1. Manuals
  2. Brands
  3. HY-LINE Manuals
  4. Network Router
  5. hy-443p
  6. Manual

HY-LINE hy-443p Manual

M2m industrial router
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
HY-LINE truecon Router Manual
HY-LINE Systems GmbH
Inselkammerstr. 10
82008 Unterhaching
systems(at)hy-line.de
www.hy-line.de/systems
Seite 1

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the hy-443p and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for HY-LINE hy-443p

Summary of Contents for HY-LINE hy-443p

  • Page 1 HY-LINE truecon Router Manual HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 1...
  • Page 2 We are always grateful for information regarding errors in this documentation. Our technical support pages are on our website www.hy-line.de. New manuals and data sheets are also available there. FAQ pages are also available on our website. If you have further questions please direct them at systems@hy-line.de Only clean the case with a dry towel, do not use water or any other cleaning agents.

  • Page 3: Table Of Contents

    HY-LINE truecon Router Manual Product description SShd _ 42 Safety & Regulations Syslogd Router Variations FTP Server Operating elements UDP-Broadcast Quick start Webserver Software reset (factory defaults ) Configuration - Home VPN-PPTP Server Base Settings VPN-PPTP Client Identification VPN-OpenVPN Server...

  • Page 4: Product Description

    HY-LINE truecon Router Handbuch Product description M2M Industrial Router with modem, VPN and Firewall The M2M-Industrial router is a simple, secure and global communications solution that will connect you to your systems and machines where ever you are! Connections to your systems and machines are made through the integrated firewall, VPN and automated call center.
  • Page 5 Directive 2006/42/EC and Directive 2004/108/EC (EMC - Directive). It is recommended to use the following power supply with the HY-LINE router because all EMC tests were performed with this power supply: - HAP-RUx - UMTS Router Versionen: 12W AC adapter Minwa MC120D050 with ferrite Würth 74270077...
  • Page 6 HY-LINE system for proper disposal. Transport costs will be paid by the sender. Delivery The scope of supply for the HY-LINE router includes the accessories listed below. Please check that all accessories are included in the box. If anything is missing or damaged, please contact your distributor.
  • Page 7 HY-LINE truecon Router Handbuch Analog: HAP-RA DSL : HAP-RDS / HAP-RDSH • • with integr. Switch (4x LAN): HAP-RAS with integr. Switch (4x LAN): • • ISDN: HAP-Ri HAP-R – without integr. Modem • • with integr. Switch (4x LAN): HAP-RiS with integr.
  • Page 8 HY-LINE truecon Router Handbuch HAP-R HAP-RS HAP-RDS HAP-RI HAP-RIS HAP-RA HAP-RAS integr. 4- - port Switch HAP-RG HAP-RGS HAP-RU HAP-RUS HAP-RL HAP-RLS integr. 4- - port Switch SIM-Card Slot Power (10-30VDC) Digital I/Os Serial RS232 – (Screw terminal, SUB-D 9 PIN...

  • Page 9: Quick Start

    HY-LINE truecon Router Handbuch Quick start Access to the router through a web browser: http://192.168.101.222/ https://192.168.101.222/ Administration access: login: manager password: changemetoo (Password can be changed through this account) Visitors access: login: user password: changeme (Password can only be changed through the administrators account)
  • Page 10 HY-LINE truecon Router Handbuch Factory default for all settings 1. Disconnect power from the router 2. Set Jumper 3 (see picture) to on position 3. Power up router, wait for flashing LEDs (approx. 2 Min.) 4. Disconnect power from the router 5.
  • Page 11 HY-LINE truecon Router Handbuch The start page holds a general oversight of the router; Firmware version, System updates, serial number, modem type, band type, gsm signal strength, router uptime, PPP-Data Counter (max. 2GB) as well as the status of the digital inputs and outputs HY-LINE Systems GmbH Inselkammerstr.
  • Page 12 HY-LINE truecon Router Handbuch Internal modem 1: analog, isdn, gsm, umts, dsl, lte, none (without modem) Signal strength: Error no signal, check antenna and/or SIM-Card and SIM-PIN -113 ... -112 dBm -111 ... – 90 dBm Good - 89 ... – 56 dBm Very good >...
  • Page 13 HY-LINE truecon Router Handbuch DNS Servers: active DNS server Default Gateway: active gateway (further information on page 16 – LAN settings) Internet Connectivity: Pressing the button send a ping to a host or ip-address configured in ../Services/InetWD. On demand router will be triggered to establish an internet connection...
  • Page 14 HY-LINE truecon Router Handbuch Router name: Name of router, max. 35 letters characters, name is attached to send E-Mails Location: Location of the router (for informational purposes only) Manager: E-Mail Address of the system manager (Recipient of the dynamic IP address, once...
  • Page 15 HY-LINE truecon Router Handbuch HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 15...

