Bodet NETSILON 7 User Manual

Hide thumbs Also See for NETSILON 7:

User manual (74 pages)

Installation instructions manual (12 pages)

Installation and operation manual (69 pages)

page of 96

/ 96
Bookmarks

Quick Links

Download this manual

User Manual

This document refers to the following products:

907 900

NETSILON 7 AC

907 901

NETSILON 7 DC

907 902

NETSILON 7 AC+DC

907 903

NETSILON 7 AC+AC

www.bodet-time.com

On receipt, ensure that the product has not been damaged during transportation and report any concerns to the carrier.

NETSILON 7

TIME SERVER

NETSILON 7

BODET Time & Sport

1 rue du Général de Gaulle

49340 Trementines, France

Tel.: + 33 241 71 72 33

Need help?

Do you have a question about the NETSILON 7 and is the answer not in the manual?

Questions and answers

Summary of Contents for Bodet NETSILON 7

Page 1 NETSILON 7 TIME SERVER NETSILON 7 User Manual This document refers to the following products: 907 900 NETSILON 7 AC 907 901 NETSILON 7 DC 907 902 NETSILON 7 AC+DC 907 903 NETSILON 7 AC+AC BODET Time & Sport 1 rue du Général de Gaulle 49340 Trementines, France www.bodet-time.com...
Page 2 TABLE OF CONTENTS SAFETY INFORMATION AND PROTECTIVE MEASURES 1. GENERAL POINTS 1.1 Using the guide 1.2 Introduction 1.3 Netsilon presentation 1.3.1. Front panel 1.3.2. Rear panel 1.4 Specifications 1.4.1. Precision 1.4.2. Connections for time synchronization and broadcasting 1.4.3. Mechanical characteristics 1.4.4.
Page 3 3. COMMISSIONING 3.1 Factory configuration 3.2 Choosing the LCD screen display language 3.3 Choice of network interface 3.4 Configuration with a DHCP server 3.5 Configuration without a DHCP server 4. WEB SERVER MENUS 4.1 Start-up 4.1.1. Presentation of the main menu 4.1.2. Configuring the Netsilon front panel 4.1.3. Changing the language 4.2 Managing users 4.2.1.
Page 4 4.5.1. Status of sources 4.5.2. Priority of sources 4.5.3. Satellite receivers 4.5.4. ALS162 4.6 NTP 4.6.1. NTP service 4.6.2. NTP client 4.6.3. NTP servers 4.6.4. NTP peers 4.6.5. NTP key 4.6.6. NTP Autokey 4.6.7. NTP-Anycast 4.7 Time distribution 56 4.7.1. AFNOR option card (ref. 907940) 4.7.2.
Page 5 4.11.2. GNSS statistics 4.11.3. NTP statistics 4.11.4. ALS162 Statistics 4.11.5. NTP log 4.11.6. Syslog Log 4.11.7. Alarm history 4.12 System tools 4.12.1. Firmware updates 4.12.2. Loading and saving a configuration 4.12.3. Firmware version and online help 4.12.4. Firewall 4.12.5. Factory configuration 4.12.6. Restarting or switching off Netsilon 4.12.7. Removing an option card 4.12.8. Exporting logs and statistics 5. CONFIGURATION BY SSH 5.1 Authentication by password...
Page 6 8.5 USB loading 8.6 BODET technical support 9. ANNEXES 9.1 Annex 1: synchronisation 9.1.1. Primary source / secondary source 9.1.2. Automatic selection 9.2 Annex 2: functions 9.3 Annex 3: rights according to profile: administrator & user 9.4 Annex 4: saved settings 9.5 A nnex 5: list of command sets 9.6 A nnex 6: secure file for SCP and SFTP transfer...
Page 7 SAFETY INFORMATION AND PROTECTIVE MEASURES The following symbols and pictograms are used to illustrate risks or sources of danger during installation, use, and maintenance of this device. Symbol Description IEC60417 - 1641 Operating instructions IEC60417 - 5002 Positioning of cell IEC60417 - 5017 Class I IEC60417 - 5018...
Page 8 1. GENERAL POINTS Thank you for choosing the BODET Netsilon time server. This product has been carefully designed for your satisfaction according to the rules of our ISO9001 and ISO14001 quality system. We recommend that you read this manual carefully before using the product for the first time.
Page 9 See Chapter 8.1 Status of LEDs on front panel > a two-line LCD display > control keys for initial setup (full setup from the web server). 1.3.2. Rear panel > NETSILON 7 (AC+DC) SLOT A SLOT B SLOT C SLOT D DC IN AC IN ALARM OUT...
Page 10 ALARM OUT ANTENNA ALARM IN AC IN ALARM OUT ANTENNA ALARM IN ETH0 network card. > 5 4 3 NETSILON 7 (AC) DC IN DC IN DC IN AC IN ALARM OUT ANTENNA ALARM IN 7 8 9 7 8 9...
Page 11 Specifications 1.4.1. Precision Typical values Precision 1x10 Stability 1x10 /day Holdover 5 ms (after 24 hours) average after 24 hours with GPS or GLONASS signal, average after 2 weeks with GPS or GLONASS signal, typical value, after 2-week GPS or GLONASS synchronisation at constant temperature. 1.4.2.
