Download Print this page

Digi transport User Manual

Digi transport User Manual

Hide thumbs Also See for transport:

User manual (689 pages)

Table Of Contents

Table of Contents

Advertisement

Quick Links

Download this manual

Digi TransPort

User Guide

Table of Contents

Advertisement

Table of Contents

Troubleshooting

Need help?

Need help?

Do you have a question about the transport and is the answer not in the manual?

Questions and answers

Summary of Contents for Digi transport

Page 1 Digi TransPort User Guide...
Page 2 Information in this document is subject to change without notice and does not represent a commitment on the part of Digi International. Digi provides this document “as is,” without warranty of any kind, expressed or implied, including, but not limited to, the implied warranties of fitness or merchantability for a particular purpose.
Page 3: Customer Support
If you need assistance, contact technical support: Telephone (8:00 am - 5:00 pm—U.S. Central Time): 866.765.9885 toll-free U.S.A. & Canada 801.765.9885 Worldwide Fax: 952.912.4952 Online: www.digi.com/support/eservice/ Mail: Digi International 11001 Bren Road East Minnetonka, MN 55343 USA Digi TransPort User Guide...
Page 4: Table Of Contents
About the Digi TransPort command line interface Supported command types Required software for using the command line Connect to the TransPort router from a PC Log in from the command line Commands and the active port When commands take effect...
Page 5 Network Services page Network Services parameters Configure DNS servers and Dynamic DNS Configure DNS Servers Configure Dynamic DNS Configure IP routing and forwarding View the TransPort routing table Supported routes IP Routing parameters Static routes Default Route n parameters RIP parameters Interfaces >...
Page 6 Queue Profiles parameters Configure time bands About time bands Enable and disable time bands for a PPP instance Timeband page parameters Related CLI commands Configure advanced network settings About advanced network settings Advanced Network Settings descriptions Digi TransPort User Guide...
Page 7 Firewall configuration RADIUS parameters TACACS+ parameters Advanced security settings Command filters Configure position (GPS) settings About the GPS module on TransPort routers GPS parameters Related CLI commands Configure GPS support for the GOBI3000 module Manage applications Manage ScriptBasic applications Manage Python applications...
Page 8 Execute a command Save configuration settings to a file Reboot the router Troubleshooting Troubleshooting Resources Download the debug.txt file Cannot open the web interface Cannot log into the web interface Troubleshoot the LTE-MIMO antenna orientation Glossary Digi TransPort User Guide...
Page 9: Introduction To Digi Transport Routers
(with multi SSID) / client, USB, serial, VDSL, 1-, 2- or 4-port Ethernet switch with VLAN. Additional configuration options include multiple serial ports (async or sync), GPS or telemetry I/O. The Digi TransPort family offers an advanced routing, security and firewall feature set including stateful inspection firewall and integrated VPN. Enterprise class protocols incorporate BGP, OSPF and VRRP+, a patented technology built upon the popular VRRP failover standard providing true auto-sensing, auto-failure and auto-recovery of any line drop.
Page 10 TransPort WR 11 TransPort WR 11 Digi TransPort WR11 is a full-featured, cellular router offering the flexibility to scale from basic connectivity applications to enterprise class routing and security solutions. With its high performance architecture, Digi TransPort WR11 is designed for Wide Area Network connectivity including 2.5G, 3G and 4G networks.
Page 11: Transport Wr
TransPort WR21 TransPort WR21 Digi TransPort WR21 is a full-featured, cellular router offering the flexibility to scale from basic connectivity applications to enterprise class routing and security solutions. With its high performance architecture, Digi TransPort WR21 is designed for Wide Area Network connectivity including 2.5G/3G/4G networks.
Page 12: Transport Wr31
TransPort WR31 TransPort WR31 Digi’s TransPort WR31 is an intelligent 4G LTE router designed for critical infrastructure and industrial applications. 0 V D 9 - 3 Key features of the TransPort WR31 include: • Global HSPA+ and 4G LTE support and certification on major carrier networks around the world •...
Page 13 • 5 year warranty standard—no additional cost The TransPort WR31 provides a secure, reliable connection to industrial controllers, process automation equipment, and smart grid assets on third party sites or remote locations. This drop- in connectivity gives operators a way to reduce the cost of downtime and service calls and also increase revenue by bringing distributed sites online faster.
Page 14: Transport Wr 41
Client, USB, serial, and Ethernet, as well as a variety of configuration options including multiple serial ports (async or sync), GPS or I/O telemetry modules. The Digi TransPort family also offers an advanced routing, security and firewall feature set including stateful inspection firewall and integrated VPN. Enterprise class protocols incorporate BGP, OSPF and VRRP+, a patented technology built upon the popular VRRP failover standard providing true auto sensing, auto failure and auto recovery of any line drop.
Page 15: Transport Wr44 / Wr44 R
(async or sync), GPS or I/O telemetry modules. The Digi TransPort family offers an advanced routing, security and firewall feature set including stateful inspection firewall and integrated VPN. Enterprise-class protocols incorporate BGP, OSPF and VRRP+, a patented technology built upon the popular VRRP failover standard providing true auto sensing, auto failure and auto recovery of any line drop.
Page 16 TransPort WR44 / WR44 R Digi TransPort WR routers are available on the following networks: Model GPRS EDGE UMTS HSUPA EVDO / 1xRTT WR-44-E  WR-41-G  WR44-U  WR44-C      WR44-U5    ...
Page 17: Transport Wr44 Rr
Positive Train Control (PTC), wayside device communications and on- board passenger Internet access. Digi TransPort WR44 RR provides a reliable primary high speed cellular network connection or can act as a secure backup connection to the existing railroad network. It features a flexible communications design with 3G/4G multicarrier GSM/CDMA cellular, plus integrated Wi-Fi b/g/n access point, serial and 4-port Ethernet switch.
Page 18: Hardware
Hardware This section describes hardware specifications and features of TransPort products, presents pinout information, and covers regulatory and safety statements and certifications. • TransPort WR11 hardware on page 19 • TransPort WR21 hardware on page 29 • TransPort WR31 hardware on page 36 •...
Page 19: Transport Wr11 Hardware
TransPort WR11 hardware TransPort WR11 hardware TransPort WR11 EVDO model hardware features Digi TransPort User Guide...
Page 20 Off: Poor or No signal. Place the device in a location where it gets a better signal. Amber: Fair Green: Good • Power LED Off: No power Green: TransPort device is powered 4. Cellular antenna connector: This SMA female connector connects the device’s primary cellular antenna. Digi TransPort User Guide...
Page 21 TransPort WR11 hardware TransPort WR11 HSPA+ model hardware features 1. LAN port: This Ethernet port connects the device to a 10/100 base-T Local Area Network (LAN). The port is capable of auto-sensing for speed and wiring, so it can accept both straight- through or cross-over cable connections.
Page 22 5. Cellular antenna connector: This SMA female connector connects the device’s primary cellular antenna. 6. SIM Sockets: SIM 1 and SIM 2 are for use with the Subscriber Identification Module(s) (SIMs). Digi TransPort User Guide...
Page 23 TransPort WR11 hardware TransPort WR11 LTE-MIMO hardware features Digi TransPort User Guide...
Page 24 POWER LED: Off: No power Green: TransPort device is powered 4. SIM door: Encloses the SIM sockets. The SIM door must be opened to install the SIM cards. For installation details, refer to the Quick Start Guide that came with your device.
Page 25 (LAN). The port is capable of auto-sensing for speed and wiring, so it can accept both straight- through or cross-over cable connections. 2. Power cord input: This locking power connector connects the device to a power source. The connector should be inserted and rotated to lock in place. Digi TransPort User Guide...
Page 26 POWER LED: Off: No power Green: TransPort device is powered 4. SIM door: Encloses the SIM sockets. The SIM door must be opened to install the SIM cards. For installation details, refer to the Quick Start Guide that came with your device.
Page 27 TransPort WR11 hardware TransPort WR11 hardware specifications Specification Category Value General features Dimensions (L x W x H) 3.9” x 5.2” x 1.3” (10 cm x 13.1 cm x 3.2 cm) Weight 0.85 lbs. Cellular EDGE 850, 900, 1800, 1900 MHz...
Page 28 UL 60950-1 2nd Ed. Revised 2011-12- CSA C22.2 No. 60950-1 -07 + A1:2011 Mobile certifications-GSM AT&T & PTCRB Mobile certifications- Sprint & Verizon EVDO Mobile certifications-LTE AT&T; Verizon; PTCRB Wireless carrier Certified by most major carriers. certifications Digi TransPort User Guide...
Page 29: Transport Wr21 Hardware
TransPort WR21 hardware TransPort WR21 hardware TransPort WR21 front panel features SIGNAL POWER SERVICE WWAN 1. SIM/R-UIM sockets (SIM card models only): SIM 1 and SIM 2 are for use with the Subscriber Identification Module(s) (SIMs) or Removable User Identification Module(s) (R-UIMs).
Page 30 TransPort WR21 hardware Reset the TransPort WR21 1. Turn the router on and wait 15 seconds for the router to complete its initialization process. 2. Press and hold the reset button gently for 5 seconds. After this time, the router will automatically re-boot and display a pattern of alternating LEDs flashing followed by the normal boot sequence.
Page 31 5. Power cord input: This socket connects the router to a power source using either the supplied Power supply or DC power cord. The barrel plug connector can be secured by rotating it by 90 degrees once installed into the Digi TransPort router. 6. Primary cellular (WWAN) antenna connector: This SMA female connector connects the router’s primary cellular antenna.
Page 32 TransPort WR21 hardware TransPort WR21 serial pinout WWAN WWAN SECONDARY PRIMARY SERIAL 0 9-30VDC LAN 0 LAN 1 2A MAX Pin 1 Pin 9 SERIAL 0 RS-232 pinout Pin # Direction RS232 DCE Description Data Carrier Detect Receive Data Transmit Data...
Page 33 • For true RS485 mode (2-wire half-duplex mode), the TD+ and RD+ pair and TD- and RD- pair should be connected together. • The CTS and RTS signals for optional and not normally needed for RS485. Digi TransPort User Guide...
Page 34 TransPort WR21 hardware TransPort WR21 hardware specifications Category Specification Value General features Dimensions (L x W x H) 3.9” x 5.2” x 1.3” (10 cm x 13.1 cm x 3.2 Weight 0.85 lbs. Other Standard dual SIM (SIM protection cover...
Page 35 Certified by most major carriers. See Certifications www.digi.com for current listing. • UL 60950 Safety • CSA 22.2 No. 60950 • EN60950 • CE, FCC Part 15 Class B Emissions / Immunity • AS/NZS CISPR 22 • EN55022 Class A Digi TransPort User Guide...
Page 36: Transport Wr31 Hardware
TransPort WR31 hardware TransPort WR31 hardware TransPort WR31 hardware features 0 V D 9 - 3 Digi TransPort User Guide...
Page 37 39. 7. Power connector: A pluggable connector that connects the router to a power source using either the separately available power supply: Digi part number 76000736, or a DIN rail power supply. 8. WWAN primary connector: This SMA male connector connects the router’s primary cellular antenna.
Page 38 TransPort WR31 digital and analog inputs and outputs TransPort WR31 mounting options The TransPort WR31 can be mounted on a DIN rail, directly to a wall, or in a NEMA enclosure. For wall-mounting or NEMA enclosure installation, purchase the TransPort WR31 Wall Mount Bracket (Digi part number 76000963) and NEMA enclosure equipment, such as the NEMA enclosure, mounting plate, special cabling, and cable glands.
Page 39 TransPort WR31 hardware TransPort WR31 serial pinout Pin 9 Pin 1 0 V D 9 - 3 Digi TransPort User Guide...
Page 40 • For true RS485 mode (2-wire half-duplex mode), the TD+ and RD+ pair and TD- and RD- pair should be connected together. • The CTS and RTS signals for optional and not normally needed for RS485. Digi TransPort User Guide...
Page 41 TransPort WR31 hardware TransPort WR31 digital and analog inputs and outputs The TransPort WR31 has an input/output connector with two digital input/output connections, and a single analog input connection. I/O connector pin assignments The following figure and table shows the I/O connector, pin assignments, and the signals for each pin. Pin 5 Pin 1 Pin #...
Page 42 TransPort WR31 hardware TransPort WR31 digital input/output: representative circuit WR31_3v3 Pull up Enable Signal Digital Input DIGITAL INPUT Digital Output Enable DIGITAL RETURN TransPort WR31 analog input: representative circuit Analog Select Signal Current Loop Protector 200 Ohm Current Loop Signal...
Page 43: Digital Output
External Contact (Door Contact, etc.) DIGITAL INPUT Digital Input DIGITAL RETURN Digital output The wiring diagram assumes a current-limiting resistor provided by installation or connected device is in use. DIGITAL INPUT Digital Output Enable DIGITAL RETURN Digi TransPort User Guide...
Page 44 Rated Input Voltage -0.2 Rated Input Current -1.0 Pull-Up Resistance 10 k Ohms Digital input specifications • This input is a non-inverting Schmitt-trigger input. • The default state at power-up with no voltage applied is LOW. Digi TransPort User Guide...
Page 45 TransPort WR31 hardware Specification UNITS + Threshold - Threshold Input impedance Ohms Digital output • This output is an open-collector, sinking driver output. • The default state at power-up is OFF. Specification UNITS Sink Current Pull‐up Voltage Digi TransPort User Guide...
Page 46 Analog input specifications Specification UNITS Resolution BITS Accuracy Rated Input Voltage ‐0.2 Rated Input Current Voltage input mode (default) Specification UNITS Input Voltage -0.2 10.25 Input Impedance 291 K Ohms Current loop mode Specification UNITS Minimum Input Voltage Load Resistance Ohms Digi TransPort User Guide...
Page 47 TransPort WR31 hardware TransPort WR31 hardware specifications Category Specification Value • Software-Defined Multi-Carrier (Verizon, AT&T, and 3G/4G LTE LTE-North America(L5) Sprint) Specifications • 700/850/1700(AWS)/1900 MHz • 2G/3G GSM fall back to850/900/1700AWS/1800/ 1900/2100 MHz • 2G/3G CDMA fall back to 800/1900 MHz •...
Page 48 • System (user-programmable LED) Enclosure Aluminum Mounting DIN rail, wall, shelf mount, or NEMA enclosure mount Power requirements Power input 9-30VDC Power connector Screw down removable terminal block Power consumption Typical 4 W (Max 6 W) Digi TransPort User Guide...
Page 49 • ANSI/ISA-12.12.01-2015 • CAN/CSA C22.2 NO.213-15 • EN 60079-0:2012+A11:2013 • EN 60079-15:2010 • See the TransPort WR31 Hazardous Locations User Guide, Digi part number 90001490. Ordinary Locations: • UL 60950-1, 2nd Edition, 2014-10-14 • Emissions/Immunity • FCC Part15 Class B •...
Page 50: Transport Wr41 Hardware
TransPort WR41 hardware TransPort WR41 hardware TransPort WR41 front panel features 1. USB host connector: The USB host connector may be used to connect compatible USB 2.0 client devices such as memory sticks, and serial adapters. The total current available to power USB devices is 0.5A.
Page 51 11.Primary Wi-Fi antenna connector (Wi-Fi models only): This SMA connector is used to connect the router’s primary Wi-Fi antenna. 12.SIM / R-UIM Sockets (SIM card models only): SIM 1 and SIM 2 are for use with the Subscriber Identification Module(s) (SIMs) or Removable User Identification Module(s) (R-UIMs). Digi TransPort User Guide...
Page 52 TransPort WR41 hardware TransPort WR41 rear panel features WWAN WWAN SECONDARY PRIMARY 9-48VDC SERIAL 0 2A MAX WWAN WWAN PRIMARY 9-48VDC SERIAL 0 Digi TransPort User Guide...
Page 53: Reset Button
TransPort WR41 hardware TransPort WR41 under-unit features Front of unit Rear of unit Reset button The reset button allows the user to return the router to its factory default settings. It is recessed [to avoid accidental reset], and can be accessed via a small 2.5mm hole located on the underside of the router.
Page 54 TransPort WR41 hardware TransPort WR41 additional hardware features ANT. ANT. (AUX.) (MAIN) 9-48VDC ASY 0 2A MAX SERIAL 1 SERIAL 1 SERIAL 2 SERIAL 3 Option 1: ASY Serial Port Option 2: ASY Serial Port (3x) SERIAL 1 Option 4: GPS...
Page 55 11.DialServ: This RJ11/FXS connection converts a PSTN analog modem to a RS-232 serial signal. For more information on the Telemetry 1, Telemetry 2, and the Fleet I/O Interfaces please see the product specific user’s guides, available on www.digi.com on the TransPort WR41 product Resources page. Digi TransPort User Guide...
Page 56 DB 25 Pin# Transmit Data Receive Data Ready To Send Clear To Send Data Set Ready Ground Data Carrier Detect Transmitter Clock Receiver Clock Data Terminal Ready Ring Indicate External Transmitter Clock 1 With respect to Digi routers Digi TransPort User Guide...
Page 57 Asynchronous port (ASY 0) pinout ANT. ANT. 9-48VDC ASY 0 Pin 1 Pin 8 ASY 0 Pin # Direction RS232 DCE Description Ready To Send Data Terminal Ready Receive Data Ground Transmit Data Data Carrier Detect Clear To Send Digi TransPort User Guide...
Page 58 TransPort WR41 hardware TransPort WR41 hardware specifications Category Specification Value General features Dimensions (L x W x H) 4.7” x 6.8” x 1.3” (12 cm x 17.3 cm x 3.2 cm) Weight 1.08 lb (0.49Kg) Other Standard dual SIM (SIM protection cover option) •...
Page 59 Mobile Certifications- CDMA/ EV-DO • CDG TIA/EIA-98-E Wireless Carrier Certified by most major carriers. See Certifications www.digi.com for current listing. • 2004/104/EC Vehicle Related Certifications • 2005/49/EC • 2005/83/EC • 2006/28/EC • 72/245/EEC • ISO7637-2 Class C Digi TransPort User Guide...
Page 60: Transport Wr44 / Wr44 R Hardware
TransPort WR44 / WR44 R hardware TransPort WR44 / WR44 R hardware TransPort WR44 enclosure features TransPort WR44 1. Commercial enclosure 2. Mounting feet TransPort WR44 R 1. Rugged enclosure 2. Mounting tabs Digi TransPort User Guide...
Page 61 TransPort WR44 / WR44 R hardware TransPort WR44 front panel features TransPort WR44 models with cellular interface TransPort WR44 models without cellular interface Digi TransPort User Guide...
Page 62 TransPort WR44 / WR44 R hardware 1. USB host connector: The USB host connector may be used to connect compatible USB 2.0 client devices such as memory sticks, and serial adapters. The total current available to power USB devices is 0.5A.
Page 63 Note The power supply has a twist-lock connector which can be secured by rotating it 90 degrees once installed into the TransPort router. 6. 11-58VDC (Aux): This socket can be used to connect the router to an alternative 11-58VDC power supply (not supplied) using a fused power cable which can be purchased separately.
Page 64 TransPort WR44 / WR44 R hardware TransPort WR44 under unit features TransPort WR44 [Front of Unit] [Rear of Unit] Digi TransPort User Guide...
Page 65 TransPort WR44 / WR44 R hardware TransPort WR44 R [Front of Unit] [Rear of Unit] 1. Mounting holes. 2. SIM slot cover plate mounting hole. 3. Reset button: The reset button allows the user to return the router to its factory default settings.
Page 66 TransPort WR44 / WR44 R hardware TransPort WR44 additional hardware features WWAN PRIMARY WIFI SECONDARY WWAN SECONDARY WIFI PRIMARY 11-58VDC 1.3A MAX AUX. MAIN SERIAL 0 LAN3 LAN2 LAN1 LAN0 SERIAL 1 SERIAL 3 SERIAL 2 SERIAL 1 Option 1: ASY Serial Port (3x)
Page 67 TransPort WR44 / WR44 R hardware 1. ASY serial port (3x): Provides three additional asynchronous RS232 serial ports using RJ45 connectors. 2. SYN/ASYN serial port: Provides an X.21/RS422/RS232 synchronous / asynchronous serial port using a DB25 connector. 3. GPS antenna connector (GPS models only): Provides GPS capabilities using an SMA male connector.
Page 68 TransPort WR44 / WR44 R hardware TransPort WR44 / WR44 R serial pinout RS-232 port Pin Outs Description RS232 signal Direction DB 25 Pin# DB 9 Pin# RJ45 Pin # Transmit Data Receive Data Ready To Send Clear To Send...
Page 69 TransPort WR44 / WR44 R hardware TransPort WR44 / TransPort WR44 R hardware specifications Category Specification Value General features Dimensions (L x W x H) 5.7” x 8.3” x 1.6” (145 mm x 210 mm x 40 mm) Weight 1.98 lb (0.9Kg) Other Standard dual SIM (SIM protection cover option);...
Page 70 TransPort WR44 / WR44 R hardware Category Specification Value • Approvals Emissions/Immunity • FCC Part 15 Class B • AS/NZS CISPR 22 • EN55024 • EN55022 Class B (WR44 models with VDSL are Class A) • UL 60950 Safety •...
Page 71: Transport Wr44 Rr Hardware
TransPort WR44 RR hardware TransPort WR44 RR hardware TransPort WR44 RR enclosure features 1. Rugged Enclosure 2. Mounting Tabs Digi TransPort User Guide...
Page 72 TransPort WR44 RR hardware TransPort WR44 RR front panel features 1. POWER LED: • Off: No power • Green: TransPort device is powered 2. LAN (0, 1, 2, 3) LED: Illuminates steadily when there is a network connection to the LAN port and flashes when data is transmitted or received.
Page 73 TransPort WR44 RR hardware TransPort WR44 RR rear panel features 1. Primary cellular (WWAN) antenna connector: This TNC female connector is used to connect the router’s primary cellular antenna. 2. Primary Wi-Fi (WLAN) antenna connector (Wi-Fi models only): This TNC male connector is used to connect the router’s secondary Wi-Fi antenna.
Page 74: Pin Locations
TransPort WR44 RR hardware TransPort WR44 RR connectors and pinouts Pin locations 4 pin connector pin locations 8-pin connector pin locations Digi TransPort User Guide...
Page 75: Power Connector
TransPort WR44 RR hardware Power connector The power connector is an M12-4 pin, A Coded connector. Pinout is as follows: Signal Power +ve GPIO 0 Power -ve GPIO 1 Serial connector The serial connector is an M12-5 pin, A Coded connector. Pinout is as follows:...
Page 76 TransPort WR44 RR product page. • To view available accessories, including cables and antennas for the Digi TransPort WR44 RR, go to the Models tab for the TransPort WR44 RR product page and click View Accessories. Digi TransPort User Guide...
Page 77: Lte Specifications
(L6) Fall back 2G/3G fall back to 850/1900MHz Maximum transfer rate 50 Mbps Up, 100 Mbps Down LTE-Verizon (L8) Speed 700/1700(AWS)MHz Fall back No 2G/3G fall back Maximum transfer rate 50 Mbps Up, 100 Mbps Down Digi TransPort User Guide...
Page 78: Accessories
DB 9 sockets or 8-pin RJ45 sockets. On some models, a combination of the above may be used. The following tables list the pin designations of each type of connector for each Digi model. The RS-232 port pinouts are suitable for both Async and Sync port connections. When used in Async mode the pins for TxC, RxC &...
Page 79: Signal Strength Indicators
Transmit Data (B) TxDB Receive Data (B) RxDB Clock (A) CLKA in or out Control (B) CTLB 1 With respect to Digi routers 2 Direction depends on whether the Digi router is clock sink or clock source. Digi TransPort User Guide...
Page 80 (TxC, RxC and ETC) are left disconnected. 25-Pin to 25-Pin straight through cable This cable is normally used to connect a V.24 synchronous terminal to a Digi router. DB 25-Digi Side DB 25...
Page 81 Signal strength indicators 25-Pin to 9-Pin straight through cable This cable is normally used to connect a V.24 asynchronous terminal, such as a PC to a Digi router. DB 25-Digi Side DB 9 Signal Pin # (DCE) Pin # (DTE)
Page 82 Signal strength indicators RJ45 to 9-Pin straight through cable This cable is normally used to connect a V.24 asynchronous terminal, such as a PC to a Digi router. RJ45-Digi Side DB 9 Signal Pin # (DCE) Pin # (DTE) Signal 25-Pin to 25-Pin crossover cable This cable is normally used to connect the router to a V.24 leased line.
Page 83 Shield Shield Frame Ground (Case) RJ45 to 25-Pin crossover cable This cable is normally used to connect the router to a V.24 leased line. RJ45-Digi Side DB 25 Signal Pin # (DCE) Pin # (DTE) Signal Digi TransPort User Guide...
Page 84 Signal strength indicators RJ45 to 9-Pin crossover cable This cable is normally used to connect the router to an external asynchronous modem. RJ45-Digi Side DB 25 Signal Pin # (DCE) Pin # (DTE) Signal Digi TransPort User Guide...
Page 85: Regulatory And Safety Statements
Antenna types not included in this list, having a gain greater than the maximum gain indicated for that type, are strictly prohibited for use with this device. Name / Model Gain Impedance BEC C424-510065-A 1.8dBi 50 Nominal Digi TransPort User Guide...
Page 86: End Product Labeling
20cm is maintained between the radiator (antenna) and all persons at all times and must not be co-located or operating in conjunction with any other antenna or transmitter. Digi TransPort User Guide...
Page 87 The antenna(s) used for this transmitter must be installed to provide a separation distance of at least 20 cm from all persons. Any product using the WR44v2 Wi-Fi module must have a label stating Contains FCC ID: MCQ- 55M1644B placed on it in line with FCC labeling regulations. Digi TransPort User Guide...
Page 88 Attribute Property Frequency Range 2.4 to 2.5 GHz Impedance 50 Ohm VSWR 1.92 max Return Loss -10dB max Gain 1.8 dBi Polarization Linear Radiation Pattern Near omni-directional in the horizontal plane Admitted Power Electrical  Dipole Digi TransPort User Guide...
Page 89 122F (50C) must be limited to Restricted Access Locations accessible only to trained service personnel. Hazardous Location installation information for TransPort WR31 ee the TransPort WR31 Hazardous Location User Guide (Digi For Hazardous Location installation, s part number 90001490). Digi TransPort User Guide...
Page 90: Safety Notices
Any attempt to service or repair the router by the user will void the product warranty. 5. Products in the TransPort WR family are designed for indoor use (except for the WR44 R) and should be used in an environment that is suitable for computers and other electronic equipment.
Page 91: Product Disposal Instructions
Regulatory and safety statements Special notes on safety for wireless routers Digi International products are designed to the highest standards of safety and international standards compliance for the markets in which they are sold. However, cellular-based products contain radio devices which require specific consideration. Please take the time to read and understand the following guidance.
Page 92: Ec Declaration Of Conformity
Regulatory and safety statements EC Declaration of Conformity Following are the EC Declaration of Conformity documents for the Digi TransPort products. TransPort WR11Declaration of Conformity EC Declaration Of Conformity Manufacturer’s Name: Digi International inc. Manufacturer’s Address: 11001 Bren Road East, Minnetonka, MN 55343 USA...
Page 93 Regulatory and safety statements TransPort WR21Declaration of Conformity EC Declaration Of Conformity Digi International Manufacturer's Name: 11001 Bren Road East Manufacturer's Address: Minnetonka, MN 55343 declare under our sole responsibility that the product: TransPort WR21 Product Name: WR21-NNHH-DFF-XX Model Numbers:...
Page 94: Eu Declaration Of Conformity
ETSI EN 301 908-13 V6.2.1 (2013-10) RoHS2: EN 50581 Minnesota, USA 2 December 2015 Authorised signature for and on behalf of Digi International Inc. (Place and date of issue) Joel Young, VP, Engineering European Representative: Andreas Burghart Digi International GmbH Joseph-von-Fraunhofer-Str.23, 44227 Dortmund, Germany...
Page 95 Regulatory and safety statements TransPort WR41Declaration of Conformity Digi TransPort User Guide...
Page 96 Regulatory and safety statements Digi TransPort User Guide...
Page 97 Regulatory and safety statements TransPort WR44 Declaration of Conformity Digi TransPort User Guide...
Page 98 Regulatory and safety statements TransPort WR44 RR Declaration of Conformity EC Declaration Of Conformity Manufacturer's Name: Digi International 11001 Bren Road East Manufacturer's Address: Minnetonka, MN 55343 declare under our sole responsibility that the product: TransPort WR44RR Product Name: WR44-U8HH-WE1-MD...
Page 99 Regulatory and safety statements EC Declaration Of Conformity European Andreas Burghart Representative: Digi International GmbH Branch Breisach Kueferstr. 8, 79206 Breisach, Germany Telephone: +49-7667-908-124 Digi TransPort User Guide...
Page 100: Use The Digi Transport Web Interface
Use the Digi TransPort web interface Digi TransPort routers have a built-in web interface for configuring the device, managing the network and connections, and managing applications. This section covers the following topics: • Log in to the device on page 101 •...
Page 101: Log In To The Device