  • Page 16: Network

    External gateway for data communications (Router: no internal modem or not active) - Service: Deactivate Internet-Dial-Up in Service menu ../Services/ - Apply following settings if HY-LINE Router is using an external gateway on WAN side DHCP-Server inactive in external gateway subnet (WAN):...
  • Page 17 HY-LINE truecon Router Handbuch continue: external gateway for data communications Allow: In- and outgoing data traffic over external WAN gateway Service Menu Firewall: Masquerade srcnet: activate to allow TCP/IP packets to send over standard gateway (no modem gateway) Source net:...

  • Page 18: Date & Time

    HY-LINE truecon Router Handbuch & & Date, Time: Date and time of the router Timezone: Timezone in which the router is (Please be aware that the summer and winter time will be automatically switched only in Germany. Settings: Berlin) Time-Server: Time server, standard: ptbtime1.ptb.de: ptbtime1.ptb.de...
  • Page 19 HY-LINE truecon Router Handbuch – – MSN/Mobile number: Telephone number of the router: only important when it is an ISDN connection: the MSN must be included here. Die MSN (Multiple subscriber Number) is either the dialling number without area code or only the extension number. This is dependent on the setup of the telephone system.
  • Page 20 HY-LINE truecon Router Handbuch – – HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 20...

  • Page 21: Internet Settings

    - PPPoE activation: Connectivity Settings\Internet Settings\Internet Service: choose DSL - Connect external PPPoE modem to any Router ethernet port of HY-LINE router - PPPoE with external modem can’t be used with HY-LINE Router with internal DSL modem APN / Phone number:...
  • Page 22 HY-LINE truecon Router Handbuch – – PPP-Dial Dial-In: ISDN/Analog/GSM-PPP-Dial-In: the router will pick up after the number of rings and will build the PPP connection. Please wait 30 seconds after cutting the connection in order to build another connection. Internet by call/ Ringing function: Calling the M2M router from any phone line (don’t wait until the router...
  • Page 23 HY-LINE truecon Router Handbuch Continue: – – Port Speed: with bad analog lines (usually overseas) the routers communication speed can be set down for more stable phone lines Dial-In Server/Client IP: IP addresses of the PPP tunnel should be within the same subnet as the gateway (M2M router IP address).

  • Page 24: E-Mail

    HY-LINE truecon Router Handbuch HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 24...
  • Page 25 HY-LINE truecon Router Handbuch E-Mail address: E-Mail address of the system managers, it can also be set to administrator, in which case copies of all E-Mails would be sent there. SMTP-Server: Address of the SMTP server for the sending of E-Mails (supports DNS addresses as well as IP addresses).
  • Page 26 HY-LINE truecon Router Handbuch – – Activate: If checked the I/O port is monitored for input data Signal action: System reboot: Restart (Softreset) Internet dial-in: Dial in to the internet Alarm send E-Mail: Sends an E-Mail with message text to recipient 1-3 Alarm once (high) –...
  • Page 27 HY-LINE truecon Router Handbuch – – Activate: If checked the I/O port is used for data output Map digital output: DigEin1, DigEin2 or Online state is mapped to digital output Turn On / Turn off: manual on and off control of the digital output For EMC reason it is recommended to use a ferrite core, if data lines are longer then 3m.