Page 12 - SCP: secured copy of Netsilon files from a SSH session, - SFTP: secured transfer of Netsilon files from a SSH session. 1.4.8. Synchronisation sources Several synchronisation sources are available for Netsilon 7: BODET GPS or GLONASS antennas or an NTP server present on the computer network. Examples :...
Page 13 This equipment is not suitable for use in places likely to receive children. 2.2.2. Opening the equipment There are no user-repairable parts inside this equipment. Please contact BODET customer support if the equipment needs to be repaired. Do not open the product except when adding or replacing option cards and changing battery : >...
Page 14 1) Use a CAT.5E or CAT.6 shielded RJ45 Ethernet cable. 2) Connect the Ethernet network cable to the RJ45 connector on the Netsilon rear panel. The product is commissioned by activating the ON/OFF switch on the rear panel of the device. The Bodet company strongly recommends connecting and using Netsilon exclusively on a private network (VLAN). 2.4.4. Alarm relay circuits For relay circuits, provide protection with a fuse-disconnector or circuit breaker of 1A maximum.
Page 15 3. COMMISSIONING Netsilon configuration is performed exclusively on the web server. In order to be able to access the web server, it is necessary to configure the ETH0 port via the front panel keypad and the LCD screen. In order not to disrupt Netsilon synchronisation with the other products present on the network, it is important to maintain identification of the time server.
Page 16 Choosing the LCD screen display language The network settings for configuration of the ETH0 port (assignment of an IP address) can be read or configured via the Netsilon control panel. It is first necessary to select the product’s display language: 10:54.32 Mon 19 SEP 20__ System...
Page 17 Choice of network interface The product being connected to the network, select on the LCD screen the network interface concerned: 10:54.32 Mon 19 SEPT 20__ System ok Network IPv4 õ Product info ok Version õ Version ok Option cards õ Option cards ok Language õ Language ok Network interface õ...
Page 18 Configuration without a DHCP server Without automatic assignment of an IP address by a DHCP server, it is necessary to manually assign a fixed IP address. To manually configure the Netsilon network settings, enter the following three parameters: > IP address assignment > This is a unique address assigned to Netsilon by the network administrator. Ensure that the chosen address is available.
Page 19 4. WEB SERVER MENUS The order of the chapters corresponds to the steps to be completed as part of an initial commissioning. It is important to observe this order to ensure correct deployment of the system. An administrator profile is required to modify the web server parameters presented in this chapter. To view rights according to the profile used, refer to Annex 3: rights according to profile.
Page 20 2) Click , and the following window will appear: 3) Perform the desired configuration: Can be used to lock the Netsilon control panel when the box is checked. This function can be used to prevent any misuse by a third party. >...
Page 21 4.1.3. Changing the language To make the configuration easier, it is recommended to select the language you are the most confortable with. To choose the web server display language, follow these steps: 1) SYSTEM menu > General > Settings: Change the time server domain name Change the web server language and idle timeout...
Page 22 4.2.1.2 Creating or modifying an account To create a new account, follow these steps: 1) SECURITY menu > User management > Local users 2) Click on to add an account, and the following window will appear: Enter a username containing between 5 and 32 characters Select a profile type Enter a password containing between 7 and 32...
Page 23 4.2.2. Centralised management 4.2.2.1 RADIUS Service RADIUS Authentication (Remote Authentication Dial-In User Service) implies the use of an external server allowing a centralised management of users to login in to Netsilon. The login password entered by the user is stored in a RADIUS server on the network.
Page 24 2) Click , and the following window will appear : 3) Fill in the various fields to configure the settings: Tab - General Base DN (Distinguished Name): enter the name of the search base containing the server directories to be queried for an authentication match. Typically, this is the top level of the LDAP directory tree. The DN is the identifier of an LDAP entry (path in the tree).