Log in button to access the configuration pages. The password will be displayed as a series of dots for security purposes. Note For security purposes, Digi recommends changing the username and password for all users away from their defaults. See Change the default username and password for a user on page 648.
Page 102 The model number of your router will be shown at the top of the screen. The router’s serial number and ID are shown below the front panel representation. In the left side of the page, you will see the main menu with subsections which further expand when clicking on them. Digi TransPort User Guide...
Page 103: Log Out And Return To The Login Page
(such as, Internet Explorer), simply connect an Ethernet cable between the LAN port on the Digi Transport and your PC. Make sure your PC is setup to automatically receive an IP address by selecting Start > Control Panel > Network >...
Page 104: Configure And Test W-Wan Models From The Web Interface
Configure and test W-WAN models from the web interface Configure and test W-WAN models from the web interface 1. To configure the TransPort router for the correct APN and PIN code, if any, see Configure mobile interfaces on page 189 section of this guide.
Page 105: Signal Strength Indicators On The Mobile Status Page
-100dBm becomes unusable. LEDs lit Signal Strength None Under -113 dBm (effectively no signal) -112 dBm to -87 dBm (weak signal) -86 dBm to -71 dBm (medium strength signal) -70 dBm to -51 dBm (strong signal) Digi TransPort User Guide...
Page 106: Web Interface Wizards
WWAN interfaces. This page allows you to set up your Ethernet LAN interface. You can get IP settings assigned automatically if your network supports this capability. Otherwise you can assign the IP settings appropriate for your network. Digi TransPort User Guide...
Page 107 This wizard helps you configure an aggressive mode LAN to LAN IPsec tunnel to a remote host. The IPsec wizard can be used to help configure an aggressive mode LAN to LAN VPN tunnel. The tunnel is configured as an initiator, this means it is responsible for starting the VPN connection. Digi TransPort User Guide...
Page 108: Surelink Wizard
LAN will be subject to delays when it first tries to send data. This is because it will take the Digi TransPort router a certain amount of time to detect and recover from the network problem.
Page 109: Gobi Module Carrier Wizard
WWAN carrier. This wizard allows you to select the GOBI module firmware to be used for your WWAN connection. Changes to the router configuration will be also made depending on the firmware selection. The router is currently configured to load firmware ID 0 (Generic UMTS). Digi TransPort User Guide...
Page 110 SIM just because the secondary SIM has been used for the configured length of time will result in an outage. Also note that if the primary SIM still cannot be used there will be a further delay whilst the router reverts back to the secondary SIM. Digi TransPort User Guide...
Page 111: Use The Digi Transport Command-Line Interface
Supported command types on page 112 • Required software for using the command line on page 112 • Connect to the TransPort router from a PC on page 113 • Log in from the command line on page 113 •...
Page 112: About The Digi Transport Command Line Interface
116. • Application commands, also known as text commands: Application commands are specific to Digi International products and control most features of the router when not using the Web interface. For more information about application commands, see Application commands page 137.
Page 113: Connect To The Transport Router From A Pc
Username: username • Password: password Note For security purposes, Digi recommends changing the username and password for all users away from their defaults. See Change the default username and password for a user on page 648. Commands and the active port When entering AT or text commands, in most cases, the command only affects the settings for the active port.
Page 114: View Current Configuration Changes
To retain the DHCP server, but on a different subnet, set the minimum IP address to assign, that is, the start of the DHCP pool: dhcp 0 ipmin x.x.x.x 5. Set the number of IP addresses in the DHCP pool: dhcp 0 iprange Digi TransPort User Guide...
Page 115: Establish A Remote Connection
NUA. This is normally only carried out under software control. Similarly, incoming calls are handled according to the protocols that have been bound to the ASY ports, and whether answering is enabled for each protocol. Digi TransPort User Guide...
Page 116: At Commands
AT commands AT commands Digi TransPort supports AT commands and Special registers (S registers). Information and command descriptions in this section includes: • The AT command interface on page 117 • AT commands are case-insensitive on page 117 • Entering multiple commands on page 117 •...
Page 117 The AT command prefix and the commands that follow it can be entered in upper or lower case. Entering multiple commands After the prefix, you can enter one or more commands on the same line of up to 40 characters. When the line is entered, the router will execute each command in turn. Digi TransPort User Guide...
Page 118: Escape Sequences
CONNECT ISDN connection established RING Incoming ring signal detected NO CARRIER X.25 service not available ERROR Error in command line NO DIALTONE ISDN service not available BUSY B-channel(s) in use NO ANSWER No response from remote Digi TransPort User Guide...
Page 119 +++, wait 1 second and then enter an AT command or just AT<CR>. After entering the ATH command, the call will be disconnected and the NO CARRIER result will be issued. Digi TransPort User Guide...
Page 120 There are three options: • &R0 CTS is always On. • &R1 CTS follows RTS. The delay between RTS changing and CTS changing is set in AT register 56 in multiples of 10msec. • &R2 CTS is always Off. Digi TransPort User Guide...
Page 121 &c, &d, &k &Y command: Set default profile The AT&Y command is used to select the power-up profile (0 or 1). For example, to ensure that the router boots up using stored profile 1, enter the command: at&y1 Digi TransPort User Guide...
Page 122 S33=1 for the port, the number associated with that port will be dialed when the DTR signal for that port changes from Off to On, such as DTR dialing can only be used with the number associated with the port to which the terminal is connected. Digi TransPort User Guide...
Page 123 \LS command: Lock speed The AT\LS command is used to lock the speed and data format of the port at which it is entered to the current settings so that the non-AT application commands may be used. Digi TransPort User Guide...
Page 124 To reset the default port to the one to which you are connected use the AT\PORT command without a parameter. Digi TransPort User Guide...
Page 125: Smib Commands
The at\smib command allows you to view a single standard MIB variable. To view the variable use the at\smib=<mib_name> command, where <mib_name> is the variable to be displayed. The variables are sorted according to the hierarchy shown below. Digi TransPort User Guide...
Page 126 The above example shows that the router has been running for 5 hours, 1 minute and 7.18 seconds. at\smib=mib-2.system.syscontact A description of the contact person for the router. For TransPort, this is always a zero-length string. at\smib=mib-2.system.sysname The name of the router. This is the name set in the Router Identity parameter on the Configuration >...
Page 127 This variable displays a value that represents the set of services the router provides. For each OSI layer, the router provides services for, 2(L-1) is added to the value, where L is the layer. The layers are shown below. For TransPort, this value is always 7 (Physical layer (21-1)+Data Link layer (22-1)+Network layer (23-1)).
Page 128 SYNC ports always return 0. IPSec tunnel interfaces will return the underlying interface if it can be located, otherwise 0 is returned. PPP interfaces will return the negotiated MTU if the link is connected, otherwise 0 is returned. For example: mib-2.interfaces.iftable.ifentry.ifmtu.21 = 1504 Digi TransPort User Guide...
Page 129 The total number of packets that higher-level protocols requested this interface to transmit to a non-unicast (such as broadcast or multicast) address, including those that were discarded or not sent. at\smib=mib-2.interfaces.iftable.ifentry.ifouterrors The number of outbound packets that this interface could not transmit because of errors. Digi TransPort User Guide...
Page 130 The index value which uniquely identifies the local interface through which the next hop of the route should be reached. at\smib=mib-2.ip.iproutetable.iprouteentry.iproutemetric1 The primary routing metric for the route. at\smib=mib-2.ip.iproutetable.iprouteentry.iproutenexthop The IP address of the next hop of the route. Digi TransPort User Guide...
Page 131 AT commands at\smib=mib-2.ip.iproutetable.iprouteentry.iproutetype The type of route. Valid values are: Valid Invalid Direct Indirect at\smib=mib-2.ip.iproutetable.iprouteentry.iproutemask The netmask for the route. Digi TransPort User Guide...
Page 132: Register Definitions
0-255 Escape delay 0-255 Data forwarding timer 0-255 RS422/485 serial port 0, 2, 3 settings Parity 0-2 5 6 ASY interface speed refer to full description 0-11 DTR dialing DTR loss de-bounce 0.05 seconds (0.25s) 1-255 Digi TransPort User Guide...
Page 133 S12 Escape Delay Units: ms Default: 50 Range: 0-255 The value stored in S12 defines the delay between sending the escape sequence and entering an AT command for the router to switch from on-line mode to command mode. Digi TransPort User Guide...
Page 134: S15 Data Forwarding Timer
Units: N/A Default: 0 Range: 0-2,5,6 The value stored in S23 determines whether the parity used for the ASY port is set to None (0), Odd (1), Even (2), 8Data Odd (5) or 8Data Even (6). Digi TransPort User Guide...
Page 135 S33 is used to enable or disable DTR dialing for the port. When DTR dialing is enabled, the router will dial the number stored for that port (see AT&Z) when the DTR signal from the terminal changes from Off to On. Digi TransPort User Guide...
Page 136 DTR. Increasing or decreasing the value in S45 makes the router less or more sensitive to “bouncing” of the DTR signal respectively. Digi TransPort User Guide...
Page 137: Application Commands
The TransPort device also supports numerous text-based application commands that are specific to Digi International products, and do not require the AT prefix. Some of these are generic, such as they are related to the general operation of the router; others are application- or protocol- specific.
Page 138 Speed locking is not necessary when you use the text commands via a Telnet session. Application commands are case-insensitive Digi application commands (referred to just as text commands or CLI commands throughout the remainder of this guide), can be entered in upper or lower case.
Page 139 Uses the IMEI of the cellular module as the username. Uses the ICCID of the SIM as the username. If a % symbol is part of the username, it must be escaped with another % symbol. For example, user%1 should be entered as user%%1. Digi TransPort User Guide...
Page 140 To set an IP address on 192.168.1.1 on Ethernet 0: eth 0 ipaddr 192.168.1.1 To set an IP address of 172.16.0.1 on Ethernet 1: eth 1 ipaddr 172.16.0.1 To enable the DHCP client on Ethernet 2: eth 2 dhcpcli on Digi TransPort User Guide...
Page 141 To re-enable the reset button functionality, enter: cmd 0 pbreset on. Note You can enable or disable the reset button from the web interface. For more information Reset the router to factory default settings on page 798. Digi TransPort User Guide...
Page 142 The config changes command shows the number of changes to the current configuration since the router has powered up and the initial configuration file run. Also shows the time when the configuration file was last saved. Digi TransPort User Guide...
Page 143 To stop a failed trace if hosts can not be detected, use traceroute stop. ana command: Clear the Analyser Trace To clear the Analyser trace, the CLI command is: ana 0 anaclr clear command: Clear the Event Log To clear the event log, the CLI command is: clear_ev Digi TransPort User Guide...
Page 144 OVPN for OpenVPN interfaces And <instance> is the interface number, such as 0, 1, 2 etc For example, to activate PPP 1, the CLI command is: ppp 1 act_rq and to deactivate PPP 1: ppp 1 deact_rq Digi TransPort User Guide...
Page 145 Set the I/O port to ON when configured as an output To set the I/O port to ON when it is configured as an output: gpio inout on Input(s): in : OFF Output(s): inout : ON Digi TransPort User Guide...
Page 146 Pin 3 Input/ Output Pin 4 Power The following image shows the pins and the corresponding numbers: For more information on wiring and other details, see the 4-pin DC Power Cord User Guide, Digi part number 90001246. Digi TransPort User Guide...
Page 147 The syntax of the command is: qdl 0 fw <n> where n can be 0-14. The default value is 0. Instance Value Generic UMTS Verizon Sprint PCS IUSACELL Bell Mobility Alltel Cingular Blue Cingular Orange T-Mobile Docomo Orange Vodafone Telefonica Telital Digi TransPort User Guide...
Page 148 Again this behavior can be modified via the AT&D command or the serial port settings. The format of the command is: TCPPERM <[ASY 0-1]> <Dest Host> <Dest Port> [UDP] [nodeact] [-l<listening port>] [- i<inact_timeout>] [-f<fwd_time>] [-e<eth_ip>][-d(deact link)] [-k<keepalive_time>] [- s<src_port>] [-ok] [-t<telnet_mode>] [-ho(host only)] [-ssl] [-ao(always open)] [-m<mhome idx>] Digi TransPort User Guide...
Page 149 If the -t option is specified then the ok option is always used. The tcpperm command can also be made to execute automatically on power-up by using the cmd n autocmd ‘cmd’ macro command, such as cmd 0 autocmd ’tcpperm asy 0 192.168.0.1 -f3 -s3000 -k10 -e1’ Digi TransPort User Guide...
Page 150 It can also be used from a command session to disconnect an existing TCPDIAL connection on another ASY port. The format of the command is: tcpdab <instance> ATH where <instance> is the number of the ASY port. Digi TransPort User Guide...
Page 151 Configure network interfaces The Configuration > Network > Interfaces menu configures settings for several network interfaces. The configurable network interfaces available depend on the TransPort router model. This section covers configuring network interfaces from the web interface and command line. It covers the following topics: •...
Page 152: Configure Ethernet Interfaces
Ethernet loop can occur. The default behavior is HUB rather than Port Isolate. VLAN tagging is not available when the router is configured for Port Isolate mode. Digi TransPort User Guide...
Page 153 DHCP server is later selected, any existing manually specified parameters will override the DHCP supplied parameters. To change from manual configuration to DHCP, be sure to remove all manually specified parameters first. Digi TransPort User Guide...
Page 154 IP Address mask Valid Subnet Mask Mask gateway IP address Gateway dnsserver IP address DNS Server secdns IP address Secondary DNS Server dhcpcli on, off On=Get an IP address automatically using DHCP Off=Use the following IP address Digi TransPort User Guide...
Page 155 LAN 1 will not be visible to traffic on physical ports LAN 2 and LAN 3 (and vice versa). Group numbers can be 0-3 or use 255 for an interface to be in all groups. This parameter is not available on the web page when the router is configured for Port Isolate mode. Digi TransPort User Guide...
Page 156 This is useful for slow / lossy connections such as satellite. Setting this buffer to a low value will prevent the amount of unacknowledged data from getting too high. If retransmits are required, a smaller TX buffer helps prevent retransmits flooding the connection. Digi TransPort User Guide...
Page 157 If such a scenario were to occur with NAT the router would be unable to determine which private host to route the returning packets to and the connection would fail. Digi TransPort User Guide...
Page 158 This effect can be prevented by using the appropriate commands and options within the firewall script. However, on Digi 1000 series routers, or where you are not using a firewall, the same result can be achieved by selecting this option, such as when this option is selected the normal behavior of the router in responding to SYN packets with RST packets is disabled.
Page 159 When enabled, the heartbeat includes the IMSI of the cellular module. Include GPS information in the Heartbeat message When enabled and the appropriate GPS hardware is installed, the heartbeat includes the GPS co-ordinates of the router. Digi TransPort User Guide...
Page 160 ANY of the ICMP echo requests during that time period. Keep this interface out of service for s seconds The length of time, in seconds, for which any routes using this Ethernet interface will be held out of service after a ping failure is detected. Digi TransPort User Guide...
Page 161 Use interface x,y for the source IP address of IPsec packets y=interface number firewall Enable the firewall on this interface nocfg 0,1,2,3 Remote management access 0=No restrictions 1=Disable management 2=Disable return RST 3=Disable management and return RST Digi TransPort User Guide...
Page 162 Use interface x,y for the source IP address x=Interface type hbipadd 0-255 Use interface x,y for the source IP address y=interface number hbroute Select the transmit interface using the routing table hbimsi Include IMSI information in the Heartbeat message Digi TransPort User Guide...
Page 163 0-11, which are selected from the drop-down list boxes. Priority This column contains drop-down menu boxes which are used to assign a priority to the selected queue. The priorities available are Very High, High, Medium, Low, and Very Low. Digi TransPort User Guide...
Page 164 0-11 Queue 6 Profile q6prio Queue 6 Priority q7prof 0-11 Queue 7 Profile q7prio Queue 7 Priority q8prof 0-11 Queue 8 Profile q8prio Queue 8 Priority q9prof 0-11 Queue 9 Profile q9prio Queue 9 Priority Digi TransPort User Guide...
Page 165 VRRP group master. The reason for why you might want to do this is to provide some network stability if the original Master keeps going on and off line thus causing a lot of VRRP state switches. Digi TransPort User Guide...
Page 166 For example, the user may wish to configure probing in such a way that the Digi router WAN interface is tested, and adjust the VRRP priority down if the WAN is not operational. Another example would be to probe the WAN interface of another VRRP router, and adjust the local VRRP priority up if that WAN interface is not operational.
Page 167 Use interface x,y over which to send probe vprobeadd Integer Use interface x,y over which to send probe vprobeipent Auto, ETH, Get the source IP address from interface x,y vprobeipadd Integer Get the source IP address from interface x,y Digi TransPort User Guide...
Page 168: Mac Filtering
The Ethernet source MAC address to allow. It is possible to allow a range of MAC addresses by configuring only the significant part of the MAC address. such as 00:04:2d will allow all Ethernet packets with a source MAC address starting with 00:04:2d. Digi TransPort User Guide...
Page 169 Configure Ethernet interfaces Related CLI Commands Entity Instance Parameter Values Equivalent Web Parameter macfilt on, off Enable MAC filtering on Ethernet interfaces macfilt MAC address MAC Address with no separators. Partial MAC address are allowed. Digi TransPort User Guide...
Page 170 The Ethernet destination MAC address of packets to be bridged. It is possible to allow a range of MAC addresses by configuring only the significant part of the MAC address. such as 00042d will allow all Ethernet packets with a source MAC address starting with 00:04:2d. Digi TransPort User Guide...
Page 171 Related CLI Commands Entity Instance Parameter Values Equivalent Web Parameter srcbhost IP Address Forward to IP address srchport 0-65535 Port srcblistenport 0-65535 Listen on Port bridgemac MAC address MAC Address with no separators. Partial MAC address are allowed. Digi TransPort User Guide...
Page 172 LAN whilst allowing redundant physical links between switches. When enabled, the TransPort device uses RSTP but this is backwards compatible with STP. RSTP will not be enabled if the router is in Port Isolate mode. If an Ethernet interface is configured with a hub group, RSTP will be disabled on that interface.
Page 173: Port Status
BPDU data is still received in blocking state. Digi TransPort User Guide...
Page 174 BPDU data is still received in blocking state. Digi TransPort User Guide...
Page 175 The source IP address. This parameter is optional. If configured, only packets from this IP address will have VLAN tagging applied. Source Mask The source IP subnet mask. This parameter is optional. If configured, only packets from this IP subnet mask will have VLAN tagging applied. Digi TransPort User Guide...
Page 176 Ethernet interfaces vlan vlanid 0-4095 VLAN ID vlan ethctx Integer Ethernet Interface vlan ipaddr IP Address IP Address vlan mask IP Mask Mask vlan srcipaddr IP Address Source IP Address vlan srcmask IP Mask Source Mask Digi TransPort User Guide...
Page 177: Configure Wi-Fi Interfaces
Selecting Auto allows the router to scan for a free channel within the range of legal channels for the selected country. It is possible to manually select a specific channel to use but care should be taken to ensure the selected channel is legal to use in the country. Digi TransPort User Guide...
Page 178 Global Wi-Fi Settings CLI Commands Entity Instance Parameter Values Equivalent Web Parameter wifi country Country Country name wifi chanmode a / bg Network Mode wifi channel auto, 1-14 Channel Below is a list of the countries that are currently supported: Digi TransPort User Guide...
Page 179 Luxembourg Turkey Egypt Macau U.A.E. El Salvador Macedonia Ukraine Estonia Malaysia United Kingdom Faroe Islands Mexico United States Finland Monaco Uruguay France Morocco Uzbekistan Georgia Netherlands Venezuela Germany New Zealand Vietnam Greece Nicaragua Yemen Norway Zimbabwe Digi TransPort User Guide...
Page 180 Region Channels EMEA (excluding France) 1-13 France 10-13 Americas (excluding Mexico) 1-11 Mexico 1-8 Indoor, 9-11 outdoor Israel China 1-11 Japan 1-14 Note It is illegal to use restricted channels in certain countries. Digi TransPort User Guide...
Page 181 Enable Wi-Fi Hotspot on wifi hotspot_fname Filename Splashscreen filename wifi hotspot_lifetime Integer Each client can connect for h hrs m mins.The CLI value is entered in seconds only. hshosts host Hostname Hotspot Exceptions Digi TransPort User Guide...
Page 182 A valid MAC address has the format: 11:22:33:44:55:66. When entering this parameter, omit the : separators. For example, 112233445566. Note Carefully review settings before applying changes. Incorrect settings can make the TransPort device inaccessible from the Wi-Fi network. Wi-Fi Filtering CLI Commands Entity Instance...
Page 183 When the Wi-Fi interface is configured to be a client, it must be bridged to a particular Ethernet interface. This Wi-Fi rogue scanner will use Ethernet n When the Wi-Fi interface is configured to be a rogue scanner, it uses the selected Ethernet interface. Digi TransPort User Guide...
Page 184 Interface wificli on, off Link this Wi-Fi client interface with Ethernet n wificli_add Integer Link this Wi-Fi client interface with Ethernet n wifinode broadcastssid on, off Hide SSID wifinode isolation on, off Enable station isolation Digi TransPort User Guide...
Page 185 WPA pre-shared key / Confirm WPA pre-shared key The pre-shared key (PSK) to use. It must be between 8 and 63 characters long. WPA-RADIUS / WPA2-RADIUS The various WPA-RADIUS / WPA2- RADIUS security settings for both Access Point and Client modes. Digi TransPort User Guide...
Page 186 RADIUS Server Password * The Wi-Fi interfaces each use a fixed RADIUS client, such as, • Wi-Fi 0 uses radcli 1 • Wi-Fi 1 uses radcli 2 • Wi-Fi 2 uses radcli 3 and so on. Digi TransPort User Guide...
Page 187 0 security wpa2psk wifinode 0 wpatype tkip wifinode 0 sharedkey <8..63 char key> wifinode 0 security wparadius wifinode 0 wpatype aes wifinode 0 radiuscfg 1 WPA2 wifinode 0 security wpa2radius wifinode 0 wpatype aes wifinode 0 radiuscfg 1 Digi TransPort User Guide...
Page 188 MAC Address The MAC address of an authorized Access Point. Rogue Scan CLI Commands Entity Instance Parameter Values Equivalent Web Parameter macrogue MAC address MAC Address with no separators such as 112233445566 Digi TransPort User Guide...
Page 189: Configure Mobile Interfaces
When using a single SIM card, the default action is for the router to use PPP 1 as the mobile interface. To configure dual SIMs for fail-over, go to Configuration > Network > Interfaces > Mobile > SIM Selection to launch the Dual SIM wizard. Digi TransPort User Guide...
Page 190: Mobile Settings Parameters
Some APNs require a username and password for the PPP connection. These are not always pre-defined such as any made-up username or password will suffice. Password (Optional) Enter the password for the PPP connection. Confirm Password Enter the password again in this field to confirm it. Digi TransPort User Guide...
Page 191 Service Plan / APN: modemcc Usebuapn_2 on/off Checkbox (Use Backup APN) modemcc Buapn_2 Free text field Use backup APN modemcc Pin_2 SIM PIN SIM PIN:/Confirm SIM PIN number username Free text field Username: password Free text field Password:/Confirm Password Digi TransPort User Guide...
Page 192 Mobile Connection Settings CLI Commands Entity Instance Parameter Values Equivalent Web Parameter rxtimeout OFF, ON Re-establish connection when no data is received for a period of time. rxtimeout 0-86400 Inactivity Timeout: h hrs m mins s seconds (seconds) Digi TransPort User Guide...
Page 193: Mobile Network Settings
Enables or disables the Firewall script processing for the mobile interface. Note If the firewall is enabled on an interface and with the absence of any firewall rules, the default action is to block ALL traffic. Digi TransPort User Guide...
Page 194 Enable the firewall on this interface SIM Selection This section allows you to launch the Dual SIM wizard for failing over from 1 SIM to another. Click here to launch the Dual SIM wizard Launches the Dual SIM wizard. Digi TransPort User Guide...
Page 195: Cdma Provisioning
CDMA module. Therefore, you cannot remove provisioning information from the CDMA module by performing a factory reset on your TransPort router. If provisioning fails (the device does not obtain a phone number), contact the carrier and verify that the device has an active account.
Page 196 If for some reason the TransPort router is an older version using a module that does not support OMA DM, three fields of information must be entered into the Automatic configuration page. This information is provided by Sprint.
Page 197: Manual Provisioning
The mobile station identifier. Get this identifier from the mobile operator. Manual provisioning CLI commands Entity Instance Parameter Values Equivalent Web Parameter provision String4 Free text field provision String5 Free text field provision String6 Free text field MIN/MSID Digi TransPort User Guide...
Page 198 HA shared secret: 0xn (Hex strings must start 0x) The HA shared secret. AAA shared secret: 0xn (Hex strings must start 0x) The AAA shared secret. HA SPI The HA SPI. AAA SPI The AAA SPI. Enable Reverse tunneling Enables reverse tunneling, if required. Digi TransPort User Guide...
Page 199 0x) provision String13 Hex string AAA shared secret: 0xn (Hex strings must start 0x) provision String14 Free text field HA SPI: provision String15 Free text field AAA SPI: provision String16 Free text field Enable Reverse tunneling: Digi TransPort User Guide...
Page 200: Prl Update
PRL update is normally carried out as part of automatic provisioning on both Sprint and Verizon. PRL update CLI commands Entity Instance Parameter Values Equivalent Web Parameter provision string1 Free text field provision string20 Free text field PRL Filename Digi TransPort User Guide...
Page 201: Advanced Mobile Parameters
This parameter specifies an alternative hang-up string that is sent to the wireless module when disconnecting a call. As with the Initialisation strings, it is not necessary to include the AT as this is inserted automatically by the router Digi TransPort User Guide...
Page 202 When set to GSM, the wireless module will try GSM (GPRS/EDGE) technology first. • When set to WCDMA, the wireless module will try WCDMA (UMTS/HSPA) technology first. For CDMA: Select CDMA for 2G (1xRTT) or EVDO for 3G. Digi TransPort User Guide...
Page 203 If registration is lost for 5 minutes 0=do not reset the module 1=reset the module if the GSM registration is lost 2=reset the module if the GPRS registration is lost modemcc psys 0,1,2 Preferred System 0=Auto 1=GSM 2=WCDMA Digi TransPort User Guide...
