Perle IOLAN STS User Manual
  1. Manuals
  2. Brands
  3. Perle Manuals
  4. Server
  5. IOLAN STS
  6. User manual

Perle IOLAN STS User Manual

Perle systems iolan user guide
Hide thumbs Also See for IOLAN STS:
1
2
Table Of Contents
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
Table of Contents

Advertisement

Quick Links

See also: Reference Manual , Cli Reference Manual
IOLAN
SDS/SCS/STS
User's Guide
Version 3.6
Part #5500161-36
September 2008

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the IOLAN STS and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Perle IOLAN STS

Summary of Contents for Perle IOLAN STS

  • Page 1 IOLAN SDS/SCS/STS User’s Guide Version 3.6 Part #5500161-36 September 2008...
  • Page 2 Perle reserves the right to make changes without further notice, to any products to improve reliability, function, or design. Perle, the Perle logo, and IOLAN are trademarks of Perle Systems Limited. Microsoft, Windows 98, Windows NT, Windows 2000, Windows Server 2003, Windows XP, and Internet Explorer are trademarks of Microsoft Corporation.

  • Page 3: Table Of Contents

    Table of Contents Preface ...25 About This Book ... 25 Intended Audience... 25 Documentation... 25 Typeface Conventions... 26 Online Help ... 26 Chapter 1 Introduction...27 About the IOLAN ... 27 IOLAN Family Models ... 27 IOLAN Features... 28 Hardware ... 28 Software ...
  • Page 4 Table of Contents Power Supply Specifications ...32 Desktop Models ... 32 Power Over Ethernet (PoE) Models ... 32 I/O Models ... 32 Rack Mount Models ... 33 DC Power Requirements... 33 AC Power Requirements ... 33 Getting to Know Your IOLAN ...33 Overview ...33 1-Port...
  • Page 5 DeviceManager... 46 Overview... 46 Access Platforms ... 46 Unique Features ... 46 Connecting to the IOLAN Using DeviceManager ... 46 Using DeviceManager ... 48 WebManager... 49 Overview... 49 Access Platforms ... 49 Unique Features ... 49 Connecting to the IOLAN Using WebManager ... 50 Using WebManager ...
  • Page 6 Table of Contents SNMP ...57 Overview ...57 Access Platforms...57 Unique Features... 57 Connecting to the IOLAN Using SNMP...57 Using the SNMP MIB... 58 IOLAN+ Interface ...59 Overview ...59 Access Platforms...59 Connecting to the IOLAN to Use the IOLAN+ Interface ... 59 Using the IOLAN+ Interface ...
  • Page 7 Using DeviceManager to Connect to the IOLAN... 76 Starting a New Session... 76 Assigning a Temporary IP Address to a New IOLAN... 77 Adding/Deleting Manual IOLANs ... 78 Logging in to the IOLAN ... 78 Using WebManager to Connect to the IOLAN... 79 Logging into the IOLAN ...
  • Page 8 Table of Contents Adding/Editing Routes ... 91 DNS/WINS ... 92 Overview... 92 Functionality ... 92 Field Descriptions ... 92 Editing/Adding DNS/WINS Servers ... 93 RIP ... 93 Overview... 93 Functionality ... 93 Field Descriptions ... 94 Dynamic DNS ... 95 Overview...
  • Page 9 Console Management Profile ... 117 Overview ... 117 Functionality ... 117 General Tab Field Descriptions... 117 Advanced Tab Field Descriptions ... 118 TruePort Profile ... 120 Overview ... 120 Functionality ... 120 General Tab Field Descriptions... 121 Adding/Editing Additional TruePort Hosts ... 122 Adding/Editing a Multihost Entry ...
  • Page 10 Table of Contents Virtual Modem Profile ...153 Overview... 153 Functionality ... 153 General Tab Field Descriptions ... 154 Advanced Tab Field Descriptions... 155 Phone Number to Host Mapping ... 157 VModem Phone Number Entry... 158 Control Signal I/O Profile ... 158 Overview...
  • Page 11 Port Buffering... 183 Overview... 183 Functionality ... 183 Local Port Buffering... 183 Remote Port Buffers... 184 Field Definitions... 184 Advanced... 186 Advanced Serial Settings Tab ... 186 Overview ... 186 Field Descriptions... 186 Modems Tab... 188 Overview ... 188 Functionality ... 188 Adding/Editing a Modem ...
  • Page 12 Table of Contents Sessions Tab...199 Overview... 199 Functionality ... 199 Field Descriptions ... 200 Serial Port Access Tab ... 201 Overview... 201 Field Descriptions ... 201 Chapter 9 Configuring Security ...203 Introduction...203 Authentication ...203 Authentication... 204 Local...205 Overview... 205 Field Descriptions ... 205 RADIUS ...
  • Page 13 SSL/TLS ... 216 Overview... 216 Functionality ... 216 Field Descriptions ... 217 Cipher Suite Field Descriptions... 218 Adding/Editing a Cipher ... 219 Validation Criteria Field Descriptions ... 220 VPN... 221 Overview... 221 Functionality ... 221 IKE Phase 1 Proposals ... 222 ESP Phase 2 Proposals...
  • Page 14 Table of Contents Failsafe Timer Functionality ... 239 Overview... 239 Field Descriptions ... 239 UDP Functionality ... 240 Overview... 240 Field Descriptions ... 240 I/O UDP Settings ... 241 Temperature Functionality... 242 Overview... 242 Field Descriptions ... 242 Channels ...243 Analog...
  • Page 15 I/O UDP... 264 UDP Unicast Format... 264 UDP Broadcast Packet ... 264 Analog Section ... 265 Digital/Relay Section... 266 Serial Pin Signal Section ... 266 UDP Unicast Example ... 267 I/O Modbus Slave ... 267 Modbus Serial Application Connected to the Serial Port ... 267 Modbus Serial Application Connected to the Network...
  • Page 16 Table of Contents Chapter 11 Configuring Clustering...281 Introduction...281 Clustering Slave List ...281 Overview ...281 Adding Clustering Slaves ...282 Overview... 282 Field Descriptions ... 282 Advanced Clustering Slave Options ... 283 Overview... 283 Editing Clustering Slave Settings ... 283 Chapter 12 Configuring the Option Card ...285 Introduction...285 Option Card Settings...285 Overview ...285...
  • Page 17 Management ... 292 SNMP ... 292 Overview ... 292 Field Descriptions... 292 Time ... 294 Overview ... 294 Functionality ... 294 Network Time Tab Field Descriptions ... 295 Time Zone/Summer Time Tab Field Descriptions... 296 Custom App/Plugin ... 297 Overview ... 297 Field Description ...
  • Page 18 Table of Contents Chapter 15 System Administration...309 Introduction...309 Managing Configuration Files ...309 Saving Configuration Files ... 309 Downloading Configuration Files... 309 Downloading Configuration Files to Multiple IOLANs ... 310 Uploading Configuration Files...311 Specifying a Custom Factory Default Configuration... 311 Resetting the IOLAN to the Original Factory Default Configuration...
  • Page 19 Resetting Configuration Parameters ... 319 Lost Admin Password ... 320 Chapter 16 Applications ...321 Introduction ... 321 Configuring Modbus... 321 Overview... 321 Configuring a Master Gateway... 321 Configuring a Slave Gateway... 321 Modbus Gateway Settings... 322 Modbus Master Gateway ... 322 Modbus Slave Gateway ...
  • Page 20 Table of Contents TACACS+...342 Accessing the IOLAN Through a Serial Port Users... 342 Accessing the IOLAN Through a Serial Port User Example Settings ...344 Accessing the IOLAN from the Network Users... 345 Accessing the IOLAN from the Network User Example Settings... 346 Appendix B SSL/TLS Ciphers ...347 Introduction...347 Valid SSL/TLS Ciphers...347...
  • Page 21 Appendix E Setting Jumpers ...361 Introduction ... 361 1-Port IOLAN DB25 Male/Female ... 361 1-Port IOLAN RJ45 ... 362 1-Port IOLAN RJ45 P (Power Over Ethernet) ... 362 1-Port IOLAN DB9... 363 2-Port IOLAN SDS1M (Modem)... 363 2-Port IOLAN ... 364 2-Port IOLAN RJ45 P (Power Over Ethernet) ...
  • Page 22 Table of Contents Appendix G Utilities ...375 Introduction...375 TruePort...375 API I/O Access Over TruePort ...376 API Request Format... 376 API Response Format...376 Error Codes ... 377 Decoder ...377 Appendix H Accessories ...379 Introduction...379 Installing a Perle PCI Card...379 Starter Kit (Adapters/Cable) ...382 RJ45F to DB25M DTE Crossover Adapter ...
  • Page 23 Appendix I Troubleshooting...393 Introduction ... 393 Hardware Troubleshooting ... 393 Communication Issues... 394 DeviceManager Problems ... 394 Host Problems... 395 RADIUS Authentication Problems... 395 Login Problems... 396 Problems with Terminals ... 396 Unknown IP Address ... 397 DHCP/BOOTP Problems... 397 Callback Problems...
  • Page 24 Table of Contents Glossary ...403 Index ...405 IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 25: Preface

    Preface About This Book This guide provides the information you need to: configure the IOLAN incorporate the IOLAN into your production environment Intended Audience This guide is for administrators who will be configuring the IOLAN. Some prerequisite knowledge is needed to understand the concepts and examples in this guide: If you are using an external authentication application(s), working knowledge of the authentication application(s).

  • Page 26: Typeface Conventions

    Typeface Conventions Typeface Conventions Most text is presented in the typeface used in this paragraph. Other typefaces are used to help you identify certain types of information. The other typefaces are: Typeface Example At the C: prompt, type: add host Set the value to TRUE subscribe project subject...

  • Page 27: Chapter 1 Introduction

    Introduction About the IOLAN The IOLAN is an Ethernet communications/terminal server that allows serial devices to be connected directly to LANs. The IOLAN can connect to a wide range of devices including: Terminals for multi-user UNIX systems Data acquisition equipment (manufacturing, laboratory, scanners, etc.) Retail point-of-sale equipment (bar coding, registers, etc.) PCs using terminal emulation or SLIP/PPP Modems for remote access and Internet access...

  • Page 28: Iolan Features

    IOLAN Features IOLAN Features The IOLAN is a communications server used for making serial network connections. It attaches to your TCP/IP network and allows serial devices such as modems, terminals, or printers to access the LAN. It also allows LAN devices to access devices or equipment attached to IOLAN serial ports. This section highlights the hardware and software components you can expect to find in your IOLAN model.

  • Page 29: Software

    Software This section describes the supported software features available. Accessing the IOLAN All IOLAN models can be accessed through any of the following methods: Easy Config Wizard, an easy configuration wizard that allows you to quickly setup the IOLAN in a Windows environment DeviceManager, a fully functional Windows 98/NT/2000/ME/Server 2003/XP/Server 2008/Vista configuration/management tool WebManager, a web browser (HTTP/HTTPS) option for configuring/managing the IOLAN...

  • Page 30: Advanced Features

    IOLAN Features Advanced Features Advanced IOLAN software features can be found on all IOLAN models except DS and TS models. External authentication using any of the following systems: – RADIUS – Kerberos – TACACS+ – – SecurID – LDAP Support for TCP/IP and UDP protocols. Dynamic DNS with DYNDNS.org.

  • Page 31: Chapter 2 Hardware And Connectivity

    Hardware and Connectivity Introduction This chapter describes how to physically set up your IOLAN unit. It includes an overview of the IOLAN hardware components and how to power up the IOLAN to make sure it works correctly. IOLAN Components What’s Included The following components are included with your product: IOLAN unit External power supply (1-, 2-, and 4-port models only)

  • Page 32: Available Accessories

    Power Supply Specifications Available Accessories The following accessories are available for purchase for the various IOLAN models: DIN Rail Mounting Kit (35mm) for the desktop models IOLAN modem card for SCS rack mount models PCI adapter card for SCS rack mount models (for wireless WAN cards) 3 meter RJ45M-RJ45M 8-wire Sun/Cisco modular cable RJ45 to DB25 DTE Male adapter RJ45 to DB25 DCE Male adapter...

  • Page 33: Rack Mount Models

    Rack Mount Models DC Power Requirements The IOLAN DC is supplied with an integral Terminal Connections block to facilitate connection to a DC source(s). The DC supply(s) should have adequate over-current protection within the closed rack system and comply with local or national standards applicable to the installation territory. You need wire gauge 20 to 22 AWG to connect the IOLAN rack mount unit to the power source.

  • Page 34: 1-Port

    Getting to Know Your IOLAN Console/Serial Switch—Found on desktop models only (rack mount models have a dedicated console port), this switch determines whether port 1 functions as a serial port or a console port. If you have an extended temperature or I/O model, you will see two console switches. Console/Serial Switch 1 is used to determine the console/serial setting for Port 1 and the Console/Serial Switch 2 is not used.

  • Page 35: 2-Port

    2-Port This section describes the components found on the IOLAN 2-port models. External Power Supply Power/Ready Link/10/100 Activity (LAN) Serial Activity The 2-port IOLAN has two RJ45 serial connections. The 2-port IOLAN can support an 8-pin connector if there is no requirement for power in (pin 1) or power out (pin 10) pins. The 2-Port P model (Power over Ethernet) does not come with an external power supply connector.

  • Page 36: I/O

    Getting to Know Your IOLAN This sections describes the basic components found on the IOLAN I/O models. Top View The following image shows a typical IOLAN I/O model. Your I/O model may have I/O connectors in slightly different positions. External Power Supply Power/Ready Link/10/100 Activity (LAN)

  • Page 37: Rack Mount

    Rack Mount This section describes the basic components of all rack mount IOLAN models. This example uses the IOLAN SCS with dual Ethernet and dual AC power. Console Port/LED View Power ON/OFF Serial/Ethernet View Server LEDs Serial Activity Serial Ports Dual Ethernet PCI Card Faceplate (SCS models only)

  • Page 38: Console/Serial Switch

    Getting to Know Your IOLAN Console/Serial Switch Located at the back of the desktop IOLAN models is a switch that controls whether serial port 1 is in Console or Serial mode. Note: The SDS T (Extended Temperature) models have two switches, Switch 1 is used for Console/Serial mode and Switch 2 is unused.

  • Page 39: Powering Up The Iolan

    Powering Up the IOLAN Desktop/Rack Mount Models To power up the IOLAN, perform the following steps: Rack Mount Models only: Using the rack mount brackets included with your IOLAN, you can rack mount the IOLAN from the front or the back of the chassis, depending on your environment.

  • Page 40: Dc Power Models

    Powering Up the IOLAN DC Power Models To power up the IOLAN with DC power requirements, perform the following steps: Verify that the power switch on the IOLAN unit and the power source is in the Off position. Connect the primary and secondary DC input using the following specifications: Use wire gauge 20 to 22 AWG.

  • Page 41: Disconnecting 48V Power Supplies From The Iolan

    Disconnecting 48V Power Supplies from the IOLAN To disconnect the power supply(s) from the IOLAN, do the following: Switch off the IOLAN. Switch off the power source(s). Disconnect all DC power input cables from the IOLAN terminal connector block. Remove any attached devices to the serial or Ethernet port(s). Your IOLAN is ready to be moved.
  • Page 42 Powering Up the IOLAN IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 43: Chapter 3 Configuration Methods

    Configuration Methods Introduction This chapter provides information about the different methods you can use to configure the IOLAN. Before you can configure the IOLAN, you must assign an IP address to the IOLAN. See the 4, Getting Started on page 65 Once an IP address is assigned to the IOLAN, you can use any of the configuration methods to: Configure users.

  • Page 44: Configuration Methods Overview

    Configuration Methods Overview Configuration Methods Overview Some of the IOLAN configuration methods have the capability of configuring an IP address, which is the first required configuration step for a new IOLAN. Once the IOLAN has been assigned an IP address, any of the configuration methods can be used to configure the IOLAN. Configures an IP Address Following is a list of methods for setting the IOLAN IP address and a short explanation of when you would want to use that method:...

  • Page 45: Easy Config Wizard

    Easy Config Wizard The Easy Config Wizard is a configuration wizard that will configure all the serial ports on your IOLAN to one of the following: Console Management TruePort (Virtual COM Port) TCP Sockets (Raw TCP) Terminal Printer (not supported on DS1/TS2 models) Serial Tunneling You can launch the Easy Config Wizard from the Perle website or from the installation CD-ROM.

  • Page 46: Devicemanager

    DeviceManager DeviceManager Overview The DeviceManager is a Windows-based application that can be used to connect to the IOLAN to actively manage and configure it or can create new IOLAN configurations offline. See Using DeviceManager and WebManager on page 73 IOLAN with DeviceManager. Access Platforms The DeviceManager can be run from Windows 98/NT/2000/ME/Server 2003/XP/Server 2008/Vista.
  • Page 47 All discovered IOLANs will be displayed on the list along with their name and IP address. When a new IOLAN is discovered on the network, that has not yet been assigned an IP address, it will be displayed with an IP Address of Not Configured. To configure the IP address, click on the IOLAN and then click the Assign IP button.

  • Page 48: Using Devicemanager

    DeviceManager Using DeviceManager After you have successfully connected to the IOLAN, you will see the following window: Navigation Tree You navigate through the different configuration windows by selecting an option in the left-hand navigation tree. If double-click on option that is next to a folder, more navigation are displayed when you click on it: folder contains two configuration options, Network...

  • Page 49: Webmanager

    WebManager Overview The WebManager is a web-browser based method of configuring/managing the IOLAN. It follows the same design as the DeviceManager, so it is easy to switch between the WebManager and DeviceManager when configuring your IOLAN. See WebManager on page 73 Access Platforms You can access the IOLAN through WebManager from any system that can run a web browser.

