WTI SRM User Manual
  1. Manuals
  2. Brands
  3. WTI Manuals
  4. Modem
  5. SRM
  6. User manual

WTI SRM User Manual

Secure rack modems
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
WTI Part No. 14439
Rev. A
SRM
Secure Rack Modems
User's Guide

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the SRM and is the answer not in the manual?

Questions and answers

Related Manuals for WTI SRM

Summary of Contents for WTI SRM

  • Page 1 WTI Part No. 14439 Rev. A Secure Rack Modems User's Guide...

  • Page 2: Warnings And Cautions

    Warnings and Cautions: Installation Instructions Secure Racking If Secure Racked units are installed in a closed or multi-unit rack assembly, they may require further evaluation by Certification Agencies. The following items must be considered. The ambient within the rack may be greater than room ambient. Installation should be such that the amount of air flow required for safe operation is not compromised.
  • Page 3 Warnings and Cautions Disconnect Power If any of the following events are noted, immediately disconnect the unit from the outlet and contact qualified service personnel: If the power cord becomes frayed or damaged. If liquid has been spilled into the device or if the device has been exposed to rain or water.
  • Page 4 Agency Approvals FCC Part 15 Regulation This equipment has been tested and found to comply with the limits for a Class A digital device, pursuant to part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment.

  • Page 5: Table Of Contents

    Connecting the Power Supply Cables ........4-1 4.1.1. Connect the SRM to Your Power Supply ......4-1 4.1.2.
  • Page 6 Table of Contents 6. Configuration Options (continued) 6.4. Managing User Accounts ..........6-17 6.4.1.
  • Page 7 14. Upgrading SRM Firmware ........
  • Page 8 Table of Contents List of Figures 2.1. Front Panel ............. 2-1 2.2.

  • Page 9: Introduction

    LDAP , Kerberos, TACACS+ and RADIUS. In order to simplify the process of configuring and managing modem functions, administrators can access the SRM via Ethernet Port, RJ45 Serial port or USB Mini Port. A convenient logging function tracks user activity, alarms, rack temperatures and other factors to provide administrators with an audit trail of events and environmental conditions.
  • Page 10 Introduction Typographic Conventions ^ (e.g. ^X) Indicates a control character. For example, the text "^X" (Control X) indicates the [Ctrl] key and the [X] key must be pressed simultaneously. COURIER FONT Indicates characters typed on the keyboard. For example, /RB or /ON 2. [Bold Font] Text set in bold face and enclosed in square brackets, indicates a specific key.

  • Page 11: Unit Description

    RESET: Can be used to restart the SRM operating system as described in  Section 2.3. DEFAULT: Can be used to initialize the SRM to default parameters as described in  Section 2.3. ON: Lights when AC Power is applied.

  • Page 12: Back Panel

    SetUp Ports: A USB Mini Port and an RJ45 Serial Port that can be used to connect  a local device to the SRM unit as described in Section 4.2. For a description of the Setup Port interface, please refer to Appendix B.

  • Page 13: Front Panel Button Functions

    Reboot Operating System - Reset All Parameters to Factory Defaults: Simultaneously press both the SET (or DEFAULT) button and the CLEAR (or RESET) button, hold them for five seconds, and then release. The SRM operating system will reboot; all user-defined parameters will be reset to factory default settings. Note: The RDY Indicator will continue to blink for about 45 seconds while parameters are being erased and keys are rebuilt. The RDY Indicator will then...

  • Page 14: Getting Started

    TCP/IP network. In order to connect ports or select parameters, commands are issued to the SRM via either the Network Port, Modem or Setup Port. Note that it is not necessary to connect to both the Network and Setup Ports.

  • Page 15: Communicating With The Srm

    Interface and the Web Browser Interface. The Text Interface is available via Local PC, SSH Client, or Telnet and can be used to both configure the SRM and create connections between ports. The Web Browser interface is only available via TCP/IP network, and can be used to configure the unit, but cannot create connections between ports.
  • Page 16 Review Help Menu: If you are communicating with the SRM via the text interface (SSH, Telnet or Modem), type /H and press [Enter] to display the Help Menu, which lists all available SRM commands. Note that the Help Menu is not available via the Web Browser Interface.

  • Page 17: Basic Modem Commands

    This section describes basic Modem AT commands that can be used to demonstrate basic modem capabilities. For a complete list of available modem commands, please refer to the AT Command Reference Guide, which can be found in WTI's online User's Guide Archive at: http://www.wti.com/t-product-manuals.aspx Attention command.

  • Page 18: The Wmu Enterprise Management Solution

    The WMU software and user's guide can be downloaded at: ftp://wtiftp.wti.com/pub/TechSupport/WMU/WtiManagementUtilityInstall.exe This completes the Quick Start procedure for the SRM. Prior to placing the unit into operation, it is recommended to refer to the remainder of this user’s guide for important information regarding advanced configuration capabilities and more detailed operation instructions.

  • Page 19: Hardware Installation

    4.1.3. DC Powered Units When connecting a DC Powered SRM unit to your DC Power source, note that the DC terminal block is designed for connection to two separate power sources. First remove the protective cover from the terminal block, attach the wires from the -48 VDC power...