Page 25 Tabs - Mapping / Options If one or several variables do not exist in your LDAP server database in the user account section, the connections will be impossible. However, it is possible to map the following variables “Login uid attribute”, “uidNumber” and “gidNumber” to other variables. Variable corresponding to the login attribute used during the connection.
Page 26 4) Add an LDAP server by clicking on , and the following window will appear: (possibility to add up to five servers maximum) Enter the IP address or the hostname of the LDAP server. For certificate validation, it is mandatory to indicate the full hostname of the LDAP server. It is strongly recommended to use different user names between those used via the LDAP server and those u sed locally. Do not duplicate users (declaration of local accounts in LDAP and vice versa). 5) Click on to view the certificate information that may have been imported from the certificate menu and on Configure certificates and keys to access this menu.
Page 27 Configuring the time zone T he time zone section enables centralised time zone creation and the programming of a manual Leap Second. Each output can be defined on a time zone, defined earlier in this chapter. 4.3.1. Defining the local time and date of the system T he local time should only be changed when replacing the CR2032 battery. For the local time system and date, follow these steps: 1) TIME menu > Time zones > Local time system. 2) Click on , and the following window will appear: 3) Manually change the time and the date. 4) Select the time zone from the drop-down menu.
Page 28 4.3.3. Creating a time zone automatically To add a time zone, follow these steps: 1) TIME menu > Time zone > Time zones. The UTC reference is present by default. 2) Click on to add a time zone, and the following window will appear: Enter the name of the new time zone.
Page 29 4.3.4. Programming a manual Leap Second If Leap Second information is managed by the synchronisation source used, it is always possible to program a manual Leap Second. This one takes over and ensures that Leap Second is applied. To program a manual Leap Second, follow these steps: 1) TIME menu > Time zone > Manual Leap Second 2) Click on to configure the Leap Second, the following window will appear: Enter the Leap Second value: + / - 1 second.
Page 30 Configuring the computer network 1) Click on the NETWORK to configure the network interfaces. As for network interface configuration, navigation is interactive: move the mouse over the connector of the interface to be configured, then click on it: 4.4.1. Network interface configuration To configure a network interface, follow these steps: 1) NETWORK menu >...
Page 31 Define the gateway if a product is outside the local network (LAN). Enter the address of the primary DNS in order to assign a domain name. Enter the domain name extension in order to access the product’s web server from the DNS. e.g.
Page 32 Bonding (Ethernet redundancy): The bounding allows to link several network interfaces (at least one Network option card must be available in Netsilon) to a group called “bond”. This port redundancy provides security in the event of a network interface failure, as the time server remains accessible and available via one or several other interfaces from the group (bond).
Page 33 VLAN (virtual local area network): VLANs reinforce computer security of networks by providing logical segmentation inside an extensive physical network. Each VLAN has its own broadcast domain. Netsilon uses “VLAN tagged” with an assignment to virtual local networks via the use of a tag in the message packet frame.
Page 34 The following diagram summarises the frames exchanged during the authentication process: Switch RADIUS Server Supplicant (authenticator) (authentication server) EAP (start) EAP (request identity) EAP (response identity) RADIUS (access-request) RADIUS (access-challenge) EAP (request authentication) EAP (response authentication) RADIUS (access-request) RADIUS (access-accept) EAP (success) RADIUS (access-reject) EAP (failure)
Page 35 2) Click on , the following window opens: 3) Activate the 802.1x protocol by checking the activation box, then choose the authentication protocol type: The “Authentication” field refers to the protocol used to secure the 802.1x connection between the supplicant and the authenticator and identify the supplicant using its identity or user name. 4) Set the parameters according to the chosen authentication protocol: - PWD: authentication by using a password. Enter the user name of the supplicant (Netsilon).