  • Page 50: Connecting To The Iolan Using Webmanager

    WebManager Connecting to the IOLAN Using WebManager Before you can connect to the IOLAN using WebManager, the IOLAN must already be configured with a known IP address; see IOLAN. To connect to the IOLAN through the WebManager: Open your web browser and type in the IP address of the IOLAN that you want to manage/configure and press If you successfully connect to the IOLAN, a login screen will appear.

  • Page 51: Using Webmanager

    WebManager Using WebManager After you have successfully logged into WebManager, you will see the following: Navigation Tree System Information You navigate through the different configuration windows by selecting an option in the left-hand navigation tree. When you click on an option that is under a folder, more navigation options are displayed: Navigation Tabs folder contains two configuration options,...

  • Page 52: Command Line Interface

    Command Line Interface Command Line Interface Overview The Command Line Interface (CLI) is a command line option for IOLAN configuration/management. See the Command Line Interface Reference Guide for a full breakdown of all the CLI commands and their functionality. Access Platforms The CLI is accessed by any application that supports a Telnet or SSH session to the IOLAN’s IP address, such as Putty, SecureCRT, or from a command prompt.

  • Page 53: Through The Serial Port

    Through the Serial Port To connect to the IOLAN through the serial port to configure/manage it using the CLI (or Menu), see Using a Direct Serial Connection to Specify an IP Address on page After you have established a connection to the IOLAN, you will get a as the admin user or as a user with Admin Level rights.

  • Page 54: Using The Menu

    Menu Using the Menu After you have successfully logged in, type to enter a terminal type, and then you will see the following Menu: To navigate through the Menu options, do the following: Highlight a Menu option by using the keyboard up and down arrows to navigate the list. When the Menu item you want to access is highlighted, press the next list of options or to get the configuration screen, depending on what you select.

  • Page 55: Dhcp/Bootp

    DHCP/BOOTP Overview Several IOLAN parameters can be configured through a DHCP/BOOTP server during the IOLAN bootup. This is particularly useful for configuring multiple IOLANs. Not all configuration parameters are supported in the DHCP/BOOTP configuration (see DHCP/BOOTP Parameters on page 56 use another configuration method, such as DeviceManager, WebManager or CLI, to complete the configuration.

  • Page 56: Dhcp/Bootp Parameters

    DHCP/BOOTP DHCP/BOOTP Parameters The following parameters can be set in the DHCP/BOOTP bootp file: SW_FILE—The full path, pre-fixed by hostname/IP address (IPv4 or IPv6), and file name of the firmware update. CONFIG_FILE—The full path, pre-fixed by hostname/IP address (IPv4 or IPv6), and file name of the configuration file.

  • Page 57: Snmp

    SNMP Overview The IOLAN supports configuration and management through SNMP. SNMP Management tools (SNMP client/MIB browser software) can be used to set IOLAN configuration parameters and/or view IOLAN statistics. Before you can configure/manage the IOLAN using SNMP, you need to set the IOLAN IP address and configure a read-write user for SNMP version 3 or a community for SNMP version 1 or 2.

  • Page 58: Using The Snmp Mib

    SNMP Using the SNMP MIB After you have successfully connected to the IOLAN through your SNMP Management tool or MIB browser, expand the an example of the configurable parameters under the The first variable in each folder is the perform a on this variable, one of the following values will be returned: 1—Indicates that the container folder is active with no changes.

  • Page 59: Iolan+ Interface

    IOLAN+ Interface Overview For environments that have both IOLAN and IOLAN+ models or for users who prefer to configure using the IOLAN+ Menu or CLI, the IOLAN+ user interface is available. The IOLAN+ interface is supported on all IOLAN SDS, SCS, and STS models up to and including 16 serial ports. Access Platforms The Menu is accessed by any application that supports a Telnet or SSH session to the IOLAN’s IP address, such as Putty, SecureCRT, or from a command prompt.

  • Page 60: Changes To The Iolan+ Interface

    IOLAN+ Interface Changes to the IOLAN+ Interface You should be aware that the following IOLAN+ configuration fields are no longer supported: You no longer have the option of selecting are not available. stats When you select ** Administrator ** Hardware Speed Parity Stop...
  • Page 61 When you select line Access , the following fields are not available on the Access Menu: ** Administrator ** TTY Name Access [abcd ] [Local [abcdef ] [Local ________________________________________________________________________________ Authentication UDP Retries Interval When you select line Options , the following fields are not available on the Options Menu: ** Administrator ** Rlogin/Telnet Keepalive ] N/A...
  • Page 62 IOLAN+ Interface When you select Remote Access Systems Screen: ** Administrator ** Sitename User name Password Device type Service type Inactivity Phone number Login-script ________________________________________________________________________________ Service type Inactivity Login-script When you select Remote Site Device Screen: ** Administrator ** Type IP Addresses Src Addr Dst Addr...
  • Page 63 When you select server , the following fields are not available on the Server Configuration menu: ** Administrator ** Name [wchiewsds2 IP address [172.16.22.7 Subnet mask [255.255.0.0 Ethernet address (00:80:d4:88:88:88) Language [English Identification Lock [Disabled] Password limit [3 ] CR to initiate SNAP encoding Boot host Boot file...
  • Page 64 IOLAN+ Interface IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 65: Chapter 4 Getting Started

    Getting Started Introduction There are several different configuration methods available to configure the IOLAN (see Configuration Methods on page 43 minimal configuration requirements for the IOLAN through either Easy Config Wizard (cannot configure users using this method), DeviceManager, or WebManager: Setting up the network—This minimally consists of configuring an IP address or enabling DHCP/BOOTP.

  • Page 66: Setting Up The Network

    Setting Up the Network TruePort (Virtual COM Port)—Allows a networked system to communicate with your serial device through a virtual COM or TTY port, using the Perle TruePort software. TCP Sockets (Raw TCP)—Allows hosts on the network to communicate with a serial device that requires raw data throughput (such as a printer or card reader) connected to the IOLAN serial port.

  • Page 67: Using Webmanager

    Expand the Server Configuration You should also enter a name in the To make your edits take effect, you need to download the new configuration file and then reboot the IOLAN. Download the configuration file to the IOLAN by selecting Configuration to Unit Reboot the IOLAN by selecting For more information on configuring the IOLAN using DeviceManager, see...

  • Page 68: Using A Direct Serial Connection To Enable Bootp/Dhcp

    Setting Up the Network Using a Direct Serial Connection to Enable BOOTP/DHCP If you are using BOOTP, you need to add an entry in the BOOTP server for the IOLAN that associates the MAC address (found on the back of the IOLAN) and the IP address that you want to assign to the IOLAN.

  • Page 69: Using Arp-Ping

    Using ARP-Ping You can use the ARP-Ping (Address Resolution Protocol) method to temporarily assign an IP address and connect to your IOLAN to assign a permanent IP address. To use ARP-Ping to temporarily assign an IP address: From a local UNIX/Linux host, type the following at the system command shell prompt: arp -s a.b.c.d aa:bb:cc:dd:ee:ff On a Windows arp -s a.b.c.d aa-bb-cc-dd-ee-ff...

  • Page 70: Setting Up The Serial Port(S)

    Setting Up the Serial Port(s) Setting Up the Serial Port(s) The DeviceManager and WebManager have the following serial port profiles that will simplify serial port setup: Console Management—The Console Management profile configures a serial port to provide network access to a console or administrative port. This profile sets up a serial port to support a TCP socket that listens for a Telnet or SSH connection from the network.
  • Page 71 Virtual Modem—The Virtual Modem (Vmodem) profile configures a serial port to simulate a modem. When the serial device connected to the IOLAN initiates a modem connection, the IOLAN starts up a TCP connection to another IOLAN configured with a Virtual Modem serial port or to a host running a TCP application.

  • Page 72: Setting Up Users

    Setting Up Users Setting Up Users When you have a user who is accessing a device connected to a serial port from the network or who is accessing the network from a device connected to a serial port through the IOLAN, you can create a user account and configure the user’s access privileges.

  • Page 73: Chapter 5 Using Devicemanager And Webmanager

    Using DeviceManager and WebManager Introduction The DeviceManager and WebManager IOLAN managers have been designed to be very similar to use. DeviceManager is a Windows-based application and WebManager is a browser-based application. Both options use the IOLAN’s IP address to access the IOLAN; the DeviceManager can be used to assign an IP address to a new IOLAN and the WebManager requires that the IOLAN already have an IP address before it can be used to configure the IOLAN.

  • Page 74: Navigating Devicemanager/Webmanager

    Navigating DeviceManager/WebManager Navigating DeviceManager/WebManager The DeviceManager and WebManager have very similar navigation methods. The left-hand side of the manager is the navigation tree and the center is the configuration area. The DeviceManager has menu and quick access buttons, whereas the WebManager has system information and some navigation options on the far right-hand side.

  • Page 75: Webmanager

    WebManager The WebManager uses a expandable/collapsible buttons with folders and pages for the navigation tree. You can expand the buttons to view the folders and pages to see the available configuration options. When you access a configuration page, you can often navigate the tabs in the configuration area to access all of the configuration options.

  • Page 76: Using Devicemanager To Connect To The Iolan

    Using DeviceManager to Connect to the IOLAN Using DeviceManager to Connect to the IOLAN DeviceManager can connect to existing IOLANs or assign an IP address to a new IOLAN. Whenever you connect to the IOLAN through the DeviceManager, you connect as the Admin user and must supply the password for the Admin user.

  • Page 77: Assigning A Temporary Ip Address To A New Iolan

    Assigning a Temporary IP Address to a New IOLAN You can temporarily assign an IP address to the IOLAN that is connected to your local network segment, for the purpose of connecting to it and downloading a configuration file (containing a permanent IP address).

  • Page 78: Adding/Deleting Manual Iolans

    Using DeviceManager to Connect to the IOLAN Adding/Deleting Manual IOLANs To permanently add/delete the IOLAN to/from the IOLAN window is displayed: To permanently add the IOLAN to the IOLAN list, click the address of the IOLAN. To permanently delete the IOLAN from the IOLAN list, select the IOLAN’s IP address and click the Logging in to the IOLAN To log in to the IOLAN, double-click on the IOLAN in the...

  • Page 79: Using Webmanager To Connect To The Iolan

    Using WebManager to Connect to the IOLAN WebManager can only connect to IOLANs that already have an assigned IP address. To connect to the IOLAN, type the IP address of the IOLAN into the http://10.10.234.34 You will see the login screen. Logging into the IOLAN Type in the Admin password in the Password field and click the have admin privileges can access EasyPort Web to access clustered serial ports, Perle Remote Power...

  • Page 80: Opening An Existing Configuration File

    Managing the IOLAN Opening an Existing Configuration File If you select the File want to edit. IOLAN configuration files saved in the DeviceManager can be in the IOLAN-native binary format ( .dme configuration version can be imported into the DeviceManager. IOLAN configuration files saved from WebManager can also be opened into DeviceManager.

  • Page 81: Chapter 6 Network Settings

    Network Settings Introduction The Network section is used to configure the parameters that identify the IOLAN within the network and how the IOLAN accesses hosts on the network. The following configuration windows are available: IP Settings—This window configures the IOLAN’s name, IP address, and Ethernet information.

  • Page 82: Ip Settings

    IP Settings IP Settings IPv4 Settings Overview The parameters in IPv4 settings are used to access the IOLAN and are how the IOLAN accesses the network. Field Descriptions Configure the following parameters: System Name Domain Obtain IP Address automatically using DHCP/BOOTP Use the following IP Address...

  • Page 83: Ipv6 Settings

    Default Gateway Default Gateway Obtain Automatically DNS Server DNS Server Obtain Automatically WINS Server WINS Server Obtain Automatically IPv6 Settings Overview Configure IPv6 settings when the IOLAN resides in an IPv6 network. Field Descriptions Configure the appropriate parameters: Obtain IPv6 Address(es) using Specify the gateway IP address that will provide general access beyond the local network.
  • Page 84 IP Settings IPv6 Autoconfiguration DHCPv6 Custom IPv6 Address List Add Button Edit Button Delete Button Default Gateway DSN Server DNS Server Obtain Automatically DHCPv6 Settings IPv6 Address(es) DHCPv6 Settings Network Prefix When enabled, the IOLAN will send out a Router Solicitation message. If a Router Advertisement message is received, the IOLAN will configure the IPv6 address(es) and configuration parameters based on the information contained in the advertisement.

  • Page 85: Adding/Editing A Custom Ipv6 Address

    Adding/Editing a Custom IPv6 Address You can manually add one of the following: The IPv6 network prefix (and the IOLAN will determine an IPv6 address based on the network prefix and the IOLAN MAC address). The complete IPv6 address. Configure the following parameters: Create a unique When enabled, the IOLAN will derive an IPv6 address from the entered IPv6 address on the...

  • Page 86: Advanced

    IP Settings Advanced Overview tab configures Active Standby (SCS models only), DNS update, IPv6 Advertising Advanced Router settings, and the Ethernet interface(s) hardware speed and duplex. Configure the parameters in the you have already set up Dynamic DNS with DynDNS.com you want to enable Active Standby (SCS models only) you want to specify the line speed and duplex you want the IOLAN to act as an IPv6 Advertising Router...
  • Page 87 Monitoring Interval (SCS only) The interval in which the active interface is checked to see if it is still communicating. Default: 100 ms Recovery Delay (SCS only) The time that the IOLAN will wait to make the secondary interface (Ethernet 2) active after it has been detected as up. Default: 200 ms Enable IPv6 Router When enabled, the IOLAN will periodically send IPV6 Router Advertisement...

  • Page 88: Advanced

    Advanced Advanced Host Table Overview The Host table contains the list of hosts that will be accessed by an IP address or Fully Qualified Domain Name (FQDN) from the IOLAN. This table will contain a symbolic name for the host as well as its IP address or FQDN.

  • Page 89: Adding/Editing A Host

    Adding/Editing a Host Configure the appropriate parameters: Host Name IP Address Fully Qualified Domain Name The name of the host. This is used only for the IOLAN configuration. Field Format: Up to 14 characters, no spaces. The host’s IP address. Field Format: IPv4 or IPv6 address When you have DNS defined in the IOLAN, you can enter a DNS resolvable fully qualified domain name (note: FQDN’s are excluded as accessible hosts...

  • Page 90: Route List

    Advanced Route List Overview Entering routes in the routing list enables the identification of gateways to be used for accessing specific hosts or external networks from the IOLAN's local network. Functionality There are three types of routes: Default—A route that provides general access beyond your local network. Host—A route defined for accessing a specific host external to your local network.

  • Page 91: Adding/Editing Routes

    Adding/Editing Routes From the Route List existing route. Configure the appropriate parameters: Type IP Address IPv4 Subnet Mask When the route is a IPv6 Prefix Bits Host tab, if you click the button, you will be able to add a new or edit an Edit Specify the type of route you want to configure.

  • Page 92: Dns/Wins

    Advanced Interface DNS/WINS Overview You can configure WINS servers for PPP-client name resolution and DNS servers for PPP-client name resolution and IOLAN host name resolution (for example, when specifying Functionality You can configure up to four DNS and four WINS servers. If you specified a DNS and/or WINS server on the Network appropriate list.

  • Page 93: Editing/Adding Dns/Wins Servers

    Editing/Adding DNS/WINS Servers Configure the parameter: DNS IP Address WINS IP Address Overview The Routing Information Protocol (RIP) is a routing protocol used with almost every TCP/IP implementation. Its function is to pass routing information from a router or gateway to a neighboring router(s) or gateway(s).

  • Page 94: Field Descriptions

    Advanced Field Descriptions Configure the appropriate parameters: Ethernet Mode Authentication Method Password Confirm Password Retype in the password to verify that you typed in it correctly. Start Date Start Time End Date Enable/disable RIP (Routing Information Protocol) mode for the Ethernet interface.

  • Page 95: Dynamic Dns

    End Time Confirm Key Dynamic DNS Overview Dynamic DNS Service providers enable users to access a server connected to the internet that has been assigned a dynamic IP address. The IOLAN product line has built-in support for the DynDNS.com service provider. Refer to Functionality When the IOLAN is assigned a dynamic IP address, it will inform the DynDNS.com service provider of its new IP address.

  • Page 96: Account Settings

    Advanced User Name Password Account Settings Button Account Settings Enter the information about your DynDNS.com account so the IOLAN can communicate IP address updates. These settings are global and apply to all Dynamic DNS settings. Configure the appropriate parameters: System Type Wildcard Connection Method Specify how the IOLAN is going to connect to the DynDNS.org server.

  • Page 97: Cipher Suite Field Descriptions

    Validate Peer Enables/disables peer validation between the DynDNS.org server and the Certificate IOLAN. This may be desirable, since the DynDNS user name and password are sent from the IOLAN to the DynDNS server when the IP address needs to be updated and when an account refresh is performed.

  • Page 98: Adding/Editing A Cipher Suite

    Advanced Adding/Editing a Cipher Suite To see a list of valid cipher suite combinations, see Configure the following parameters: Encryption Min Key Size Max Key Size Key Exchange Appendix B, SSL/TLS Ciphers on page Select the type of encryption that will be used for the SSL connection. Data Options: Any—Will use the first encryption format that can be negotiated.

  • Page 99: Validation Criteria Field Descriptions

    HMAC Select the key-hashing for message authentication method for your encryption type. Data Options: SHA1 Default: Any Validation Criteria Field Descriptions If you choose to configure validation criteria, the information in the peer SSL/TLS certificate must match exactly the information configured in this window in order to pass peer authentication and create a valid SSL/TLS connection.