  • Page 20: Cable Connection

    In order to select configuration parameters and review unit status, commands are issued to the SRM via either the Network Port or Setup Port. Note that it is not necessary to connect to both the Network and Setup Ports. Connect your PC COM Port to either the RJ45 format Serial SetUp Port or USB Mini format SetUp Port.

  • Page 21: Basic Operation

    5.1. Communicating with the SRM Unit via Network or Setup Port In order to configure the SRM, you must connect to the unit via Network or Setup Port, and access command mode. Note that, the SRM offers two separate configuration interfaces;...
  • Page 22 Address. Wait for the connect message, then proceed to Step 2. Via Modem: Use your communications program to dial the number for the phone line that you have connected to the SRM's Modem Port. When a dial-up connection is established, Login / Password Prompt: A message will be displayed, which prompts you to enter a username (login name) and password.

  • Page 23: The Web Browser Interface

    Note: In order to use the Web Browser Interface, Web Access must first be enabled via the Text Interface Network Parameters Menu (/N), the SRM must be connected to a TCP/IP network, and your PC must be equipped with a JavaScript enabled web browser. Start your JavaScript enabled Web Browser, key the SRM’s default IPv4 format IP address (192.168.168.168) into the web browser’s address bar, and press [Enter]. Username / Password Prompt: A message box will prompt you to enter your username and password. The default username is "super" (all lower case, no quotes), and the default password is also "super".

  • Page 24: Configuring The Srm For Common Applications

    Modem port. If you have previously altered the configuration of the SRM, then parameters for the SRM's internal modem should be set as follows in order to allow dial-up access to a device connected to the SRM Modem Port: Note: For further instructions regarding configuring SRM Modem parameters, please refer to Section 6.5.2.3.

  • Page 25: Network Accessible Shared Modem

    5.2.2.1. Alternate Configuration for Network Accessible Modem Application If your application requires the Password Bypass and Modem Passthrough parameters to be enabled, the following procedure can be used to allow the SRM to serve as a network accessible Modem: Enable both the Password Bypass and Modem Passthrough parameters as described in Section 6.5.2.3.

  • Page 26: Dial-Up Access To Outbound Ssh/Telnet

    • Modem Passthrough = Off. When the Password Bypass and Modem Passthrough parameters disabled, users can dial-in to the SRM unit to access the SRM command mode and then initiate an outbound SSH/Telnet connection as described in Section 9.3 and Section 9.4. Note: In order to establish an outbound SSH/Telnet connection, Outbound Access must be enabled for your user account as described in Section 6.4.2.

  • Page 27: Configuration Options

    6. Configuration Options This section describes the basic configuration options for SRM units. 6.1. Configuration Menus Although the Web Browser Interface and Text Interface (Command Line Interface) provide two separate means for selecting parameters, both interfaces allow access to the same set of basic parameters, and parameters selected via one interface will also be applied to the other.

  • Page 28: Defining System Parameters

    Note: The "User Directory" option does not appear in the Web Browser Interface System Parameters menu. In the Web Browser Interface, User accounts are defined via the User Configuration menu, located on the left hand side of the screen. • Site ID: A text field, generally used to note the installation site or name for the SRM unit. (Up to 64 characters; Default = undefined) Notes: • The Site I.D. will be cleared if the SRM is reset to default settings. • When viewed via the Text Interface (CLI) Site I.D. messages that are over 30 characters long will be truncated. To display the entire Site I.D. message via...
  • Page 29 (Default = On) • Modem Phone Number / IP Address: This parameter can be used to record the phone number for the modem. In cases where the SRM application includes a cellular modem, the IP address for the cellular modem can be entered via this...
  • Page 30 • Asset Tag: Allows a descriptive tag or tracking number to be assigned to the SRM unit. Once defined, the Asset Tag can be displayed via the Product Status Screen in the Web Interface or via the /J* command in the Text Interface.

  • Page 31: The Real Time Clock And Calendar

    6.2.1. The Real Time Clock and Calendar The Real Time Clock menu is used to set the SRM's internal clock and calendar. The configuration menu for the Real Time Clock offers the following options: • Date: Sets the Month, Date, Year and day of the week.
  • Page 32 NTP server. When the initial attempt is unsuccessful, the SRM will retry the connection four times. If neither the primary nor secondary NTP server responds, the SRM will wait 24 hours before attempting to contact the NTP server again.

  • Page 33: The Serial Port Invalid Access Lockout Feature

    Lockout Duration parameter. When Invalid Access Attempt monitoring is enabled for the serial SetUp Port, the SRM will count invalid access attempts at the serial SetUp Port. If the number of invalid access attempts exceeds the defined Lockout Attempts trigger value, the SRM will lock the serial SetUp Port for the defined Lockout Duration period.
  • Page 34 Count parameter is set to 10 and the SSH Lockout Duration parameter is set to 30 minutes, then the SRM will lock out the offending MAC address for 30 minutes when over 10 invalid access attempts occur during any 30 minute long period.
  • Page 35 Count parameter is set to 10 and the Web Lockout Duration parameter is set to 30 minutes, then the SRM will lock out the offending MAC address for 30 minutes when over 10 invalid access attempts occur during any 30 minute long period.