Page 204 If registration is lost for 5 minutes 0=do not reset the module 1=reset the module if the GSM registration is lost 2=reset the module if the GPRS registration is lost modemcc Psys_ 0,1,2 Preferred System 0=Auto 1=GSM 2=WCDMA Digi TransPort User Guide...
Page 205 Include IMSI information in the Heartbeat message When enabled, the heartbeat includes the IMSI of the wireless module. Include GPS information in the Heartbeat message When enabled, the heartbeat includes the GPS co-ordinates of the router. Digi TransPort User Guide...
Page 206 If this parameter is set to 0 (default), the time specified in the in Send n byte pings to IP host a.b.c.d every h hrs m mins s secs is allowed before applying the Send pings every h hrs m mins s secs if ping responses are not being received. Digi TransPort User Guide...
Page 207 Defer sending pings if IP traffic is being received When enabled, the timer configured in the Send n byte pings to IP host a.b.c.d every h hrs m mins s secs parameter is reset if IP data is sent across the mobile link. Digi TransPort User Guide...
Page 208 Switch to sending pings to IP host a.b.c.d after n failures pingresp 0-2147483647 Ping responses are expected within n seconds pingis on/off Only send Pings when this interface is In Service ping2cont on/off New connections to resume with previous Ping interval Digi TransPort User Guide...
Page 209 0-2147483647 Reset the link if no response is received within s seconds pingfreth0 on/off Use the ETH 0 IP address as the source IP address pingresetint on/off Defer sending pings if IP traffic is being received Digi TransPort User Guide...
Page 210: Sms Settings
160 characters. The reply comes back as a series of linked SMS messages which the phone reassembles and displays as one big message. Note The routers cannot handle received concatenated SMS messages, it can only transmit concatenated SMS messages Digi TransPort User Guide...
Page 211 <CR> keys, an additional means of separating multiple lines is required. Allow CLI commands from the following SMS numbers. You may specify up to 10 numbers. Specifying * permits commands from any SMS number. Numbers are applied in the following input box. Click Add to submit. Digi TransPort User Guide...
Page 212 Mobile Allow CLI commands from the telephone following SMS numbers. number (First SMS number) modemcc sms_callerid_1 Mobile Allow CLI commands from the to 9 telephone following SMS numbers. number (additional SMS numbers 1 to 9) Digi TransPort User Guide...
Page 213 Mobile telephone Allow CLI commands from the number following SMS numbers. (First SMS number) modemcc sms_callerid_1 to 9 Mobile telephone Allow CLI commands from the number following SMS numbers. (additional SMS numbers 1 to 9) Digi TransPort User Guide...
Page 214: Configure Dsl Interfaces
Enable DSL Enables or disables the use of DSL/ADSL functionality on the router. Configure PVC Select the required PVC instance from the drop-down selection box. Subsequent settings applies to the selected instance (see below). Digi TransPort User Guide...
Page 215 > Interfaces > PPP > PPP n > Advanced page. The Virtual Path Identifier for this APVC in the range 0-255. The Virtual Channel Identifier for this APVC in the range 0-65535. Entity Instance Parameter Values Equivalent Web Parameter apvc 0-255 apvc 0-65535 Digi TransPort User Guide...
Page 216: Dsl Network Settings Parameters
NAT table to determine which private host to forward the packet to. Before it forwards the packet back to the private host, it changes the destination IP address of the packet from its public IP address to the IP address of the private host. Digi TransPort User Guide...
Page 217 SNMP trap or SMS alert message. Issue a warning event after The maximum data to be transmitted before a warning entry is generated in the Event Log. You can select kilobytes, megabytes or gigabytes via the drop-down box. Digi TransPort User Guide...
Page 218 Click here to jump to the PPP Mapping page. When clicked, this link will redirect the browser to the Configuration > Network > interfaces > Advanced > PPP Mappings page. From this page, select the desired PPP instance. Digi TransPort User Guide...
Page 219 Enable the firewall on this interface dlwarnkb Kbytes/ Issue a warning event after Mbytes/ GBytes dlstopkb Kbytes/ Stop data from being transmitted Mbytes/ after x Bytes data GBytes dlrstday 1-28 Reset the data limit on the nth day of the month Digi TransPort User Guide...
Page 220: Pvc Traffic Shaping Parameters
The maximum allowable burst size of cells that can be transmitted contiguously on a particular connection. Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter apvc servcat UBR,VBR-ntr,VBR-rt,CBR Service category apvc Peak cell rate (cells/sec) apvc Sustained cell rate (cells/ sec) apvc Maximum burst size (cells) Digi TransPort User Guide...
Page 221: Advanced Dsl Parameters
Using Alarm indication signal (AIS) cells downstream and Remote defect indication (RDI) cells upstream, the router can detect faults between the connecting points of the VP/VC and suspend transfer of ATM cells until the VC fault condition is cleared. Digi TransPort User Guide...
Page 222 Manage this PVC using ATM OAM cells Additional CLI commands The following command is not available from the web interface: adsl 0 debug {0|1} Where 0 is off and 1 causes debugging information to be sent to the CLI. Digi TransPort User Guide...
Page 223: Configure Gre Interfaces
IP address. This is for using GRE without IPSec. These parameters should not be used if the source address is used in the parameter below. Select from the drop down boxes the available interface type and number. Digi TransPort User Guide...
Page 224 GRE keepalive packet will try to raise the tunnel again. If set to NO and the tunnel has been marked as down due to the GRE keepalives not being received, the router will only raise the tunnel if a packet (other than a GRE keepalive) needs to be routed. Digi TransPort User Guide...
Page 225 Destination IP address to use for GRE packets kadelay Seconds Send a keepalive every s seconds karetries Number Bring this GRE tunnel down after no replies to n keepalives kaactrq On,off Bring this GRE interface up to send keepalives Digi TransPort User Guide...
Page 226 5 Enable GRE checksums Selects whether to add GRE checksums to GRE packets when the router is terminating a GRE tunnel. Set this parameter to off to disable checksums, and to on to enables checksums. Digi TransPort User Guide...
Page 227 RIP Routing Parameters-CLI only: Under the CLI commands for GRE Tunnels are parameters specifically relating to RIP. Please see the Interfaces > Ethernet / PPP / GRE parameters on page 373 section on RIP routing for configuration of these sub parameters. Digi TransPort User Guide...
Page 228: Configure Isdn Interfaces
123 will prevent the router from answering any calls to numbers that do not end in 123. Use the following local IP configuration Local IP Address: The IP address of the router’s ISDN answering interface. Set this field to the desired local IP address. Digi TransPort User Guide...
Page 229 If the firewall is enabled on an interface and with the absence of any firewall rules, the default action is to block ALL traffic. To configure the firewall, refer to the Firewall configuration on page 651 section. Digi TransPort User Guide...
Page 230 Default,Ethernet,PPP Use interface X, Y for the source IP address of IPsec packets ipsecadd number Use interface X, Y for the source IP address of IPsec packets firewall on/off Enable the firewall on this interface Digi TransPort User Guide...
Page 231: Advanced Isdn Parameters
Close this interface After n seconds The maximum time that this ISDN Interface may remain connected during any one session. After this time, the ISDN link is deactivated. Digi TransPort User Guide...
Page 232 4MB. This would cause the router to create a warning entry in the event log once 4MB of data had been transferred. This event could then be used to trigger an email alert, SNMP trap or SMS alert message. Digi TransPort User Guide...
Page 233 0-2147483648 if the link has been idle for s seconds timeout2 0-2147483648 Alternative idle timer for static routes s seconds rxtimeout 0-2147483648 if the link has not received any packets for s seconds Digi TransPort User Guide...
Page 234 0-2147483647 Issue a warning after n units dlstopkb 0-2147483647 Stop data from being transmitted after n units dlrstday 0-255 Reset the data limit on the n day of the month Digi TransPort User Guide...
Page 235: Isdn Dialing Parameters
Use a.b.c.d as the local IP address for this router If it is essential that the PPP interface has a specific IP address, this radio button should be selected and the IP address entered into the text box. Digi TransPort User Guide...
Page 236 IP packets. Enable IPsec on this interface When checked, this checkbox causes the router to encrypt traffic on this interface using the IPsec protocol. The following two additional configuration parameters are revealed when this box is checked. Digi TransPort User Guide...
Page 237 Use a.b.c.d as the local IP address of When ON, this router allows negotiation when OFF force use of specified IP address DNSserver Valid IP address Use the following DNS servers if not a.b.c.d negotiated Primary DNS server a.b.c.d Digi TransPort User Guide...
Page 238 Valid IP address NAT Source IP address a.b.c.d a.b.c.d ipsec 0=Disabled Enable IPsec on this interface/ 1=Enabled Keep Security Associations when 2=Enabled and this ISDN interface is disconnected Keep SAs firewall OFF,ON Enable the firewall on this interface Digi TransPort User Guide...
Page 239 The maximum time that the link remains active in any one session. After this time, the link will be deactivated. If it has been up for m minutes in a day The router deactivates the PPP instance after it has been active for the value specified in this text box. Digi TransPort User Guide...
Page 240 Reset the data limit on the n day of the month The day of the month on which the data limit is reset to zero. Digi TransPort User Guide...
Page 241 0-2147483647 Issue a warning after n units dlstopkb 0-2147483647 Stop data from being transmitted after n units dlrstday 0-255 Reset the data limit on the n day of the month Digi TransPort User Guide...
Page 242: Isdn Lapd Parameters
When TEI is set to 255, the TEI is negotiated with the ISDN network. To use a fixed TEI set the TEI parameter to the appropriate value as specified by your service provider. D-channel X.25 Tx Window Size The transmit window size when using D-channel X.25. The default is 7. Digi TransPort User Guide...
Page 243 Enables automatic deactivation of a LAPD session when an X.25 PAD session is terminated. Do not deactivate the LAPD session Ensures the router does not deactivate the LAPD session when an X.25 PAD session is terminated. Digi TransPort User Guide...
Page 244 After X.25 PAD session is terminated: Deactivate the LAPD session LAPD nodeact After X.25 PAD session is terminated: Do not deactivate the LAPD session LAPD d64smode off, on Enable D64S Mode LAPD d64schan 1, 2 First D64S B-channel: B1, B2 Digi TransPort User Guide...
Page 245: Protocol Entities
Configure ISDN interfaces Answering ISDN calls Digi routers can answer incoming B-channel ISDN calls with three main protocols: rate adaption protocols, LAPB, and PPP. Usually several instances of these protocols exist. This section explains how answering priorities work for the different protocols.
Page 246 ISDN devices to be dialed individually (such as dial the main ISDN number), and get through to ISDN device one, dial the first MSN and get through to ISDN device number two, dial the second MSN, and get through to ISDN device number three, etc.). Digi TransPort User Guide...
Page 247 The multiple protocol entity answering instance rules are as follow: Adapt The lowest free Adapt instance with auto-answering enabled will answer first. The lowest free PPP instance with answering on will answer first. LAPB The lowest free LAPB instance with answering on will answer first. Digi TransPort User Guide...
Page 248: Initial Setup
S and the required sub-address value. For example: atd01234567890s003 In this case, the remote system will only answer the call if it has been configured to accept incoming calls on the specified sub-address. Digi TransPort User Guide...
Page 249 If PPP answering is enabled, verify that you have not selected the same MSN and Sub-address values for PPP. If they are the same, V.120 will answer the call only if S0 is set to 1. Otherwise, PPP will take priority and answer the call. Digi TransPort User Guide...
Page 250: Configure Pstn Interfaces
Use a.b.c.d as the local IP address for this router If it is essential that the PPP interface has a specific IP address, select this radio button and the IP address entered into the text box. Digi TransPort User Guide...
Page 251 IP packets. Enable IPsec on this interface When enabled, causes the router to encrypt traffic on this interface using the IPsec protocol. The following two additional configuration parameters are revealed when this box is checked. Digi TransPort User Guide...
Page 252 Use a.b.c.d as the local IP address of When ON, this router allows negotiation when OFF force use of specified IP address DNSserver Valid IP address Use the following DNS servers if not a.b.c.d negotiated Primary DNS server a.b.c.d Digi TransPort User Guide...
Page 253 Valid IP address NAT Source IP address a.b.c.d a.b.c.d ipsec 0=Disabled Enable IPsec on this interface/ 1=Enabled Keep Security Associations when 2=Enabled and this PSTN interface is disconnected Keep SAs firewall OFF,ON Enable the firewall on this interface Digi TransPort User Guide...
Page 254: Advanced Pstn Parameters
The maximum time that the link remains active in any one session. After this time, the link is deactivated. If it has been up for m minutes in a day The router deactivates the PPP instance after it has been active for the value specified in this text box. Digi TransPort User Guide...
Page 255 Reset the data limit on the n day of the month The day of the month on which the data limit is reset to zero. Digi TransPort User Guide...
Page 256 0-2147483648 if the negotiation is not complete in s seconds uplogmins 0-2147483647 Generate an event after this interface has been up for m mins dlwarnkb 0-2147483647 Issue a warning after n units Digi TransPort User Guide...
Page 257 Configure PSTN interfaces Entity Instance Parameter Values Equivalent Web Parameter dlstopkb 0-2147483647 Stop data from being transmitted after n units dlrstday 0-255 Reset the data limit on the n day of the month Digi TransPort User Guide...
Page 258: Configure Dialserv Interfaces
The text string in this text box contains any required MODEM initialization commands. Initialisation string 2 The text string in this text box contain initialization commands that will be issued to the MODEM after the first initialization string. Digi TransPort User Guide...
Page 259 The IP address of the primary DNS server to use if a DNS server is not assigned as part of the PPP negotiation and connection process. It is fairly common practice for the DNS server to be assigned automatically by the ISP when making a connection. Digi TransPort User Guide...
Page 260 If it is required to use another interface (such as not the interface currently being configured) as the source address for IPsec packets, this may be achieved by selecting the desired interface from the drop-down list and typing the desired interface instance number into the adjacent text box. Digi TransPort User Guide...
Page 261 Secondary DNS server a.b.c.d IPmin Valid IP address Assign remote IP addresses from a.b.c.d a.b.c.d to a.b.c.d IPrange 0-255 Assign remote IP addresses from a.b.c.d to a.b.c.d transDNS Valid IP address Primary DNS server a.b.c.d a.b.c.d Digi TransPort User Guide...
Page 262 Valid IP address NAT Source IP address a.b.c.d a.b.c.d ipsec 0=Disabled Enable IPsec on this interface/ 1=Enabled Keep Security Associations when 2=Enabled and this DialServ interface is Keep SAs disconnected firewall OFF,ON Enable the firewall on this interface Digi TransPort User Guide...
Page 263: Advanced Dialserv Parameters
The maximum time that the link will remain active in any one session. After this time, the link will be deactivated. If it has been up for m minutes in a day The router deactivates the PPP instance after it has been active for the value specified in this text box. Digi TransPort User Guide...
Page 264 KBytes, MBytes, GBytes. Reset the data limit on the n day of the month The day of the month on which the data limit is reset to zero. Digi TransPort User Guide...
Page 265 0-2147483648 if the negotiation is not complete in s seconds uplogmins 0-2147483647 Generate an event after this interface has been up for m mins dlwarnkb 0-2147483647 Issue a warning after n units Digi TransPort User Guide...
Page 266 Configure DialServ interfaces Entity Instance Parameter Values Equivalent Web Parameter dlstopkb 0-2147483647 Stop data from being transmitted after n units dlrstday 0-255 Reset the data limit on the n day of the month Digi TransPort User Guide...
Page 267: Configure Serial Interfaces
Configure serial interfaces Configure serial interfaces Digi routers support a variety of serial interfaces, either inbuilt or as optional add-on modules. Each asynchronous serial (ASY) port may be configured to operate at different speed, data format etc. These parameters may be changed using the web interface or from the command line using AT commands and S registers.
Page 268 When enabled, enables command echo when using the command line interpreter. Disable this setting if the attached terminal provides local echo. CLI result codes The required level of verbosity for command result codes. The available options are: • Verbose • Numeric • None Digi TransPort User Guide...
Page 269 6=8 Data Even Default 0 &Kn Where n = Flow Control 0=None 1=Hardware 2=Software 3=Both &En Where n = Enable echo on this interface 0=No echo 1=echo &Vn Where n = CLI result codes 0=numeric 1=verbose Digi TransPort User Guide...
Page 270 100ms (5 times 20ms) is a reasonable value. Escape Character The character used in the escape sequence. The default is the + symbol (ASCII value 43, 0x2b). Changing this value has the same effect as changing the S2 register. Digi TransPort User Guide...
Page 271 When the Async port detects the following sequence: <guard time 1 sec>---<guard time 1 sec> Instead of outputting the three minus characters (they are removed from the output stream), a BREAK condition is placed on the Async transmitter for 1 second. Digi TransPort User Guide...
Page 272 S45=n Where n= DTR de-bounce 0-255 S2=n Where n= Escape Character ASCII value S12=n Where n= Escape delay 0-255 S15=n Where n= Forwarding Timeout 0-255 S3=n Where n= Break Transmit Escape Character ASCII value Digi TransPort User Guide...
Page 273 Select 0 from the drop-down selection box and click the button to save profile 0 after making any changes. Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter &Yn Where n = Power-up profile n &Zn Where n = Load Profile n &Wn Where n = Save Profile n Digi TransPort User Guide...
Page 274: Sync Parameters
Digi routers can support these. HDLC is a synchronous protocol that is still in use and can be used with Digi routers. This section describes how to configure the synchronous communications interfaces. To enable synchronous mode, a protocol such as LAPB must be configured to use a synchronous port as its lower layer interface.
Page 275: Rate Adaption Parameters
When using a TCP connection, these text entry boxes allow the user to specify the IP address and port number that the protocol should use. Listen on Port The port number that the router is listening on when in socket mode. Digi TransPort User Guide...
Page 276 IP address Connect to IP Address a.b.c.d Port n a.b.c.d adapt ip_port valid TCP port Connect to IP Address a.b.c.d Port n number adapt lip_port valid TCP port Listen on Port n number Digi TransPort User Guide...
Page 277: Command Mappings Parameters
When substituting a command, upper case characters are considered the same as the corresponding lower case characters. Related CLI Commands Entity Instance Parameter Values Equivalent Web Parameter cmdmapi Replacement From command cmdmapo Command to be substituted Digi TransPort User Guide...
Page 278: Protocol Bindings Parameters
Configure serial interfaces Protocol Bindings parameters Digi routers are soft configurable to allow different protocols to be used on different interfaces. The process of selecting which protocol will be used on a particular interface is referred to as binding. So, for example Serial (ASY) port 0 may be used for an ISDN B channel X.25 connection in which case PAD 0 would be bound to Serial 0 (assuming that PAD 0 is the required PAD).
Page 279 To access the Internet using PPP via a terminal connected to serial interface 2, enter the command: bind ppp 1 asy 2 Currently it is only possible to bind a TANS instance to an ADAPT instance using the bind command. The format of the command is: bind adapt <instance> tans <instance> Digi TransPort User Guide...
Page 280: Transip Serial Ports Parameters
This is equivalent to the S2 register setting. Escape delay s milliseconds The delay required between entering the escape sequence (default +++) and the AT command for the router to drop back into command mode. This is equivalent to the S12 register setting. Digi TransPort User Guide...
Page 281 0-255 Send TCP Keep-Alives every s seconds transip staycon ON,OFF Enable Stay Connected mode transip cmd_echo_off ON,OFF Disable command echo transip escchar Valid ASCII Escape char c character transip esctime 0-255 Escape delay s milliseconds Digi TransPort User Guide...
Page 282: Realport Parameters
Actually, the devices are connected to a Digi device somewhere on the network. RealPort is unique among COM port re-directors because it is the only implementation that allows multiple connections to multiple ports over a single TCP/IP connection.
Page 283 IP as an existing connection, the old existing connection is forcibly reset under the assumption that it is stale. Enable authentication Enables RealPort authentication. Authentication secret Configures the RealPort authentication secret. Digi TransPort User Guide...
Page 284 0-255 Send TCP Keep-Alives every s seconds rport rportkeepalives 0-255 Send RealPort Keep-Alives every s seconds rport exclusive OFF,ON Enable exclusive mode rport auth OFF,ON Enable authentication rport secret Up to 30 Authentication secret characters Digi TransPort User Guide...
Page 285: Multitx Parameters
The serial interface to use. Data received on this serial will be forwarded to all configured remote hosts. Protocol Whether TCP or UDP will be used as the transport method. Socket Inactivity Timeout If there is no data transmitted for the specified number of seconds, the socket will be closed.
Page 286 OFF,ON Reopen Closed Socket multitx sockid Socket ID multitx fwd_match 0-65535 Send serial data only when the match string is present multitx matchstring 0-255 Match String multitx Strip_match OFF,ON Strip match string before sending Digi TransPort User Guide...
Page 287: Configure Advanced Interfaces Settings
The router also supports Multi-link PPP (MLPPP). MLPPP uses both ISDN B-channels simultaneously (and two PPP instances), to provide data transfer speeds up to 128Kbps for applications such as email or establishing a point-to-point connection between two routers. Digi TransPort User Guide...
Page 288: External Modems Parameters
For example, Initialisation string 3 will not be sent unless Initialisation string 1 and Initialisation string 2 are both specified. Initialization strings are not normally required for most applications as the router will normally be pre-configured for correct operation with most networks. Digi TransPort User Guide...
Page 289 Free text field Initialisation string 3 modemcc hang_str Free text field Hang-up string modemcc posthang_str Free text field Post Hang-up string modemcc linit_str Free text field Listening init string modemcc linit_int 0-2147483647 Listening init interval (secs) Digi TransPort User Guide...
Page 290: Ppp Mappings Parameters
When selected, the two associated text boxes become enabled and allow the user to enter the desired data rate (default 2000 bytes/second) that will trigger activation of the second B- channel and the period for which the data rate exceeds that value, before the channel is activated. Digi TransPort User Guide...
Page 291 When the data rate is less than n bytes/sec for s seconds When Always On mode is enabled, these two settings specify the data rate below the traffic must fall and the duration for which it is below the threshold before the B-channel is deactivated. Digi TransPort User Guide...
Page 292 When data rate is greater than n Default 500 bytes/sec mlppp dup_delay 0-2147483648 for s seconds Default 5 mlppp ddown_rate 0-2147483648 When data rate is less than n bytes/ Default 500 mlppp ddown_delay 0-2147483648 for s seconds Default 5 Digi TransPort User Guide...
Page 293: Ppp Parameters
B-channel to increase the bandwidth. However, such a number will not normally include the digits needed to connect to an outside line via a PABX. Digi TransPort User Guide...
Page 294 The default value in this text box will normally work, and should only be changed if it is known that the default is not appropriate. Since PPP is a peer-to-peer protocol, this value is appropriate in most situations. Digi TransPort User Guide...
Page 295 The IP address of the secondary DNS server that the remote peer should use when making DNS requests, should the primary server be unavailable. Request packet data connection Allow the PPP interface to answer incoming calls When enabled, causes the PPP instance to answer an incoming call. Digi TransPort User Guide...
Page 296 The timer is reset with each received PPP packet. if the negotiation is not complete in s seconds The maximum time, in seconds, allowed for the PPP negotiation to complete. If negotiations have not completed within this period, the interface is deactivated. Digi TransPort User Guide...
Page 297 If it is required to use another interface (such as not the interface currently being configured) as the source address for IPsec packets, this may be achieved by selecting the desired interface from the drop-down list and typing the desired interface instance number into the adjacent text box. Digi TransPort User Guide...
Page 298 This effect can be prevented by using the appropriate commands and options within the firewall script. However, on Digi 1000 series routers, or where you are not using a firewall, the same result can be achieved by selecting this option, such as when this option is selected the normal behavior of the router in responding to SYN packets with RST packets is disabled.
Page 299 IP address to this router automatically IPaddr Valid IP address Try to negotiate a.b.c.d as the local a.b.c.d IP address for this router l_addr Valid IP address Use a.b.c.d as the local IP address Default 1.2.3.4 for this router Digi TransPort User Guide...
Page 300 Alternative idle timer for static routes s seconds rxtimeout 0-2147483648 if the link has not received any packets for s seconds maxneg 0-2147483648 if the negotiation is not complete in s seconds do_nat Enable NAT on this interface 0=Off 1=On Digi TransPort User Guide...
Page 301 1=Disable management 2=Disable return RST 3=Disable management and return igmp Enable IGMP OFF, ON ifspeed 64000 bps None. CLI command only. The ppp command allows configuring the interface speed for reporting in SNMP. norxrst OFF, ON Digi TransPort User Guide...
Page 302 Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter gprs_sim Use SIM, Any, SIM 1, SIM 2 0=Any 1=SIM1 2=SIM2 detach_on_fail OFF,ON Detach W-WAN if the link fails detach OFF,ON Detach W-WAN between connection attempts Digi TransPort User Guide...
Page 303 The value in this setting takes precedence over the previous parameter when another PPP instance that is usually inhibited by this one is connected. This parameter would typically be used to reduce the connection retry rate when a lower priority PPP instance is connected. Digi TransPort User Guide...
Page 304 Ethernet interface When enabled, causes the router to route broadcast packets to and from Ethernet interfaces. This will only occur if the PPP instance has issued an address which is part of the Ethernet interface network. Digi TransPort User Guide...
Page 305 Include IMSI information in the Heartbeat message When enabled, causes the router to include the IMSI of the wireless MODEM module in the heartbeat packet. Digi TransPort User Guide...
Page 306 This function is primarily used where IP traffic is being carried over a W-WAN link and where the associated PPP instance has been configured into the always-on mode. Digi TransPort User Guide...
