XPort® Pro User Guide Datasheet by Lantronix, Inc.

View All Related Products | Download PDF Datasheet
LANT?ONIX® XPorF Pro
Part Number 900-560
Revision G February 2019
XPort Pro
Embedded Device Server
User Guide
http://gatents.Iantronix.com www.Iamronix.com/suggon/warramy www.|antronix.com/suggort www.Iamronix.com/aboutlcontact
XPort® Pro Embedded Device Server User Guide 2
Intellectual Property
© 2019 Lantronix, Inc. All rights reserved. No part of the contents of this publication may be
transmitted or reproduced in any form or by any means without the written permission of Lantronix.
Lantronix, XPort, MatchPort, and Evolution OS are registered trademark of Lantronix, Inc. in the
United States and other countries. DeviceInstaller and is a trademark of Lantronix, Inc.
Patented: http://patents.lantronix.com; additional patents pending.
Windows and Internet Explorer are registered trademarks of the Microsoft Corporation. Mozilla
and Firefox are registered trademarks of the Mozilla Foundation. Chrome is a trademark of Google
Inc. Safari is a registered trademark of Apple Inc. Opera is a registered trademark of Opera
Software ASA Corporation Norway. All other trademarks and trade names are the property of their
respective holders.
Warranty
For details on the Lantronix warranty policy, please go to our website at
www.lantronix.com/support/warranty.
Contacts
Lantronix, Inc. Corporate Headquarters
7535 Irvine Center Drive
Suite 100
Irvine, CA 92618, USA
Phone: 949-453-3990
Fax: 949-453-3995
Technical Support
Online: www.lantronix.com/support
Sales Offices
For a current list of our domestic and international sales offices, go to the Lantronix web site at
www.lantronix.com/about/contact.
Disclaimer
Note: This product has been designed to comply with the limits for a Class B digital
device pursuant to Part 15 of FCC and EN55022:1998 Rules when properly enclosed and
grounded. These limits are designed to provide reasonable protection against radio
interference in a residential installation. This equipment generates, uses, and can radiate
radio frequency energy, and if not installed and used in accordance with this guide, may
cause interference to radio communications. See the appendix, Compliance (on page
141).
All information contained herein is provided “AS IS.” Lantronix undertakes no obligation to update
the information in this publication. Lantronix does not make, and specifically disclaims, all
warranties of any kind (express, implied or otherwise) regarding title, non-infringement, fitness,
quality, accuracy, completeness, usefulness, suitability or performance of the information provided
herein.
XPort® Pro Embedded Device Server User Guide 3
Lantronix shall have no liability whatsoever to any user for any damages, losses and causes of
action (whether in contract or in tort or otherwise) in connection with the user’s access or usage of
any of the information or content contained herein. The information and specifications contained in
this document are subject to change without notice.
Revision History
Date Rev. Comments
September 2009 A Initial document.
December 2010 B Updated for firmware version 5.2.0.0R20. Added support for Modbus protocol,
configurable MTU, and additional VIP tunnel connect protocols; as well as
improvements to SNMP, logging, and SSL.
March 2011 C Updated SDRAM information.
April 2012 D Added part number information. Updated for firmware version 5.2.0.1R5.
May 2016 E Updated for firmware version 5.4.0.0. New features include CLI login string,
send break, break duration settings, support for SHA2 SSL certificate, and key
size changes in SSL. VIP content and host mode configuration options
removed.
August 2017 F Updated part number SKU information.
February 2019 G Updated for firmware version 5.5.0.2.
XPort® Pro Embedded Device Server User Guide 4
Table of Contents
Intellectual Property ________________________________________________________2
Warranty _________________________________________________________________2
Contacts _________________________________________________________________2
Disclaimer ________________________________________________________________2
Revision History ___________________________________________________________3
Table of Contents __________________________________________________________4
List of Figures _____________________________________________________________9
List of Tables ____________________________________________________________12
1: About This Guide 14
Chapter and Appendix Summaries ____________________________________________14
Additional Documentation ___________________________________________________15
2: Introduction 16
Key Features ____________________________________________________________16
Applications ______________________________________________________________17
Protocol Support _________________________________________________________17
Evolution OS™ Application __________________________________________________17
Additional Features ________________________________________________________18
Modem Emulation ______________________________________________________18
Web-Based Configuration and Troubleshooting _______________________________18
Command-Line Interface (CLI) ____________________________________________18
SNMP Management ____________________________________________________ 18
XML-Based Architecture and Device Control _________________________________18
Really Simple Syndication (RSS) __________________________________________18
Enterprise-Grade Security _______________________________________________18
Terminal Server/Device Management ______________________________________19
Troubleshooting Capabilities _____________________________________________19
Configuration Methods _____________________________________________________ 20
Addresses and Port Numbers ________________________________________________ 20
Hardware Address _____________________________________________________ 20
IP Address ___________________________________________________________20
Every device connected to an IP network must have a unique IP address. This address ref-
erences the specific unit. ________________________________________________20
Port Numbers _________________________________________________________20
Product Information Label ___________________________________________________21
3: Using DeviceInstaller 22
Installing DeviceInstaller ____________________________________________________22
Accessing the XPort Pro Unit Using DeviceInstaller _______________________________22
XPort® Pro Embedded Device Server User Guide 5
4: Configuration Using Web Manager 24
Accessing Web Manager ___________________________________________________24
Device Status Page ____________________________________________________25
Web Manager Page Components _____________________________________________26
Navigating the Web Manager ________________________________________________27
5: Network Settings 29
Network 1 (eth0) Interface Status _____________________________________________29
Network 1 (eth0) Interface Configuration _______________________________________30
Network 1 Ethernet Link ____________________________________________________32
6: Line and Tunnel Settings 33
Line Settings _____________________________________________________________33
Line Statistics _________________________________________________________33
Line Configuration _____________________________________________________34
Line Command Mode ___________________________________________________36
Tunnel Settings __________________________________________________________ 37
Tunnel – Statistics _____________________________________________________38
Tunnel – Serial Settings _________________________________________________40
Tunnel – Packing Mode _________________________________________________41
Tunnel – Accept Mode __________________________________________________ 43
Tunnel – Connect Mode _________________________________________________46
Connecting Multiple Hosts _______________________________________________50
Tunnel – Disconnect Mode _______________________________________________51
Tunnel – Modem Emulation ______________________________________________52
7: Terminal and Host Settings 55
Terminal Settings _________________________________________________________55
Terminal Network Configuration ___________________________________________55
Terminal Line Configuration ______________________________________________56
Host Configuration ________________________________________________________57
8: Configurable Pin Manager 59
Overview ________________________________________________________________59
Default Groups ________________________________________________________59
Custom Groups _______________________________________________________59
CPM: CP (Configurable Pins) ________________________________________________60
View CPs ____________________________________________________________60
CPM: Groups ____________________________________________________________62
View Groups __________________________________________________________62
XPort® Pro Embedded Device Server User Guide 6
9: Service Settings 66
DNS Settings _____________________________________________________________66
Point-to-Point (PPP) Settings________________________________________________ 67
SNMP Settings ___________________________________________________________69
FTP Settings ____________________________________________________________70
TFTP Settings ____________________________________________________________71
Syslog Settings ___________________________________________________________72
HTTP Settings ____________________________________________________________73
HTTP Statistics ________________________________________________________ 73
HTTP Configuration ____________________________________________________75
HTTP Authentication ___________________________________________________77
RSS Settings _____________________________________________________________78
LPD Settings _____________________________________________________________79
LPD Statistics _________________________________________________________79
LPD Configuration _____________________________________________________80
Print Test Page ________________________________________________________81
10: Security Settings 82
SSH Settings _____________________________________________________________82
SSH Server Host Keys _________________________________________________83
SSH Server Authorized Users ____________________________________________85
SSH Client Known Hosts ________________________________________________87
SSH Client Users ______________________________________________________88
SSL Settings _____________________________________________________________90
SSL Cipher Suites _____________________________________________________ 90
SSL Certificates _______________________________________________________90
SSL RSA ____________________________________________________________91
SSL Certificates and Private Keys _________________________________________91
SSL Utilities __________________________________________________________91
SSL Configuration _____________________________________________________92
11: Modbus 96
CP Control via Modbus _____________________________________________________ 96
Serial Transmission Mode ___________________________________________________98
Modbus Statistics _________________________________________________________99
Modbus Configuration _____________________________________________________100
12: Maintenance and Diagnostics Settings 101
Filesystem Settings _______________________________________________________101
Filesystem Statistics ___________________________________________________101
Filesystem Browser ___________________________________________________102
Protocol Stack Settings ____________________________________________________104
XPort® Pro Embedded Device Server User Guide 7
TCP Settings ________________________________________________________104
IP Settings __________________________________________________________105
ICMP Settings ________________________________________________________106
ARP Settings ________________________________________________________107
SMTP Settings _______________________________________________________108
IP Address Filter _________________________________________________________109
Query Port _____________________________________________________________ 110
Diagnostics _____________________________________________________________111
Hardware ___________________________________________________________111
MIB-II Statistics _______________________________________________________112
IP Sockets __________________________________________________________113
Ping _______________________________________________________________113
Traceroute __________________________________________________________114
Log ________________________________________________________________115
Memory _____________________________________________________________116
Buffer Pools _________________________________________________________ 117
Processes ___________________________________________________________117
System Settings _________________________________________________________119
13: Advanced Settings 121
Email Settings ___________________________________________________________121
Email Statistics _______________________________________________________121
Email Configuration ___________________________________________________123
Command Line Interface Settings ____________________________________________125
CLI Statistics _________________________________________________________125
CLI Configuration _____________________________________________________125
XML Settings ____________________________________________________________127
XML: Export Configuration ______________________________________________128
XML: Export Status ____________________________________________________129
XML: Import Configuration ______________________________________________131
14: Branding the XPort Pro Unit 136
Web Manager Customization _______________________________________________136
Short and Long Name Customization _________________________________________136
15: Updating Firmware 137
Obtaining Firmware _______________________________________________________137
Loading New Firmware ____________________________________________________137
A: Technical Support 138
XPort® Pro Embedded Device Server User Guide 8
B: Binary to Hexadecimal Conversions 139
Converting Binary to Hexadecimal ___________________________________________139
Conversion Table _____________________________________________________139
Scientific Calculator ___________________________________________________140
C: Compliance 141
RoHS, REACH and WEEE Compliance Statement ______________________________142
Index _________________________________________________________________143
XPort® Pro Embedded Device Server User Guide 9
List of Figures
Figure 2-2 Sample Hardware Address ________________________________________________20
Figure 2-3 Product Label___________________________________________________________21
Figure 4-1 Prompt for User Name and Password________________________________________24
Figure 4-2 Web Manager Home Page ________________________________________________25
Figure 4-3 Components of the Web Manager Page ______________________________________26
Figure 5-1 Network 1 (eth0) Interface Status ___________________________________________29
Figure 5-2 Network 1 (eth0) Interface Configuration______________________________________30
Figure 5-4 Network 1 Ethernet Link __________________________________________________32
Figure 6-1 Line 1 Statistics _________________________________________________________33
Figure 6-2 Line 1 Configuration______________________________________________________34
Figure 6-4 Line 1 Command Mode ___________________________________________________36
Figure 6-6 Tunnel 1 Statistics _______________________________________________________ 39
Figure 6-7 Tunnel 1 Serial Settings___________________________________________________40
Figure 6-9 Tunnel 1 Packing Mode (Mode = Disable) ____________________________________41
Figure 6-10 Tunnel 1 Packing Mode (Mode = Timeout) ___________________________________42
Figure 6-11 Tunnel 1 Packing Mode (Mode = Send Character) _____________________________42
Figure 6-13 Tunnel 1 Accept Mode___________________________________________________44
Figure 6-15 Tunnel 1 - Connect Mode ________________________________________________47
Figure 6-17 Host 1, Host 2, Host 3 Exchanged__________________________________________50
Figure 6-18 Tunnel 1 Disconnect Mode _______________________________________________51
Figure 6-21 Tunnel 1 Modem Emulation_______________________________________________54
Figure 7-1 Terminal on Network Configuration __________________________________________55
Figure 7-3 Terminal on Line Configuration _____________________________________________56
Figure 7-5 Host Configuration_______________________________________________________58
Figure 8-1 CPM: CPs _____________________________________________________________60
Figure 8-4 CPM: Groups___________________________________________________________62
Figure 8-6 CPM: Group Status ______________________________________________________63
Figure 9-1 DNS Settings ___________________________________________________________66
Figure 9-2 PPP Configuration Settings ________________________________________________68
Figure 9-4 SNMP Configuration _____________________________________________________69
Figure 9-6 FTP Configuration _______________________________________________________70
Figure 9-8 TFTP Configuration ______________________________________________________71
Figure 9-10 Syslog _______________________________________________________________72
Figure 9-12 HTTP Statistics ________________________________________________________74
Figure 9-13 HTTP Configuration _____________________________________________________75
XPort® Pro Embedded Device Server User Guide 10
Figure 9-15 HTTP Authentication ____________________________________________________77
Figure 9-17 RSS _________________________________________________________________78
Figure 9-19 LPD Statistics _________________________________________________________80
Figure 9-20 LPD Configuration ______________________________________________________80
Figure 10-1 SSH Server: Host Keys (Upload Keys) ______________________________________83
Figure 10-5 SSH Server: Authorized Users ____________________________________________86
Figure 10-7 SSH Client: Known Hosts ________________________________________________87
Figure 10-9 SSH Client: Users ______________________________________________________88
Figure 10-12 SSL ________________________________________________________________93
Figure 11-5 Modbus Statistics_______________________________________________________99
Figure 11-6 Modbus Configuration __________________________________________________100
Figure 12-1 Filesystem Statistics ___________________________________________________101
Figure 12-2 Filesystem Browser ____________________________________________________102
Figure 12-4 TCP Protocol _________________________________________________________104
Figure 12-6 IP Protocol __________________________________________________________105
Figure 12-8 ICMP Protocol ________________________________________________________106
Figure 12-10 ARP Protocol Page ___________________________________________________107
Figure 12-12 SMTP______________________________________________________________108
Figure 12-14 IP Address Filter Configuration __________________________________________109
Figure 12-16 Query Port Configuration_______________________________________________110
Figure 12-17 Diagnostics: Hardware_________________________________________________ 111
Figure 12-18 MIB-II Network Statistics _______________________________________________112
Figure 12-20 IP Sockets __________________________________________________________113
Figure 12-21 Diagnostics: Ping _____________________________________________________113
Figure 12-23 Diagnostics: Traceroute________________________________________________114
Figure 12-25 Diagnostics: Log _____________________________________________________115
Figure 12-26 Diagnostics: Log (Filesystem) ___________________________________________115
Figure 12-27 Diagnostics: Log (Line 1)_______________________________________________116
Figure 12-28 Diagnostics: Memory __________________________________________________116
Figure 12-29 Diagnostics: Buffer Pools_______________________________________________117
Figure 12-30 Processes __________________________________________________________118
Figure 12-31 System_____________________________________________________________119
Figure 13-1 Email Statistics _______________________________________________________122
Figure 13-3 CLI Statistics _________________________________________________________125
Figure 13-4 CLI Configuration______________________________________________________125
Figure 13-6 XML: Export Configuration_______________________________________________128
Figure 13-8 XML Export Status_____________________________________________________130
Figure 13-10 XML: Import Configuration______________________________________________131
XPort® Pro Embedded Device Server User Guide 11
Figure 13-11 XML: Import Configuration from External File _______________________________131
Figure 13-12 XML: Import from Filesystem ___________________________________________132
Figure 13-13 XML: Import Configuration from Filesystem ________________________________133
Figure 13-14 XML: Import Line(s) from Single Line Settings on the Filesystem________________134
Figure 15-1 Update Firmware ______________________________________________________137
XPort® Pro Embedded Device Server User Guide 12
List of Tables
Table 2-1 XPort Pro Part Numbers ___________________________________________________16
Table 3-1 Device Details Summary___________________________________________________22
Table 4-4 Summary of Web Manager Pages ___________________________________________27
Table 5-3 Network 1 (eth0) Interface Configuration ______________________________________30
Table 5-5 Network 1 Ethernet Link ___________________________________________________32
Table 6-3 Line Configuration________________________________________________________35
Table 6-5 Line Command Mode _____________________________________________________36
Table 6-8 Tunnel - Serial Settings____________________________________________________40
Table 6-12 Tunnel Packing Mode ____________________________________________________42
Table 6-14 Tunnel Accept Mode _____________________________________________________45
Table 6-16 Tunnel Connect Mode____________________________________________________48
Table 6-19 Tunnel Disconnect Mode _________________________________________________52
Table 6-20 Modem Emulation Commands and Descriptions _______________________________52
Table 6-22 Tunnel Modem Emulation _________________________________________________54
Table 7-2 Terminal on Network Configuration __________________________________________ 56
Table 7-4 Terminal on Line 1 Configuration ____________________________________________57
Table 7-6 Host Configuration _______________________________________________________58
Table 8-2 CPM CPs Current Configuration_____________________________________________61
Table 8-3 CPM CPs Status_________________________________________________________61
Table 8-5 CPM Groups Current Configuration __________________________________________63
Table 8-7 Group Status____________________________________________________________64
Table 9-3 PPP Configuration _______________________________________________________68
Table 9-5 SNMP _________________________________________________________________70
Table 9-7 FTP Settings ____________________________________________________________71
Table 9-9 TFTP Server ____________________________________________________________71
Table 9-11 Syslog ________________________________________________________________73
Table 9-14 HTTP Configuration _____________________________________________________75
Table 9-16 HTTP Authentication_____________________________________________________77
Table 9-18 RSS__________________________________________________________________79
Table 9-21 LPD Configuration_______________________________________________________81
Table 10-2 SSH Server Host Keys Settings - Upload Keys Method __________________________84
Table 10-3 SSH Server Host Keys Settings - Upload Keys Method __________________________84
Table 10-4 SSH Server Host Keys Settings - Create New Keys Method ______________________85
Table 10-6 SSH Server Authorized User Settings _______________________________________86
Table 10-8 SSH Client Known Hosts _________________________________________________87
XPort® Pro Embedded Device Server User Guide 13
Table 10-10 SSH Client Users ______________________________________________________ 89
Table 10-11 Supported Cipher Suites_________________________________________________ 90
Table 10-13 SSL _________________________________________________________________93
Table 11-1 6 Byte Header of Modbus Application Protocol ________________________________96
Table 11-2 Modbus Local Slave Functions - Query ______________________________________ 96
Table 11-3 Modbus Local Slave Functions - Response ____________________________________________ 97
Table 11-4 Modbus Transmission Modes______________________________________________98
Table 11-7 Modbus Configuration___________________________________________________ 100
Table 12-3 Filesystem Browser_____________________________________________________103
Table 12-5 TCP Protocol Settings___________________________________________________104
Table 12-7 IP Protocol Settings ____________________________________________________105
Table 12-9 ICMP Settings_________________________________________________________106
Table 12-11 ARP Settings_________________________________________________________ 107
Table 12-13 SMTP Settings _______________________________________________________108
Table 12-15 IP Address Filter Settings _______________________________________________109
Table 12-19 Requests for Comments (RFCs)__________________________________________112
Table 12-22 Diagnostics: Ping _____________________________________________________114
Table 12-24 Diagnostics: Traceroute ________________________________________________114
Table 12-32 System _____________________________________________________________119
Table 13-2 Email Configuration_____________________________________________________123
Table 13-5 CLI Configuration ______________________________________________________126
Table 13-7 XML Export Configuration________________________________________________128
Table 13-9 XML Export Status _____________________________________________________130
Table 13-15 XML: Import Line(s) from Single Line Settings _______________________________135
Binary to Hexadecimal Conversion Table 139
XPort® Pro Embedded Device Server User Guide 14
1: About This Guide
This user guide provides the information needed to configure, use, and update the Lantronix®
XPort® Pro embedded device server. It is intended for software developers and system
integrators who are embedding the XPort Pro device server in their designs.
Chapter and Appendix Summaries
A summary of each chapter is provided below.
Chapter Description
Chapter 2: Introduction Main features of the product and the protocols it supports. Includes
technical specifications.
Chapter 3: Using DeviceInstaller Instructions for viewing the current configuration using the Lantronix
DeviceInstaller application.
Chapter 4: Configuration Using Web
Manager
Instructions for accessing Web Manager and using it to configure
settings for the device.
Chapter 5: Network Settings Instructions for using the web interface to configure Ethernet
settings.
Chapter 6: Line and Tunnel Settings Instructions for using the web interface to configure line and tunnel
settings.
Chapter 7: Terminal and Host Settings Instructions for using the web interface to configure terminal and
host settings.
Chapter 8: Configurable Pin Manager Information about the Configurable Pin Manager (CPM) and how to
set the configurable pins to work with a device.
Chapter 9: Service Settings Instructions for using the web interface to configure settings for
DNS, SNMP, FTP, and other services.
Chapter 10: Security Settings Instructions for using the web interface to configure SSH and SSL
security settings.
Chapter 11: Modbus Instructions for using the web interface to configure Modbus.
Chapter 12: Maintenance and
Diagnostics Settings
Instructions for using the web interface to maintain the device, view
statistics, files, and logs, and to diagnose problems.
Chapter 13: Advanced Settings Instructions for using the web interface to configure email, CLI, and
XML settings.
Chapter 14: Branding the XPort Pro
Unit
Instructions for customizing the device.
Chapter 15: Updating Firmware Instructions for obtaining the latest firmware and updating the
device.
A: Technical Support Instructions for contacting Lantronix Technical Support.
B: Binary to Hexadecimal Conversions Instructions for converting binary values to hexadecimals.
C: Compliance Lantronix compliance information.
www antromx om/suggort/documentatlon
1: About This Guide
XPort® Pro Embedded Device Server User Guide 15
Additional Documentation
Visit the Lantronix web site at www.lantronix.com/support/documentation for the latest
documentation and the following additional documentation.
Document Description
XPort Pro Embedded Device Server
Integration Guide
Information about the XPort Pro hardware, testing the XPort Pro
using the demonstration board, and integrating the XPort Pro into
your product.
XPort Pro Embedded Device Server
Command Reference
Instructions for accessing Command Mode (the command line
interface) using a Telnet connection or through the serial port.
Includes detailed information about the commands. Also provides
details for XML configuration and status.
XPort Pro Embedded Device Server
Universal Demo Board Quick Start
Instructions for getting the XPort Pro demonstration board up and
running.
XPort Pro Embedded Device Server
Universal Demo Board
User Guide
Information for using the XPort Pro on the demo board.
DeviceInstaller Online Help Instructions for using the Lantronix Windows® based DeviceInstaller
application to locate the device and to view its current settings.
Com Port Redirector
Quick Start and Online Help
Instructions for using the Lantronix Windows based utility to create
virtual com ports.
Secure Com Port Redirector
User Guide
Instructions for using the Lantronix Windows based utility to create
secure virtual com ports.
www.lamro Ix.com/suppor1/documema| n Table 2-1 XPort Pro Part Numbers
XPort® Pro Embedded Device Server User Guide 16
2: Introduction
This chapter introduces the Lantronix XPort Pro embedded device server. It provides an overview
of the product, lists the key features, and describes the applications for which they are suited.
The XPort Pro embedded Ethernet device server is a complete network-enabling solution in a
13.50 (0.531) X 16.25 (0.640) X 33.90 (1.335) package. This miniature device server empowers
original equipment manufacturers (OEMs) to go to market quickly and easily with Ethernet
networking and web page serving capabilities built into their products. [DIMS = mm (in.)]
This chapter contains the following sections:
Key Features
Protocol Support
Evolution OS™ Application
Additional Features
Configuration Methods
Addresses and Port Numbers
Product Information Label
Key Features
Note: Consult the XPort Pro Embedded Device Server Integration Guide for more
detailed hardware information. Lantronix documentation is available at
www.lantronix.com/support/documentation.
Power Supply: Regulated 3.3V input
required. There is a step-down converter to
1.5V for the processor core. All voltages have
LC filtering to minimize noises and emissions.
Controller: A Lantronix DSTni-EX CPU with
256 kilobytes (KB) zero wait state SRAM and
16 KB of boot ROM.
Memory: 16 MB flash and 8/16 MB SDRAM
(see Table 2-1 to the right).
Please contact your sales representative if you
need larger memory sizes.
Temperature Range: Operates over an
extended temperature range of -40°C to
+85°C.
Ethernet: 10/100 megabits per second (Mbps)
Ethernet transceiver
Serial Ports: One full RS232-supporting high-
speed serial port with all hardware
handshaking signals. Baud rate is software selectable (300 bps to 921600 bps).
Table 2-1 XPort Pro Part Numbers
Part Numbers SDRAM Operating
System
XPP1002000-01R 8 MB Evolution
XPP100200S-01R 8 MB Evolution
XPPDK1000-EVO-01 8 MB Evolution
XPP1002000-02R 16 MB Evolution
XPP100200S-02R 16 MB Evolution
XPPDK1000-EVO-02 16 MB Evolution
XPP1003000-01R 8 MB Linux
XPP100300S-01R 8 MB Linux
XPPDK1000-LNX-01 8 MB Linux
XPP1003000-04R 16 MB Linux
XPP100300S-04R 16 MB Linux
XPPDK1000-LNX-02 16 MB Linux
2: Introduction
XPort® Pro Embedded Device Server User Guide 17
Note: The standard baud rate of 460800 bps is not supported.
Configurable I/O Pins (CPs): Up to three pins are configurable as general purpose I/Os if no
modem control signal is used on serial ports. Not 5V tolerant.
Interface Signals: 3.3V-level interface signals.
Applications
The XPort Pro device server connects serial devices such as those listed below to Ethernet
networks using the IP protocol family.
ATM machines
CNC controllers
Data collection devices
Universal Power Supply (UPS) management unit
Telecommunications equipment
Hand-held instruments
Data display devices
Security alarms and access control devices
Modems
Time/attendance clocks and terminals
Protocol Support
The XPort Pro device server contains a full-featured TCP/IP stack. Supported protocols include:
ARP, IP, UDP, TCP, ICMP, BOOTP, DHCP, AutoIP, Telnet, DNS, FTP, TFTP, HTTP/HTTPS,
SSH, SSL/TLS, SNMP, SMTP, RSS, PPP, and Syslog for network communications and
management.
TCP, UDP, TCP/AES, UDP/AES, Telnet, SSH and SSL/TLS for tunneling to the serial port.
TFTP, FTP, and HTTP for firmware upgrades and uploading files.
Evolution OS™ Application
The XPort Pro embedded device server incorporates the Lantronix Evolution operating system
(OS). Key features of the Evolution OS include:
Built-in Web server for configuration and troubleshooting from Web-based browsers
CLI configurability
SNMP management
XML data transport and configurability
Really Simple Syndication (RSS) information feeds
2: Introduction
XPort® Pro Embedded Device Server User Guide 18
Enterprise-grade security with SSL and SSH
Comprehensive troubleshooting tools
Additional Features
Modem Emulation
In modem emulation mode, the XPort Pro can replace dial-up modems. The unit accepts modem
AT commands on the serial port, and then establishes a network connection to the end device,
leveraging network connections and bandwidth to eliminate dedicated modems and phone lines.