  • Page 100: Ipv6 Tunnels

    Advanced Common Name Email IPv6 Tunnels Overview IPv6 tunnels transport IPv6 data packets from one IPv6 network to another IPv6 network over an IPv4 network. In addition to creating the IPv6 tunnel, you must also create the route that will transport the data packets through the IPv4 network in the Route List (see more information).

  • Page 101: Adding/Editing An Ipv6 Tunnel

    Adding/Editing an IPv6 Tunnel When you add/edit an IPv6 tunnel, you are determining how an IPv6 message will reach an IPv6 device through an IPv4 network. Configure the following parameters: Name The name of the IPv6 tunnel. Field Format: Maximum 16 alphanumeric characters Default: ipv6_tunnel1 Mode The method or protocol that is used to create the IPv6 tunnel.
  • Page 102 Advanced IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 103: Chapter 7 Configuring Serial Ports

    Configuring Serial Ports Introduction The Serial section is used to configure the serial ports on your IOLAN. The following configuration windows are available: Serial Ports—Configures the type of connection that the serial port is being used for. This is accomplished by selecting a connection profile and then configuring the applicable parameters for that profile.

  • Page 104: Editing A Serial Port

    Serial Ports Editing a Serial Port In the Serial Port Settings window, click on a serial port and then click the button, the Edit following window is displayed: IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 105: Copying A Serial Port

    Serial Ports Click the Change Profile button to select a different serial port profile if you don’t want the displayed profile: As you select the different serial port profiles, a short description and a picture representing a typical application of the profile is displayed. When you have selected the appropriate profile for the serial port, click and those serial port profile configuration options will be displayed.

  • Page 106: Resetting A Serial Port

    Serial Port Profiles Resetting a Serial Port When you change a serial port’s configuration, you can download the configuration file to the IOLAN and then reset a specific serial port(s) to see how you change affects the serial port’s behavior. To reset a serial port, select Serial Port Profiles Common Tabs Overview...

  • Page 107: Hardware Tab Field Descriptions

    Hardware Tab Field Descriptions tab configures all the serial port hardware connection information. The window below Hardware shows an SDS1 model; your Hardware depending on the IOLAN model and supported hardware. Configure the following parameters: Serial Interface Specifies the type of serial line that is being used with the IOLAN. Data Options: EIA-232, EIA-422, or EIA-485.
  • Page 108 Serial Port Profiles Duplex TX Driver Control Used with a Flow Control Enable Inbound Flow Control Enable Outbound Flow Control Monitor DSR Monitor DCD Enable Line Termination Enable Echo Suppression Used with a EIA-485 serial interface, specify whether the serial port is Duplex (communication both ways at the same time) or (communication in one direction at a time).

  • Page 109: Email Alert Tab Field Descriptions

    Email Alert Tab Field Descriptions Email notification can be set at the Server and/or serial port levels. You can set unique email notifications for each serial port because the person who administers the IOLAN might not be the same person who administers the serial device(s) attached to the IOLAN port. Therefore, email notification can be sent to the proper person(s) responsible for the hardware.

  • Page 110: Packet Forwarding Tab Field Descriptions

    Serial Port Profiles Packet Forwarding Tab Field Descriptions Packet Forwarding sent from the IOLAN to the network. Configure the following parameters: Minimize Latency This option ensures that all application data is immediately forwarded to the Optimize Network Throughput Prevent Message Fragmentation Delay Between Messages...
  • Page 111 Packet Definition When enabled, this group of parameters allows you to set a variety of packet definition options. The first criteria that is met causes the packet to be transmitted. For example, if you set a Packet Size packet to be transmitted. Default: Enabled Packet Size The number of bytes that must be received from the serial port before the...
  • Page 112 Serial Port Profiles EOF1 Character EOF2 Character Trigger Forwarding Rule Specifies the End of Frame character, which defines when the frame is ready to be transmitted. The actual transmission of the frame is based on the Trigger Forwarding Rule. Range: Hex 0-FF Default: 0 When enabled, creates a sequence of characters that must be received to define the end of the frame (if the EOF1 character is not immediately followed by the...

  • Page 113: Ssl/Tls Settings Tab Field Descriptions

    SSL/TLS Settings Tab Field Descriptions You can create an encrypted connection using SSL/TLS for any serial port profile that accesses the IOLAN from the network. When you enable this feature, it will automatically use the global SSL/TLS settings (configured on Security settings for the serial port.

  • Page 114: Cipher Suite Field Descriptions

    Serial Port Profiles Validation Criteria Button Cipher Suite Field Descriptions The SSL/TLS cipher suite is used to encrypt data between the IOLAN and the client. You can specify up to five cipher groups. The following buttons are available on this window: Add Button Edit Button Delete Button...

  • Page 115: Adding/Editing A Cipher Suite

    Adding/Editing a Cipher Suite To see a list of valid cipher suite combinations, see Configure the following parameters: Encryption Select the type of encryption that will be used for the SSL connection. Data Options: Any—Will use the first encryption format that can be negotiated. 3DES ARCFOUR ARCTWO...

  • Page 116: Validation Criteria Field Descriptions

    Serial Port Profiles HMAC Validation Criteria Field Descriptions If you choose to configure validation criteria, the information in the peer SSL/TLS certificate must match exactly the information configured in this window in order to pass peer authentication and create a valid SSL/TLS connection. Configure the following parameters: Country State/Province...

  • Page 117: Console Management Profile

    Common Name Email Console Management Profile Overview The Console Management profile provides access through the network to a console or administrative port of a server or router attached to the IOLAN’s serial port. This profile configures the IOLAN’s serial port to set up a TCP socket that will listen for a Telnet or SSH connection from the network. Functionality Use the Console Management profile when you are configuring users who need to access a serial console port from the network.

  • Page 118: Advanced Tab Field Descriptions

    Serial Port Profiles Listen for Connections on TCP Port Enable IP Aliasing Enables/disables the ability to access a serial device connected to the serial port IP Address Advanced Tab Field Descriptions Console Management Advanced certain applications. Configure the following parameters: Authenticate User Enables/disables login/password authentication for users connecting from the Enable TCP Keepalive...
  • Page 119 Enable Microsoft When enabled, a user can access SAC (the interface of the Microsoft Special Emergency Management Systems utility) through EasyPort Web when the Administrator IOLAN’s serial port is connected to a Microsoft Server 2003 or Microsoft Console (SAC) Server 2008 host. support Default: Disabled Multisessions...

  • Page 120: Trueport Profile

    Serial Port Profiles Modem Phone TruePort Profile Overview TruePort is especially useful when you want to improve data security, as you can enable an SSL/TLS connection between the TruePort host port and the IOLAN. TruePort is COM Port redirector that is supplied with the IOLAN.

  • Page 121: General Tab Field Descriptions

    General Tab Field Descriptions tab determines how the TruePort connection is initiated and then sets up the TruePort General appropriate connection parameters. Configure the following parameters: Connect to remote When enabled, the IOLAN initiates communication to the TruePort client. system Default: Enabled Host Name The configured host that the IOLAN will connect to (must be running...

  • Page 122: Adding/Editing Additional Trueport Hosts

    Serial Port Profiles Adding/Editing Additional TruePort Hosts You can define a list of hosts that the serial device will communicate to through TruePort Lite or a primary/backup host. Configure the following parameters: Define additional hosts to connect to Add Button Edit Button Delete Button Define a primary...

  • Page 123: Adding/Editing A Multihost Entry

    Primary Host Specify a preconfigured host that the serial device will communicate to through the IOLAN. Default: None TCP Port Specify the TCP port that the IOLAN will use to communicate to the Host Default: 0 Backup Host Specify a preconfigured host that the serial device will communicate to through the IOLAN if the IOLAN cannot communicate with the Default: None TCP Port...

  • Page 124: Advanced Tab Field Descriptions

    Serial Port Profiles Advanced Tab Field Descriptions TruePort Advanced appropriate connection parameters. Configure the following parameters: Signals high when... Enable Message of the Day (MOTD) Enable TCP Keepalive tab determines how the TruePort connection is initiated and then sets up the This option has the following impact based on the state of the TruePort connection: TruePort Lite Mode—When enabled, the EIA-232 signals remain active...
  • Page 125 Enable Data When enabled, serial data will be buffered if the TCP connection is lost. When Logging the TCP connection is re-established, the buffered serial data will be sent to its destination (this option is not available when is enabled). Multihost The data buffer is 4K for desktop models and 32K for rack mount models.

  • Page 126: Tcp Sockets Profile

    Serial Port Profiles TCP Sockets Profile Overview The TCP Socket profile allows for a serial device to communicate over a TCP network. The TCP connection can be initiated from a host on the network and/or a serial device. This is typically used with an application on a Workstation or Server that communicates to a device using a specific TCP socket.
  • Page 127 TCP Port The TCP port that the IOLAN will use to listen for incoming connections. Default: 10000 plus the serial port number, so serial port 5 would have a default of 10005 Allow Multiple When this option is enabled, multiple hosts can connect to the serial device that Hosts to Connect is connected to this serial port.

  • Page 128: Adding/Editing Additional Hosts

    Serial Port Profiles Adding/Editing Additional Hosts You can define a list of hosts that the serial device will communicate to or a primary/backup host. Configure the following parameters: Define additional hosts to connect to Add Button Edit Button Delete Button Define a primary host and backup...

  • Page 129: Adding/Editing A Multihost Entry

    TCP Port Specify the TCP port that the IOLAN will use to communicate to the Host Default: 0 Backup Host Specify a preconfigured host that the serial device will communicate to through the IOLAN if the IOLAN cannot communicate with the Default: None TCP Port Specify the TCP port that the IOLAN will use to communicate to the...

  • Page 130: Advanced Tab Field Descriptions

    Serial Port Profiles Advanced Tab Field Descriptions Configure the following parameters: Authenticate User Enables/disables login/password authentication for users connecting from the Enable TCP Keepalive Enable Message of the Day (MOTD) Enable Data Logging Idle Timeout Session Timeout network. Default: Disabled Enables a per-connection TCP keepalive feature.
  • Page 131 Dial In If the device is remote and will be dialing in via modem or ISDN TA, enable this parameter. Default: Disabled Dial Out If you want the modem to dial a number when the serial port is started, enable this parameter.

  • Page 132: Udp Sockets Profile

    Serial Port Profiles UDP Sockets Profile Overview The UDP profile configures a serial port to broadcast UDP data to systems and/or receive UDP data from systems. Functionality When you configure will use to send UDP data to or receive UDP data from. When you configure UDP for To send to a single IP address, leave the The IP address can be auto learned if both start/end IP address are left blank/default.

  • Page 133: General Tab Field Descriptions

    UDP Entry 3 All hosts that have an IP Address that falls within the range of and who listen to Port 33009 will receive UDP data from the serial device. The IOLAN will listen for messages on the port value configured in the parameter.

  • Page 134: Terminal Profile

    Serial Port Profiles UDP Port Port Terminal Profile Overview The Terminal profile allows network access from a terminal connected to the IOLAN’s serial port. This profile is used to access pre-defined hosts on the network from the terminal. Functionality This profile can be configured for users: who must be authenticated by the IOLAN first and then a connection to a host can be established.

  • Page 135: General Tab Field Descriptions

    General Tab Field Descriptions Configure the following parameters: Terminal Type Specifies the type of terminal connected to the line. Data Options: Dumb WYSE60 VT100 ANSI TVI925 IBM3151TE VT320 (specifically supporting VT320-7) HP700 (specifically supporting HP700/44) Term1, Term2, Term3 (user-defined terminals) Default: Dumb Require Login When users access the IOLAN through the serial port, they must be...
  • Page 136 Serial Port Profiles Connect to Remote System Protocol Settings Button Host Name TCP Port Automatically When any data is received When <hex value> is received When the serial port is started, the IOLAN will initiate a connection to the specified host using the specified protocol. With this option, user authentication will not be performed by the IOLAN.

  • Page 137: Advanced Tab Field Descriptions

    Advanced Tab Field Descriptions Configure the following parameters: Enable Message of Enables/disables the display of the message of the day. the Day (MOTD) Default: Disabled Reset Terminal on When enabled, resets the terminal definition connected to the serial port when disconnect a user logs out.
  • Page 138 Serial Port Profiles Idle Timeout Session Timeout Dial Timeout Dial Retry Dial In Dial Out Use this timer to close a connection because of inactivity. When the expires, the IOLAN will end the connection. Timeout Range: 0-4294967 seconds (about 49 days) Default: seconds so the port will never timeout Use this timer to forcibly close the session/connection when the...

  • Page 139: User Service Settings

    User Service Settings Login Settings These settings apply to users who are accessing the network from a terminal connected to the IOLAN’s serial port. The Telnet, Rlogin, SSH, SLIP, PPP settings take effect when the connection method is defined in the user’s profile (or are passed to the IOLAN by a RADIUS or TACACS+ server when those authentication methods are being used).

  • Page 140: Telnet Settings

    Serial Port Profiles Telnet Settings The Telnet settings apply when the connection to a host. Telnet Configure the following parameters: Terminal Type Enable Local Echo Toggles between local echo of entered characters and suppressing local echo. Enable Line Mode When enabled, keyboard input is not sent to the remote host until Map CR to CRLF When enabled, maps carriage returns (CR) to carriage return line feed (CRLF).

  • Page 141: Rlogin Settings

    Escape Defines the escape character. Returns you to the command line mode. This value is in hexadecimal. Default: 1d (ASCII value Rlogin Settings The Rlogin settings apply when the User Service Login selected and specifies an Rlogin Configure the following parameter: Terminal Type Type of terminal attached to this serial port;...

  • Page 142: Ssh Settings

    Serial Port Profiles SSH Settings The SSH settings apply when the connection to a host. Configure the following parameters: Terminal Type Verbose Mode Enable Compression Auto Login Name Password SSH1 SSH1 Cipher SSH2 is set to User Service Type of terminal attached to this serial port; for example, ANSI or WYSE60. When enabled, displays debug messages on the terminal.

  • Page 143: Slip Settings

    SSH2 Ciphers Select the order of negotiation for the encryption method (ciphers) that the Opt1-5 IOLAN will use for the SSH version 2 connection: Data Options: 3DES Blowfish Arcfour CAST When enabled, an authentication method used by SSH version 1 and 2. Use RSA authentication for the SSH session.
  • Page 144 Serial Port Profiles Routing VJ Compression The Maximum Transmission Unit (MTU) parameter restricts the size of individual SLIP packets being sent by the IOLAN. Enter a value between 256 and 1006 bytes; for example, 512. The default value is authenticated by the IOLAN, this MTU value will be overridden when you have set a value for the user.

  • Page 145: Ppp Settings

    PPP Settings The PPP settings apply when the User Service Configure the following parameters: IPv4 Local IP The IPV4 IP address of the IOLAN end of the PPP link. For routing to work, Address you must enter a local IP address. Choose an address that is part of the same network or subnetwork as the remote end;...
  • Page 146 Serial Port Profiles IPv6 Remote Interface Identifier ACCM Authentication The remote IPv6 interface identifier of the remote end of the PPP link. Choose an address that is part of the same network or subnetwork as the IOLAN. If you enable Negotiate IP Address Automatically remote IP address value you enter here and will allow the remote end to specify its IP address.
  • Page 147 User Complete this field only if you have specified protocols) in the you wish to dedicate this line to a single remote user, who will be authenticated by the IOLAN, or you are using the IOLAN as a router (back-to-back with another IOLAN). When Connect is the name the remote device will use to authenticate a port on this IOLAN.
  • Page 148 Serial Port Profiles Remote Password Routing Configure Req. Timeout Configure Req. Retries Terminate Req. Timeout Terminate Req. Retries Configure NAK Retries Complete this field only if you have specified protocols) in the field, and Security you wish to dedicate this serial port to a single remote user, and this user will be authenticated by the IOLAN, or you are using the IOLAN as a router (back-to-back with another IOLAN) Remote password means the following:...
  • Page 149 Authentication The timeout, in minutes, during which successful PAP or CHAP authentication Timeout must take place (when the remote end has been authenticated successfully, the link will be terminated. Range: 1-255 Default: 1 minute Roaming Callback A user can enter a telephone number that the IOLAN will use to callback him/her.

  • Page 150: Printer Profile

    Serial Port Profiles Printer Profile Overview The Printer profile allows for the serial port to be configured to support a serial printer device that can be access by the network. General Tab Field Descriptions Configure the following parameter: Map CR to CR/LF Defines the default end-of-line terminator as CR/LF (ASCII carriage-return line-feed) when enabled.

  • Page 151: Serial Tunneling Profile

    Serial Tunneling Profile Overview The Serial Tunneling profile allows two IOLANs to be connected back-to-back over the network to establish a virtual link between two serial ports based on RFC 2217. Functionality The serial device that initiates the connection is the , although once the serial communication tunnel has been successfully established, Server communication can go both ways.

  • Page 152: General Tab Field Descriptions

    Serial Port Profiles General Tab Field Descriptions Configure the following parameters: Act As Tunnel Server TCP Port Enable TCP Keepalive Act as Tunnel Client Host Name TCP Port The IOLAN will listen for an incoming connection request on the specified on the specified Internet Address Default: Enabled...

  • Page 153: Virtual Modem Profile

    Serial Port Profiles Virtual Modem Profile Overview Virtual Modem (Vmodem) is a feature of the IOLAN that provides a modem interface to a serial device. It will respond to AT commands and provide signals in the same way that a serially attached modem would.

  • Page 154: General Tab Field Descriptions

    Serial Port Profiles General Tab Field Descriptions Configure the following parameters: Listen on TCP Port The IOLAN TCP port that the IOLAN will listen on. Connect Automatically At Startup Host Name TCP Port Connect Manually Via AT Command Phone Number to Host Mapping Button Send Connection...