  • Page 36: Log Configuration

    • Alarm Log: Creates a record of all Alarm Activity at the SRM unit. Each time an alarm is triggered or cleared, the SRM will generate a record that lists the time and date of the alarm, the name of the Alarm triggered, a description of the Alarm and the time and date that the Alarm was cleared.

  • Page 37: Reading, Downloading And Erasing Logs

    Temperature Log option and press [Enter]. When the Temperature Log menu appears, key in the number for the Erase function, press [Enter] and follow the instructions in the resulting submenu. Notes: • The SRM dedicates a fixed amount of internal memory for Audit Log records, and if log records are allowed to accumulate until this memory is filled, memory will eventually "wrap around," and older records will be overwritten by newer records.

  • Page 38: Callback Security

    Accounts that do not include a Callback Number will not be able to access command mode via modem. • Callback Attempts: The number of times that the SRM will attempt to contact the Callback number. (Default = 3 attempts) 6-12...

  • Page 39: Scripting Options

    • TCP Hold Write Options: These options can be used to minimize the number of data packets that are sent from the SRM unit. In cases where the SRM is receiving a slow flow of data from an attached device, the TCP Hold Write Options can be configured to set the size of each packet and define a maximum "hold"...
  • Page 40 • USB State: Enables/Disables the USB Mini format SetUp Port. (Default = On) • Reboot Unit: (Web Interface Only) Restarts the SRM unit's operating system. To restart the SRM unit via the text interface, invoke the /I command as described in Section 15.

  • Page 41: User Accounts

    6.3.1. Command Access Levels In order to restrict access to important command functions, the SRM allows you to set the command access level for each user account. The SRM offers four different access levels: Administrator, SuperUser, User and View Only. Command privileges for each user account are set using the Add User or Modify User menus.

  • Page 42: Granting Serial Port Access

    In the default state, the SRM includes one predefined account that provides access to Administrator commands and allows to control of all of the SRM's serial ports. The default username for this account is "super" (lowercase, no quotation marks), and the password for the account is also "super".

  • Page 43: Managing User Accounts

    In both the Text Interface and the Web Browser Interface, the user configuration menu offers the following functions: • View User Directory: Displays currently defined parameters for any SRM user account as described in Section 6.4.1. • Add Username: Creates new user accounts, and allows you to assign a username, password, command level, access rights and callback number, as described in Section 6.4.2.
  • Page 44 Configuration Options • Port Access: Determines which SRM Serial Ports this account will be allowed to access. (Defaults; Administrator & SuperUser = All Ports On, User and ViewOnly = undefined) Notes: • Administrator and SuperUser level accounts will always have access to all Serial Ports. • ViewOnly accounts are allowed to display the status of Serial Ports, but are limited to the ports specified by the account. ViewOnly accounts are not allowed to create connections between ports.

  • Page 45: Modifying User Accounts

    When a valid authorization key is assigned to a given user, that user will be able to access SRM command mode without entering a password. When assigning an authorization key, the SRM offers the option to define a name for the key and upload a key from the user's server.

  • Page 46: Modem And Serial Port Configuration

    6.5.2. The Serial Port Configuration Menus To configure the SRM's serial SetUp Port, Modem Port or internal modem via the Text Interface, access the SRM's command mode using an account that allows Administrator level commands and then proceed as follows: • Serial SetUp Port: Type /P 1, press [Enter] and then proceed as described in...

  • Page 47: Serial Setup Port Parameters

    Configuration Options 6.5.2.1. Serial SetUp Port Parameters The Serial Port Configuration menu allows the following parameters to be defined for the Serial SetUp Port. Note: Parameters defined for the Serial SetUp Port will not be applied to the USB Mini SetUp Port. To define parameters for the USB Mini SetUp Port, please refer to Section 6.6.1. Communication Settings: • Baud Rate: Any standard rate from 300 bps to 460K bps. (Defaults = 9600 bps) • Bits/Parity: (Default = 8-None) • Stop Bits: (Default = 1) • Handshake Mode: XON/XOFF, RTS/CTS (hardware), Both, or None.

  • Page 48: Internal Modem Parameters

    Configuration Options 6.5.2.3. Internal Modem Parameters The Serial Port Configuration menu allows the following parameters to be defined for the Internal Modem. Communication Settings: • Baud Rate: Any standard rate from 300 bps to 460K bps. (Defaults = 9600 bps) • Bits/Parity: (Default = 8-None) • Stop Bits: (Default = 1) • Handshake Mode: XON/XOFF, RTS/CTS (hardware), Both, or None.
  • Page 49 • Port Mode: Sets the operation mode for the internal modem to either Modem Mode (standard modem mode) or Modem PPP Mode. (Default = Modem Mode) Depending on the Port Mode selected, the SRM will also display the additional prompts listed below. In the Text Interface, these parameters are accessible via a submenu, which will only be active when the appropriate port mode is selected.
  • Page 50 Configuration Options Reset/No Dialtone Scaler: Determines the number of Periodic Modem Reset  sequences that must occur in order to initiate a No Dialtone Check. If this parameter is set to "0," then the No Dialtone Alarm will not function. When both this parameter and the Reset/No Dialtone Interval are set to a value from 1 to 99 and the No Dialtone Alarm is enabled, the DSM/RSM/CPM will initiate a No Dialtone Check after a time period equal to the defined Reset/No Dialtone Interval value multiplied by the Reset/No Dialtone Scaler value.
  • Page 51 Periodic Reset Location: The IP address or URL for the website that  will be used to keep the PPP connection alive when not in use. The SRM will regularly ping the selected IP address or URL in order to keep the connection alive.