Web-Based Configuration and Troubleshooting
Built upon Internet-based standards, the XPort Pro enables you to configure, manage, and
troubleshoot through a browser-based interface accessible anytime from anywhere. All
configuration and troubleshooting options are launched from a web interface. You can access all
functions via a Web browser, for remote access. As a result, you decrease downtime (using the
troubleshooting tools) and implement configuration changes (using the configuration tools).
Command-Line Interface (CLI)
Making the edge-to-enterprise vision a reality, the XPort Pro uses industry-standard tools for
configuration, communication, and control. For example, the Evolution OS software uses a
Command Line Interface (CLI) whose syntax is very similar to that used by data center equipment
such as routers and hubs.
SNMP Management
The XPort Pro supports full SNMP management, making it ideal for applications where device
management and monitoring are critical. These features allow networks with SNMP capabilities to
correctly diagnose and monitor XPort Pro devices.
XML-Based Architecture and Device Control
XML is a fundamental building block for the future growth of M2M networks. The XPort Pro
supports XML-based configuration setup records that make device configuration transparent to
users and administrators. The XML is easily editable with a standard text or XML editor.
Really Simple Syndication (RSS)
The XPort Pro supports Really Simple Syndication (RSS) for streaming and managing on-line
content. RSS feeds all the configuration changes that occur on the device. An RSS aggregator
then reads (polls) the feed. More powerful than simple email alerts, RSS uses XML as an
underlying Web page transport and adds intelligence to the networked device, while not taxing
already overloaded email systems.
Enterprise-Grade Security
Evolution OS software provides the XPort Pro the highest level of networking security possible.
This ‘data center grade’ protection ensures that each device on the M2M network carries the same
level of security as traditional IT networking equipment in the corporate data center.
2: Introduction
XPort® Pro Embedded Device Server User Guide 19
With built-in SSH and SSL, secure communications can be established between the serial ports
and the remote end device or application. By protecting the privacy of serial data transmitted
across public networks, users can maintain their existing investment in serial technology, while
taking advantage of the highest data-protection levels possible.
SSH and SSL are able to do the following:
Verify the data received came from the proper source
Validate that the data transferred from the source over the network has not changed when it
arrives at its destination (shared secret and hashing)
Encrypt data to protect it from prying eyes and nefarious individuals
Provide the ability to run popular M2M protocols over a secure SSH or SSL connection
In addition to keeping data safe and accessible, the XPort Pro has robust defenses to hostile
Internet attacks such as denial of service (DoS), which can be used to take down the network.
Moreover, the XPort Pro cannot be used to bring down other devices on the network.
You can use the XPort Pro with the Lantronix Secure Com Port Redirector (SCPR) to encrypt
COM port-based communications between PCs and virtually any electronic device. SCPR is a
Windows application that creates a secure communications path over a network between the
computer and serial-based devices that are traditionally controlled via a COM port. With SCPR
installed at each computer, computers that were formerly “hard-wired” by serial cabling for security
purposes or to accommodate applications that only understood serial data can instead
communicate over an Ethernet network or the Internet.
Terminal Server/Device Management
Remote offices can have routers, PBXs, servers and other networking equipment that require
remote management from the corporate facility. The XPort Pro easily attaches to the serial ports
on a server, Private Branch Exchange (PBX), or other networking equipment to deliver central,
remote monitoring and management capability.
Troubleshooting Capabilities
The XPort Pro offers a comprehensive diagnostic toolset that lets you troubleshoot problems
quickly and easily. Available from the Web Manager, CLI, and XML interfaces, the diagnostic tools
let you:
View critical hardware, memory, MIB-II, buffer pool, and IP socket information.
Perform ping and traceroute operations.
Conduct forward or backup DNS lookup operations.
View all processes currently running on the XPort Pro, including CPU utilization and total stack
space available.
www.Iantronix.com/suggon/documentation www.Iantronix.com/suggon/documentation
2: Introduction
XPort® Pro Embedded Device Server User Guide 20
Configuration Methods
After installation, the XPort Pro requires configuration. For the unit to operate correctly on a
network, it must have a unique IP address on the network. There are four basic methods for
logging into the XPort Pro and assigning IP addresses and other configurable settings:
DeviceInstaller: Configure the IP address and related settings and view current settings on the
XPort Pro using a Graphical User Interface (GUI) on a PC attached to a network.
See Chapter 3: Using DeviceInstaller.
Web Manager: Through a web browser, configure the XPort Pro settings using the Lantronix Web
Manager. See Chapter 4: Configuration Using Web Manager.
Command Mode: There are two methods for accessing Command Mode (CLI): making a Telnet
connection or connecting a terminal (or a PC running a terminal emulation program) to the unit’s
serial port. (See the XPort Pro Embedded Device Services Command Reference for instructions
and available commands. Lantronix documentation is available at
www.lantronix.com/support/documentation.)
XML: The XPort Pro supports XML-based configuration and setup records that make device
configuration transparent to users and administrators. XML is easily editable with a standard text
or XML editor. (See the XPort Pro Embedded Device Services Command Reference for
instructions and available commands. Lantronix documentation is available at
www.lantronix.com/support/documentation.)
Addresses and Port Numbers
Hardware Address
The hardware address is also referred to as the Ethernet address or MAC address. The first three
bytes of the Ethernet address are fixed and read as either 00-20-4A or 00-80-A3, identifying the
unit as a Lantronix product. The fourth, fifth, and sixth bytes are unique numbers assigned to each
unit.
Figure 2-2 Sample Hardware Address
00-20-4A-14-01-18 or 00:20:4A:14:01:18
00-80-A3-14-01-18 or 00:80:A3:14:01:18
IP Address
Every device connected to an IP network must have a unique IP address. This address references
the specific unit.
Port Numbers
Every TCP connection and every UDP datagram is defined by a destination and source IP
address, and a destination and source port number. For example, a Telnet server commonly uses
port number 23.
The following is a list of the default server port numbers running on the XPort Pro.
TCP Port 22: SSH Server (Command Mode configuration)
TCP Port 23: Telnet Server (Command Mode configuration)
XINOELNV'I LANRONWX' XPorl‘PrO— Product ID (name) Bar Code —|HII|||I||HIHIII m“ — MAC Address Part Number — mwwm MJII‘ pwmmmnm \ Revision HUI-Oil- m
2: Introduction
XPort® Pro Embedded Device Server User Guide 21
TCP Port 80: HTTP (Web Manager configuration)
TCP Port 443: HTTPS (Web Manager configuration)
UDP Port 161: SNMP
TCP Port 21: FTP
UDP Port 69: TFTP
UDP Port 30718: LDP (Lantronix Discovery Protocol) port
TCP/UDP Port 10001: Tunnel 1
TCP/UDP Port 10002: Tunnel 2
Note: Multi-port products include one or more additional supported ports and tunnels
with default sequential numbering. For instance: TCP/UDP Port 10002: Tunnel 2, TCP/
UDP Port 10003: Tunnel 3, etc.
Product Information Label
The product information label on the unit contains the following information about the specific unit:
Bar Code
Product ID (name)
Revision
Date of Manufacture
Country of Manufacture
Part Number
Hardware Address (MAC address or serial number)
Figure 2-3 Product Label
5 th stal es, t www.Iamronix.com/sugpon/dowmoadsmml www.Iamronix.com/suppon/dowmoads
XPort® Pro Embedded Device Server User Guide 22
3: Using DeviceInstaller
This chapter covers the steps for locating a device and viewing its properties and details. The
Lantronix DeviceInstaller application is a free utility program provided by Lantronix that discovers,
configures, upgrades, and manages Lantronix device servers. It can be downloaded from the
Lantronix website at www.lantronix.com/support/downloads.html. For instructions on using the
DeviceInstaller application to configure the IP address, related settings or for more advanced
features, see the DeviceInstaller Online Help.
Note: AutoIP generates a random IP address in the range of 169.254.0.1 to
169.254.255.254 if no BOOTP or DHCP server is found.
Installing DeviceInstaller
1. Download the latest version of the Lantronix DeviceInstaller application from:
www.lantronix.com/support/downloads.
2. Run the executable to start the installation process.
3. Respond to the installation wizard prompts. (If prompted to select an installation type, select
Typical.)
Accessing the XPort Pro Unit Using DeviceInstaller
Note: Make note of the MAC address. It may be needed to perform various functions in
the DeviceInstaller application.
1. Click Start > All Programs > Lantronix > DeviceInstaller 4.4 > DeviceInstaller.
When DeviceInstaller starts, it will perform a network device search.
2. Click Search to perform additional searches, as desired.
3. Expand the XPort folder by clicking the + symbol next to the XPort folder icon. The list of
available Lantronix XPort Pro devices appear.
4. Select the XPort Pro unit by expanding its entry and clicking on its hardware (MAC) or IP
address to view its configuration.
5. On the right page, click the Device Details tab. The current XPort Pro configuration appears.
This is only a subset of the full configuration; the complete configuration may be accessed via
Web Manager, CLI, or XML.
Note: The settings are Display Only in this table unless otherwise noted.
Table 3-1 Device Details Summary
Current Settings Description
Name Name identifying the XPort Pro embedded device server.
DHCP Device Name Shows the name associated with the current IP address, if the IP
address was obtained dynamically.
3: Using DeviceInstaller
XPort® Pro Embedded Device Server User Guide 23
Group Configurable field. Enter a group to categorize the XPort Pro device
server. Double-click the field, type in the value, and press Enter to
complete. This group name is local to this PC and is not visible on other
PCs or laptops using the DeviceInstaller application.
Comments Configurable field. Enter comments for the XPort Pro device server.
Double-click the field, type in the value, and press Enter to complete.
This description or comment is local to this PC and is not visible on other
PCs or laptops using DeviceInstaller.
Device Family Shows the XPort Pro device family type as “XPort”.
Short Name Shows “xport_pro” by default.
Long Name Shows “Lantronix XPort Pro” by default.
Type Shows the specific device type, such as “XPort Pro”.
ID Shows the XPort Pro ID embedded within the unit.
Hardware Address Shows the XPort Pro hardware (MAC) address.
Firmware Version Shows the firmware currently installed on the XPort Pro.
Extended Firmware Version Provides additional information on the firmware version.
Online Status Shows the XPort Pro status as Online, Offline, Unreachable (if the
XPort Pro is on a different subnet), or Busy (if the XPort Pro is currently
performing a task).
IP Address Shows the XPort Pro device’s current IP address. To change the IP
address, click the Assign IP button on the DeviceInstaller menu bar.
IP Address was Obtained Displays Dynamically if the XPort Pro automatically received an IP
address (e.g., from DHCP). Displays Statically if the IP address was
configured manually.
If the IP address was assigned dynamically, the following fields appear:
Obtain via DHCP with value of True or False.
Obtain via BOOTP with value of True or False.
Subnet Mask Shows the subnet mask specifying the network segment on which the
XPort Pro resides.
Gateway Shows the IP address of the router of this network. There is no default.
Interfaces Shows the types and URL of interfaces available.
Number of Serial Ports Shows the number of serial ports on this XPort Pro unit.
Supports Configurable Pins Shows True, indicating configurable pins are available on the XPort Pro
unit.
Supports Email Triggers Shows True, indicating email triggers are available on the XPort Pro
unit.
Telnet Supported Indicates whether Telnet is enabled on this XPort Pro unit. Shows True.
Telnet Port Shows the XPort Pro port for Telnet sessions.
Web Port Shows the XPort Pro port for Web Manager configuration.
Firmware Upgradable Shows True, indicating the XPort Pro firmware is upgradable as newer
versions become available.
Current Settings (continued) Description
Authenlicalion Required The sewer mm //172 1912995 so reqmres a ummame am pauwum The sen/er says (0mg User Name admin Passwald ””1 log In Cancel
XPort® Pro Embedded Device Server User Guide 24
4: Configuration Using Web Manager
This chapter describes how to configure the XPort Pro embedded device server using Web
Manager, the Lantronix browser-based configuration tool. The unit’s configuration is stored in
nonvolatile memory and is retained without power. All changes take effect immediately, unless
otherwise noted. It contains the following sections:
Accessing Web Manager
Web Manager Page Components
Navigating the Web Manager
Summary of Web Manager Pages
Accessing Web Manager
Note: You can also access the Web Manager by selecting the Web Configuration tab on
the DeviceInstaller window.
To access Web Manager, perform the following steps:
1. Open a standard web browser. Lantronix supports the latest version of Internet Explorer,
Mozilla Suite, Mozilla Firefox, Safari, Chrome or Opera.
2. Enter the IP address of the XPort Pro unit in the address bar. The IP address may have been
assigned manually using the DeviceInstaller application (see Chapter 3: Using DeviceInstaller)
or automatically by DHCP.
Figure 4-1 Prompt for User Name and Password
3. Enter your username and password.The factory-default username is admin and the factory-
default password is PASS. The Device Status web page shown in Figure 4-2 displays
configuration, network settings, line settings, tunneling settings, and product information.
Note: The Logout button is available on the upper right of any web page. Logging out
of the web page would force re-authentication to take place the next time the web page is
accessed.
I Device sutus XPort°Prd manna”- mdm Typo: L-lImnIx XPun Pm firm... Vernon: 5 5 0st Edd on: Nuv2!2018(07:00.l2) S-lhl rum nmnosmmw a no (:3 32 Pen-mm Com: Saved Infill-oi: am Link: who “moo Mbpshm mwrul («on was FulI) m Mamr on. my: "ml-"I: IP WW 17120 197 10604 (DHCP) Mun Gnu-y: "220.1971“ (one?) 'lvllllmonlx.wn (DHCP) MS: 10153 901(DHCF) Secondary ms: m.1s1.9o.1 (DHCP) "TU: I500 R5232. 9600. None. 8, L None WMBMMM-flfll Magnum—u:
4: Configuration Using Web Manager
XPort® Pro Embedded Device Server User Guide 25
Device Status Page
The Device Status page is the first page that appears after you log into Web Manager. It also
appears when you click Status in the menu bar (Figure 4-2).
Figure 4-2 Web Manager Home Page
‘ XPorr'Pro“ LANRQNX EVOLUTION $5 n21 smmuu camummn CammlMMode Line1 - Command Mode Aways Use senm stung Mode: Use CP Grmlv use mm Sellnl Smng and :9 Group Dwsamed wan "me: munseconas Sennl Slnnu' - Tex! Emmy Em. Serial sum“. Yes No Group Va‘ue or qup: lwm. Gunman a.“ mi "awn...“ uwmwcux lmm. Sum] u. cmwumcmmmmm lmmmwav: I): Ali-y: mice imaging» hum: Cantu-d mm»: | 5m.- l‘m: munmumm | mmcmmum‘wmm lmumhmmmwd I angmm muncpsmnm- lemmmmmm Wag! Wm“. I mmmmvuwmnu 9mm, mm M... mm unmsmuum I mmmmwm Immtawmmmmiu Mums.” “mi...“ lm IllumSImeuuwnuI mmmmsmum |n.s..i..s.n.u,as.,m..gmq Mmkuammmdu— Imui'ghufinaimdammakl slunon Mung- - Tsxl Bmary cm“: Made u ....y mi . — n... Um.“ «a spa, . ”.m- suhmu Iawhmm‘,mag I — I” “I current Configuration mflgfl mm? 5'33"? Magma... Made: Dwsah‘ed (lnacnve) mmmnmmmm w rm. 5000 mleseoands lvm W», Damn-a ad um “use my x. mm 0. Serial smug: Hulflamll 5m um...- I Echo serial string: 0n "“5 “"m‘ c? Group: I I Signs" Message: | J. l Cunynum gamma zunnms NI nut-Is veseNed ________________________ _J
4: Configuration Using Web Manager
XPort® Pro Embedded Device Server User Guide 26
Web Manager Page Components
The layout of a typical Web Manager page is below.
Figure 4-3 Components of the Web Manager Page
The menu bar always appears at the left side of the page, regardless of the page shown. The
menu bar lists the names of the pages available in the Web Manager. To bring up a page, click it in
the menu bar.
The main area of the page has these additional sections:
At the very top, many pages, such as the one in the example above, enable you to link to sub
pages. On some pages, you must also select the item you are configuring, such as a line or a
tunnel.
In the middle of many pages, you can select or enter new configuration settings. Some pages
show status or statistics in this area rather than allow you to enter settings.
Menu Bar
Links to
subpages
Items to
configure
Header
Configuration
and/or
Status Area
Logout
button
Information
and Help Area
Footer
4: Configuration Using Web Manager
XPort® Pro Embedded Device Server User Guide 27
At the bottom of most pages, the current configuration is displayed. In some cases, you can
reset or clear a setting.
The information or help area shows information or instructions associated with the page.
A Logout button is available at the upper right corner of every web page. In Chrome or Safari,
it is necessary to close out of the browser to logout. If necessary, reopen the browser to log
back in.
The footer appears at the very bottom of the page. It contains copyright information and a link
to the Lantronix home page.
Navigating the Web Manager
The Web Manager provides an intuitive point-and-click interface. A menu bar on the left side of
each page provides links you can click to navigate from one page to another. Some pages are
read-only, while others let you change configuration settings.
Note: There may be times when you must reboot the XPort Pro for the new
configuration settings to take effect. The chapters that follow indicate when a change
requires a reboot.
Table 4-4 Summary of Web Manager Pages
Web Manager Page Description See
Page
Status Shows product information and network, line, and tunneling settings. 25
CLI Shows Command Line Interface (CLI) statistics and lets you change the
current CLI configuration settings.
125
CPM Shows information about the Configurable Pins Manager (CPM) and how
to set the configurable pins and pin groups to work with a device.
59
Diagnostics Lets you perform various diagnostic procedures. 111
DNS Shows the current configuration of the DNS subsystem and the DNS
cache.
66
Email Shows email statistics and lets you clear the email log, configure email
settings, and send an email.
121
Filesystem Shows file system statistics and lets you browse the file system to view a
file, create a file or directory, upload files using HTTP, copy a file, move a
file, or perform TFTP actions.
101
FTP Shows statistics and lets you change the current configuration for the
File Transfer Protocol (FTP) server.
70
Host Lets you view and change settings for a host on the network. 57
HTTP Shows HyperText Transfer Protocol (HTTP) statistics and lets you
change the current configuration and authentication settings.
73
IP Address Filter Lets you specify all the IP addresses and subnets that are allowed to
send data to this device.
109
Line Shows statistics and lets you change the current configuration and
Command mode settings of a serial line.
33
4: Configuration Using Web Manager
XPort® Pro Embedded Device Server User Guide 28
LPD Shows LPD (Line Printer Daemon) Queue statistics and lets you
configure the LPD and print a test page.
79
Modbus Shows the current connection status of the Modbus servers listening on
the TCP ports and lets you configure the Modbus settings.
96
Network Shows status and lets you configure the network interface. 29
PPP Lets you configure a network link using Point-to-Point Protocol (PPP)
over a serial line.
67
Protocol Stack Lets you perform lower level network stack-specific activities. 104
Query Port Lets you change configuration settings for the query port. 110
RSS Lets you change current Really Simple Syndication (RSS) settings. 78
SNMP Lets you change the current Simple Network Management Protocol
(SNMP) configuration settings.
69
SSH Lets you change the configuration settings for SSH server host keys,
SSH server authorized users, SSH client known hosts, and SSH client
users.
82
SSL Lets you upload an existing certificate or create a new self-signed
certificate.
90
Syslog Lets you specify the severity of events to log and the server and ports to
which the syslog should be sent.
72
System Lets you reboot device, restore factory defaults, upload new firmware,
and change the device long and short names.
119
Terminal Lets you change current settings for a terminal. 55
TFTP Shows statistics and lets you change the current configuration for the
Trivial File Transfer Protocol (TFTP) server.
71
Tunnel Lets you change the current configuration settings for a tunnel.37
XML Lets you export XML configuration and status records, and import XML
configuration records.
127
Web Manager Page
(continued)
Description See
Page
Nelwolk 1 Imelface sums CnIIligIIvaIinn Network 1 (eth0) Interface Status BOOTP Client: DHCP Client: IP Alldte§2 Nelwolk Mask: Dehull Galewny: Hoslnalne: Dol In: DNS Suffix Sealcll DHCP Client ID: MTU: Cuntnl Off On [Renew] 172 19 mm 199 (DHCP) 255 255 u u (DHCF) 17213 D1(DHCP) eng lamvomx cum (DHCF) eng lanivonlx com mi lanivomx Com lanuonlx com [mag Ellel] 1500 Mel Reboot On
XPort® Pro Embedded Device Server User Guide 29
5: Network Settings
This chapter describes how to access, view, and configure network settings from the Network web
page. The Network web page contains sub-menus that enable you to view and configure the
Ethernet network interface and link.
This chapter contains the following sections:
Network 1 (eth0) Interface Status
Network 1 (eth0) Interface Configuration
Network 1 Ethernet Link
Network 1 (eth0) Interface Status
This page shows the status of the Ethernet network interface.
To view the network interface status:
1. Click Network on the menu then click Network 1 > Interface > Status at the top of the page.
The Network 1 (eth0) Interface Status page appears.
Figure 5-1 Network 1 (eth0) Interface Status
Nelwolk1 IIIlelhce Lillk Sums Conliuunrion Network 1 (eth0) Interface Configuration 30qu Client: DHLP Client: IP Address: Damn Gateway: Hosllmme: DoIII-Iillz DHLP Cliem ID: Plimmy DNS: Secnmlmy DNS: mu: 0 On 5‘, o« (00" F1 OW (Nana) (!>Tex( O Bmary (Nune) 15m]
5: Network Settings
XPort® Pro Embedded Device Server User Guide 30
Network 1 (eth0) Interface Configuration
This page shows the configuration settings for the Ethernet connection and lets you change these
settings.
To view and configure network interface settings:
1. Click Network on the menu bar and then Network 1 > Interface > Configuration at the top of
the page. The Network 1 (eth0) Interface Configuration page appears.
Figure 5-2 Network 1 (eth0) Interface Configuration
2. Enter or modify the following settings:
Table 5-3 Network 1 (eth0) Interface Configuration
Network 1 Interface
Configuration
Settings
Description
BOOTP Client Select On or Off. At boot up, the device will attempt to obtain an IP address from a
BOOTP server.
Notes:
Overrides the configured IP address, network mask, gateway, hostname, and
domain.
When DHCP is On, the system automatically uses DHCP, regardless of
whether BOOTP Client is On.
5: Network Settings
XPort® Pro Embedded Device Server User Guide 31
3. Click Submit to save changes. Some changes to the following settings require a reboot for the
changes to take effect:
BOOTP Client
DHCP Client
IP Address
DHCP Client ID
Note: If DHCP or BOOTP fails, AutoIP intervenes and assigns an address. A new
DHCP negotiation is attempted every 5 minutes to obtain a new IP address. When the
DHCP is enabled, any configured static IP address is ignored.
DHCP Client Select On or Off. At boot up, the device will attempt to lease an IP address from a
DHCP server and maintain the lease at regular intervals.
Note: Overrides BOOTP, the configured IP address, network mask, gateway,
hostname, and domain.
IP Address Enter the device static IP address.
You may enter it alone, in CIDR format, or with an explicit mask.
The IP address consists of four octets separated by a period and is used if BOOTP
and DHCP are both set to Off. Changing this value requires you to reboot the
device.
Note: When DHCP is enabled, the device tries to obtain an IP address from DHCP.
If it cannot, the device uses an AutoIP address in the range of 169.254.xxx.xxx.
Default Gateway Enter the IP address of the router for this network. Or, clear the field (appears as
<None>). This address is only used for static IP address configuration.
Hostname Enter the device hostname. It must begin with a letter, continue with a sequence of
letters, numbers, and/or hyphens, and end with a letter or number.
Domain Enter the device domain name.
DHCP Client ID Enter the ID if the DHCP server uses a DHCP ID. The DHCP server’s lease table
shows IP addresses and MAC addresses for devices. The lease table shows the
Client ID, in hexadecimal notation, instead of the device MAC address.
Note: "Binary" entry mode allows a mixed mode of text and special characters in
brackets For example, "abcd<ctrl>A" would be entered "abcd[0x01]".
Primary DNS IP address of the primary name server. This entry is required if you choose to
configure DNS (Domain Name Server) servers.
Secondary DNS IP address of the secondary name server.
MTU When DHCP is enabled, the MTU size is (usually) provided with the IP address.
When not provided by the DHCP server, or using a static configuration, this value is
used. The MTU size can be from 576 to 1500 bytes.
Network 1 Interface
Configuration
Settings (continued)
(continued)
Description
Nelwnlk1 IIIIeIhce Link Network 1 (eth0) Ethernet Link Status Slleml: mu Mbps Duplex: Haw Configuration Speed: @Aum mumps (mumps Duplex: ; Ame ’ HaH
5: Network Settings
XPort® Pro Embedded Device Server User Guide 32
Network 1 Ethernet Link
This page shows the current negotiated Ethernet settings and lets you change the speed and
duplex settings.
To view and configure the Ethernet link:
1. Click Network on the menu bar and then click Network 1 > Link at the top of the page. The
Network 1 (eth0) Ethernet Link page appears.
Figure 5-4 Network 1 Ethernet Link
The Status table shows the current negotiated settings. The Configuration table shows the
current range of allowed settings.
2. Enter or modify the following settings:
Table 5-5 Network 1 Ethernet Link
3. Click Submit. The changes take effect immediately.
Note: The following section describes the steps to view and configure Line 1 settings;
these steps apply to other line instances of the device.
Network 1-Ethernet Link
Settings
Description
Speed Select the Ethernet link speed. Default is Auto.
Duplex Select the Ethernet link duplex mode. Default is Auto.
Note: The number of lines and tunnels available for Lille Line Line Line 1 2 3 I Statistics Configuration CommandMode Line 1 - Statistics Receiver Transmitter Bytes: u u Breaks: 0 0 Flow control: N/A N/A Parity Errors: 0 Framing Errors: 0 Overrun Errors: 0 No Rx Buirer Errors: 0 Queued Receive Bytes: u Queued Transmit Bytes: u as input: not asserted R15 output: asserted DSR input not asserted DTR output: not asserted
XPort® Pro Embedded Device Server User Guide 33
6: Line and Tunnel Settings
This chapter describes how to view and
configure lines and tunnels. It contains the
following sections:
Line Settings
Tunnel Settings
Line Settings
View statistics and configure serial interfaces by using the Line web page. Serial interfaces are
referred to as lines in this user guide, and a different number of lines, from 1 to 32, may be
available for selection depending on your product.
The following sub-menus may be used for a selected line number:
Line Statistics—Displays statistics for the selected line number. For example, the bytes
received and transmitted, breaks, flow control, parity errors, etc.
Line Configuration—Enables the change of the name, interface, protocol, baud rates, and
parity, etc.
Line Command Mode—Enables the types of modes, wait time, serial strings, signon
message, etc.
The following sections describe the steps to view and configure specific line number settings.
These instructions also apply to additional line instances of the device.
Line Statistics
This read-only web page shows
the status and statistics for the
serial line selected at the top of
this page.
1. Select Line on the menu bar.
The Line web page appears.
2. Select a line number at the
top of the page.
3. Select Statistics. The Line
Statistics page for the
selected line appears.
4. Repeat above steps as
desired, according to
additional line(s) available on
your product.
