
For the specified line, provides the User’s
Line Access rights.
1 (ReadWrite)
2 (ReadInput)
3 (ReadInputWrite)
4 (ReadOuptut)
5 (ReadOutputWrite)
6 (ReadOutputInput)
7 (ReadOuputWrite)
timeout
idletime
0-4294967
0-4294967
Session timeout in seconds.
Idle timeout in seconds.
Perle_Clustered_Port_Access 0 (Disabled)
1 (Enabled)
Control access to clustered ports.
RADIUS and TACACS+ 357
Download from Www.Somanuals.com. All Manuals Search And Download.
TACACS+
Accessing the IOLAN from the Network User Example Settings
The following example shows the parameters that can be set for users who are accessing the IOLAN
from the Ethernet side. These settings should be included in the TACACS+ user configuration file.
# Settings for telnet/SSH access
service = raccess
{
priv-lvl = x
# x = 12-15 (Admin)
# x = 8-11 (Normal)
# x = 4-7 (Restricted)
# x = 0-3 (Menu)
Perle_Line_Access_i=x # i = port number
# x = 0 (Disabled)
# x = 1 (Read/Write)
# x = 2 (Read Input)
# x = 3 (Read Input/Write)
# x = 4 (Read Output)
# x = 5 (Read Output/Write)
# x = 6 (Read Output/Input)
# x = 7 (Read Output/Write)
timeout=x
# x = session timeout in seconds
idletime=x
# x = Idle timeout in seconds
Perle_Clustered_Port_Access=x # x = 0 (Disabled)
# x = 1 (Enabled)
}
Users who are accessing the IOLAN through WebManager or DeviceManager and are being
authenticated by TACACS+ must have the Admin privilege level and the TACACS+ service
level must be set to EXEC.
# Settings for WebManager and DeviceManager access
service=EXEC
{
priv-lvl = 12
# x = 12-15 (Admin)
Perle_Line_Access_i=x # i = port number
# x = 0 (Disabled)
# x = 1 (Read/Write)
# x = 2 (Read Input)
# x = 3 (Read Input/Write)
# x = 4 (Read Output)
# x = 5 (Read Output/Write)
# x = 6 (Read Output/Input)
# x = 7 (Read Output/Write)
Perle_Clustered_Port_Access = 1 # enable clustered port access
}
358
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
SSL/TLS Ciphers
Appendix
B
B
Introduction
This appendix contains a table that shows valid SSL/TLS cipher combinations.
Valid SSL/TLS Ciphers
This chart displays all of the valid SSL/TLS combinations.
SSL
Ver.
Key-
Exchange
Key-
Full Name
Authentication Encryption Size HMAC
ADH-AES256-SHA
DHE-RSA-AES256-SHA
DHE-DSS-AES256-SHA
AES256-SHA
SSLv3 Kx=DH
SSLv3 Kx=DH
SSLv3 Kx=DH
SSLv3 Kx=RSA
SSLv3 Kx=DH
SSLv3 Kx=DH
SSLv3 Kx=RSA
SSLv2 Kx=RSA
SSLv3 Kx=DH
SSLv3 Kx=DH
SSLv3 Kx=DH
SSLv3 Kx=RSA
SSLv2 Kx=RSA
SSLv3 Kx=DH
SSLv3 Kx=RSA
SSLv3 Kx=RSA
SSLv2 Kx=RSA
SSLv2 Kx=RSA
SSLv3 Kx=DH
SSLv3 Kx=DH
SSLv3 Kx=RSA
Au=None
Au=RSA
Au=DSS
Au=RSA
Au=RSA
Au=DSS
Au=RSA
Au=RSA
Au=None
Au=RSA
Au=DSS
Au=RSA
Au=RSA
Au=DSS
Au=RSA
Au=RSA
Au=RSA
Au=RSA
Au=RSA
Au=DSS
Au=RSA
Enc=AES
Enc=AES
Enc=AES
Enc=AES
256
256
256
256
Mac=SHA1
Mac=SHA1
Mac=SHA1
Mac=SHA1
Mac=SHA1
Mac=SHA1
Mac=SHA1
Mac=MD5
Mac=SHA1
Mac=SHA1
Mac=SHA1
Mac=SHA1
Mac=MD5
Mac=SHA1
Mac=SHA1
Mac=MD5
Mac=MD5
Mac=MD5
Mac=SHA1
Mac=SHA1
Mac=SHA1
EDH-RSA-DES-CBC3-SHA
EDH-DSS-DES-CBC3-SHA
DES-CBC3-SHA
Enc=3DES 168
Enc=3DES 168
Enc=3DES 168
Enc=3DES 168
DES-CBC3-MD5
ADH-AES128-SHA
DHE-RSA-AES128-SHA
DHE-DSS-AES128-SHA
AES128-SHA
Enc=AES
Enc=AES
Enc=AES
Enc=AES
Enc=RC2
Enc=RC4
Enc=RC4
Enc=RC4
Enc=RC4
Enc=RC4
Enc=DES
Enc=DES
Enc=DES
128
128
128
128
128
128
128
128
128
64
RC2-CBC-MD5
DHE-DSS-RC4-SHA
RC4-SHA
RC4-MD5
RC4-MD5
RC4-64-MD5
EDH-RSA-DES-CBC-SHA
EDH-DSS-DES-CBC-SHA
DES-CBC-SHA
56
56
56
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
359
Download from Www.Somanuals.com. All Manuals Search And Download.
Valid SSL/TLS Ciphers
SSL
Ver.
Key-
Exchange
Key-
Full Name
Authentication Encryption Size HMAC
DES-CBC-MD5
SSLv2 Kx=RSA
Au=RSA
Au=RSA
Au=DSS
Enc=DES
Enc=DES
Enc=DES
Enc=DES
Enc=RC2
56
40
40
40
40
Mac=MD5
Mac=SHA1
Mac=SHA1
Mac=SHA1
Mac=MD5
Mac=SHA1
Mac=SHA1
Mac=SHA1
Mac=MD5
Mac=MD5
Mac=MD5
Mac=MD5
Mac=MD5
EXP-EDH-RSA-DES-CBC-SHA
EXP-EDH-DSS-DES-CBC-SHA
EXP-DES-CBC-SHA
EXP-RC2-CBC-MD5
ADH-DES-CBC3-SHA
ADH-DES-CBC-SHA
EXP-ADH-DES-CBC-SHA
ADH-RC4-MD5
SSLv3 Kx=DH(512)
SSLv3 Kx=DH(512)
SSLv3 Kx=RSA(512) Au=RSA
SSLv3 Kx=RSA(512) Au=RSA
SSLv3 Kx=DH
Au=None
Au=None
Au=None
Au=None
Au=None
Enc=3DES 168
SSLv3 Kx=DH
Enc=DES
Enc=DES
Enc=RC4
Enc=RC4
Enc=RC2
Enc=RC4
Enc=RC4
56
40
128
40
40
40
40
SSLv3 Kx=DH(512)
SSLv3 Kx=DH
EXP-ADH-RC4-MD5
EXP-RC2-CBC-MD5
EXP-RC4-MD5
SSLv3 Kx=DH(512)
SSLv2 Kx=RSA(512) Au=RSA
SSLv3 Kx=RSA(512) Au=RSA
SSLv2 Kx=RSA(512) Au=RSA
EXP-RC4-MD5
360
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Virtual Modem AT
Commands
Appendix
C
C
Virtual Modem Initialization Commands
Virtual Modem initialization commands are only supported on IOLAN firmware and
configurators version 3.2 or higher.
You can initialize the modem connection using any of the following commands:
Command
Description
Options
ATQn
Quiet mode. Determines if result codes will be n=0, no result codes will be sent.
sent to the connected terminal. Basic results
codes are OK, CONNECT, RING, NO
(default)
n=1, result codes will be sent.
CARRIER, and ERROR.
Setting quiet mode also suppresses the “RING”
message for incoming calls.
ATVn
ATEn
Verbose mode. Determines if result codes are
displayed as text or numeric values.
n=0, display as numeric values.
n=1, display as text. (default)
Echo mode. Determines whether characters sent n=0, disable echo.
from the serial device will be echoed back by
the IOLAN when VModem is in “command”
mode.
n=1, enable echo. (default)
+++ATH
ATA
Hang up. This command instructs the IOLAN to
terminate the current session and go into
“command” mode.
Answer call. Instructs the VModem to accept
connection requests. VModem will give the
terminal up to 3 minutes to answer the call. If
the ATA is not received within 3 minutes, all
pending sync messages will be discarded.
ATI0
ATI3
ATS0
Return the modem manufacturer name.
Return the modem model name.