  • Page 52: Network Configuration

    Configuration Options 6.6. Network Configuration The Network Parameters Menus are used to select parameters and options for the Network Port and also allow you to implement various security and authentication features. To access the Network Parameters menus, proceed as described in the pages that follow.

  • Page 53: Network Port Parameters

    Configuration Options 6.6.1. Network Port Parameters In the Text Interface, these parameters are found in the main Network Configuration menu In the Web Browser Interface, these parameters are found by placing the cursor over the "Network Configuration" link on the left hand side of the screen, and then clicking on the "Network Port Parameters"...
  • Page 54 Note: The setting for the Accept Break parameter will also be applied to the USB Mini format SetUp Port. • Multiple Logins: (Text Interface Only) If the SRM is installed in an environment that does not include communication via an open network (local communication only), then the Multiple Logins parameter can be used to determine whether or not multiple users will be able to communicate with the unit at the same time.

  • Page 55: Network Parameters

    • Gateway Address: (Default = undefined) • DHCP: Enables/Disables Dynamic Host Configuration Protocol. When enabled, the SRM will perform a DHCP request. Note that in the Text Interface, the MAC address for the SRM is listed on the Network Status Screen. (Default = On) Note: Before configuring this feature via Telnet or Web, make certain your DHCP server is set up to assign a known, fixed IP address. You will need this...
  • Page 56 Configuration Options • Telnet Access: Enables/disables Telnet access. When Telnet Access is "Off," users will not be allowed to establish a Telnet connection to the unit or initiate outbound Telnet or SSH connections. (Default = On) • Telnet Port: Selects the TCP/IP port number that will be used for Telnet connections.
  • Page 57 Access submenu. • SYSLOG Addresses: Defines the IP addresses for the Syslog Daemon(s) that will receive log records generated by the SRM. Allows definition of IP addresses for both a primary Syslog Daemon and an optional secondary Syslog Daemon. SYSLOG Addresses can be entered in either IPv4 or IPv6 format, or in domain name format (up to 64 characters.) For more information, please refer to...
  • Page 58 Note: To define Email Messaging parameters via the Web Browser place the cursor over the Network Configuration link on the left hand side of the screen. When the flyout menu appears, select Email Messaging. • Ping Access: Configures the SRM's response to ping commands. Ping Access can be set to block all ping commands, allow all ping commands or only accept ping commands from user specified IP addresses (Limited.) When the "Limited"...
  • Page 59 SSH connections via the SRM's Network Port. When enabled, users who are connected to the SRM command mode via one of the serial ports will be able to connect to the Network Port, and then invoke the /TELNET and/or /SSH commands to create an outbound connection.

  • Page 60: Ip Security

    Once an IP address is found in the Allow list, the SRM will not check the Deny list, and will assume you wish to allow that address to connect. If the client’s IP address is not found in the Allow list, the SRM will then proceed to check the Deny list.

  • Page 61: Adding Ip Addresses To The Allow And Deny Lists

    IP Address is found in the Allow list, the client will be allowed to connect, and the SRM will not check the Deny list. Text Interface: Note the number for the first empty field in the Allow list, then type that number at the command prompt, press [Enter], and then follow the instructions in the resulting submenu.

  • Page 62: Linux Operators And Wild Cards

    Configuration Options 6.6.3.2. Linux Operators and Wild Cards In addition to merely entering a specific IP address or partial IP address in the Allow or Deny list, you may also use any standard Linux operator or wild card. In most cases, the only operator used is "EXCEPT"...

  • Page 63: Static Route

    The DNS menu is used to select IPv4 or IPv6 format IP addresses for Domain Name Servers. When web and network addresses are entered, the Domain Name Server interprets domain names (e.g., www.wti.com), and translates them into IP addresses. In the Text Interface, the DNS menu is accessed via the Network Configuration menu. In the Web Browser Interface, the DNS menu is accessed via the flyout menus under the Network Configuration link.

  • Page 64: Snmp Access Parameters

    • Version: This parameter determines which SNMP Version the SRM will respond to. For example, if this item is set to V3, then clients who attempt to contact the SRM using SNMPv2 will not be allowed to connect. (Default = V1/V2 Only) • Read Only: Enables/Disables the "Read Only Mode", which controls the ability to...
  • Page 65 Note that this option is not available when the Version parameter is set to V1/V2. (Default = undefined) • Authentication Protocol: This parameter determines which authentication protocol will be used. The SRM supports both MD5 and SHA1 authentication. (Default = MD5) Notes: • The Authentication Protocol that is selected for the SRM must match the...