Figure 6-1 Line 1 Statistics
Note: The number of lines and tunnels available for
viewing and configuration differ between Lantronix
products. For example, the XPort® Pro embedded
networking module and the EDS1100 device server
support only one line while other device networking
products (such as the EDS2100, EDS4100, and
MatchPort® b/g Pro embedded device servers, XPort®
AR embedded networking module, EDS8/16PS and
EDS8/16/32PR) provide additional lines and tunnels.
E Linel Line: Linn We: Cmnmumllm Line 1 - Configuration ”“9 lmmfam: R5232 I ) sum: Enabled I EnaMed Pmtoml: Tunnel Baud we: saw Parity: Nuns Data ans: 5 Sinp ail. m 1 Flow Comml: Mane Xon Char: 0 Xnfi Chan «alums Gap TlmM: milliseconds Thmihold: El bytes
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 34
Line Configuration
This page shows the configuration settings for the serial line selected at the top of the page and
lets you change the settings for that serial line.
To configure a specific line:
1. Select Line on the menu bar, if you are not already in the Line web page.
2. Select a line number at the top of the page.
3. Select Configuration. The Configuration page for the selected line appears.
Figure 6-2 Line 1 Configuration
Note: The Interface
option is only supported
in XPort Pro, EDS4100,
EDS1100 and EDS2100
device servers.
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 35
4. Enter or modify the following settings:
Table 6-3 Line Configuration
5. Click Submit.
6. Repeat above steps as desired, according to additional line(s) available on your product.
Line - Configuration
Settings
Description
Name If the Terminal Login Menu feature is being used, enter the name for the line.
Leaving this field blank will disable this line from appearing in the Terminal Login
Menu. The default Name is blank. See Terminal and Host Settings on page 55
for related configuration information.
Interface Select the interface type from the drop-down menu. The default is RS232.
Note: This option is only supported in XPort Pro, EDS4100, EDS1100 and
EDS2100 device servers.
State Indicates whether the current line is enabled. To change the status, select
Enabled or Disabled from the drop-down menu.
Protocol Select the protocol from the drop-down menu. The default is Tunnel.
Note: All protocols work in Connect and Accept Mode except the LPD or Tunnel
protocol option which is supported only in Accept Mode.
Baud Rate Select the baud rate from the drop-down menu. The default is 9600.
Parity Select the parity from the drop-down menu. The default is None.
Data Bits Select the number of data bits from the drop-down menu. The default is 8.
Stop Bits Select the number of stop bits from the drop-down menu. The default is 1.
Flow Control Select the flow control from the drop-down menu. The default is None.
Xon Char Specify the character to use to start the flow of data when Flow Control is set to
Software. Prefix a decimal character with \ or a hexadecimal character with 0x, or
provide a single printable character. The default Xon char is 0x11.
Xoff Char Specify the character to use to stop the flow of data when Flow Control is set to
Software. Prefix a decimal character with \ or a hexadecimal character with 0x, or
provide a single printable character. The default Xoff char is 0x13.
Gap Timer The driver forwards received serial bytes after the Gap Timer delay from the last
character received. By default, the delay is four character periods at the current
baud rate (minimum 1 ms).
Threshold The driver will also forward received characters after Threshold bytes have
been received.
Lille 1 Line 2 Line! Lille 6 Slnllslivx Collfiglimlloll CoiuilmmlMoile Line 1 - Command Mode C ) Always C Use Seiiai Suing Made: 0 Use CF' Gmup OUse min Seiiai suing and CF' GIEILip O Disaniad WaiI Tillie: minimums Seiini 5' IN] TQM O Binaiy Echo SeliJISlmIq Oves 0N0 CP Glmlp: Gmup Vaiue Siquoii Message: 6: Text C Binaiy Current Configuration Mode: Dlsablzd (mama) w.iii Tim 5000 milh$econds Serial Suing: Eclm Sell Suing: On CP Gloup. Siqilon Message:
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 36
4. Enter or modify the following settings:
Table 6-5 Line Command Mode
Line Command Mode
Setting the Command Mode
enables the CLI on the serial
line.
To configure Command
Mode on a specific line:
1. Select Line on the menu
bar, if you are not already
in the Line web page.
2. Select a line number at the
top of the page.
3. Select Command Mode.
The Command Mode page
for the selected line
appears.
Figure 6-4 Line 1 Command Mode
Line – Command Mode
Settings
Description
Mode Select the method of enabling Command Mode or choose to disable Command
Mode.
Always = immediately enables Command Mode for the serial line.
Use Serial String = enables Command Mode when the serial string is read
on the serial line during boot time.
Use CP Group = enables Command Mode based on the status of a CP
Group. When the value matches the current value of the group, Command
Mode is enabled on the serial line.
Use both Serial String and CP Group = the serial string and the value of
the CP group must be matched to enable Command Mode.
Disabled = turns off Command Mode.
Wait Time Enter the wait time for the serial string during boot-up in milliseconds.
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 37
5. Click Submit.
6. Repeat above steps as desired, according to additional line(s) available on your product.
Tunnel Settings
Note: The number of lines and tunnels available for viewing and configuration differ
between Lantronix products. For example, XPort Pro and EDS1100 device servers
support only one line while other device networking products (such as EDS2100,
EDS4100, XPort AR, EDS8/16PS and EDS8/16/32PR devices) provide additional lines
and tunnels.
Tunneling allows serial devices to communicate over a network, without “being aware” of the
devices which establish the network connection between them.Tunneling parameters are
configured using the Web Manager or Command Mode Tunnel Menu. See Configuration Using
Web Manager (on page 24) or the Command Reference for the full list of commands.
The XPort Pro supports two tunneling connections simultaneously per serial port. One of these
connections is Connect Mode; the other connection is Accept Mode. The connections on one
serial port are separate from those on another serial port.
Connect Mode: the XPort Pro actively makes a connection. The receiving node on the
network must listen for the Connect Mode’s connection. Connect Mode is disabled by default.
Accept Mode: the XPort Pro device listens for a connection. A node on the network initiates
the connection. Accept Mode is enabled by default.
Disconnect Mode: this mode defines how an open connection stops the forwarding of data.
The specific parameters to stop the connection are configurable. Once the XPort Pro
Disconnect Mode observes the defined event occur, it will disconnect both Accept Mode and
Connect Mode connections on that port.
When any character comes in through the serial port, it gets copied to both the Connect Mode
connection and the Accept Mode connection (if both are active).
Serial String Enter the serial string characters. Select a string type.
Text = string of bytes that must be read on the Serial Line during boot time to
enable Command Mode. It may contain a time element in x milliseconds, in
the format {x}, to specify a required delay.
Binary = string of characters representing byte values where each
hexadecimal byte value starts with \0x and each decimal byte value starts
with \.
Echo Serial String Select Yes to enable echoing of the serial string at boot-up.
CP Group Enter the name and decimal value of the CP Group. When the value matches
the current value of the group, Command Mode is enabled on the Serial Line.
Signon Message Enter the boot-up signon message. Select a string type.
Text = string of bytes sent on the serial line during boot time.
Binary = one or more byte values separated by commas. Each byte value
may be decimal or hexadecimal. Start hexadecimal values with 0x.
Note: This string will be output on the serial port at boot, regardless of whether
command mode is enabled or not.
Line – Command Mode
Settings (continued)
Description
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 38
View statistics and configure a specific tunnel by using the Tunnel web page. When you select
Tunnel from the Main Menu, tunnels available for your product will display. Select a specific tunnel
to configure.
The following sub-menus listed may be used to configure a specific tunnel:
Tunnel – Statistics
Tunnel – Serial Settings
Tunnel – Packing Mode
Tunnel – Accept Mode
Tunnel – Connect Mode
Tunnel – Disconnect Mode
Tunnel – Modem Emulation
The following sections describe the steps to view and configure specific tunnel number settings.
These instructions also apply to additional tunnel menu options.
Tunnel – Statistics
The XPort Pro logs statistics for tunneling. The Dropped statistic shows connections ended by the
remote location. The Disconnects statistic shows connections ended by the XPort Pro unit.
To display statistics for a specific tunnel:
1. Select Tunnel on the menu bar. The Tunnel web page appears.
2. Select a tunnel number at the top of the page.
3. Select Statistics. The Tunnel Statistics page for the specific tunnel appears.
If a particular tunnel is connected, the following becomes available:
Identifying information about the tunnel connection (i.e., “Connect 1 Counters”)
Address of connection (i.e., “local:10001 -> 172.22.22.22.10001”)
Kill Connection(s) link: Click this link to terminate this active tunnel connection, as
desired.
Octets forwarded from Serial
Octets forwarded form Network
Uptime
4. Repeat above steps as desired, according to additional tunnel(s) available on your product.
“ll-I1 Tull-I3 1m” Sulalsmlng: Plcklng Moll. Accept Mod. Connect Mode Dhconnecl Mode Modem Emulation Tunnel 1 - Statistics Completed Accepu: Completed Connect: Dlscnnnam Dmyped Accepts: Dmppod Commas: 0cm: lolvlarded ham Serial: Oct-Is lalvllldad lmrn llclwalk: D Accept Connection Tlme: 0 days 00:03 on Canned I Connection Time: D days 00:03:00 Cannon 1 Connadlan TllnI: D days EID‘EIII’UEI Connect 3 Connection Time: D days UDIIIIIID Cannon 4 Connection Tlmo: D days Dflzmflfl Canned 5 Connection Time: 0 days UllUlUU Canned 6 Connection Time: D days DD:II|:E||J Cannafl 7 Connadan Tllnl: D days EID‘III’EIEI Cannenfi Connection Time: D da EllleIlzfllJ Cannon DMS Add”: Chang“: D Connect DIIS Addrm Invall-k: 0 Than 5‘ na adlva cannonlon. lac-Mm .> 1121921354500" Thom h no active connoalon. 10369 m W from W: 31101 Them 5 na Icllve connecuon. May: ”40;“ Thele no active conneaion. Thele no active connection. Than It no active connectlon. Than 5‘ na adlva cannonlon. Thom h no active connoalon. Thele is no active connenian.
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 39
Additional information appears
for each active tunnel
connection including a link
allowing you to terminate the
connection.
Figure 6-6 Tunnel 1 Statistics
Tunnel 1 Tunnel 2 Tunnel 3 Tunnel 4 Slalislits Sevial Sellings Packing Made Accept Mode Cannzct Mode Disconnecl Made Modem Emulation Tunnel 1- Serial Settings Line Sailings: R5232 96m None, 3,1 None Protocol: Tunne‘ CUnassened um: OTumI @Assened wmle connected C Cammuous‘y assened
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 40
Tunnel – Serial Settings
Serial line settings are configurable for the corresponding serial line of the specific tunnel.
Configure the buffer size to change the maximum amount of data the serial port stores. For any
active connection, the device sends the data in the buffer.
The modem control signal DTR on the selected line may be continuously asserted or asserted only
while either an Accept Mode tunnel or a Connect Mode tunnel is connected.
To configure serial settings for a specific tunnel:
1. Select Tunnel on the menu bar, if you are not already in the Tunnel web page.
2. Select a tunnel number at the top of the page.
3. Select Serial Settings. The Serial Settings page for the specific tunnel appears.
Figure 6-7 Tunnel 1 Serial Settings
4. View or modify the following settings:
Table 6-8 Tunnel - Serial Settings
5. Click Submit.
6. Repeat above steps as desired, according to additional tunnel(s) available on your product.
Tunnel - Serial Settings Description
Line Settings (display only) Current serial settings for the line.
Protocol (display only) The protocol being used on the line. In this case, Tunnel.
DTR Select when to assert DTR.
Unasserted = never asserted
TruPort = asserted whenever either a connect or an accept mode tunnel
connection is active with the Telnet Protocol RFC2217 saying that the
remote DSR is asserted.
Asserted while connected = asserted whenever either a connect or an
accept mode tunnel connection is active.
Continuously asserted = asserted regardless of the status of a tunnel
connection.
Select Tunnel: Tunnel 1 v smisu'cs Serial Senings Packing Made Ampt Mode Cannon Mode Disconnect Mod. Modem Elnulatlon Tunnel 1 - Packing Mode 0 Dlsable Mode: Timeout Send Chamcxer
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 41
Tunnel – Packing Mode
Packing Mode takes data from the serial port, packs it together, and sends it over the network.
Packing can be configured based on threshold (size in bytes), timeout (milliseconds), or a single
character.
Size is set by modifying the threshold field. When the number of bytes reaches the threshold, a
packet is sent immediately.
The timeout field is used to force a packet to be sent after a maximum time. The packet is sent
even if the threshold value is not reached.
When Send Character is configured, a single printable character or control character read on the
Serial Line forces the packet to be sent immediately. There is an optional trailing character
parameter which can be specified. It can be a single printable character or a control character.
To configure the Packing Mode for a specific tunnel:
1. Select Tunnel on the menu bar, if you are not already in the Tunnel web page.
2. Select a tunnel number at the top of the page.
3. Select Packing Mode. The Packing Mode page for the specific tunnel appears.
Figure 6-9 Tunnel 1 Packing Mode (Mode = Disable)
Depending on the Mode selection, different configurable parameters for the specific tunnel
number are presented to the user. The following figures show the display for each of the three
packing modes.
Tunnel 1 Tunnel 2 Tunnel 3 Tunnel 4 Slalisfit: Seiinl Seninqs Packing Mmle Atcepl Mode Connect Molle Discollllecl Mode Mmleln Emulation Tunnel 1 - Packing Mode 0 D‘seb‘e Accept Moile Mode: TIII esllnlll: Semi Climactel: Tmlllnq Clmmclel: Mode: . TlmEuul ,« Send Chavactev Tlueslmltl: 512 bytes Timeout: lEIfll] mfllwsecunds Tunnel 1 Tunnel 2 Tunnel 3 Tunnel 4 Slalislics Seliiil Seflillgs Packing Mode Lonnecl Mmle Disconnect Mode Model“ EIIIIIInlioII Tunnel 1 - Packing Mode 0 stahle Onmeout 1') Send Character 512 bytes (cuntmbM (Nana)
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 42
Figure 6-10 Tunnel 1 Packing Mode (Mode = Timeout)
Figure 6-11 Tunnel 1 Packing Mode (Mode = Send Character)
4. Enter or modify the following settings:
Table 6-12 Tunnel Packing Mode
Tunnel - Packing Mode
Settings
Description
Mode Select Disable to disable Packing Mode completely.
Select Timeout to send data after the specified time has elapsed.
Select Send Character to send the queued data when the send character
is received.
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 43
5. Click Submit.
6. Repeat above steps as desired, according to additional tunnel(s) available on your product.
Tunnel – Accept Mode
Controls how a specific tunnel number behaves when a connection attempt originates from the
network. In Accept Mode, the XPort Pro waits for a connection from the network. The configurable
local port is the port the remote device connects to for this connection. There is no remote port or
address. The default local port is 10001 for serial port 1 and increases sequentially for each
additional serial port, if supported.
Accept Mode supports the following protocols:
SSH
The XPort Pro device is the server in Accept Mode). When using this protocol, the SSH
server host keys and at least one SSH authorized user must be configured.
SSL
TCP
AES encryption over TCP
Telnet
The XPort Pro supports IAC codes. It drops the IAC codes when Telnetting and does not
forward them to the serial port.
Accept Mode has the following states:
Disabled
Never accepts a connection.
Enabled
Always listening for a connection.
Active
(If it receives any character from the serial port).
Threshold
(Appears for both Timeout
and Send Character Modes)
Send the queued data when the number of queued bytes reaches the
threshold. When the buffer fills to this specified amount of data in bytes (and
the timeout has not elapsed), the device packs the data and sends it out;
applies only if the Packing Mode is not Disabled.
Timeout
(Appears for Timeout Mode)
Enter a time, in milliseconds, for the device to send the queued data after the
first character was received. Specifies the time duration in milliseconds;
applies only if the Packing Mode is Timeout.
Send Character
(Appears for Send Character
Mode)
Enter the send character (single printable or control). Upon receiving this
character, the device sends out the queued data. The data is packed until the
specified send character is encountered. Similar to a start or stop character,
the device packs the data until it sees the send character. The device then
sends the packed data and the send character in the packet. Applies only if
the Packing Mode is Send Character.
Trailing Character
(Appears for Send Character
Mode)
Enter the trailing character (single printable or control). This character is sent
immediately following the send character. This is an optional setting. If a
trailing character is defined, this character is appended to data put on the
network immediately following the send character.
Tunnel - Packing Mode
Settings (continued)
Description
Tunnell TunIIGIZ Tunnel} Tlmnoll Slaliais Serial Sellillgs Packing Mode Acceyl Mode Comma Moalo Dlscollnefl Mode Modem Emulation Tunnel 1 - Accept Mode Mode: Always v Local Pon: 10001 Prolocol: TCP v TCP Keep Alive: 45000 mllllsecunds Flusll Selial: OEnablzd Gamma Block Sellal: O Enabled @Dlsabled Block Nelwolk: OEnabled ®Dlsabled Password: (Nuns) Email on Connect: E Emall on Dlscomlocl: W fie? amp-m Gmup: )
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 44
Active
(If it receives a specific ([configurable]) character from the serial port ([same start
character as Connect Mode’s start character]).
Modem control signal
(When the modem control pin is asserted on the serial line corresponding to the tunnel.)
Modem emulation
To configure the Accept Mode of a specific tunnel:
1. Select Tunnel on the menu bar, if you are not already in the Tunnel web page.
2. Select a tunnel number at the top of the page.
3. Select Accept Mode. The Accept Mode page for the specific tunnel appears.
Figure 6-13 Tunnel 1 Accept Mode
4. Enter or modify the following settings:
Note: The CP Output
option is only supported in
XPort Pro and XPort AR.
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 45
Table 6-14 Tunnel Accept Mode
5. Click Submit.
6. Repeat above steps as desired, according to additional tunnel(s) available on your product.
Tunnel - Accept Mode
Settings
Description
Mode Select the method used to start a tunnel in Accept mode. Choices are:
Disable = do not accept an incoming connection.
Always = accept an incoming connection (default)
Any Character = start waiting for an incoming connection when any character
is read on the serial line.
Start Character = start waiting for an incoming connection when the start
character for the specific tunnel is read on the serial line.
Modem Control Asserted = start waiting for an incoming connection as long
as the Modem Control pin (DSR) is asserted on the serial line until a
connection is made.
Modem Emulation = start waiting for an incoming connection when triggered
by modem emulation AT commands. Connect mode must also be set to
Modem Emulation.
Local Port Enter the port number for use as the local port. The defaults are port 10001 for
Tunnel 1. Additional tunnels, if supported, increase sequentially.
Protocol Select the protocol type for use with Accept Mode. The default protocol is TCP. If
you select TCP AES you will need to configure the AES keys.
TCP Keep Alive Enter the time, in seconds, the device waits during a silent connection before
checking if the currently connected network device is still on the network. If the
unit then gets no response after 8 attempts, it drops that connection.
Flush Serial Data Select Enabled to flush the serial data buffer on a new connection.
Block Serial Data Select On to block, or not tunnel, serial data transmitted to the device.
Block Network Select On to block, or not tunnel, network data transmitted to the device.
Password Enter a password that clients must send to the device within 30 seconds from
opening a network connection to enable data transmission.
The password can have up to 31 characters and must contain only alphanumeric
characters and punctuation. When set, the password sent to the device must be
terminated with one of the following: (a) 0x0A (LF), (b) 0x00, (c) 0x0D 0x0A (CR
LF), or (d) 0x0D 0x00.
Email on Connect Select whether the device sends an email when a connection is made. Select
None if you do not want to send an email. Otherwise, select the Email profile to
use for sending.
Email on Disconnect Select whether the device sends an email when a connection is closed. Select
None if you do not want to send an email. Otherwise, select the Email profile to
use for sending.
CP Output Identifies a CP or CP Group whose value should change when a connection is
established and dropped.
Connection value—Specifies the value to set the CP Group to when a
connection is established.
Disconnection value—Specifies the value to set the CP Group to when the
connection is closed.
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 46
Tunnel – Connect Mode
Connect Mode defines how the device makes an outgoing connection through a specific tunnel.
When enabled, Connect Mode is always on and attempting a network connection if the connection
mode condition warrants it. For Connect Mode to function, it must:
Be enabled
Have a remote host configured
Have a remote port configured
Enter the remote host address as an IP address or DNS name. The XPort Pro device will make a
connection only if it can resolve the address. For DNS names, the XPort Pro will re-evaluate the
address after being established for 4 hours. If re-evaluation results in a different address, it will
close the connection.
Connect Mode supports the following protocols:
TCP
AES encryption over TCP and UDP
When setting AES encryption, both the encrypt key and the decrypt key must be specified.
The encrypt key is used for data sent out. The decrypt key is used for receiving data. Both of
the keys may be set to the same value.
SSH
To configure SSH, the SSH client username must be configured. In Connect Mode, the XPort
Pro unit is the SSH client. Ensure the XPort Pro SSH client username is configured on the
remote SSH server before using it with the XPort Pro.
SSL
UDP
Is only available in Connect Mode because it is a connectionless protocol. For Connect Mode
using UDP, the XPort Pro unit accepts packets from any device on the network. It will send
packets to the last device that sent it packets.
Telnet
Note: The Local Port in Connect Mode is independent of the port configured in Accept
Mode.
There are six different connect modes:
Disable
No connection is attempted.
Always
A connection is always attempted.
Any Character
A connection is attempted if it detects any
character from the serial port.
Start Character
A connection is attempted if it detects a specific and configurable character from the serial
port.
Tunnel 1 Tunnel 2 Statistics Serial Settings Packing Mode Accept Mode Connect Mode Disconnect Mode Modem Emulation Tunnel 1 - Connect Mode Mode: Disable V Local Port: Host 1: “21910070110001, TCP, 45000 msec Host 2: 172.19.50.10219. TCP. 45000 msec Host 3: 172.19.213.100210001, TCP, 45000 msec Host 4: Host Mode: ‘ Sequential Simultaneous Reconnect Tlmer: 15000 milliseconds Flush Serial Data: Enabled ' Disabled Block Serial: Enabled 0 Disabled Block Network: Enabled ' Disabled Email on Connect: V Elgirzlct: ' ut —pi{cP Output: Group: )
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 47
Modem Control Asserted
A connection is attempted when the modem control pin is asserted in the serial line.
Note: Configure the Modem Control Asserted setting (for DSR or DTR) to start a
Connect Mode connection when the signal is asserted. The unit will try to make a
connection indefinitely. If the connection closes, it will not make another connection
unless the signal is asserted again.
Modem Emulation
A connection is attempted by an ATD command.
To configure Connect Mode for a specific tunnel:
1. Select Tunnel on the menu bar, if you are not already in the Tunnel web page.
2. Select a tunnel number at the top of the page.
3. Select Connect Mode. The Connect Mode page for the specific tunnel appears.
Figure 6-15 Tunnel 1 - Connect Mode
Note: The Host Mode
options is supported in all
products except the
XPort AR.
Note: The CP Output
option is only supported in
MatchPort b/g Pro, XPort Pro
and XPort AR device servers.
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 48
4. Enter or modify the following settings:
Table 6-16 Tunnel Connect Mode
Tunnel Connect Mode
Settings
Description
Mode Select the method to be used to attempt a connection to a remote host or device.
Choices are:
Disable = an outgoing connection is never attempted.
Always = a connection is attempted until one is made. If the connection gets
disconnected, the XPort Pro retries until it makes a connection. (default)
Any Character = a connection is attempted when any character is read on the
serial line.
Start Character = a connection is attempted when the start character for the
specific tunnel is read on the serial line.
Modem Control Asserted = a connection is attempted as long as the Modem
Control pin (DSR) is asserted, until a connection is made.
Modem Emulation = a connection is attempted when triggered by modem
emulation AT commands.
Local Port Enter the port for use as the local port. A random port is selected by default.
Once you have configured a number, click the Random link in the Current
Configuration to switch back to random.
Host
Note: If security is a
concern, it is highly
recommended that SSH
be used. When using
SSH, both the SSH
Server Host Keys and
SSH Server Authorized
Users must be
configured.
Click <None> in the Host field to configure the Host parameters.
Address = Enter the remote Host Address as an IP address or DNS name. It
designates the address of the remote host to connect to. Displays configured
IP address or DNS address.
Port = Enter the port for use as the Host Port. It designates the port on the
remote host to connect to. Displays configured Port.
Protocol = Select the protocol type for use with Connect Mode. The default
protocol is TCP. Additional fields may need to be completed depending on
protocol chosen for the host:
For SSH, also enter an SSH Username.
For SSL, also select Enabled or Disabled for Validate Certificate.
For SSL, TCP, TCP AES and Telnet, use the TCP Keep Alive field to
adjust the value.
For TCP AES, enter the AES Encrypt and AES Decrypt Keys. Both of
keys may be set to the same value.
For UDP, there are no additional fields to complete. In this mode, the
device accepts packets from any device on the network and sends packets
to the last device that sent it packets.
For UDP AES, enter the AES Encrypt and AES Decrypt Keys.
Validate Certificate = select to enable or disable the certificate. Enabling
Validate Certificate requires the tunnel to verify the remote SSL server
certificate when making a connection. Disabling causes the tunnel to skip
verification of the remote SSL server certificate.
SSH Username = Displays configured username, used only if SSH protocol is
selected.
TCP Keep Alive = Default is 45000 milliseconds. Enter zero to disable and
blank the value to restore the default.
AES Encrypt/Decrypt Key = Displays presence of key, used only if protocol
with AES is selected.
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 49
5. Click Submit. The host is configured. A second host appears underneath the newly
configured host.
6. Repeat these steps to configure additional hosts as necessary. XPort Pro supports
configuration of up to sixteen hosts.
Reconnect Timer Enter the reconnect time in milliseconds. The device attempts to reconnect after
this amount of time after failing a connection or exiting an existing connection.
This behavior depends upon the Disconnect Mode.
Note:
When you configure Tunnel - Connect Mode, you can specify a number of
milliseconds to attempt to reconnect after a dropped connection has
occurred. The default is 1500 milliseconds.
The Reconnect Timer only applies if a Disconnect Mode is configured.
With a Disconnect Mode set, the device server maintains a connection
until the disconnect mode condition is met (at which time the device server
closes the connection). If the tunnel is dropped due to conditions beyond
the device server, the device server attempts to re-establish a failed
connection when the specified reconnect interval reaches its limit.
Any network-side disconnect is considered an error and a reconnect is
attempted without regard to the Connect Mode settings. Simultaneous
Connect Mode connections require some Disconnect Mode
configurations or the connections will never terminate. See Tunnel –
Connect Mode for more information about the parameters.
If Disconnect Mode is disabled and the network connection is dropped,
then the re-establishment of a tunnel connection is governed by the
configured Connect Mode settings.
Flush Serial Data Select whether to flush the serial line when a connection is made. Choices are:
Enabled = flush the serial line when a connection is made.
Disabled = do not flush the serial line. (default)
Block Serial Select Enabled to block (not tunnel) serial data transmitted to the device. This is
a debugging tool that causes serial data sent to the device to be ignored.
Block Network Select Enabled to block (not tunnel) network data transmitted to the device. This
is a debugging tool that causes network data sent to the device to be ignored.
Email on Connect Select whether the device sends an email when a connection is made. Select
None if you do not want to send an email. Otherwise, select the Email profile to
use.