  • Page 155: Advanced Tab Field Descriptions

    Success String String that is sent to the serial device when a connection succeeds. Default: CONNECT <speed>, for example, Failure String String that is sent to the serial device when a connection fails. Default: NO CARRIER Numeric Codes When enabled, the connection status is sent to the connected device using the following numeric codes: 0 OK 1 CONNECTED...
  • Page 156 Serial Port Profiles DTR Signal Acts as RTS Signal Always RTS Signal Acts as RTS Signal Acts as DCD Signal Always DCD Signal On when host connection established Additional modem initialization Enable Message of the Day (MOTD) Enable TCP Keepalive AT Command Response Delay Specify this option to make the DTR signal always act as a RI signal.

  • Page 157: Phone Number To Host Mapping

    Phone Number to Host Mapping If your modem application dials using a phone number, you can add an entry in the Phone Number to Host Mapping window that can be accessed by all serial ports configured as Virtual Modem. You need to enter the phone number sent by your modem application and the IOLAN IP address and TCP Port that will be receiving the ’call.’...

  • Page 158: Vmodem Phone Number Entry

    Serial Port Profiles VModem Phone Number Entry Create an entry in the Phone Number to Host Mapping window. Configure the following parameters: Phone Number Host IP Address TCP Port Control Signal I/O Profile Overview Control Signal I/O port for Control Signal I/O channel Digital Input (DSR, DCD, and CTS) or Digital Output (DTR and RTS).

  • Page 159: General Tab Field Descriptions

    General Tab Field Descriptions tab displays the signal pins. This window is also used to enable/disable the signal pins. General Highlight a signal and then click the Input Signal Field Descriptions Digital I/O Extension on page 253 Configure the following parameters: Description Provide a description of the channel, making it easier to identify.
  • Page 160 Serial Port Profiles Trigger Auto Clear Mode Manual Clear Mode Email Syslog SNMP When the trigger condition is met, triggers the specified alarm action. Data Options: Disabled—No alarm settings. This is the default. Inactive—When the expected Digital input is active, going inactive will trigger an alarm.

  • Page 161: Output Signal Field Descriptions

    Output Signal Field Descriptions Digital I/O Extension on page 253 Configure the following parameters: Description Provide a description of the channel, making it easier to identify. Data Options: Maximum 20 characters, including spaces Failsafe Action When there has been no I/O activity within the specified time (set in the I/O Interfaces, Settings on the Failsafe Timer tab) and the triggered.

  • Page 162: Modbus Gateway Profile

    Serial Port Profiles Modbus Gateway Profile Overview Each serial port can be configured as either a Modbus Master gateway or a Modbus Slave gateway, depending on your configuration and requirements. If your model supports I/O, see Access on page 268 Functionality The Modbus Gateway profile configures a serial port to act as a Modbus Master Gateway or a Modbus Slave Gateway.

  • Page 163: General Tab Field Descriptions

    General Tab Field Descriptions Configure the following parameters: Mode Specify how the Modbus Gateway is defined on the serial port. Data Options: Modbus Master—Typically, the Modbus Master is connected to the Serial Port and is communicating to Modbus Slaves on the network. Modbus Slave—Typically, the Modbus Master is accessing the IOLAN through the network to communicated to Modbus Slaves connected to the IOLAN’s Serial Ports.

  • Page 164: Advanced Field Descriptions

    Serial Port Profiles Advanced Field Descriptions Configure the following parameters: Idle Timeout Enable Modbus Exceptions Character Timeout Used in conjunction with the Modbus RTU protocol, specifies how long to Message Timeout Use this timer to close a connection because of inactivity. When the expires, the IOLAN will end the connection.

  • Page 165: Modbus Slave Ip Settings Field Descriptions

    Modbus Slave IP Settings Field Descriptions This window is used to configure the Modbus Slaves. The following buttons are available: Add Button Adds an entry into the Modbus Destination Slave IP Settings table. Edit Button Edits an entry in the Modbus Destination Slave IP Settings table. Delete Button Deletes an entry from the Modbus Destination Slave IP Settings table.

  • Page 166: Adding/Editing Modbus Slave Ip Settings

    Serial Port Profiles Adding/Editing Modbus Slave IP Settings Configure the following parameters: UID Start UID End Type Start IP Address When is set to Destination Host addresses (for example, 10.10.10.1, 10.10.10.2, 10.10.10.3, etc.), you can specify a UID range (not supported with IPv6 addresses) and the IOLAN will automatically increment the last digit of the configured IP address.

  • Page 167: Modbus Slave Advanced Settings Field Descriptions

    End IP Address Displays the ending IP address of the TCP/Ethernet Modbus Slaves, based on the Start IP address and the UID range (not supported for IPv6 addresses). Field Format: IPv4 address Protocol Specify the protocol that is used between the Modbus Master and Modbus Slave(s).

  • Page 168: Power Management Profile

    Serial Port Profiles Embedded Remapped Remap UID Enable SSL/TLS using global settings Power Management Profile Overview The Power Management profile applies when there is a Perle Remote Power Switch (RPS) connected to the serial port. This profile is used to configure the RPS. See information on how to actively management the RPS.

  • Page 169: General Tab Field Descriptions

    General Tab Field Descriptions Configure the following parameters: RPS Name Specify a name for the RPS. RPS Model Specify the RPS model. Data Options: RSP820, RPS830, RPS1620, RPS1630 Default: RSP820 Edit Button Highlight a plug and then click the Editing Power Management Plug Settings Field Descriptions Configure the following parameters: Plug Displays the plug number you are configuring.

  • Page 170: Remote Access (Ppp) Profile

    Serial Port Profiles Default State Associated Port Remote Access (PPP) Profile Overview Remote Access (PPP) connection to the IOLAN’s serial port. This is typically used with a modem for dial-in or dial-out access to the network or a wireless WAN card. Functionality There are two options for PPP user authentication: You can configure a specific user/password and a specific remote user/password per a serial port.

  • Page 171: General Tab Field Descriptions

    General Tab Field Descriptions Configure the following parameters: IPv4 Local IP The IPV4 IP address of the IOLAN end of the PPP link. For routing to work, Address you must enter a local IP address. Choose an address that is part of the same network or subnetwork as the remote end;...
  • Page 172 Serial Port Profiles IPv6 Local Interface Identifier IPv6 Remote Interface Identifier IPv6 Global Network Prefix IPv6 Prefix Bits The local IPv6 interface identifier of the IOLAN end of the PPP link. For routing to work, you must enter a local IP address. Choose an address that is part of the same network or subnetwork as the remote end.

  • Page 173: Authentication Tab Field Descriptions

    Authentication Tab Field Descriptions Configure the following parameters: Authentication The type of authentication that will be done on the link. You can use to authenticate a serial port or user on the IOLAN, from a remote CHAP location, or authenticate a remote client/device, from the IOLAN. When setting either client/device have the same setting.
  • Page 174 Serial Port Profiles Password Remote User Remote Password Authentication Timeout Complete this field only if you have specified protocols) in the field and: Security you wish to dedicate this serial port to a single remote user, who will be authenticated by the IOLAN, or you are using the IOLAN as a router (back-to-back with another IOLAN) Password means the following: When...

  • Page 175: Dynamic Dns Field Descriptions

    CHAP Challenge The interval, in minutes, for which the IOLAN will issue a CHAP re-challenge Interval to the remote end. During CHAP authentication, an initial CHAP challenge takes place, and is unrelated to CHAP re-challenges. The initial challenge takes place even if re-challenges are disabled. Some PPP client software does not work with CHAP re-challenges, so you might want to leave the parameter disabled in the IOLAN.

  • Page 176: Advanced Tab Field Descriptions

    Serial Port Profiles Advanced Tab Field Descriptions Configure the following parameters: Routing ACCM Determines the routing mode (RIP, Routing Information Protocol) used on the interface.This is the same function as the RADIUS authenticated users. Data Options None—Disables RIP over the PPP interface. Send—Sends RIP over the PPP interface.
  • Page 177 Configure Request The maximum time, in seconds, that LCP (Link Control Protocol) will wait Timeout before it considers a Range: 1-255 Default: 3 seconds Configure Request The maximum number of times a Retries before the link is terminated. Range: 0-255 Default: 10 seconds Terminate Request The maximum time, in seconds, that LCP (Link Control Protocol) will wait...
  • Page 178 Serial Port Profiles Dial In Dial Out Dial In/Out MS Direct Host MS Direct Guest Dial Timeout Dial Retry Modem Phone If the device is remote and will be dialing in via modem or ISDN TA, enable this parameter. Default: Disabled If you want the modem to dial a number when the serial port is started, enable this parameter.

  • Page 179: Remote Access (Slip) Profile

    Remote Access (SLIP) Profile Overview Remote Access (SLIP) connection to the IOLAN’s serial port. This is typically used with a modem for dial-in or dial-out access to the network. General Tab Field Descriptions Configure the following parameters: Local IP Address Remote IP Address The IPv4 address of the remote end of the SLIP link.

  • Page 180: Advanced Tab Field Descriptions

    Serial Port Profiles Advanced Tab Field Descriptions Configure the following parameters: Routing VJ Compression Direct Connect The Maximum Transmission Unit (MTU) parameter restricts the size of individual SLIP packets being sent by the IOLAN. Enter a value between 256 and 1006 bytes; for example, 512. The default value is authenticated by the IOLAN, this MTU value will be overridden when you have set a value for the user.
  • Page 181 Dial In If the device is remote and will be dialing in via modem or ISDN TA, enable this parameter. Default: Disabled Dial Out If you want the modem to dial a number when the serial port is started, enable this parameter.

  • Page 182: Custom Application Profile

    Serial Port Profiles Custom Application Profile Overview Custom App/Plugin IOLAN by using the Perle SDK. See the SDK Programmer’s Guide (the SDK and guide are found on the Perle website at functions that are supported. Functionality You must download the program and any ancillary files to the IOLAN and set the serial port to the Custom App/Plugin executable and any parameters you want to pass to the program in the custom application is automatically run when the serial port is started.

  • Page 183: Port Buffering

    Port Buffering Overview The Port Buffering feature allows data activity on the IOLAN’s serial ports to be held in memory for viewing at a later stage without affecting the normal operation of the serial ports. Note: Port Buffering is only supported on serial port(s) configured for the profile.

  • Page 184: Remote Port Buffers

    Port Buffering Remote Port Buffers The Remote Port Buffering feature allows data received from serial ports on the IOLAN to be sent to a remote server on the LAN. The remote server, supporting Network File System (NFS), allows administrators to capture and analyze data and messages from the serial device connected to the IOLAN serial port.
  • Page 185 NFS Host The NFS host that the IOLAN will send data to for its feature. The IOLAN will open a file on the NFS host for each serial port configured for written to that file(s). Default: None NFS Directory The directory and/or subdirectories where the will be created.

  • Page 186: Advanced

    Advanced Advanced Advanced Serial Settings Tab Overview Advanced serial port settings apply to all serial ports. Field Descriptions Configure the following parameters: Process Break Signals Flush Data Before Closing Serial Port Deny Multiple Network Connections Enables/disables proprietary inband SSH break signal processing, the Telnet break signal, and the out-of-band break signals for TruePort.
  • Page 187 Serial Port Menu When a user connects to the IOLAN through the network, the string used to String access the Easy Port Access menu without disconnecting the network connection. Data Options: You can specify control (unprintable) codes by putting the decimal value in angle brackets <...

  • Page 188: Modems Tab

    Advanced Modems Tab Overview You need to configure a modem if there is a modem connected to the IOLAN. If your IOLAN model contains an internal modem or a PCI slot (SCS models) for a modem card, a permanent modem string called internal_modem Functionality...

  • Page 189: Trueport Baud Rate Tab

    TruePort Baud Rate Tab Overview The TruePort utility acts as a COM port redirector that allows applications to talk to serial devices across a network as though the serial devices were directly attached to the server. For IOLAN I/O models, you can also monitor and control I/O through the TruePort client. Functionality Since some older applications may not support the higher baud rates that the IOLAN is capable of achieving, the baud rate can be mapped to a different value on the IOLAN.
  • Page 190 Advanced IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 191: Chapter 8 Configuring Users

    Configuring Users Introduction You can configure up to four users in the IOLAN’s local user database for all DS, SDS, and STS 1-port to 4-port desktop models, in addition to the Admin user. You can configure up to 48 users in the IOLAN’s local user database for all STS, SCS, and SDS rack mount models, in addition to the Admin user.

  • Page 192: User Settings

    User Settings User Settings Overview The Users window allows you to add, edit, and delete users from the IOLAN. Functionality The Users window displays the users who have been configured. You can add users, edit existing users, or delete users from this window. See the parameters available when adding or editing a user.

  • Page 193: Adding/Editing Users

    Adding/Editing Users General Tab Overview The General tab configures the basic user information. Functionality You must, minimally, provide a Field Descriptions Configure the following parameters: User Name Password Confirm Password Enter the user’s password again to verify it is entered correctly. User Name Level for a user.
  • Page 194 Adding/Editing Users Level Note: A technique for giving a serially attach user (dial-in or terminal attached), the same menus as one that is network connected is to do the following: Define the serial port with a Terminal Profile using telnet protocol with a direct connection to Host IP address 127.0.0.0 (local loop back).

  • Page 195: Services Tab

    Services Tab Overview tab configures the connection parameters for a user. Any connection parameters Services configured in this window will override the serial port connection parameters. Functionality When a Terminal accessing the IOLAN through the serial port will be authenticated. Once authentication is successful, specified here is started.
  • Page 196 Adding/Editing Users TCP Port IPv4 Address IPv4 Subnet Mask If the remote user is on a subnet, enter the network’s subnet mask. For IPv6 Interface Indentifier Routing When the User Service Telnet number. The default value will change based on the type of the most common known port numbers are used as the default values.

  • Page 197: Advanced Tab

    Enable VJ Compression Advanced Tab Overview tab is used to configure those parameters that control the user session; this includes Advanced session length, language, the hotkey used for switching between sessions, access to clustered ports, etc. Field Descriptions Configure the following parameters: Idle Timeout Used for , determines whether Van Jacobsen...
  • Page 198 Adding/Editing Users Session Timeout Enable Callback Phone Number Language Hotkey Prefix The amount of time, in seconds, before the IOLAN forcibly closes a user’s session (connection). The default value is timer will not expire (the session is open permanently, or until the user logs out).

  • Page 199: Sessions Tab

    Adding/Editing Users Sessions Tab Overview tab is used to configure specific connections for users who are accessing the network Sessions through the IOLAN’s serial port. Functionality Users who have successfully logged into the IOLAN ( User Service set to DSprompt ) can start up to four login sessions on network hosts.

  • Page 200: Field Descriptions

    Adding/Editing Users Field Descriptions Configure the following parameters: Session 1, 2, 3, 4 Settings Button Connect Automatically Host TCP Port You can configure up to four (4) sessions that the user can select from to connect to a specific host after that user has successfully logged into the IOLAN (used only on serial ports configured for the Data Options: None—No connection is configured for this session.

  • Page 201: Serial Port Access Tab

    Serial Port Access Tab Overview Serial Port Access This pertains to users that are connecting from the network to a serial over a Console Management type session. This can be useful when you have multiple users connecting to the same serial device and you wish to control the viewing and/or the write to and from the device.
  • Page 202 Adding/Editing Users IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 203: Chapter 9 Configuring Security

    Configuring Security Introduction group includes the following configuration options: Security Authentication—When a serial port is configured for the Console Management or TCP Sockets profile, the user can be authenticated either locally in the IOLAN user profile or externally. This option configures the external authentication server.

  • Page 204: Authentication

    Authentication Authentication In the Authentication window, you can select up to two methods of authentication made up of external authentication options and/or the local user database. Configure the following parameters: Primary Authentication Method Secondary Authentication Method Settings Button Only use as backup The secondary authentication method will be tried only when the IOLAN Only authenticate admin user in the local database...

  • Page 205: Local

    Local Overview When authentication is selected, the user must either be configured in the IOLAN’s Local or you must enable Field Descriptions Configure the following parameters: Enable Guest Mode Allow users who are not defined in the Guest Password Confirm Password Type the users.

  • Page 206: Radius

    Authentication RADIUS Overview RADIUS is an authentication method that the IOLAN supports that can send back RADIUS on page 335 RADIUS. General Field Descriptions Configure the following parameters: First Authentication Host Second Authentication Host Secret Authentication Port The port that the RADIUS host listens to for authentication requests. Enable Accounting Enables/disables RADIUS accounting.

  • Page 207: Attributes Field Descriptions

    Account Port The port that the RADIUS host listens to for accounting requests. Default: 1813 Enable Accounting Enables/disables whether or not the IOLAN validates the RADIUS accounting Authenticator response. Default: Enabled Retry The number of times the IOLAN tries to connect to the RADIUS server before erroring out.

  • Page 208: Kerberos

    Authentication Use the following NAS-IP-Address IP Address Automatically determine NAS-IPv6-Address Use the following NAS-IPv6-Address IPv6 Address Kerberos Field Descriptions Configure the following parameters: Realm KDC Domain KDC Port When enabled, the IOLAN will send the specified IPv4 address to the RADIUS server.

  • Page 209: Ldap

    LDAP Overview If you are using LDAP with certificate authority (CA) that signed the LDAP certificate on the LDAP host by selecting Advanced Keys and Certificates the LDAP certificate. Field Descriptions Configure the following parameters: Host Name Port Base Enable TLS TLS Port , you need to download a CA list to the IOLAN that includes the .