Page 307 The value in this text box specifies the total amount of data that may be transmitted by this PPP instance before the link is blocked for further traffic, and the value in the drop-down list specifies the units which are; KBytes, MBytes, GBytes. Digi TransPort User Guide...
Page 308 On W-WAN routers, this setting specifies the number of times that a PPP instance which was connected and is then disconnected, is allowed to attempt to reconnect before other PPP instances that were inhibited by this PPP instance will be allowed to connect. Digi TransPort User Guide...
Page 309 (such as W-WAN networks). If the data is already compressed (such as .zip files or JPEG images) then the compression algorithm will detect this and send the data without attempting further compression. Digi TransPort User Guide...
Page 310 Setting this buffer to a low value will prevent the amount of unacknowledged data from getting too high. If retransmits are required, a smaller TX buffer helps prevent retransmits flooding the connection. Digi TransPort User Guide...
Page 311 OFF, ON Forward IP broadcasts over this interface if this interface is on the same IP network as an Ethernet interface OFF, ON Send LCP echo request packet to the remote peer Digi TransPort User Guide...
Page 312 Valid IP address Switch to sending pings to IP host a.b.c.d a.b.c.d after n failures ip2count 0-2147483648 Switch to sending pings to IP host a.b.c.d after n failures pingresp 0-2147483648 Ping responses are expected within s seconds Digi TransPort User Guide...
Page 313 Use RADIUS for authentication when acting as a server radiuscfg Use RADIUS instance acttries 0-255 Allow this PPP interface to attempt to connect n times before allowing other PPP interfaces inhibited by this interface to connect Digi TransPort User Guide...
Page 314 Enable MPPE stateless mode other_local_PPP_mode OFF, ON Use PPP for processing CHAP other_local_PPP_inst Use PPP n for processing CHAP tcptxbuf 0-2147483648 TCP transmit buffer size n bytes pppdebug OFF, On norxrst OFF, ON noremaddr OFF, ON Digi TransPort User Guide...
Page 315 When enabled, causes the router to request Address Control Field Compression (ACFC). When negotiated, the address/control fields are removed from the start of the PPP header. Request remote ACFC When checked, this checkbox causes the router to ask the remote device to request ACFC. Digi TransPort User Guide...
Page 316 When enabled, requests a callback when it dials into a remote device. The answering PPP instance of the remote router must also be configured with the telephone number of the calling router and a suitable username, password combination. Digi TransPort User Guide...
Page 317 MS-CHAP When enabled, allows the router to authenticate with a remote unit using Microsoft’s MS- CHAP algorithm. MS-CHAPv2 When enabled, allows the router to authenticate with a remote unit using version 2 of Microsoft’s MS-CHAP algorithm. Digi TransPort User Guide...
Page 318 OFF, ON Request remote (VJ) compression l_pfc OFF, ON Request local PFC r_pfc OFF, ON Remote PFC l_bacp OFF, ON Request BACP l_callb OFF, ON Request callback r_callb Allow remote end to request 0=Off callback 1=Desired 2=Required Digi TransPort User Guide...
Page 319 (valid NUA) ipmode 0=XOT, 1=raw Use TPAD over interface baklcn (Backup) LCN 1-4095 baklcnup 1=up, 0=down (Backup) LCN direction bakl2iface Use backup interface lapb, lapd, tcp, ssl, vxn bakl2nb 0-255 Use backup interface bakcingnua baknum Digi TransPort User Guide...
Page 320 0-11, selected from the drop-down list boxes. • Priority: This column contains drop-down menu boxes which are used to assign a priority to the selected queue. The priorities available are: Very High, High, Medium, Low, and Very Low. Digi TransPort User Guide...
Page 321 0-11 Queue 6 Profile q6prio Queue 6 Priority q7prof 0-11 Queue 7 Profile q7prio Queue 7 Priority q8prof 0-11 Queue 8 Profile q8prio Queue 8 Priority q9prof 0-11 Queue 9 Profile q9prio Queue 9 Priority Digi TransPort User Guide...
Page 322 The ISDN number to make outgoing calls. This must be a valid number in order to allow the router to make outgoing calls. This number could be the number of the Internet Service Provider (ISP) or another router. Digi TransPort User Guide...
Page 323 1-50 name Up to 25 Description characters pppcfg 1-50 username Valid username Username up to 60 characters pppcfg 1-50 password Valid password Password up to 40 characters pppcfg 1-50 phonenum Up to 25 digits Dialout Number Digi TransPort User Guide...
Page 324: Using Text Commands
Desired Local ACCM and Desired Remote ACCM should be set to “0xffffffff”. Using text commands There are no specific PPPoE commands available to the user via the text command interface. The appropriate ppp CLI commands should be used to set the required options. Digi TransPort User Guide...
Page 325: About Dhcp Servers
333 About DHCP servers Digi routers incorporate one or more Dynamic Host Configuration Protocol (DHCP) servers, one for each Ethernet port. DHCP is a standard Internet protocol that allows a DHCP server to dynamically distribute IP addressing and configuration information to network clients.
Page 326: Dhcp Server Parameters For Ethernet N
The IP address of the primary DNS server to be used by clients on the LAN. This will usually be the IP address of the route itself. Alternatively, this may be set to the IP address of an alternative DNS server on the LAN. Digi TransPort User Guide...
Page 327 If the DHCP server is on a different subnet, specifying the IP address of the server in this text box will cause the router to forward DHCP requests to the IP address specified. The DHCP server must be within 4 hops. Digi TransPort User Guide...
Page 328 Wait for s milliseconds before sending DHCP offer reply dhcp wifionly OFF,ON Only send offers to Wi-Fi clients dhcp fwdip Valid IP address Forward DHCP requests to a.b.c.d a.b.c.d dhcp fwdip2 Valid IP address Forward DHCP requests to a.b.c.d a.b.c.d Digi TransPort User Guide...
Page 329: Advanced Dhcp Parameters
Hostname text box. Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter dhcp nxtsvr Valid IP address Next Bootstrap Server a.b.c.d dhcp sname Up to 64 Server Hostname characters dhcp file Up to 64 Boot file characters Digi TransPort User Guide...
Page 330: Advanced Dhcp Options
Valid IP address Secondary NetBIOS Name a.b.c.d Server a.b.c.d dhcp tftp Valid IP address TFTP Server Address a.b.c.d a.b.c.d dhcp Valid IP address FTP Server Address a.b.c.d a.b.c.d dhcp ftproot Up to 64 FTP Root Dir characters Digi TransPort User Guide...
Page 331: Logical Ethernet Interfaces
Logical Ethernet interfaces Logical Ethernet interfaces The web pages in this section are simply a duplicate of the previously described Ethernet interface, pages but they apply to logical, rather than physical Ethernet interfaces. Digi TransPort User Guide...
Page 332: Dhcp Options
Up to 127 octets Value For example, to set the option number to 9 for the LPR Server, the command is: dhcpopt 0 optnb 9 Digi TransPort User Guide...
Page 333: Static Lease Reservations
Valid MAC address MAC Address aa.bb.cc.dd.ee.ff aa.bb.cc.dd.ee.ff Two separate commands are required to set up a mapping, these are: mac2ip <instance> mac <MAC address> mac2ip <instance> IPaddr <IP address> where <instance> can be 0-9. Digi TransPort User Guide...
Page 334: Configure Network Services
The Network Services web page collects together a number of services that are provided by the router into one section to enable the user to quickly enable or disable these services without having to navigate to multiple sections of the menu. Detailed configuration is performed within the specific section. Digi TransPort User Guide...
Page 335: Network Services Parameters
This option also enables support for SFTP for secure file transfers. Enable Telnet Server Selects between a simple telnet server or telnet over SSL. When this option is selected, the simple, insecure version of telnet is enabled. Digi TransPort User Guide...
Page 336 Enable Simple Network Time Server (SNTP) sntp time_src 0=RTC Source 1=GPS 2=NTP Client sockopt ssh_server_ena ON, OFF Enable Secure Shell Server sockopt telnets ON, OFF Enable Telnet over SSL sockopt https ON, OFF Enable Secure Web Server Digi TransPort User Guide...
Page 337: Configure Dns Servers And Dynamic Dns
Configure DNS servers and Dynamic This section describes configuring DNS servers and Dynamic DNS from the web interface and command line. It covers the following topics: • Configure DNS Servers on page 338 • Configure Dynamic DNS on page 344 Digi TransPort User Guide...
Page 338: Configure Dns Servers
The DNS server selection parameters give the ability to specify a DNS server based on the DNS query. For example, DNS lookups for internal servers can be directed to an internal DNS server and all other DNS requests can be sent direct to an external DNS server managed by the ISP. Digi TransPort User Guide...
Page 339 The hostname pattern to match for the specified DNS server. This parameter needs a wildcard to prefix the domain name. For example, to match DNS queries for all digi.com servers, enter *.digi.com. When using this feature, it is recommended that the last DNS server selection hostname pattern is set to * to match all other DNS lookups.
Page 340 Valid IP address DNS Server a.b.c.d dnssel secsvr Valid IP address Secondary DNS Server a.b.c.d dnssel PPP,Ethernet Interface x,y dnssel Valid interface Interface x,y number dnssel ipent PPP,Ethernet Interface x,y dnssel ipadd Valid interface Interface x,y number Digi TransPort User Guide...
Page 341: Dns Server Update Parameters
The DNS zone to update. When using Dynamic DNS, it will be necessary to have domain name (this may be purchased from an appropriate vendor). This domain name, such as mycompany.com is what should be entered into the zone field. Digi TransPort User Guide...
Page 342 The permitted variance between the router’s time and that of the DNS server. If the time difference exceeds this limit, the DNS update will fail. Allow DNS clients to cache this entry for s seconds How long a router that resolved the address is allowed to cache that address. Digi TransPort User Guide...
Page 343 –2147483648 - Local time offset from GMT n 2147483647 (hours) dnsupd fudge 0 – 2157483648 Required Time Accuracy s (seconds) seconds dnsupd 0 – 2157483648 Allow DNS clients to cache this (seconds) entry for s seconds Digi TransPort User Guide...
Page 344: Configure Dynamic Dns
When an interface connects, the client checks the current IP address of that interface. If the IP address differs from that obtained from the previous connection, the Dynamic DNS service is contacted, and the hostnames specified in the Hostname parameters are updated with the new address. Dynamic DNS parameters Digi TransPort User Guide...
Page 345 Service Provider Selects the Dynamic DNS service provider. Dynamic TransPort routers support the Dynamic DNS services Dynamic DNS (at dyn.com) No-IP (at noip.com). TransPort routers may be compatible with other Dynamic DNS services, which can be selected by setting the Service Provider setting to Other.
Page 346 When default route/interface x,y becomes active, send DDNS update dyndns ifadd 0 -2147483647 When default route/interface x,y becomes active, send DDNS update dyndns wildcard 0,1,2 Use Wildcards 0=Disable wildcards 1=Enable wildcards 2=No change to service settings Digi TransPort User Guide...
Page 347: Advanced Dynamic Dns Parameters
0 -255 Update interval d days dyndns noip OFF,ON Supply the IP address in the update dyndns ifvrrpmaster OFF,ON Only send update when this router is the VRRP master dyndns debug OFF,ON Enable debug Digi TransPort User Guide...
Page 348: Configure Ip Routing And Forwarding
Configure IP routing and forwarding This section covers configuring IP routing and forwarding from the web interface and command line. It covers the following topics: • View the TransPort routing table on page 349 • Supported routes on page 349 •...
Page 349: View The Transport Routing Table
View the TransPort routing table View the TransPort routing table To view the Digi TransPort routing table from the web interface, navigate to Management > Network Status > IP Routing Table. From the command line, use the command: route print...
Page 350: Cidr Routing Mode
TransPort routing mode When you enable the TransPort routing mode, CIDR routing is disabled. When the TransPort receives an IP packet to route, the routing table is used to decide through which interface to send the packet. Usually the destination IP address of the IP packet is compared with the IP Address and Mask of each entry in the routing table in index order, regardless of the order in the routing table or length of mask.
Page 351 Whenever an interface is out of service (OOS), any route pointing at the interface will also be out of service. Whenever a route is out of service, the metric value will be set to 16 in TransPort routing mode and 17 in CIDR mode.
Page 352: Ip Routing Parameters
The CIDR metric that the router should use for RIP routing. The default is 120. iBGP Routes The CIDR metric that the router should use for iBGP routes. The default is 200. Maximum static route metric The maximum value for the routing metric. The default is 16. Digi TransPort User Guide...
Page 353 When an “Always On” route becomes “In Service”, wait s seconds before using it The value in this text box specifies the delay that the router should apply to a route before passing traffic on it once it has come into service. Digi TransPort User Guide...
Page 354 If an interface is configured for “dial on demand” and fails to connect, Mark a static route as Out Of Service for s seconds routeup_dly 0-2147483647 When an Always On route becomes In Service, wait s seconds before using it Digi TransPort User Guide...
Page 355: Static Routes
The interface used to route the packets is selected from the drop-down list and the interface instance number is entered into the adjacent text box. The available options are: • None • • Ethernet • Tunnel Digi TransPort User Guide...
Page 356 IPaddr Valid IP address Destination Network a.b.c.d a.b.c.d route mask Valid netmask Mask a.b.c.d a.b.c.d route gateway Valid IP address Gateway a.b.c.d route ll_ent Blank,PPP,ETH,TUN Interface x,y route ll_add 0-2147483647 Interface x,y route upmetric 0-2147483647 Metric Digi TransPort User Guide...
Page 357 It is typically used on W-WAN routers that have ISDN backup to prevent unnecessary ISDN connections from being made while a W-WAN connection is first being established. Digi TransPort User Guide...
Page 358 Select the required interface from the drop-down list and enter the interface instance number into the text box as usual. Digi TransPort User Guide...
Page 359 0-2147483647 Make PPP n interface use the alternative idle timeout when this route becomes available route pwr_dly 0-255 Wait for s seconds after power up before allowing this route to activate the interface Digi TransPort User Guide...
Page 360 When this route becomes available, deactivate the following interfaces x,y route unoos_secs 0-2147483647 Keep this route in service for s seconds after OOS state is cleared route rgroup 0-255 Assign this route to recovery group n Digi TransPort User Guide...
Page 361: Default Route N Parameters
Note that this default period may be overwritten in certain situations such as when a firewall stateful inspection rule specifies a different period. When a route is out of service, any alternative routes (with matching subnets) will be used first. Digi TransPort User Guide...
Page 362 Entity Instance Parameter Values Equivalent Web Parameter def_route descr Up to 20 characters Description def_route gateway Valid IP address Gateway a.b.c.d a.b.c.d def_route ll_ent Blank,PPP,ETH,TUN Interface x,y def_route ll_add 0-2147483647 Interface x,y def_route upmetric 1-16 Metric Digi TransPort User Guide...
Page 363: Advanced Default Route
This feature is useful when it is preferable to close down a backup route quickly when a primary route comes back into service. Digi TransPort User Guide...
Page 364 Do not allow this interface to be activated by this route for s seconds after the last activation attempt The delay to wait before re-initiating a connection after it has dropped while still required. Digi TransPort User Guide...
Page 365 If one route in a group comes back into service, all routes with a lower priority (metric) also have their out of service status cleared. Digi TransPort User Guide...
Page 366 Only queue one packet whilst waiting for the interface to connect def_route deact_ent Blank,PPP When this route becomes available, deactivate the following interfaces x,y def_route deact_add 0-2147483647 When this route becomes available, deactivate the following interfaces x,y Digi TransPort User Guide...
Page 367 When this route becomes available, deactivate the following interfaces x,y def_route unoos_secs 0-2147483647 Keep this route in service for s seconds after OOS state is cleared def_route rgroup 0-255 Assign this route to recovery group n Digi TransPort User Guide...
Page 368: Rip Parameters
When enabled, allows an incoming, matching RIP update to change the metric of the static route. This happens when the update matches a configured static route. Enable Poison Reverse When enabled, enables poison reverse, to notify when a neighboring router is unavailable. Digi TransPort User Guide...
Page 369 0-2147483647 Mark routes as unusable if we don’t get advertisement for s seconds riplingerto 0-2147483647 Delete routes after another s seconds updatestatic on,off Allow RIP to update static routes poisonreverse on,off Enable Poison Reverse Digi TransPort User Guide...
Page 370 Up to ten IP addresses may be added. The Add and Delete buttons work in the usual way for configuration tables. Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter riprx IPaddr Valid IP address IP Address a.b.c.d a.b.c.d Digi TransPort User Guide...
Page 371 Selecting Disable means that the key should not be used. The end month is selected from the second drop-down list. Selecting None means that the key should not be used. The year is entered into the text box and can be in two- or four-digit format. Digi TransPort User Guide...
Page 372 0-255 Key ID ripauth sday 0-31 Valid from d,m,y ripauth smon 0-12 Valid from d,m,y ripauth syear 0-65535 Valid from d,m,y ripauth eday 0-31 Expires d,m,y ripauth emon 0-12 Expires d,m,y ripauth eyear 0-65535 Expires d,m,y Digi TransPort User Guide...
Page 373: Interfaces > Ethernet / Ppp / Gre Parameters
IP address against the list entered on the Configuration > Network > IP Routing / Forwarding > RIP > Global RIP settings > Access Lists page, and if the IP address is present in the list, the packet is allowed through. Digi TransPort User Guide...
Page 374 1=Access List 2=Plain Password 3=MD5 v2 only tun/ ppp ripis on,off Turn on to send updates only when in service tun/ ppp inrip on,off Include interface subnet in RIP advertisements tun/ ppp triggeredrip on,off Enable RIP RFC2091 Digi TransPort User Guide...
Page 375: Ospf Parameters
Save Config File When this button is clicked, the text in the edit window will be saved to the filename specified in the drop-down list above. These three controls allow loading, editing, an saving an OSPF configuration file. Digi TransPort User Guide...
Page 376 Restart OSPF if a fatal error occurs ospf debug OSPF Tracing 0=Off 1=Low 2=Med 3=High ospf ignore_mtu on,off Ignore MTU indications ospf useipsecent on,off Use Interface IPsec source IP Digi TransPort User Guide...
Page 377: Bgp Parameters
BGP parameters BGP parameters The Border Gateway Protocol (BGP) routing protocol is supported by TransPort routers. This page contains the configuration parameters used to control the behavior of BGP. Most of the configuration is controlled by a configuration file (raw text) named bgp.cnf. This file would normally be created in a text editor on a computer and loaded onto the router.
Page 378 Enable BGP conffile BGP Configuration Filename new_cfg_rest on,off Restart BGP after configuration file is saved fatal_rest on,off Restart BGP if a fatal error occurs allow_non_nets on,off Advertise non-connected Default ON networks debug BGP Tracing Digi TransPort User Guide...
Page 379: Ip Port Forwarding / Static Nat Mappings Parameters
When set to 0, no port remapping occurs and the original port number is used. The NAT mode parameter of the appropriate interface must be set to NAPT rather than NAT or OFF for this parameter to take effect. Digi TransPort User Guide...
Page 380: Command Format
0-29 mapport 0-65535 Forward to Internal Port Command format Nat <entry> <parameter> <value> Example commands To set the IP address for entry 0 in the table to 10.1.2.10 enter the command: nat 0 IPaddr 10.1.2.10 Digi TransPort User Guide...
Page 381: Multicast Routes Parameters
Multicast Routes parameters Multicast Routes parameters Digi TransPort routers support multicast routes, allowing them to route packets to multicast group addresses. Up to 20 different static multicast routes may be configured. Static multicast routes must be used in conjunction with the IGMP parameter on the outbound interface.
Page 382 Equivalent Web Parameter mcast 0-19 IPaddr Valid IP address Multicast Address a.b.c.d a.b.c.d mcast 0-19 mask Valid IP address Mask a.b.c.d a.b.c.d mcast 0-19 ll_ent PPP,ETH,TUN Interface x,y mcast 0-19 ll_add Valid interface Interface x,y number 0-2147483647 Digi TransPort User Guide...
Page 383: Virtual Routing And Forwarding (Vrf)
• Virtual Routing Forwarding (VRF) Entity (IVrf) • Equivalent Routing Entry (IRoutingEntries) • Virtual Routing Entry (IVrfEntry) • Multi Protocol BGP Entity (IMpBgp) • Equivalent Cross Virtual Routing Entry (ICrossVrf) • Cross Virtual Routing Entry (ICrossVrfRoutingEntry) Digi TransPort User Guide...
Page 384 The Equivalent Routing Entry and Virtual Routing Entry objects describe a routing table’s entries. Each is an array of Virtual Routing Entries sharing a single IP Subnetwork destination. Attribute name Attribute description Scheme Polling interval Routing Entries Array of Virtual Routing Entries sharing a IPCore Configuration single destination Digi TransPort User Guide...
Page 385 Array of Equivalent Cross Virtual Routing IPCore Configuration Entry BGP Neighbors Array of BGP neighbor entries IPCore Configuration Logical Sons Array of all VRF Entity objects among IPCore Configuration which this Multi Protocol BGP Entity is routing IP packets Digi TransPort User Guide...
Page 386 Routing Protocol Type Routing protocol type (Null, Other, Local, IPCore Configuration Network Managed, ICMP, EGP, GGP, Hello, RIP, IS-IS, ES-IS, Cisco IGRP, BBN, SPF IGP, OSPF, BGP, EIGRP) Outgoing Interface Name Address resolution entity (ARP entity) IPCore Configuration Digi TransPort User Guide...
Page 387: Configuring Vrfs
Verifies the configuration. Displays information [vrf-name](config-if)# ip vrf forwarding about the configured VRFs. vrf-name Name of the VRF export route map used to Saves your entries in the configuration file. export IP prefixes from the VRF Digi TransPort User Guide...
Page 388: Configure Virtual Private Networking (Vpn)
• About Virtual Private Networks (VPNs) on page 389 • About Internet Protocol Security (IPSec) on page 389 • IPsec parameters on page 394 • PPTP parameters on page 445 • OpenVPN parameters on page 447 Digi TransPort User Guide...
Page 389: About Virtual Private Networks (Vpns)
Benefits of IPSec • IPSec is typically used to attain confidentiality, integrity, and authentication in the transport of data across inherently insecure channels. • When properly configured, IPSec provides a highly secure virtual channel across cheap, globally available networks such as the Internet, or creates a “network within a network”...
Page 390 There are two modes of operation for IPSec, transport mode and tunnel mode. • In transport mode, only the payload (such as the data content), of the message is encrypted. • In tunnel mode, the payload and the header and routing information are all encrypted thereby by providing a higher degree of protection.
Page 391 PGP) and on-line credit authorization services (such as Web-based credit card ordering) generally use 128-bit encryption. Note Data rates are the maximum that could be achieved but may be lower if other applications are running at the same time or small IP packet sizes are used. Digi TransPort User Guide...
Page 392 Once you have established a two-way secure link, you can use it to establish some rules for further communication. Before this gets any more complicated, let us assume Digi International is a competent authority to issue certificates, and examine how certificates are used.
Page 393 Remote ID parameter in the Configuration > Network > Virtual Private Networking (VPN) > IPsec > IPsec Tunnels > IPsec n - n > IPsec n page must be set to host@Digi.co.uk. The remote unit must have copies of cert01.pem and privrsa.pem. In addition, any Eroutes that...
Page 394: Ipsec Parameters
For further information refer to the IPsec and VPNs section in this manual. Also check the Technical Notes section of the Digi International web site at www.digi.com...
Page 395 IPsec tunnel. Use interface x,y Use the IP address and mask of the specified interface. Use these settings for the remote LAN These define the remote LAN subnet settings used on the IPsec tunnel. Digi TransPort User Guide...
Page 396 Used when the remote peer is a Cisco device using XAUTH and PSK authentication. RSA Signatures Select this option when the IPsec authentication will use X.509 certificates. XAUTH Init RSA Used when the remote peer is a Cisco device using XAUTH and X.509 certificates for authentication. Digi TransPort User Guide...
Page 397 AES (128 bit keys) • AES (192 bit keys) • AES (256 bit keys) If the dropdown options only display None and Null, the router requires encryption enabling. See your Digi sales contact regarding enabling encryption. Digi TransPort User Guide...
Page 398 Bring this tunnel down if it is idle for h hrs m mins s secs Used when the IPsec tunnel is configured to come up on demand and defines how long the IPsec tunnel should remain up if there is no traffic is being sent on the tunnel. Digi TransPort User Guide...
Page 399 Use the following security on this xauthinitpre, rsa, tunnel. xauthinitrsa eroute ourid String Our ID. eroute ouridtype 0=IKE ID Our ID type. 1=FQDN 2=User FQDN 3=IPv4 Address eroute peerid String Remote ID. eroute privkey Filename RSA Key File. Digi TransPort User Guide...
Page 400 Renew the tunnel after h hrs m mins s secs. This CLI value is entered in seconds only. eroute lkbytes Integer Renew the tunnel after n units of traffic. This CLI value is entered in Kbytes only. Digi TransPort User Guide...
Page 401: Tunnel Negotiation Parameter
IP Address Negotiate a different IP address and Mask eroute neglocmsk IP Mask Negotiate a different IP address and Mask eroute on, off Negotiate a virtual IP address using MODECFG eroute xauthid String XAuth ID Digi TransPort User Guide...
Page 402: Advanced Parameters
IPsec mode Selects the IPsec encapsulation type to use on the IPsec tunnel. In Tunnel mode, the entire IP packet (header and payload) is encrypted. In Transport mode, only the IP payload is encrypted. Use algorithm AH authentication on this tunnel The AH authentication algorithm to use with this IPsec tunnel.
Page 403 2,4. Only tunnel IP packets with Restricts the IP packets that will be tunneled to those with matching TCP/UDP port numbers. local TCP/UDP port n Allow IP packets with matching source TCP/UDP ports to be tunneled. Digi TransPort User Guide...
Page 404 Inhibit this IPsec tunnel when IPsec tunnels n are separated list of Integers eroute requireno Integer Inhibit this IPsec tunnel unless IPsec tunnel n is eroute usesecip on, off IKE negotiation source IP address is taken from the Secondary IP Address. Digi TransPort User Guide...
Page 405 0-65535 Only tunnel IP packets with remote TCP/UDP port in the range of n1 to n2. eroute remlastport 0-65535 Only tunnel IP packets with remote TCP/UDP port in the range of n1 to n2. Digi TransPort User Guide...
Page 406 * character can be used as a wildcard to match multiple user IDs. For example, setting the Peer ID parameter to Digi* would match all remote units having an Our ID parameter starting with Digi, such as Digi01, Digi02, etc. Example To set up multiple users in this way, first set up the Our ID parameter on the host unit to a suitable name, such as Host1.
Page 407: Ipsec Default Action
Equivalent Web Parameter def_eroute nosain drop, pass When a packet is received which does not match any IPsec tunnel. def_eroute nosaout drop, pass When a packet is to be transmitted which does not match any IPsec tunnel. Digi TransPort User Guide...
Page 408: Ipsec Groups
IPsec tunnel, if no Security Associations already exist, it looks up the required parameters in the database. • The TransPort will then create a dynamic IP tunnel containing all the settings from the base IPsec tunnel and all the information retrieved from the database. •...