  • Page 28: Firewall

    HY-LINE truecon Router Handbuch HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 28...
  • Page 29 This will be used to access devices on the router lan subnet without having set a gateway address in this devices. Outgoing traffic over standard gateway (HY-LINE Router LAN -> externe Gateway) : Masquerade srcnet:...
  • Page 30 HY-LINE truecon Router Handbuch NAT (Network Address Translation) is a network procedure where an IP-Address in a data pack is changed in to another. This is usually done to support private IP addresses on to public networks such as the internet. The ports are also translated in the same sense but through a system called PAT (Port Address Translation).
  • Page 31 HY-LINE truecon Router Handbuch Protocol Type: Protocol TCP or UDP Forwarded Port: Incoming port Dest. Address: IP-Address of device the packet is send to Dest. Port: Port of device the packet is send to Iface: Interface active for NAT rules: any=all Interfaces; eth0=lan0/1/2;...
  • Page 32 HY-LINE truecon Router Handbuch The service menu allows to stop, start and pause the services. HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 32...
  • Page 33 HY-LINE truecon Router Handbuch HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 33...

  • Page 34: Dyndns

    HY-LINE truecon Router Handbuch DynDNS Service Provider: Choose your provider for the DynDNS server. Username: DynDNS account name Password: DynDNS password Password verify: Re-Enter DynDNS password Host alias: DynDNS Hostname Activate DynDNS Service Modemmode: Activate DynDNS service in ../Connectivity Settings/Internet Settings/ -> IP-Reporting mode!
  • Page 35 HY-LINE truecon Router Handbuch Function: Internet Watchdog (Inetwd): The internet watchdog checks periodically via ping (icmp protocol) the correct access to an ip address or host name on the internet or intranet. If the ip address is not reachable the router will be restart.
  • Page 36 HY-LINE truecon Router Handbuch Function: Redundancy communication LAN-Gateway (DHCP) UMTS / PPPoE (intern DSL or external modem) The router is online only on the currently active connection. The primary active communication (after router reboot) is always LAN gateway (DHCP). Once the primary, active communication has failed, the communication is automatically enabled on the redundant communication (UMTS / PPPoE) without a reboot.
  • Page 37 HY-LINE truecon Router Handbuch Configuration: LAN-Gateway –> UMTS/Gateway Fallback Enable redundancy: Redundancy mode: mode or LAN gateway Fallback gateway: LAN fallback gateway Status Mail modem r.: Send mail with redundancy status Mail Message: Mail text Example hot to configure redundancy:...
  • Page 38 HY-LINE truecon Router Handbuch Continued.: Redundancy configuration Configuration LAN-Gateway: see chapter: LAN settings Configuration Firewall:: see chapter firewall, Masquerading srcnet must be activated! Reboot router! Active redundancy: LAN-Gateway –> UMTS Fallback Home Screen shows redundancy settings/mode: If redundncyis activated, home screens shows: After reboot of router the first communication way is active again.

  • Page 39: Ntpd

    HY-LINE truecon Router Handbuch – – Protocoll of the timeserver is NTP RFC1305. NTP Timeserver 1/2: IP address or hostname. Timeserver 2 is automatically used if connection to timeserver 1 failed. NTP Server (RFC 1305): Activate the NTP Server Mode for the local network. Any ip device can update their time over the router via NTP.

  • Page 40: Ser2Tcp

    HY-LINE truecon Router Handbuch The Ser2TCP Service is able to stream data from the serial RS232 Router interface to any ip based device over the ethernet network. Further administration under Linux OS is needed. Please contact HY- LINE technical support for assistance.

  • Page 41: Snmp

    HY-LINE truecon Router Handbuch Please contact HY-LINE technical support to receive the MIB (Management Information Base). HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 41...

  • Page 42: Sshd

    HY-LINE truecon Router Handbuch Configuration for access to the router over SSH (Secure Shell TCP/IP Terminal) Secure Shell – secured communication over unsecured networks : Secure Shell (SSH) is a program that allows the communication of computers over unsecured networks through a secure means. It closes many security risks, this is done through the encryption of data.
  • Page 43 HY-LINE truecon Router Handbuch Configuration of the log files size, number of logs and remote logins. • approx.. 3MB Flash-Memory (persistent, root directory) • approx. 8MB RAM-Memory ( ..\tmp) HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 43...