  • Page 210: Tacacs

    Authentication TACACS+ Overview TACACS+ is an authentication method that the IOLAN supports that can send back information; see that can be sent back by TACACS+. Field Descriptions Configure the following parameters: Authentication/ Authorization Primary Host Authentication/ Authorization Secondary Host Authentication/ Authorization Port Authentication/ Authorization...

  • Page 211: Securid

    Accounting Secondary Host Accounting Port Accounting Secret The TACACS+ shared secret is used to encrypt/decrypt TACACS+ packets in SecurID Overview If you need to reset the SecurID secret, select Field Descriptions Configure the following parameters: Primary/Master Host Replica/Slave Host If the first SecurID server does not respond to an authentication request, this is UDP Port Encryption Type Legacy...

  • Page 212: Nis

    Authentication Field Descriptions Configure the following parameters: NIS Domain Primary NIS Host The primary NIS host that is used for authentication. Secondary NIS Host The secondary NIS host that is used for authentication, should the primary NIS The NIS domain name. Default: None host fail to respond.

  • Page 213: Ssh

    Overview The IOLAN contains SSH Server software that you need to configure if the IOLAN is going to be accessed via SSH. If you specify more than one will negotiate with the client and use the first authentication method and cipher that is compatible with both systems.

  • Page 214: Users Passing Through The Iolan Using Ssh (Dir/Sil)

    Users Passing Through the IOLAN Using SSH (Dir/Sil) This scenario applies to serial ports configured for the the IOLAN. The user’s service is set to the SSH protocol, therefore, users first log into the IOLAN and then are connected to a specified host (configured for the user when selected) through an SSH connection.

  • Page 215: Field Descriptions

    Field Descriptions Configure the following parameters: Allow SSH-1 Protocol Keyboard- Interactive Password 3DES CAST Blowfish Arcfour Allows the user’s client to negotiate an SSH-1 connection, in addition to SSH-2. Default: Disabled When a client SSH session requests RSA authentication, the IOLAN’s SSH server will authenticate the user via RSA.

  • Page 216: Ssl/Tls

    SSL/TLS Break String Enable Verbose Output Allow Compression Requests compression of all data. Compression is desirable on modem lines SSL/TLS Overview When SSL/TLS is configured, data is encrypted between the IOLAN and the host/device (which must also support SSL/TLS). When you configure the configuring the default global SSL/TLS settings;...

  • Page 217: Field Descriptions

    Field Descriptions Configure the following parameters: SSL/TLS Version SSL/TLS Type Cipher Suite Button Click this button to specify SSL/TLS connection ciphers. Validate Peer Certificate Validation Criteria Button SSL Certificate Passphrase Specify whether you want to use: Any—The IOLAN will try a TLSv1 connection first. If that fails, it will try an SSLv3 connection.

  • Page 218: Cipher Suite Field Descriptions

    SSL/TLS Cipher Suite Field Descriptions The SSL/TLS cipher suite is used to encrypt data between the IOLAN and the client. You can specify up to five cipher groups. The following buttons are available on the Cipher Suite window: Add Button Edit Button Delete Button Move Up Button...

  • Page 219: Adding/Editing A Cipher

    Adding/Editing a Cipher Appendix B, SSL/TLS Ciphers on page 347 Configure the following parameters: Encryption Select the type of encryption that will be used for the SSL connection. Data Options: Any—Will use the first encryption format that can be negotiated. 3DES ARCFOUR ARCTWO...

  • Page 220: Validation Criteria Field Descriptions

    SSL/TLS HMAC Validation Criteria Field Descriptions If you choose to configure validation criteria, then the information in the peer SSL/TLS certificate must match exactly the information configured in this window in order to pass peer authentication and create a valid SSL/TLS connection. Configure the following parameters: Country State/Province...

  • Page 221: Vpn

    Common Name Email Overview A Virtual Private Network (VPN) creates a secure, dedicated communications network tunnelled through another network. You can configure the IOLAN for: a host-to-host Virtual Private Network (VPN) connection a host-to-network VPN connection a network-to-network VPN connection or host/network-to-IOLAN VPN connection (allowing serial devices connected to the IOLAN to communicate data to a host/network).

  • Page 222: Ike Phase 1 Proposals

    IKE Phase 1 Proposals The following IKE Phase 1 proposals are supported by the IOLAN VPN gateway: Ciphers—3DES, AES Hashes—MD5, SHA1 Diffie-Hellman Groups—2 (MODP1024), 5 (MODP1536), 14 (MODP2048), 15 (MODP3072), 16 (MODP4096), 17 (MODP6144), 18 (MODP8192) ESP Phase 2 Proposals The following ESP Phase 2 proposals are supported by the IOLAN VPN gateway: Ciphers—3DES, AES Authentication Algorithms—MD5, SHA1, SHA2...

  • Page 223: Adding/Editing The Ipsec Tunnel

    Adding/Editing the IPsec Tunnel When you click the button or select an IPsec tunnel and click the window is displayed: Configure the following parameters: Name Provide a name for the IPsec VPN tunnel to make it easy to identify. Text Characteristics: Maximum of 16 characters, spaces not allowed Authentication Specify the authentication method that will be used between VPN peers to Method...
  • Page 224 Secret/Remote Validation Criteria Button Local Device Local IP Address Local External IP Address Local Next Hop Local Host/Network Address Local IPv4 Subnet Mask Local IPv6 Prefix Bits Remote IP Address The IP address or FQDN of the remote VPN peer. If you want to accept a VPN Remote External IP Address Depending on the...

  • Page 225: Shared Secret Field Description

    Remote Next Hop The IP address of the router/gateway that will forward data packets to the IOLAN (if required). The router/gateway must reside on the same subnet at the remote VPN. Field Format: IPv4 or IPv6 address Remote The IP address of a specific host or the network address that the IOLAN will Host/Network provide a VPN connection to.

  • Page 226: Remote Validation Criteria Field Descriptions

    Remote Validation Criteria Field Descriptions When the Authentication Method validation criteria. The information in the remote X.509 certificate must match exactly the information configured in this window in order to successfully authenticate and create a valid connection. Configure the following parameters: Country State/Province Locality...

  • Page 227: L2Tp/Ipsec

    L2TP/IPsec Many operating systems support L2TP/IPsec VPN tunnels, however, Windows XP requires this VPN tunnel protocol. When L2TP/IPsec is enabled, the IOLAN will listen for L2TP/IPsec VPN tunnel requests. When you enable L2TP/IPsec, you are requiring that all access to the IOLAN go through the L2TP/IPsec tunnel, so you must configure any exceptions first (see information on exceptions) or you will not be able to access the IOLAN through the network unless you are configured to go through the L2TP/IPsec tunnel (you can still access the IOLAN through the...

  • Page 228: Exceptions

    Remote Validation Criteria IPv4 Local IP Address IPv4 Remote IP Start Address IPv4 Remote IP End Address Authentication Exceptions Exceptions allow specific hosts or any host in a network to access the IOLAN outside of a VPN tunnel. This is especially useful when allowing local network hosts access to the IOLAN when VPN tunnels have been configured for remote user security.

  • Page 229: Adding/Editing A Vpn Exception

    Delete Button Adding/Editing a VPN Exception The following parameters are available: IP Address Network IPv4 Subnet Mask The IPv4 subnet mask for the IPv4 network. IPv6 Prefix Bits Advanced Field Description Configure the following parameter: Use NAT Traversal (NAT_T) Highlight an entry and click the Exception List entry from the list.

  • Page 230: Services

    Services Services Overview Services are either daemon or client processes that run on the IOLAN. You can disable any of the services for security reasons. Functionality If you disable any of the daemons, it can affect how the IOLAN can be used or accessed. For example, if you disable WebManager (HTTPS and HTTP) services, you will not be able to access the IOLAN with the WebManager.
  • Page 231 DeviceManager DeviceManager daemon process in the IOLAN. If you disable this service, you will not be able to connect to the IOLAN with the DeviceManager application. The DeviceManager listens on port 33812 and sends on port 33813. Default: Enabled WebManager WebManager daemon process in the IOLAN listening on port 80.

  • Page 232: Keys And Certificates

    Keys and Certificates Keys and Certificates When you are using SSH, SSL/TLS, LDAP, or HTTPS, you will need to install keys and/or certificates or get server keys in order to make those options work properly. All certificates need to be created and all keys need to be generated outside of the IOLAN, with the exception of the IOLAN SSH Public keys, which already exist in the IOLAN.
  • Page 233 Key Type Specify the type of authentication that will be used for the SSH session. The following list details the keys that support each key type. Data Options: *RSA—Server SSH Public Key, SSH User Public Key, SSH User Private Key, SSH Host Public Key DSA—Server SSH Public Key, SSH User Public Key, SSH User Private Key, SSH Host Public Key **RSA1—SSH User Private Key, SSH Host Public Key...
  • Page 234 Keys and Certificates IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 235: Chapter 10 Configuring I/O Interfaces

    Configuring I/O Interfaces Introduction There is a line of IOLANs that can control/monitor the following types of I/O: Analog Input Digital Input/Output Relay Output Temperature Input Some of the models are I/O combinations and some of the models support one I/O type, although all of the SDS I/O models are extensions of the feature rich, extended temperature SDS IOLAN.

  • Page 236: Settings

    Settings Settings Overview I/O Interfaces Settings I/O Access Functionality Field Descriptions Configure the following parameters: Enable I/O Access to Modbus protocol Advanced Modbus Settings Button Allow Modbus TCP Application (API) Allow Modbus RTU/ASCII via TruePort window configures the parameters that are global to all I/O channels. Enables/disables Modbus as the communication protocol for all the I/O channels.

  • Page 237: Advanced Slave Modbus Settings

    Enable I/O Access Enables/disables serial application access to the I/O over the network using the via TruePort TruePort COM redirector feature. Default: Disabled Enable SSL Enables/disables SSL encryption for the I/O data between the IOLAN and the Encryption TruePort host. Default: Disabled Listen TCP Port The TCP port that the IOLAN will listen to for I/O channel data requests from...
  • Page 238 Settings Request Queuing Embedded Remapped Remap UID Enable SSL/TLS using global settings When enabled, allows multiple, simultaneous messages to be queued and processed in order of reception. Default: Enabled When this option is selected, the address of the slave Modbus device is embedded in the message header.

  • Page 239: Failsafe Timer Functionality

    Failsafe Timer Functionality Overview Failsafe Timer basis and provides a trigger mechanism that can be configured for each channel when no I/O traffic/management has occurred for the specified amount of time. A Failsafe Action can be configured for each Digital Output channel, each Serial Signal Output pin (DTR and RTS), and each Relay channel to either Activate or Deactivate the output.

  • Page 240: Udp Functionality

    Settings UDP Functionality Overview tab configures the I/O UDP broadcast settings. The I/O UDP broadcast feature periodically broadcasts the I/O channel status in a UDP message. You can configure up to four sets of IP address entries (each entry consisting of a start and end IP address range) to broadcast I/O status data.

  • Page 241: I/O Udp Settings

    I/O UDP Settings Configure the following parameters: UDP Entry When enabled, broadcasts I/O status (data) to the specified range of IP addresses. Default: Disabled Start IP Address The first host IP address in the range of IP addresses (for IPV4 or IPV6) that the IOLAN will listen for messages from and/or send messages to.

  • Page 242: Temperature Functionality

    Settings Temperature Functionality Overview Temperature Field Descriptions Configure the following parameter: Temperature Scale Select the temperature scale that will be used to display temperature data. tab configures the temperature scale settings for T4 models. Data Options: Fahrenheit or Celsius Default: Celsius IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 243: Channels

    Channels Channels section displays the I/O Channels window, through which you can enable/disable the I/O channels. Highlight a channel and then click the Analog Overview Analog channels monitor current/voltage input. Note that the internal jumpers must match the software setting (by default, they are set to Current); see out how to set the internal jumpers.

  • Page 244: Field Descriptions

    Channels Field Descriptions Configure the following parameters: Description Type Range Alarm Settings Button Provide a description of the channel, making it easier to identify. Data Options: Maximum 20 characters, including spaces Select the type of input being measured. Data Options: Current or Voltage Default: Current Select the range for the measurement type.

  • Page 245: Digital Input

    Digital Input Overview When the channel is set for digital input, it monitors voltage or current. Note that the internal jumpers must match the software setting and must be set to Input, which is the default; see Module on page 366 Functionality The Digital input channels allow you to configure the following options: You can choose to remember the last state change, or latch, that occurred.

  • Page 246: Field Descriptions

    Channels Field Descriptions Configure the following parameters: Description Input Mode Latch Invert Signal Trigger Provide a description of the channel, making it easier to identify. Data Options: Maximum 20 characters, including spaces When selected, the channel will be reading the status of the line (input). The internal jumpers must match the software configuration;...
  • Page 247 Auto Clear Mode When enabled, automatically clears the alarm when the trigger condition changes; for example, if the the input becomes active again, the alarm will automatically be cleared Default: Enabled Manual Clear When enabled, a triggered alarm must be manually cleared. Mode Default: Disabled Email...

  • Page 248: Digital Output

    Channels Digital Output Overview When the channel is set for digital output, either voltage is applied to the channel or the channel is grounded. Note that the internal jumpers must match the software setting and must be set to Output (by default, they are set to Input);...

  • Page 249: Field Descriptions

    Field Descriptions Configure the following parameters: Description Provide a description of the channel, making it easier to identify. Data Options: Maximum 20 characters, including spaces Output Mode When selected, the channel will drive the line (output). The internal jumpers must match the software configuration, so if you change this setting to , you will have to also change the internal hardware jumpers.
  • Page 250 Channels Pulse Mode Pulse Count Inactive Signal Width Active Signal Width Delay Failsafe Action When is set to , you can specify the manner of the pulse. Output Pulse Data Options: Continuous—Continuously pulses active and inactive. Count—Pulses an active/inactive sequence for the specified number of times.

  • Page 251: Relay

    Relay Overview Relay channels can open or close a contact for a higher voltage circuit using a lower level control voltage. The Relay output channels work as a physical on/off switch, and are used to drive higher voltage devices with a lower controlling voltage. You can configure the following Relay output channel options: You can choose to manually activate/deactivate the Relay output.

  • Page 252: Field Descriptions

    Channels Field Descriptions Configure the following parameters: Description Output Pulse Mode Pulse Count Inactive Signal Width Provide a description of the channel, making it easier to identify. Data Options: Maximum 20 characters, including spaces Specify how the channel output will be handled. Data Options: Manual—You must manually manipulate the channel output.

  • Page 253: Digital I/O Extension

    Active Signal Width Delay Failsafe Action Digital I/O Extension Overview The Digital I/O extension feature connects a digital input signal to digital output(s)/relay(s) and/or a TCP/IP application over an IP network. Therefore, when the state of the digital input changes, you can also change the state of the digital output or relay channel or output serial signal pin on a local I/O channel(s), other IOLAN I/O channels, other IOLAN serial signal pins, or the data can be sent to an application(s).

  • Page 254: Functionality

    Channels Functionality The Digital I/O extension feature requires the digital input to be connected to one or more digital outputs/relays (local or on another IOLAN model), output serial signal pins, and/or TCP/IP applications. In order to create a successful connection between the input and output or application, one side must be must be set to When the state of an input channel changes, a message is sent to all sessions currently associated with that channel.

  • Page 255: Field Descriptions

    Field Descriptions option is different depending on whether you are configuring a Digital Input Local connection or a Digital Output/Relay channel. The Digital Output channels or output serial signal pins that it is associated with. Digital Input can be connected to multiple local Digital Output or Relay channels or output serial signal pins. However, a Digital Output can only be associated with one Digital Input channel or input serial signal pin.
  • Page 256 Channels Allow Multiple Hosts to Connect Connect to Host Name TCP Port Connect to Multiple Hosts Define Additional Hosts Button Local connection Enable TCP Keepalive When this option is enabled, multiple I/O channels and/or TCP/IP applications can connect to this channel/serial signal pin. Default: Disabled When enabled, the channel/serial signal pin initiates communication to another I/O channel or a TCP/IP application.

  • Page 257: Adding/Editing Additional Hosts

    Adding/Editing Additional Hosts You can define a list of hosts that the I/O channel will communicate to or a primary/backup host. Configure the following parameters: Define additional When this option is enabled, you can define up to 49 hosts/IOLANs that the hosts to connect to I/O channel or serial signal pin will attempt communicate to.

  • Page 258: Adding/Editing A Multihost Entry

    Channels TCP Port Backup Host TCP Port Adding/Editing a Multihost Entry When you click the list must already be defined (see host that was defined with its fully qualified domain name (FQDN), it must be resolvable by your configured DNS server. Configure the following parameters: Host Name TCP Port...

  • Page 259: Temperature

    Temperature Temperature input channels monitor RTD or thermocouple temperature sensors inputs for the most common ranges. You can also configure severity alarms that can send an email, a syslog message, and/or an SNMP trap when an alarm is triggered or cleared; See more information about the alarms.

  • Page 260: Field Descriptions

    Channels Field Descriptions Configure the following parameters: Description Type Range Alarm Settings Button Provide a description of the channel, making it easier to identify. Data Options: Maximum 20 characters, including spaces Specify the type of sensor you are using to measure temperature. Data Options: RTD, Thermocouple Default: RTD Specify the temperature range that you want to measure.

  • Page 261: Alarm Settings

    Alarm Settings Analog and Temperature input models support an Alarm mechanism in which you can specify up to five severity levels of alarm triggers and clear levels; the alarm triggers/clear levels can activate in either increasing or decreasing severity levels. Each time an alarm is triggered or cleared, you can specify any combination of the following to be initiated: An SNMP trap...