Page 409 So, if a matching dynamic IPsec tunnel is found, it is used, and the base IPsec tunnel is only matched if no dynamic IPsec tunnel exists. 9. Once the dynamic IPsec tunnel is removed, further outgoing packets will match the base IPsec tunnel and the process is repeated. Digi TransPort User Guide...
Page 410 WEB server, browse to Management > Connections > Virtual Private Networking (VPN) > IPsec. The table indicates the base IPsec tunnel and the Remote Peer ID in the status display, to help identify which remote sites are currently connected. Digi TransPort User Guide...
Page 411 • Peer ID: When the host Digi is acting as a responder during IKE negotiations, the router uses the ID supplied by the remote to decide whether or not the MySQL database should be interrogated.
Page 412 The name of the database to connect to. Database table The name of the table when the remote site information is stored. Remote subnet IP The name of the field in the table where the ‘remip’ data is stored. Digi TransPort User Guide...
Page 413 The name of the field in the table where the password to use in IKE negotiations is stored. Note The default MySQL field names match the matching IPsec tunnel configuration parameter name. The default field name for the password field is password. Digi TransPort User Guide...
Page 414 Remote subnet IP egroup fremmsk String Remote subnet Mask egroup fpeerip String Peer IP Address egroup fbakpeerip IP Address Backup Peer IP Address egroup fpeerid String Peer ID egroup fourid String Our ID egroup fpwd String Password Digi TransPort User Guide...
Page 415 RAM. This can be used as a backup in the event of the main SQL database going offline. To use learning mode, at least one column in the .csv dbfile must be marked as a unique key, with the U prefix. For example, remip is marked as the unique key: peerip[IP],bakpeerid[IP],peerid[K20],password[20],ourid[20],remip[UKIP],remmsk[IP] Digi TransPort User Guide...
Page 416 If there are no learned entries, this command will not create a file. To view the number to learned entries, use the command sql 0 ?, and in the output, see the section headed Learning info: Learning info. items learned:0 matched retrievals:0 Digi TransPort User Guide...
Page 417 IPsec parameters Configure a TransPort to use a backup database Once the router has been configured to run a SQL csv database locally, this backup csv database can be used in the event of the main SQL database going offline. The configuration parameters required are: 1.
Page 418 0 debug_opts 3 • To view the debug data via the ASY 0 port: debug 0 • To view the debug data via telnet: debug t • To disable the SQL debug: sql 0 debug_opts 0 debug off Digi TransPort User Guide...
Page 419: Dead Peer Detection Parameters
Close the IPsec tunnels after no response for n DPD requests The maximum number of DPD requests that will be sent without receiving a response before the IPsec tunnels are closed. Digi TransPort User Guide...
Page 420 Send a DPD request on a healthy link every n seconds failint Integer Send a DPD request on a suspect link every n seconds maxfail Integer Close the IPsec tunnels after no response for n DPD requests Digi TransPort User Guide...
Page 421: Ike Parameters
() symbol before the list of IP addresses. For example, to only capture packets to and from IP host 192.168.47.1, enter ~192.168.47.1 for this parameter. Forward debug to port When enabled, the IKE debug is sent to debug serial port. Digi TransPort User Guide...
Page 422 Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter deblevel 0=Off Debug Level 1=Low 2=Medium 3=High 4=Very High ipaddfilt Comma-separated Debug IP Address Filter list of IP addresses debug on, off Forward debug to port Digi TransPort User Guide...
Page 423 The encryption algorithm used. The options are: • None • • 3DES • AES (128 bit keys) • AES (192 bit keys) • AES (256 bit keys) Authentication The authentication algorithm used. The options are: • None • • SHA1 Digi TransPort User Guide...
Page 424 Renegotiate after h hrs m mins s secs How long the initial IKE Security Association stays in force. When this time expires, any attempt to send packets to the remote system results in IKE attempting to establish a new SA. Digi TransPort User Guide...
Page 425 1, 2, 5 MODP Group for Phase 1 ipsecgroup 1, 2, 5 MODP Group for Phase 2 ltime 1-28800 Renegotiate after h hrs m mins s secs This CLI value is entered in seconds only. Digi TransPort User Guide...
Page 426 2 again. RSA private key file The name of a X.509 certificate file holding the router’s private part of the public/private key pair used in certificate exchanges. See X.509 Certificates on page 392 section for further explanation. Digi TransPort User Guide...
Page 427 RSA private key file delmode 0=Normal SA Removal Mode 1=Remove IKE SA when last IPsec SA removed 2=Remove IPsec SAs when IKE SA remove 3=Both openswan on, off None. This enables support for Openswan IKE implementations. Digi TransPort User Guide...
Page 428 How long the initial IKE Security Association will stay in force. When the IKE Security Association expires, any attempt to send packets to the remote system will result in IKE attempting to establish a new SA. Digi TransPort User Guide...
Page 429 1, 2, 5 MODP Group between x and y rdhmaxgroup 1, 2, 5 MODP Group between x and y ltime 1-28800 Renegotiate after h hrs m mins s secs This CLI value is entered in seconds only. Digi TransPort User Guide...
Page 430 Remove IPSec SAs when IKE SA removed deletes all IPSec SAs that have been created by the IKE SA that has been removed. • Both removes IPSec SAs when their IKE SA is deleted, and delete IKE SAs when their IPSec SAs are removed. Digi TransPort User Guide...
Page 431 Retain phase 1 SA after failed phase 2 negotiation privrsakey Filename RSA private key file delmode 0=Normal SA Removal Mode 1=Remove IKE SA when last IPsec SA removed 2=Remove IPsec SAs when IKE SA remove 3=Both Digi TransPort User Guide...
Page 432 An IP address to which packets containing the specified destination port number are redirected. Forward to Internal Port A port number to which packets containing the specified destination port number are redirected. Port Range Count The number of ports to be matched. Digi TransPort User Guide...
Page 433 Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter tunsnat minport 0-65535 External Port tunsnat maxport 0-65535 Port Range Count tunsnat ipaddr IP Address Forward to Internal IP Address tunsnat mapport 0-65535 Forward to Internal Port Digi TransPort User Guide...
Page 434: Ikev2 Parameters
2 to enable a 1024 bit key length. Note however that this will slow down the process of generating the phase 1 session keys (typically from 1-2 seconds for group 1), to 4-5 seconds. Digi TransPort User Guide...
Page 435 1-28800 Renegotiate after h hrs m mins s secs This CLI value is entered in seconds only. ike2 rekeyltime 1-28800 Rekey after h hrs m mins s secs This CLI value is entered in seconds only. Digi TransPort User Guide...
Page 436 NAT table entry from expiring. RSA private key file The name of a X.509 certificate file holding the router’s private part of the public/private key pair used in certificate exchanges. See X.509 Certificates on page 392 for further explanation. Digi TransPort User Guide...
Page 437 Stop IKE negotiation after n retransmissions ike2 inactto 0-255 Stop IKE negotiation if no packet received for n seconds ike2 natt on, off Enable NAT-Traversal ike2 natkaint Integer NAT traversal keep-alive interval n seconds ike2 privrsakey Filename RSA private key file Digi TransPort User Guide...
Page 438 When the time left until expiry for this SA reaches the value specified by this parameter, the IKEv2 SA will be renegotiated, such as a new IKEv2 SA is negotiated and the old SA is removed. Any IPSec child SAs that were created are retained and become children of the new SA. Digi TransPort User Guide...
Page 439 1-28800 Renegotiate after h hrs m mins s secs This CLI value is entered in seconds only. ike2 rekeyltime 1-28800 Rekey after h hrs m mins s secs This CLI value is entered in seconds only. Digi TransPort User Guide...
Page 440 Equivalent Web Parameter ike2 inactto 0-255 Stop IKE negotiation if no packet received for n seconds ike2 natt on, off Enable NAT-Traversal ike2 natkaint Integer NAT traversal keep-alive interval n seconds ike2 privrsakey Filename RSA private key file Digi TransPort User Guide...
Page 441: L2Tp Parameters
Typically, both the physical layer and logical layer PPP connections would be terminated on the same device, for example, a TransPort router. With L2TP answering the call, the router terminates the layer 2 connection only and the PPP frames are passed in an L2TP tunnel to another device which terminates the PPP connection.
Page 442 Route UDP packets over interface x,y These two text boxes specify the interface and its instance number that should be used for L2TP UDP sockets. Specifying these parameters allow the router to raise the interface should it be disconnected. Digi TransPort User Guide...
Page 443 Route UDP packets over interface l2tp ll_add 0-2147483647 Route UDP packets over interface l2tp rnd_srcport OFF, ON Source Port l2tp name Up to 30 Name characters l2tp auth OFF,ON Authentication Off/Secret l2tp secret Up to 80 Authentication Off/Secret characters Digi TransPort User Guide...
Page 444 Retransmit interval s milliseconds. l2tp retxcnt 0-4294967296 Retransmit count l2tp l1iface 0-255 Layer 1 Interface l2tp OFF,ON Allow this L2TP tunnel to answer incoming ISDN calls. l2tp Up to 9 digits l2tp Up to 17 digits Sub-address Digi TransPort User Guide...
Page 445: Pptp Parameters
When enabled, the router acts as a PPTP server and accepts incoming VPN connections. Enable Server mode When enabled, the router sends call_out call requests to the remote device. In the default state which is unchecked, the router sends a call_in request to the remote device. Digi TransPort User Guide...
Page 446 PPTP parameters Enable Socket mode When enabled, enables the use of a Digi proprietary mode whereby PPP packets are sent via the PPTP control socket rather than in GRE packets. Encrypt control data using SSL version n When enabled, the router encrypts the control data using SSL. This is a Digi proprietary function and is not part of standard PPTP.
Page 447: Openvpn Parameters
OpenVPN parameters OpenVPN can be used for connecting to the router for secure management as well as access to services on the LAN side of the TransPort router, such as corporate messaging services, file servers and print servers for example.
Page 448: Openvpn N Parameters
Used to set the Maximum Transmit Unit for the OpenVPN instance, in bytes. The default setting is 1400. Metric The connected metric, changing this value will alter the metric of dynamic routes created automatically for this interface. Digi TransPort User Guide...
Page 449 Link socket protocol OpenVPN can use TCP or UDP as the transport protocol. Select the required protocol here. TLS auth password / Confirm TLS auth password Allows the OpenVPN instance to use an extra level of security by having a TLS password configured.
Page 450 Maximum time, in seconds, to allow for a data channel key negotiation. Key renegotiation interval (seconds) Interval between key re-negotiations. Key renegotiation bytes If non-zero, a key renegotiation will take place after this many bytes have traveled through the data channel in either direction. Digi TransPort User Guide...
Page 451 Get link socket source address from this interface x,y y= interface number ovpn 0-2147483647 ovpn metric 0-2147483647 Metric ovpn do_nat 0,1,2 NAT mode 0=Off 1=Address only 2= Address and port ovpn ipanon OFF,ON IP analysis ovpn firewall OFF,ON Firewall Digi TransPort User Guide...
Page 452 0-2147483647 Packet replay ID window ovpn treplay 0-2147483647 Packet replay time window (seconds) ovpn pingint 0-2147483647 OpenVPN TX ping interval (seconds) ovpn pingto 0-2147483647 OpenVPN RX ping timeout (seconds) ovpn inciv OFF,ON Include IV Digi TransPort User Guide...
Page 453 OFF,ON Debug Supported Cipher and Digest values for OpenVPN Cipher values Digest values DES-EDE-CBC md2WithRSAEncryption AES128 ssl2-md5 DES-CBC sha1WithRSAEncryption AES-128-CBC ssl3-sha1 AES192 ssl3-md5 AES-192-CBC SHA1 DES-EDE3-CBC AES-256-CBC RSA-MD2 AES-256 md5WithRSAEncryption DES3 RSA-SHA1 RSA-SHA1-2 RSA-MD5 Digi TransPort User Guide...
Page 454: Configure Secure Sockets Layer (Ssl)
SSL Server parameters on page 457 About the Secure Sockets Layer (SSL) The secure socket layer (SSL) provides a secure transport mechanism is supported by Digi’s TransPort routers. Some sites require client side authentication when connecting to them. The router’s SSL client handles the authentication for SSL connections using certificates signed by a Certificate Authority (CA).
Page 455: Ssl Clients Parameters
Add button on the right-hand side is clicked to add the entry into the table. Once an entry has been added, it can be removed by clicking the Delete button in the right-hand column. Digi TransPort User Guide...
Page 456 Up to 12 characters Client Certificate Filename (DOS 8.3 format) sslcli keyfile Up to 12 characters Client Private Key Filename (DOS 8.3 format) sslcli cipherlist Colon-separated list Cipher List of ciphers sslcli IPaddr Apply to Destination IP Address Digi TransPort User Guide...
Page 457: Ssl Server Parameters
Up to 12 characters Server Certificate Filename (DOS 8.3 format) sslsvr keyfile Up to 12 characters Server Private Key Filename (DOS 8.3 format) sslsvr Blank, TLS1, SSL2 SSL Version sslsvr cipherlist Colon-separated list Cipher List sslsvr debug OFF, ON Digi TransPort User Guide...
Page 458: Configure Secure Shell (Ssh) Server And Client
Configure Secure Shell (SSH) server and client This topic covers configuring the Secure Shell (SSH) server and client. It covers the following topics: • About the Secure Shell (SSH) server on page 459 • Configure Secure Shell (SSH) server parameters on page 460 •...
Page 459: About The Secure Shell (Ssh) Server
About the Secure Shell (SSH) server About the Secure Shell (SSH) server The Secure Shell (SSH) server allows remote peers to access the router over a secure TCP connection using a suitable SSH client. The SSH server provides a Telnet-like interface and secure file transfer capability.
Page 460: Configure Secure Shell (Ssh) Server Parameters
Configure Secure Shell (SSH) server parameters Configure Secure Shell (SSH) server parameters Configuring SSH is performed on the Configuration > Network > SSH Servers page. Parameters are as follows: Enable SSH Servers When checked, this checkbox enables the SSH servers on the router. SSH Server n parameters The router supports eight individual SSH servers that are configured independently using the options described below.
Page 461 Configure Secure Shell (SSH) server parameters Command Session IP Address a.b.c.d Port p The values in these two text boxes are used to specify the host IP address and port number that the router will use to handle incoming requests for a command session from SSH clients. This is instead of the router’s normal command interpreter.
Page 462 Configure Secure Shell (SSH) server parameters Authentication Preferences The following four configuration options allocate preferences to the authentication methods that should be used. As above, a value of 0 disables the particular authentication method, and lower values indicated greater preference than higher values. For example, if MAC SHA1-96 was the preferred method for authentication, this option would be given the value 1 and the other options given a value of 2 or greater.
Page 463 Configure Secure Shell (SSH) server parameters Related CLI Commands Entity Instance Parameter Values Equivalent Web Parameter port 0-65535 Use TCP port p nb_listen 0-2147483647 Allow up to n connections hostkey1 Up to 12 characters Host Key 1 Filename (8.3 format) hostkey2 Up to 12 characters Host Key 2 Filename...
Page 464: Configure Secure Shell (Ssh) Client
Configure Secure Shell (SSH) Client Configure Secure Shell (SSH) Client SSH clients are configured on the Configuration > Network > SSH Client page. Full book title...
Page 465 Configure Secure Shell (SSH) Client SSH Client parameters Maximum handshake time The time, in seconds, to wait for the server to begin the banner exchange part of the protocol after the socket connects. ‘known_hosts’ Filename The name of file to be used as the regular SSH client. ‘identity’...
Page 466 Configure Secure Shell (SSH) Client Authentication Preferences The following four configuration options allocate preferences to the authentication methods that should be used. As above, a value of zero disables the particular authentication method and lower values indicated greater preference than higher values. So, for example if MAC SHA1-96 was the preferred method for authentication, this option would be given the value 1 and the other options given a value of 2 or greater.
Page 467 Configure Secure Shell (SSH) Client Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter sshcli conn_to 0-10 seconds Time in seconds to wait for the server to begin the banner exchange part of the protocol after the socket connects. sshcli hostsfile Up to 12 characters...
Page 468: Ssh Parameters
SSH parameters Entity Instance Parameter Values Equivalent Web Parameter sshcli svralivemax number Maximum number of keepalives to send without response before the connection is killed sshcli debug Enable Debug 0=Off 1=On SSH parameters To fully configure SSH, a version1 SSH key and a version 2 SSH key need to be generated and the router configured to use them, described below.
Page 469: Generate An Ssh Private Key From The Cli
This process will involve the use of PuTTYgen to create public and private keys. For full details on how to perform this procedure, see Quick Note 010, SSH access using RSA key authentication on www.digi.com. Full book title...
Page 470: Configure Ftp Relay
This section covers configuring FTP relay agents from the web interface and command line interface. It includes the following topics: • About FTP relay agents on page 471 • FTP Relay n parameters on page 472 • Advanced FTP Relay parameters on page 475 Digi TransPort User Guide...
Page 471: About Ftp Relay Agents
The FTP Relay Agent can also be configured to email, as an attachment, any file it was unable to transfer to the FTP server. To do this, go to Configuration > Alarms > SMTP Account and set the Email Template, To, From, and Subject parameters as appropriate, and also configure the SMTP client. Digi TransPort User Guide...
Page 472: Ftp Relay N Parameters
The interval, in seconds, the router should wait in between successive connections attempts. Remain connected for s seconds after a file has been transferred How long, in seconds, the router maintains the connection to the FTP host after transferring a file. Digi TransPort User Guide...
Page 473 The email address of the recipient of email messages generated by the FTP Relay Agent. From The email address of the router. In order for this to work, an email account must be in place with the Internet Service Provider. Subject A brief description of the content of the email. Digi TransPort User Guide...
Page 474 OFF,ON Delete/Retain file frelay smtp_temp Up to 40 characters Use Email Template File frelay smtp_to Up to 100 characters To frelay smtp_from Up to 40 characters From frelay smtp_subject Up to 40 characters Subject Digi TransPort User Guide...
Page 475: Advanced Ftp Relay Parameters
Advanced FTP Relay parameters Tx Buffer Size n bytes The value in this text box specifies the size of the Tx socket buffer. Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter ftpcli txbuf 0-2147483647 Tx Buffer Size Digi TransPort User Guide...
Page 476: Configure Ip Passthrough
Internet with a public IP address. With IP passthrough configured, all IP traffic, not just TCP/UDP is forwarded back to the host computer. This feature can be useful for applications that do not function reliably through network address translation. Digi TransPort User Guide...
Page 477: Ip Passthrough Page Configuration Parameters
When checked, this checkbox excludes the ICMP echo request from passthrough. Other Ports The list of TCP and UDP port numbers in this text box are added to the list of port numbers that are not forwarded to the local PC. Separate port numbers by commas. Digi TransPort User Guide...
Page 478: Related Cli Commands
OFF,ON Telnet over SSL passthru OFF,ON SSH/SFTP passthru snmp OFF,ON SNMP passthru OFF,ON passthru ping OFF,ON Ping passthru ports Comma- Other Ports separated list of ports passthru protos Comma- Other Protocols separated list of protocols Digi TransPort User Guide...
Page 479: Configure Udp Echo
This section covers configuring UDP echo from the web interface or command line. It covers the following topics: • About UDP echo on page 480 • UDP Echo n parameters on page 480 • Related CLI commands on page 481 Digi TransPort User Guide...
Page 480: About Udp Echo
When checked, this check box causes the router to send only a single null data byte. This is useful to minimize packet size when the interface has high data charges, such as W-WAN. When unchecked, the router sends packets containing the router’s serial number and ID as text. Digi TransPort User Guide...
Page 481: Related Cli Commands
PPP,ETH Interface x,y udpecho ifadd Interface x,y Valid interface instance 0-4294967296 udpecho onlyis OFF,ON Only send packet when the interface is In Service udpecho nodata OFF,ON Do not send any data with the UDP packet Digi TransPort User Guide...
Page 482: Configure Quality Of Service (Qos)
It covers the following topics: • About Quality of Service (Qos) on page 483 • Configuring QoS in the web interface on page 484 • DSCP Mappings parameters on page 485 • Queue Profiles parameters on page 486 Digi TransPort User Guide...
Page 483: About Quality Of Service (Qos)
QoS, see the IETF document RFC2472, Definition of the Differentiated Services Field. In Digi TransPort routers, the classification of incoming IP packets for the purposes of QoS takes place within the firewall. The firewall allows the system administrator to assign a DSCP code to a packet with any combination of source/destination IP address/port and protocol.
Page 484: Configuring Qos In The Web Interface
QoS sub-page which controls how QoS behaves on that particular interface. When configuring QoS, be aware that the router supports ten queues, numbered from 0 to 9, and that DSCP codes range from 0 to 64. Digi TransPort User Guide...
Page 485: Dscp Mappings Parameters
64 q <value> Where <value> is the default queue number required and has a value from 0 to 9. Note DSCP code 64 is not actually a valid code, but is used to set up the default priority. Digi TransPort User Guide...
Page 486: Queue Profiles Parameters
When the queue length is between the WRED minimum and maximum values, the percent probability of a packet being dropped increases linearly up to the WRED maximum drop probability. Digi TransPort User Guide...
Page 487 • To change the value of a parameter, use the following command: qprof <instance> <parameter> <value> • To set the maximum throughput for queue profile 5 to 10kbps, enter the following command: qprof 5 maxkbps 10 Digi TransPort User Guide...
Page 488: Configure Time Bands
491 About time bands Digi TransPort routers support time bands. Time bands are used to determine periods of time during which PPP interfaces allowed or prevented from activating. For example, a router in an office could be configured so that the ADSL PPP interface is only raised on weekdays.
Page 489: Enable And Disable Time Bands For A Ppp Instance
Selects which of the four available time band instances should be associated with the PPP instance. Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter tband Timeband The default state of this parameter is blank. Digi TransPort User Guide...
Page 490: Timeband Page Parameters
Off. Clicking the Add button adds the entry into the table. Once an entry is added to the table, remove it by clicking the associated Delete button. To activate this time band instance, navigate to the associated PPP Timeband configuration page, and click the Enable checkbox, or enter the equivalent command line command. Digi TransPort User Guide...
Page 491: Related Cli Commands
For example, to allow PPP routing only on weekdays between 9:00 a.m. and 5:30 p.m. enter these commands: tband 0 days 0 mf tband 0 time0 9 tband 0 state0 on tband 0 days1 mf tband 0 time1 5:30 tband 0 state1 off Digi TransPort User Guide...
Page 492: Configure Advanced Network Settings
The basic network configuration settings cover most configurations and implementations, and in those cases, the settings should not require changes. The Advanced Network Settings are available for those instances where detailed settings for network features require changes. Digi TransPort User Guide...
Page 493: Advanced Network Settings Descriptions
Auto, which allows the server to select the version. • TLSv1 only • SSLv2 only • SSLv3 only Some servers are configured to work with a particular version. Unless this version is specifically requested, the connection attempt will fail. Digi TransPort User Guide...
Page 494 When connected to a serial interface using TCP Advertise an MSS of n bytes sockopt asyrxwin 0-2147483648 Use a Rx Window size of n bytes sockopt sslver Default SSL version for outgoing 0=Auto connections 1=TLSv1 2=SSLv2 Digi TransPort User Guide...
Page 495: Socket Settings
Default source IP address interface sockopt gp_ipadd Valid interface Default source IP address interface number sockopt sock_connto 0-2147483648 Connect Timeout s seconds sockopt sock_inact 0-2147483648 TCP socket inactivity timer s seconds sockopt sock_keepact 0-2147483648 TCP socket keep-alive s seconds Digi TransPort User Guide...
Page 496: Xot Settings
Default source IP address ETH, PPP interface x,y sockopt xot_ipadd Valid interface Default source IP address number interface x,y sockopt xot_listens 0-2147483648 NB of XOT listening sockets sockopt xot_maxack 0-2147483648 Maximum ACK time for XOT data Digi TransPort User Guide...
Page 497: Backup Ip Addresses
IP address has become available/unavailable. Devices that receive the IP address available/unavailable messages search their own backup IP address tables for the IP addresses indicated, and tag those addresses as available/unavailable as appropriate. Digi TransPort User Guide...
Page 498 BUIPaddr Valid IP address Backup IP Address a.b.c.d a.b.c.d ipbu retrysec 0-2147483648 Retry Time s (seconds) ipbu donext OFF,ON Try Next sarsys dest Valid IP address Send Backup IP system messages a.b.c.d to IP address a.b.c.d Digi TransPort User Guide...
Page 499 Examples of legacy protocols are X.25, SNA and LAPB. Digi TransPort routers can connect to legacy networks such as X.25. They can also simulate a legacy network so that equipment that, in the past, would have connected to a legacy network, can connect to the Digi TransPort router instead.
Page 500: Configure Systems Network Architecture Over Ip (Snaip)
Configure Systems Network Architecture over IP (SNAIP) Digi TransPort routers can send Systems Network Architecture (SNA) traffic over TCP/IP, using the DLSw protocol, often called SNAIP. They can also can send HDLC traffic over TCP/IP. About SNA SNA uses Synchronous Data Link Control (SDLC), an unbalanced mode in which there is one master station and one or more secondary stations.
Page 501 ISDN numbers where the trailing digits of the called number match the MSN value. For example, setting the MSN parameter to 123 prevents the router from answering any calls to numbers that do not end in 123. Digi TransPort User Guide...
Page 502: Sna Parameters
REACH ACK SSP message. Send XID with Data A hex string to define binary data and defines an XID SSP message that would be sent in response to a XIDFRAME SSP message being received. Digi TransPort User Guide...
Page 503 120 seconds, when an LAPB instance is being used over ISDN. This timer can be used as a backup hang-up timer, thus saving ISDN call charges. When LAPB is being used on a synchronous port, this parameter should normally be set to 0. Digi TransPort User Guide...
Page 504 NAT box and incoming connections are not possible. This parameter can also be set to Compatible, in which mode both sockets are open to start with and then after a negotiation one of the sockets is dropped. Digi TransPort User Guide...
Page 505 Backoff for x seconds before attempting to connect again When backing off because of too many failed consecutive connection attempts, this parameter defines the time, in seconds, the router should remain idle before attempting another connection. Digi TransPort User Guide...
Page 506 DSAPs(blank=default). snaip send_xid_null 1=enabled, Send Null XID (XID with no 0=disabled Data). snaip xid_data text Send XID with Data. snaip turntxtim 0-2147483647 Tx Turn Around Time. snaip dtemode 1=DTE, 0=DCD Mode. snaip n400 0-255 N400 counter. Digi TransPort User Guide...