Email on Disconnect Select whether the device sends an email when a connection is closed. Select
None if you do not want to send an email. Otherwise, select the Email profile to
use.
CP Output Identifies a CP or CP Group whose value should change when a connection is
established and when it is dropped.
Connection value—Specifies the value to set the CP Group to when a
connection is established.
Disconnection value—Specifies the value to set the CP Group to when the
connection is closed.
Tunnel Connect Mode
Settings (continued)
Description
Tunnsl1 Tunnel 2 Statistics Serial Senings Packing Mode Accept Mada Connect Mode Iscnnnect Mods Modem Emulalinn Tunnel 1 - Connect Mode Mode: Disable V Local Port: Host 1: 1711910070310001. TOP 45000 msec Host 2: 17219 50 10-19, TCP, 45000 msec Host 3: 172,19 213100-10001,TCP, 45000 msec Host A: Host Mods: . Sequentlal Simultaneous Reconnect Tlmsr: 15000 milliseconds Flush Serial Data: Enabled ' Disabled Block Serial: Enabled ' Disabled Block Nelwork: Enabled ' Dlsabled Email on Connect: V Em on v D connect
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 50
Connecting Multiple Hosts
If more than one host is configured, a Host Mode option appears. Host Mode controls how
multiple hosts will be accessed. For XPort Pro, the Connect Mode supports up to sixteen Hosts.
Hosts may be accessed sequentially or simultaneously:
Sequential Sequential host lists establish a prioritized list of tunnels. The host specified as
Host 1 will be attempted first. If that fails, it will proceed to Host 2, 3, etc, in the order they are
specified. When a connection drops, the cycle starts again with Host 1 and proceeds in order.
Establishing the host order is accomplished with host list promotion (see Host List Promotion
on page 51). Sequential is the default Host Mode.
Simultaneous A tunnel will connect to all hosts accepting a connection. Connections occur
at the same time to all listed hosts. The device can support a maximum of 64 total aggregate
connections.
Figure 6-17 Host 1, Host 2, Host 3 Exchanged
Note: The Host Mode
options is supported in all
products except the
XPort AR.
Note: The CP Output
option is only supported in
MatchPort b/g Pro, XPort Pro
and XPort AR device servers.
Tunnel 1 Tunnel 1 Tunnel 3 Tunnel 4 Statistics SeIial Settings Packing Made Accopl Mode Connect Mode Dlsconnom Mode Modem Emulation Tunnel 1 - Disconnect Mode swap Charmer: (Nune) \ Modem Control: OEnamed @Dsamgd Timeonl: I] mfllwsecunds Flush Setinl Dan: 0 Enab‘ed (DDIsamed
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 51
Host List Promotion
This feature allows Host IP promotion of individual hosts in the overall sequence.
To promote a specific Host:
1. Click the icon in the desired Host field, for example Host 2 and Host 3.
2. The selected Host(s) exchanges its place with the Host above it.
3. Click Submit. The hosts change sequence.
Tunnel – Disconnect Mode
Relates to the disconnection of a specific tunnel. Disconnect Mode ends Accept Mode and
Connect Mode connections. When disconnecting, the XPort Pro unit shuts down the specific
tunnel connection gracefully.
The following settings end a specific tunnel connection:
The XPort Pro receives the stop character.
The timeout period has elapsed and no activity is going in or out of the XPort Pro device. Both
Accept Mode and Connect Mode must be idle for the time frame.
The XPort Pro unit observes the modem control inactive setting.
Note: To clear data out of the serial buffers upon a disconnect, enable “Flush Serial Data”.
To configure the Disconnect Mode for a specific tunnel:
1. Select Tunnel on the menu bar, if you are not already in the Tunnel web page.
2. Select a tunnel number at the top of the page.
3. Select Disconnect Mode. The specific tunnel Disconnect Mode page appears.
Figure 6-18 Tunnel 1 Disconnect Mode
4. Enter or modify the following settings:
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 52
Table 6-19 Tunnel Disconnect Mode
5. Click Submit.
6. Repeat above steps as desired, according to additional tunnel(s) available on your product.
Tunnel – Modem Emulation
A tunnel in Connect Mode can be initiated using modem commands incoming from the Serial Line.
This page enables you to configure the modem emulation settings when you select Modem
Emulation as the Tunnel Connect Mode type.The Modem Emulation Command Mode supports the
standard AT command set. For a list of available commands from the serial or Telnet login, enter
AT?. Use ATDT, ATD, and ATDP to establish a connection. All of these commands behave like a
modem. For commands that are valid but not applicable to the XPort Pro, an “OK” message is sent
(but the command is silently ignored).
The XPort Pro unit attempts to make a Command Mode connection as per the IP/DNS/port
numbers defined in Connect Mode. It is possible to override the remote address, as well as the
remote port number.
The following table lists and describes the available commands.
Tunnel – Disconnect
Mode Settings
Description
Stop Character Enter the stop character in ASCII, hexadecimal, or decimal notation. Select
<None> to disable.
Modem Control Select Enabled to disconnect when the modem control pin is not asserted on the
serial line.
Timeout Enter a time, in milliseconds, for the device to disconnect on a Timeout. The
value 0 (zero) disables the idle timeout.
Flush Serial Data Select Enabled to flush the serial data buffer on a disconnection.
Table 6-20 Modem Emulation Commands and Descriptions
Command Description
+++ Switches to Command Mode if entered from serial port during connection.
AT? Help.
ATDT<Address Info> Establishes the TCP connection to socket (<ipaddress>:<port>).
ATDP<Address Info> See ATDT.
ATD Like ATDT. Dials default Connect Mode remote address and port.
ATD<Address Info> Sets up a TCP connection. A value of 0 begins a command line interface
session.
ATO Switches to data mode if connection still exists. Vice versa to '+++'.
ATEn Switches echo in Command Mode (off - 0, on - 1).
ATH Disconnects the network session.
ATI Shows modem information.
ATQn Quiet mode (0 - enable results code, 1 - disable results code.)
ATVn Verbose mode (0 - numeric result codes, 1 - text result codes.)
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 53
For commands that can take address information (ATD, ATDT, ATDP), the destination address
can be specified by entering the IP Address, or entering the IP Address and port number. For
example, <ipaddress>:<port>. The port number cannot be entered on its own.
For ATDT and ATDP commands less than 255 characters, the XPort Pro replaces the last
segment of the IP address with the configured Connect Mode remote station address. It is possible
to use the last two segments also, if they are under 255 characters. For example, if the address is
100.255.15.5, entering ATDT 16.6 results in 100.255.16.6.
When using ATDT and ATDP, enter 0.0.0.0 to switch to the Command Line Interface (CLI). Once
the CLI is exited by using the CLI exit command, the XPort Pro reverts to modem emulation mode.
By default, the +++ characters are not passed through the connection. Turn on this capability
using the modem echo pluses command.
To configure modem emulation for a specific tunnel:
1. Select Tunnel on the menu bar, if you are not already in the Tunnel web page.
2. Select a tunnel number at the top of the page.
3. Select Modem Emulation. The Modem Emulation page for the specific tunnel appears.
ATXn Command does nothing and returns OK status.
ATUn Accept unknown commands. (n value of 0 = off. n value of 1 = on.)
AT&V Display current and saved settings.
AT&F Reset settings in NVR to factory defaults.
AT&W Save active settings to NVR.
ATZ Restores the current state from the setup settings.
ATS0=n Accept incoming connection.
N value of 0—Disable
N value of 1—Connect automatically
N value of 2+—Connect with ATA command.
ATA Answer incoming connection (if ATS0 is 2 or greater).
A/ Repeat last valid command.
Table 6-20 Modem Emulation Commands and Descriptions (continued)
Command (continued) Description
Tunn2|1 Tunnel 2 Statistics Serial Settings Packing Made Acczm Mud: Connect Made Discnnnen Made Madam Emulzliun Tunnel 2 - Modern Emulation WAPNlNG Tunnel Carine-2| Mode us not “Modern Emulauun" Cunfigumliun Stalus Echn Pluses: O Enabled 6‘ Dlaablad EEhn Cummands: G). Enabled C Dlsahled Enabled Verhnse Respnnse: @Enabled C'Dlsatllzd Enabled Respunse Type: ,1 $3qu TEN E:::::;s"_w" O Enabled ('3 Dlsabled Dlsabldd li~> Dlsabled Incuming Conneclion: OAulurnallc Dlsabled 0 Manual Cunndn Suing: Display Remule IP: ,>Enabled G. Dlsablzd
6: Line and Tunnel Settings
XPort® Pro Embedded Device Server User Guide 54
Figure 6-21 Tunnel 1 Modem Emulation
4. Enter or modify the following settings:
Table 6-22 Tunnel Modem Emulation
5. Click Submit.
6. Repeat above steps as desired, according to additional tunnel(s) available on your product.
Tunnel- Modem
Emulation Settings
Description
Echo Pluses Select Enabled to echo +++ when entering modem Command Mode.
Echo Commands Select Enabled to echo the modem commands to the console.
Verbose Response Select Enabled to send modem response codes out on the serial line.
Response Type Select the type of response code: Text or Numeric.
Error Unknown
Commands
Select whether an ERROR or OK response is sent in reply to unrecognized AT
commands. Choices are:
Enabled = ERROR is returned for unrecognized AT commands.
Disabled = OK is returned for unrecognized AT commands. Default is Disabled.
Incoming
Connection
Select whether Incoming Connection requests will be Disabled, Automatic
(accepted automatically), or Manual (accepted manually). Default is Disabled.
Connect String Enter the connect string. This modem initialization string prepares the modem for
communications. It is a customized string sent with the “CONNECT” modem
response code.
Display Remote IP Selects whether the incoming RING sent on the Serial Line is followed by the IP
address of the caller. Default is Disabled.
Network Line1 LineZ Configulalion Terminal on Network - Configuration Teimlnal Type: UNKNOWN Lnain Cnnnm Menu: 0 Enabied ®D|sahled EinCunnm Menu: OEnabied @Dlsahled Echu: @Enamzd ODIsahled
XPort® Pro Embedded Device Server User Guide 55
7: Terminal and Host Settings
This chapter describes how to view and configure the Terminal Login Connect Menu and
associated Host configuration. It contains the following sections:
Terminal Settings
Host Configuration
The Terminal Login Connect Menu feature allows the XPort Pro embedded device server to
present a menu of predefined connections when the device is accessed via telnet, ssh, or a serial
port. From the menu, a user can choose one of the presented options and the device automatically
makes the predefined connection.
The Terminal page controls whether a Telnet, SSH, or serial port connection presents the CLI or
the Login Connect Menu. By default, the CLI is presented when the device is accessed. When
configured to present the Login Connect Menu, the hosts configured via the Hosts page, and
named serial lines are presented.
Terminal Settings
This page shows configuration settings for each terminal connection method. You can configure
whether each serial line or the telnet/SSH server presents a CLI or a Login Connect menu when a
connection is made.
Terminal Network Configuration
To configure menu features applicable to CLI access via the network:
1. Select Terminal on the menu bar, if you are not already in the Terminal web page.
2. Select Network at the top of the page. The Configuration submenu is automatically selected.
The Terminal Configuration page appears for the network.
Figure 7-1 Terminal on Network Configuration
3. Enter or modify the following settings:
Select 1erlllil|al on: Llne 1 V Canfigunlion Terminal on Line 1 - Configuration Terminal Type: UNKNOWN Login Connect Menu: Enabled 0 Dlsabled Exit Connect Menu: Enabled 0 Dlsabled Send Break: Break Duration; 500 mllllseconds Echo: a Enabled Dlsabled
7: Terminal and Host Settings
XPort® Pro Embedded Device Server User Guide 56
Table 7-2 Terminal on Network Configuration
4. Click Submit to save changes.
Terminal Line Configuration
To configure a specific line to support an attached terminal:
1. Select Terminal on the menu bar. The Terminal web page appears.
2. Select the line number at the top of the page connected to the terminal you want to configure.
The default is Line 1.
Figure 7-3 Terminal on Line Configuration
3. Enter or modify the following settings:
Terminal on Network
Configuration Settings
Description
Terminal Type Enter text to describe the type of terminal. The text will be sent to a host via IAC.
Note: IAC means, “interpret as command.” It is a way to send commands over
the network such as send break or start echoing.
Login Connect Menu Select the interface to display when the user logs in. Choices are:
Enabled = shows the Login Connect Menu.
Disabled = shows the CLI
Exit Connect Menu Select whether to display a choice for the user to exit the Login Connect Menu
and reach the CLI. Choices are:
Enabled = a choice allows the user to exit to the CLI.
Disabled = there is no exit to the CLI.
Echo Applies only to Connect Mode Telnet connections, not to Accept Mode. Only
disable Echo if your terminal echoes, in which case you will see double of each
character typed.
7: Terminal and Host Settings
XPort® Pro Embedded Device Server User Guide 57
Table 7-4 Terminal on Line 1 Configuration
4. Click Submit to save changes.
5. Repeat above steps as desired, according to the additional line(s) available on your product.
Host Configuration
This Host web page is where you may view and modify current settings for a selected remote host.
To configure a selected remote host:
1. Select Host on the menu bar. The Host web page appears.
2. Select a specific host number at the top of the page. The Host Configuration page for the
selected host appears.
Note: Number of hosts available differ among Lantronix products. Hosts available for
selection may appear listed on the screen (see Figure 7-5) or within a drop-down menu
above the Configuration button.
Terminal on Line
Configuration Settings
Description
Terminal Type Enter text to describe the type of terminal. The text will be sent to a host via IAC.
Note: IAC means, “interpret as command.” It is a way to send commands over
the network such as send break or start echoing.
Login Connect Menu Select the interface to display when the user logs in. Choices are:
Enabled = shows the Login Connect Menu.
Disabled = shows the CLI
Exit Connect Menu Select whether to display a choice for the user to exit the Login Connect Menu
and reach the CLI. Choices are:
Enabled = a choice allows the user to exit to the CLI.
Disabled = there is no exit to the CLI.
Send Break Enter the Send Break control character. If this specified character is received by
the serial line, it will not be sent to the line; instead the line output will be forced
inactive. Sample setting: <Control>Y. Blank the field to set to <None>.
Break Duration Enter the time in milliseconds for how long the spacing condition will be placed
on the line when a break is sent.
Echo Applies only to Connect Mode Telnet connections, not to Accept Mode. Only
disable Echo if your terminal echoes, in which case you will see double of each
character typed.
Host 1 v Configuration Host 1 - Configuration Name: edsszpr-mom Protocol: Telnet - SSH SSH Username: patuser Rsmule Address: 172 19 213 253 Remote Port: 10001
7: Terminal and Host Settings
XPort® Pro Embedded Device Server User Guide 58
Figure 7-5 Host Configuration
3. Enter or modify the following settings:
Table 7-6 Host Configuration
4. Click Submit to save changes.
5. Repeat above steps as desired, according to additional host(s) available on your product.
Host Settings Description
Name Enter a name for the host. This name appears on the Login Connect Menu. To
leave a host out of the menu, leave this field blank.
Protocol Select the protocol to use to connect to the host. Choices are:
Telnet
SSH
Note: SSH keys must be loaded or created on the SSH page for the SSH
protocol to work.
SSH Username Appears if you selected SSH as the protocol. Enter a username to select a pre-
configured Username/Password/Key (configured on the SSH: Client Users
page), or leave it blank to be prompted for a username and password at
connect time.
Remote Address Enter an IP address for the host to which the device will connect.
Remote Port Enter the port on the host to which the device will connect.
XPort® Pro Embedded Device Server User Guide 59
8: Configurable Pin Manager
The Configurable Pin Manager is responsible for assignment and control of the configurable pins
(CPs) available on the XPort Pro embedded device server. There are three configurable pins on
the XPort Pro unit.
You can configure the CPs by making them part of a group. A CP Group may consist of one or
more CPs. This increases flexibility when incorporating the XPort Pro embedded device server
into another system.
This chapter contains the following sections:
Overview
CPM: CP (Configurable Pins)
CPM: Groups
Overview
Each CP is associated with an external hardware pin. CPs can be configured and used as digital
inputs or outputs.
When used as input, device functionality can be triggered based on the state of a CP. For
example, an email can be sent when a CP is asserted to a preconfigured level. When used as an
output, logic levels of the CP can be manipulated when a preconfigured event occurs on the
device server, such as when a tunnel connection is accepted.
CPs are configured and manipulated within a group. Each group is named and is referenced in the
feature that is triggering a CP or being triggered by a CP. Sophisticated use of CPs can be
accommodated by adding more than one CP into a group.
Default Groups
XPort Pro unit has several predefined CP groups used to assign a CP to a needed function. For
instance, when working with an RS485 driver that requires a signal to be asserted when in half–
duplex mode, the CP that is driving that signal (chosen by the engineer designing the circuit) is
added to the default group named Line1_RS485_HDpx. The XPort Pro device asserts the CP at
the correct time via the default group.
Custom Groups
The email, tunneling, and CLI features can interact with CPs. This is accomplished by creating a
custom group and adding CPs of your choice into that group. Once a CP group is created and
populated with one or more CPs, actions can be triggered when the CPs match a specified value.
CPs can be placed in any bit position within a group, allowing for sophisticated use of the available
CPs.
cps Glnups CPM: CPs Current Configuration C? M WA: Valn amps mum 2 0 1 CP1 Pm 6 CPZ Pun 7 CP3 Pm 8 CF Status Name Slaw Type Value Bil Level no Logic Binaly CPI Gloups Inpm 1 Input 1 Input 1 cm Enabled DAssen Law 1 (om 2 Lme1_RTS_CTS Lme1_RSAE5_TxEnzhle
8: Configurable Pin Manager
XPort® Pro Embedded Device Server User Guide 60
CPM: CP (Configurable Pins)
Each CP is associated with an external hardware pin. CPs can trigger an outside event, like
sending an email message or starting Command Mode on a serial Line.
The CPM web page is used to experimentally configure the state of the CPs. CPs can be changed
to be a digital input or a digital output, and whether it is asserted high or low. Changes made on
this page do not -persist through a reboot.
Rules for configuring a CP are as follows. A CP:
Can be in any number of groups.
Can be only in one active group. Two groups with the same CP cannot be enabled at the
same time.
Becomes locked and is not configurable if it is in an enabled group. Disable the group to
change the CP configuration.
When you are ready to permanently configure the CPs, use the CPM Groups web page. See
CPM: Groups on page 62.
View CPs
6. Select CPM on the menu bar and then CPs at the top of the page. The CPM: CPs page
appears.
Figure 8-1 CPM: CPs
8: Configurable Pin Manager
XPort® Pro Embedded Device Server User Guide 61
The Current Configuration table shows the current settings for each CP.
Table 8-2 CPM CPs Current Configuration
7. Select a CP number (CP column) in the Current Configuration table to display the status of
that pin. The CP Status table shows the information about the CP.
Table 8-3 CPM CPs Status
Note: To modify a CP, all groups in which it is a member must be disabled.
To change a CP output value:
1. Select the CP number (in CP column) from the current configuration table.
2. Enter the CP value in the CP Status table.
3. Click Set. The changed CP value appears in the current configuration table.
CPM – CPs Current
Configuration
Description
CP Indicates the configurable pin number.
Ref Indicates the hardware pin number associated with the CP.
Configured As Shows the CP configuration. A CP configured as Input is set to read input. A CP
configured as Output drives data out of the device.
Value Indicates the current status of the CP:
1 = asserted
0 = de-asserted
Inv = the CP logic is inverted
Groups Indicates the number of groups in which the CP is a member.
Active In Group Shows the group in which the CP is active. A CP can be a member of several
groups. However, it may only be active in one group.
CPM – CPs Status Description
Name Shows the CP number.
State Shows the current enable state of the CP.
Type Indicates whether the CP is set for input or output.
Value Shows the last bit in the CP current value.
Bit Visual display of the 32 bit placeholders for a CP.
Level A “+” symbol indicates the CP is asserted (the voltage is high). A -“indicates
the CP voltage is low.
I/O Indicates the current status of the pin:
I = input
O = output
<blank> = unassigned
Logic An “I” indicates the CP is inverted.
Binary Shows the assertion value of the corresponding bit.
CP# Shows the CP number.
Groups Lists the groups in which the CP is a member.
cps Groups CPM: Groups Current Configuration Group Hume Sm. CP Info DragnusmMuu-z Disabled D cps Asswgned Lme1_Madam_Ctl_ln Enab‘sd 1 CP Assugnad LIneLMUdemimLOu! Enab‘efl 1 CF' Asslgned Lme1_RS4as_HDpx Disabled a CF: Asswgned LInz1_RSAES_SEI2d Disablsd u an: Asswgned LmeLRSABiTxEnabxe Disabled 1 CP Assigned Lme1_R’TS_CTS Disabled 2 CF; Asswgned Lmkfilalus Disabled D cps Asswgned Modhu5_Ctl_ln Disabled D cps Asswgnad Modbusicfliom Disabled 0 cps Asswgned Group Status cm m a Gmup Nam: am: m View my :hangs
8: Configurable Pin Manager
XPort® Pro Embedded Device Server User Guide 62
To change a CP configuration:
1. Select the CP number (in CP column) from the current configuration table.
2. Select the CP configuration from the Type drop-down list in the CP Status table.
3. (If necessary) Select the Assert Low checkbox.
4. Click Change.
Note: These changes to a CP are not saved in FLASH. Instead, these settings are used
when the CP is added to a CP Group. When the CP Group is saved, its CP settings are
saved with it. Thus, a particular CP may be defined as “Input” in one group but as
“Output” in another. Only one group containing a particular CP may be enabled at once.
CPM: Groups
The CP Groups page allows for the adding, removing and managing of CP groups. Groups can be
created or deleted. CPs can be added to or removed from groups. A group, based on its state,
can trigger outside events such as sending email messages. Only an enabled group can be a
trigger.
View Groups
1. Select CPM on the menu bar and then Groups at the top of the page. The CPM: Groups page
appears.
Figure 8-4 CPM: Groups
2. The Current Configuration table shows the current settings for each CP group.
cps Groups CPM: Groups Current Configuration Gmup Name Slate CP Inln 1 Enab‘ed U CPS Ass1gned IZC Disablsd 2 CPS Ass1gn2d L1ne‘17Mudem701Un Disabled U 0P5 Ass1gned L1nel_Mud2m_Ct1_O Disablsd 0 CF; Ass1gn2d LmeLF‘SAESiHDpx Enameu 1 CF Asmgned Lmz1j13485_321m Enema 1 CF Asmgnzd LmeLMademictUn Disabled 0 CF; A551gned Lme2_Mudem_CH_O Disabled 0 cps Ass1gn2d MudbugCtUn Disablad n on; A951gn2d Mndbusfimom Disabled U 0P5 Ass1gned umpm Enamsu 1 CF Ass1gnzd (3mm Gmup: Group Status Nam: LineLMndemicflio D1sab1ed AND Lockem 5‘" usev may Enema/Disable avAdd/Remave CF Value D1sah1ed an s 5 A 3 2 1 n Level l/O Luaic Einaly >1 >1 )1 x x x x cm CP1 v athit u v as 1nput v DAssen Luw
8: Configurable Pin Manager
XPort® Pro Embedded Device Server User Guide 63
Table 8-5 CPM Groups Current Configuration
To display the status of a
specific group:
1. Select CPM > Groups.
2. Select the CP group name in
the Current Configuration
table.
CPM – Groups Current
Configuration
Description
Group (Name) Shows the CP group’s name.
State Indicates whether the group is enabled or disabled.
CP Info Indicates the number of CPs assigned to this particular group.
Figure 8-6 CPM: Group Status
8: Configurable Pin Manager
XPort® Pro Embedded Device Server User Guide 64
Table 8-7 Group Status
To create a custom CP group:
1. Select CPM > Groups.
2. Enter a group name in the Create Group field.
3. Click Submit.
To add a CP to a Group
1. Select CPM > Groups.
2. Select a specific Group Name to select it. The Group Status information for the group
appears in a table below the current configuration.
3. Select a CP from the drop-down list. beneath the Group Status table.
4. Select a bit position from the drop-down list.
5. Select Input or Output from the drop-down list.
6. Check the Assert Low checkbox to specify negative logic (inverted assertion), as desired.
This box is unchecked by default.
7. Click Add to complete adding the CP to the group.
To delete a custom CP group:
1. Select CPM > Groups.
2. Select the custom group from the current configuration table to be deleted.
3. Click the red X next to the corresponding Name in the Group Status table.
CPM – Groups Page
Group Status
Description
Name Shows the CP Group name.
State Shows the current state of the CP group. Locked groups are Lantronix
default groups and cannot be deleted. Use the button in this field to
enable or disable the group.
Value Shows the CP group’s current value.
Bit Displays the individual bit positions for the available CPs.
Level Indicates the voltage level of the CP. A plus sign (+) indicates the CP bit
is asserted (the voltage is high). A minus sign (-) indicates the CP
voltage is low.
I/O Indicates the current status of the pin:
I = input
O = output
<blank> = unassigned
Logic Indicates the logic level of the CP. An "I" indicates the CP is inverted.
A blank field indicates that the CP is not inverted.
Binary Shows the assertion value of the corresponding bit. An X means that
the group is disabled or the bit is unassigned in the group
CP# Shows the configurable pin number and its bit position in the CP group.
8: Configurable Pin Manager
XPort® Pro Embedded Device Server User Guide 65
To enable or disable a CP group:
1. Select CPM > Groups.
2. Select the Group name in the table representing the group you wish to enable or disable. The
Group Status information for this group appears in a table below.
3. Click Enable to enable, as appropriate.
4. Click Disable to disable, as appropriate.
To remove a CP from a Group:
1. Select CPM > Groups.
2. Select the Group name in the table that contains the CP to be removed.
3. Select the CP from the drop-down list beside the Remove button.
4. Click Remove.
DNS Dom-In: Prim-ry nus: Secondary DNS: I'l'herelmmelfllilsilfllecldle. | Remove Al
XPort® Pro Embedded Device Server User Guide 66
9: Service Settings
This chapter describes the available services and how to configure each. It contains the following
sections:
DNS Settings
Point-to-Point (PPP) Settings
SNMP Settings
FTP Settings
TFTP Settings
Syslog Settings
HTTP Settings
RSS Settings
LPD Settings
DNS Settings
The primary and secondary domain name system (DNS) addresses come from the active
interface. The static addresses from the Network Interface Configuration page may be overridden
by DHCP or BOOTP. The DNS web page enables you to view the status and cache.
When a DNS name is resolved using a forward lookup, the results are stored in the DNS cache
temporarily. The XPort Pro checks this cache when performing forward lookups. Each item in the
cache eventually times out and is removed automatically after a certain period, or you can delete it
manually.
To view the DNS status:
1. Select DNS on the menu bar. The DNS page appears.
Figure 9-1 DNS Settings
9: Service Settings
XPort® Pro Embedded Device Server User Guide 67
To find a DNS Name or IP Address:
1. Enter either a DNS name or an IP address in the field beside the Lookup button.
2. Click Lookup.
When a DNS name is resolved, the results appear in the DNS cache.
When an IP address is resolved, the results appear in a text below the Lookup field.