  • Page 66: Snmp Trap Parameters

    Configuration Options 6.6.7. SNMP Trap Parameters These menus are used to select parameters that will be used when SNMP traps are sent. For more information on SNMP Traps, please refer to Section 11. In the Text Interface, the SNMP Trap Parameters menu is accessed via the Network Configuration menu.

  • Page 67: Ldap Parameters

    SRM unit, and existing users can also be removed without the need to delete the account from each SRM unit. This also allows administrators to assign users to LDAP groups, and then specify access rights for members of each group.
  • Page 68 • Fallback: Enables/Disables the LDAP fallback feature. When enabled, the SRM will revert to it's own internal user directory if no defined users are found via the LDAP server. In this case, port access rights will then be granted as specified in the default LDAP group.

  • Page 69: Adding Ldap Groups

    LDAP Groups, you must then grant command and port access rights to each LDAP Group at each individual SRM unit. To add LDAP groups to your SRM unit, log in to the command mode using a password that permits access to Administrator level commands. The Add LDAP Group menu allows the following parameters to be defined: • Group Name: Note that this name must match the LDAP Group names that you...

  • Page 70: Viewing Ldap Groups

    The Delete LDAP Group function is used to delete LDAP Groups that are no longer in use. In order to delete LDAP Groups, you must access the SRM command mode using a password that permits access to Administrator Level commands.

  • Page 71: Tacacs Parameters

    TACACS Server before falling back to the secondary server. (Default = 15 Seconds) • Fallback Local: Determines whether or not the SRM will fallback to its own username directory when an authentication attempt fails. When enabled, the unit will first attempt to authenticate the password by checking the TACACS Server. If this fails, the unit will then attempt to authenticate the password by checking its own internal username directory.
  • Page 72 Configuration Options Port Access: Determines the default Port Access setting for new TACACS users.  The Port Access setting determines which serial ports each account will be allowed to control. (Defaults; Administrator and SuperUser = All Ports On, User = undefined, ViewOnly = undefined) Notes: • Administrator and SuperUser level accounts always have access to all ports.

  • Page 73: Radius Parameters

    When enabled, the SRM will first attempt to authenticate the password by checking the RADIUS Server; if this fails, the SRM will then attempt to authenticate the password by checking its own internal username directory. This parameter offers three options: Off: Fallback Local is disabled (Default.)
  • Page 74 • Accounting Port: The Accounting Port number for the RADIUS function. (Default = 1813) • Debug: (Text Interface Only) When enabled, the SRM will put RADIUS debug information into Syslog. (Default = Off) • OneTime Auth: This feature should be enabled when using Two Factor Authentication with the One Time Password scheme enabled.

  • Page 75: Dictionary Support For Radius

    The RADIUS dictionary file, "dictionary.wti" can be found under the "downloads" tab on the product information page at wti.com. To install the dictionary file on your RADIUS server, please refer to the documentation provided with your server; some servers will require the dictionary file to reside in a specific directory location, others will require the dictionary file to be appended to an existing RADIUS dictionary file.

  • Page 76: Email Messaging Parameters

    The Email Messaging menu is used to define parameters for email messages that the SRM can send to notify you when an alarm is triggered. To define email message parameters, access the SRM Command Mode using a password that permits access to Administrator Level commands and then proceed as follows: • Text Interface: Type /N (for IPv4 parameters) or /N6 (for IPv6 parameters) and...

  • Page 77: Save User Selected Parameters

    SRM displays the "Saving Configuration" menu and the cursor returns to the command prompt. If newly defined configuration parameters are not saved prior to exiting from command mode, then the SRM will revert to the previously saved configuration after you exit from command mode.

  • Page 78: Alarm Configuration

    When any monitored condition exceeds user-defined trigger levels, the SRM can also notify support personnel via Email, Syslog Message or SNMP trap.

  • Page 79: The Over Temperature Alarms

    • In order for the SRM to provide alarm notification via SNMP Trap, SNMP parameters must first be defined, and SNMP Traps must be enabled as described in Section 6.6.7. To configure the Over Temperature Alarms, access the SRM command mode using a password that permits Administrator Level commands, and then use the Alarm Configuration menu to select the desired alarm feature. Note that both the Initial Threshold menus and Critical Threshold menus offer essentially the same set of parameters, but parameters defined for each alarm are separate and unique.
  • Page 80 Alarm Configuration • Alarm Set Threshold: The trigger level for this alarm. When temperature exceeds the Alarm Set Threshold, the SRM can send an alarm (if enabled.) (Initial Threshold: Default = 110°F or 43°C, Critical Threshold: Default = 120°F or 49°C) Note: The Alarm Set Threshold value must be greater than the Alarm Clear Threshold value. The SRM will not allow you to define an Alarm Clear Threshold...

  • Page 81: The Ping-No-Answer Alarm

    7.2.1. Ping-No-Answer Notification When properly configured, SRM units can provide notification when a device at a user- specified IP address fails to respond to a ping command. When one of the user-defined IP addresses fails to answer a Ping command, the SRM can provide notification via Email, Syslog Message or SNMP Trap.
  • Page 82 • Interval After Failed Ping: Determines how often the Ping command will be sent after a previous Ping command receives no response. (Default = 10 Seconds) • Ping Delay After PNA Action: Determines how long the SRM will wait to send additional ping commands, after the Ping No Answer Alarm has been triggered.