Page 507 Use 1 socket. snaip inc_mac_exc 1=enabled, Include MAC Exclusivity 0=disabled Capability. snaip mac_exc_val Mac Exclusivity Value. snaip iunsolresp 1=enabled, Ignore unsolicited response 0=disabled frames. snaip waitforcontact 1=enabled, Wait for Contact before 0=disabled progressing to CONNECT PENDING state. Digi TransPort User Guide...
Page 508 SNAIP instance number. This instance must be available to go online, or this command will fail. To revert back and use the default instance, issue the snadis x command. Normal priorities are used to determine which SNAIP instance gets to use the SYNC port. Digi TransPort User Guide...
Page 509: Configure Tpad Parameters
TPAD is a simplified version of the X.25 PAD specification that is commonly used for carrying out credit-card clearance transactions. Digi routers support the use of TPAD over: • ISDN B and D-channels • • • • Automatic back-up between any two of these “layer 2 interfaces” or “transport protocols” is supported. Digi TransPort User Guide...
Page 510 Selects whether the TPAD instance will use ISDN B-channel X.25, ISDN D-channel X.25, TCP, VXN or SSL as the transport protocol. For ISDN D-channel operation, select LAPD” option. For ISDN B-channel operation or operation through a synchronous port, select LAPB. In the case of LAPB and LAPD an interface number can also be specified.
Page 511 LAPD connections are not repeatedly deactivated. On the backup interface Deactivate LAPB session x seconds after TPAD X.25 call has been cleared. Equivalent to the deactivation timer above, but applies only to backup calls. Digi TransPort User Guide...
Page 512 The first LCN for the backup interface. LCN direction Determines whether the LCN used for the backup X.25 interface is incremented or decremented from the starting value when multiple X.25 instances share a single layer 2 connection. Digi TransPort User Guide...
Page 513 TCP. Port When making a TCP socket connection (such as the transport protocol has been set to TCP not XoT), this parameter must be used to specify the TCP port number to use. Digi TransPort User Guide...
Page 514 Configure TPAD parameters IP length header When making a TCP socket connection (such as the transport protocol has been set to TCP), setting this parameter to On will pre-pend the data sent to the host with a 2-byte length header. The 2-byte length header is not included in the length calculation. When set to 8583 Ascii 4 byte, the IP length header conforms to the ISO 8583 format.
Page 515 Transport protocol, NUA, NUI, IP address etc. If this parameter is not enabled, the router still tries to use direct mode if it detects that it is required, due to the absence of call control information.
Page 516 Force parity when sending data to the terminal If enabled, the router always uses even parity when relaying data from a remote host to a locally connected TPAD terminal. To allow data to pass through without the parity being changed, disable this setting. Digi TransPort User Guide...
Page 517 TPAD session is finished (NO CARRIER is seen on the ASY TPAD port) the network call (X25 or TCP socket) is cleared. The number 1 is a special value. If set to the number 1, the call is cleared immediately, instead of after 1 second. Digi TransPort User Guide...
Page 518 Use NUI. tpad 1-4095 LCN. tpad lcnup 1=up, 0=down LCN direction. tpad baknua text (Backup) Use NUA. tpad baknui numeric text (Backup) Use NUI. tpad baklcn 1-4095 (Backup) LCN. tpad baklcnup 1=up, 0=down (Backup) LCN direction Digi TransPort User Guide...
Page 519 0-99 Use response code n in unable to authorise message. tpad clear_dirtime 0-60000 Clearing time n milliseconds. tpad trandel 0-5000 Delay transmitting the APACS 30 string for x milliseconds after connecting to X.25 host. Digi TransPort User Guide...
Page 520 When the transaction time exceeds x milliseconds, increment the SLA Exceptions statistic. tpad clear_time 0-2147483647 Clear the call x seconds after receiving a response tpad dialctx 0-255 If the terminal dial command specifies V.120 use PANS context x. Digi TransPort User Guide...
Page 521: Configure X.25 Parameters
Off as the length (00 01) is 1, because the length does not include the length of the header. When set to On, the length of the IP header is included in the value, such as 00 03 67 is the encoding as the header bytes are included. Digi TransPort User Guide...
Page 522 1=enabled, Reset XOT PVC if the router is the Initiator 0=disabled X25gen reset_xotpvc_resp 1=enabled, Reset XOT PVC if the router is the Responder 0=disabled X25gen en_incl_iphdr 1=enabled, Include length of header in IP length header 0=disabled Digi TransPort User Guide...
Page 523 LAPB is the link layer used by X.25 applications. On Digi TransPort routers, LAPB can be used over ISDN or over a synchronous serial port. Use: Serial port Port x (in Synchronous Mode) To use the LAPB instance over a synchronous serial port enable this setting and select a serial port number.
Page 524 ISDN calls only where the trailing digits of the sub address called match the Sub- address value. For example, setting the Sub-address to 123 prevents the router from answering any calls where the sub-address called does not end in 123. Digi TransPort User Guide...
Page 525 The data link channel number to use for this virtual ASY port. ASY port The physical ASY port over which to multiplex. Virtual ASY port The virtual ASY port number that this LAPB instance will multiplex over the physical port. Digi TransPort User Guide...
Page 526 Wait x milliseconds before attempting to establish the LAPB link after B-channel becoming active lapb text Only answer calls from numbers whose trailing digits match lapb mux_0710 1=enabled, Mux 0710 mode 0=disabled lapb mux_mode 0=Basic, 1=Error Mux mode Recovery Digi TransPort User Guide...
Page 527 Configure X.25 parameters Entity Instance Parameter Values Equivalent Web Parameter lapb 0-63 DLC # lapb asyport 0-255 ASY port lapb virt_async 0-255 Virtual ASY port Digi TransPort User Guide...
Page 528: Nui Mappings Parameters
If a TPAD call specifies a call in which the NUI matches an entry the call actually placed on the network will contain the respective NUA and no NUI. Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter nuimap text Maps to NUA nuimap text Digi TransPort User Guide...
Page 529 The Network User Address. The Network User Identifier. Call Data The X.25 Call Data. The Protocol Identifier. IP address The IP address. IP Port The IP port number. Interface The Primary interface name. Backup Interface The Backup interface name. Digi TransPort User Guide...
Page 530 Values Equivalent Web Parameter nuaip text nuaip text nuaip text Call Data nuaip text nuaip IPaddr IP address IP Address nuaip ip_port 0-65535 IP Port nuaip swto 0 -15 Interface nuaip buswto 0 -15 Backup Interface Digi TransPort User Guide...
Page 531 The interface and backup interface values are as follows: Parameter Value Interface Type Default LAPD LAPB 0 LAPB 1 LAPD x (instance determined by NUA) LAPB 0 PVC LAPB 1 PVC XOT PVC TCP Stream UDP Stream LAPB 2 LAPB 2 PVC Digi TransPort User Guide...
Page 532: Calls Macros Parameters
(excluding the ATD). Then click Add. Macro The name of the macro, this can be any text. Command The X.25 call command. Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter macro name text Macro macro text Command Digi TransPort User Guide...
Page 533 The protocol ID (PID) to use when the router switches an IP connection to X.25. The PID field takes the format of four hexadecimal digits separated by commas, such as 1,0,0,0, at the start of the Call User Data field in the X.25 call. Digi TransPort User Guide...
Page 534 NUA, NUI or X.25 X25 Call macro name ipx25 hex numbers ipx25 cnf_mode 1=enabled, 0=disabled Confirm Mode ipx25 rfc1086_mode 1=enabled, 0=disabled RFC 1086 Mode ipx25 iphdr 0=Off IP length header 1=On 2=8583 Ascii 4 byte Digi TransPort User Guide...
Page 535 Collectively this set of values is known as a PAD profile. Your router contains four pre-defined standard PAD profiles numbered 50, 51, 90 and 91. You can also create up to four custom PAD profiles numbered 1 to 4 for each PAD instance. Digi TransPort User Guide...
Page 536 Configure X.25 parameters Use PAD over interface Selects whether the PAD instance uses ISDN B-channel X.25, ISDN D-channel X.25, TCP, UDP, VXN, SSL TCP or SSL XoT as the transport protocol. • For ISDN D-channel operation, select the LAPD option is selected.
Page 537 When set to On, and in IP Stream mode, the length of a data sequence is inserted before the data. For the receive direction, it is assumed the length of the data is in the data stream. When set to 8583 Ascii 4 byte, the IP length header conforms to the ISO 8583 format. Digi TransPort User Guide...
Page 538: Pad Settings
Disconnect the layer 2 call if there is no layer 3 call in progress for x seconds The length of time, in seconds, after which the router disconnects a layer 2 link if there are no layer 3 calls in progress. For LAPB sessions, this also terminates the ISDN call. Digi TransPort User Guide...
Page 539 Restart delay IPaddr text Remote IP address buipaddr text Remote IP Address when using the backup interface ip_port 0-65535 IP Stream port iphdr 0=Off, 1=On, 2=8583 IP length header Ascii 4 byte prompt text PAD prompt Digi TransPort User Guide...
Page 540 3 call in progress for x seconds trig_str text Create an event when the following data is on the PAD inactevent 0-2147483647 Create an event when there has been no activity on the PAD for x seconds Digi TransPort User Guide...
Page 541 The stoppads and gopads commands can have the PAD number specified in the syntax to stop and start individual PAD instances. For example: • To stop PAD 1 from processing PAD commands: stoppads 1 • To re-enable PAD 1: gopads 1 Digi TransPort User Guide...
Page 542 PAD profiles. To load a particular profile, select the profile from the list and click the Load Profile button. The parameter table is updated with the values from the selected profile. Digi TransPort User Guide...
Page 543 For example, to define CR, EXT and EOT as data forwarding characters, set this parameter to 18 (2 + 16). If no forwarding characters are defined the Idle timer delay (parameter 4) should be set to a suitable value, typically 0.2 seconds. Description Digi TransPort User Guide...
Page 544 Determines whether or not the PAD> prompt and/or Service/Command signals are issued to the DTE. Option Description PAD prompt and signals disabled PAD prompt disabled, signals enabled PAD prompt enabled, signals disabled PAD prompt enabled, signals disabled Digi TransPort User Guide...
Page 545 This parameter controls the number of pad characters (NUL-ASCII 0) that are sent after each CR to create such a delay. Option Description No padding characters after CR 1-255 Number of padding characters (NUL) sent after CR Digi TransPort User Guide...
Page 546 Line Feeds inserted in data passed TO the DTE Line Feeds inserted in data received FROM the DTE Line Feeds inserted after CRs echoed to DTE The line feed values can be added together to select Line Feed insertion to any desired combination. Digi TransPort User Guide...
Page 547 19 Editing PAD Service Signals The type of service signal sent to the DTE when editing input fields. Option Description No editing PAD service signals. PAD editing service signals for printers. PAD editing service signals for terminals. Digi TransPort User Guide...
Page 548 Page wait feature disabled Number of line feeds sent before halting output Related CLI commands The X.3 PAD parameters can be edited from the command line using the set command, described in X.28 commands on page 552 . Digi TransPort User Guide...
Page 549 X.25 data on a specified LCN. For each X.25 service connection you may setup up multiple PVCs each of which uses a different LCN (or a mixture of PVCs and SVCs). Digi routers support up to four PVCs numbered 0-3.
Page 550 IP address Remote IP address srcipent auto, eth, ppp Use the source IP address from interface x,y srcipadd 0-255 Use the source IP address from interface x,y iniface text Initiator interface respiface text Responder interface Digi TransPort User Guide...
Page 551 Another standard, X.31, defines the procedures used to access X.25 networks via the ISDN B and D-channels. Digi ISDN products include support for allowing connected terminals to access X.25 over ISDN B channels, the ISDN D-channel or over TCP. They can also be configured so if there is a network failure, the router automatically switches to using an alternative service.
Page 552 Logoff and disconnect PAR? List local X.3 parameters PROF Load or save PAD profile RESET Send reset packet RPAR? List remote X.3 parameters RSET Set remote X.3 parameters Set local X.3 parameters STAT Display channel status Digi TransPort User Guide...
Page 553 If a CALL command is issued without the address parameter, it is assumed you wish to go back on-line to a previously established call, having used the PAD recall facility to temporarily return to the PAD> prompt. Digi TransPort User Guide...
Page 554 Reverse charging, specified using the R facility code, allows outgoing calls to be charged to the account of destination address. Whether or not a call is accepted on a reverse charging basis is determined by the service provider and by the type of account held by the called user. Digi TransPort User Guide...
Page 555 ASCII code separated by commas. For example, to enter the data Line1 followed by [CR][LF] and Line2, you would enter: DLine1~13,10~Line2 Digi TransPort User Guide...
Page 556 No answer from user (user alerted) Call rejected Number changed Non-selected user clearing Destination out of order Invalid number format Facility rejected Response to STATUS ENQUIRY Normal, unspecified No circuit/channel available Network out of order Temporary failure Switching equipment congestion Digi TransPort User Guide...
Page 557 Mandatory information element is missing Message type non-existent or not implemented Message not compatible with call state or message type nonexistent or not implemented Information element non-existent or not implemented Invalid information element contents Message not compatible with call state Digi TransPort User Guide...
Page 558 Configure X.25 parameters Code Verbose message Recovery on timer expired Protocol error, unspecified Interworking, unspecified General level 2 call control failure (probable network failure) Note Some verbose messages may be abbreviated by the router. Digi TransPort User Guide...
Page 559 If an unknown reason code is received, the text field is blank. Digi TransPort User Guide...
Page 560 LOG terminates an X.25 session. It causes the PAD to clear any active X.25 calls, disconnect, and return to AT command mode. PAR? command: List Local X.3 parameters PAR? lists the local X.3 parameters for the current session. Digi TransPort User Guide...
Page 561 (Configuration > Network > Legacy Protocols > X.25 > PADs n-n > PAD n > PAD Settings). The pre-defined profiles (50, 51, 90, 91), cannot be overwritten and are permanently configured as shown in the following table: Profile Parameter Digi TransPort User Guide...
Page 562 SET par #:value[,par #:value[,par #:value ...]] STAT Display Channel Status STAT displays the current status for each logical channel indicating whether it is free or engaged. For example: stat PAD STATE ENGAGED FREE FREE FREE Digi TransPort User Guide...
Page 563: Configure Modbus Gateway Parameters
Digi TransPort supports being a MODBUS server only. Clients, such as remote PCs, can send overlapping requests. The router will create a queue of info requests and deal with them appropriately, sending them out over the serial port and relaying the responses back.
Page 564 TCP master. If not used, the TCP master must use the correct slave address. Adjust slave address The address of the slave is adjusted by this value. If left at 0, the slave address is not adjusted at all. Digi TransPort User Guide...
Page 565 IP Port (row 2) modbus nbsocks1 0 -“currently available” Number of sockets (row 2) modbus ipmode1 0=TCP, IP Mode (row 2) 1=UDP modbus rawmode1 1=enabled, 0=disabled Raw Mode (row 2) modbus bcasts_on OFF, ON Broadcast support. Digi TransPort User Guide...
Page 566: Modbus Slaves Parameters
IP Port The IP port number. The default port is 502. IP Mode Select the IP mode using this drop down list. The default mode is TCP. Click on the add button to add the slave. Digi TransPort User Guide...
Page 567: Configure Protocol Switch Software
Configure Protocol Switch software Configure Protocol Switch software The Protocol Switch software is available on some of the Digi TransPort models. About the Protocol Switch software The Protocol Switch provides X.25 call switching between the various protocols and interfaces that may be available including:...
Page 568 Configure Protocol Switch software Protocol Switch software logic The logic used in the switching software is outlined in the flowchart below. The following notes provide a more in-depth explanation of the actions taken in each of the numbered boxes. Digi TransPort User Guide...
Page 569 If the call is being switched over LAPB 0. the router sets the Called NUA to the TE NUA (LAPB 0) value. If the call is being switched over LAPB 1, the router sets the Called NUA to the TE NUA (LAPB 1) value. Digi TransPort User Guide...
Page 570: Digi Transport Protocol Switch Parameters
Configure Protocol Switch software Digi TransPort Protocol Switch parameters The Configuration > Network > Protocol Switch menu has the following sub-menu options: • CUD Mappings • IP Sockets to Protocol Switch • NUA to Interface Mappings • NUA Mappings Digi TransPort User Guide...
Page 571 If any of the Switch from parameters has been set to VXN, and VXN is unavailable, this parameter can be used to specify an alternative interface to switch the X.25 call to. Any of the other interfaces may be selected, or None. If None is selected, no backup call is attempted. Digi TransPort User Guide...
Page 572 The default packet size for X.25 calls being switched onto LAPD. The default packet size is 128, other possible values are 256, 512, or 1024 bytes. Default Window Size The default window size for calls being switched onto LAPD. The default window size is 2; the valid range is 1 to 7. Digi TransPort User Guide...
Page 573 LAPB 2 Default Window Size: 2 1 3 4 5 6 7 The default window size for calls being switched onto LAPB 2. The default window size is 2. The valid range is 1 to 7. Digi TransPort User Guide...
Page 574 PPP interface associated with to the wireless network. If set to Ethernet, the router uses the IP address of the Ethernet port instead of that of the PPP interface, so that you need only set up on Eroute. Digi TransPort User Guide...
Page 575 Answering NUA field with as many digits as you can to ensure it only answers calls destined for that PAD. These same precautions apply to the Allow CLI access from X.25 address parameter on the Configuration > System > General page. Digi TransPort User Guide...
Page 576 7,8,9,10 Default Packet Size 7=128 8=256 9=512 10=1024 X25sw lapb0wpar Default Window Size X25sw blcn 0-65535 X25sw blcnup off, on LCN direction Off=Down On=Up X25sw bmaxvc 0-65535 Max VCs X25sw bnumber ISDN number B-Channel Number Digi TransPort User Guide...
Page 577 Don't switch facilities X25sw nostripfac off, on Don't strip facilities X25sw l2deactcc 0-65535 L2 Deactivation Clear Cause X25sw x25ver84 off, on X25 Version Off=88 On=84 X25sw accdefp7w2 off, on Interpret no facilities on Call Accept as P7W2 Digi TransPort User Guide...
Page 578 Interfaces are coded as follows: Parameter value Interface type None LAPD LAPB 0 LAPB 1 LAPD X (actual instance is determined by NUA) LAPB 0 PVC LAPB 1 PVC XOT PVC TCP stream UDP stream LAPB 2 LAPB 2 PVC Digi TransPort User Guide...
Page 579: Cud Mappings Parameters
LAPB2, or XOT. Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter cudmap cudfrom 0-65536 CUD In cudmap cudto 0-65536 CUD Out cudmap Interface 0,1,2,3,4,12 Interface 0=Any 1=LAPD 2=LAPB 0 3=LAPB 1 4=XOT 12=LAPB 2 Digi TransPort User Guide...
Page 580: Ip Sockets To Protocol Switch
The Protocol Identifier (PID) to use when the router switches an IP connection to X.25. The PID (protocol ID) field takes the format of four hexadecimal digits separated by commas, such as 1,0,0,0, at the start of the Call User Data field in the X.25 call. Digi TransPort User Guide...
Page 581 At the top of the page, the total number of sockets available and the number currently free is shown. Take care to not allocate too many of the free sockets, unless you are confident they are not required for other applications. Digi TransPort User Guide...
Page 582 NUA, NUI or X.25 X25 Call macro name ipx25 hex numbers ipx25 cnf_mode 1=enabled, 0=disabled Confirm Mode ipx25 rfc1086_mode 1=enabled, 0=disabled RFC 1086 Mode ipx25 iphdr 0=Off IP length header 1=On 2=8583 Ascii 4 byte Digi TransPort User Guide...
Page 583: Nua To Interface Mappings
If the connection terminates because of an incoming X25 CALL CLEAR packet, the switch terminates the socket connection. If the connection terminates because the socket is closed, the switch clears the X.25 call by transmitting a CALL CLEAR packet. Digi TransPort User Guide...
Page 584 Interfaces are coded as follows: Parameter Value Interface Type Default LAPD LAPB 0 LAPB 1 LAPD X (actual instance determined by NUA) LAPB 0 PVC LAPB 1 PVC XOT PVC TCP stream UDP stream LAPB 2 LAPB 2 PVC Digi TransPort User Guide...
Page 585: Nua Mappings Parameters
X25map 0-19 nuafrom 0-65536 NUA In X25map 0-19 nuato 0-65536 NUA Out X25map 0-19 interface 0,1,2,3,4,12 Interface 0=Any 1=LAPD 2=LAPB 0 3=LAPB 1 4=XOT 12=LAPB 2 X25map 0-19 ca_or_ci 0,1,2 Called / Calling 0=Both 1=Called 2=Calling Digi TransPort User Guide...
Page 586: Configure Alarms
Configure alarms You can configure the Alarm parameters of your router with Digi TransPort Web Interface. This section covers configuring alarms on the Configuration > Alarms page. It covers the following topics: • Event Settings parameters on page 587 •...
Page 587: Event Settings Parameters
Include event number in the event log and Email, SNMP traps or Syslog messages If enabled, event numbers from the logcodes.txt file are included. Digi TransPort User Guide...
Page 588 Do not log the following event numbers events. event action_dly Number of seconds After power up, wait s (such as 60) seconds before sending Email, SNMP traps, SMS or Syslog messages. event incevnums Include event number. Digi TransPort User Guide...
Page 589: Email Notification Parameters
The email address of the sending unit. Alternatively, you can enter a simple string. This may depend on the SMTP server as to what is accepted. For example: FROM: WR44 FROM: wr44@mycompany.com SUBJECT A string describing the subject of the email message. For example: Subject: Automated message from router Digi TransPort User Guide...
Page 590 Identity field in the Configuration > System > Device Identity web page, or the cmd 0 unitid CLI command. pppip(“instance”); Inserts the IP address for a specific PPP instance, where instance is the PPP instance number. Digi TransPort User Guide...
Page 591 FROM: MyRouter SUBJECT: automatic email MIME-Version: 1.0  This blank line is required Unit: <%smtpid();%> Event: <%email_event();%> This event had sufficient priority to cause the transmission of this email. Please check the attached logs and review. Digi TransPort User Guide...
Page 592 This event had sufficient priority to cause the transmission of this email. Please check the attached logs and review. <%run_cmd("chkst","5");%> In the example above, the command chkst is executed when an event with a priority equal to or higher than 5 is detected. Digi TransPort User Guide...
Page 593 Email To The standard email address format for the intended recipient of the alert. Email From A valid email address that will be accepted by the SMTP server as being authorized to send email. Digi TransPort User Guide...
Page 594 Use email template file Default is EVENT.EML event A valid email address, such as Email To you@yourdomain.com event from A valid email address Email From event subject A brief description of the Email Subject content of the email Digi TransPort User Guide...
Page 595: Snmp Traps Parameters
Instance Parameter Values Equivalent Web Parameter event trap_trig Send a SNMP trap when the 0 disables sending alerts event priority is at least n event trap_max 0-65535 Send a maximum of n SNMP traps per day Digi TransPort User Guide...
Page 596: Sms Messages Parameters
Limits the number of SMS alert messages sent by the router in any one day. n SMS messages have been sent today A status message, indicating how many SMS alert messages have been sent during the last 24- hour period. Digi TransPort User Guide...
Page 597 If the event priority is at least n event sms_temp event.sms (template file stored Use SMS template in the compressed .web file) event sms_max 0-65535 Send a maximum of n SMS messages per day Digi TransPort User Guide...
Page 598: Local Logging Parameters
Local drive to log to USB flash drive. event logfile Name of the file, such as Log filename mylog.txt. event logsizek Size of log in kilobytes, Log size such as 1048576, which is 1MB. event xmllogs None Digi TransPort User Guide...
Page 599: Syslog Messages Parameters
Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter event syslog_trig Send a Syslog message when the event priority is at least n. event syslog_max 0-2147483647 Send a maximum of n Syslog messages per day. Digi TransPort User Guide...
Page 600: Syslog Server N Parameters
The route is then determined by that interface. Priority The checkboxes listed in this section select the event priorities that should cause the event to be logged. Digi TransPort User Guide...
Page 601 86400. syslog source_ent PPP, ETH Interface x,y x=Interface type syslog source_add Interface x,y y=interface number syslog priority Hyphen separated Priority checkboxes. Comma-separated 0,3,5 or all syslog facility Hyphen-separated Facility checkboxes. 0-23 Comma-separated 4,3,5,10,15,22 or all Digi TransPort User Guide...
Page 602: Event Logcodes Parameters
Controls the priority of the event and is used to determine whether an event will trigger email, SMS messages or SNMP traps. Reasons The reason why the event occurred. Not every event has a list of reasons. Digi TransPort User Guide...
Page 603 The priority of the event to determine whether the event will trigger emails, SMS messages or SNMP traps. 0=disabled, 1=highest priority, 9=lowest priority. Alarm Priority If the above Inherit alarm priority from event checkbox is not checked, this parameter selects the priority of the reason. Valid values are 0 to 9. Digi TransPort User Guide...
Page 604 Selecting this radio button will cause the event log to be deleted after the email has been sent. Attachment List ID Which files to attach to the email. The ID refers to the table of files. Digi TransPort User Guide...
Page 605 There are no CLI commands for editing Event logcodes. However, you can edit the LOGCODES.TXT file which holds all the logcode information. For details on how to do this, see View and manage the event log on page 753 Digi TransPort User Guide...
Page 606: Smtp Account Parameters
Most SMTP servers accept an empty string, while others require that this parameter is present. You may need to consult with the SMTP server administrator (or ISP) to determine whether this parameter is required. Digi TransPort User Guide...
Page 607 This checkbox and associated text entry box enable the retry mechanism. If the first attempt to deliver the email fails, the router waits the specified number of seconds (which must be non-zero) before making another attempt. Digi TransPort User Guide...
Page 608 Route using routing table smtp ll_ent Blank,PPP,ETH Route using Interface x,y x=Interface type smtp ll_add 0-255 Route using Interface x,y y=interface number smtp retry_dly 0-255 Resend the email after s seconds if the first attempt fails Digi TransPort User Guide...
Page 609: Configure System Settings
Configure system settings The TransPort device has several groups of configuration settings for general behavior of the system, on the Configuration > Systems pages. This section covers configuring system settings from the web interface and command line. It covers the following topics: •...
Page 610: Device Identity Parameters
Device Identity parameters Device Identity parameters You can configure the identity of your router with the Digi TransPort web interface. To configure your router’s device identity, set the following values: Description A description of the router that can be used to uniquely identify it. This is useful where there...
Page 611 Contact Free text field Contact snmp Location Free text field Location Unitid Free text field Router Identity Hostname Free text field up to 64 Hostname characters sec_hostname Free text field up to 64 Secondary Hostname characters Digi TransPort User Guide...
Page 612: Date And Time Parameters