Sets the value of the S0 register. The S0 register Register=0, sets “manual answer”
controls the “auto answer” behavior.
mode
In “manual” mode, the IOLAN will not accept Register=1-255, “auto answer”
incoming sessions until an ATA is issued by the mode (default)
serial device. In “auto answer” mode, the
IOLAN will automatically accept an incoming
connection request.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
361
Download from Www.Somanuals.com. All Manuals Search And Download.
Virtual Modem Initialization Commands
Command
Description
Options
AT&Z1
Set command allows the user to store an IP
address and port number or phone number to
use when making a connection. The user will
issue an ATDS1 to cause the IOLAN to initiate
the connection.
AT&Sn
AT&Rn
Sets the behavior of IOLAN’s DTR signal.
(DSR from a DCE perspective)
n=0, DTR signal always high.
(default)
n=2, DTR signal acts as DCD.
n=3, DTR signal acts as RI.
Sets the behavior of IOLAN’s RTS signal. (CTS n=0, RTS always high. (default).
from a DCE perspective)
n=3, RTS signal acts as DCD.
If line is configured for hardware flow control,
n=4, RTS signal acts as RI.
the RTS is used for this purpose and the setting
of this command is ignored.
AT&Cn
Sets the behaviour of the DCD signal.
n=0, DCD always on.
n=1, DCD follows state of
connection (off when no
connection, on when TCP
connection exists). (default)
AT&F
ATS2
Sets the modes back to the factory defaults. This
is a hard-coded default configuration which
does not look at any user configuration.
Sets the value of the S2 register. The S2 register
controls which character is used to enter
“command” mode. (this is the potential
replacement for the +++ (default) in front of the
ATH command).
This register will hold the hex value of the
“escape” character. Any value > 27 will disable
the ability to escape into “command” mode.
ATS12
Sets the value of the S12 register. The S12
register controls the minimum length of idle
time which must elapse between the receipt of
the escape character and the A (first character of
the ATH sequence). Units are 1/50th of a
second. The default is 50 = 1 second.
ATO
(ATD with no phone number) Establishes a
connection using the IP and port specified in the
telephone number field.
ATDS1
Establishes a connection using the IP and port
(or phone number) specified in the Phone
Number field (stored by the AT&Z1 command).
362
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Pinouts and Cabling
Diagrams
Appendix
D
D
Serial Pinouts
DB25 Male
This section defines the pinouts for the DB25 male connection used on the 1-port IOLAN. The power
out pin (Pin 9) is available in the SDS model only.
Pin 1
Pin 13
Pin 14
Pin 25
The following table provides pinout information:
EIA-485
Full Duplex
EIA-485
Half Duplex
Pinout EIA-232
Shield
2 (out) TxD
3 (in) RxD
4 (out) RTS
EIA-422
1
Shield
Shield
Shield
5 (in)
6 (in)
7
CTS
DSR
GND
GND
GND
GND
8 (in)
9
DCD
Power out
Power in
Power out
Power in
CTS-
Power out
Power in
Power out
Power in
12
13
14
TxD+
TxD+
TxD-
DATA+
DATA-
15
TxD-
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
363
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Pinouts
EIA-485
Full Duplex
EIA-485
Half Duplex
Pinout EIA-232
EIA-422
RTS+
18
19
RTS-
20 (out) DTR
21
22
25
RxD+
RxD-
CTS+
RxD+
RxD-
The power in pin (pin 12) can be 9-30V DC.
DB25 Female
This section defines the pinouts for the DB25 female connection used on the 1-port IOLAN. The
power out pin (Pin 9) is available in the SDS model only.
Pin 13
Pin 1
Pin 25
Pin 14
The following table provides pinout information:
EIA-485
Full Duplex
EIA-485
Half Duplex
Pinout EIA-232
EIA-422
1
Shield
RxD
Shield
Shield
Shield
2 (in)
3 (out) TxD
4 (in) CTS
5 (out) RTS
6 (out) DTR
7
GND
GND
GND
GND
8 (in)
9
DCD
Power out
Power in
Power out
Power in
RTS-
Power out
Power in
Power out
Power in
12
13
14
RxD+
RxD+
364
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Pinouts
EIA-485
Full Duplex
EIA-485
Half Duplex
Pinout EIA-232
EIA-422
RxD-
15
RxD-
18
CTS+
CTS-
19
20 (in) DSR
21
22
25
TxD+
TxD-
RTS+
TxD+
TxD-
DATA+
DATA-
The power in pin (pin 12) can be 9-30V DC.
RJ45
The RJ45 serial connector is available on IOLAN rack mount, desktop, Sun/Cisco, and medical unit
models. The RJ45 pinouts vary depending on the IOLAN model. See the appropriate section for the
RJ45 pinout information specific to your IOLAN model.
Number
of Pins See...
IOLAN model
desktop (1-port, 2-port, and 4-port) 10
rack mount
8
SCS48C/SCS32C/SCS16C/SCS8C 8
(Sun/Cisco)
SDS8C/SDS16C/SDS32C (Electric 8
Utility models)
medical unit models
10
Pinouts and Cabling Diagrams 365
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Pinouts
RJ45 (for desktop and rack mount models)
This section defines the pinouts for the RJ45 connection. 1-port, 2-port, and 4-port desktop IOLAN
models have a 10-pin RJ45 connector and all rack mount IOLAN models have an 8-pin RJ45
connector.
Pin 1
Pin 10
The following table provides pinout information:
Pinout Pinout
10-pin 8-pin
EIA-485
Full Duplex Half Duplex
EIA-485
EIA-232
Power In
DCD
EIA-422
1
Power In
Power In
TxD+
Power In
DATA+
DATA-
GND
2 (in)
3 (out)
4 (in)
5 (out)
6 (in)
7
1
2
3
4
5
6
7
8
RTS
TxD+
DSR
TxD
TxD-
RxD+
GND
RxD-
TxD-
RxD+
GND
RxD-
RxD
GND
8 (in)
9 (out)
10
CTS
DTR
Power out
Power out
Power out
Power out
The power in pin (Pin 1) can be 9-30V DC. The 2-port IOLAN has power in on Port 2 only. The 4-
port IOLAN has power in on Port 4 only.
366
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Pinouts
RJ45 (for SCS48C/SCS32C/SCS16C/SCS8C models)
This section defines the pinouts for the RJ45 connection for the SCS48C/SCS32C/SCS16C/SCS8C
(Sun/Cisco) models only.
Pin 8
Pin 1
The following table provides pinout information, including the different pinouts for the Admin port
and serial ports:
Pinout EIA-232
EIA-232
Serial Ports
8-pin
Admin Port
1
2
3
4
5
6
7
8
DCD (in)
RTS (out)
DSR (in)
TxD (out)
RxD (in)
GND
RTS (out)
DTR (out)
TxD (out)
GND
GND
RxD (in)
DSR (in)
CTS (in)
CTS (in)
DTR (out)
Pinouts and Cabling Diagrams 367
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Pinouts
RJ45 (for SDS32C/SDS16C/SDS8C Electric Utility models)
This section defines the pinouts for the RJ45 connection for the Electric Utility models. The serial
ports can be set to operate in EIA-232, EIA-422 or EIA-485 mode. The table provides the pinout for
each of the modes of operation. The console port is an EIA-232 dedicated port. It’s pinout is detailed
in a separte table below.
Pin 8
Pin 1
The following table provides pinout information for the seial ports:
EIA-485
Full Duplex Half Duplex
EIA-485
Pin#
EIA-232
RTS (out)
DTR(out)
TxD (out)
GND
EIA-422
1
2
3
4
5
6
7
8
TxD+
TxD+
DATA+
TxD-
GND
GND
RxD+
TxD-
GND
GND
RxD+
DATA-
GND
GND
GND
RxD (in)
DSR (in)
CTS (in)
RxD-
RxD-
The following table provides pinout information for the console port
Pinout EIA-232
8-pin
Admin Port
DCD (in)
RTS (out)
DSR (in)
TxD (out)
RxD (in)
GND
1
2
3
4
5
6
7
8
CTS (in)
DTR (out)
368
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Serial Pinouts
RJ45 (for medical unit models)
This section defines the pinouts for the RJ45 connection for the medical unit models.
Pin 10
Pin 1
The following table provides pinout information:
Pinout
10-pin EIA-232
1
2
DTR (out)
TxD (out)
3
RxD (in)
4
DCD (in)
5
RTS (out)
6
CTS (in)
7
low current output (-12V) (out)
8
low current output (+12V) (out)
9
GND
10
Shield
DB9 Male (Serial Only)
This section defines the pinouts for the DB9 male connection used on the 1-port IOLAN that is serial
only (not I/O).
The following table provides pinout information:
Pinout
9-pin
EIA-422/485 EIA-485
Full Duplex Half Duplex
EIA-232
DCD
RxD
1 (in)
2 (in)
3 (out)
4 (out)
5
RxD+
TxD
TxD+
TxD+/RxD+
GND
DTR
GND
DSR
RTS
GND
RxD-
6 (in)
7
8 (in)
9
CTS
TxD-
TxD-/RxD-
Pinouts and Cabling Diagrams 369
Download from Www.Somanuals.com. All Manuals Search And Download.