  • Page 44: Udp-Broadcast

    HY-LINE truecon Router Handbuch The UDP-Broadcast function is used for discover ip devices on the HY-LINE Router lan subnet. Incoming tcp-ip packets with configured broadcast port will be send automatically to each device in the router network. Each reply will be send back to the sender from the internet.
  • Page 45 Attention: Due to security reason it is recommended to disable Port 80 access from the internet Certificate warning: The HY-LINE Router has a standard https certificate installed (common version). This will cause in a browser alert after trying to access the routers web interface. It is possible to use a customer specific certificate to prevent this.
  • Page 46 HY-LINE truecon Router Handbuch A Virtual Private Network (VPN) is a computer network that communicates private data through a big open network such as the internet. Members of the VPN that are logged in can exchange data as if they were part of a private LAN.
  • Page 47 HY-LINE truecon Router Handbuch Use IPsec: Enables IPSec server when connected to the internet aktiviert (Pre-shared key, Zertifikate x.509) Use PPTP server: Enables PPTP server (Username and password authentication) Use PPTP client: Enables PPTP Client (Certificate authentication) HY-LINE Systems GmbH Inselkammerstr.
  • Page 48 HY-LINE truecon Router Handbuch – – Gateway IP / Client IPv4 range: VPN-Tunnel IP-Subnet must be different from HY-LINE Router LAN subnet HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 48...

  • Page 49: Vpn-Pptp Server

    HY-LINE truecon Router Handbuch – – Server address: IP-address or host name of VPN-PPTP server User name: vpn pptp user name, add/edit in ..\Advanced\user management Enable network mode: activate routing to remote network (server subnet) Network address: network ip range on server side (for routing), syntax: xxx.xxx.xxx.0 Route netmask: subnet for routing, syntax: 255.255.255.0...

  • Page 50: Authentication Method

    HY-LINE truecon Router Handbuch VPN-PPTP SERVER Set up connections example M2M Router settings for us a VPN-PPTP-CLIENT: • Authentication method: o CHAP or MS-CHAP V2 authentication available o Edit: \\etc\runit\pptp\run (File with extension script) CHAP: name +mppe-40 persist maxfail 0 debug \ ->...
  • Page 51 HY-LINE truecon Router Handbuch Continue: VPN-PPTP SERVER Set up connections example Web interface settings VPN Services: Use PPTP client VPN \ PPTP \ Client : Set PN server Set user name; user must be add in user management, see next page Enable Network Mode, routing is active Network address: subnet on other side of VPN Tunnel, Syntax: x.x.x.0...
  • Page 52 HY-LINE truecon Router Handbuch User management: VPN-PPTP Add user via web interface ../Advanced/User Management: User subsystem: PPP/PPTP User Important: if connectionist not working please change following: o Edit: \etc\ppp\chap-secrets o Change username PPP password to username * password * # PPP...
  • Page 53 HY-LINE truecon Router Handbuch – – Range ip Address: IP-Address range of established OpenVPN tunnels (Format: x.x.x.0) Range ip netmask: IP-Netmask of established OpenVPN tunnels Push route 1-3: IP-Address range, set as route in OpenVPN Client (Format: x.x.x.0) Route 1-3 netmask: IP-Subnet, set as subnet in OpenVPN Client HY-LINE Systems GmbH Inselkammerstr.
  • Page 54 HY-LINE truecon Router Handbuch – – Duplicate cn: allow multiple clients with same common name to connect to router at the same time Authentication: only with certificate, Username and password not possible Encryption: SHA1 - HMAC and BF-CBC (Blowfish - Cyper-Block-Chaining Mode) Default-Keysize: SHA1: 160 bit ;...
  • Page 55 > server.crt > server.key Copy certificate + keys on the PC (e.g. ..\Programme\OpenVPN\Config Configure OpenVPN Client Software Config File (e.g. client.ovpn) Successful connection between HY-LINE Router and Windows PC running OPenVPN.org software client. HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de...
  • Page 56 HY-LINE truecon Router Handbuch – – Attention: the router internal clock must be set to correct date and time. Activate OpenVPN Client via Service menu: Server FQHN: openVPN Server IP-Address or Domain-Name Server port: openVPN Server Port Client certificate: Authentication certificate...