Select from the drop-down list to set the month. Select from the drop-down list to set the day. Year Select from the drop-down list to set the year. Click this button to cause the above settings to take effect. Digi TransPort User Guide...
Page 613 Date and Time parameters Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter time hh [mm [ss [DD Manually set the time. [MM [YYYY]]]]] Digi TransPort User Guide...
Page 614: Autoset Date And Time Parameters
Greenwich Mean Time. Update for Daylight Saving Time. When checked, this checkbox causes the following parameters to appear, the router uses those settings to automatically adjust the system time to ensure that local daylight saving is used. Digi TransPort User Guide...
Page 615: Start Parameters
The hour at which to switch to daylight saving time. Month The desired month in which to switch back to GMT (UTC). The desired day on which to switch back to GMT. Hour The desired hour at which to switch back to GMT. Digi TransPort User Guide...
Page 616 Update for Daylight Saving Time 0 disables daylight saving. sntp dstonday 0-31 Start: Day sntp dstonhr 0-23 Start: Hour sntp dstoffmon 0-12 End: Month sntp dstoffday 0-31 End: Day sntp dstoffhr 0-23 End: Hour sntp 0=SNTP 1=NTP Default=OFF Digi TransPort User Guide...
Page 617: Ntp Parameters
Select the clock precision limit from the drop-down selection box. Disable NTP when interface x,y is out of service If the specified interface is out of service, the NTP is disabled until the interface is available again. Digi TransPort User Guide...
Page 618 This parameter controls the interval between polls during the startup process. This feature is useful in situations where the router only has an intermittent Internet connection. Digi TransPort User Guide...
Page 619 See minpoll for values burstint 0-255 Startup burst Interval s seconds server2 Valid IP address or NTP Server hostname, such as ntp2@timeserver.org bcast2 Broadcast Mode 0=disabled 1=enabled minpoll2 3-14 Poll Interval s1, s2 See minpoll for values Digi TransPort User Guide...
Page 620 To check the status of the NTP client, use the ntpstat command. View NTP system status information ntpstat sys View NTP peer information ntpstat peers Reset system information and allow NTP to recalculate the drift compensation ntpstat rst Digi TransPort User Guide...
Page 621: General System Parameters
The CLI command to run on start-up. In the above example, this field would be set to the string bas sample.bas. Related CLI commands. Entity Instance Parameter Values Equivalent Web Parameter autocmd Valid CLI command Autorun Commands Digi TransPort User Guide...
Page 622 This can be useful for displaying a standard welcome message or any site-specific user instructions. Digi TransPort User Guide...
Page 623 Valid filename such CLI Pre-Login Banner welcome1.txt postbanner Valid filename such CLI Post-Login Banner welcome2.txt cmdnua 0-1023 Allow CLI access from X.25 address local transaccess With TRANSIP, use access level 0=Super 1=High 2=Medium 3=Low 4=None 8=Read only Digi TransPort User Guide...
Page 624 Use the drop-down selection box to choose which signal status to display. On modules fitted with W-WAN, this LED has additional functionality, it can also be used to display the W-WAN signal strength. Digi TransPort User Guide...
Page 625 SNMP Enterprise Name dnsname Valid Domain Only resolve DNS request for name, such as domain mydomain.org gprsled_mode W-WAN LED to display W-WAN, ISDN/PSTN 0=W-WAN 1=ISDN/PSTN asyled_mode Serial LED to display Connection, 0=Connection 1=DTR status 2=W-WAN signal strength Digi TransPort User Guide...
Page 626: Configure Remote Manager
Digi Remote Manager servers also provide a data storage facility. Using Digi Remote Manager requires setting up a Digi Remote Manager account. Applying for an account is a straightforward procedure; the local sales representative will have details. To set up a...
Page 627: Remote Manager Parameters
Remote Manager parameters Remote Manager parameters Remote Manager parameters are configured on the Configuration > Remote Management pages. Digi TransPort User Guide...
Page 628: Connection Settings
Remote Manager parameters Connection Settings To configure Digi Remote Manager connection settings parameters, set the following values: Enable Remote Management using a client-initiated connection Select this checkbox to display the basic configuration parameters and enable the router to make the connection to the Remote Manager server.
Page 629 Perform limited device management such as pinging the router, as well as provisioning it properly for SMS functionality with Remote Manager For more information on the SMS feature, see the Remote Manager User Guide, Digi part number 90001436. You can configure the Remote Manager SMS Settings parameters using the Digi TransPort web Interface.
Page 630 Check this box to specify the service ID value. Once you check this box, the service ID text box is enabled. You can enter your service ID in this text box. Limit CLI response to You can specify the maximum CLI response size in this text box. Digi TransPort User Guide...
Page 631 Override the destination phone number with the following number cloudsms svcid Number Override the service ID with the following value cloudsms maxcliresp Number Limit CLI responses to the specified number. Default: 0 cloudsms debug OFF |ON Default: OFF Digi TransPort User Guide...
Page 632 Idle Timeout h hours, m minutes, s seconds The timeout entered here defines how long the router should wait after detecting the idle condition before negotiating termination of the link. Default is 10 seconds. Digi TransPort User Guide...
Page 633: Wan Settings
The interval between transmission of keep-alive packets. Assume connection is lost after n timeouts Occasional packet loss is to be expected. This parameter allows for a specified number of lost keep-alive packets before the connection is deemed to have failed. Digi TransPort User Guide...
Page 634 There is an additional cloud CLI command, cloudstat. Enter this command without parameters to return the status of the socket connections, such as whether there is a live connection to the Remote Manager server. Digi TransPort User Guide...
Page 635: Snmp Parameters
• The second MIB is the Monitor MIB, which is a standard MIB that gives access to various Digi TransPort proprietary objects. The OIDs in this MIB do not change with every release, although it is possible for new objects to be added to it.
Page 636: Parameter Descriptions
24 characters can be omitted. A remote engine ID is required when a SNMP v3 Inform is configured. The remote engine ID is used to compute the security digest for authenticating and encrypting packets sent to a user on the remote host. Digi TransPort User Guide...
Page 637 Values Equivalent Web Parameter snmp v1enable Enable SNMPv1 0=Off 1= On snmp v2cenable Enable SNMPv2c 0=Off 1=On snmp v3enable Enable SNMPv3 0=Off 1=On snmp port 0-65535 Use UDP Port Default=161 snmp engineid String SNMPv3 Engine ID Digi TransPort User Guide...
Page 638: Snmp User Parameters
SNMP packets. Confirm Community The community string is echoed as dots in the text entry box. Having a second confirmation field where the string is retyped allows a simple check to be performed for correct entry. Digi TransPort User Guide...
Page 639 Equivalent Web Parameter snmpuser community public / private Community snmpuser name user_name Username snmpuser auth Off,MD5,SHA1 Authentication, None, MD5, SHA1 snmpuser authPassword my_password Authentication Password snmpuser priv Off,DES,AES Encryption, None, DES, AES snmpuser privPassword my_password Encryption Password Digi TransPort User Guide...
Page 640 Adds the username and OID prefix into the table. Delete Deletes the associated entry in the table. Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter snmpfilter user username Username. snmpfilter Valid SNMP OID OID Prefix. Digi TransPort User Guide...
Page 641: Generate Vrrp Traps
SNMP Trap parameters SNMP traps are events that are generated when the specified condition is met. The web page and CLI configuration parameters are described here. The TransPort routers support two trap servers. Generate Enterprise traps When this check box is enabled, the router will generate product-specific traps.
Page 642 SNMP parameters SNMP Trap Server parameters Digi TransPort routers support two SNMP trap servers. The following options and description explain how to configure a trap server. Trap Server IP Address a.b.c.d The IP address of the server running the SNMP software and determines the destination for the trap notifications.
Page 643 Retransmit a maximum n times snmptrap community String Community snmptrap engineid String Trap Server Engine ID snmptrap securityname String SNMP User snmptrap securitylevel noauthnopriv User Security Level authnopriv noauthnopriv=No authpriv Authentication, No Privacy authnopriv=Auth, No Priv authpriv=Auth & Priv Digi TransPort User Guide...
Page 644: Configure Security Settings
Users security settings on page 646 • Firewall configuration on page 651 • RADIUS parameters on page 682 • TACACS+ parameters on page 687 • Advanced security settings on page 691 • Command filters on page 692 Digi TransPort User Guide...
Page 645: System Security Settings
Serial devices • Hub devices Allow autoexec.bat files to run from Mass Storage Devices Enables/disables running the autoexec.bat files from the mass storage devices. Enable "Factory Default" reset button Enables/disables execution of a complete hardware reset. Digi TransPort User Guide...
Page 646: Users Security Settings
Allows user to access low level commands which tend to be status and statistics commands. Read Only Read only access of the configuration. None User is not allowed to login via Web, FTP, SSH, and Telnet. Digi TransPort User Guide...
Page 647 Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter user name String Username (up to 40 chars) user password String Password (up to 40 chars) user access 0=Super Access Level 1=High 2=Medium 3=Low 4=None 8=Read Only Digi TransPort User Guide...
Page 648 4. Select the access level for the user: Super, High, Medium, Low, Read Only, or None. Descriptions of these access levels is in User parameters on page 646. 5. Click Apply. From the command line: Issue the user command, specifying the name, password, and access parameters. Digi TransPort User Guide...
Page 649 Public Key file The name of the file containing the public key for that user. If the public key matches the client supplied public key, the user is allowed access. Digi TransPort User Guide...
Page 650 Alternate IKE Key (up to 14 chars) user fieldip IP Address Remote Peer IP address user ipaddr IP Address Remote Peer IP subnet user mask IP Mask Remote Peer IP subnet mask user keyfile Filename Public Key file Digi TransPort User Guide...
Page 651: Firewall Configuration
PC and then loading the resulting file onto the router using FTP or XMODEM. Digi Routers are shipped with a default fw.txt file that can be used as the starting point for a custom firewall configuration.
Page 652 Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter logclr Reset Hit Counters save Save Restore The firewall rule hits may be viewed from the command line console by using the command: type fwstat.hit Digi TransPort User Guide...
Page 653: Stateful Inspection Settings Parameters
Count missed UDP echo packets as dropped When checked, this checkbox causes the firewall to increment the dropped packet count for each failed echo request in the situation where UDP echo is active on an interface that becomes disconnected. Digi TransPort User Guide...
Page 654 0-4294967296 ICMP s seconds fwall other 0-4294967296 Other protocols s seconds fwall maxuni 0-2147483647 Expire entry after n consecutive packets in one direction fwall cntmissedecho OFF,ON Count missed UDP echo packets Default OFF as dropped Digi TransPort User Guide...
Page 655: Firewall Scripts
A firewall must be individually configured to match the needs of authorized users and their applications. On Digi routers, the rules governing firewall behavior are defined in a script file called FW.TXT. Each line in this file consists of a label definition, a comment or a filter rule.
Page 656: Filter Rules
With the break option, the script processing can be redirected to a new location or to the end of the script if required. • The default action that the firewall assigns to a packet is to block. This means if the packet does not match any of the rules, it is blocked. Digi TransPort User Guide...
Page 657 [icmp_type] is a decimal number representing the ICMP type, or one of the predefined text codes listed in the following table: ICMP type value ICMP type Unreach Echo Echorep squench redir timex paraprob timest timestrap inforeq inforep maskreg maskrep routerad routersol Digi TransPort User Guide...
Page 658 DSCP value as indicated. Like the dscp action, a decimal or hexadecimal number must follow. Digi TransPort User Guide...
Page 659 If event is specified, the log output is copied to the EVENTLOG.TXT pseudo-file and the FWLOG.TXT file. • The event log entry contains the line number and hit count for the rule that caused the packet to be logged. Digi TransPort User Guide...
Page 660 When the routeto option is specified and the firewall is processing a received packet, if the rule is the last matching rule, the packet is tagged as being required to be routed to the specified interface. Digi TransPort User Guide...
Page 661 The basic syntax is: ip-range=“all” | “from” ip-object “to” ip-object [flags] [icmp] where ip-object is an IP address specification. For full details of the syntax with examples, see Specifying IP Addresses and ranges on page 662. Digi TransPort User Guide...
Page 662: Specifying Ip Addresses And Ranges
The most basic form for an ip-object is an IP address preceded by from or to. For example, to block all packets destined for address 10.1.2.98 the script rule is: block out from any to 10.1.2.98 Digi TransPort User Guide...
Page 663 In addition, complete subnets can have NAT applied. The address bits not covered by the subnet mask are taken from the original IP address. For example, to NAT the destination subnet of 192.168.0.0/24 to be 192.168.1.0/24, the firewall rule is: pass out break end from any to 192.168.0.0/24 -> to 192.168.1.0/24 Digi TransPort User Guide...
Page 664 File Transfer Protocol control port telnet Telnet server port smtp SMTP server port http Web server port pop3 Mail server port sntp NTP server port Source/destination port for IKE key 1998 Destination port for XOT packets Digi TransPort User Guide...
Page 665: Filtering On Tcp Flags
ACK flag on. This will bar any attackers from trying to open connections onto the private network by simply specifying the source port as the Telnet port. Note that there is a simpler way to achieve the same effect using the inspect state option, described below. Digi TransPort User Guide...
Page 666 Can be one of the pre-defined strings listed in the following table or the equivalent decimal numeric value: ICMP Type ICMP Value Unreach Echo Echorep Squench Redir Timex Paramprob Timest Timestrep Inforeq Inforep Maskreq Maskrep Routerad Routersol Digi TransPort User Guide...
Page 667 ICMP packets in from this interface. Now if we ever expect to see echo replies in on ppp 0, we should allow echo requests out on that interface too. To do that we would have the rule: pass out break end on ppp 0 proto icmp icmp-type echo Digi TransPort User Guide...
Page 668: Stateful Inspection
Firewall configuration Stateful inspection The Digi routing code stack contains a sophisticated scripted Stateful Firewall and Route Inspection engine. Stateful inspection is a powerful tool that allows the router to keep track of a TCP/UDP or ICMP session and match packets based on the state of the connection on which they are being carried.
Page 669 IP address 100.12.2.9 that are addressed to 10.2.1.34 port x (where x is the source port used in the original request from 10.1.2.34). Digi TransPort User Guide...
Page 670 This is because the first packet in a TCP connection has the SYN flag on and the ACK flag off, and so we only match on that combination. The stateful inspection engine will take care of matching the rest of the packets for this connection. Digi TransPort User Guide...
Page 671 IP address on our network. The inspect-state option can be used with the following ICMP packet types: ICMP Type Matching ICMP Type Echo Echo reply Timest Timestrep Inforeq Inforep Maskreq Maskrep Digi TransPort User Guide...
Page 672 It is tested by either sending a TCP SYN packet or a ping packet to the address/port that caused the oos condition. The secs field specifies the retry time when checking for recovery. Only when the recovery succeeds will the interface become in service again. Digi TransPort User Guide...
Page 673 The inspect-state option can be used with the stat option. The stat option will cause this firewall rule to record statistics associated with this firewall rule. Transaction times, counts and errors are recorded under the PPP statistics with this option. Digi TransPort User Guide...
Page 674 As a further example, the following rule causes outgoing mail traffic to the same top priority queue (46 is, by default, a very high priority code in the DSCP mappings): dscp 46 in on eth 0 proto smtp from any to any Digi TransPort User Guide...
Page 675 The value of the source port field in the TCP/UDP header. Rule Text The rule that caused the packet to be logged is also entered into the log file. In addition, port numbers are expanded to text pre-defined port numbers. Digi TransPort User Guide...
Page 676: Log File Examples
80 TTL: 128 01 Proto: ICMP 0C E1 Checksum: 3297 64 64 64 19 Src IP: 100.100.100.25 64 64 64 32 Dst IP: 100.100.100.50 ICMP: 08 Type: ECHO REQ 00 Code: 0 04 5C Checksum: 1116 ---------- Digi TransPort User Guide...
Page 677 IP Filter - Filter Rule: block return-icmp unreach port-unr in log body syslog break end on eth 0 proto tcp from any to 100.100.100.50 port=telnet Line: 9 Hits: 3 PKT: Source IP: 100.100.100.25 Dest IP: 100.100.100.50 ID: 13317 TTL: 128 Protocol: TCP Source Port: 1441 Dest Port: 23 TCP Flags: S Digi TransPort User Guide...
Page 678 For example: pass out break end on PPP 2 proto TCP from 10.1.1.1 to 10.1.2.1 port=telnet flags S!A inspect-state oos 60 t=10 c=5 d=10 Now, PPP 2 will be deactivated after 10 consecutive failures. Digi TransPort User Guide...
Page 679 Now, the interface is reconnected 60 seconds after it disconnects and recovery procedures start after the interface connects. This option would normally be used with the {rd=x} option so that recovery has control over when the interface connects and disconnects. Digi TransPort User Guide...
Page 680 This rule allows pings outbound, and on detecting a communication failure it uses pings to a address list named listA. The address list named listA could look like this: #addrs listA 10.1.2.1,10.1.3.1,10.1.4.1,10.1.5.1 #addrs listA 10.1.6.1,10.2.1.1,10.2.2.1 This causes the recovery to ping the range of address shown in the list above. Digi TransPort User Guide...
Page 681 Because of the extra processor time required to add all of these additional log entries, debug rules should be removed (or commented out) once the rule set is operating as desired. Digi TransPort User Guide...
Page 682: Radius Parameters
An example of how this might be used could be to perform local authorizations but send accounting start/stop records to an accounting server. Digi TransPort User Guide...
Page 683: Radius Client N Parameters
Enable local authorization if there is no response from the authorization server(s) Enables or disables local authorization if the RADIUS servers are unreachable or not configured. Default is enabled. Un-check the box to disable local authorization. Digi TransPort User Guide...
Page 684 The password that is supplied by the secondary accounting NAS administrator and is used in conjunction with the secondary accounting NAS ID to authenticate RADIUS packets. Confirm Password Type the above password into this text box to enable the router to check that they are identical. Digi TransPort User Guide...
Page 685 Up to 40 characters Primary Accounting Server Password radcli aserver2 Valid IP Address Secondary Accounting Server a.b.c.d IP Address radcli anasid2 Up to 80 characters Secondary Accounting Server NAS radcli apassword2 Up to 40 characters Secondary Accounting Server Password Digi TransPort User Guide...
Page 686 0-2147483647 Retransmit the request after s Default 5 seconds radcli retran 0-2147483647 Stop the negotiation after n Default 3 retransmissions radcli inactto 0-2147483647 Stop the negotiation if there is Default 30 no activity for s seconds Digi TransPort User Guide...
Page 687: Tacacs+ Parameters
TACACS+ parameters TACACS+ parameters The Digi TransPort range of routers supports Terminal Access Controller Access-Control System Plus (TACACS+) for controlling access to the router. About TACACS TACACS+ provides authentication, authorization and accounting (AAA) services. TACACS+ can be used to control the following access methods: •...
Page 688 TACACS+ server. At the end of the session the stop message is sent to the TACACS+ server with the elapsed session time included. TACACS+ to local privilege level mappings TACACS+ level Local level >= 15 Super 12-14 High 8-11 Medium None Digi TransPort User Guide...
Page 689 When checked, this checkbox enables accounting. When accounting is enabled, accounting messages are sent at the start and end of application sessions, where applicable, and update messages are also sent from command sessions when commands are denied locally or after they are executed. Digi TransPort User Guide...
Page 690 OFF,ON Enable local authentication if there is no response from the server(s) tacplus authent OFF,ON Enable TACACS+ Authentication tacplus author OFF,ON Enable TACACS+ Authorization tacplus acct OFF,ON Enable TACACS+ Accounting tacplus debug OFF,ON tacplus tacacspageauth OFF,ON Digi TransPort User Guide...
Page 691: Advanced Security Settings
Use source IP Address x,y Blank=Auto tacplus ip_add 0-2147483647 Use source IP Address x,y tacplus respto 0-2147483647 Response Timeout s seconds Default=30 tacplus inact 0-2147483647 Stop the negotiation if there is no Default=30 activity for s seconds Digi TransPort User Guide...
Page 692: Command Filters
For more information on command filtering, see Application Note 17, Command Line Response Manipulation, which is available on the Digi web site (www.digi.com). The table is generated by typing the desired command into the text box and clicking the Add button.
Page 693: Calling Numbers
To set up an entry to reject a number, use the following commands: rejlst 0 num 1234567 rejlst 0 ans OFF rejlst 0 code 42 To set up an entry to answer a number, use the following commands: rejlst 1 num 1234567 rejlst 1 ans ON Digi TransPort User Guide...
Page 694: Configure Position (Gps) Settings
Configure position (GPS) settings This section describes configuring position (GPS) settings from the web interface and command line. It covers the following topics: • About the GPS module on TransPort routers on page 694 • GPS parameters on page 695 •...
Page 695: Gps Parameters
Checking this checkbox causes the modules to output any other supported messages. IP Connection 1 GPS data may be sent to up to two IP destinations. These are specified in the following two sections of the web page. Digi TransPort User Guide...
Page 696 The protocol to use for sending the messages. Prefix the message with t A text string that should precede the NMEA data, if desired. Suffix the message with t A text string that should follow the NMEA data, if desired. Digi TransPort User Guide...
Page 697: Related Cli Commands
UTC and local date/time (ZDA) 0=Off 1=On oth_on All other messages 0=Off 1=On IPaddr1 Valid IP address Send GPS message to IP address a.b.c.d IPport1 Valid IP port n port n nsecs1 Time s seconds every n interval(s) Digi TransPort User Guide...
Page 698 The following CLI parameters are not available on the web interface: Entity Instance Parameter Values Equivalent Web Parameter gga_int s seconds 0–255 gll_int s seconds 0-255 gsa_int s seconds 0-255 gsv_int s seconds 0-255 rmc_int s seconds 0-255 vtg_int s seconds 0-255 zda_int s seconds 0-255 Digi TransPort User Guide...
Page 699: Configure Gps Support For The Gobi3000 Module
GOBI3000 module supports the use of the GPS functionality. To configure the GOBI3000 module with GPS functionality: Configure the GPS init string should be configured with $GPS_START command: gps 0 init_str $GPS_START Set the GPS asy_add parameter to 3. Digi TransPort User Guide...
Page 700: Manage Applications
This section describes how to manage applications written in the ScriptBasic and Python languages from the web interface and command line. It covers the following topics: • Manage ScriptBasic applications on page 701 • Manage Python applications on page 703 Digi TransPort User Guide...
Page 701: Manage Scriptbasic Applications
Manage ScriptBasic applications Manage ScriptBasic applications To allow end users to extend and enhance the functionality of the TransPort routers, scripting support is provided. ScriptBasic is a scripting language supported by Digi TransPort routers. This section describes how to run simple ScriptBasic scripts.
Page 702 To set User parameter 1 to IPv4 address 10.1.1.1, enter the command: basic 0 string1 10.1.1.1 To execute a script from the CLI, enter the command: bas <myscript.sb> To kill a running script from the CLI, enter the command: Basic 0 kill Digi TransPort User Guide...
Page 703: Manage Python Applications
Manage Python applications About Python programming for Digi TransPort devices Some of the Digi TransPort routers support the Python scripting language. Python allows users to extend and enhance the basic functionality of the router through programming. The routers contain a Python interpreter which may be invoked from the command line. This can be useful for developing scripts.
Page 704 The following additional command line informational/debugging commands are helpful when developing Python scripts. • pycfg files: Displays the status of any Python files. • pycfg mem: Shows the memory usage for the router. • pycfg scripts: Shows the status of any scripts and change count. Digi TransPort User Guide...
Page 705: Manage Networks And Connections
743 • Manage position (GPS) information on page 751 • View and manage the event log on page 753 • Use the Analyser on page 754 • Monitor and manage network top talkers on page 763 Digi TransPort User Guide...
Page 706: View Network Interface Status
The primary and secondary DNS Server IP addresses of the Ethernet interface. These could be either manually configured or assigned via DHCP. Gateway The IP gateway of the Ethernet interface. This could be either manually configured or assigned via DHCP. MAC Address The Ethernet interface’s MAC address. Digi TransPort User Guide...
Page 707 The number of times the router has detected a packet collision on the Ethernet network when transmitting a packet. Late Collisions The number of times the router has detected a late packet collision on the Ethernet network when transmitting a packet. Digi TransPort User Guide...
Page 708 Related CLI commands Command Instance Parameter Equivalent Web Parameter status Displays the current configuration and status of Ethernet interface n. ethstat Displays the statistics for Ethernet interface at\mibclr=eth.n.stats n/a Clears the statistics for Ethernet interface n. Digi TransPort User Guide...
Page 709 The number of receives errors that have occurred on the Wi-Fi interface. Transmit Errors The number of transmit errors that have occurred on the Wi-Fi interface. Received Packets Dropped The number of received packets that have been dropped on the Wi-Fi interface. Digi TransPort User Guide...
Page 710 The current power saving state of the Wi-Fi client. The possible values are Awake and Sleep. Neg. Rates (Mbps) The transmission rates that have been negotiated with the Wi-Fi client. Capability Info The capabilities the router has advertised to the Wi-Fi client. Digi TransPort User Guide...
Page 711 The capabilities of the Access Point that the router is connected to. Related CLI commands Command Options Parameter Equivalent Web Parameter wificonn Displays the Wi-Fi connection table. wificonn cscan Performs wifi network scan wifistat Displays the Wi-Fi statistics. Digi TransPort User Guide...
Page 712 View network interface status Mobile interfaces The Mobile interfaces status page displays the current mobile connection, network and module information. Digi TransPort User Guide...
Page 713 The primary and secondary DNS addresses used by the mobile interface. Data Received The number of data bytes received on the mobile interface while it has been connected. Data Sent The number of data bytes sent on the mobile interface while it has been connected. Digi TransPort User Guide...