  • Page 262: Advanced Analog Alarm Settings

    Channels Send Syslog Alert Send SNMP Alert When enabled, sends an SNMP trap when an alarm is triggered or cleared. The Advanced Analog Alarm Settings The advanced Analog Alarm Settings window expands the basic alarm settings options to up to five severity levels.
  • Page 263 Trigger If the Trigger Type the specified Trigger value with each subsequent level. If the triggered when the input is higher than the specified severity level trigger values must increase in value with each subsequent level. Clear To clear an alarm, the input must drop below the specified value when or go above the specified value when Type High...

  • Page 264: I/O Udp

    I/O UDP I/O UDP Industrial applications often monitor the status of I/O devices such as sensors, alarms, relays, etc. by polling for I/O data. The IOLAN’s I/O UDP feature can help to minimize network traffic by broadcasting I/O status to industrial applications on specified intervals, providing I/O status in a timely manner.

  • Page 265: Analog Section

    Analog Section The Analog Section of the UDP packet is comprised of I/O data for each enabled Analog channel. Note: If the IOLAN I/O model does not support Analog channels, the Analog Channel Data subsection of the Analog Section will NOT be present in the UDP packet. Section Channel Length...

  • Page 266: Digital/Relay Section

    I/O UDP Digital/Relay Section The Digital/Relay Section of the UDP packet provides the status of Digital and Relay channels. The data for the status of each channel is represented by 1 byte, with each bit representing a channel (least significant bit format). Note: The Digital/Relay Channel Data subsection is present in the UDP packet regardless of whether or not the IOLAN model supports Digital/Relay channels.

  • Page 267: Udp Unicast Example

    UDP Unicast Example For an example of the I/O UDP unicast, see the sample program, CD-ROM. I/O Modbus Slave If you have a Modbus serial or TCP application, it can access I/O connected to the IOLAN when the I/O Global Modbus Slave is enabled. You must supply a unique UID for the IOLAN, as it will act as a Modbus Slave.

  • Page 268: Modbus Tcp Application

    Modbus I/O Access Modbus TCP Application If you have a Modbus RTU or Modbus ASCII program, you can access the I/O by connecting to the IOLAN over the network. PC running a Modbus RTU or ASCII Application Modbus I/O Access The section defines the function codes and registers you will need to access the I/O through Modbus TCP, Modbus serial, or Modbus serial/TruePort.

  • Page 269: I/O Coil/Register Descriptions

    I/O Coil/Register Descriptions This section contains descriptions of I/O coils: MB_REG_DI_SENSOR—Status of Digital input. 1 is Active, 0 is Inactive. If configured MB_REG_DI_SENSOR_ALARM_STATE—Indication if input is in alarm state. 1 is In Alarm state, 0 is Not in Alarm state. A write of any value clears the alarm state. MB_REG_DO_SENSOR—Status of Digital output.

  • Page 270: Serial Port Coil/Register Descriptions

    Modbus I/O Access Serial Port Coil/Register Descriptions This section contains descriptions of serial port coils: MB_REG_DI_DSR—The status of the DSR input signal. 1 is Active, 0 is Inactive. If is configured Signal MB_REG_DI_DSR_ALARM_STATE—The alarm state of DSR input signal. 1 is In Alarm state, 0 is Not in Alarm state.

  • Page 271: A4D2/A4R2 Registers

    A4D2/A4R2 Registers The following coils and registers are supported by the IOLAN A4D2 and A4R2 I/O models: Data Model Coils: MB_REG_DI_SENSOR MB_REG_DI_SENSOR_ALARM_STATE MB_REG_DO_SENSOR Holding Registers: MB_REG_HR_DI_SENSOR_LATCH MB_REG_HR_DO_SENSOR_PULSE_ISW MB_REG_HR_DO_SENSOR_PULSE_ASW MB_REG_HR_DO_SENSOR_PULSE_COUNT ----- MB_REG_HR_AI_CLEAR_ALARM_LATCH MB_REG_HR_AI_CLEAR_MAX MB_REG_HR_AI_CLEAR_MIN Input Registers: MB_REG_IR_CURR_ENG MB_REG_IR_MIN_ENG MB_REG_IR_MAX_ENG MB_REG_IR_CURR_RAW MB_REG_IR_MIN_RAW MB_REG_IR_MAX_RAW MB_REG_IR_ALARM_LEVEL *For DI alarm state, read will get state, write will clear alarm.

  • Page 272: D4/D2R2 Registers

    Modbus I/O Access D4/D2R2 Registers The following coils and registers are supported by the IOLAN D4 and D2R2 I/O models: Data Model Coils: MB_REG_DI_SENSOR MB_REG_DI_SENSOR_ALARM_STATE MB_REG_DO_SENSOR Holding Registers: MB_REG_HR_DI_SENSOR_LATCH MB_REG_HR_DO_SENSOR_PULSE_ISW MB_REG_HR_DO_SENSOR_PULSE_ASW MB_REG_HR_DO_SENSOR_PULSE_COUNT 6337 *For DI alarm state, read will get state, write will clear alarm. Serial Pin Signals The following coils and registers are supported by the IOLAN I/O models: Data Model...

  • Page 273: Trueport I/O

    TruePort I/O You can see a sample API I/O over TruePort program called TruePort/Modbus Combination If you have a Modbus serial application running on a PC that is connected to a network, you can use TruePort as a virtual serial connection to communicate with the IOLAN over the network to access I/O data.

  • Page 274: Api Over Trueport Only

    TruePort I/O API Over TruePort Only If you have a custom application that talks to a serial port, you can use TruePort as a virtual serial port to communicate with the IOLAN over the network to access I/O data using the Perle API. You also have the option of enabling SSL as a security option to encrypt the data that is communicated between the IOLAN and the host machine (SSL/TLS must be configured in the Server settings and on the TruePort host).

  • Page 275: Accessing I/O Data Via Trueport

    Accessing I/O Data Via TruePort Introduction Analog and Digital I/O data, as well as output control, can be accessed in several ways. To have access from an application running on a workstation or server, the I/O Applications Program Interface (API) provided within Trueport can be used. This API uses a command/response format to get or set data on each individual I/O channel register.

  • Page 276: Format Of Api Commands

    Accessing I/O Data Via TruePort Format of API Commands There are two groups of commands: Get Commands—Retrieve values of the I/O channel registers Set Commands—Set values on the I/O channel registers. Note: All commands need to be written to the COM port as a single write. I/O Channel registers are all assigned unique addresses, which need to be referenced in all of the commands.

  • Page 277: Set Commands

    Example 1: Read the status of the first digital input (DI1) on a D2R2 unit. DI1 sensor is a coil register with the decimal value of 6145 (hex 0x1801). Request: 0x01 0x18 0x01 0x00 0x01 Response: 0x01 0x01 0x01 (Digital input 1 is active) Example 2: Read the values for the Inactive Signal Width, Active Signal Width, and Pulse count for the second digital output (DO2) on a D4 unit.

  • Page 278: Successful Response Format

    Accessing I/O Data Via TruePort Successful Response Format Byte(s) # of Bytes Unsuccessful Response Format Byte(s) # of Bytes Example 1: Turn on the first relay on a D2R2 unit. The first relay (R1) is a digital out coil register with a decimal value of 6659 (hex 0x1A03). Request: 0x0F 0x1A 0x03 0x00 0x01 0x01 0x01 Response: 0x0F 0x1A 0x03 0x00 0x01 Example 2: Turn on the first and second relay on a D2R2 unit.

  • Page 279: Error Codes

    Error Codes Code Name Illegal Function Illegal Data Address Illegal Data Value A value contained in the query data field is not an allowable value for Slave Device Failure I/O SNMP Traps When you enable SNMP traps for Digital and Analog inputs, a value is returned when an alarm triggers or clears.
  • Page 280 I/O SNMP Traps IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 281: Chapter 11 Configuring Clustering

    Configuring Clustering Introduction Clustering is a way to provide access to the serial ports of many IOLANs through a single IP address. Clustering Slave List Overview The IP address that will be used to access all clustered serial ports will be that of the Master IOLAN in the cluster.

  • Page 282: Adding Clustering Slaves

    Clustering Slave List Adding Clustering Slaves Overview When you add a clustering slave IOLAN entry, you are adding the IOLAN that users will access through this master IOLAN. Field Descriptions Configure the following parameters: Server Name IP Address Number of Ports Starting Slave TCP Port Starting Master...

  • Page 283: Advanced Clustering Slave Options

    Advanced Clustering Slave Options Overview button provides a means of configuring each individual serial port’s name, connection Advanced protocol, and port association in the clustered IOLAN slave. The Clustering Slave Settings window displays each clustered serial port slave entry, you need to click the individual serial port settings.
  • Page 284 Clustering Slave List Slave TCP Port Master TCP Port Protocol Specify the TCP Port number configured on the Slave IOLAN that is associated to the port number you are configuring. Range: 1-99999 Specify the TCP port number you want to map to the Slave IOLAN TCP Port. User’s will use this TCP port number to access the Slave IOLAN’s port.

  • Page 285: Chapter 12 Configuring The Option Card

    Configuring the Option Card Introduction SCS models have a built-in option card slot that supports either a Perle IOLAN modem card (purchased separately) or Perle PCI Adapter card (purchased separately) for use with a user supplied wireless WAN card. Option Card Settings Overview Option Card modem card or a Perle PCI Adapter/wireless WAN card.

  • Page 286: Configuring A Wireless Wan Card

    Configuring a Wireless WAN Card Configuring a Wireless WAN Card Overview SCS IOLAN models support a wireless WAN card that can be installed to permit access to the IOLAN via the internet or other WAN network. When the PCI card type has been configured to be a Wireless WAN card, the serial port associated with the wireless WAN card is automatically set to .
  • Page 287 Specify the APN required by your internet provider to access their network. See the internet provider documentation for more information. User Name Specify the name required by your internet provider to access their network. Password Specify the password required by your internet provider to access their network.
  • Page 288 Configuring a Wireless WAN Card IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 289: Chapter 13 Configuring The System

    Configuring the System Introduction This chapter describes the alerts (email and syslog) that can be configured for the IOLAN and the advanced options (SNMP, time, custom applications/plugins, and other miscellaneous configuration options) that you will want to look at to see if they are required for your implementation. Alerts Email Alerts Overview...

  • Page 290: Field Descriptions

    Alerts Field Descriptions Configure the following parameters: Enable Email Alert Enables/disables a global email alerts setting. Even if this option is disabled, Level Subject From Reply To Outgoing Mail Server you can still configure individual serial port email alerts. When this option is enabled, individual serial ports can inherit these email alerts settings.

  • Page 291: Syslog

    Syslog Overview The IOLAN can be configured to send system log messages to a syslog daemon running on a remote host if the Syslog information and specify the level for which you want syslog information sent. Note: You must ensure that the (by default it is enabled) for these settings to work.

  • Page 292: Management

    Management Management SNMP Overview If you are using SNMP to manage/configure the IOLAN, or to view statistics or traps, you must set up a User in SNMP version 3 or a Community in SNMP version 1,2 to allow your SNMP manager to connect to the IOLAN;...
  • Page 293 Internet Address The IP address of the SNMP manager that will send requests to the IOLAN. If the address is 0.0.0.0 access the IOLAN. If you specify a network address, for example , any SNMP manager within the local network with the 172.16.0.0 name can access the IOLAN.

  • Page 294: Time

    Management V3 Read-Only Auth Algorithm V3 Read-Only Auth Password V3 Read-Only Confirm Password V3 Read-Only Privacy Algorithm V3 Read-Only Privacy Password V3 Read-Only Confirm Password Trap Internet Address Time Overview You can set standard and summer time (daylight savings time) in the IOLAN. You can specify the summer time settings as absolute, on a fixed date and time, or relative, on something like the third day of the third week at this time in June.

  • Page 295: Network Time Tab Field Descriptions

    Network Time Tab Field Descriptions You can configure your SNTP client in the IOLAN to automatically synchronize the IOLAN’s time. Configure the following parameters: SNTP Mode The SNTP mode. Data Options: None—SNTP is turned off. Unicast—Sends a request packet periodically to the Primary host. If communication with the Primary host fails, the request will be sent to the Secondary host.

  • Page 296: Time Zone/Summer Time Tab Field Descriptions

    Management Time Zone/Summer Time Tab Field Descriptions You can configure an automatic summer time (daylight savings time) time change. Configure the following parameters: Time Zone Name Time Zone Offset Summer Time Name Summer Time Offset Summer Time Mode Fixed Start Date Fixed End Date The name of the time zone to be displayed during standard time.

  • Page 297: Custom App/Plugin

    Recurring Start Date Recurring End Date Sets the relative date and time in which the IOLAN’s clock will end summer Custom App/Plugin Overview You can create custom applications for the IOLAN by using the Perle SDK. See the SDK Programmer’s Guide (the SDK and guide are found on the Perle website at www.perle.com/downloads/index.shtml supported.

  • Page 298: Advanced

    Management Advanced Overview Review the configuration options in the Advanced page to determine if any of them apply to your implementation. Login Tab Field Descriptions Configure the following parameters: Use System Name in Prompts Display Login Banner Use Custom Login Prompt Bypass Login Password...

  • Page 299: Bootup Files Tab Field Descriptions

    Bootup Files Tab Field Descriptions You must have a TFTP server running on any host that you are uploading or downloading files to/from. When you specify the file path, the path must be relative to the default path set in your TFTP server software.

  • Page 300: Message Of The Day (Motd) Tab Field Descriptions

    Management Message of the Day (MOTD) Tab Field Descriptions The message of the day is displayed when users log into the IOLAN through a telnet or SSH session or through WebManager or EasyPort Web. There are two ways to retrieve the message of the day to be displayed to users when they log into the IOLAN: The message of the day file is retrieved from a TFPT server everytime a user logs into the IOLAN.

  • Page 301: Tftp Tab Field Descriptions

    TFTP Tab Field Descriptions You must have a TFTP server running on any host that you are uploading or downloading files to/from. Note: TFTP file transfers send via UDP packets. When the packet delivery is interrupted for any reason and a timeout occurs, that packet is resent if the retry count allows it. Therefore, if a very large file is being transferred and is interrupted, the entire file is not resent, just the part of the file that was not received.
  • Page 302 Management IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 303: Chapter 14 Controlling The Rps, I/O Channels, And Ipsec Tunnels

    Controlling the RPS, I/O Channels, and IPsec Tunnels Introduction The Control section appears when the IOLAN is connected to a Remote Power Switch and/or an I/O model or you want to control the IPsec tunnel. RPS Control Overview When a Remote Power Switch’s (RPS) console port is attached to the IOLAN’s serial port and the serial port is configured for the Power Management profile, you will be able to control the RPS’s power plugs either universally or individually (power on/off the whole RPS or individual plugs).

  • Page 304: Plug Control

    RPS Control Plug Control Overview When you click the Field Descriptions The following buttons are available: On Button Off Button Cycle Button OK Button button, you can power on/off individual plugs. Plug Control Turns the selected plug on. Turns the selected plug off. Turns the selected plug off and then on.

  • Page 305: Serial Port Power Control

    Serial Port Power Control Overview Serial Port Power Control associated with the serial devices connected to the IOLAN. Field Descriptions The following buttons are available: On Button Off Button Cycle Button Power Plug Status Button Power Plug Status This Power Plug Status Click to close this window.

  • Page 306: I/O Channels

    I/O Channels I/O Channels Overview When the DeviceManager is connected to an I/O model IOLAN, the I/O Status/Control option is available. You can view the I/O status and manually control such options as clearing alarms, clearing minimum/maximum values, resetting the channel(s), and activating/deactivating output. The following buttons are available: Reset Channel Button...

  • Page 307: Ipsec Tunnel Control

    IPsec Tunnel Control You can start, stop, and restart all the IPsec tunnels. When you start the IPsec tunnels, the configured for each IPsec tunnel is what determines its state. Action The following buttons are available: Start Button Stop Button Restart Button Starts all IPsec VPN tunnels.
  • Page 308 IPsec Tunnel Control IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 309: Chapter 15 System Administration

    System Administration Introduction This chapter addresses the functions that the Admin user or a user with Admin Level privileges might do. This chapter uses the DeviceManager as the configuration method described in most administrative functions. As a general rule, administrative functions are accessed from the menu bar in the DeviceManager and under the Managing Configuration Files Saving Configuration Files...

  • Page 310: Downloading Configuration Files To Multiple Iolans

    Managing Configuration Files Downloading Configuration Files to Multiple IOLANs You can download a configuration file to multiple IOLANs at the same time by doing the following in DeviceManager (DeviceManager is the only configurator that does this function): Select Tools Specify the IOLANs that you want to download the configuration to: Enter the following information for each IOLAN that you want to configure with the same configuration file: IP Address...

  • Page 311: Uploading Configuration Files

    Click the Download> the configuration download status. Uploading Configuration Files When you upload a configuration to the DeviceManager, you are uploading the IOLAN’s working configuration file. In most other configurators (the exception being SNMP), you are always seeing the working configuration file. In DeviceManager, select file will automatically be loaded into the DeviceManager.

  • Page 312: Downloading Iolan Firmware

    Downloading IOLAN Firmware Downloading IOLAN Firmware To upgrade the IOLAN firmware (software): In DeviceManager, select the firmware location. Once the firmware download is complete, you will be prompted to reboot the IOLAN. You can choose to reboot the IOLAN at another time by selecting Reboot IOLAN.

  • Page 313: Calibrating Temperature Input

    Calibrating Temperature Input To calibrate an Analog (Temperature) input channel, read the section that applies to the type of input you are calibrating. Note that calibration will be done for the active channel configuration; for example, if Channel A1 is set to thermocouple, you cannot calibrate it for RTD. During the calibration process, you will be asked to apply the minimum and maximum range value to the channel in either mV or Ohms;...