  • Page 57: Vpn-Ipsec

    HY-LINE truecon Router Handbuch – – VPN-ipsec Preshared Key Network example: Server room Router-IP WAN: 201.202.203.204 Network : 192.168.180.0/24 255.255.255.0 Remote Network (HY-LINE Router) Router-IP WAN: dynamic Router-IP LAN: 192.168.3.254 Network : 192.168.3.0/24 255.255.255.0 ipsec PHASE 1 PARAMETER (management connection)
  • Page 58 HY-LINE truecon Router Handbuch – – ipsec configuration: Keep not used values in the default settings (e.g. identifier value, type, etc) • ipsec algorithm (encryption/authentication) fill in manually, pay attention to syntax • HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de...
  • Page 59 : 192.168.180.0/24 Router-IP LAN: 192.168.3.254 255.255.255.0 Netz : 192.168.3.0/24 255.255.255.0 Hier müssen im HY-LINE Router 2 Routen konfiguriert werden, eine für ausgehenden Traffic (out) und eine für eingehenden Traffic (in). ipsec Policies OUT: HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de...
  • Page 60 HY-LINE truecon Router Handbuch – – ipsec Policies IN: HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 60...

  • Page 61: Advanced

    HY-LINE truecon Router Handbuch – – ipsec Policies summary: Add user: Menu ..\Advanced\User Management : User subsystem: VPN ipsec user Username: public IP-address (WAN) of Server room Password: preshared key HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 61...
  • Page 62 VPN-ipsec certificate connections Base settings: see VPN with preshared Keys. The HY-LINE router is based on x.509 certificates. The router uses 2 files: the certificate file with extension .crt and the private key file with extension: e.g. p12 for pkcs 12 Files.

  • Page 63: Command Line Interface

    HY-LINE truecon Router Handbuch System management: Advanced command line: Command Line Interface HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 63...
  • Page 64 HY-LINE truecon Router Handbuch Amcli command line: The amcli is a simple command line interface running on the routers linux system OS. Example commands: Execute command and exit Dump configuration and exit Write configuration and exit -f file Specify configuration file...
  • Page 65 HY-LINE truecon Router Handbuch Amcli command line interface HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 65...
  • Page 66 HY-LINE truecon Router Handbuch System management: Reboot system: Router reset (Softreset) System configuration management: Download: loads the current configuration of the router to a file (system.conf) Upload: uploads a system.conf file in to the router, restart required configuration file must be from same firmware version...

  • Page 67: Logging

    HY-LINE truecon Router Handbuch Advanced - Logging: System Log: The system log will show details about the routers functions, e.g. dial in the internet, sending mails, using DynDNS, etc. HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 67...

  • Page 68: Network Tracer

    HY-LINE truecon Router Handbuch Advanced – Network Tracer: The Network tracer tool logs all network traffic over all interfaces ecxept following traffic: Port 22 (ssh), 80 (http), 443. Enable tracer: check box this box and press save Clear traces: clear all saved logs...

  • Page 69: User Management

    HY-LINE truecon Router Handbuch User Management: To add, change and delete user on the HY-LINE Router. HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 69...
  • Page 70 HY-LINE truecon Router Handbuch Webserver user have fixed names and belongs to a right system with limited access to router functions - Username: manager Password: changemetoo - Username: service Password: changemetoo - Username: installer Password: changemetoo - Username: user Password: changemetoo Passwords can be changed.
  • Page 71 HY-LINE truecon Router Handbuch HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 71...
  • Page 72 HY-LINE truecon Router Handbuch HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 72...
  • Page 73 HY-LINE truecon Router Handbuch Empty page HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 73...

  • Page 74: Dimensions

    HY-LINE truecon Router Handbuch Din Rail Mount (EN 60715), IP20, synthetic material HAP-RS HAP-R HAP-RIS HAP-RDS HAP-RI HAP-RAS HAP-RA HAP-RGS HAP-RG HAP-RUS HAP-RU HAP-RLS HAP-RL 35mm 83mm 60mm HY-LINE Systems GmbH Inselkammerstr. 10 82008 Unterhaching systems(at)hy-line.de www.hy-line.de/systems Seite 74...

  • Page 75: Analog Modem Country Code

    HY-LINE truecon Router Handbuch Analog modem country code settings - Log on to the Router via SSH or serial: - Type in following commands (case sensitive) sys sh svactivate stop mgetty-s0 svactivate stop pppd microcom /dev/ttyS0 at+gci=42 (=Germany for example) at&w...

Table of Contents