Page 36 (supplicant) through the use of a certificate to create a secure TLS tunnel for data exchange between the 2 parties during the second phase. During the second phase, the client is authenticated to the server by using an internal authentication mechanism (PAP, MSCHAPv2...), through the secure tunnel. By doing so, the identity of the supplicant is protected during the authentication phase.
Page 37 by the authentication server. Enter the user name of the supplicant (Netsilon). Enter the password. This will be verified by the authentication server. To protect the user name of the supplicant (Netsilon) during the first identification phase, when the connection between Netsilon and the switch (authenticator) is not yet secured by the TLS tunnel, an “Anonymous identity”...
Page 38 The mechanical installation is performed in our factory. For any subsequent installation, please refer to the option card installation guide available on our website www.bodet-time.com. The labels containing the MAC address for each port are placed in line with the RJ45 connector.
Page 39 > HTTP - HTTPS HTTPS (Hypertext Transfer Protocol Secure) is a communication protocol used to access a secure web server. If HTTPS is included in the URL instead of the usual HTTP, the message will be sent to a secure port on the server. The HTTPS protocol enables secure management of access to the web server for Netsilon configuration.
Page 40 3) Go to the browser’s advanced settings, then click on “proceed to netsilon.be.local”: T he connection is secure, even if “https” is crossed out and in red. This warning only indicates that the certificate has not been authenticated by a certified organisation. B odet recommends the use of the «https» mode for optimising security when accessing the Netsilon web server. > DNS The DNS (Domain Name System) is a protocol which can be used to associate a domain name, known as the hostname, (e.g.
Page 41 Activation of the SSH service Authentication by: - Only password: authentication by password only - Only public key: authentication by public key only. - Public key or password: authentication by password or public key. Types of keys supported: - RSA: 1024/2048/4096 bits - DSA: 1024 bits (fixed) - ECDSA: 256/384/521 bits - ED25519: 256 bits (fixed)
Page 42 > SMTP SMTP (Simple Mail Transfer Protocol) is used to transfer electronic messages (alarms) within a computer network. An SMTP server is a service which listens on port 25. Its main purpose is to route emails to a recipient. Click on Configure then refer to chapter 4.8.1 SMTP configuration.
Page 43 Choosing synchronisation sources To choose the synchronisation source(s), follow these steps: 1) TIME menu > Synchronisation 4.5.1. Status of sources An overview is provided. This area shows whether or not the available synchronisation sources have been activated. 4.5.2. Priority of sources The priority of synchronisation sources can be used to define the priorities between each available source, in order to enable Netsilon to transmit a continuous, precise time signal.
Page 44 Enable GNSS synchronisation using the button. In the case of GNSS synchronisation, the constellation on which the time server should perform its synchronisation must be chosen, in accordance with the antenna connected to the product (GPS or GLONASS). Netsilon 7 uses only one constellation to synchronise. There is a dedicated antenna for each constellation. If the configuration is not correct (gap between settings and the installed antenna) the time server will not synchronise. 1) To select the constellation according to the antenna connected to the product, click on...
Page 45 4.5.4. ALS162 Activate the ALS synchronisation with the button This synchronisation is only available if Netsilon is equipped with the current loop option card. 1) Click on to modify the distance from the Allouis transmitter. The following window opens: GPS coordinates of the Allouis transmitter: Latitude: 47°10’10.7’’N Longitude: 2°12’16.7’’E * This distance is the shortest path between two points. The default value is 228 km. Check various internet pages to determine the distance between your Netsilon and the Allouis transmitter.
Page 46 4.6.1. NTP service To enable the NTP service, proceed as follows: 1) TIME menu > NTP > NTP service Service ON/OFF button. Tick this box to query the NTP server remotely. Authorisation of mode 6 and 7 NTP packets (remote information queries).