  • Page 314: Resetting Calibration Data

    Calibrating I/O You are now prompted to apply 20 mA to the positive (+) and negative (-) terminals. Once that is done, click to proceed. Once calibration is successfully completed, click to finish the process. Resetting Calibration Data You can reset the I/O channels calibrations to the factory calibrations in DeviceManager by selecting or in WebManager by selecting Tools I/O Channels...

  • Page 315: Setting The Iolan's Date And Time

    Setting the IOLAN’s Date and Time When you set the IOLAN’s time, the connection method and time zone settings can affect the actual internal clock time that is being set. For example, if you are connecting to the IOLAN through the DeviceManager and your PC’s time zone is set to Pacific Standard Time (GMT -8:00) and the IOLAN’s time zone is set to Eastern Standard Time (GMT -5:00), the IOLAN’s time is actually three hours ahead of your PC’s time.

  • Page 316: Resetting The Securid Node Secret

    Resetting the SecurID Node Secret Resetting the SecurID Node Secret If you are using SecurID external authentication, you can select Secret in DeviceManager and node secret. You do not need to reboot the IOLAN for this to take effect, it works instantly. Language Support Two language files, in addition to English, are supplied on the supplemental CD, French and German.

  • Page 317: Translation Guidance

    Translation Guidance To help you with your translation, of supplied ASCII text language files we offer the following guidance: The IOLAN will support languages other than English (and the supplied German and French languages). The English language file, at the beginning of the line. If a translated line goes over that character length, it will be displayed truncated in the Menu or CLI.

  • Page 318: Downloading Terminal Definitions

    Downloading Terminal Definitions Downloading Terminal Definitions All terminal types can be used on the IOLAN. Some terminal types which are not already defined in the IOLAN, however, are unable to use Full Screen mode (menus) and may not be able to page through sessions properly.

  • Page 319: Resetting Configuration Parameters

    For example: term=AT386 | at386| 386AT |386at |at/386 console acsc=jYk?lZm@qDtCu4x3 bold=\E[1m civis= clear=\E[2J\E[H cnorm= cup=\E[%i%p1%02d;%p2%02dH rev=\E4A rmacs=\E[10m rmso=\E[m smacs=\E[12m smso=\E[7m page= circ=n Note: As you can see from the example, capabilities which are not defined in the terminfo file must still be included (albeit with no value).

  • Page 320: Lost Admin Password

    Lost Admin Password Lost Admin Password If the Admin user password is lost, there are only two possible ways to recover it: reset the IOLAN to the factory defaults have another user that has password admin level rights, if one is already configured, reset the Admin IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 321: Chapter 16 Applications

    Applications Introduction This chapter provides examples of how to integrate the IOLAN within different network environments or applications. Each scenario provides an example of a typical setup and describes the configuration steps to achieve the IOLAN functionality feature. Configuring Modbus This sections provides a brief overview of the steps required to configure the IOLAN for your Modbus environment.

  • Page 322: Modbus Gateway Settings

    Configuring Modbus Modbus Gateway Settings The scenarios in this section are used to illustrate how the IOLAN’s Modbus Gateway settings are incorporated into a Modbus device environment. Depending on how your Modbus Master or Slave devices are distributed, the IOLAN can act as both a Slave and Master Gateway(s) on a multiport IOLAN or as either a Slave or Master Gateway on a single port IOLAN.

  • Page 323: Modbus Serial Port Settings

    Modbus Serial Port Settings Modbus Master Settings When the Modbus Masters is attached to the IOLAN’s serial port, configure that serial port to the Modbus Gateway on the TCP/Ethernet side so the IOLAN can properly route messages, using the Modbus Slave’s UIDs, to the appropriate TCP-attached devices.

  • Page 324: Modbus Slave Settings

    Configuring Modbus Modbus Slave Settings When you have Modbus Slaves on the serial side of the IOLAN, configure the serial port to the Modbus Gateway so all Modbus serial Slaves must be configured uniquely for that one Slave Gateway; all serial Modbus Slaves must have unique UIDs, even if they reside on different serial ports, because they all must be configured to communicate through the one Slave Gateway.

  • Page 325: Configuring Ppp Dial On Demand

    Configuring PPP Dial On Demand The IOLAN can be configured to access remote networks via modems connected to the serial interface of the IOLAN. By configuring the IOLAN for the is destined for the remote network will initiate a modem connection to the remote network to route the data to its appropriate destination.

  • Page 326: Setting Up Printers

    Setting Up Printers Next you need to create a gateway and destination route entry. Select Route List For the destination, if you want the connection to be able to reach any host in the remote network, set the you want the connection to go directly to a specific remote host, set the the host’s IP address.

  • Page 327: Remote Printing Using Rcp

    Remote Printing Using RCP When setting up a serial port that accesses a printer using RCP, do the following: Set the serial port to parameters so that they match the printer’s port settings. Save your settings and restart the serial port. To execute a print job, use the following syntax: rcp <filename>...

  • Page 328: Configuring A Virtual Private Network

    Configuring a Virtual Private Network Configuring a Virtual Private Network You can configure the IOLAN to act as a Virtual Private Network (VPN) gateway using the IPsec protocol. Any of the following scenarios can be configured using one IOLAN and a host/server running IPsec software or two IOLANs, each acting as the VPN gateway.
  • Page 329 Use a utility (for example, Openswan’s newhostkey/showhostkey utilities) to generate the RSA signature public key. Copy the public key portion to a file using the following format: <description>=<keydata> or just <keydata> For example: # RSA 1024 bits scs48_vpn leftrsasigkey=0sAQOEmzSTdNv1ZUJW9UmPtUY84gM5AGEAOq9gUwFqnOUsESfnuXlxPe+Mc+uf XYvg1vxYZ0XhdIh1FwFeeIQLyRvD447mjriMFjJfheMUtHqOZhvWSE18ZfGEXNOo7yagZqLzjxu9 XJIA2SAGV+/LL3epPqW2fV5ORxVrf7uWn7I5FQ== Note that the pound sign (#) indicates a comment line and all characters in that line are ignored.

  • Page 330: Network-To-Network

    Configuring a Virtual Private Network Network-to-Network The following examples shows how to configure a network-to-network IPsec tunnel. This example uses the X.509 Certificate authentication method, so it includes the configuration requirements for the X.509 certificate. VPN tunnel is going private network to public network to private network. Notice also that the serial devices connected to the IOLAN can be accessed by the VPN tunnel, since they are included in the network configuration as part of the Left...

  • Page 331: Host-To-Host

    If the signer of the remote X.509 certificate has not already been included in the CA list file that has already been downloaded to the IOLAN, you need to add (append) the signer of the X.509 certificate to the CA list file and then download the file to the IOLAN by selecting Advanced Keys and Certificates SSL/TLS CA...
  • Page 332 Configuring a Virtual Private Network The following window configures the Right IOLAN VPN Gateway: %defaultroute and is therefore subject to change. is entered for the %any from any host/network; this is necessary because the Left IOLAN VPN gateway is DHCP assigned and cannot be known.

  • Page 333: Vpn Client-To-Network

    VPN Client-to-Network The following example shows how to configure a VPN client-to-network IPsec tunnel. In this example, the IOLAN will accept VPN connections from multiple VPN clients on private networks that want to access the public is disabled in this example (on both sides) because the VPN tunnel is going private network (NAT_T) to public network.
  • Page 334 Configuring a Virtual Private Network IOLAN Device Server User’s Guide, Version 3.6...

  • Page 335: Appendix A Radius And Tacacs

    RADIUS and TACACS+ Introduction This chapter describes the parameters that can be passed to the IOLAN when a user logs into the IOLAN (serial port set to profile servers. RADIUS Although RADIUS can be used strictly for external authentication, it can also be used to configure line and user parameters.
  • Page 336 RADIUS Type Name Service-Type Framed-Protocol Framed-IP-Address Framed-IP-Netmask Framed-MTU Framed-Compression Login-Host Login-Service Description Indicates the service to use to connect the user to the IOLAN. A value of 6 indicates administrative access to the IOLAN. Supported values are: 1—Login 3—Callback-Login Equivalent to the IOLAN Type 15, Login-Service.
  • Page 337 Type Name Login-TCP-Port Callback-Number Callback-ID Vendor-Specific Session-Timeout Idle-Timeout Framed-Interface-Id Description Indicates the TCP port with which the user is to be connected when the Service-Type is set to (Callback-Login). Specifies the callback phone number. This is the same implementation as (Callback-ID), but takes precedence if is set.

  • Page 338: Accounting Message

    RADIUS Accounting Message This section describes the attributes which will be included by the IOLAN when sending an accounting message to the RADIUS server. Type Name User-Name NAS-IP-Address NAS-Port Service-Type Acct-Status-Type Acct-Input-Octets Acct-Output-Octets Acct-Session-ID Acct-Authentic Acct-Session-Time Acct-Input-Packets Acct-Output-Packets Acct-Terminate-Cause Indicates how the session was terminated: Supported Description The name of the user to be authenticated.

  • Page 339: Mapped Radius Parameters To Iolan Parameters

    Mapped RADIUS Parameters to IOLAN Parameters When authentication is being done by RADIUS, there are several that can be set by the RADIUS server. Any parameters sent by that RADIUS server that are not supported by the IOLAN are discarded. Below is a list of the RADIUS parameters and their IOLAN parameters: RADIUS Parameter Service-Type...

  • Page 340: Perle Radius Dictionary Example

    See below for an example of the Perle defined attributes for the RADIUS server for a 4-port IOLAN (although the dictionary can contain 48 ports, even if they are not all defined): # Perle dictionary. Perle Systems Ltd. http://www.perle.com/ Enable by putting the line "$INCLUDE dictionary.perle" into the main dictionary file.
  • Page 341 ATTRIBUTE Perle-Line-Access-Port-30 ATTRIBUTE Perle-Line-Access-Port-31 ATTRIBUTE Perle-Line-Access-Port-32 ATTRIBUTE Perle-Line-Access-Port-33 ATTRIBUTE Perle-Line-Access-Port-34 ATTRIBUTE Perle-Line-Access-Port-35 ATTRIBUTE Perle-Line-Access-Port-36 ATTRIBUTE Perle-Line-Access-Port-37 ATTRIBUTE Perle-Line-Access-Port-38 ATTRIBUTE Perle-Line-Access-Port-39 ATTRIBUTE Perle-Line-Access-Port-40 ATTRIBUTE Perle-Line-Access-Port-41 ATTRIBUTE Perle-Line-Access-Port-42 ATTRIBUTE Perle-Line-Access-Port-43 ATTRIBUTE Perle-Line-Access-Port-44 ATTRIBUTE Perle-Line-Access-Port-45 ATTRIBUTE Perle-Line-Access-Port-46 ATTRIBUTE Perle-Line-Access-Port-47 ATTRIBUTE Perle-Line-Access-Port-48 ATTRIBUTE Perle-Line-Access-Port-49 Perle Clustered Port Access Values VALUE Perle-Clustered-Port-Access...

  • Page 342: Tacacs

    TACACS+ VALUE Perle-Line-Access-Port-4 VALUE Perle-Line-Access-Port-4 VALUE Perle-Line-Access-Port-4 VALUE Perle-Line-Access-Port-4 VALUE Perle-Line-Access-Port-4 VALUE Perle-Line-Access-Port-4 VALUE Perle-Line-Access-Port-4 VALUE Perle-Line-Access-Port-4 TACACS+ Although TACACS+ can be used strictly for external authentication, it can also be used to configure Serial Port and User parameters. Therefore, when a user is being authenticated using TACACS+, it is possible that the user’s configuration is a compilation of the parameters passed back from the TACACS+ authentication server, the User’s IOLAN parameters if the user has also been set up as a local user in the IOLAN, and the Default User’s parameters for any parameters that have not been set...
  • Page 343 Name Value(s) service = tcp_clear addr = IPv4 or IPv6 address port = TCP port number service = slip routing = true (Send and Listen) false (None) addr = IPv4 or IPv6 address service = ppp routing = true (Send and Listen) false (None) addr = IPv4 or IPv6 address...

  • Page 344: Accessing The Iolan Through A Serial Port User Example Settings

    TACACS+ Accessing the IOLAN Through a Serial Port User Example Settings The following example shows the parameters that can be set for users who are accessing the IOLAN from the serial side. These settings should be included in the TACACS+ user configuration file. Service = EXEC priv-lvl = x timeout=x...

  • Page 345: Accessing The Iolan From The Network Users

    service = ppp routing=x addr = x.x.x.x ppp-vj-slot-compression = x # x =true or false callback-dialstring = x # x = number to callback on service = ssh addr = x.x.x.x port = x service = ssl_raw addr = x.x.x.x port = x Accessing the IOLAN from the Network Users This section describes the attributes which will be accepted by the IOLAN from a TACACS+ server...

  • Page 346: Settings

    TACACS+ Accessing the IOLAN from the Network User Example Settings The following example shows the parameters that can be set for users who are accessing the IOLAN from the Ethernet side. These settings should be included in the TACACS+ user configuration file. # Settings for telnet/SSH access service = raccess priv-lvl = x...

  • Page 347: Appendix B Ssl/Tls Ciphers

    SSL/TLS Ciphers Introduction This appendix contains a table that shows valid SSL/TLS cipher combinations. Valid SSL/TLS Ciphers This chart displays all of the valid SSL/TLS combinations. Full Name ADH-AES256-SHA DHE-RSA-AES256-SHA DHE-DSS-AES256-SHA AES256-SHA EDH-RSA-DES-CBC3-SHA EDH-DSS-DES-CBC3-SHA DES-CBC3-SHA DES-CBC3-MD5 ADH-AES128-SHA DHE-RSA-AES128-SHA DHE-DSS-AES128-SHA AES128-SHA RC2-CBC-MD5 DHE-DSS-RC4-SHA RC4-SHA...
  • Page 348 Valid SSL/TLS Ciphers Full Name DES-CBC-MD5 EXP-EDH-RSA-DES-CBC-SHA EXP-EDH-DSS-DES-CBC-SHA EXP-DES-CBC-SHA EXP-RC2-CBC-MD5 ADH-DES-CBC3-SHA ADH-DES-CBC-SHA EXP-ADH-DES-CBC-SHA ADH-RC4-MD5 EXP-ADH-RC4-MD5 EXP-RC2-CBC-MD5 EXP-RC4-MD5 EXP-RC4-MD5 Key- Ver. Exchange Authentication Encryption SSLv2 Kx=RSA Au=RSA SSLv3 Kx=DH(512) Au=RSA SSLv3 Kx=DH(512) Au=DSS SSLv3 Kx=RSA(512) Au=RSA SSLv3 Kx=RSA(512) Au=RSA SSLv3 Kx=DH Au=None SSLv3 Kx=DH...

  • Page 349: Appendix C Virtual Modem At Commands

    Virtual Modem AT Commands Virtual Modem Initialization Commands Note: Virtual Modem initialization commands are only supported on IOLAN firmware and configurators version 3.2 or higher. You can initialize the modem connection using any of the following commands: Command ATQn Quiet mode. Determines if result codes will be sent to the connected terminal.
  • Page 350 Virtual Modem Initialization Commands Command AT&Z1 Set command allows the user to store an IP address and port number or phone number to use when making a connection. The user will issue an ATDS1 to cause the IOLAN to initiate the connection.

  • Page 351: Appendix D Pinouts And Cabling Diagrams

    Pinouts and Cabling Diagrams Serial Pinouts DB25 Male This section defines the pinouts for the DB25 male connection used on the 1-port IOLAN. The power out pin, Pin 9, is available in the SDS model only. Pin 1 Pin 14 The following table provides pinout information: Pinout EIA-232 Shield...

  • Page 352: Db25 Female

    Serial Pinouts Pinout EIA-232 20 (out) DTR The power in pin, pin 12, can be 9-30V DC. DB25 Female This section defines the pinouts for the DB25 female connection used on the 1-port IOLAN. The power out pin, Pin 9, is available in the SDS model only. Pin 13 Pin 25 The following table provides pinout information:...

  • Page 353: Rj45

    Pinout EIA-232 20 (in) The power in pin, pin 12, can be 9-30V DC. RJ45 This section defines the pinouts for the RJ45 connection (see SCS48C/SCS32C/SCS16C/SCS8C on page 354 desktop IOLAN models have a 10-pin RJ45 connector and all rack mount IOLAN models have an 8-pin RJ45 connector.

  • Page 354: Rj45 Scs48C/Scs32C/Scs16C/Scs8C

    Serial Pinouts RJ45 SCS48C/SCS32C/SCS16C/SCS8C This section defines the pinouts for the RJ45 connection for the SCS48C/SCS32C/SCS16C/SCS8C models only. The Admin port and the serial ports have different pinouts as shown in the table. Pin 1 The following table provides pinout information: Pinout EIA-232 8-pin...

  • Page 355: Db9 Male I/O

    DB9 Male I/O This section defines the pinouts for the DB9 male connection used on the 1-port IOLAN I/O models. The following table provides pinout information: Pinout 9-pin EIA-232 1(in) 2 (in) 3 (out) 4 (out) 6 (in) 8 (in) Power Over Ethernet Pinouts This section defines the pinouts for the RJ45 Ethernet connection used on the IOLAN SDS P or IOLAN SCS P models.

  • Page 356: Eia-232 Cabling Diagrams

    EIA-232 Cabling Diagrams EIA-232 Cabling Diagrams This section shows how to create EIA-232 cables that are compatible with the Device Server. Terminal DB25 Connector The following diagrams show how the null modem cable should be configured when connecting to a terminal DB25.