Power Over Ethernet Pinouts
DB9 Male I/O
This section defines the pinouts for the DB9 male connection used on the 1-port IOLAN I/O models.
The following table provides pinout information:
Pinout
9-pin
EIA-422/485 EIA-485
Full Duplex Half Duplex
EIA-232
DCD
RxD
1(in)
2 (in)
3 (out)
4 (out)
5
RxD+
TxD
TxD-
TxD-/RxD-
GND
DTR
GND
DSR
RTS
GND
RxD-
TxD+
6 (in)
7
TxD+/RxD+
8 (in)
9
CTS
Power Over Ethernet Pinouts
This section defines the pinouts for the RJ45 Ethernet connection used on the IOLAN SDS P or
IOLAN SCS P models.
Pin 1
Pin 8
The following table provides pinout information:
Pinout
Standard
Tx+
802.3AF Unit-4 Wire 802.3AF Unit-8 Wire
1
2
3
4
5
6
7
8
Tx+/+Voltage
Tx-/+Voltage
Rx+/-Voltage
Tx+
Tx-
Tx-
Rx+
Rx+
N/C
+Voltage
+Voltage
Rx-
N/C
Rx-
Rx-/-Voltage
N/C
-Voltage
-Voltage
N/C
370
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
EIA-232 Cabling Diagrams
EIA-232 Cabling Diagrams
This section shows how to create EIA-232 cables that are compatible with the Device Server.
Terminal DB25 Connector
The following diagrams show how the null modem cable should be configured when connecting to a
terminal DB25.
DB25 Male
IOLAN DS1
DB25 (DTE)
Terminal DB25
(DTE)
2 (TxD)
3 (RxD)
2 (TxD)
3 (RxD)
4 (RTS)
5 (CTS)
4 (RTS)
20 (DTR)
7 (GND)
6 (DSR)
5 (CTS)
6 (DSR)
7 (GND)
20 (DTR)
DB25 Female
IOLAN DS1
DB25 (DCE)
Terminal DB25
(DTE)
3 (TxD)
2 (RxD)
3 (RxD)
2 (TxD)
5 (RTS)
4 (CTS)
5 (CTS)
4 (RTS)
20 (DTR)
7 (GND)
6 (DSR)
20 (DSR)
7 (GND)
6 (DTR)
Pinouts and Cabling Diagrams 371
Download from Www.Somanuals.com. All Manuals Search And Download.
EIA-232 Cabling Diagrams
RJ45
This cabling table does NOT apply to SCS48C/SCS32C/SCS16C/SCS8C (Sun/Cisco),
SDS32C/SDS16C/SDS8C (Electrical Utility) or medical unit models.
Terminal DB25
IOLAN RJ45
10-pin 8-pin
(DTE)
4
3
(DSR)
(RTS)
3
2
20 (DTR)
5 (CTS)
3 (RxD)
2 (TxD)
7 (GND)
4 (RTS)
6 (DSR)
5
6
7
8
9
(TxD)
(RxD)
(GND)
(CTS)
(DTR)
4
5
6
7
8
Cabling for SCS48C/SCS32C/SCS16C/SCS8C (Sun/Cisco) and SDS32C/SDS16C/SDS8C
(Electrical Utility).
IOLAN
RJ45
Terminal DB25
(DTE)
7 (DSR)
1 (RTS)
20 (DTR)
5 (CTS)
3 (TxD)
6 (RxD)
4 (GND)
8 (CTS)
2 (DTR)
3 (RxD)
2 (TxD)
7 (GND)
4 (RTS)
6 (DSR)
372
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
EIA-232 Cabling Diagrams
Modem DB25 Connector
The following diagrams show how a standard straight through cable should be configured when
connecting to a DB25 modem.
DB25 Male
IOLAN DS1
DB25 (DTE)
Modem DB25
(DCE)
2 (TxD)
3 (RxD)
2 (RxD)
3 (TxD)
4 (CTS)
5 (RTS)
6 (DSR)
7 (GND)
8 (DCD)
20 (DTR)
4 (RTS)
5 (CTS)
6 (DSR)
7 (GND)
8 (DCD)
20 (DTR)
RJ45
This cabling table does NOT apply to SCS48C/SCS32C/SCS16C/SCS8C (Sun/Cisco),
SDS32C/SDS16C/SDS8C (Electrical Utility) or medical unit models.
Modem DB25
IOLAN RJ45
10-pin 8-pin
(DCE)
2
3
(DCD)
(RTS)
1
2
8 (DCD)
4 (CTS)
6 (DSR)
2 (RxD)
3 (TxD)
7 (GND)
5 (RTS)
20 (DTR)
4
5
6
7
8
9
(DSR)
(TxD)
(RxD)
(GND)
(CTS)
(DTR)
3
4
5
6
7
8
374
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
EIA-232 Cabling Diagrams
376
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Setting Jumpers
Appendix
E
E
Introduction
The IOLAN contains jumpers that you might need to set before you configure it and put it into
production. You can set the power out pin, pin 9, to a fixed 5V DC output or to the external adapter
output; this can range from 9-30V DC (if an external adapter is shipped with the IOLAN, it has a 12V
DC output); maximum output power is 1 (one) watt per a serial port. By default, the power out pin is
set to no power. You can set the IOLAN line termination to onor off(this is offby default) if you
are using EIA-422/485 (not applicable for I/O models).
1-Port IOLAN DB25 Male/Female
To change the settings, do the following:
1. Unplug the IOLAN from the electrical outlet and disconnect everything from the box.
2. Open the case by unscrewing the two side screws, one on each side, and lifting off the top of the
case. You should see the following:
Screw
Power
DIP
Switch
Reset
RJ45
Screw
3. To change the power pin out, locate J4. For the fixed 5V DC output, jumper pins 1 and 2. For the
output to equal the external adapter input, jumper pins 2 and 3.
4. To turn line termination on, locate and jumper both J1 and J9.
5. Close the IOLAN case by replacing the case lid and the two screws. You can now power it on
with the new settings.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
377
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction
1-Port IOLAN RJ45
To change the settings, do the following:
1. Unplug the IOLAN from the electrical outlet and disconnect everything from the box.
2. Open the case by unscrewing the two side screws, one on each side, and lifting off the top of the
case. You should see the following:
Screw
Power
Pin1
DIP
Switch
Reset
RJ45
Screw
3. To change the power pin out, locate J4. For the fixed 5V DC output, jumper pins 1 and 2. For the
output to equal the external adapter input, jumper pins 2 and 3.
4. To turn line termination on, locate and jumper both J1 and J9.
5. Close the IOLAN case by replacing the case lid and the two screws. You can now power it on
with the new settings.
1-Port IOLAN RJ45 P (Power Over Ethernet)
To change the settings, do the following:
1. Unplug the IOLAN from the electrical outlet and disconnect everything from the box.
2. Open the case by unscrewing the two side screws, one on each side, and lifting off the top of the
case. You should see the following:
Screw
Power
DIP
Switch
Reset
RJ45
Screw
3. To change the power pin out, locate J4. For the fixed 5V DC output, jumper pins 1 and 2. For the
output to equal the external adapter input, jumper pins 2 and 3.
4. To turn line termination on, locate and jumper both J7 and J8.
5. Close the IOLAN case by replacing the case lid and the two screws. You can now power it on
with the new settings.
378
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction
1-Port IOLAN DB9
To change the settings, do the following:
1. Unplug the IOLAN from the electrical outlet and disconnect everything from the box.
2. Open the case by unscrewing the two side screws, one on each side, and lifting off the top of the
case. You should see the following:
Screw
Power
DIP
Switch
Reset
RJ45
Screw
3. To turn line termination on, locate and jumper both J1 and J9.
4. Close the IOLAN case by replacing the case lid and the two screws. You can now power it on
with the new settings.
2-Port IOLAN SDS1M (Modem)
To change the settings, do the following:
1. Unplug the IOLAN from the electrical outlet and disconnect everything from the box.
2. Open the case by unscrewing the two side screws, one on each side, and lifting off the top of the
case. You should see the following:
Screw
Power
DIP
Switch
Reset
RJ45
Screw
3. To change the power pin out, locate J4. For the fixed 5V DC output, jumper pins 1 and 2. For the
output to equal the external adapter input, jumper pins 2 and 3.
4. To turn line termination on, locate and jumper both J7 and J8.
5. Close the IOLAN case by replacing the case lid and the two screws. You can now power it on
with the new settings.