To clear cache entries:
1. Click Remove All to remove all listed cache entries.
2. Click Delete next to a specific cache entry to remove only that one.
Point-to-Point (PPP) Settings
Point-to-Point Protocol establishes a direct connection between two nodes. It defines a method for
data link connectivity between devices using physical layers (such as serial lines).
The XPort Pro device server supports two types of PPP authentication: Password Authentication
Protocol (PAP) and Challenge Handshake Authentication Protocol (CHAP). Both of these
authentication methods require the configuration of a username and password. The XPort Pro
embedded device server also supports the authentication scheme of “None” when no
authentication is required during link negotiation.
PAP authentication offers a straightforward method for the peer to determine its identity. Upon the
link establishment, the user ID and password are repeatedly sent to the authenticator until it is
acknowledged or the connection is terminated. However, PAP is not a strong authentication
process. There is no protection against trial-and-error attacks. The peer is responsible for the
frequency of the authentication communication attempts.
CHAP is a more secure method than PAP. It works by sending a challenge message to the
connection requestor. Using a one-way hash function, the requestor responds with its value. If the
value matches the server’s own calculations, authentication is provided. Otherwise, the connection
is terminated.
Note: RFC1334 defines both CHAP and PAP.
The XPort Pro embedded device server also supports authentication scheme of “None” when no
authentication is required during link negotiation.
Since the XPort Pro unit does not support Network Address and Port Translation (NAPT), static
routing table entries must be added to the serial-side and network-side devices (both of which are
external devices).
Use the XPort Pro Web Manager or CLI to configure a network link using PPP over a serial line.
Turn off Connect Mode, Accept Mode, and Command mode before enabling PPP. The XPort Pro
device acts as the server side of the PPP link; it can require authentication and assign an IP
address to the peer. Upon PPP configuration, IP packets are routed between Ethernet and PPP
interfaces.
Note: The XPort Pro embedded device server does not perform network address
translation (NAT) between the serial-side network interface and the Ethernet/WLAN
network interface. Therefore, to pass packets through the XPort Pro unit, a static route
must be configured on both the PPP Peer device and the remote device it wishes to
communicate with. The static route in the PPP Peer device must use the PPP Local IP
Line1 linEZ Cunligumtinn PPP on Line 1 - Configuration WARN‘NG Swa‘ pmlnm‘ ‘9 not PPP Local IP Addless: (None) Peer IP Address: (None) \ C None (9 PAP O CHAP Aulhenlicntinn Mada: C MSVCHAP O MSVCHAPVZ Usemame: Pawuld: (None)
9: Service Settings
XPort® Pro Embedded Device Server User Guide 68
Address as its gateway, and the static route in the remote device must use the network
interface IP Address of the XPort Pro embedded device server as its gateway.
The following section describes the steps to configure PPP 1 (PPP on serial line 1); these steps
also apply to any line instance of the device. Since the XPort Pro unit does not support NAPT
(Network Address and Port Translation), static routing table entries must be added to both the
serial-side and network-side devices (both of which are external to the XPort Pro embedded
device server).
To configure PPP:
1. Select PPP on the menu bar. The PPP web page appears.
2. Select a line number at the top of the page. The PPP Configuration page for the selected line
number appears.
Figure 9-2 PPP Configuration Settings
3. Enter or modify the following settings:
Table 9-3 PPP Configuration
PPP Configuration Settings Description
Local IP Address Enter the IP address assigned to the device’s PPP interface.
Peer IP Address Enter the IP address assigned to the peer (when requested during
negotiation).
Authentication Mode Choose the authentication mode:
None = no authentication is required
PAP = Password Authentication Protocol
CHAP = Challenge Handshake Authentication Protocol
MS-CHAP = Microsoft Challenge-Handshake Authentication Protocol
MS-CHAPV2 = Microsoft Challenge-Handshake Authentication Protocol
Version 2
SNMP Slate: Read Community: Write Community: Syslzm Comm: Syslem Name: System Descri Sysmm Location: Tvaps Stale: Traps nry Deslina Ion: Traps Secondary Desli alion: - Enabled Disabled < canflgured=""> xpor|_pm < delaull=""> lanlmnix XPorI Pro V5 5 0 IRS (07170837T7KNAU) ' Enabled Disabled
9: Service Settings
XPort® Pro Embedded Device Server User Guide 69
4. Click Submit.
5. Repeat above steps as desired, according to additional line(s) available on your product.
SNMP Settings
Simple Network Management Protocol (SNMP) is a network management tool that monitors
network devices for conditions that need attention. The SNMP service responds to SNMP
requests and generates SNMP Traps.
This page is used to configure the SNMP agent.
To configure SNMP:
1. Select SNMP on the menu bar. The SNMP page opens and shows the current SNMP
configuration.
Figure 9-4 SNMP Configuration
Username Enter a username if authentication is to be used on the PPP interface. The
peer must be configured to use the same username.
Password Enter a password if authentication is to be used on the PPP interface. The
peer must be configured to use the same password.
PPP Configuration Settings Description
Note: The system
description string will
reflect the specific
Lantronix product.
FTP Collflgurallon Sl-Ile: Admin Usellmlue: Admin Passwol snansuu Slams: Conneclious Rejecled: Aclive Conllecliolls: Last Client: Lolmecliolls Accepted: (9' Enab‘ed 3‘ Disabled @1de (Configuretb Rummy u u 0 Nu flaw-:2 has connzclsd
9: Service Settings
XPort® Pro Embedded Device Server User Guide 70
2. Enter or modify the following settings:
Table 9-5 SNMP
3. Click Submit.
FTP Settings
The FTP web page shows the current File Transfer Protocol (FTP) configuration and various
statistics about the FTP server.
To configure FTP:
1. Select FTP on the menu bar. The FTP page opens to display the current configuration.
Figure 9-6 FTP Configuration
2. Enter or modify the following settings:
SNMP Settings Description
State Select Enabled to enable SNMP.
Read Community Enter the SNMP read-only community string.
Write Community Enter the SNMP read/write community string.
System Contact Enter the name of the system contact.
System Name Enter the system name.
System Description Enter the system description.
System Location Enter the system location.
Traps State Select Enabled to enable the transmission of SNMP Traps. The Cold Start
trap is sent on device boot up, and the Linkdown trap is sent when the
device is rebooted from software control.
Traps Primary Destination Enter the primary SNMP trap host.
Traps Secondary Destination Enter the secondary SNMP trap host.
TFTP Server Configuration Sme: @Enablzo C Dlsablzd Allow File (lemon: C Enablzd G Dlsablzd Allow Fillnwnle Updnle: C. Enablzd G Dlsablzd Allow xcn lmpou: C Enabled G Dlgablzd Slallsllu Stains: Purmlng Files Downloaded: Files Uplnalletl: File No! Folllnl Ellols: File Read Fllols: File Wlile Ellals: DGDGDG Unknown Ellols: LdSl ( N0 device has Dannecied
9: Service Settings
XPort® Pro Embedded Device Server User Guide 71
Table 9-7 FTP Settings
3. Click Submit.
TFTP Settings
In the TFTP web page, you can configure the server and view the statistics about the Trivial File
Transfer Protocol (TFTP) server.
To configure TFTP:
1. Select TFTP on the menu bar. The TFTP page opens to display the current configuration.
Figure 9-8 TFTP Configuration
2. Enter or modify the following settings:
Table 9-9 TFTP Server
FTP Settings Description
State Select Enabled to enable the FTP server.
Admin Username Enter the username to use when logging in via FTP.
Admin Password Enter the password to use when logging in via FTP.
TFTP Settings Description
State Select Enabled to enable the TFTP server.
Allow File Creation Select whether to allow the creation of new files stored on the TFTP server.
Syslog Collfiglflalioll sum: "05!: Lac-II Poll: Relllole Poll: Slflllfllfi Status: Messages Sent: Mesmqes Failed: Sevelily Log Level: 0‘ Enahlzd C‘stab‘ed 172153923 514 \ 5M \ Debug v Runnlng 484 El
9: Service Settings
XPort® Pro Embedded Device Server User Guide 72
3. Click Submit.
Syslog Settings
The Syslog web page shows the current configuration and statistics of the system log. Here you
may configure the syslog destination and the severity of the events to log.
To configure the Syslog:
Note: The syslog file is always saved to local storage, but it is not retained through
reboots. Saving the syslog file to a server that supports remote logging services (see RFC
3164) allows the administrator to save the complete syslog history. The default port is 514.
1. Select Syslog on the menu bar. The Syslog page opens to display the current configuration.
Figure 9-10 Syslog
2. Enter or modify the following settings:
Allow Firmware Update Specifies whether or not the TFTP Server is allowed to accept a firmware
update for the device. An attempt to update firmware is recognized based on
the name of the file.
Note: TFTP cannot authenticate the client, so the device is open to
malicious update.
Allow XCR Import Specifies whether the TFTP server is allowed to accept an XML configuration
file for update. An attempt to import configuration is recognized based on the
name of the file.
Note: TFTP cannot authenticate the client, so the device is open to
malicious update.
TFTP Settings (continued) Description
9: Service Settings
XPort® Pro Embedded Device Server User Guide 73
Table 9-11 Syslog
3. Click Submit.
HTTP Settings
Hypertext Transfer Protocol (HTTP) is the transport protocol for communicating hypertext
documents on the Internet. HTTP defines how messages are formatted and transmitted. It also
defines the actions web servers and browsers should take in response to different commands.
HTTP Authentication enables the requirement of usernames and passwords for access to the
XPort Pro device.
This page has three links at the top for viewing statistics and for viewing and changing
configuration and authentication settings.
HTTP Statistics—Viewing statistics such as bytes received and transmitted, bad requests,
authorizations required, etc.
HTTP Configuration—Configuring and viewing the current configuration.
HTTP Authentication—Configuring and viewing the authentication.
HTTP Statistics
To view HTTP statistics:
This page shows various statistics about the HTTP server.
1. Select HTTP on the menu bar and then Statistics at the top of the page. The HTTP Statistics
page appears.
Syslog Settings Description
State Select to enable or disable the syslog.
Host Enter the IP address of the remote server to which system logs are sent for storage.
Local Port Enter the number of the local port on the device from which system logs are sent.
Remote Port Enter the number of the port on the remote server that supports logging services.
The default is 514.
Severity Log Level From the drop-down box, select the minimum level of system message the device
should log. This setting applies to all syslog facilities. The drop-down list is in
descending order of severity (e.g., Emergency is more severe than Alert.)
Slalistics Colllig on Alllhelllicalioll HTTP Statistics Rx Bers ZEZBS Tx Bytes 138244 200 - 0K 15 301 , Moved Permanently mo . Burl Request 401 -Alllhorizalion Required 13 404 , Not Folllul m . Request Tlmeoul 413 rRquIestTno Large 500 . lluelnal Elm no 501 , Not Implemented Slams UIIkIIowII Wolk Ollelle Full Socke! Enol Merrrory Enol Logs: 42 enmes (5291 bytes) [m] [m] aoaaoaoao
9: Service Settings
XPort® Pro Embedded Device Server User Guide 74
Figure 9-12 HTTP Statistics
Note: The HTTP log is a scrolling log, with the last Max Log Entries cached and
viewable. You can change the maximum number of entries that can be viewed on the
HTTP Configuration Page.
Statistics Configumtion Aufllemicalion HTTP Configuration Slate: ' Enabled Disabled Poll: 80 Secule Pan: 443 3:33:03: 4 TLsm / TLSi 1 I TLS12 Max Timeout: 10 seconds Max Byles: 40960 Logging Slate: - Enabled Disabled €2.32? 5° Log roam; Wm %« ”War" %5 via “%{Referer}i“ '%[UserrAgem)i” Anthenlica Inn 30 Timeout """mes
9: Service Settings
XPort® Pro Embedded Device Server User Guide 75
HTTP Configuration
On this page you may change HTTP configuration settings.
To configure HTTP:
1. Select HTTP on the menu bar and then Configuration at the top of the page. The HTTP
Configuration page opens.
Figure 9-13 HTTP Configuration
2. Enter or modify the following settings:
Table 9-14 HTTP Configuration
HTTP Configuration
Settings
Description
State Select Enabled to enable the HTTP server.
Port Enter the port for the HTTP server to use. The default is 80.
Secure Port Enter the port for the HTTPS server to use. The default is 443. The HTTP
server only listens on the HTTPS Port when an SSL certificate is configured.
9: Service Settings
XPort® Pro Embedded Device Server User Guide 76
3. Click Submit.
Secure Protocols Select to enable or disable the following protocols:
TLS1.0 = Transport Layer Security version 1.0. TLS 1.0 is the successor of
SSL3 as defined by the IETF.
TLS1.1 = Transport Layer Security version 1.1
TLS1.2 = Transport Layer Security version 1.2
The protocols are enabled by default.
Note: A server certificate and associated private key need to be installed in
the SSL configuration section to use HTTPS.
Max Timeout Enter the maximum time for the HTTP server to wait when receiving a
request. This prevents Denial-of-Service (DoS) attacks. The default is 10
seconds.
Max Bytes Enter the maximum number of bytes the HTTP server accepts when receiving
a request. The default is 40 KB (this prevents DoS attacks).
Logging State Select Enabled to enable HTTP server logging.
Max Log Entries Sets the maximum number of HTTP server log entries. Only the last Max Log
Entries are cached and viewable.
Log Format Set the log format string for the HTTP server. Follow these Log Format rules:
%a - remote IP address (could be a proxy)
%b - bytes sent excluding headers
%B - bytes sent excluding headers (0 = '-')
%h - remote host (same as '%a')
%{h}i - header contents from request (h = header string)
%m - request method
%p - ephemeral local port value used for request
%q - query string (prepend with '?' or empty '-')
%t - timestamp HH:MM:SS (same as Apache '%(%H:%M:%S)t' or
'%(%T)t')
%u - remote user (could be bogus for 401 status)
%U - URL path info
%r - first line of request (same as '%m %U%q <version>')
%s - return status
Authentication Timeout The timeout period applies if the selected authentication type is either Digest
or SSL/Digest. After this period of inactivity, the client must authenticate
again.
HTTP Configuration
Settings (continued)
Description
Slalisfics Collfigllmlioll Alllllelllicflliflll HTTP Authentication um: Realm: ONune C‘Easi: ODigEsi AIIlIIT )e: , y' OSSL OSSL/Basic <>ssumges| Usenmlne: Passwol Current Configuration URI: MW] Realm: conflg Athype: Digest Users: admin [M]
9: Service Settings
XPort® Pro Embedded Device Server User Guide 77
HTTP Authentication
HTTP Authentication enables you to require usernames and passwords to access specific web
pages or directories on the XPort Pro built-in web server.
To configure HTTP authentication settings:
1. Select HTTP on the menu bar and then Authentication at the top of the page. The HTTP
Authentication page opens.
Figure 9-15 HTTP Authentication
2. Enter or modify the following settings:
Table 9-16 HTTP Authentication
Note: To properly view data entries in RSS Settings in certain web browsers, it may be
nececessary to first remove authentication from RSS. Enter the following under HTTP
Authentication: URI: "/rss", Realm: "rss", and AuthType: "None".
HTTP Authentication
Settings
Description
URI Enter the Uniform Resource Identifier (URI).
Note: The URI must begin with ‘/’ to refer to the filesystem.
Realm Enter the domain, or realm, used for HTTP. Required with the URI field.
RSS Conliglllalion RSS Feed: Pelsislem: Max Enllies: Statistics Data: Co" (90¢? 00" @orv mu m Enmzs @ bytss) [szw] [mm]
9: Service Settings
XPort® Pro Embedded Device Server User Guide 78
3. Click Submit.
4. To delete the URI and users, click Delete in the current configuration table.
Note: The URI, realm, username, and password are user-specified, free-form fields. The
URI must match the directory created on the XPort Pro file system.
RSS Settings
Really Simple Syndication (RSS) (sometimes referred to as Rich Site Summary) is a method of
feeding online content to Web users. Instead of actively searching for XPort Pro configuration
changes, RSS feeds permit viewing only relevant and new information regarding changes made to
the XPort Pro embedded device server via an RSS publisher. The RSS feeds may also be stored
to the file system cfg_log.txt file.
To configure RSS settings:
1. Select RSS on the menu bar. The RSS page opens and shows the current RSS configuration.
Figure 9-17 RSS
Auth Type Select the authentication type:
None = no authentication is necessary.
Basic = encodes passwords using Base64.
Digest = encodes passwords using MD5.
SSL = the page can only be accessed over SSL (no password is
required).
SSL/Basic = the page is accessible only over SSL and encodes
passwords using Base64.
SSL/Digest = the page is accessible only over SSL and encodes
passwords using MD5.
Note: When changing the parameters of Digest or SSL Digest
authentication, it is often best to close and reopen the browser to ensure it
does not attempt to use cached authentication information.
Username Enter the Username used to access the URI. More than one
Username per URI is permitted.
Click Submit and enter the next Username as necessary.
Password Enter the Password for the Username.
HTTP Authentication Settings
(continued)
Description
9: Service Settings
XPort® Pro Embedded Device Server User Guide 79
2. Enter or modify the following settings:
Table 9-18 RSS
3. Select Submit.
4. In the Current Status table, view and clear stored RSS Feed entries, as necessary.
LPD Settings
The XPort Pro device acts as a print server if a printer gets connected to one of its serial ports.
Selecting the Line Printer Daemon (LPD) link in the Main Menu displays the LPD web page. The
LPD web page has three sub-menus for viewing print queue statistics, changing print queue
configuration, and printing a test page. Because the LPD lines operate independently, you can
specify different configuration settings for each.
LPD Statistics
This read-only page shows various statistics about the LPD server.
To view LPD statistics for a specific LPD line:
1. Select LPD on the menu bar. The LPD web page appears.
2. Select an LPD line at the top of the page.
3. Select Statistics. The LPD Statistics page for the selected LPD line appears.
RSS Settings Description
RSS Feed Select On to enable RSS feeds to an RSS publisher.
Persistent Select On to enable the RSS feed to be written to a file (cfg_log.txt) and to be
available across reboots.
Max Entries Sets the maximum number of log entries. Only the last Max Entries are cached and
viewable.
View Click View to view current data entries.
Note: It may be necessary to remove authentication from RSS access to view data
entries on certain web browsers. Go to HTTP Authentication on page 77 for more
information.
Clear Click Clear to clear data entries.
SIIIG‘I LPII Lilli: LPD l V Statistis Configuflfion PlimTeslPaye LPD 1 - Statistics Jobs Primed: 0 37m Frimd: 0 Cum Client No deuce IS amt-acted, Las‘ Client No device has connecled SCI-GI LPD Lilli: LPD l V Statistics Configuwlion Ptittt'restPage LPD 1 - Configuration Banner: 6 Enabled ' Dtsabled Binary: Enabled ‘3 Disabled StznofJob: Emmet: 9 Dtsabled EndatJob: Emmett 9 Dtsabled Formfeed: Ettaued 9 Disabled Carmen Newlines: Enabled B Dtsabled 50.! String: 9 Texl ‘Bhay EOJ suing: , , 0 Text ‘Bhfly Quouo Nam:
9: Service Settings
XPort® Pro Embedded Device Server User Guide 80
Figure 9-19 LPD Statistics
4. Repeat above steps as desired, according to additional LPD(s) available on your product.
LPD Configuration
Here you can change LPD configuration settings.
To configure LPD settings for a specific LPD line:
1. Select LPD on the menu bar, if you are not already at the LPD web page.
2. Select a LPD line at the top of the page.
3. Select Configuration. The LPD Configuration for the selected LPD line appears.
Figure 9-20 LPD Configuration
4. Enter or modify the following settings:
9: Service Settings
XPort® Pro Embedded Device Server User Guide 81
Table 9-21 LPD Configuration
5. Click Submit.
6. Repeat above steps as desired, according to additional LPD lines available on your product.
Print Test Page
This selection can be chosen to print a test page.
To print a test page:
1. Select LPD on the menu bar, if you are not already at the LPD web page.
2. Select an LPD line at the top of the page.
3. Select Print Test Page. A popup window appears.
4. Enter the numbers to print in the popup window.
5. Click OK.
LPD Configuration
Settings
Description
Banner Select Enabled to print the banner even if the print job does not specify to do so.
Selected by default.
Binary Select Enabled for the device to pass the entire file to the printer unchanged.
Otherwise, the device passes only valid ASCII and valid control characters to the
printer. Valid control characters include the tab, linefeed, formfeed, backspace, and
newline characters. All others are stripped. Disabled by default.
Start of Job Select Enabled to print a "start of job" string before sending the print data.
End of Job Select Enabled to send an "end of job" string.
Formfeed Select Enabled to force the printer to advance to the next page at the end of each
print job.
Convert Newlines Select Enabled to convert single newlines and carriage returns to DOS-style line
endings.
SOJ String If Start of Job (above) is enabled, enter the string to be sent to the printer at the
beginning of a print job. The limit is 100 characters.
Indicate whether the string is in text or binary format.
EOJ String If End of Job (above) is enabled, enter the string to send at the end of a print job.
The limit is 100 characters. Indicate whether the string is in text or binary format.
Queue Name To change the name of the print queue, enter a new name. The name cannot have
white space in it and is limited to 31 characters. The default is LPDQueueX (for line
number X)
XPort® Pro Embedded Device Server User Guide 82
10: Security Settings
The XPort Pro unit supports Secure Shell (SSH) and Secure Sockets Layer (SSL). SSH is a
network protocol for securely accessing a remote device. SSH provides a secure, encrypted
communication channel between two hosts over a network. It provides authentication and
message integrity services.
Secure Sockets Layer (SSL) is a protocol that manages data transmission security over the
Internet. It uses digital certificates for authentication and cryptography against eavesdropping and
tampering. It provides encryption and message integrity services. SSL is widely used for secure
communication to a web server. SSL uses certificates and private keys.
Note: The XPort Pro device server supports TLS 1.0, 1.1, and 1.2. An incoming SSLv2
connection attempt is answered with an SSLv3 response. If the initiator also supports
SSLv3, SSLv3 handles the rest of the connection.
This chapter contains the following sections:
SSH Server Host Keys
SSH Server Authorized Users
SSH Client Known Hosts
SSH Client Users
SSL Cipher Suites
SSL Certificates
SSL RSA
SSL Certificates and Private Keys
SSL Utilities
SSL Configuration
SSH Settings
SSH is a network protocol for securely accessing a remote device over an encrypted channel. This
protocol manages the security of internet data transmission between two hosts over a network by
providing encryption, authentication, and message integrity services.
Two instances require configuration: when the XPort Pro unit is the SSH server and when it is an
SSH client. The SSH server is used by the CLI (Command Mode) and for tunneling in Accept
Mode. The SSH client is for tunneling in Connect Mode.
To configure the XPort Pro embedded device server as an SSH server, there are two
requirements:
Defined Host Keys: both private and public keys are required. These keys are used for the
Diffie-Hellman key exchange (used for the underlying encryption protocol).
Defined Users: these users are permitted to connect to the XPort Pro SSH server.
This page has four links at the top for viewing and changing SSH server host keys, SSH server
authorized keys, SSH client known hosts, and SSH client users.
SSH Server: Host Keys SSH Clie ' Known Husts SSH Server: AuflIDriled Users SSH Clienl: Users SSH Server: Host Keys Upload Keys Pri‘nhe Key: Choose File No file chosen Public Key: Choose File No file chosen Kay Type: RSA DSA Submll Creale New Keys Key Type: RSA DSA Bit Sile: 512 763 1024 Submil Currant Configuration Public RSA Key: No RSA Key Configured Public DSA Key: Nu DSA Key Cunfigured
10: Security Settings
XPort® Pro Embedded Device Server User Guide 83
SSH Server Host Keys
SSH Host Keys can be obtained in a few different ways:
Uploading keys via PUTTY or other tools which generate RFC4716 format keys.
Creating keys through the device.
The steps for creating or uploading keys is described below.
To upload SSH server host keys generated from PuTTY:
1. Create the keys with puttygen.exe. The keys are in PuTTY format.
2. Use puttygen.exe again to convert the private key to Open SSH format as follows:
a. Import the private key using "Conversions…Import key."
b. Create a new file using "Conversions…Export OpenSSH key."
3. Use ssh-keygen to convert the public key to OpenSSH format.
ssh-keygen -i -f putty_file > openssh_file
4. Select SSH on the menu bar and SSH Server: Host Keys at the top of the page. The SSH
Server Host Keys page appears.
Figure 10-1 SSH Server: Host Keys (Upload Keys)
5. Enter or modify the following settings in the part of the screen related to uploading keys:
10: Security Settings
XPort® Pro Embedded Device Server User Guide 84
Table 10-2 SSH Server Host Keys Settings - Upload Keys Method
6. Click Submit.
To upload SSH server host RFC4716 format keys:
1. Use any program that can produce keys in the RFC4716 format.
2. Use ssh-keygen to convert the format to OpenSSH.
ssh-keygen -i -f RFC4716_file > output_file
Note: If the keys do not exist, follow directions under To create new SSH server host
keys (on page 85).
3. Select SSH on the menu bar and SSH Server: Host Keys at the top of the page. The SSH
Server Host Keys page appears.
4. Enter or modify the following settings in the part of the screen related to uploading keys:
Table 10-3 SSH Server Host Keys Settings - Upload Keys Method
5. Click Submit.
Note: SSH keys may be created on another computer and uploaded to the XPort Pro
embedded device server. For example, use the following command using Open SSH to
create a 1024-bit DSA key pair: ssh-keygen –b 1024 –t dsa
SSH Server: Host Keys
Settings (continued)
Description
Private Key Enter the path and name of the existing private key you want to upload or
use the Choose File button to select the key. Be sure the private key will not
be compromised in transit. This implies the data is uploaded over some kind
of secure private network.
Public Key Enter the path and name of the existing public key you want to upload or use
the Choose File button to select the key.
Key Type Select a key type to use for the new key:
RSA = use this key with the SSH1 and SSH2 protocols.
DSA = use this key with the SSH2 protocol.
SSH Server: Host Keys
Settings (continued)
Description
Private Key Enter the path and name of the existing private key you want to upload or use
the Choose File button to select the key. Be sure the private key will not be
compromised in transit. This implies the data is uploaded over some kind of
secure private network.
Public Key Enter the path and name of the existing public key you want to upload or use
the Choose File button to select the key.
Key Type Select a key type to use for the new key:
RSA = use this key with the SSH1 and SSH2 protocols.
DSA = use this key with the SSH2 protocol.
10: Security Settings
XPort® Pro Embedded Device Server User Guide 85
To create new SSH server host keys
Note: Generating new keys with large bit size results in longer key generation times.
1. Select SSH on the menu bar and SSH Server: Host Keys at the top of the page. The SSH
Server Host Keys page appears.
2. Enter or modify the following settings in the part of the screen related to creating new keys:
Table 10-4 SSH Server Host Keys Settings - Create New Keys Method
3. Click Submit.
Note: SSH Keys from other programs may be converted to the required XPort Pro
format. Use Open SSH to perform the conversion.
SSH Server Authorized Users
On this page you can change SSH server settings for Authorized Users. SSH Server Authorized
Users are accounts on the XPort Pro device server that can be used to log into the XPort Pro using
SSH. For instance, these accounts can be used to SSH into the CLI or open an SSH connection to
a device port. Every account must have a password.
The user's public keys are optional and only necessary if public key authentication is required.