  • Page 83: Configuring The Ping No Answer Alarm

    Ping No Answer Alarm is cleared. If "Single Alarm" is generated, the SRM will generate a single alarm and will not generate additional alarms until a successful ping operation is completed and then another Ping No Answer condition is detected.
  • Page 84 Alarm Configuration • Email Message: Enables/Disables email notification for this alarm. (Default = On) • Address 1, 2, and 3: These parameters are used to select which of the three email addresses defined via the "Email Messages" menu (see Section 6.6.11) will receive the email alarm notification messages generated by this alarm. The Address parameters can be used to select one, or any combination of the addresses defined via the Email Messages menu.

  • Page 85: The Serial Port Invalid Access Lockout Alarm

    7.3. The Serial Port Invalid Access Lockout Alarm The Serial Port Invalid Access Lockout Alarm can provide notification when the SRM has locked the serial SetUp port due to repeated, invalid attempts to access command mode via the port. Normally, the Invalid Access Lockout feature (discussed in Section 6.2.2) can lock the serial port whenever the unit detects that the user-defined...
  • Page 86 Alarm Configuration • Resend Delay: Determines how long the SRM will wait to resend an email message generated by this alarm, when the initial attempt to send the notification was unsuccessful. (Default = 60 Minutes) • Notify Upon Clear: When this item is enabled, the SRM will send additional notification when the situation that caused the alarm has been corrected.

  • Page 87: The Power Cycle Alarm

    Alarm Configuration 7.4. The Power Cycle Alarm The Power Cycle Alarm can provide notification when all input power to the SRM unit is lost and then restored. When the power supply is lost and then restored, the SRM can provide notification via Email, Syslog Message or SNMP Trap.

  • Page 88: The No Dialtone Alarm

    "Reset/No Dialtone Interval" value, the No Dialtone Alarm can provide notification via email using a network connection. In the event that the SRM unit is not connected to a network cable, the SRM will also create an entry in the Alarm Log, indicating that the No Dialtone Alarm has been triggered.
  • Page 89 Alarm Configuration • Resend Delay: Determines how long the SRM will wait to resend an email message generated by this alarm, when the initial attempt to send the notification was unsuccessful. (Default = 60 Minutes) • Notify Upon Clear: When this item is enabled, the SRM will send additional notification when the situation that caused the alarm has been corrected.

  • Page 90: The Status Screens

    8. The Status Screens The Status Screens are used to display status information about the SRM serial ports, Network Port, Temperature Log, Alarm Log and Audit Log. The Status Screens are available via both the Text Interface and Web Browser Interface.

  • Page 91: The Port Status Screen

    The Status Screens 8.3. The Port Status Screen The Port Status screen shows the current status of the SRM's Serial SetUp Port, Serial Modem Port and Modem, including the user-defined port name and port mode for each Serial Port, as well as the buffer count, connection status and the names of any user's currently accessing these ports.

  • Page 92: The Port Parameters Screens

    When the /W command is invoked by an Administrator or SuperUser level account, it can be used to display parameters for all SRM Serial Ports, plus the Network Port. If the /W command is invoked by a User or ViewOnly level account, then it will only display parameters for the Serial Ports that are specifically allowed for that account, and will not display parameters for the Network Port.

  • Page 93: The Event Logs

    Audit Log does not include user information regarding access to configuration menus or status screens. 8.7.2. The Alarm Log The Alarm Log provides a record of all events that were initiated by a SRM alarm function. 8.7.3. The Temperature Log The temperature log provides a record of SRM temperature readings, in reverse chronological order, with the most recent events appearing at the top of the list.

  • Page 94: Telnet & Ssh Functions

    SRM, and once this key is supplied to the SSH client, the client will no longer display a warning indicating that the SRM is not a recognized user when the client attempts to establish a connection.

  • Page 95: Creating An Outbound Telnet Connection

    Telnet & SSH Functions 9.3. Creating an Outbound Telnet Connection The SRM includes a /TELNET command, that can be used to create an outbound Telnet connection. In order to use the /TELNET command, you must access the SRM's Text Interface command mode using an account that permits Telnet Access and Outbound Access, via one of the SRM's Serial RS232 Ports as described below.

  • Page 96: Creating An Outbound Ssh Connection

    For example, to create an outbound SSH connection to a device at IP Address 255.255.255.255, with the username "employee", access the Text Interface command mode via a free SRM Serial Port using an account that permits SSH Access and Outbound Access and invoke the SSH command as follows:...

  • Page 97: Syslog Messages

    Syslog Daemon: In order to capture messages sent by the SRM, a computer must be running a Syslog Daemon (set to UDP Port 514) at the IP address(es) specified in Step 3 above. Once the Syslog Address is defined, Syslog messages will be generated whenever one of the alarms discussed in Section 7 is triggered.

  • Page 98: Operation Via Snmp

    Auth/Priv which requires a username/password AND encrypts the data going over the internet using DES or AES (in the case of the SRM, the default encryption format for SNMPv3 is DES.) For the Password protocol, the SRM supports either MD5 or SHA1.