Setting Jumpers 379
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction
2-Port IOLAN
To change the settings, do the following:
1. Unplug the IOLAN from the electrical outlet and disconnect everything from the box.
2. Open the case by unscrewing the two side screws, one on each side, and lifting off the top of the
case. You should see the following:
Screw
Pin1
Power
DIP
Switch
Reset
RJ45
Screw
3. To change the power pin out, locate the set of three pins associated with the line you want to set
(Line 1 is J4; Line 2 is the set the three pins just to the left of port 2). For the fixed 5V DC
output, jumper pins 1 and 2. For the output to equal the external adapter input, jumper pins 2
and 3.
4. To turn line termination onfor Line 1, locate and jumper both J7 and J8 (as shown in the
diagram). To turn line termination onfor Line 2, locate and jumper both J11 and J9.
5. Close the IOLAN case by replacing the case lid and the two screws. You can now power it on
with the new settings.
2-Port IOLAN RJ45 P (Power Over Ethernet)
To change the settings, do the following:
1. Unplug the IOLAN from the electrical outlet and disconnect everything from the box.
2. Open the case by unscrewing the two side screws, one on each side, and lifting off the top of the
case. You should see the following:
Screw
Pin1
DIP
Switch
Reset
RJ45
Screw
3. For the fixed 5V DC output, locate and jumper J220 for Line 1 (as shown in the diagram) and/or
jumper J221 for Line 2.
4. To turn line termination onfor Line 1, locate and jumper both J7 and J8 (as shown in the
diagram). To turn line termination onfor Line 2, locate and jumper both J209 and J210.
5. Close the IOLAN case by replacing the case lid and the two screws. You can now power it on
with the new settings.
Serial power in is not supported in the SDS2 PoE model.
380
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction
4-Port Desktop IOLAN
To change the settings, do the following:
1. Unplug the IOLAN from the electrical outlet and disconnect everything from the box.
2. Open the case by unscrewing the two side screws, one on each side, and lifting off the top of the
case. You should see the following:
Screw
Power
DIP
Switch
Reset
The pin with the
square represents
Pin 1 --->
RJ45
Screw
3. The following table describes how to jumper the pins for line termination, fixed 5V output, and
for output equal to the external adapter input:
Port/Line # Line Termination
5V Output
Input Volt Output
J4, jumper pins 2 & 3
J5, jumper pins 2 & 3
1
2
3
4
Jumper J7 and J8
Jumper J9 and J11
J4, jumper pins 1 & 2
J5, jumper pins 1 & 2
Jumper J22 and J24 J10, jumper pins 1 & 2 J10, jumper pins 2 & 3
Jumper J23 and J25 J6, jumper pins 1 & 2 J6, jumper pins 2 & 3
4. Close the IOLAN case by replacing the case lid and the two screws. You can now power it on
with the new settings.
Setting Jumpers 381
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction
Digital I/O Module
IOLANs that have Digital I/O have an input/output jumper that must be set for each channel and must
match the software configuration for each channel. Depending on the model, the placement of the
digital I/O board can change, so the diagram below shows how to set jumper for any digital board.To
change the settings, do the following:
1. Detach the IOLAN from the electrical power source and disconnect everything from the box.
2. Open the case by unscrewing the five side screws, two on each side plus the grounding screw,
and lifting off the top of the case. You should see the following configuration for the digital I/O
board:
Channel 2/4
J5
Pin1
Pin1
J3
Channel 1/3
I/O
Jumper pins 1 and 2 for Input. Jumper pins 2 and 3 for Output.
3. To configure either Channel 1 or Channel 3 (depending on how many Digital channels your I/O
supports and following the mylar channel definitions) for Input, jumper J3 pin 1 and 2 (as
shown); this is the default setting. To configure either Channel 2 or Channel 4 (depending on
how many Digital channels your I/O supports and following the mylar channel definitions) for
Output, jumper J5 pin 2 and 3 (as shown).
4. Close the IOLAN case by replacing the case lid and the five screws. You can now power it on
with the new settings.
382
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction
Analog Input Module
IOLANs that have Analog Input have a voltage/current jumper that must be set for each channel and
must match the software configuration for each channel. To change the settings, do the following:
1. Detach the IOLAN from the electrical power source and disconnect everything from the box.
2. Open the case by unscrewing the five side screws, two on each side plus the grounding screw,
and lifting off the top of the case. You should see the following configuration for the analog input
board:
Channel 4
Channel 2
Channel 1
Channel 3
JP1
JP2
JP3
JP4
I/O
I/O
3. To configure Channel 1 for Voltage, no jumper should be set (as shown); this is the default
setting. To configure Channel 2 for Current, jumper both J2 pins (as shown).
4. Close the IOLAN case by replacing the case lid and the five screws. You can now power it on
with the new settings.
Setting Jumpers 383
Download from Www.Somanuals.com. All Manuals Search And Download.
Introduction
384
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
I/O Wiring Diagrams
Appendix
F
F
Wiring I/O Diagrams
This section describes how to wire the various IOLAN I/O models.
Digital I/O
for jumper settings.
Digital Input Wet Contact
If you are using a wet contact for your Digital input, for channel D1 connect one wire to D1 and the
other wire to GND. The power source is supplied by external sources.
Power
Source
Digital Input Dry Contact
If you are using a dry contact for your Digital input, for channel D1 connect one wire to D1 and the
other wire to COM. The power source is supplied by the COM (common) connector.
Power
Source
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
385
Download from Www.Somanuals.com. All Manuals Search And Download.
Wiring I/O Diagrams
Digital Output Sink
For a Digital output sink (ground) configuration for channel D1, follow the diagram below.
-
Battery
+
+
-
Device
Digital Output Source
For a Digital output source (voltage) configuration for channel D1, follow the diagram below.
+
Battery
-
-
+
Device
386
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Wiring I/O Diagrams
Analog Input
for jumper settings.
Current
To connect channel A1 with a 2-wire shielded cable, connect the positive wire to A1+, the negative
wire to A1-, and optionally the shield to GND.
-
+
shield
If you have the positive/negative wires reversed, the output will always read 0 (zero).
Voltage
To connect to Channel A1 with a 2-wire shielded cable, connect the positive wire to A1+, the
negative wire to A1-, and optionally the shield to GND.
-
+
shield
If you have the positive/negative wires reversed, the polarity of the voltage will be reversed.
I/O Wiring Diagrams 387
Download from Www.Somanuals.com. All Manuals Search And Download.
Wiring I/O Diagrams
Temperature Input
If you are using RTD sensors, a short detected status will be displayed if the wires are connected
improperly. RTD or thermocouple sensors will display an open detection status when the circuit is
broken.
Thermocouple
To connect to Channel A1 with a 2-wire cable, connect the positive wire to A1+ and the negative
wire to A1-; you will not be using the A1s connection.
-
+
RTD 2-Wire
In a 2-wire RTD configuration, connect the excite wire to A1-, the return wire to A1+, and jumper the
sense wire from A1s with a insulated wire going to A1+.
sense
RTD 3-Wire
In a 3-wire RTD configuration, connect the return wire to A1+, the excite wire to A1-, and the sense
wire to A1s.
388
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Wiring I/O Diagrams
RTD 4-Wire
In a 4-wire RTD configuration, connect the return wire to A1+, the excite wire to A1-, the sense wire
to A1s, and leave the fourth wire disconnected.
Relay Output
Normally Open Contact
To connect Relay channel R1 for a circuit that is normally inactive, connect one wire to the COM
(common) connector and one wire to the NO (normally open) connector.
Normally Closed Contact
To connect relay channel R1 for a circuit that is normally active, connect one wire to the COM
(common) connector and one wire to the NC (normally closed) connector.
I/O Wiring Diagrams 389
Download from Www.Somanuals.com. All Manuals Search And Download.
Wiring I/O Diagrams
390
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Utilities
Appendix
G
G
Introduction
This chapter provides information on the TruePort and Decoder utilities.
TruePort
TruePort is a com port redirector utility for the IOLAN. It can be run in two modes:
z
TruePort Full mode—This mode allows complete device control and operates exactly like a
directly connected serial port. It provides a complete COM port interface between the attached
serial device and the network.
z
TruePort Lite mode—This mode provides a simple raw data interface between the device and
the network. Although the port will still operate as a COM port, control signals are ignored. In
this mode, the serial communications parameters must be configured on the IOLAN.
You use TruePort when you want to connect extra terminals to a server using the IOLAN rather than
a multi-port serial card. TruePort is especially useful when you want to improve data security, as you
can enable an SSL/TLS connection between the TruePort host port and the IOLAN. When run on
UNIX, TruePort allows you to print directly from a terminal to an attached printer (transparent
printing). You can also remap the slow baud rate of your UNIX server to a faster baud rate, as shown
below.