Using public key authentication allows a connection to be made without the password being
asked.
Under Current Configuration, User has a Delete User link, and Public RSA Key and Public
DSA Key have View Key and Delete Key links. If you click a Delete link, a message asks whether
you are sure you want to delete this information. Click OK to proceed or Cancel to cancel the
operation.
SSH Server: Host Keys
Settings
Description
Key Type Select a key type to use:
RSA = use this key with SSH1 and SSH2 protocols.
DSA = use this key with the SSH2 protocol.
Note: RSA is more secure.
Bit Size Select a bit length for the new key:
512
768
1024
Using a larger bit size takes more time to generate the key. Approximate times
are:
10 seconds for a 512 bit RSA Key
15 seconds for a 768 bit RSA Key
1 minute for a 1024 bit RSA Key
30 seconds for a 512 bit DSA Key
1 minute for a 768 bit DSA Key
2 minutes for a 1024 bit DSA Key
Note: Some SSH clients require RSA host keys to be at least 1024 bits long.
This device generates keys up to 1024 bits long. It can work with larger keys
(up to 2048 bit) if they are imported or otherwise created.
SSH Server: Host Keys SSH client: Known Hosts SSH Server: Authoriled Users SSH Client: Users SSH Sewer: Authorized Users Username: Password: Public RSA Key: Change File No lile chosen Public DSA Key: Choose File No lile chosen Add/Edit Current Configuration Na Aulhcrized Users are currently configured forlhe SSH Server.
10: Security Settings
XPort® Pro Embedded Device Server User Guide 86
To configure the SSH server for authorized users:
1. Select SSH on the menu bar and then Server Authorized Users at the top of the page. The
SSH Server: Authorized Users page appears.
Figure 10-5 SSH Server: Authorized Users
2. Enter or modify the following settings:
Table 10-6 SSH Server Authorized User Settings
3. Click Add/Edit.
Note: When uploading the security keys, ensure the keys are not compromised in
transit.
SSH Server: Authorized
Users Settings
Description
Username Enter the name of the user authorized to access the SSH server.
Password Enter the password associated with the username.
Public RSA Key Enter the path and name of the existing public RSA key you want to use with this
user or use the Choose File button to select the key. If authentication is
successful with the key, no password is required.
Public DSA Key Enter the path and name of the existing public DSA key you want to use with this
user or use the Choose File button to select the key. If authentication is
successful with the key, no password is required.
SSH Server: Host Keys SSH Client: Known Hasls SSH Server: Autlmrixed U525 ssu Client: Users SSH Client: Known Hosts Servel: Publlc RSA Key: Choose File No file chosen Public DSA Key: Choose File No file chosen Submil Current Configuration No Known Hosts are currently configured lor the SSH Cllent.
10: Security Settings
XPort® Pro Embedded Device Server User Guide 87
SSH Client Known Hosts
On this page you can change SSH client settings for known hosts.
Note: You do not have to complete the fields on this page for communication to occur.
However, completing them adds another layer of security that protects against Man-In-
The-Middle (MITM) attacks.
To configure the SSH client for known hosts:
1. Select SSH on the menu bar and then Client Known Hosts at the top of the page. The SSH
Client: Known Hosts page appears.
Figure 10-7 SSH Client: Known Hosts
2. Enter or modify the following settings:
Table 10-8 SSH Client Known Hosts
Note: These settings are not required for communication. They protect against Man-In-
The-Middle (MITM) attacks.
3. Click Submit.
4. In the Current Configuration table, delete currently stored settings as necessary.
SSH Client:
Known Hosts Settings
Description
Server Enter the name or IP address of a known host. If you enter a server name, the
name should match the name of the server used as the Remote Address in
Connect mode tunneling.
Public RSA Key Enter the path and name of the existing public RSA key you want to use with
this known host or use the Choose File button to select the key.
Public DSA Key Enter the path and name of the existing public DSA key you want to use with
this known host or use the Choose File button to select the key.
SSH Server: Host Keys SSH Client: Known Hosts SSH Sewer: Authorized Users SSH Client: Users SSH Client: Users Username: Password: Remote Command: Privm Key: Choose File No file chosen Public Key: Choose File No file chosen Key Type: RSA DSA Add/Edit Create New Keys Username: Key 'lype: RSA DSA Bit Size: 512 768 1024 Su bmit Current Configuralion User: paluser Delete User Password: Configured Remote Command: Public RSA Key: No RSA Key Configured Public DSA Key: No DSA Key Configured
10: Security Settings
XPort® Pro Embedded Device Server User Guide 88
SSH Client Users
On this page you can change SSH client settings for users. To configure the XPort Pro device
server as an SSH client, an SSH client user must be both configured and also exist on the remote
SSH server.
SSH client known users are used by all applications that play the role of an SSH client, specifically
tunneling in Connect Mode. At the very least, a password or key pair must be configured for a
user. The keys for public key authentication can be created elsewhere and uploaded to the device
or automatically generated on the device. If uploading existing keys, be sure the private key will
not be compromised in transit. This implies the data is uploaded over some kind of secure private
network.
Note: If you are providing a key by uploading a file, make sure that the key is not
password protected.
To configure the SSH client users:
1. Select SSH on the menu bar and then SSH Client Users at the top of the page. The SSH
Client: Users page appears.
Figure 10-9 SSH Client: Users
10: Security Settings
XPort® Pro Embedded Device Server User Guide 89
2. Enter or modify the following settings:
Table 10-10 SSH Client Users
3. Click Submit.
4. In the Current Configuration table, click Delete User to delete currently stored user settings
as necessary.
SSH Client: Users
Settings
Description
Username Enter the name that the device uses to connect to a SSH server.
Password Enter the password associated with the username.
Remote Command Enter the command that can be executed remotely. Default is shell, which tells the
SSH server to execute a remote shell upon connection. This command can be
changed to anything the remote host can perform.
Private Key Enter the name of the existing private key you want to use with this SSH client user.
You can either enter the path and name of the key, or use the Choose File button to
select the key.
Public Key Enter the path and name of the existing public key you want to use with this SSH
client user or use the Choose File button to select the key.
Note: If the user public key is known on the remote SSH server, the SSH server
does not require a password. The Remote Command is provided to the SSH server
upon connection. It specifies the application to execute upon connection. The default
is a command shell.
Note: Configuring the SSH client’s known hosts is optional. It prevents Man-In-The-
Middle (MITM) attacks
Key Type Select the key type to be used. Choices are:
RSA = use this key with the SSH1 and SSH2 protocols.
DSA = use this key with the SSH2 protocol.
Create New Keys
Username Enter the name of the user associated with the new key.
Key Type Select the key type to be used for the new key. Choices are:
RSA = use this key with the SSH1 and SSH2 protocols.
DSA = use this key with the SSH2 protocol.
Bit Size Select the bit length of the new key:
512
768
1024
Using a larger Bit Size takes more time to generate the key. Approximate times are:
10 seconds for a 512 bit RSA Key
15 seconds for a 768 bit RSA Key
1 minute for a 1024 bit RSA key
30 seconds for a 512 bit DSA key
1 minute for a 768 bit DSA key
2 minutes for a 1024 bit DSA key
Note: Some SSH clients require RSA host keys to be at least 1024 bits long. This
device generates keys up to 1024 bits long. It can work with larger keys (up to 2048
bit) if they are imported or otherwise created.
10: Security Settings
XPort® Pro Embedded Device Server User Guide 90
SSL Settings
Secure Sockets Layer (SSL) is a protocol for managing the security of data transmission over the
Internet. It provides encryption, authentication, and message integrity services. SSL is widely used
for secure communication to a web server.
Certificate/Private key combinations can be obtained from an external Certificate Authority (CA)
and downloaded into the unit. Self-signed certificates with associated private key can be
generated by the device server itself.
For more information regarding Certificates and how to obtain them, see SSL Certificates and
Private Keys (on page 91).
SSL uses digital certificates for authentication and cryptography against eavesdropping and
tampering. Sometimes only the server is authenticated; sometimes both server and client are
authenticated. The XPort Pro device server can be server and/or client, depending on the
application. Public key encryption systems exchange information and keys and set up the
encrypted tunnel.
Efficient symmetric encryption methods encrypt the data going through the tunnel after it is
established. Hashing provides tamper detection.
Applications that can make use of SSL are Tunneling, Secure Web Server, and WLAN interface.
The XPort Pro unit supports TLS 1.0, 1.1, and 1.2.
SSL Cipher Suites
The SSL standard defines only certain combinations of certificate type, key exchange method,
symmetric encryption, and hash method. Such a combination is called a cipher suite. Supported
cipher suites include the following:
Whichever side is acting as server decides which cipher suite to use for a connection. It is usually
the strongest common denominator of the cipher suite lists supported by both sides.
Note: ECDHE takes priority over RSA key exchange. When creating an HTTPS
connection to the device using Chrome, there may be a delay up to 90 seconds due to
security verification.
SSL Certificates
The goal of a certificate is to authenticate its sender. It is analogous to a paper document that
contains personal identification information and is signed by an authority, for example a notary or
government agency.
The principles of Security Certificate require that in order to sign other certificates, the authority
uses a private key. The published authority certificate contains the matching public key that allows
another to verify the signature but not recreate it.
Table 10-11 Supported Cipher Suites
Certificate Key Exchange Encryption Hash
RSA ECDHE 128 bits AES SHA256
RSA ECDHE 256 bits AES SHA384
RSA ECDHE 128 bits AES SHA1
RSA RSA 128 bits AES SHA1
10: Security Settings
XPort® Pro Embedded Device Server User Guide 91
The authority’s certificate can be signed by itself, resulting in a self-signed or trusted-root
certificate, or by another (higher) authority, resulting in an intermediate authority certificate. You
can build up a chain of intermediate authority certificates, and the last certification will always be a
trusted-root certificate.
An authority that signs other certificates is also called a Certificate Authority (CA). The last in line is
then the root-CA. VeriSign is a famous example of such a root-CA. Its certificate is often built into
web browsers to allow verifying the identity of website servers, which need to have certificates
signed by VeriSign or another public CA. Since obtaining a certificate signed by a CA that is
managed by another company can be expensive, it is possible to have your own CA. Tools exist to
generate self-signed CA certificates or to sign other certificates.
A certificate request is a certificate that has not been signed and only contains the identifying
information. Signing it makes it a certificate. A certificate is also used to sign any message
transmitted to the peer to identify the originator and prevent tampering while transported.
When using HTTPS, SSL Tunneling in Accept mode, and/or EAP-TLS, the XPort Pro unit needs a
personal certificate with a matching private key to identify itself and sign its messages. When using
SSL Tunneling in Connect mode and/or EAP-TLS, EAP-TTLS or PEAP, the XPort Pro device
server needs the authority certificate that can authenticate users with which it wishes to
communicate.
Note: MD5 certificates are not supported by Internet Explorer or Safari. If using an MD5
certificate with those browsers, the HTTPS connection will fail.
SSL RSA
As mentioned above, the certificates contain a public key. Different key exchange methods require
different public keys and therefore different certificate styles. The XPort Pro embedded device
server supports key exchange methods that require an RSA-style certificate. The RSA key
exchange method can work with this style if an RSA certificate is stored in the XPort Pro unit.
The creation of a self-signed SSL certificate supports SHA1 hash algorithms with 1024 and 2048
bit key length. Uploading an SSL certificate will support MD5, SHA1 and SHA2 families (e.g.,
SHA256, SHA384, and SHA512 hash algorithms with key lengths of 1024, 2048, and 4096 bits).
SSL Certificates and Private Keys
You can obtain a certificate by completing a certificate request and sending it to a certificate
authority that will create a certificate/key combo, usually for a fee, or you can generate your own. A
few utilities exist to generate self-signed certificates or sign certificate requests. The XPort Pro
device server also has the ability to generate its own self-signed certificate/key combo.
You can use XML to export the certificate in PEM format, but you cannot export the key. Hence the
internal certificate generator can only be used for certificates that are to identify that particular
XPort Pro unit.
Certificates and private keys can be stored in several file formats. Best known are PKCS12, DER
and PEM. Certificate and key can be in the same file or in separate files. The key can be encrypted
with a password or not. The XPort Pro device server currently only accepts separate PEM files.
The key needs to be unencrypted.
SSL Utilities
Several utilities exist to convert between the formats.
www.ogenssl.org www.madboa.com/geeklogenssl
10: Security Settings
XPort® Pro Embedded Device Server User Guide 92
OpenSSL
Open source is a set of SSL related command line utilities. It can act as server or client. It can
generate or sign certificate requests. It can convert all kinds of formats. Executables are available
for Linux and Windows. To generate a self-signed RSA certificate/key combo use the following
commands in the order shown:
openssl req –x509 –nodes –days 365 –newkey rsa:1024 –keyout
mp_key.pem –out mp_cert.pem
Note: Signing other certificate requests is also possible with OpenSSL. See
www.openssl.org or www.madboa.com/geek/openssl for more information.
Steel Belted RADIUS
Commercial RADIUS server by Juniper Networks that provides a GUI administration interface. It
also provides a certificate request and self-signed certificate generator. The self-signed certificate
has extension .sbrpvk and is in the PKCS12 format. OpenSSL can convert this into a PEM format
certificate and key by using the following commands in the order shown:
openssl pkcs12 -in sbr_certkey.sbrpvk -nodes -out sbr_certkey.pem
The sbr_certkey.pem file contains both certificate and key. If loading the SBR certificate into XPort
Pro unit as an authority, you will need to edit it.
1. Open the file in any plain text editor.
2. Delete all info before the following: “----- BEGIN CERTIFICATE-----“
3. Delete all info after the following: “----- END CERTIFICATE-----“
4. Save as sbr_cert.pem. SBR accepts trusted-root certificates in the DER format.
5. Again, OpenSSL can convert any format into DER by using the following commands in the
order shown:
openssl x509 -inform pem -in mp_cert.pem -outform der -out
mp_cert.der
Note: With SBR, when the identity information includes special characters such as
dashes and periods, SBR changes the format it uses to store these strings and becomes
incompatible with the current XPort Pro release. We will add support for this and other
formats in future releases. Free RADIUS—Linux open-source RADIUS server. It is
versatile, but complicated to configure.
Free RADIUS
Free RADIUS is a Linux open-source RADIUS server. It is versatile, but complicated to configure.
SSL Configuration
To configure SSL settings:
1. Select SSL from the main menu. The SSL page appears.
SSL Upload cmificm New Ceniiieaie: Choose File No file chosen . Choose File No file chosen Create New Sel Signed Cerlilicale Counuy (z Lener Code): SmeIProvin Locality (c' Organiznlion: Org-nimion le - Common Nlme: Expires: mini/2022 Nmr‘dd’yyyy Key lenglh: - ":24 mi 2043 bn type: - RSA 5|.an Current SSL Certificates Curler“ Cenificale Author! s C: SE Trusud L = Ammriry 0: AddTfllsl AB [M1 ou: Add'lmsl Erlemal rrp Newark cu: AddTmsI Exiemal CA Rom
10: Security Settings
XPort® Pro Embedded Device Server User Guide 93
Figure 10-12 SSL
2. Enter or modify the following settings:
Table 10-13 SSL
SSL Settings Description
Upload Certificate
New Certificate This certificate identifies the device to peers. It is used for HTTPS and SSL
Tunneling.
Enter the path and name of the certificate you want to upload, or use the
Choose File button to select the certificate.
RSA certificates with 1024, 2048, or 4096 bit public keys are allowed.
The format of the file must be PEM. The file must start with “-----BEGIN
CERTIFICATE-----“ and end with “-----END CERTIFICATE-----“. Some
Certificate Authorities add comments before and/or after these lines. Those
need to be deleted before upload.
Note: Supported RSA Certificates include MD5, SHA1, SHA256, SHA384,
and SHA512.
hag //www wudgelsabccomgany om www wudge‘s abccomgany com
10: Security Settings
XPort® Pro Embedded Device Server User Guide 94
New Private Key Enter the path and name of the private key you want to upload, or use the
Choose File button to select the private key. The key needs to belong to the
certificate entered above.
The format of the file must be PEM. The file must start with “-----BEGIN RSA
PRIVATE KEY-----” and end with “-----END RSA PRIVATE KEY-----”. Some
Certificate Authorities add comments before and/or after these lines. Those
need to be deleted before upload.
Upload Authority Certificate
Authority One or more authority certificates are needed to verify a peer's identity. It is
used for SSL Tunneling. These certificates do not require a private key.
Enter the path and name of the certificate you want to upload, or use the
Choose File button to select the certificate.
RSA certificates with 1024, 2048, or 4096 bit public keys are allowed.
The format of the file must be PEM. The file must start with “-----BEGIN
CERTIFICATE-----” and end with “-----END CERTIFICATE-----”. Some
Certificate Authorities add comments before and/or after these lines. Those
need to be deleted before upload.
Create New Self-Signed Certificate
Country (2 Letter Code) Enter the 2-letter country code to be assigned to the new self-signed
certificate.
Examples: US for United States and CA for Canada
State/Province Enter the state or province to be assigned to the new self-signed certificate.
Locality (City) Enter the city or locality to be assigned to the new self-signed certificate.
Organization Enter the organization to be associated with the new self-signed certificate.
Example: If your company is called Widgets, and you are setting up a web
server for the Sales department, enter Widgets for the organization.
Organization Unit Enter the organizational unit to be associated with the new self-signed
certificate.
Example: If your company is setting up a web server for the Sales
department, enter Sales for your organizational unit.
Common Name Enter the same name that the user will enter when requesting your web site.
Example: If a user enters http://www.widgets.abccompany.com to access
your web site, the Common Name would be
www.widgets.abccompany.com.
Expires Enter the expiration date, in mm/dd/yyyy format, for the new self-signed
certificate.
Example: An expiration date of January 1, 2022 is entered as 01/01/2022.
Key length Select the bit size of the new self-signed certificate.
1024 bits
2048 bits
The larger the bit size, the longer it takes to generate the key. Approximate
times are:
1 minute for a 1024-bit RSA key
10 minutes for a 2048-bit RSA key
SSL Settings (continued) Description
10: Security Settings
XPort® Pro Embedded Device Server User Guide 95
3. Click Submit.
Type Select the type of key:
RSA = Public-Key Cryptography algorithm based on large prime
numbers, invented by Rivest Shamir and Adleman. Used for encryption
and signing.
SSL Settings (continued) Description
XPort® Pro Embedded Device Server User Guide 96
11: Modbus
Modbus ASCII/RTU based serial slave devices can be connected via the Ethernet through an
existing Modbus TCP/IP network. Any device having access to a given Modbus implementation
will be able to perform full range of operations that the implementation supports. Modbus/TCP
uses a reserved TCP port of 502 and includes a single byte function code (1=255) preceded by a
6 byte header:
Table 11-1 6 Byte Header of Modbus Application Protocol
CP Control via Modbus
Default groups are mapped to Modbus registers. CPs added to groups will result in the CP being
read and written based on the reading or writing to the register which maps to that CP group.
Default Modbus group names include:
Modbus_Ctl_In
Modbus_Ctl_Out
Refer to Chapter 8: CPM: Groups on page 62 for instructions on adding a CP to a Group. When
the Modbus slave address is set to 0xFF, the message is addressed to the internal default groups
and thus processed by the MatchPort b/g ProXPort embedded device server. The Modbus 'local
slave' supported functions are listed in the table below.
Table 11-2 Modbus Local Slave Functions - Query
Transaction ID (2 bytes) Identification of request/response transaction - copied by slave
Protocol ID (2 bytes) 0 - Modbus protocol
Length (2 bytes) Number of following bytes includes the unit identifier
Address (1 byte) Identification of remove slave
Name Number Address
Hi [0]
Address
Lo [1]
Data Hi
[2]
Data Lo
[3]
Bytes
Count [4]
Value [5]
Read Coils 0x01 0x00 0x00-0x02
Starting CP
CP1 – CP3
0x00 0x01-0x03
No of CPs to
output
N/A N/A
Read Input
status
0x02 0x00 0x00-0x02
Starting CP
CP1 – CP3
0x00 0x01-0x03
No of CPs to
output
N/A N/A
Read Holding
Registers
0x03 0x00 0x00-0x02
Starting CP
CP1 – CP3
0x00 0x01-0x03
No of CPs to
output
N/A N/A
Read Input
Registers
0x04 0x00 0x00-0x02
Starting CP
CP1 – CP3
0x00 0x01-0x03
No of CPs to
output
N/A N/A
11: Modbus
XPort® Pro Embedded Device Server User Guide 97
Table 11-3 Modbus Local Slave Functions - Response
Force Single Coil 0x05 0x00 0x00-0x02
Output CP
CP1 – CP3
0xff (set CPx
to 1) or
0x00 (set CPx
to 0)
0x00 N/A N/A
Preset Single
Register
0x06 0x00 0x00-0x02
CP1 – CP3
0x00 0x00 or 0x01 N/A N/A
Force Multiple
Coils
0x0F 0x00 0x00-0x02
Starting CP
CP1 – CP3
0x00 0x01-0x03
No of CPs to
set
0x01 0B00000xyz
CP values ,Lo
CP# in low bit
Preset Multiple
Registers
0x10 0x00 0x00-0x02
Starting CP
CP1 – CP3
0x00 0x01-0x03
No of CPs to
set
0x02-0x06
(No of CPs
to set) * 2
Max [6]..
0x00, 0x0Y
0x00 ,0x0Y
0x00, 0x0Y
Y = 0 or 1
Read/Write 4X
Registers
0x17 0x00 0x00-0x02
Starting CP
CP1 CP3 to
read
0x00 0x01-0x03
Quantity to
read
0x00 0x00-0x02
Starting CP
CP1 – CP3 to
write
0x00 0x01-0x03
Quantity to
write
0x02-0x06
(Quantity to
write) * 2
Max [6]..
0x00, 0x0Y
0x00 ,0x0Y
0x00, 0x0Y
Y = 0 or 1
Name Number Byte
Count
Data [0] Data [1] Data
[2]
Data [3] Data
[4]
Data [5]
Read
Coils
0x01 0x01 0B00000xyz
CP output
values ,Lo CP#
in high bit
N/A N/A N/A N/A N/A
Read
Input
status
0x02 0x01 0B00000xyz
CP output
values ,Lo CP#
in high bit
N/A N/A N/A N/A N/A
Read
Holding
Registers
0x03 0x02-0x06 0x00 Starting CP
Value
0x00 or 0x01
0x00 Next CP or
End CP value
0x00 or 0x01
0x00 End CP value
0x00 or 0x01
Read
Input
Registers
0x04 0x02-0x06 0x00 Starting CP
Value
0x00 or 0x01
0x00 Next CP or
End CP value
0x00 or 0x01
0x00 End CP value
0x00 or 0x01
Force
Single
Cell
0x05 Echo query Echo query Echo query Echo
query
N/A N/A N/A
Preset
Single
Register
0x06 Echo query Echo query Echo query Echo
query
N/A N/A N/A
Name Number Address
Hi [0]
Address
Lo [1]
Data Hi
[2]
Data Lo
[3]
Bytes
Count [4]
Value [5]
11: Modbus
XPort® Pro Embedded Device Server User Guide 98
Serial Transmission Mode
Evolution OS® products can be set up to communicate on standard Modbus networks using either
RTU or ASCII. Users select the desired mode and serial port communication parameters (baud
rate, parity mode, etc) when in the line configuration options.
Table 11-4 Modbus Transmission Modes
The Modbus web pages allow you to check Modbus status and make configuration changes. This
chapter contains the following sections:
Modbus Statistics
Modbus Configuration
Force
Multiple
Coil
0x0F Echo query Echo query Echo query Echo
query
N/A N/A N/A
Preset
Multiple
Registers
0x10 Echo query Echo query Echo query Echo
query
N/A N/A N/A
Read/
Write 4X
Registers
0x17 0x02-0x06
(Quantity of
Read) * 2
Max [6]..
0x00, 0x0Y
0x00 ,0x0Y
0x00, 0x0Y
Y = 0 or 1
RTU ASCII
Address: 8 bits (0 to 247 decimal, 0 is used for broadcast)
Function: 8 bits (1 to 255, 0 is not valid)
Data: N X 8 bits (N=0 to 252 bytes)
CRC Check: 16 bits
Address: 2 CHARS
Function: 2 CHARS
Data: N CHARS (N=0 to 252 CHARS)
LRC Check: 2 CHARS
Name Number Byte
Count
Data [0] Data [1] Data
[2]
Data [3] Data
[4]
Data [5]
Conflgumfion Modbus Statistics sme: Up Pom 512 La: Connection: local:502 <- 172,15="" 205103900="" 0pm.:="" 0="" days="" 02.30:]:="" total="" pdu:="" in:="" 0="" total="" mm:="" 0m:="" 0="" tolal="" connonlons:="" 1="" m0502=""><-172.15 205103900="" uguu="" cumnl="" connoctlom:="" gg‘b'gfi'rifd‘evs="" ”2="" 355“="" pdus="" our="" el="" sum:="" up="" p0":="" 535="" last="" connenion:=""> Upflmo: 0 days 09:35:53 Total PDU: In: Tolal PDUs Out Total Comical-ms: Cullen! Conneaions Total PDU: In: Tolal PDUI Out Exceplion Count:
11: Modbus
XPort® Pro Embedded Device Server User Guide 99
Modbus Statistics
This read-only web page displays the current connection status of the Modbus servers listening on
the TCP ports. When a connection is active, the remote client information is displayed as well as
the number of PDUs that have been sent and received. Additionally, a Kill link will be present
which can be used to kill the connection.
To view modbus statistics:
1. Click Modbus on the menu bar and click Statistics at the top of the page. The Modbus
Statistics page appears.
Figure 11-5 Modbus Statistics
smiszics Configmation Modbus Configuration TCP Server Slate: On ' Ofl Addilional TCP Server Po": Allaw New Connection Aller Max Reached: ' 0" 0" Response TImeouI: 3on0 millisecnnds RSS Tracslnpul 0,. - on
11: Modbus
XPort® Pro Embedded Device Server User Guide 100
Modbus Configuration
This web page shows the current negotiated Modbus settings and allows configuration changes.
To view and configure the Modbus Server:
1. Click Modbus on the menu bar and then click Configuration at the top of the page. The
Modbus Configuration page appears.
Figure 11-6 Modbus Configuration
2. Enter or modify the following settings:
Table 11-7 Modbus Configuration
3. Click Submit. The changes take effect immediately.
Note: The serial line protocol must also be configured for Modbus, in addition to
configuring the Modbus server. See Chapter 6: Line and Tunnel Settings on page 33 for
details.
Modbus Configuration
Settings
Description
TCP Server State If On, the Modbus server is active on TCP 502.
Additional TCP Server Port If present, is used in addition to TCP port 502.
Allow New Connection After
Max Reached
If On, after reaching the maximum number of connections, new
connections will be allowed by killing the oldest connection. If Off, after
reaching the maximum number of connections, new connections won’t be
accepted.
Response Timeout The number of milliseconds to wait for a response on the serial side. The
device returns exception code 11 to the network master controller if the
slave serial device fails to reply within this time out.
RSS Trace Input If On, each PDU received on the Modbus serial line creates a non-
persistent descriptive item in the RSS feed.