Page 714 The International Mobile Subscriber Identity (IMSI) of the mobile module. ICCID This field specifies Integrated Circuit Card Identifier (ICCID) of the SIM card. Firmware This specifies firmware running on mobile module. Bootcode This field specifies bootcode firmware running on the mobile module. Digi TransPort User Guide...
Page 715 The signal strength in dBm being received by the mobile module from EVDO networks. Manufacturer The manufacturer of the mobile module. Model The model of the mobile module. The Mobile Directory Number (MDN) of the mobile module. The Mobile Identification Number (MIN) of the mobile module. Digi TransPort User Guide...
Page 716 Unknown PRL version The version of the Preferred Roaming List (PRL) loaded on the mobile module. Activation status The activation state of the mobile module. It can be of the following: • 0-Not activated • 1-Activated Digi TransPort User Guide...
Page 717 Equivalent Web Parameter modemstat Mobile Information modemstat Scan for Networks pppstat Mobile Statistics (where n is the PPP interface being used by the mobile interface) at\mibs=ppp.n.st Displays the current interface statistics at\mibclr=ppp.n.s Clears the current interface statistics tats Digi TransPort User Guide...
Page 718: Dsl Interface
The current status of the DSL modem. On the DR64 platform, the values can be one of the following: • Idle • Activating • • Training • Link Uptime The amount of time the modem has been in the Up state. Firmware Version The version of the firmware running on DSL modem. Digi TransPort User Guide...
Page 719 The indicator bit values being used on the downstream and upstream DSL channels. Cells The number of cells that have received (downstream) and transmitted (upstream). The number of CRC errors that have occurred downstream and upstream. Digi TransPort User Guide...
Page 720 Displays the current DSL interface status. at\mibs=adsl.0.stats Displays the current DSL interface statistics. at\mibclr=adsl.0.stats Clears the current DSL interface statistics. pppstat DSL Statistics (where n is the PPP interface being used by the DSL PVC). Digi TransPort User Guide...
Page 721: Gre Parameters
The configured source IP address or interface of the GRE interface. Destination The configured destination IP address or domain name of the GRE interface. Further information on particular GRE interfaces can be obtained by selecting the appropriate GRE interface submenu underneath the GRE summary table. Digi TransPort User Guide...
Page 722 Related CLI commands Entity Instance Options Equivalent Web Parameter tunstat Displays the GRE interface specific status and statistics. tunstat clear Clears the statistics for the GRE interface. Digi TransPort User Guide...
Page 723: Isdn Parameters
Drop Link. Clicking the button deactivates the channel. Related CLI commands If a PPP instance has been associated with a B-channel, the statistics for that PPP instance will be available using the normal pppstat command. Digi TransPort User Guide...
Page 724: Pstn Parameters
The number of frames received that contain an error (CRC etc). Transmit Errors The number of frames the interface attempted to transmit, but were found to contain an error. Refresh Clicking this button causes the status page to be refreshed with the updated statistics. Digi TransPort User Guide...
Page 725 The CLI commands are the same as for other interfaces and are described in the PPP status section. The command to obtain the status is: pppstat <n> where <n> is the interface number for the PPP interface assigned to the PSTN module and is shown at the top of the web page. Digi TransPort User Guide...
Page 726: Serial Parameters
The number of times data received on the serial interface has been dropped because of a lack of system messages. Related CLI commands Command Instance Parameter Equivalent Web Parameter Displays the statistics for serial interface n. at\mibs=asy.n Clears the statistics for serial interface n. at\mibclr=asy.n Digi TransPort User Guide...
Page 727 View network interface status Advanced PPP n parameters This page displays the current status and statistics of the selected PPP interface. Digi TransPort User Guide...
Page 728 The number of bytes sent on the PPP interface. LCP Packets Received The number of Link Control Protocol (LCP) packets received on the PPP interface. LCP Packets Sent The number of Link Control Protocol (LCP) packets sent on the PPP interface. Digi TransPort User Guide...
Page 729 Successful Transaction Count The number of successful PPP transactions. Dropped Transaction Count The number of transactions sent but no response has been received. Minimum Transaction Time The shortest response time, in milliseconds, for a PPP transaction. Digi TransPort User Guide...
Page 730 Related CLI commands Command Instance Parameter Equivalent Web Parameter status Displays the current status of PPP interface at\mibs=ppp.n.stats Displays the statistics for PPP interface n. at\mibclr=ppp.n.stats Clears the statistics for PPP interface n. Digi TransPort User Guide...
Page 731 Metric The route metric defines the cost of the route. If CIDR routing is enabled and there are two routes to the same destination, the route with the lower metric is used. Digi TransPort User Guide...
Page 732 The interface that the route uses is currently “Out of Service”. Related CLI commands Command Options Equivalent Web Parameter route print Displays the IPv4 routing table. route printsrc Displays the IPv4 routing table with the src addr information. Digi TransPort User Guide...
Page 733 The next hop gateway to which the routed IP packet was sent to. IP Protocol The IP protocol field in the routed IP packet. Interface The interface that was used when the IP packet was routed. The age, in seconds, of the entry in the IP hash table. Digi TransPort User Guide...
Page 734 The index in the IP hash table of the entry. Usage The number of times the entry has been used. Related CLI commands Command Options Equivalent Web Parameter route hash Displays the IP hash table. route flush Flushes the IP hash table. Digi TransPort User Guide...
Page 735 The time to live, in seconds, for the Port Forwarding entry. If the entry is not used for the specified amount of time, the entry is deleted from the Port Forwarding table. Related CLI commands Command Options Equivalent Web Parameter list Displays the Port Forwarding / NAT table. Digi TransPort User Guide...
Page 736 HASH table errors The number of times there has been a hashing error when looking into the stateful inspection table. In use stateful rules reused The number of times an in-use stateful inspection table has been reused. Digi TransPort User Guide...
Page 737 Trans. Dest IP Addr If the firewall is configured to modify (such as NAT or NAPT) the destination IP address of the IP packets that match the firewall, this defines the new destination IP address of the IP packets. Digi TransPort User Guide...
Page 738 The IP protocol of the IP packets that match the entry. Interface The interface over which the IP packets that match the entry are sent or received. Related CLI commands Command Options Equivalent Web Parameter fwall show Displays the Firewall Stateful Inspection table. Digi TransPort User Guide...
Page 739 Src Port: 12200 Dst Port: 8118 • is the source TCP or UDP port number of the packet that was logged. Src Port • is the destination TCP or UDP port number of the packet that was logged. Dst Port Digi TransPort User Guide...
Page 740 IP address. Mac Address The MAC address. Related CLI commands Entity Instance Parameter Equivalent Web Parameter dhcp status Displays the current status of the DHCP table. dhcp clear Deletes all the entries in the DHCP table. Digi TransPort User Guide...
Page 741 The time to live, in seconds, for the DNS entry. When the TTL reaches zero, the entry is deleted. Related CLI commands Entity Instance Parameter Equivalent Web Parameter status Displays the current status of the DNS table. clear Deletes all the entries in the DNS table. Digi TransPort User Guide...
Page 742 The current transmit rate in kbps of the queue. Limit The current transmit rate limit in kbps of the queue. Weighted Q length The weighted queue length using the Weighted Random Early Discard (WRED) algorithm. Q length The number of packets on the queue. Digi TransPort User Guide...
Page 743: Manage Connections
This page displays the current status of the TCP sockets on the router. The router has two types of sockets: Socket type TCP Sockets Reserved for WEB and FTP connections. General Purpose Sockets Can be used by any application for TCP connections. Digi TransPort User Guide...
Page 744 The number of TCP SYN packets that are currently being processed by the router.s Free SYN entries The number of entries available to process an incoming TCP SYN packet. Related CLI commands Command Options Description socks Displays the current status of the TCP sockets. Digi TransPort User Guide...
Page 745 Manage connections General Purpose Sockets The ID of the general purpose socket. Owner The software task that created the socket. Protocol The protocol being used by the socket. Mode The mode of operation of the socket. Digi TransPort User Guide...
Page 746 The number of free general purpose sockets available on the router. Related CLI commands Command Options Description gpstat Displays the current status of the general purpose sockets. gpstat close <ID> Closes the GP Socket connection with the ID number specified. Digi TransPort User Guide...
Page 747 For IPsec tunnels that have been negotiated using IKEv2, this is the range IP addresses available on the local IP network. The AH algorithm in use, if any. ESP Auth The ESP authentication algorithm in use, if any. ESP Enc The ESP encryption algorithm in use, if any. Digi TransPort User Guide...
Page 748 [dyn] peer <peer> Displays the current status of the IPsec tunnels that match the given peer. The <peer> value can contain the * wildcard character. such as sastat peer uk-north-* or sastat dyn peer uk-north-*. Digi TransPort User Guide...
Page 749: Ipsec Peers
Peer ID The ID of the remote device. Dead Peer Detection (DPD) The DPD status and the time until the next DPD request. NATT Local Port The local NAT-Traversal port. NATT Remote Port The remote NAT-Traversal port. Digi TransPort User Guide...
Page 750 The IP address the router used to negotiate the IKE SA. Time Left The time remaining, in seconds, for the IKE SA to remain in force. Session ID The ID of the IKE SA. Internal ID An internal identifier for the IKE SA. Digi TransPort User Guide...
Page 751: Manage Position (Gps) Information
The current true heading as indicated in the last RMC message from the GPS module. If the router is not moving, this value is not available. Speed The current speed, as indicated in the last RMC message from the GPS module. Digi TransPort User Guide...
Page 752 Valid or Not Valid. IP Connections The current IP address, port number, connection type and status of the IP connections. Related CLI commands Command Options Description at\mibs=gps.0.stats Displays the current status of the GPS receiver. Digi TransPort User Guide...
Page 753: View And Manage The Event Log
This can be done via the Configuration > Alarms > Event Logcodes page. Related CLI commands Command Options Description type eventlog.txt Displays the contents of the event log. clear_ev Clears the contents of the event log. Digi TransPort User Guide...
Page 754: Use The Analyser
The checkboxes under this heading select the serial interfaces over which packets will be captured and included in the analyser trace. The list of available interfaces include the physical serial interfaces, internal virtual serial interfaces (if present), and interfaces used by built-in WWAN and/or PSTN modems. Digi TransPort User Guide...
Page 755 6 for this parameter. Conversely, you may want to capture traffic with a specific IP protocol number only. To do this, use a tilde () symbol before the list of protocol numbers. For example, to only capture UDP traffic, enter 17 for this parameter. Digi TransPort User Guide...
Page 756 IP Options / Trace discarded packets loopon on, off IP Options / Trace loopback packets ipfilt Comma IP Packet Filters / TCP/UDP Ports separated list ipprotfilt Comma IP Packet Filters / IP Protocols separated list Digi TransPort User Guide...
Page 757 Ethernet Interfaces ipanon on, off IP Sources ovpn ipanon on, off IP Sources ipanon on, off IP Sources pppanon on, off PPP Interfaces ipanon on, off GRE IP Sources tunanon on, off GRE Tunnel Interfaces Digi TransPort User Guide...
Page 758 Value in Kbytes The maximum size in Kbytes of the file on the alternate drive. When set to 0, the file size is only limited by the flash device. Digi TransPort User Guide...
Page 759 Use the Analyser ISDN Sources LAPD2 LAPD1 LAPD0 Value LAPB Links LAPD1 LAPD0 Value Digi TransPort User Guide...
Page 760 Physical Port 0 Physical Port 1 To enable the analyser on multiple serial interfaces, add the appropriate values together. For example, to enable the analyser on Physical Ports 0 and 1, the value should 24 (8+16). Digi TransPort User Guide...
Page 761 Display analyser trace Management > Analyser > Trace displays the current analyser trace. Related CLI commands Command Options Description type ana.txt Displays the contents of the event log. ana 0 anaclr Clears the contents of the event log. Digi TransPort User Guide...
Page 762 Ethernet traffic captured from all enabled Ethernet sources. anappp.pcap PPP traffic captured from all enabled PPP sources. Wi-Fi anawifi.pcap Wi-Fi traffic captured from the enabled Wi-Fi source. Wireshark is free software and can be obtained from http://www.wireshark.org. Digi TransPort User Guide...
Page 763: Monitor And Manage Network Top Talkers
The checkboxes under this heading are used to select the PPP interfaces that Top Talkers will monitor. Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter ttalker on | off Ethernet Interfaces ttalker on | off PPP Interfaces Digi TransPort User Guide...
Page 764 Monitor and manage network top talkers Display Top Talkers trace Management > Top Talkers > Trace displays the current top talkers trace. For example: Digi TransPort User Guide...
Page 765: Device Administration Tasks
Device administration tasks This section describes the administration tasks that need to be performed on Digi devices periodically. It covers performing the following topics from the web interface and command line: • View system information on page 766 • Manage files on page 769 •...
Page 766: View System Information
The Administration > System Information page gives an overview of the status of the router. Model The model of the router. Part Number The Digi part number of the router. Ethernet 0 MAC Address The MAC address of the Ethernet 0 interface. Firmware Version The firmware version that is currently running on the router.
Page 767 Which firmware options are enabled on the router. SW Cnts Configuration parameters used by firmware. Switch Mode The current setting of the Ethernet switch on routers with multiple Ethernet interfaces. It can be either Hub or Port Isolate. Digi TransPort User Guide...
Page 768 Equivalent Web Parameter ati5 Model Firmware Version SBIOS Version Build Version Mobile Module SW Opts Part Number Ethernet 0 MAC Address HW Version CPU Utilization uptime Up Time time Date and Time Total Memory Used Memory Free Memory Digi TransPort User Guide...
Page 769: Manage Files
Manage files Manage files The TransPort file system The dir command described below is used to display a list of the currently stored files. A typical file directory will include the following files: Filename Description ana.txt Pseudo file for Protocol Analyser output config.da0...
Page 770: Config Files
Serial Port 0 web page, or use the AT&Y command). You can load a profile for a particular ASY port to take immediate effect, using the Load Profile button on the ASY port’s web page, the ATZ command. Digi TransPort User Guide...
Page 771 If both the pwds.da0 file exists and the config.da0 contains passwords also, the passwords in the config.da0 take precedence and will overwrite the passwords in the pwds.da0 when a save command is issued. Digi TransPort User Guide...
Page 772: Flash Directory
The directory listing of files on the FLASH directory also shows the file size, the access of rw (read write) or ro (read only) and the date the file was last modified. Below the file list is a summary of the FLASH file system, including the number of files, FLASH free, and FLASH used. Digi TransPort User Guide...
Page 773 Manage files For example: Digi TransPort User Guide...
Page 774 The filter can contain wildcards using the *. such as dir *.pem to display all the files ending in .pem. Displays the contents of an USB flash stick if inserted into the USB port of the router. Digi TransPort User Guide...
Page 775: Web Directory
Direct access to these files by an engineer is not normally required. File The name of the file in web file. Size (Bytes) The size of the file, in bytes. Compressed Size (Bytes) The compressed size of the file, in bytes. Digi TransPort User Guide...
Page 776: File Editor
The name of the file to edit. In this field, you can create a new file by typing in the filename and clicking on the Save File button. Load File Load the file specified in the Filename field into the editor box. Save File Save the file to the flash file system. Digi TransPort User Guide...
Page 777 File write operations are carried out as a background task and can be relatively slow due to the constraints of FLASH memory. As a result, the file directory may only be updated several seconds after a particular file operation has been carried out. Digi TransPort User Guide...
Page 778 You can also use wildcards with the dir command in order to narrow your search. The * character can represent one or more characters in the filename. For example, dir fw*.txt will list only the fw.txt and fwstat.txt files, if they are present on the TransPort. FLOCK command: Lock files The flock command prevents any further writing to the FLASH memory.
Page 779 When the upload is complete and the file has been saved, the router responds with the OK result code. To initiate a remote XMODEM upload, establish a Telnet session over ISDN, and then issue the xmodem command from the remote terminal. Digi TransPort User Guide...
Page 780: Usb Support
USB Directory Listing heading on the Administration > File Management > FLASH Directory page. WARNING! For the TransPort WR31, the USB port is for use in a normal location only, not a hazardous location. Note The USB storage device must be formatted using the FAT16 or FAT32 file system.
Page 781 To copy a file named Logcodes.TXT from the USB device to the main flash memory, enter the command: copy u:Logcodes.TXT Logcodes.TXT copy u:Logcodes.TXT If no destination file is specified, the destination is set to the FLASH directory and the file name remains the same. Digi TransPort User Guide...
Page 782 A .all file is a special file that contains all of the firmware and configuration files in a single file that has the file extension .all and is an exact copy of the TransPort router in its current state. This .all file can then be applied to another TransPort router, as long as it is the same model.
Page 783 Manage files USB security To prevent unauthorized access to a TransPort router using a USB storage device, such as inserting a USB storage device with an autoexec.bat file designed to copy usernames and passwords, etc., there are several commands available: 1.
Page 784 • To disable serial devices from using either external USB port on a DR64x0, or on a port connected to a hub on either these ports: usbcon 0 dislist "usb-1-2*.SERIAL,usb-2-2*.SERIAL" usbcon 0 dislist usb-?-2*.SERIAL Digi TransPort User Guide...
Page 785 PSTN or ISDN module, for example: PSTN, ISDN Enclose the tags within angle brackets. Open AND close the configuration sections with the relevant tag. For example, to open: <DR6410> To close: </DR6410> Note the use of the / in the closing tag. Digi TransPort User Guide...
Page 786 3G WWAN modules and some have GPRS modules installed. Different W-WAN modules need different modemcc commands to correctly configure the ASY ports. All these modules can have their own specific commands in one config file. Digi TransPort User Guide...
Page 787 #End of DR6410-H0A config </DR6410-H0A> <DR6410-E0A> #Start of DR6410-E0A config modemcc 0 asy_add 7 modemcc 0 info_asy_add 11 #End of DR6410-E0A config </DR6410-E0A> #Rest of generic config goes below here modemcc 0 apn internet” eth 0 ipaddr 192.168.0.99 Digi TransPort User Guide...
Page 788: Manage X.509 Certificates And Host Key Pairs
This table lists the current CA certificates that have been installed onto the router. Use the View button to view the contents of each certificate. Upload CA Certificates Use the Browse and Upload buttons to upload CA Certificates from a host PC onto the router. Digi TransPort User Guide...
Page 789 CAs might be running on the server. Related CLI commands Entity Instance Parameter Values Equivalent Web Parameter scep host IP Address SCEP Server IP address scep port 0-65535 Port scep path String Path scep String Application scep caident String CA Identifier Digi TransPort User Guide...
Page 790 The router can use certificates to establish IPsec tunnels with other routers and support SSH and HTTPS connections. For more information on using certificates with the router, • See the Application Note 22, IPSec VPN tunnel between two Digi Routers using Certificates and SCEP, available at www.digi.com. Installed Certificates This table lists the current certificates that have been installed onto the router.
Page 791 CA, leave this file blank. RSA Private key Selects either using an existing private key or generating a private key for each certificate request. Private key filename The filename of the private key file to use. Digi TransPort User Guide...
Page 792 The digest algorithm used (MD5 or SHA1) when signed the certificate request. Ignore NONCE in SCEP response The parameter instructs the router to ignore the NONCE field in the SCEP response. The NONCE field is primarily used to prevent replay attacks. Digi TransPort User Guide...
Page 793 State or Province (ST) creq locality String Locality (L) creq orgname String Organisation (O) creq org_unit String Organisational Unit (OU) creq email Email Address E-Mail creq unstructname String Unstructured Name creq digest MD5 or SHA1 Digest Algorithm Digi TransPort User Guide...
Page 794 For example, to generate a certificate request file called request.pem from a private key called priv001.pem, enter: creq new -kpriv001.pem -o request.pem To generate a 512 bit private key called private.pem, and generate a certificate request called certreq.pem using that file, enter: creq new -b512 -kprivate.pem -ocertreq.pem Digi TransPort User Guide...
Page 795: Key Generation
2048 Save in SSHv1 format If this checkbox is checked the private key will be generated in SSH version 1 format. If it is cleared, the private key will be generated in SSH version 2 format. Digi TransPort User Guide...
Page 796 IKE negotiations that involve the private key. Because the USB memory stick only contains a part of the private key, it cannot be used in another router. The command to split a private key is: privsplit <certificate filename> Digi TransPort User Guide...
Page 797: Update Firmware
The router will download a zip file onto the router, uncompress it, validate each file within the zip file and then update the files in its flash file system. The zip file containing the latest firmware version is available from the Digi website (http://transport.digi.com/digi/firmware/ftp/). Download the zip file to your PC before starting the firmware update.
Page 798: Reset The Router To Factory Default Settings
To reset the router’s configuration to the factory defaults, use the following commands: del pwds.da0 copy config.fac config.da0 These commands assume you are using configuration profile 0. If you are using configuration profile 1, use the suffix .da1 instead. Using these commands does not preserve any network settings. Digi TransPort User Guide...
Page 799: Execute A Command
Almost all of the CLI commands detailed in this reference guide can be entered from this page. • Enter the command name and click the Execute button. • The command output is displayed, as shown in the following example. Digi TransPort User Guide...
Page 800: Save Configuration Settings To A File
The PAD parameters on all the PADs are saved to profile 0 of the x3prof file Related CLI commands Parameter Options Equivalent Web Parameter config save Save current configuration to Config n saveall Save all configuration ** The default power up profile is profile 0. *.da0=profile 0, *.da1=profile 1. Digi TransPort User Guide...
Page 801: Reboot The Router
A scheduled reboot can be canceled by clicking the Cancel button. Related CLI commands Command Options Equivalent Web Parameter reboot Immediately reboot 0-86400 In h hrs m mins s secs. This CLI value is entered in minutes only. reboot cancel Cancel reboot Digi TransPort User Guide...
Page 802: Troubleshooting
Troubleshooting This section provides information on resources and processes available for troubleshooting your Digi TransPort device, and covers resolution of several common issues. It covers the following topics: • Troubleshooting Resources on page 803 • Download the debug.txt file on page 804 •...
Page 803: Troubleshooting Resources
When submitting a support request, please include a copy of the debug.txt file from the device’s flash. This will greatly improve the quality of the initial response you receive. It will help the Digi Support team to provide accurate answers to your queries.
Page 804: Download The Debug.txt File
4. Send the debug.txt file as an attachment. Note For Digi TransPort WR44 RR, there are several ways to download the debug.txt file. For information on the other methods, see Quick Note 24 - Extracting the debug.txt file from a Digi TransPort or Sarian router, available on www.digi.com.
Page 805: Cannot Open The Web Interface
2. If it is not, then there is a problem with either the LAN cable or the device to which the TransPort device is connected. If the status indicator is illuminated, check that the PC can communicate with the device. To do this, open the Command Prompt window on your PC and enter the command ping 192.168.1.1.
Page 806: Glossary
Authentication Header Alarm Indication Signal AODI Always On Dynamic ISDN APACS Association of Payment Clearing Services, the UK payments association Access Point Name Asynchronous Transfer Mode or Automatic Teller Machine ARFCN Absolute Radio Frequency Channel Number Digi TransPort User Guide...
Page 807 Data Communication Equipment Distinguished Encoding Rules Data Encryption Standard DHCP Dynamic Host Configuration Protocol DLSw Data-Link Switching Domain Name Server Dead Peer Detection DSCP Differentiated Services Code Point Digital Subscriber Line Data Terminal Equipment Dial-Up Networking Digi TransPort User Guide...
Page 808 Global Positioning System Generic Routing Encapsulation Global System for Mobile Communications HDLC High-Level Data Link Control Header Error Control HMAC Hash Message Authentication Code HSDPA High Speed Downlink Packet Access HSUPA High Speed Uplink Packet Access Digi TransPort User Guide...
Page 809 L2TP Layer 2 Tunnelling Protocol Location Area Code Location Area Identity Local Area Network LAPB Link Access Procedure Balanced LAPD Link Access Protocol D-channel Logical Channel Number Link Control Protocol Longitudinal Redundancy Check Link State Advertisement Digi TransPort User Guide...
Page 810 Network Address and Port Translation Network Access Server Network Address Translation Network Colour Code Network Operation Mode Network User Address Network User Identifier Operation, Administration and Maintenance Out Of Service OPNS Online PUK Negotiation Service OSPF Open Shortest Path First Digi TransPort User Guide...
Page 811 Public Land Mobile Network Point-to-Point Protocol PPPoA Point-to-Point Protocol over ATM PPPoE Point-to-Point Protocol over Ethernet PSDN Packet Switched Data Network Packet System Information PSTN Public Switched Telephone Network Power Up Key Permanent Virtual Circuit Quality of Service Digi TransPort User Guide...
Page 812 Simple Mail Transfer Protocol Systems Network Architecture SNAIP Systems Network Architecture over Internet Protocol SNMP Simple Network Management Protocol SNTP Simple Network Time Protocol Shortest Path First Security Parameters Index Secure Shell Secure Socket Layer Switched Virtual Circuit Digi TransPort User Guide...
Page 813 Universal Serial Bus VLAN Virtual Local Area Network Virtual Private Network VRRP Virtual Router Redundancy Protocol Wide Area Network WCDMA Wide-band Code-Division Multiple Access WRED Weighted Random Early Dropping W-WAN Wireless Wide Area Network X.25 Over TCP Digi TransPort User Guide...