Serial Connection
Network
Map UNIX baud
rate 4,800 to
230,400 for faster
throughput
Ethernet
UNIX, running
TruePort Daemon,
baud rate 4,800
PC
Currently, TruePort is supported on Linux, Windows, SCO, Solaris, and others. For a complete list of
of supported operating systems, see the Perle website.
For more information, see the TruePort User Guide or the TruePort Installation and Configuration
Guide for Windows NT on the CD-ROM.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
391
Download from Www.Somanuals.com. All Manuals Search And Download.
API I/O Access Over TruePort
API I/O Access Over TruePort
You can access IOLAN I/O data through TruePort using the Perle API. The API uses the
command/response format. See the ioapiotp.csample program, found on the product CD-ROM,
for an example implementation.
API Request Format
All data in the Request must be sent as a single write to the COM port. The API command takes the
following format:
Number of Bytes
Value
1
Function Code (in hex):
z
z
z
z
z
01—Get read/write boolean register
03—Get read/write register
04—Get read only register
15—Set read/write boolean register (0x0F)
16—Set read/write register (0x10)
2
for this value).
2
n
Number of registers to act on starting from the register defined in byte
2 above.
Data for write. Some values must be read/written as a unit consisting of
2 consecutive registers. If the request is to write, the data to write
follows the number of registers. If accessing registers consisting of 2
bytes or 4 bytes, the data is in big endian (network order) format.
API Response Format
The API command takes the following response format:
Number of Bytes
Value
1
Function code of request if no error. Most significant bit will be set if
an error occurred.
1
n
Length of data in response if no error occurred. If an error occurred, the
Data response for request (the number of bytes is dependent on the
number and type of registers requested). If the request returns 2 or 4
byte values, it will be in big endian (network order) format. If the
request returns boolean values, the least significant bit (bit 0) represents
the first value requested and bits 1 to 7 represents subsequent boolean
values. If more than 8 boolean registers are requested, they are returned
in successive bytes.
392
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Decoder
Error Codes
Code Name
Description
01 Illegal Function
The function code received in the query is not an allowable action for
the server (or slave).
02 Illegal Data
Address
The data address received in the query is not an allowable address for
the server (or slave).
03 Illegal Data Value A value contained in the query data field is not an allowable value for
server (or slave).
04 Slave Device
Failure
An unrecoverable error occurred while the server (or slave) was
attempting to perform the requested action.
Decoder
If you are using Port Buffering NFS Encryption, you need to run the Decoder utility to view the port
buffering logs. See the Readme file to install the Decoder utility on any of the following operating
systems:
z
Windows 98/NT/ME/2000/Server 2003/XP
Note:
The Windows/DOS platform restricts the converted readable file to an 8.3 filename
limitation.
z
z
z
z
DOS
Solaris x86
Solaris Sparc 32-bit/64-bit
Linux x86 v2.4.x
Utilities 393
Download from Www.Somanuals.com. All Manuals Search And Download.
Decoder
394
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Accessories
Appendix
H
H
Introduction
This chapter provides information about peripheral IOLAN options that can be ordered separately
from the product. Contact your sales representative to find out how to order the products listed in this
appendix.
Installing a Perle PCI Card
This sections describes how to install the Perle IOLAN modem card and the Perle PCI adapter card,
used with a wireless WAN card, in your SCS rack mount model.
PCI Adapter Card
IOLAN Modem Card
The location and brackets are slightly different for the 32-port and 48-port SCS rack mount models,
but the basic installation concept is the same. The PCI adapter card bracket is found on the serial side
of the 8-port/16-port/32-port models and the LED side of the 48-port model.
Do not touch any of the components within the SCS IOLAN while performing the PCI
adapter card installation.
1. Unscrew the six screws on the top of the SCS IOLAN.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
395
Download from Www.Somanuals.com. All Manuals Search And Download.
Installing a Perle PCI Card
2. Unscrew the four screws along the bottom of the serial side of the SCS IOLAN. On the SCS 8-
port/16-port/32-port models, this includes the screw that is at the bottom of the PCI face plate.
3. Slide the top of the IOLAN off of the chassis.
4. Carefully holding the bracket just behind the face plate, unscrew the two screws at the top of the
8-port/16-port/32-port removable face plate or the two side screws of the 48-port removable face
plate of the piece you just took off.
48-port model
32-port model
The 8-port/16-port/32-port models are displayed below with the face plate and bracket taken
apart.
5. Unscrew the screw in the bracket. The 8-port/16-port/32-port bracket is shown below.
6. Slide the PCI adapter card into the bracket.
32-port model
48-port model
396
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Installing a Perle PCI Card
7. The black bracket should then fit on the inside of the PCI adapter card bracket. Align the adapter
card bracket and then insert the screw and tighten it to keep it firmly in place.
32-port model
48-port model
You must attach the bracket to the PCI adapter card before you slide it into the PCI slot.
8. If you are installing the PCI Adapter card, slide the wireless WAN card into the adapter card.
9. Slide the PCI adapter card into the PCI slot.
10. You can now replace the top of the IOLAN chassis by aligning it and sliding it into the base. You
can throw away the face plate, as you will not be needing it.
48-port model
32-port model
11. Replace all the screws on the top and the serial side of the IOLAN. If you installed a wireless
WAN card, you can now attach the external antenna to the card.
Accessories 397
Download from Www.Somanuals.com. All Manuals Search And Download.
Starter Kit (Adapters/Cable)
Starter Kit (Adapters/Cable)
The IOLAN Starter Kit includes the following for all IOLAN models (except the medical unit
models):
z
z
z
z
z
z
The adapters/cable can be purchased as a kit or individually.
RJ45F to DB25M DTE Crossover Adapter
The following diagram shows the IOLAN RJ45F-->DB25M DTE crossover adapter pinouts. This is
model number DBA0011.
RJ45F
(TxD) 4
DB25M DTE
3 (RxD)
(RxD) 5
(GND) 6
(DTR) 8
2 (TxD)
7 (GND)
6 (DSR)
8 (DCD)
(DSR) 3
(RTS) 2
(CTS) 7
20 (DTR)
5 (CTS)
4 (RTS)
398
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Starter Kit (Adapters/Cable)
RJ45F to DB25M DCE Modem Adapter
The following diagram shows the IOLAN RJ45FJDB25M DCE modem adapter pinouts. This is
model number DBA0013.
RJ45F
(TxD) 4
DB25M
3 (RxD)
(RxD) 5
(GND) 6
(DTR) 8
(DSR) 3
(DCD) 1
(RTS) 2
(CTS) 7
2 (TxD)
7 (GND)
20 (DTR)
6 (DSR)
8 (DCD)
4 (RTS)
5 (CTS)
Accessories 399
Download from Www.Somanuals.com. All Manuals Search And Download.
Starter Kit (Adapters/Cable)
RJ45F to DB25F DTE Crossover Adapter
The following diagram shows the IOLAN RJ45JDB25F DTE crossover adapter pinouts. This is
model number DBA0010.
RJ45F
DB25F
3 (RxD)
(TxD) 4
(RxD) 5
2 (TxD)
(GND) 6
(DTR) 8
7 (GND)
6 (DSR)
8 (DCD)
(DSR) 3
(RTS) 2
(CTS) 7
20 (DTR)
5 (CTS)
4 (RTS)
400
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Starter Kit (Adapters/Cable)
RJ45F to DB9M DTE Crossover Adapter
The following diagram shows the IOLAN RJ45JDB9M crossover adapter pinouts. This is model
number DBA0021.
RJ45F
(TxD) 4
DB9M
2 (RxD)
(RxD) 5
(GND) 6
(DTR) 8
3 (TxD)
5 (GND)
1 (DCD)
6 (DSR)
(DSR) 3
(RTS) 2
(CTS) 7
4 (DTR)
8 (CTS)
7 (RTS)
Accessories 401
Download from Www.Somanuals.com. All Manuals Search And Download.
Starter Kit (Adapters/Cable)
RJ45F to DB9F DTE Crossover Adapter
The following diagram shows the IOLAN RJ45FJDB9F crossover adapter pinouts. This is model
number DBA0020.
RJ45F
DB9F
2 (RxD)
(TxD) 4
(RxD) 5
3 (TxD)
(GND) 6
(DTR) 8
5 (GND)
1 (DCD)
6 (DSR)
(DSR) 3
(RTS) 2
(CTS) 7
4 (DTR)
8 (CTS)
7 (RTS)
Sun/Cisco RJ45M Connector Cable for Rack Mount Models
This is a 3 meter RJ45MJRJ45M 8-wire Sun/Cisco modular cable. The following diagram shows
how the IOLAN RJ45M cable is configured when connecting to the supplied Sun/Cisco RJ45 cable.
This model number is CAB0030.