Figure 12-1 Filesystem Stalls lcs statistiis Blows. Filesystem Statistics Filesysiem Sile: Available Space: Clean Space: Dilly Space: File a Dir 5pm Unit: mm Space Used: lube! ol Files: lube] oi Dlls: Opened Files: Locked Files: Opened (or Slmr' 1]: em Bank: Fw Seclois: Bank A Semis: Bank B Seams: :y: Actions: liel olSyslelii Files: 7 500000 Mbyles (7054320 byies) 7 474250 Mbytes (7037320 byies) (99%) 7 336500 Mbyles (7592972 hyles) (37%) (40 964 Kbytes (144340 bytes) (we) 25 357 Kbyies WEBB bytes) (0%) 22 030 Kby'es (23(94 bytes) 0 DJGGUND 02 , 07, a eiaee cycles 00 2 57, 0 eiase cycles 00 - 127‘ 2 aim cycles N0 [52mm] liwmal]
XPort® Pro Embedded Device Server User Guide 101
12: Maintenance and Diagnostics Settings
This chapter describes maintenance and diagnostic methods and contains the following sections:
Filesystem Settings
Protocol Stack Settings
IP Address Filter
Query Port
Diagnostics
System Settings
Filesystem Settings
The XPort Pro embedded device server uses a flash filesystem to store files. Use the Filesystem
option to view current file statistics or modify files. There are two subsections: Statistics and
Browse.
The Statistics section of the Filesystem web page shows current statistics and usage information
of the flash filesystem. In the Browser section of the Filesystem web page, you can create files and
folders, upload files, copy and move files, and use TFTP.
Filesystem Statistics
This page shows various statistics and current usage information of the flash filesystem.
To view filesystem statistics:
1. Select Filesystem on the menu
bar. The Filesystem page opens
and shows the current filesystem
statistics and usage.
To compact or format the filesystem:
1. Back up all files as necessary.
2. Select Filesystem on the menubar,
if you are not already in the
Filesystem page.
3. Click Compact in the Actions row.
Note: The compact should not be
needed under normal circumstances as
the system manages this automatically.
4. Back up all files before you perform
the next (Format) step, because all
user files get erased in that step.
5. Click Format in the Actions row.
The configuration is retained and all
files on the filesystem will be destroyed.
Figure 12-1 Filesystem Statistics
Staliflics Brwlse Filesystem Browser I11 / a X Ies1 dir X mum 5'qu Khryles (5120 bylfi) X fileZAm 5,000 Kbytes (5120 byles) X Imam 34 333 Kbytes (35157 bytes) Create File: Directory: Upload File Choose File No file chosen ‘ Upload ‘ Create Creme Copy File Scum: Deslination: Copy Move Source: Destination: Move l TFTF Action: Gel Pm Mode: ASCII Binary Local File: Remote Flle: Host: Purl: TIansl'er
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 102
6. Click OK in the warning window which appears.
Filesystem Browser
To browse the filesystem:
1. Select Filesystem on the menu bar and then Browse at the top of the page. The Filesystem
Browser page opens.
Figure 12-2 Filesystem Browser
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 103
2. Select a filename to view the contents.
3. Click the X next to a filename to delete the file or directory. You can only delete a directory if it
is empty.
4. Enter or modify the following settings:
Note: Changes apply to the current directory view. To make changes within other
folders, select the folder or directory and then enter the parameters in the settings listed
below.
Table 12-3 Filesystem Browser
Filesystem Browser
Settings
Description
Create
File Enter the name of the file you want to create, and then click Create.
Directory Enter the name of the directory you want to create, and then click Create.
Upload File Enter the path and name of the file you want to upload by means of HTTP/
HTTPS or use the Choose File button to select the file, and then click
Upload.
Copy File
Source Enter the location where the file you want to copy resides.
Destination Enter the location where you want the file copied.
After you specify a source and destination, click Copy to copy the file.
Move
Source Enter the location where the file you want to move resides.
Destination Enter the location where you want the file moved.
After you specify a source and destination, click Move to move the file.
TFTP
Action Select the action that is to be performed via TFTP:
Get = a “get” command will be executed to store a file locally.
Put = a “put” command will be executed to send a file to a remote
location.
Mode Select a TFTP mode to use. Choices are:
ASCII
Binary
Local File Enter the name of the local file on which the specified “get” or “put” action is
to be performed.
Remote File Enter the name of the file at the remote location that is to be stored locally
(“get’) or externally (“put”).
Host Enter the IP address or name of the host involved in this operation.
Port Enter the number of the port involved in TFTP operations on which the
specified TFTP get or put command will be performed.
Click Transfer to perform the TFTP transfer.
TCP IP ICMP ARP SMTP TCP Collllgnmtlon Send R515: (5) Enabled O Dasabwu Ack Limit: 3 paEkEIs Send Data: 6* Standard O Expadmad Max Relmus: 12 Max Relmns Syn Ack: 2 Max Timeout: 5n setunds Slalisfits Total Out R515: Total In R515: 5
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 104
Protocol Stack Settings
In the Protocol Stack web page, you can configure TCP, IP, ICMP, SMTP and ARP.
TCP Settings
To configure the TCP network protocol:
1. Select Protocol Stack on the menu bar.
2. Select TCP.
Figure 12-4 TCP Protocol
3. Modify the following settings:
Table 12-5 TCP Protocol Settings
Protocol Stack
TCP Settings
Description
Send RSTs Click Enabled to send RSTs or Disabled to stop sending RSTs. TCP contains six
control bits, with one or more defined in each packet. RST is one of the control bits.
The RST bit is responsible for telling the receiving TCP stack to end a connection
immediately.
Note: Setting the RSTs may pose a security risk.
Ack Limit Enter a number to limit how many packets get received before an ACK gets forced.
If there is a large amount of data to acknowledge, an ACK gets forced. If the sender
TCP implementation waits for an ACK before sending more data even though the
window is open, setting the Ack Limit to 1 packet improves performance by
forcing immediate acknowledgements.
Send Data The Send Data selection governs when data may be sent into the network. The
Standard implementation waits for an ACK before sending a packet less than the
maximum length. Select Expedited to send data whenever the window allows it.
TCP IP ICMP ARP SMTP IP Configuration IP Time to live: 54 hups Mu cast Time to Live: 1 nap;
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 105
4. Click Submit.
IP Settings
To configure the network protocol settings for IP:
1. Select Protocol Stack on the menu bar.
2. Select IP.
Figure 12-6 IP Protocol
3. Modify the following settings:
Table 12-7 IP Protocol Settings
4. Click Submit.
Max Retrans Enter the maximum number of retransmissions of a packet that will be attempted
before failing.
Max Retrans Syn/Ack Enter the maximum number of retransmissions of a SYN that will be attempted
before failing. It is lower than “Max Retrans” to thwart denial-of-service attacks.
Max Timeout Enter the maximum time between retransmissions.
Protocol Stack
IP Settings
Description
IP Time to Live This value typically fills the Time To Live in the IP header. SNMP refers to this
value as "ipDefaultTTL".
Enter the number of hops to be transmitted before the packet is discarded.
Multicast Time to Live This value fills the Time To Live in any multicast IP header. Normally this value
will be one so the packet will be blocked at the first router. It is the number of
hops allowed before a Multicast packet is discarded.
Enter the value to be greater than one to intentionally propagate multicast
packets to additional routers.
Protocol Stack
TCP Settings
Description
TCP IP ICMP ARP SMTP ICMP Configuration sme: CIEnzbled C Dlsakfled
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 106
ICMP Settings
To configure the ICMP network protocol:
1. Select Protocol Stack on the menu bar.
2. Select ICMP.
Figure 12-8 ICMP Protocol
3. Select the appropriate state.
4. Click Submit.
Table 12-9 ICMP Settings
Protocol Stack
ICMP Settings
Description
State The State selection is used to turn on/off processing of ICMP messages.
This includes both incoming and outgoing messages. Choose Enabled or
Disabled.
TCP IP ICMP ARP SMTP ARP Configumm 0 hours ARP Timeuut: 1 minutes 0 secnnds 0 hauls Gratuitous ARP Iimeout: 3 minutes 0 secnnds ARP Cache IP Addvess: MAC Address: Add Age Address Sec MAC Males: type Imerhce 17219100 3 Remove l9 6 0016 76 b19350 Dynamic 7 I721921721Remave] 8 B 00 25118!) c1f3 Dynamic 1 [Remnve Al[|
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 107
ARP Settings
To configure the ARP network protocol:
1. Select Protocol Stack on the menu bar.
2. Select ARP.
Figure 12-10 ARP Protocol Page
3. Modify the following settings:
Table 12-11 ARP Settings
Protocol Stack
ARP Settings
Description
ARP Timeout This is the maximum duration an address remains in the cache.
Enter the time, in hours, minutes and seconds.
Gratuitous ARP Timeout This is the time between sending Gratuitous ARP broadcasts. Enter the
time, in hours, minutes and seconds. The default timeout is 3 minutes.
IP Address Enter the IP address to add to the ARP cache.
TLP IP ICMP ARP SMTP SMTP Conflgumllon Relay A4I(|Iess: Remote Poll: 25
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 108
Note: Both the IP and MAC addresses are required for the ARP cache.
4. Click Submit for ARP or Add after supplying both address fields for ARP cache.
5. Remove entries from the ARP cache, as desired:
Click Remove All to remove all entries in the ARP cache.
OR
Click Remove beside a specific entry to remove it from the ARP cache.
SMTP Settings
SMTP is configuration for a basic SMTP proxy. An SMTP proxy in this sense is a simple
forwarding agent.
Note: Lantronix does not support SMTP AUTH or any other authentication or encryption
schemes for email. Please see Email Settings for additional information.
To configure the SMTP network protocol:
1. Select Protocol Stack on the menu bar.
2. Select SMTP.
Figure 12-12 SMTP
3. Modify the following settings:
Table 12-13 SMTP Settings
4. Click Submit.
MAC Address Enter the MAC address to add to the ARP cache.
Protocol Stack SMTP
Settings
Description
Relay Address Address of all outbound email messages through a mail server. Can contain
either a hostname or an IP address.
Remote Port Port utilized for the delivery of outbound email messages.
Table 12-11 ARP Settings
Protocol Stack
ARP Settings (continued)
Description
IP Address Filter IP Address: NeMmk Mask: CUTIE!“ State The ”7 F‘lterTab‘e \S empty so ALL addvessei ave aHowed
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 109
IP Address Filter
The IP address filter specifies the hosts and subnets permitted to communicate with the XPort Pro
device server. When the filter list is empty, then all IP addresses are allowed.
Note: If using DHCP/BOOTP, ensure the DHCP/BOOTP server is in this list.
To configure the IP address filter:
1. Select IP Address Filter on the menu bar. The IP Address Filter page opens to display the
current configuration.
Figure 12-14 IP Address Filter Configuration
Note: If you enter any filter, be careful to make sure that your network IP address is
covered. Otherwise you will loose access to the XPort Pro unit. You will have to then
access the XPort Pro device server from a different computer to reset the configuration.
2. Enter or modify the following settings:
Table 12-15 IP Address Filter Settings
3. Click Add.
Note: In the Current State table, click Remove to delete any existing settings, as
necessary.
IP Address Filter
Settings
Description
IP Address Enter the IP address to add to the IP filter table.
Network Mask Enter the IP address’ network mask in dotted notation.
Query Port 00er Pm! Server: OOH 00" Current Configuration and Statistics Queiy Port Sums: On (mnmng) In Valid Queries: I35 In Unknown Queries: 124 In Erroneous Packeis: n OIII Queiy Replies: 135 um Errors: 0 L551 Conneclion: 172 19 22950 28683
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 110
Query Port
The query port (0x77FE) is used for the automatic discovery of the device by the DeviceInstaller
utility. Only 0x77FE discover messages from DeviceInstaller are supported. For more information
on DeviceInstaller, see Using DeviceInstaller (on page 22).
To configure the query port server:
1. Select Query Port on the menu bar. The Query Port page opens to display the current
configuration.
Figure 12-16 Query Port Configuration
2. Select On to enable the query port server.
3. Click Submit.
Hardware IIIIB—ll IP Sockets Ping Traceroute Log Memory Buffer Pools Processes Diagnostics: Hardware Current Configumtlon CPU 1y DSTmFX CPU Sp 166 666666 MHz CPU lnxltumlon Cache: 4 000 Kbyles14096 bytes) cPu Duh Cache: 4 000 Kbyles 14096 bytes) RAM 3 000000 Mbytes (3353605 byles) Flash Slze: 16 000000 Mbytes (16777216 mes) Flash Sector Size: 123,000 Kbyles (131072 bytes) Flash Sector Count: 123 Flash ID: 0x1
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 111
Diagnostics
The XPort Pro device server has several tools to perform diagnostics and view device statistics.
These include information on:
Hardware
MIB-II Statistics
IP Sockets
Ping
Traceroute
Log
Memory
Buffer Pools
Processes
Hardware
This read-only page shows the current device’s hardware configuration.
To display hardware diagnostics:
1. Select Diagnostics on the menu bar. The Diagnostics: Hardware page opens and shows the
current hardware configuration.
Figure 12-17 Diagnostics: Hardware
Hurdwule MIBJI IP Socket: Ping mom-m Log Memory Bufler Pool: Plasma MIB-II Network Statistlcs lnteflace Smue Imelface Table flunk! IP Address Table IP Net Tn Media Tile IP meald Gmug P T | ICMP Group TCP smug TCP Cnnnecflnn Table UDP Group UDP Table Sfiem smug
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 112
MIB-II Statistics
The MIB-II Network Statistics page shows the various SNMP-served Management Information
Bases (MIBs) available on the XPort Pro device server.
To view MIB-II statistics:
1. Select Diagnostics on the menu bar and then MIB-II at the top of the page menu. The MIB-II
Network Statistics page opens.
Figure 12-18 MIB-II Network Statistics
2. Click any of the available links to open the corresponding table and statistics. For more
information, refer to the table below:
Table 12-19 Requests for Comments (RFCs)
RFC 1213 Original MIB-II definitions.
RFC 2011 Updated definitions for IP and ICMP.
RFC 2012 Updated definitions for TCP.
RFC 2013 Updated definitions for UDP.
RFC 2096 Definitions for IP forwarding.
Hardware m3." IP 5mm Ping Tlacetoute Log Memory Bum" Pools Procems IP Soc ket 5 Protocol Ran M memmn Won sm- LIDP D 0 17219100199161 2552552552550 YCP D 0 17219105199 21 255 255 255 255 0 USYEN LIDP D 0 17219105199 69 255 255 255 255 0 LIDP D D 172191DD 199 514 17219 39 23 514 ESIAEUSHED YCP D D 172191DD 199 ED 255 255 255 255 [I USYEN um: [I u 172191uu1a§ 30715 17219 22m 5u3277n Emausnao m» u u 172191uu1as 23 255 255 25525“. WEN w» u u 17219100199 22 255 255 2552550 mew mp u r. 17219100192 50 17219 25a 25mm ssmwsneo "manure MIBII IP Socket Ping Tmoomule Log Memory Bufiu Pools Processes Diagnos ‘cs: Ping Host: Coum: Timeout 5 seconds
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 113
IP Sockets
To display open IP sockets:
1. Select Diagnostics on the menu bar and then IP Sockets at the top of the page. The IP
Sockets page opens and shows all of the open IP sockets on the device.
Figure 12-20 IP Sockets
Ping
XPort Pro device server uses 56 bytes of data in a ping packet. Ping size is not configurable.
To ping a remote device or computer:
1. Select Diagnostics on the menu bar and then Ping at the top of the page. The Diagnostics:
Ping page opens.
Figure 12-21 Diagnostics: Ping
2. Enter or modify the following settings:
Hatdwam MIEVII IP Suckels Ping Tracemule Log Memory Bufler Pools Flooesses Diagnostics: Traceroute Hosl: Traceroute Results 1 172 19 (l 1 2 ms
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 114
Table 12-22 Diagnostics: Ping
3. Click Submit. The results of the ping display in the page.
Traceroute
Here you can trace a packet from the XPort Pro unit to an Internet host, showing how many hops
the packet requires to reach the host and how long each hop takes. If you visit a web site whose
pages appear slowly, you can use traceroute to determine where the longest delays are occurring.
To use Traceroute:
1. Select Diagnostics on the menu bar and then Traceroute at the top of the page. The
Diagnostics: Traceroute page opens.
Figure 12-23 Diagnostics: Traceroute
2. Enter or modify the following setting:
Table 12-24 Diagnostics: Traceroute
3. Click Submit. The results of the traceroute display in the page.
Diagnostics: Ping Settings Description
Host Enter the IP address or host name for the device to ping.
Count Enter the number of ping packets the device should attempt to send to the
Host. The default is 3.
Timeout Enter the time, in seconds, for the device to wait for a response from the
host before timing out. The default is 5 seconds.
Diagnostics: Traceroute
Settings
Description
Host Enter the IP address or DNS hostname. This address is used to show the path
between it and the device when issuing the traceroute command.
Halllwale Plllg Memory Diagnostics: Log Mlall lP Sockels Tlacelollle log Buffet Pools Plocoms Configuration Olllpmt Dlsanle Haulwale MIBVII lP Sockets Pillg Tldcelollle Log Memory Bullel Pools Ploceses Diagnoslics: Log Configumion 0|ll|)|ll: Max Lellglll: Severity Level: ‘50 \Kbyles \Debog vl
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 115
Log
Here you can enable a diagnostics log of configuration items:
To use diagnostics logging:
1. Select Diagnostics on the menu bar and then Log at the top of the page. The Diagnostics:
Log page opens.
Figure 12-25 Diagnostics: Log
2. Select the Output type:
Disable (default)
Filesystem
Line <number>
Figure 12-26 Diagnostics: Log (Filesystem)
Hardware MIBVII IP Snake‘s Ping Trscerome Log Memoly Bllfiev Pools Pmcesses Diagnostics: Log Conflgulaflon Olltpul: Sevelily Level: Name v Hardware MIBVII IP Sockets Ping Tracoroms Log Memory i Bufler Pools Processes Diagnostics: Memory Main heap Tom Memory (liylew: 53mm Avoilome Memory limes): 31mm Nllmliei m Fmgmems: 9 Lavges1 Frogmem Av.“ . 3123056 Allocated Blocks: man Nu hel OlAlloLs Failed: n Slams 0K
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 116
Figure 12-27 Diagnostics: Log (Line 1)
3. Enter the Max Length in kilobytes (if filesystem output type is selected).
4. Select the Severity Level (if a line or filesystem output type is selected):
Debug
Information
Notice
Warning
Error
Memory
This read-only web page shows the total memory and available memory (in bytes), along with the
number of fragments, allocated blocks, and memory status.
To display memory statistics:
1. Select Diagnostics on the menu bar and then Memory at the top of the page. The
Diagnostics: Memory page appears.
Figure 12-28 Diagnostics: Memory
Hanlwalo mm." IP Sockm Ping Tracemllle Lag Mommy Elmer Pools Plocossos Diagnostics: Buffer pools Network Slack 5mm Pool Total Free Used MaxUsed Butler Headers 512 51D 2 11 Cluslet Pool Size: 20‘“ 255 254 2 9 Elhemel Drivel Bullet Pool Tolal Flee Used MaxUsed Bllflev Headers 2045 1934 54 70 cm“ PM 1024 950 54 ea Slze: 2048
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 117
Buffer Pools
Several parts of the XPort Pro system use private buffer pools to ensure deterministic memory
management.
To display the buffer pools:
1. Select Diagnostics on the menu bar and then Buffer Pools at the top of the page. The
Diagnostics: Buffer Pools page opens.
Figure 12-29 Diagnostics: Buffer Pools
Processes
The Processes web page shows all the processes currently running on the system. It shows the
Process ID (PID), the percentage of total CPU cycles a process used within the last three
seconds, the total stack space available, the maximum amount of stack space used by the
process since it started, and the process name.
To display the processes running and their associated statistics:
1. Select Diagnostics on the menu bar and then Processes at the top of the page.
Note: The Adobe SVG plug-in is required to view the CPU Load Graph.
Hardware MlB-ll IP Sockets Ping Tracemube Log Memory Burror Pools Processes Diagnostics: Processes PID CPU % Sucklsizl Process Name 2 99.43% 392/2048 Idle Task 3 0 19% 428/4000 LED 4 a 16% 364/2048 Timeout Server 5 0 44% 956/4096 Evenl Sewer 6 0 00% 976/5008 Log 7 0 00% 264/2048 DNS Cache 8 0 01% 484/4096 Elnernel Manager 9 0 00% 448/3008 Snmp Agen| 11 0 00% 324/2048 FTP Sewer 12 0 00% 460/3072 TFTP Sewer 13 0 00% 1812/5120 SyS/og 14 0 00% 2760/13008 H11p1 15 0 00% 2636/13008 H11p2 16 0 00% 2644/13008 H11p3 17 0 00% 644/2512 H1111] 18 0 00% 848/3072 Query Porl (77FE) 19 0 00% 736/6512 Newarkosenal Daemon Pan 1 20 0 10% 1204/8000 Senalr>Network Daemon Pan 1 21 0 04% 668/8000 Accept Mode Daemon Por11 22 u 00% 252/9216 Domed Made Daemon Pan 1 23 0 00% 716/8192 SMTP Chem 24 u 00% 664/5120 LPD Daemon 25 0 00% 304/2512 Telnel CLI Sewer 2G 0 00% 304/2512 SSH CLI Server 27 0 00% 264/10000 Serlal Command \nlerpreter Part 1 Total processor load: 0.57% a , 49% - 50 774% - 75 , 100% CPU Loud (3 second mspsnms)
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 118
Figure 12-30 Processes
System Reboot Device Reboot Restore Factory Dehul‘s Facloly Defaulls Upload New Firmware Choose File No file chosen Upload Name 5th Name: Long Name: Submit Current Configuration Firmware Version: 5 5 u 2R5 Short Name: xporr_pra Long Name: Lantronix XPan Pro
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 119
System Settings
The XPort Pro System web page allows for rebooting the device, restoring factory defaults,
uploading new firmware, configuring the short and long name, and viewing the current system
configuration.
To configure system settings:
1. Select System on the menu bar. The System page opens.
Figure 12-31 System
2. Configure the following settings:
Table 12-32 System
System Settings Description
Reboot Device Click Reboot to reboot the device. The system refreshes and redirects the
browser to the device home page.
Restore Factory Defaults Click Factory Defaults to restore the device to the original factory settings. All
configurations will be lost. The device automatically reboots upon setting back
to the defaults.
Upload New Firmware Click Choose File to locate the firmware file location. Click Upload to install the
firmware on the device. The device automatically reboots upon the installation
of new firmware.
Note: Close and reopen the web manager browser upon a firmware update.
12: Maintenance and Diagnostics Settings
XPort® Pro Embedded Device Server User Guide 120
3. Click Submit.
Name Enter a new Short Name and a Long Name (if necessary). The Short Name
maximum is 32 characters. The Long Name maximum is 64 characters.
Changes take place upon the next reboot.
Note: Additional information about long and short name customization is
available in Short and Long Name Customization on page 136 of Chapter 14:
Branding the XPort Pro Unit.
System Settings
(continued)
Description
XPort® Pro Embedded Device Server User Guide 121
13: Advanced Settings
This chapter describes the configuration of Email, CLI, and XML. It contains the following sections:
Email Settings
Command Line Interface Settings
XML Settings
Email Settings
The XPort Pro allows you to view and configure email alerts relating to the events occurring within
the system. Please see SMTP Settings on page 108 for additional information.
Note: The following section describes the steps to configure Email 1; these steps also
apply to the other Email instances.
Email Statistics
This read-only page shows various statistics and current usage information about the email
subsystem. When you transmit an email, the transmission to the SMTP server gets logged and
displayed in the bottom portion of the page.
1. Select Email on the menu bar. The Email web page appears.
2. Select an email number at the top of the page.
3. Select Statistics. The Email Statistics page for the selected email appears.
4. Repeat above steps as desired, according to additional email(s) available.
EmailZ Email3 Emaild Slallslles Collflgumlloll SolidEIlIall Email 1 - Statistics Senl sllccessfillly: Rellie Not sent due lo exce§ive enols: cam; In uausm u queue. Log [Clear] JZfl 15:49 220 Zputt.1nc.lantxonlx.cun chrusafl: xsm my. Sixvxci, Vazsxun: 5.0.3 Ami-1519 1mm eng.lancrcnxx.cnn ZSD>ZpucL1n:.lancron1x.con Hello [172.19.10UJZSI zso-mm 250-5123 25011-11" zsowrmmms 2507175" zso»xmcxvsnxvscovxs zso-ammm zso-Enmnmma 2504mm: 2507mm! 2507 rlxrs GSSAPI mm 1.091)! zsn»x»lxps=l.nsnl zsu-mm sssux mm mum ZED-AUTH=LOGIN 2507 ruwzsnn zsorxaxcflso 250 UK any. nun: (skuppusumyelmczanxx.Emn) 250 z LEI Skuppusumyfllmcxumx.tnn.. num- TD' 250 2.1.5 skuppusvm‘lfllancxonxx.cum mm 354 Scar: nu) mpuc; and um. v .Sande: ox 250 2 5.:- Duauad m lzu:15:49 own
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 122
Figure 13-1 Email Statistics
Enmil1 Email 2 Email 3 Email-1 Slauincs Collfigllmll I SemlEIImil Email 1 - Configuration To: CC: \ \ mm: \ Reply Ta: ‘ Subject \ \ Message File: Overriding Domain: \— Serve! Pa": ‘25 Local Poll: ‘(Randnrm C‘Uvgeni ()High <2>Nmmai :anw C‘Vevy Low “in CPGmup i ppuned EnmilSeml: Va“ D
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 123
Email Configuration
The XPort Pro device server allows you to view and configure email alerts relating to the events
occurring within the system.
To configure email settings:
1. Select Email on the menu bar, if you are not already at the Email web page.
2. Select an email at the top of the page.
3. Select the Configuration submenu. The Email Configuration page opens to display the
current email configuration.
4. Enter or modify the following settings:
Table 13-2 Email Configuration
Email – Configuration
Settings
Description
To Enter the email address to which the email alerts will be sent. Multiple
addresses are separated by semicolon (;). Required field if an email is to be
sent.
CC Enter the email address to which the email alerts will be copied. Multiple
addresses are separated by semicolon (;).
Note: The Trigger Email
Send option is only supported
in XPort Pro and XPort AR
devices.
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 124
5. Click Submit.
To test your configuration:
a. Send an email immediately by clicking Send Email at the top of the page.
b. Refer back to the Statistics page for a log of the transaction.
6. Repeat above steps as desired, according to additional email(s) available.
From Enter the email address to list in the From field of the email alert. Required field
if an email is to be sent.
Reply-To Enter the email address to list in the Reply-To field of the email alert.
Subject Enter the subject for the email alert.
Message File Enter the path of the file to send with the email alert. This file appears within
the message body of the email.
Overriding Domain Enter the domain name to override the current domain name in EHLO
(Extended Hello).
Server Port Enter the SMTP server port number. The default is port 25.
Local Port Enter the local port to use for email alerts. The default is a random port
number.
Priority Select the priority level for the email alert.
Trigger Email Send Configure these fields to send an email based on a CP Group trigger. The
device sends an email when the specified Value matches the current Group’s
value. The Value field appears once the CP Group is identified.