  • Page 357: Rj45

    RJ45 This cabling table does not apply to the SCS48C model. IOLAN RJ45 10-pin 8-pin (DSR) (RTS) (TxD) (RxD) (GND) (CTS) (DTR) DB9 Male IOLAN DS1 DB9 Male 3 (TxD) 2 (RxD) 7 (RTS) 8 (CTS) 6 (DSR) 5 (GND) 4 (DTR) EIA-232 Cabling Diagrams Terminal DB25...

  • Page 358: Modem Db25 Connector

    EIA-232 Cabling Diagrams Modem DB25 Connector The following diagrams show how a standard straight through cable should be configured when connecting to a DB25 modem. DB25 Male IOLAN DS1 DB25 (DTE) 2 (TxD) 3 (RxD) 4 (RTS) 5 (CTS) 6 (DSR) 7 (GND) 8 (DCD) 20 (DTR)

  • Page 359: Db9 Male

    DB9 Male IOLAN DS1 DB9 Male 1 (DCD) 2 (RxD) 3 (TxD) 4 (DTR) 5 (GND) 6 (DSR) 7 (RTS) 8 (CTS) EIA-232 Cabling Diagrams Modem DB25 (DCE) 8 (DCD) 3 (TxD) 2 (RxD) 20 (DTR) 7 (GND) 6 (DSR) 4 (CTS) 5 (RTS) Pinouts and Cabling Diagrams 359...
  • Page 360 EIA-232 Cabling Diagrams IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 361: Appendix E Setting Jumpers

    Setting Jumpers Introduction The IOLAN contains jumpers that you might need to set before you configure it and put it into production. You can set the power out pin, pin 9, to a fixed 5V DC output or to the external adapter output;...

  • Page 362: 1-Port Iolan Rj45

    Introduction 1-Port IOLAN RJ45 To change the settings, do the following: Unplug the IOLAN from the electrical outlet and disconnect everything from the box. Open the case by unscrewing the two side screws, one on each side, and lifting off the top of the case.

  • Page 363: 1-Port Iolan Db9

    1-Port IOLAN DB9 To change the settings, do the following: Unplug the IOLAN from the electrical outlet and disconnect everything from the box. Open the case by unscrewing the two side screws, one on each side, and lifting off the top of the case.

  • Page 364: 2-Port Iolan

    Introduction 2-Port IOLAN To change the settings, do the following: Unplug the IOLAN from the electrical outlet and disconnect everything from the box. Open the case by unscrewing the two side screws, one on each side, and lifting off the top of the case.

  • Page 365: 4-Port Desktop Iolan

    4-Port Desktop IOLAN To change the settings, do the following: Unplug the IOLAN from the electrical outlet and disconnect everything from the box. Open the case by unscrewing the two side screws, one on each side, and lifting off the top of the case.

  • Page 366: Digital I/O Module

    Introduction Digital I/O Module IOLANs that have Digital I/O have an input/output jumper that must be set for each channel and must match the software configuration for each channel. Depending on the model, the placement of the digital I/O board can change, so the diagram below shows how to set jumper for any digital board.To change the settings, do the following: Detach the IOLAN from the electrical power source and disconnect everything from the box.

  • Page 367: Analog Input Module

    Analog Input Module IOLANs that have Analog Input have a voltage/current jumper that must be set for each channel and must match the software configuration for each channel. To change the settings, do the following: Detach the IOLAN from the electrical power source and disconnect everything from the box. Open the case by unscrewing the five side screws, two on each side plus the grounding screw, and lifting off the top of the case.
  • Page 368 Introduction IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 369: Appendix F I/O Wiring Diagrams

    I/O Wiring Diagrams Wiring I/O Diagrams This section describes how to wire the various IOLAN I/O models. Digital I/O Make sure the Digital I/O jumpers support the software setting; see for jumper settings. Digital Input Wet Contact If you are using a wet contact for your Digital input, for channel D1 connect one wire to D1 and the other wire to GND.

  • Page 370: Digital Output Sink

    Wiring I/O Diagrams Digital Output Sink For a Digital output sink (ground) configuration for channel D1, follow the diagram below. Battery Device Digital Output Source For a Digital output source (voltage) configuration for channel D1, follow the diagram below. Battery Device IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 371: Analog Input

    Analog Input Make sure the Analog jumpers support the software setting; see for jumper settings. Current To connect channel A1 with a 2-wire shielded cable, connect the positive wire to A1+, the negative wire to A1-, and optionally the shield to GND. If you have the positive/negative wires reversed, the output will always read 0 (zero).

  • Page 372: Temperature Input

    Wiring I/O Diagrams Temperature Input If you are using RTD sensors, a short detected status will be displayed if the wires are connected improperly. RTD or thermocouple sensors will display an open detection status when the circuit is broken. Thermocouple To connect to Channel A1 with a 2-wire cable, connect the positive wire to A1+ and the negative wire to A1-;...

  • Page 373: Rtd 4-Wire

    Wiring I/O Diagrams RTD 4-Wire In a 4-wire RTD configuration, connect the return wire to A1+, the excite wire to A1-, the sense wire to A1s, and leave the fourth wire disconnected. Relay Output Normally Open Contact To connect Relay channel R1 for a circuit that is normally inactive, connect one wire to the COM (common) connector and one wire to the NO (normally open) connector.
  • Page 374 Wiring I/O Diagrams IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 375: Appendix G Utilities

    Utilities Introduction This chapter provides information on the TruePort and Decoder utilities. TruePort TruePort is a com port redirector utility for the IOLAN. It can be run in two modes: TruePort Full mode—This mode allows complete device control and operates exactly like a directly connected serial port.

  • Page 376: Api I/O Access Over Trueport

    API I/O Access Over TruePort API I/O Access Over TruePort You can access IOLAN I/O data through TruePort using the Perle API. The API uses the command/response format. See the for an example implementation. API Request Format All data in the Request must be sent as a single write to the COM port. The API command takes the following format: Number of Bytes API Response Format...

  • Page 377: Error Codes

    Error Codes Code Name Illegal Function Illegal Data Address Illegal Data Value A value contained in the query data field is not an allowable value for Slave Device Failure Decoder If you are using Port Buffering NFS Encryption buffering logs. See the Readme file to install the Decoder utility on any of the following operating systems: Windows 98/NT/ME/2000/Server 2003/XP Note:...
  • Page 378 Decoder IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 379: Appendix H Accessories

    Accessories Introduction This chapter provides information about peripheral IOLAN options that can be ordered separately from the product. Contact your sales representative to find out how to order the products listed in this appendix. Installing a Perle PCI Card This sections describes how to install the Perle IOLAN modem card and the Perle PCI adapter card, used with a wireless WAN card, in your SCS rack mount model.
  • Page 380 Installing a Perle PCI Card Unscrew the four screws along the bottom of the serial side of the SCS IOLAN. On the SCS 8-port/16-port/32-port models, this includes the screw that is at the bottom of the PCI face plate. Slide the top of the IOLAN off of the chassis. Carefully holding the bracket just behind the face plate, unscrew the two screws at the top of the 8-port/16-port/32-port removable face plate or the two side screws of the 48-port removable face plate of the piece you just took off.
  • Page 381 The black bracket should then fit on the inside of the PCI adapter card bracket. Align the adapter card bracket and then insert the screw and tighten it to keep it firmly in place. 32-port model Note: You must attach the bracket to the PCI adapter card before you slide it into the PCI slot. If you are installing the PCI Adapter card, slide the wireless WAN card into the adapter card.

  • Page 382: Starter Kit (Adapters/Cable)

    Starter Kit (Adapters/Cable) Starter Kit (Adapters/Cable) The IOLAN Starter Kit includes the following: RJ45F to DB25M DTE Crossover Adapter RJ45F to DB25M DCE Modem Adapter RJ45F to DB25F DTE Crossover Adapter RJ45F to DB9M DTE Crossover Adapter RJ45F to DB9F DTE Crossover Adapter Sun/Cisco RJ45M Connector Cable for Rack Mount Models The adapters/cable can be purchased as a kit or individually.

  • Page 383: Rj45F To Db25M Dce Modem Adapter

    RJ45F to DB25M DCE Modem Adapter The following diagram shows the IOLAN RJ45F DB25M DCE modem adapter pinouts. This is model number DBA0013. RJ45F (TxD) 4 (RxD) 5 (GND) 6 (DTR) 8 (DSR) 3 (DCD) 1 (RTS) 2 (CTS) 7 Starter Kit (Adapters/Cable) DB25M 3 (RxD)

  • Page 384: Rj45F To Db25F Dte Crossover Adapter

    Starter Kit (Adapters/Cable) RJ45F to DB25F DTE Crossover Adapter The following diagram shows the IOLAN RJ45 DB25F DTE crossover adapter pinouts. This is model number DBA0010. RJ45F (TxD) 4 (RxD) 5 (GND) 6 (DTR) 8 (DSR) 3 (RTS) 2 (CTS) 7 DB25F 3 (RxD) 2 (TxD)

  • Page 385: Rj45F To Db9M Dte Crossover Adapter

    RJ45F to DB9M DTE Crossover Adapter The following diagram shows the IOLAN RJ45 DB9M crossover adapter pinouts. This is model number DBA0021. RJ45F (TxD) 4 (RxD) 5 (GND) 6 (DTR) 8 (DSR) 3 (RTS) 2 (CTS) 7 Starter Kit (Adapters/Cable) DB9M 2 (RxD) 3 (TxD)

  • Page 386: Rj45F To Db9F Dte Crossover Adapter

    Starter Kit (Adapters/Cable) RJ45F to DB9F DTE Crossover Adapter The following diagram shows the IOLAN RJ45F DB9F crossover adapter pinouts. This is model number DBA0020. RJ45F (TxD) 4 (RxD) 5 (GND) 6 (DTR) 8 (DSR) 3 (RTS) 2 (CTS) 7 Sun/Cisco RJ45M Connector Cable for Rack Mount Models This is a 3 meter RJ45M RJ45M 8-wire Sun/Cisco modular cable.

  • Page 387: Scs48C/Scs32C/Scs16C/Scs8C Starter Kit

    SCS48C/SCS32C/SCS16C/SCS8C Starter Kit (Adapters/Cable) The IOLAN Starter Kit includes the following for the SCS48C/SCS32C/SCS16C/SCS8C (Cisco) models: RJ45F to DB25M DTE Crossover Adapter RJ45F to DB25M DCE Modem Adapter RJ45F to DB25F DTE Crossover Adapter RJ45F to DB9M DTE Crossover Adapter RJ45F to DB9F DTE Crossover Adapter Sun/Cisco Roll-Over Adapter for Rack Mount Models The adapters/cable can be purchased as a kit or individually.

  • Page 388: Rj45F To Db25M Dce Modem Adapter

    SCS48C/SCS32C/SCS16C/SCS8C Starter Kit (Adapters/Cable) RJ45F to DB25M DCE Modem Adapter The following diagram shows the IOLAN RJ45F DB25M DCE modem adapter pinouts. This is model number DBA0013C. RJ45F (TxD) 3 (RxD) 6 (GND) 4 (GND) 5 (DTR) 2 (DSR) 7 (RTS) 1 (CTS) 8 DB25M...

  • Page 389: Rj45F To Db25F Dte Crossover Adapter

    RJ45F to DB25F DTE Crossover Adapter The following diagram shows the IOLAN RJ45 DB25F DTE crossover adapter pinouts. This is model number DBA0010C. RJ45F (TxD) 3 (RxD) 6 (GND) 4 (GND) 5 (DTR) 2 (DSR) 7 (RTS) 1 (CTS) 8 SCS48C/SCS32C/SCS16C/SCS8C Starter Kit (Adapters/Cable) DB25F 3 (RxD)

  • Page 390: Rj45F To Db9M Dte Crossover Adapter

    SCS48C/SCS32C/SCS16C/SCS8C Starter Kit (Adapters/Cable) RJ45F to DB9M DTE Crossover Adapter The following diagram shows the IOLAN RJ45 DB9M crossover adapter pinouts. This is model number DBA0021C. RJ45F (TxD) 3 (RxD) 6 (GND) 4 (GND) 5 (DTR) 2 (DSR) 7 (RTS) 1 (CTS) 8 DB9M 2 (RxD)

  • Page 391: Rj45F To Db9F Dte Crossover Adapter

    RJ45F to DB9F DTE Crossover Adapter The following diagram shows the IOLAN RJ45F DB9F crossover adapter pinouts. This is model number DBA0020C. RJ45F (TxD) 3 (RxD) 6 (GND) 4 (GND) 5 (DTR) 2 (DSR) 7 (RTS) 1 (CTS) 8 Sun/Cisco Roll-Over Adapter for Rack Mount Models This is a RJ45M RJ45F Sun/Cisco adapter.
  • Page 392 SCS48C/SCS32C/SCS16C/SCS8C Starter Kit (Adapters/Cable) IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

  • Page 393: Appendix I Troubleshooting

    Troubleshooting Introduction This chapter provides information that can help resolve problems with the IOLAN. Hardware Troubleshooting The Power/Ready LED stays red after a boot. If the IOLAN Power/Ready LED is red and stays red for over 10 seconds, you have a hardware problem that might to require factory service.

  • Page 394: Communication Issues

    Communication Issues Communication Issues General communication checks and practices are as follows: Are your cables connected and correctly configured? If you are using EIA-232, see Cabling Diagrams on page 356 Ping your host? If you can ping but packet loss is reported, ping another host/device on the same network.

  • Page 395: Host Problems

    Host Problems Cannot access a host by name: If using DNS or if DNS is required, ensure a nameserver is configured on your IOLAN and is accessible (ping it). If not using DNS, verify that the host is configured in the by pinging it using the host’s IP address.

  • Page 396: Login Problems

    Login Problems Login Problems You cannot obtain a login on any of the serial ports Connect via the Admin port and check the settings of the front-mounted ports; they have probably been set to a profile that does support serial connections, such as the Console Management profile (in CLI or Menu, ‘direct’...

  • Page 397: Unknown Ip Address

    Unknown IP Address You have already configured the IOLAN and you do know your password, and have lost, misconfigured, or don't know the IP address of the IOLAN, so you cannot obtain a successful login. If the IOLAN resides within the local network segment, you can use DeviceManager to find the IOLAN.

  • Page 398: Modem Problems

    Modem Problems Modem Problems The IOLAN is not initializing the modem. Check your Line Service IOLAN will not initialize a modem. You will need to configure the modem manually. PPP Problems The link fails on start-up when there are remote IP addresses set for both a user ( value) and a line ( Check the IP address set for the user;...

  • Page 399: Ssl/Tls

    SSL/TLS If you are experiencing problems obtaining a successful SSL/TLS connection, you can set your Syslog Level Line not SSL enabled. Abort connection when a user who is configured for tries to login on the serial port. The user has been configured for an enable SSL.

  • Page 400: Ipv6 Issues

    IPv6 Issues IPv6 Issues You are not seeing the IPv6 address value when you attempt to connect to the IOLAN. Windows Vista and Server 2008 operating systems have IPv6 support already enabled, however, you will have to install IPv6 support for Windows XP. To install IPv6 support in Windows XP, do the following: In Control Panel, double-click the Double-click the...

  • Page 401: Contacting Technical Support

    Contacting Technical Support Making a Technical Support Query Who To Contact Note: Perle offers free technical support to Perle Authorized Distributors and Registered Perle Resellers. If you bought your product from a registered Perle supplier, you must contact their Technical Support department;...

  • Page 402: Repair Procedure

    Contacting Technical Support Repair Procedure Before sending the IOLAN for repair, you must contact your Perle supplier. If, however, you bought your product directly from Perle you can contact directly. Customers who are in Europe, Africa or Middle East can submit repair details via a website form. This form is on the Perle website, www.perle.com, in the Click here to access our web site at the following URL: http://www.perle.com/support_services/rma_form.asp...

  • Page 403: Glossary

    Glossary This chapter provides definitions for Device Server terms. BOOTP (BOOTstrap An Internet protocol that enables a diskless workstation to discover its own IP address, the IP Protocol) address of a BOOTP server on the network, and a file to be loaded into memory to boot the machine.
  • Page 404 PAP (Password Standard authentication protocol for PPP connections. see CHAP Authentication Protocol) RADIUS (Remote An open standard network security server that communicates with the PAP protocol. Authentication Dial In Users Services) Reverse Connection Connections that originate from a host that go directly to a serial device through the Device Server.

  • Page 405: Index

    Index admin default password lost password analog calibrating I/O commands 275, TruePort ARP-Ping, setting an IP address authentication, general binary configuration file BOOTP parameters setting an IP address cabling, EIA-232 calibrating analog temperature certificates LDAP CA list SSH, OpenSSH IOLAN+ interface configuration files formats connecting to the Device Server...
  • Page 406 Index I installing IOLAN modem card rack mount interface, IOLAN+ Modbus I/O SNMP traps IOLAN+ interface Menu IOLAN+, supported models IPsec IPv6, setting an IP address jumpers line termination power out setting keys HTTPS L2TP/IPsec language translating upgrading firmware LDAP parameters line termination, setting jumper LPD printing...
  • Page 407 printing host-based product repair rack mount description installing RADIUS parameters supported RADIUS parameters RCP printing resetting to factory defaults overview RJ45 ethernet pinouts SCS48C serial pinouts serial pinouts RJ45 serial power in pin SecurID parameters serial mode services line printer signal I/O vmodem sessions...
  • Page 408 Index W IOLAN SDS/SCS/STS User’s Guide, Version 3.6...

This manual is also suitable for:

Iolan scsIolan sds

Table of Contents

Save PDF