IOLAN
RJ45M
Sun/Cisco
RJ45M
(RTS) 2
8 (CTS)
(DSR) 3
(TxD) 4
(RxD) 5
(GND) 6
(CTS) 7
(DTR) 8
2 (DTR)
6 (RxD)
3 (TxD)
4 (GND)
1 (RTS)
7 (DSR)
402
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
SCS48C/SCS32C/SCS16C/SCS8C Starter Kit (Adapters/Cable)
SCS48C/SCS32C/SCS16C/SCS8C Starter Kit
(Adapters/Cable)
The IOLAN Starter Kit includes the following for the SCS48C/SCS32C/SCS16C/SCS8C (Sun/Cisco)
models:
z
z
z
z
z
z
The adapters/cable can be purchased as a kit or individually.
RJ45F to DB25M DTE Crossover Adapter
The following diagram shows the IOLAN RJ45FJDB25M DTE crossover adapter pinouts. This is
model number DBA0011C.
RJ45F
(TxD) 3
DB25M DTE
3 (RxD)
(RxD) 6
2 (TxD)
(GND) 4
(GND) 5
7 (GND)
(DTR) 2
6 (DSR)
8 (DCD)
(DSR) 7
(RTS) 1
(CTS) 8
20 (DTR)
5 (CTS)
4 (RTS)
Accessories 403
Download from Www.Somanuals.com. All Manuals Search And Download.
SCS48C/SCS32C/SCS16C/SCS8C Starter Kit (Adapters/Cable)
RJ45F to DB25M DCE Modem Adapter
The following diagram shows the IOLAN RJ45FJDB25M DCE modem adapter pinouts. This is
model number DBA0013C.
RJ45F
DB25M
2 (TxD)
(TxD) 3
(RxD) 6
3 (RxD)
7 (GND)
(GND) 4
(GND) 5
(DTR) 2
(DSR) 7
(RTS) 1
(CTS) 8
20 (DTR)
8 (DCD)
4 (RTS)
5 (CTS)
404
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
SCS48C/SCS32C/SCS16C/SCS8C Starter Kit (Adapters/Cable)
RJ45F to DB25F DTE Crossover Adapter
The following diagram shows the IOLAN RJ45JDB25F DTE crossover adapter pinouts. This is
model number DBA0010C.
RJ45F
(TxD) 3
DB25F
3 (RxD)
(RxD) 6
2 (TxD)
(GND) 4
(GND) 5
7 (GND)
(DTR) 2
6 (DSR)
8 (DCD)
(DSR) 7
(RTS) 1
(CTS) 8
20 (DTR)
5 (CTS)
4 (RTS)
Accessories 405
Download from Www.Somanuals.com. All Manuals Search And Download.
SCS48C/SCS32C/SCS16C/SCS8C Starter Kit (Adapters/Cable)
RJ45F to DB9M DTE Crossover Adapter
The following diagram shows the IOLAN RJ45JDB9M crossover adapter pinouts. This is model
number DBA0021C.
RJ45F
DB9M
2 (RxD)
(TxD) 3
(RxD) 6
3 (TxD)
(GND) 4
(GND) 5
5 (GND)
(DTR) 2
1 (DCD)
6 (DSR)
(DSR) 7
(RTS) 1
(CTS) 8
4 (DTR)
8 (CTS)
7 (RTS)
406
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
SCS48C/SCS32C/SCS16C/SCS8C Starter Kit (Adapters/Cable)
RJ45F to DB9F DTE Crossover Adapter
The following diagram shows the IOLAN RJ45FJDB9F crossover adapter pinouts. This is model
number DBA0020C.
RJ45F
(TxD) 3
DB9F
2 (RxD)
(RxD) 6
3 (TxD)
(GND) 4
(GND) 5
5 (GND)
(DTR) 2
1 (DCD)
6 (DSR)
(DSR) 7
(RTS) 1
(CTS) 8
4 (DTR)
8 (CTS)
7 (RTS)
Sun/Cisco Roll-Over Adapter for Rack Mount Models
This is a RJ45MJRJ45F Sun/Cisco adapter. This model number is DBA0031C.
IOLAN
RJ45F
Sun/Cisco
RJ45M*
1
2
8
7
3
4
5
6
7
8
6
5
4
3
2
1
*The Sun/Cisco RJ45M connector attaches to the Sun/Cisco Console port.
Accessories 407
Download from Www.Somanuals.com. All Manuals Search And Download.
SCS48C/SCS32C/SCS16C/SCS8C Starter Kit (Adapters/Cable)
408
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Troubleshooting
Appendix
I
I
Introduction
This chapter provides information that can help resolve problems with the IOLAN.
Hardware Troubleshooting
LED label on your IOLAN unit.):
If the IOLAN Power/Ready LED is red and stays red for over 10 seconds, you have a hardware
problem that might require factory service. First, try the following:
z
z
In Console mode for desktop models or viewing the Console port in rack mount models, see if
you need to reload the firmware, which can be found either on the CD-ROM that came with the
select your specific IOLAN model).
If the bootloader option does not appear when you reboot the IOLAN (to load new firmware),
you need to make arrangements to return the IOLAN.
If you purchased the IOLAN less than 30 days before this problem appears, contact your distributor;
otherwise, see the Perle web site (www.Perle.com) for factory service information.
No factory service can be performed on IOLANs that have not been registered.
on your IOLAN unit.):
z
Good Boot: When the IOLAN cycles through a good boot, the LED blinks for several seconds
and then stays a solid green.
z
Non-critical Error Boot: When the IOLAN cycles through a boot and a non-critical error
occurs, such as a bad port, the LED will blink red briefly before displaying a solid green. You
should reboot the IOLAN while monitoring the Console port to view the error information.
z
z
Critical Error Boot: When the IOLAN cycles through a boot and a critical error occurs, such as
corrupted firmware, the LED continues to blink red. View the diagnostic information displayed
on the terminal connected to the Console port for information on how to correct the problem.
Fatal Error Boot: When the IOLAN cycles through a boot and a fatal error occurs, the LED
stays a solid red).
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
409
Download from Www.Somanuals.com. All Manuals Search And Download.
Communication Issues
Power/Ready LED Labels
The Power/Ready LED label varies depending on the IOLAN model, as shown in the table below.
IOLAN Model LED Label
Desktop
Power/Ready
System Ready
Rack mount
Medical unit
Communication Issues
General communication checks and practices are as follows:
z
Are your cables connected and correctly configured? If you are using EIA-232, see EIA-232
z
Can you ping your host? If you can ping but packet loss is reported, ping another host/device on
the same network. This will tell you whether the problem is specific to the host/device or general
to the network.
z
After entering or changing IP information for your IOLAN, reboot the IOLAN (does not apply
when using BOOTP or DHCP). Once the IOLAN has rebooted, other network devices should be
able to communicate with it (ping, telnet, etc.). Also, protocols such as ARP and proxy-ARP will
work properly.
z
z
Use the show routescommand (command line only) or view the Routes statistics. Is there a
route to the host?
If the WebManager or DeviceManager cannot communicate with the IOLAN, verify that the
Server Services HTTP and/or HTTPS are enabled for WebManager and DeviceManagerD is
enabled for DeviceManager. If you are using only HTTPS, the connection URL must start with
https://.
DeviceManager Problems
Error Message: 16 bit Windows Subsystem - C:\WINDOWS\SYSTEM32\AUTOEXEC.NT. The
system file is not suitable for running MS-DOS and Microsoft Windows applications. Choose
'Close' to terminate the application.
The error message can be misleading, because it is displayed even if the AUTOEXEC.NTfile is
actually missing.
To verify whether you have the file, type %windir%/system32/in the address bar of an Explorer
window. If there is no AUTOEXEC.NTfile proceed as follows:
1. Browse to %windir%/repair/(usually C:\WINDOWS\repair).
2. Right-click and Copy the AUTOEXEC.NTfile.
3. Browse to %windir%/system32/(usually C:\WINDOWS\System32).
4. Right-click inside the window and Paste the file.
The error condition described here may also be the result of corruption of the AUTOEXEC.NTfile, in
which case the above procedure may be helpful to restore a valid file.
If the above procedure does not fix the DeviceManager installation problem, see
http://support.microsoft.com/?kbid=324767 for the official Microsoft explanation.
410
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Host Problems
Host Problems
Cannot access a host by name:
z
If using DNS or if DNS is required, ensure a nameserver is configured on your IOLAN and is
accessible (ping it).
z
If not using DNS, verify that the host is configured in the Host Table. Check access to the host
by pinging it using the host’s IP address.
Cannot access a host on a local network, verify:
z
z
z
The network address is correct.
The subnet mask is set correctly and reflects the network configuration.
The broadcast address is set correctly and reflects the network configuration.
Cannot access a host on a remote network:
z
Use the show routecommand to verify that there is a route to the remote host. If no gateway is
specified, verify that a default gateway is specified. Ping the default gateway to check if it is
working.
z
Consider the situation beyond the gateway; for example, are intermediate gateways and the
remote host available? Also, check the messages returned by the pingcommand; for example,
that a particular host or gateway is unreachable.