Email – Configuration
Settings (continued)
Description
Sunni“ Configuration Command Line Interface Statistics Uptilue: TnInl Byles In: Tolnl Bytes 0m: Cnnem Colllleclinlls: ssn Selvel Slflul - Lns: Conneclio unnnw: Total Byles In: TnInl Bytes 0m: Cnnem Connections: Wanmg a days we 20 as U I] Wamng 0 days 19 20 as n u statistics Command Llne Interface canflguratlon Lngln Paswom: Enlble Lnel Plsswuld: Gull Connect Llne: \nnch‘vily Tlrneout: Lnoin scrim: Slate: mm slate: Telnex Farr Talnat Max Sassnons: ssH sum: 8 SH Perl SSH Max snuom: L 1 5 mlnulm Enameu - Disabled ‘Enamed Disabled 23 3 ~Enamed Disabled 22 a Confinumfinn
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 125
Command Line Interface Settings
The Command Line Interface (CLI) web page enables you to view statistics about the CLI servers
listening on the Telnet and SSH ports and to configure CLI settings.
CLI Statistics
This read-only page shows the
current connection status of the CLI
servers listening on the Telnet and
SSH ports. When a connection is
active, the following display:
Remote client information
Number of bytes that have been
sent and received
A Kill link to terminate the
connection
To view the CLI Statistics:
1. Select CLI on the menu bar.
The Command Line Interface
Statistics page appears.
CLI Configuration
On this page you can change CLI settings.
To configure the CLI:
1. Select CLI on the menu and then Configuration at the top of the page. The Command Line
Interface Configuration page appears.
Figure 13-4 CLI Configuration
Figure 13-3 CLI Statistics
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 126
2. Enter or modify the following settings:
Table 13-5 CLI Configuration
3. Click Submit.
Command Line Interface
Configuration Settings
Description
Login Password Enter the password for Telnet access.
Enable Level Password Enter the password for access to the Command Mode Enable level. There is
no password by default.
Quit Connect Line Enter a string to terminate a connect line session and resume the CLI. Type
<control> before any key the user must press when holding down the Ctrl
key. An example of such a string is <control>L.
Inactivity Timeout Set an Inactivity Timeout value so the CLI session will disconnect if no data is
received after the designated time period. Default is 15 minutes. Enter a value
of 0 to disable.
Login String State Select to enable or disable. The login string state controls the display of a
device-specific string when SSH or Telnet connection is established to the CLI.
Login String Enabling the login string state allows the display of the Login string. The login
string cannot exceed 32 characters. By default Login String will be the device
name.
Note: This configuration field appears when Login String State is enabled
above. This Login String setting only applies to SSH or Telnet connections to
the CLI. If the serial line is being used in Command Mode, for CLI access, then
refer to the Line Command Mode section for those applicable settings.
Telnet State Select Disabled to disable Telnet access. Telnet is enabled by default.
Telnet Port Enter the Telnet port to use for Telnet access. The default is 23.
Telnet Max Sessions Maximum number of simultaneous Telnet sessions. The default is 3 and the
maximum is 10.
SSH State Select Disabled to disable SSH access. SSH is enabled by default.
SSH Port Enter the SSH port to use for SSH access. The default is 22.
SSH Max Sessions Maximum number of simultaneous SSH sessions. The default is 3 and the
maximum is 10.
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 127
XML Settings
An XPort Pro device server allows for the configuration of devices by using XML configuration
records (XCRs). You can export an existing configuration for use on other XPort Pro devices or
import a saved configuration file.
On the XML: Export Configuration web page, you can export the current system configuration in
XML format. The generated XML file can be imported later to restore a configuration. It can also be
modified and imported to update the configuration on this XPort Pro unit or another. The XML data
can be exported to the browser window or to a file on the file system.
By default, all groups are selected except those pertaining to the network configuration. This is so
that if you later import the entire XML configuration, it will not break your network connectivity. You
may select or clear the checkbox for any group.
In the XML: Import System Configuration Page you can import a system configuration from an
XML file. The XML data can be imported from a file on the file system or uploaded using HTTP.
The groups to import can be specified by toggling the respective group item or entering a filter
string. When toggling a group item, all instances of that group will be imported. The filter string can
be used to import specific instances of a group. The text format of this string is:
<g>:<i>;<g>:<i>;...
For example, if you only wanted to import the line 1 setting from an XCR, use a filter string of
line:1.
Each group name <g> is followed by a colon and the instance value <i>. Each <g> :<i> value is
separated with a semicolon. If a group has no instance, specify the group name <g> only.
Note: The number of lines available for importing and exporting differ between Lantronix
products. The screenshots in this chapter represent one line, as available, for example,
on an XPort Pro embedded networking module and EDS1100. However, other device
networking products (such as EDS2100, EDS4100, XPort AR, MatchPort AR embedded
networking modules, EDS8/16PS and EDS8/16/32PR) support additional lines.
Export Configuralinn Export sums Import onnfigumu'orr XML: Export Configuration 9 Expmmhmr Expwlmlncalfile Export seem: (use only wnh exlreme (amen) Commenls Linesln Export: ClearAll] [SeleclAII] v 1 v 2 v 3 v 4 v 5 v 5 y 7 y a V9 “10"11412'/13'/14'/15'/1B r console I nelwork Groups ho Export [Clear Alfl [Select/MI but Networkim] V arp I cli I clock I device « dlagnusucs « emawl ¢ elhsmal 9010 4 flpselver 4 m1 Jmflmmn * WSW V W rmerlaoe em 1 ID I \n filter v lme v lpd v ManageLInx , query new I [35 ":mseenal command « srmp ¢ snmp J ssh ¢ ssnurem 4 sh server I 55‘ ¢ syslng v up I lelnel I Ietmlnal « lflpserver « lunnelaccepl ¢ Iunnslcmned ¢ Immeldlswnned J Iunnelmcdem ¢ IunnelDaddrw v Immelsenal I vln r ml \mpon comml Rpm ‘
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 128
XML: Export
Configuration
On this web page you can export
the current system configuration
in XML format.
To export the system
configuration:
1. Select XML on the menu bar.
The XML: Export
Configuration page appears.
2. Enter or modify the following
settings:
Note: Number of lines and
groups available for export
configuration vary between
Lantronix products.
Table 13-7 XML Export Configuration
XML Export
Configuration
Settings
Description
Export to browser Select this option to export the XCR data in the selected fields to a web browser.
Export to local file Select this option to export the XCR data to a file on the device. If you select this option,
enter a file name for the XML configuration record.
Export secrets Only use this with extreme caution. If selected, secret password and key information will
be exported. Use only with a secure link, and save only in secure locations. Check the
Comments checkbox to include additional comment information.
Figure 13-6 XML: Export Configuration
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 129
3. Click Export. The groups display if exporting the data to the browser. If exporting the data to a
local file, the file is stored on the file system.
Note: Most browsers will interpret and display the XML data without the XML tags. To
view the raw XML, choose the view file source feature of your browser.
XML: Export Status
On this page you can export the current system status in XML format. The XML data can be
exported to the browser page or to a file on the file system.
To export the system status:
1. Select XML on menu bar and then Export Status at the top of the page. The XML: Export
Status page appears.
The number of Lines to Export and the specific Groups to Export displayed on your screen
may vary according to your particular product.
2. Enter or modify the following settings:
Lines to Export Select the instances you want to export in the line, LPD, PPP, tunnel, and terminal
groups. Click Clear All to clear all Lines to Export checkboxes. Click Select All to select
all Lines to Export checkboxes.
Groups to Export Check the configuration groups that are to be exported to the XML configuration record.
Click Clear All to clear all Group checkboxes. Click Select All but Networking to select
all the checkboxes available except for the networking-related group checkboxes.
XML Export
Configuration
Settings (continued)
Description
Export leinumiun Expnrt stints lmvnrl Cnnfivumfion XML: Export Status - Export to browser Export (a local tile Llnesmsxpom [cteern] SeledAH « t « netwurk GmupsmExpun C‘earAl‘] SelectAu v arp v nutrerpoot v cpgruup « (p5 « meme 4 emarl I emarltag « mesystem J tux I hardware v nttp v nnptng v rcmp v menace em 1 rp « \pSuLkets v Mne 4 \pd « mmhus‘om‘ J mndbustCn ( "mm” stave server addmonm v rnommsmp , P , server nevmanent pmce‘m ““3” 9°“ I rss v sessmns v ssn I syslog v tcp v telnet « mp v tunnet 4 um: I xsr Expun
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 130
Figure 13-8 XML Export Status
Note: Number of lines and groups available for export vary between Lantronix products.
Table 13-9 XML Export Status
3. Click Export. The groups display if exporting the data to the browser. If exporting the data to a
local file system, the file is stored on the file system.
Note: Most browsers will interpret and display the XML data without the XML tags. To
view the raw XML, choose the view file source feature of your browser.
XML: Export System
Status Settings
Description
Export to browser Select this option to export the XML status record to a web browser.
Export to local file Select this option to export the XML status record to a file on the device. If you
select this option, enter a file name for the XML status record.
Lines to Export Select the instances you want to export in the line, LPD, PPP, tunnel, and terminal
groups. Click Clear All to clear all Lines to Export checkboxes. Click Select All
to select all the Lines to Export checkboxes.
Groups to Export Check the configuration groups that are to be exported into the XML status record.
Click Clear All to clear all group checkboxes. Click Select All to select all group
checkboxes.
Expon Configumiun Expun sums Impufl Configuration XML: Import Configuration lmpon; OCanfigurzlmn fmm Eaema‘ Ne Oconfiguratmn ham leesyste‘m OLme(sHmm slng‘e lme Selnngs on the Fllesystem Exponconfiguration Expansmus lmpmcanfiuumtion XML: Import Configulation Impurl configuration from (entire) memzl XCR file: cmose lee No file chosen Import
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 131
XML: Import Configuration
Here you can import a system configuration from an XML file.
The XML data can be imported from a file on the file system or uploaded using HTTP. The groups
to import can be specified by toggling the respective group item or entering a filter string. When
toggling a group item, all instances of that group will be imported. The filter string can be used to
import specific instances of a group. The text format of this string is: <g>:<i>;<g>:<i>;...
Each group name <g> is followed by a colon and the instance value <i>. Each <g> :<i> value
is separated with a semicolon. If a group has no instance, specify the group name <g> only.
To import a system configuration:
1. Select XML on the menu bar and then Import Configuration at the top of the page. The XML:
Import Configuration web page appears.
Figure 13-10 XML: Import Configuration
2. Click one of the following radio buttons:
Configuration from External file. See Import Configuration from External File on page 131.
Configuration from Filesystem. See Import Configuration from the Filesystem on
page 132.
Line(s) from single line Settings on the Filesystem. See Import Line(s) from Single Line
Settings on the Filesystem on page 134.
Import Configuration from External File
This selection shows a field for entering the path and file name of the entire external XCR file you
want to import. You can also browse to select the XCR file.
Figure 13-11 XML: Import Configuration from External File
Exuon communmon Expon Mu: Import configumuon XML: Import Configuration Impurl cnnfiuuminn frum m: mesysum Fllonama Llnutolmpon: [CleerH [Se‘edA‘fl I 1 I nelwork Whole Gmunslo Import: [thflLALH Wilma] 4m I am I dame ¢ elhamel I «1;. server I nnp server v ID I Ind query pan ‘ snnp ssn chem Sysmfl IErmIna‘ Iunnel connect mnnel Deckmg \sssss m Lm ‘ ImDon ‘ dlagnnsllcs 4 axecule « ««:.««:. has! mp \p me: mmbus vss Snlnp ssh sewer 1w mp 56va mnnm dlscunned Innne‘ senal ‘«‘« on group eman axn an MD amnemmanon un « v a Inler'ace lune Wu sena‘ command mode ««““ ssn 55‘ telnet |unnel mam Iunnel modem xml \mpun mmm‘
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 132
Import Configuration from the Filesystem
This selection shows a page for entering the filesystem and your import requirements – groups,
lines, and instances.
Note: Number of lines and groups available for import configuration vary between
Lantronix products.
Figure 13-12 XML: Import from Filesystem
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 133
1. Enter or modify the following settings.
Figure 13-13 XML: Import Configuration from Filesystem
2. Click Import.
Import Configuration from
Filesystem Settings
Description
Filename Enter the name of the file on the device (local to its filesystem) that contains
XCR data.
Lines to Import Select the lines or network whose settings you want to import. Click the
Select All link to select all the serial lines and the network lines. Click the
Clear All link to clear all of the checkboxes. By default, all line instances
are selected.
Only the selected line instances will be imported in the line, LPD, PPP,
tunnel, and terminal groups.
Whole Groups to Import Select the configuration groups to import from the XML configuration
record. This option imports all instances of each selected group unless it is
one of the Lines to Import.
Note: By default, all groups are checked except those pertaining to the
network configuration; this is so that import will not break your network
connectivity.
You may check or uncheck any group to include or omit that group from
import. To import all of the groups, click the Select All but Networking link
to import all groups. To clear all the checkboxes, click the Clear All link.
Text List Enter a string to import specific instances of a group. The textual format of
this string is:
<g>:<i>;<g>:<i>;...
Each group name <g> is followed by a colon and the instance value <i> and
each <g>:<i> value is separated by a semi-colon. If a group has no
instance, then specify the group name <g> only.
Use this option for groups other than those affected by Lines to Import.
ExponConflgumllon Expun Slams XML: Import Configuration llllpon Linem «mm Igle line seuiugs on me filesysiem: Filellallle Lines lo “upon: [CleavAH] [Salem/w] 1 mka Whale Gmllvsw IIIIIInr': [M] [W] arp E clI E :p gruup devlce dlagnosllcs emawl mama Exstute m ch E hllp .. v "‘7 “N” "“5‘ authsnucalmn un hnp server IEmp D mmrface Ip Ip fiflev hne lpd Managsme E mndhus pup query pun E rss Serial :ummand mud: 5mm E snmp Ssh 53h :llsm ssh server ssl syslug E (cp mum livmma‘ «up sewer mum accept tunnsl canned tunnel dlsmnnstt lurme‘ mudem Iunnel packmg E tunnel senal W m Impufl cunlml
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 134
Import Line(s) from Single Line Settings on the Filesystem
This selection copies line settings from the single line instance in the input file to selected lines.
The import file may only contain records from a single line instance; this is done by selecting a
single Line to Export when exporting the file. The number of Lines to Import and the specific
Whole Groups to Import displayed on your screen may vary according to your particular product.
To modify Single Line Settings on the Filesystem:
Figure 13-14 XML: Import Line(s) from Single Line Settings on the Filesystem
13: Advanced Settings
XPort® Pro Embedded Device Server User Guide 135
1. Enter or modify the following settings:
Table 13-15 XML: Import Line(s) from Single Line Settings
2. Click Import.
Import Line(s) Settings Description
Filename Provide the name of the file on the device (local to its file system) that
contains XCR data.
Lines to Import Select the line(s) whose settings you want to import. Click the Select All link
to select all the serial lines and the network lines. Click the Clear All link
clear all of the checkboxes. By default, all serial line instances are selected.
Whole Groups to Import Select the configuration groups to import from the XML configuration record.
Note: By default, all groups are checked except those pertaining to the
network configuration; this is so that import will not break your network
connectivity.
You may check or uncheck any group to include or omit that group from
import. To import all of the groups, click the Select All but Networking link
to import all groups. To clear all the checkboxes, click the Clear All link.
XPort® Pro Embedded Device Server User Guide 136
14: Branding the XPort Pro Unit
This chapter describes how to brand your XPort Pro device server by using Web Manager and
Command Line Interface (CLI). It contains the following sections on customization:
Web Manager Customization
Short and Long Name Customization
Web Manager Customization
Customize the Web Manager’s appearance by modifying index.html and style.css. The style
(fonts, colors, and spacing) of the Web Manager is controlled with style.css and the text and
graphics are controlled with index.html.
The Web Manager files are hidden and are incorporated directly into the firmware image but may
be overridden by placing the appropriate file in the appropriate directory on the XPort Pro
embedded device server file system.
Web Manager files can be retrieved and overridden with the following procedure:
1. FTP to the XPort Pro device.
2. Make a directory (mkdir) and name it http/config
3. Change to the directory (cd) that you created in step 2. (http/config)
4. Get the file by using get <filename>
5. Modify the file as required or create a new one with the same name
6. Put the file by using put <filename>
7. Type quit. The overriding files appear in the file system’s http/config directory.
8. Restart any open browser to view the changes.
9. If you wish to go back to the default files in the firmware image, simply delete the overriding
files from the file system.
Short and Long Name Customization
Short and long names may be customized in Web Manager according to the directions in System
Settings. The names display in the CLI show command and in the System web page in the Current
Configuration table. The short name is used for the show command. Both names display in the CLI
Product Type field in the following example:
(enable)# show
The long and short names appear in the Product Type field in the following format:
Product Type: <long name> (<short name>)
For example:
(enable)# show XPort
Product Information:
Product Type: Lantronix XPort Pro (XPort)
(hngzllwwaamronix.com/sugpor1/downloads System Rebvat Device ‘ Reboot \ Restore Factory Defaul‘s ‘ Famry Delaulls \ Upload New Firmware Choose Fle No file chosen ‘ Uptoad Name Shofl Name: Long Name: ‘ Submit Cumnl Configuralion Flrlllwam Version: 5 5 0 IRS sum Mam: xpongro Long Name: Lamnmix XPori Pm
XPort® Pro Embedded Device Server User Guide 137
15: Updating Firmware
Obtaining Firmware
Obtain up-to-date firmware and release notes for the unit from the Lantronix web site
(http://www.lantronix.com/support/downloads) or by using anonymous FTP (ftp://ftp.lantronix.com/).
Loading New Firmware
Reload the firmware using the device web manager Filesystem page.
To upload new firmware:
1. Select System in the menu bar. The System page appears.
Figure 15-1 Update Firmware
2. Click Choose File to browse to the firmware file.
3. Highlight the file and click Open.
4. Click Upload to install the firmware on the XPort Pro device server. The device automatically
reboots on the installation of new firmware.
5. Close and reopen the web manager Internet browser to view the device’s updated web pages.
Note: Alternatively, firmware may be updated by sending the file to the XPort Pro
embedded device server over a FTP or TFTP connection.
hug/lwww.Iamronix.com/supgon hng://www.Iamronix.com/abom/contacLhtml
XPort® Pro Embedded Device Server User Guide 138
A: Technical Support
Lantronix offers many resources to support our customers and products at
http://www.lantronix.com/support. For instance, you can ask a question, find firmware downloads,
access the FTP site and search through tutorials. At this site you can also find FAQs, bulletins,
warranty information, extended support services and product documentation.
To contact technical support or sales, look up your local office at
http://www.lantronix.com/about/contact.html. When you report a problem, please provide the
following information:
Your name, company name, address, and phone number
Lantronix product and model number
Lantronix MAC address or serial number
Firmware version and current configuration
Description of the problem
Status of the unit when the problem occurred (please try to include information on user and
network activity at the time of the problem)
XPort® Pro Embedded Device Server User Guide 139
B: Binary to Hexadecimal Conversions
Many of the unit’s configuration procedures require you to assemble a series of options
(represented as bits) into a complete command (represented as a byte).
The resulting binary value must be converted to a hexadecimal representation.
Use this chapter to learn to convert binary values to hexadecimals or to look up hexadecimal
values in the tables of configuration options. The tables include:
Command Mode (serial string sign-on message)
AES Keys
Converting Binary to Hexadecimal
Conversion Table
Hexadecimal digits have values ranging from 0 to F, which are represented as 0-9, A (for 10), B
(for 11), etc. To convert a binary value (for example, 0100 1100) to a hexadecimal representation,
treat the upper and lower four bits separately to produce a two-digit hexadecimal number (in this
case, 4C). Use the following table to convert values from binary to hexadecimal.
Table B-1 Binary to Hexadecimal Conversion Table
Decimal Binary Hex
0 0000 0
1 0001 1
2 0010 2
3 0011 3
4 0100 4
5 0101 5
6 0110 6
7 0111 7
8 1000 8
9 1001 9
10 1010 A
11 1011 B
12 1100 C
13 1101 D
14 1110 E
15 1111 F
E Calculator Edlt View Hep OHex ®Dsc one! OBin ®Degees ORadm OElads r r Iswl IF-EH [ H 1] [MC] [ 7 H a II a II I HWHAMI IdeEwH h] [MR] l '1 H 5 ll 5 H ‘ HDIHXul IshHWHst [MS] [1 H2l|31| *HhhHNdl : lmllmlldl [Ml " H'l'H » H * H ' H'ml Dar » B E n E F E Calculator Edit View Help ‘ n DHex ODEC ODD! OBi’I (9de ODvad OWold OHM Elm DH» '— |_ “[3 [5“] FE l I n 1 J [m] [ v H a H a II , lelAndl E] EEEDII E] IIIEEJE] [E EIDQEME III-[3E
B: Binary to Hexadecimal Conversions
XPort® Pro Embedded Device Server User Guide 140
Scientific Calculator
Another simple way to convert binary to hexadecimal is to use a scientific calculator, such as the
one available on the Windows operating systems. For example:
1. On the Windows Start menu, click Programs > Accessories > Calculator.
2. On the View menu, select Scientific. The scientific calculator appears.
3. Click Bin (Binary), and type the number you want to convert.
4. Click Hex. The hexadecimal value appears.
XPort® Pro Embedded Device Server User Guide 141
C: Compliance
(According to ISO/IEC Guide 17050-1, 17050-2 and EN 45014)
Manufacturer’s Name & Address:
Lantronix, Inc. 7535 Irvine Center Drive, Suite 100, Irvine, CA 92618 USA
Product Name Model: XPort® Pro Embedded Device Server
Conform to the following standards or other normative documents:
Radiated and Conducted Emissions
CFR Title 47 FCC Part 15, Subpart B and C
Industry Canada ICES-003 Issue 4 2004
CSPR 22: 2005 Information Technology Equipment
VCCI V-3/2007.04
AS/NZS CISPR 22: 2006
EN55022: 1998 + A1: 2000 + A2: 2003
EN61000-3-2: 2000 + A2: 2005
EN61000-3-3: 1995 + A1: 2001 + A2: 2005
Immunity
EN55024: 1998 + A1: 2001 + A2: 2003
Direct & Indirect ESD
EN61000-4-2: 1995
RF Electromagnetic Field Immunity
EN61000-4-3: 2002
Electrical Fast Transient/Burst Immunity
EN61000-4-4: 2004
Surge Immunity
EN61000-4-5: 2006
RF Common Mode Conducted Susceptibility
EN61000-4-6: 1996
Power Frequency Magnetic Field Immunity
EN61000-4-8: 1994
Voltage Dips and Interrupts
EN61000-4-11: 2004
Safety
UL 60950-1
CAN/CSA-C22.2 No. 60950-1-03
EN 60950-1:2001, Low Voltage Directive (73/23/EEC)
hug www.Iamronix.com/Iegal/rohs/
C: Compliance
XPort® Pro Embedded Device Server User Guide 142
Manufacturer’s Contact
Lantronix, Inc.
7535 Irvine Center Drive, Suite 100
Irvine, CA 92618 USA
Tel: 949-453-3990
Fax: 949-453-3995
RoHS, REACH and WEEE Compliance Statement
Please visit http://www.lantronix.com/legal/rohs/ for Lantronix's statement about RoHS, REACH
and WEEE compliance.
XPort® Pro Embedded Device Server User Guide 143
Index
A
Accept Mode 37
Accept Mode 43
Additional Documentation 15
Additional TCP Server Port 100
Address
Ethernet 20
Hardware 20, 21
IP 20
MAC 20, 21
Advanced Settings
Email Configuration 123
XML Configuration 127
Advanced Settings 121
AES 17
Allow Firmware Update 72
Allow TFTP File Creation 71
Allow XCR Import 72
Applications 17
ARP 17
ARP Settings 107, 108
ASCII 96
Auth Type 78
Authentication Mode 68
Authentication Type 78
Authority 94
AutoIP 17
B
Banner 81
Bar Code 21
Bin 140
Binary 61, 81, 139
Binary to Hexadecimal Conversions 139
Bit 61, 64
Block Network 45, 49
Block Serial 49
Block Serial Data 45
BOOTP 17, 30
Branding 136
Web Manager Customization 136
Break Duration 57
C
Challenge Handshake Authentication Protocol 67
CHAP 67
CLI 18
CLI Configuration 125
CLI Statistics 125
Command Line Interface Settings 125
Command Mode 20
Command-Line Interface 18
Common Name 94
Compliance 141
Configurable Pin Manager 59
Configuration Methods 20
Configuration Settings 66
Configured As 61
Connect Mode 37
Connect Mode 46
Connection Value 45
Convert Newlines 81
Count 114
CP 61
CP Output 45, 49
CPM 60
Create New Keys 89
Create New Self-Signed Certificate 94
Custom Groups 59
D
Default Gateway 31
Default Groups 59
Default Server Port Numbers 20
Device Control 18
Device Details 22
Device Details Summary 22
Device Management 19
Device Status 25
DeviceInstaller 22
DeviceInstaller 22
DHCP 17, 31
Diagnostic Toolset 19
Diagnostics 111
Buffer Pools 117
Hardware 111
IP Sockets 113
Memory 116
MIB-II Statistics 112
Ping 113
Processes 117
Diagnostics Log 115
Diagnostics Settings 101
Disconnect Mode 37
Disconnect Mode 51
Disconnection Value 45
DNS 17, 31
XPort® Pro Embedded Device Server User Guide 144
DNS Settings 66
E
Echo 56, 57
Email on Connect 45, 49
Email on Disconnect 45, 49
Enable Level Password 126
Encryption 19
End of Job 81
Enterprise-Grade Security 18
EOJ String 81
Ethernet 16
Ethernet address 20
Evolution OS 17
Exit Connect Menu 56, 57
Expires 94
Export Secrets 128
Export to Browser 128, 130
Export to Local File 128, 130
F
File System
Browser 102
Statistics 101
Filename 133, 135
Filesystem 27, 137
Firmware 137
Flush Serial Data 45, 49
Formfeed 81
FreeRADIUS 92
FTP 17, 137
FTP Configuration 70
G
Groups to Export 129, 130
H
Hardware Address 20, 21
Hardware Address 20
Help Area 26
Hex 140
Hexadecimal 139
Host 48, 103, 114
Host Configuration 57
Host Configuration 57
Host IP Promotion 51
Hostname 31
HTTP 17
Authentication 77
Change Configuration 75
Configuration 73
Statistics 73
I
I/O 61
ICMP 17
ICMP Settings 106
Import Configuration from External File 131
Import Configuration from the Filesystem 132
Import Line(s) from Single Line Settings on the
Filesystem 134
Inactivity Timeout 126
Interface Signals 17
IP 17
Address Filter 109
Settings 105
ISO/IEC Guide 141
K
Key Features 16
Key Length 94
Key Type 84, 89
L
Label 21
Lantronix Discovery Protocol 21
Level 61
Line 1
Configuration 34
Statistics 33
Line Settings 33
Lines to Export 129, 130
Lines to Import 133, 135
Loading New Firmware 137
Local IP Address 68
Local Port 45, 48
Logic 61
Login Connec