Page 47 4.6.2. NTP client In client mode: NTP synchronises in unicast. To add an NTP synchronisation source, follow these steps: 1) TIME menu > NTP > NTP client: 2) Add an NTP server by clicking on , and the following window will appear: (option to add up to ten servers maximum) Enter the IP address of the NTP client.
Page 48 4.6.3. NTP servers In server mode: NTP transmits the time in multicast or broadcast. To enable NTP Servers mode, follow these steps: 1) TIME menu > NTP > NTP servers: 2) Select the communication mode: multicast or broadcast. 3) Add an NTP server by clicking on , and the following window will appear: (option to add up to five servers in multicast and broadcast) Enter the IP address of the NTP client.
Page 49 4.6.4. NTP peers NTP peer is defined between two or more time servers. If neither of them is authorised (at the same hierarchical level) to know the time, both will work to achieve identical synchronisation. Scenario 1: the reference server transmits the time signal Scenario 2: the reference server no longer transmits the time signal, the third-party device synchronises on Netsilon or vice versa:...
Page 50 To enable NTP peers mode, follow these steps: 1) TIME menu > NTP > NTP peers: 2) Add an NTP server by clicking on , and the following window will appear: (option to add up to five servers maximum) Enter the IP address of the NTP client. Poll interval: this is the period of time, in seconds, between two queries.
Page 51 4.6.5. NTP key The NTP key enables secure communication between a server and an NTP client, in order to prevent intrusion by a third-party server.
Page 52 To enable NTP key mode, follow these steps: 1) TIME menu > NTP > NTP key: 2) Add an NTP key by clicking on , and the following window will appear: (option to add up to 15 NTP keys maximum.) Tick this box to use authentication with a trusted key (by default, the NTP service only acknowledges trusted keys).
Page 53 4.6.6. NTP Autokey Remember that the devices must have different hostnames. To enable NTP autokey mode, follow these steps: 1) TIME menu > NTP > NTP Autokey: 2) Click on , and the following window will appear: Tick the box to enable and define the autokey. Enter the passphrase, within the 30-character limit.
Page 54 4.6.7. NTP-Anycast Anycast is applied to the NTP protocol to establish reliable communication between client and server (server redundancy). The Anycast (router /switch) network must support the OSPF protocol. The clocks (clients) send a query to the servers. The Anycast OSPF switch will select the server that responds the fastest in order to pass the information on to the clients.
Page 55 Time distribution Option cards can be selected in two ways: - In dynamic mode: hover the mouse over the desired option card then click. The menu dedicated to this option card is shown on the screen. - Click on the button of the desired option card.
Page 56 4.7.2. IMPULSE option card (ref. 907942) The IMPULSE option card enables wired time distribution by sending impulses every minute or ½ minute at 24VDC parallel. To configure the IMPULSE output, follow these steps: 1) TIME menu > Outputs > Slot D: 24V impulse: 2) Configure the output by clicking on , and the following window will appear: 3) Select the time zone which will be transmitted on the IMPULSE option card output.
Page 57 4.7.3. CURRENT LOOP option card (ref. 907944) The Current Loop option card can be used to distribute time by radio (DCF) via current loop. To configure the Current Loop output, follow these steps: 1) TIME menu > Outputs > Slot C: Current Loop: 2) Configure the output by clicking on , and the following window will appear: 3) Select the time zone which will be transmitted on the Current Loop option card output.
Page 58 Management of notifications 4.8.1. SMTP configuration To register an SMTP server in order to send e-mails, follow these steps: 1) NOTIFICATION menu > SMTP: Click on to test the service directly (without having to generate a fault on the device). 2) In SMTP - service, click on , and the following window will appear: Enter the IP address (or DNS name) of the receiving server (50 characters maximum).
Page 59 Configuration example: 1) Enter the sender’s parameters: SMTP SERVER IP address of the SMTP server 192.168.1.254 Port Users e-mail Password Admin admin@serveurtest.com testservice smtp-test smtp-test@serveurtest.com testservice netsilon1 netsilon1@serveurtest.com testservice 2) Enter the list of recipients: (Maximum number of recipients: 5) 3) Click on to add the e-mail address: (50 characters maximum) 4) Enable the service using the...