Gateways added into the gateway table are ignored by the IOLAN:
z
Have you used BOOTP and entered a single static gateway in the bootptab file entry? If yes, the
other gateways will be ignored.
Access to host lost after a few minutes.
z
If the route to this host goes through routers, make sure those routers are all sending RIP packets
across the networks.
RADIUS Authentication Problems
User is waiting up to 60 seconds before login is accepted or denied and Authentication is set to
RADIUS. User has entered User Name and Password, and has pressed Enter.
z
Check RADIUS configuration of primary and secondary authentication/accounting hosts
specified, if you have retry and timeout values greater than the default, the IOLAN will be
spending time trying each of these hosts and keeping the user waiting.
z
Adjust RADIUS configuration: specify just one host, reduce Timeout and Retry values to the
default or less than default.
You cannot progress beyond the login and password prompts when authentication is set to
RADIUS:
z
On the RADIUS host, check the secret (password), you should see it displayed in clear text in the
RADIUS clients file. If you are unsure whether it is the same secret which you entered in the
IOLAN, go to the IOLAN and re-enter a new secret.
z
On the RADIUS host, verify that there is only one entry for a particular user; do not have
multiple entries of the same user name (even if the passwords are different).
Troubleshooting 411
Download from Www.Somanuals.com. All Manuals Search And Download.
Login Problems
Login Problems
You cannot obtain a login on any of the serial ports
z
Connect via the Admin port and check the settings of the front-mounted ports; they have
probably been set to a profile that does support serial connections, such as the Console
Management profile (in CLI or Menu, ‘direct’ or ‘silent’ telnet/rlogin). Try setting the serial
port(s) to the Terminal profile (DSlogin in CLI or Menu).
You have lost or don't know your password (as Admin user).
z
You must reset the IOLAN to its factory default settings using the Reset switch on the rear
panel. There is no procedure to access the IOLAN without a password.
Problems with Terminals
The following section concerns problems with the appearance of data on your terminal screen.
The IOLAN logs me out after a few minutes:
z
Check the Idle Timer value set for the user. The default setting for the Idle Timer for all users is
0 seconds (does not timeout).
Corrupt data.
z
Check your line settings (baud rate, stop bits, etc.)
Missing data.
z
Verify that the same type of flow control is set in both your terminal and on the IOLAN’s port.
Error message not permitted on a dumb terminalafter typing the CLI command
screen.
z
Set your Line to TermtypeVT100, ANSI or WYSE60 (or other form of terminal emulation, if
you have downloaded one). The default line type in the IOLAN is Dumb, which does not support
the graphics characters necessary to view the text-based menus.
Screen corruption when using the text-based menu system.
z
z
z
Verify that the terminal setup in the IOLAN matches your terminal.
Verify that entries in the term file match your terminal setup.
If using a PC/computer, verify that the type of terminal emulation selected in your application
matches those supported by the IOLAN.
When using the function keys on your keyboard, nothing happens or your sessions keep
swapping.
z
Change your Hotkey Prefix character. The function keys on the keyboards of some terminals
(like WYSE60) send character sequences which begin with ^a; unfortunately, ^a is also the
default Hotkey Prefix, which you use to switch between sessions. A valid alternative would be
^b (hex=02). If you are the system administrator, you can change any user’s Hotkey Prefix
character.
When using a downloaded terminal definition, you are having problems using arrow keys.
Use Ctrl-K, Ctrl-J, Ctrl-H and Ctrl-L for up, down, left and right respectively.
When switching from a session back to the text menus, both screen images are superimposed.
Press ^r to redraw the screen.
INIT: Error in terminal file <filename>
z
z
z
This error indicates that you have exceeded the 80 character limit for one or more of the terminal
capabilities defined in the reported file.
INIT: Error on line n in terminal file <filename>
z
You have omitted the = sign from the reported line.
412
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Unknown IP Address
Unknown IP Address
You have already configured the IOLAN and you do know your password, and have lost,
misconfigured, or don't know the IP address of the IOLAN, so you cannot obtain a successful
login.
z
If the IOLAN resides within the local network segment, you can use DeviceManager to find the
IOLAN.
z
DHCP/BOOTP Problems
Messages: host name too longor filename too long.
z
The IOLAN can only accept host names of 14 characters or file names of 64 characters, so verify
that you are not attempting to pass a string that is longer than those maximums.
DHCP or BOOTP have been set up to configure my IOLAN, but does not seem to have done
anything.
z
z
Check that the server DHCP/BOOTP service is set to on, if not set it to on and reboot.
Check that your BOOTP server is configured for your IOLAN or that your DHCP server has an
active lease pool (scope) with at least 1 free IP address.
You observe TFTP errors when the IOLAN boots, for example:
TFTP: File not found : filename
TFTP: Timed out
This has a number of causes, including:
z
z
z
z
The file names you specified to DHCP/BOOTP do not exist or are in the wrong place.
The server for any of the downloadable files in your bootfile has no TFTP server running.
Verify that lease data in your DHCP server manager is correct.
Reset or restart the DHCP server.
Callback Problems
User Callback is On, and a number is configured for the line, but the IOLAN is not calling the
user back:
z
z
z
Verify that the phone number is entered under the user (not the line).
Verify that the callback Phone Number is valid.
Verify that the modem at the user’s end is set to ‘auto-answer’.
Language Problems
In a customized language, the text strings appear in the wrong place in the Menu, CLI, or
WebManager.
Check the original ASCII text file you used to translate to your customised language. The
z
sequence of the line much match exactly (be aware that comments don’t affect line sequence, but
can affect the actual line that the strings appear on). So, if you strip out all comments, if the
original file says line 1000 should be string none, then line 1000 (stripped of comments) should
be the translated version of none.
Troubleshooting 413
Download from Www.Somanuals.com. All Manuals Search And Download.
Modem Problems
Modem Problems
The IOLAN is not initializing the modem.
z
Check your Line Service is set to SLIP or PPP. If your line service is set to any other type, the
IOLAN will not initialize a modem. You will need to configure the modem manually.
PPP Problems
The link fails on start-up when there are remote IP addresses set for both a user (Framed IP
value) and a line (Remote IP address).
z
Check the IP address set for the user; this is used in preference to the IP address set for a line. If
there is a problem with the user’s IP address, negotiation will fail; the IOLAN will not use the
line’s IP address as an alternative.
The link fails on start-up and security (either PAP or CHAP) is enabled on the line.
z
Check the remote client/device has the same setting; that is, PAP if the IOLAN is using PAP.
The IOLAN does not perform negotiation with the remote end over PAP or CHAP.
At the remote end, the client software locks up when security (CHAP) is enabled on the line.
z
Disable CHAP re-challenge parameter (challenge_interval) in the IOLAN. Some PPP client
software does not work when receiving CHAP re-challenges.
PPP is not running successfully over your 485 half-duplex environment.
PPP is incompatible with half-duplex; it must be run over a full-duplex environment.
z
Printing Problems
The print job fails to print on the device attached to the serial port.
z
On the line where the printer is attached, set Line Service to Printer. Print jobs will not print
when the line service is set incorrectly.
When using RCP, the network host receives a rejection message from the IOLAN. The result is
that the print job does not take place.
z
Print using LPD
or
z
Modify the printer interface scripts on the network host to overcome this weakness of RCP. The
modification will force the network host to continue trying to send the print job when the
IOLAN’s printer port is busy.
Long Reboot Cycle
Rebooting the IOLAN takes a long time.
If you are not using DHCP/BOOTP, disable this within the Server Services; otherwise, the IOLAN
waits to timeout for a request to DHCP/BOOTP.
414
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
SSL/TLS
SSL/TLS
If you are experiencing problems obtaining a successful SSL/TLS connection, you can set your
Syslog Level to Notice and view the syslog for the following messages:
Line not SSL enabled. Abort connection when a user who is configured for Service SSL_RAW
tries to login on the serial port.
The user has been configured for an SSL_RAW connection, but the line has not been configured to
enable SSL. To resolve this, either enable the line for SSL or change the user's Service to
TCP_CLEAR if SSL is not wanted.
Could not obtain peer's certificate.
z
User has selected a cipher key exchange of ADH (anonymous Diffie-Hellman) and enabled Peer
verification. ADH does not use certificates so they will not be sent in an SSL/TLS handshake.
Disable Peer Verification or change to a cipher suite that uses certificates.
z
User has selected Peer Verification on the configured SSL/TLS server and has not configured a
certificate for the client. Either disable peer verification on the SSL/TLS server or configure a
certificate for the SSL/TLS client.