  • Page 99: Configuration Via Snmp

    • userTable::userPortAccess – A string of up to 3 characters, with one character for each of the 3 possible serial ports on the SRM unit. A ‘0’ indicates that the account does not have access to the port, and a ‘1’ indicates that the user does have access to the port.

  • Page 100: Viewing Users

    Operation via SNMP 11.3.1. Viewing Users To view users, issue a GET request on any of the user parameters for the index corresponding to the desired user. 11.3.2. Adding Users For an empty index, issue a SET request on the desired parameters. Minimum requirement is a username and password to create a user, all other parameters will be set to defaults if not specified.

  • Page 101: Viewing Unit Status Via Snmp

    SRM unit. • environmentUnitTable::environmentUnitName – Returns the specific model number for the SRM unit. 11.5.3. Alarm Status The status of the SRM unit's alarm functions can be retrieved and displayed using the following commands: Notes: • When an alarm status command returns a zero (0), this indicates that the alarm is inactive.

  • Page 102: Sending Traps Via Snmp

    • Test Trap – Test trap invoked by user via the Text Interface (CLI) The SRM can send an SNMP trap to notify you when any of the available SRM alarm functions have been triggered. In all cases except the Power Cycle Alarm, there will be one trap sent when the alarm is triggered, and a second trap sent when the alarm is cleared.

  • Page 103: Setting Up Ssl/Tls Encryption

    Note however, that even though this message is displayed, communication will still be encrypted, and the message is merely a warning that the SRM is not recognized and that you may not be connecting to the site that you intended.

  • Page 104: Creating A Self Signed Certificate

    • 6. State or Province: The name of the state or province where the SRM unit will be located (e.g., California.) • 7. Locality: The city or town where the SRM unit will be located (e.g., Irvine.) • 8. Country: The two character country code for the nation where the SRM will be located (e.g., US.)

  • Page 105: Creating A Signed Certificate

    This indicates that the Self Signed certificate has been successfully created and saved. Click on the "Yes" button to proceed. The SRM will prompt you to enter a user name and password. After keying in your password, the main menu should be displayed, indicating that you have successfully accessed command mode.

  • Page 106: Downloading The Server Private Key

    At the Network Parameters menu, type 23 and press [Enter] to display the Web Access menu (Figure 12.1.) To download the Server Private Key from the SRM unit, make certain that SSL/ TLS parameters have been defined as described in Section 12.1, then type 15 and press [Enter] and store the resulting key on your hard drive.

  • Page 107: Tls Mode

    Setting Up SSL/TLS Encryption 12.4. TLS Mode The TLS Mode parameter in the Web Access menu (Text Interface Only) allows the TLS Mode to be set to either TLSv1 only, both TLSv1.1 and TLSv1.2 or TLSv1.2 only. The default setting for this parameter is both TLSv1.1 and TLSv1.2. 12-5...

  • Page 108: Saving And Restoring Configuration Parameters

    Saved parameters can also be uploaded to other identical SRM units, allowing rapid set- up when several identical units will be configured with the same parameters. The "Save Parameters" procedure can be performed from any terminal emulation program (e.g., PUTTY, TeraTerm, etc.,) that allows downloading.

  • Page 109: Downloading & Saving Parameters Via Web Browser Interface

    13.1.2. Downloading & Saving Parameters via Web Browser Interface The Web Browser Interface also includes a download function that can be used to save SRM parameters to an XML format file on your PC or laptop. To save parameters via the Web Browser Interface, proceed as follows: Notes: • Although SRM parameters can be saved to a file via either the Text Interface...

  • Page 110: Restoring Recently Saved Parameters

    Saving and Restoring Configuration Parameters 13.3. Restoring Recently Saved Parameters If you make a mistake while configuring the SRM unit, and wish to return to the previously saved parameters, the Text Interface's "Reboot System" command (/I) offers the option to reinitialize the SRM using previously backed up parameters. This allows you to reset the unit to previously saved parameters, even after you have changed parameters and saved them.

  • Page 111: Upgrading Srm Firmware

    WTI User's Guide Archive at: http://www.wti.com/t-product-manuals.aspx Note that in order to use the WMU software, the firmware version for the SRM must be at least v6.23 or higher. When upgrading older SRM units that feature pre v6.23 firmware, it is recommended to use the WTI Firmware Upgrade Utility.
  • Page 112 To update the WTI Management Utility only, type 4 and press [Enter]. Note that after any of the above options is selected, the SRM will start the receiving servers and wait for an FTP/SFTP client to make a connection and upload a valid firmware binary image.
  • Page 113 Upgrading TSM/RSM Firmware If you have accessed the SRM via the Network Port, in order to start the FTP/SFTP servers, the SRM will break the network connection when the system is reinitialized. • If you initially selected "Start FTP/SFTP Servers and Save Parameters", you may then reestablish a connection with the SRM using your former IP address.