SSL_accept failed on the SSL/TLS server device.
z
The device has failed to accept an SSL/TLS connection on top of a TCP connection that has just
been established. This could indicate that the peer from which TruePort is trying to accept a
connection from is not configured for SSL/TLS. Verify that the peer has been configured for an
SSL/TLS client connection.
Certificate did not match configuration
z
The message is displayed when Validate Peer Certificate has been enabled, but the configured
Validation Criteria does not match the corresponding data in the certificate received from the
peer. The data configured must match exactly to the data in the certificate. The data is also case
sensitive.
unknown protocol message when trying to make an SSL/TLS connection
z
This will be displayed when both sides of the TCP connection are configured as SSL/TLS
clients. Change one of the end points to act as an SSL/TLS server.
z
One of the endpoints is not configured for SSL/TLS. Make sure both endpoints are configured
for SSL/TLS, verify that one is a client and the other is a server.
tlsv1 alert handshake failure or sslv3 alert handshake failure
z
The remote site has an SSL/TLS error and is sending this message with an alert message. Look at
the error messages on the remote end and fix the problem indicated.
I/O Models
An I/O Digital or Relay controlled motor is starting/stopping
z
Digital and Relay channels have automatically resetting fuses, meaning that if the circuit gets
overloaded and the fuse blows, it will automatically reset when the circuit cools down.
An A4R2 model is starting/stopping
z
The A4R2 model can run at 55 degrees Celsius ambient temperature when the input voltage is
22VDC or below. If the input voltage exceeds 22VDC, the maximum ambient temperature will
drop into the range of 45-50 degrees Celsius to run successfully.
Troubleshooting 415
Download from Www.Somanuals.com. All Manuals Search And Download.
IPv6 Issues
IPv6 Issues
You are not seeing the IPv6 address value when you attempt to connect to the IOLAN.
Windows Vista and Server 2008 operating systems have IPv6 support already enabled, however, you
will have to install IPv6 support for Windows XP.
To install IPv6 support in Windows XP, do the following:
1. In Control Panel, double-click the Network Connections icon.
2. Double-click the Local Area Connection entry.
3. In the Local Area Connection Status window, click the Properties button on the General tab.
4. In the Local Area Connections window, click the Install button on the General tab.
5. In the Select Network Component Type window, select Protocol and click the Add button.
6. In the Select Network Protocol window, select Microsoft TCP/IP version 6 and click the OK
button.
416
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Contacting Technical Support
Contacting Technical Support
Making a Technical Support Query
Who To Contact
Note:
Perle offers free technical support to Perle Authorized Distributors and Registered Perle
Resellers.
If you bought your product from a registered Perle supplier, you must contact their Technical Support
department; they are qualified to deal with your problem.
Have Your Product Information Ready
When you make a technical support enquiry please have the following information ready:
Item
Write Details Here
Product Name
Problem Description
Your Name
Company Name and
Address
Country
Phone Number
Fax Number
Email Address
Making a support query via the Perle web page
If you have an internet connection, please send details of your problem to Technical Support using
the email links provided on the Perle web site in the Support/Services area.
Troubleshooting 417
Download from Www.Somanuals.com. All Manuals Search And Download.
Contacting Technical Support
Repair Procedure
Before sending the IOLAN for repair, you must contact your Perle supplier. If, however, you bought
your product directly from Perle you can contact directly.
Customers who are in Europe, Africa or Middle East can submit repair details via a website form.
This form is on the Perle website, www.perle.com, in the Support/Services area.
Feedback on this Manual
If you have any comments or suggestions for improving this manual please email Perle using the
following address:
Please include the title, part number and date of the manual (you can find these on the title page at
the front of this manual).
418
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Glossary
This chapter provides definitions for Device Server terms.
BOOTP (BOOTstrap An Internet protocol that enables a diskless workstation to discover its own IP address, the IP
Protocol)
address of a BOOTP server on the network, and a file to be loaded into memory to boot the
machine. This enables the workstation to boot without requiring a hard or floppy disk drive.
Callback
A security feature where the Device Server calls back the User at a predetermined number
defined in the User’s account.
CHAP (Challenge
Handshake
Standard authentication protocol for PPP connections. It provides a higher level of security than
PAP and should be used whenever possible. see PAP
Authentication
Protocol)
Community (SNMP) An SNMP community is the group that devices and management stations running SNMP belong
to. It helps define where information is sent.
DHCP (Dynamic Host A TCP/IP protocol that provides static and dynamic address allocation and management.
Configuration
Protocol)
Direct Connection
Connections that bypass the Device Server enabling the user to log straight into a specific host.
A direct connection is recommended where a user logging in to the Device Server is not
required.
Ethernet
A high-speed (10Mbps,100Mbps) cable technology that connects devices to a LAN, using one
or more sets of communication protocols.
Fixed Callback
A method where there is a specific number defined to callback a user.
Local Authentication Uses the user ID and password stored within the Device Server User database.
LPD
Line Printer Daemon. A printer protocol that uses TCP/IP to establish connections between
printers and workstations on a network. The technology was developed originally for BSD
UNIX and has since become the de facto cross-platform printing protocol.
Modem Initialization A series of commands sent to the modem by a communications program at start up. These
String
commands tell a modem how to set itself up in order to communicate easily with another
modem.
MOTD
Multicast
Message of the day. This is defined by a file whose contents display when users log into the
Device Server.
The broadcasting of messages to a specified group of workstations on a LAN, WAN, or internet.
NAK (Negative
Acknowledgment)
A communication control character sent by the receiving destination indicating that the last
message was not received correctly.
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
419
Download from Www.Somanuals.com. All Manuals Search And Download.
PAP (Password
Authentication
Protocol)
Standard authentication protocol for PPP connections. see CHAP
RADIUS (Remote
Authentication Dial In
Users Services)
An open standard network security server that communicates with the PAP protocol.
Reverse Connection
Connections that originate from a host that go directly to a serial device through the Device
Server.
RIP (Routing
A protocol that allows gateways and hosts to exchange information about various routes to
Information Protocol) different networks.
Roaming Callback
RPC
A method where the client supplies the number for callback when they dial in.
Remote Procedure Call. A type of protocol that allows a program on one computer to execute a
program on a server computer.
Silent Connection
Silent connections are the same as direct connections except that they are permanently
established. The host login prompt is displayed on the screen. Logging out redisplays this
prompt. Silent connections, unlike direct connections, however, make permanent use of pseudo
tty resources and therefore consume host resources even when not in use.
SNMP (Simple
Network Management
Protocol)
A protocol for managing network devices.
Subnet/Prefix Bits
Identifies the device’s IP address, which portion constitutes the network address and which
portion constitutes the host address.
420
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
Index
female 364
male 363
power in pin
A
admin
analog
calibrating 323
API
TruePort 284
female 365
male 364
definitions 419
DeviceManager
overview 54
DHCP
B
parameters 64
direct connect
BOOTP
parameters 64
E
C
calibrating
analog 323
temperature 324
certificates
F
SSL 242
factory default configuration
custom 322
original 323
CLI
configuration files
formats 90
connecting to the Device Server
H
I
installing
I/O
D
DB25
Modbus 278
pinouts
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
421
Download from Www.Somanuals.com. All Manuals Search And Download.
Index J
UDP 274
N
NFS
CLI 60
Menu 61
IPsec 232
O
OpenSSH 242
J
jumpers
setting 377
P
parameters
BOOTP/DHCP 64
LDAP 219
modems 199
K
keys
NIS 222
RADIUS 216
SecurID 221
HTTPS 242
SSH 242
TACACS+ 220
password
L
L2TP/IPsec 237
language
lost 331
translating 328
LDAP
pin, power in
pinouts
parameters 219
Decoder utility
M
medical unit
Menu
conventions 62
IOLAN+ 67
local 194
parameters 195
remote 195
MIB 65
Modbus
TruePort 283
power in pin
printers 338
mode
console 41
printing
serial 41
host-based 339
LPD 338
RCP 339
422
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
Download from Www.Somanuals.com. All Manuals Search And Download.
R Index
creating 329
downloading 329
TruePort
API 284
Modbus 283
R
rack mount
installing 42
RADIUS
parameters 216
RIP
U
UDP
overview 103
configuring 142
utility
RJ45
Decoder 393
V
S
vmodem
overview 164
VNP
services
line
IPsec 232
printer 338
UDP 142
VPN 231
exceptions 238
L2TP/IPsec 237
vmodem 164
sessions 209
setting an IP address
ARP-Ping 78
BOOTP/DHCP 77
DeviceManager 75
IPv6 78
W
WebManager
overview 57
signal I/O
general 169
SNMP
using 65
supported models
IOLAN+ 67
T
technical support
contacting 417
online 417
temperature
calibrating 324
terminal definitions
IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0
423
Download from Www.Somanuals.com. All Manuals Search And Download.
Download from Www.Somanuals.com. All Manuals Search And Download.
|