  • Page 114: Command Reference Guide

    Command Confirmation ("Sure?") prompt. For example, to reboot Plug 4 without displaying the Sure prompt, type /D 1 3,Y [Enter]. • Connected Ports: When two ports are connected, most SRM commands will not be recognized by either of the connected ports. The only exception is the Resident Disconnect Sequence (Default = ^X ([Ctrl] plus [X]).)

  • Page 115: Command Summary

    Command Reference Guide 15.2. Command Summary Function Command Syntax Command Access Level Admin. SuperUser User ViewOnly Display /S [Enter] Port Status X X X X /SD [Enter] Port Diagnostics X X X X /W [n] [Enter] Port Parameters (Who) X X X X...

  • Page 116: Command Set

    This Section provides information on all Text Interface commands, sorted by functionality 15.3.1. Display Commands Display Port Status Screen Displays the Port Status Screen, which lists the current status of the SRM's serial ports. For more information, please refer to Section 8.3. Note: In Administrator Mode and SuperUser Mode, all SRM ports are displayed. In User Mode and ViewOnly Mode, the Plug Status Screen will only include the ports allowed by your account.
  • Page 117 Availability: Administrator, SuperUser, User ViewOnly Format: /RN [Enter] View Connection (with Echo) When two SRM ports have been connected, the /V command can be used to display data that is sent between the two connected serial ports, including data that has been echoed.
  • Page 118 SRM unit. Availability: Administrator, SuperUser, User, ViewOnly Format: /J [*] [Enter] Where * is an optional argument, which can be included in the command line to display the exact model number and software version of the SRM unit. 15-5...

  • Page 119: Control Commands

    Notes: • User level accounts can only connect to the ports that are specifically permitted by the account. • User level accounts are not allowed to create "Third Party" connections. For example, a User level account, that is logged in via the Network Port cannot connect Serial Port 2 to Port 3. • Administrator and SuperUser level accounts are allowed to connect to any SRM Serial Port. • The Serial Ports are not allowed to create a Third Party connection to the Network Port. For example, Serial SetUp Port (port 1) cannot connect Serial Port 2 to the Network Port. Availability: Administrator, SuperUser, User Format: /C <x> [x] [Enter] Where x is the number or name of the port(s) to be connected.
  • Page 120 /D/Y 2 [Enter] or /D/Y 3 [Enter] Send Parameters to File Sends all SRM configuration parameters to an ASCII text file as described in Section 13. This allows you to back up the configuration of your SRM unit. Availability: Administrator...
  • Page 121 Command Reference Guide /TELNET Outbound Telnet Creates an outbound Telnet connection. Notes: • In order for the /TELNET command to function, Telnet/SSH and Outbound Service Access must be enabled for your user account as described in Section 6.4. In addition, Telnet Access and Outbound Access must also be enabled via the Network Parameters menu, as described in Section 6.6.2. • If you have logged in via the Network Port, the /TELNET command will not function. Availability: Administrator, SuperUser, User Format: /TELNET <ip> [port] [Enter] Where: Is the target IP address. The IP Address can be entered in either IPv4 or IPv6 format.

  • Page 122: Configuration Commands

    Ping No Answer Alarm. When Ping No Answer IP addresses have been defined and the Ping No Answer Alarm has been enabled, the SRM can ping user-defined IP addresses, and notify you when devices at those IP addresses are not responding to the ping command.
  • Page 123 Command Reference Guide Alarm Configuration Parameters Displays a menu that is used to configure and enable the SRM's monitoring and alarm functions. For more information on Alarm Configuration, please refer to Section 7. Availability: Administrator Format: /AC [Enter] Reboot System (Default) Reinitializes the SRM unit and offers the option to keep user-defined parameters or reset to default parameters.

  • Page 124: Specifications

    Height: 1.75" (4.4 cm) Depth: 4.60" (11.7 cm) Power: SRM-100 Series: IEC-320-C14 Inlet, 100 to 240 VAC, 50/60 Hz, 0.2 Amp Max. SRM-100DC Series: Terminal Strip (#6-32), -48 VDC, 0.3 Amp Max. Operating Temperature: 32°F to 140°F (0°C to 60°C) Storage Temperature: -4°F to 128°F (-20°C to 70°C) Humidity: 10 to 90% RH, Non-Condensing Venting: Side vents are used to dissipate heat generated within the unit.

  • Page 125: B.1. Rj45 Setup Port (Dte)

    Appendix B. Interface Descriptions Figure B.1: RJ45 SetUp Port (DTE) Figure B.2: DB25 Modem Port (DCE) Figure B.3: RJ45 Modem Port (DCE) Apx-2...

  • Page 126: B.4. Rj11 Phone Line Port

    Appendices Not Used Not Used RING Not Used Not Used Figure B.4: RJ11 Phone Line Port Apx-3...

  • Page 127: Customer Service

    If the unit should need to be returned for factory repair it must be accompanied by a Return Authorization number from Customer Service. WTI Customer Service 5 Sterling Irvine, California 92618 Local Phone: (949) 586-9950...
  • Page 128 Appendices Trademark and Copyright Information WTI and Western Telematic are trademarks of Western Telematic Inc.. All other product names mentioned in this publication are trademarks or registered trademarks of their respective companies. Information and descriptions contained herein are the property of Western Telematic Inc..

Table of Contents