Page 60 4.8.2. SNMP trap Configuration To configure trap receipt, follow these steps: 1) NOTIFICATION menu > SNMP trap: Click on to test the service directly (without having to generate a fault on the device). v1 or v2c version: (5 accounts maximum) 2) Click on , and the following window will appear: Select the supported SNMP version: v1, v2C or v3.
Page 61 4.8.3. Configuration of alarms To define the notification mode and criticality of alarms, follow these steps: 1) NOTIFICATION menu > Alarms: Tick the box to enable alarm selection. Tick the box for the alarm to be identified on the LED on the front panel of the Netsilon device and notified via a relay contact.
Page 62 4.8.4. Syslog Configuration To configure the Syslog service, follow these steps: 1) NOTIFICATION Menu > Syslog: 2) Enable the service using the button. Click on to test the service (a Syslog message is sent even if «Events» are not validated). 3) To configure each type of log (Event, Alarms, Oscillator, Authentication), select it then click on , the following window will appear: Choose a category for the type of message / system that caused the event (Free local use).
Page 63 4) Add a Syslog server by clicking on , and the following window will appear: (option to add up to five servers maximum) Enter the address or the hostname of the Syslog server. Choose the client / server communication protocol (UDP / TCP / TLS). Enter the network port.
Page 64 Certificate and key management This menu allows certificates and public keys importation in Netsilon. 4.9.1. Importing CA certificates To add CA certificates: 1) SECURITY menu > Certificates and keys > CA certificates 2) Click on , a window opens: Enter a certificate name (16 characters maximum). Select the use cases of the certificate: Syslog, LDAP, 802.1x (TLS, TTLS, PEAP).
Page 65 4.9.2. Importing signed certificates To add signed certificates: 1) SECURITY menu > Certificates and keys > Signed certificates To import signed certificates, a Certificate Signing Request (CSR) is required beforehand. This CSR must be signed by the Certification Authority. Then, the signed certificate can be imported in Netsilon. It is not possible to import a private key directly.
Page 66 The certificates must be in X.509 Base64 format. As a reminder, a X.509 format certificate begins with «---BEGIN CERTIFICATE---» and ends with «---END CERTIFICATE---». The number of signed certificates is limited to 20. 5) Click on to see the information of the imported certificate. 4.9.3. Certificate expiration (CA and signed certificates) It is possible to set an alarm to inform of upcoming certificate expiry. 1) NOTIFICATION menu > Alarms > Certificates - Alarm threshold 2) Click on , a window opens: 3) Select the time before the certificate expires for an alarm to be displayed.
Page 67 4.10 System supervision 4.10.1. SNMP agent > ENABLING THE SNMP AGENT (E.G. V1) 1) SECURITY menu > SNMP agent: 2) Click on , and the following window will appear: Select the SNMP version. Enter a community name between 5 and 32 characters, without spaces. Select the IP communication version: IPV4. Enter the IP address of the server.
Page 68 4.11 System monitoring 4.11.1. Home page The home page is a consultation page: This menu shows the status of the synchronisation in progress: Status of the synchronisation in progress: > > Green = synchronisation OK > Red = no synchronisation The synchronisation source used: GPS, GLONASS, NTP, ALS162. >...
Page 69 4.11.2. GNSS statistics To view Netsilon GNSS (GPS or GLONASS) synchronisation statistics, follow these steps: 1) HISTORY menu > GNSS statistics. 2) Select the date using the drop-down menu: The GNSS reception (GPS or GLONASS according to the connected antenna) status is symbolised by two status levels: >...
Page 70 4.11.3. NTP statistics To view Netsilon NTP synchronisation statistics, follow these steps: 1) HISTORY menu > NTP statistics. 2) Select the date using the drop-down menu: Time offset: time offset in relation to the reference synchronisation source. Drift compensation: gradual correction of the Netsilon oscillator in relation to the source. The idea is to move closer to the synchronisation source in a gradual manner (without any time jump).
Page 71 4.11.4. ALS162 Statistics To view the Netsilon ALS162 statistics, follow the step below: 1) HISTORY menu > ALS162 Statistics: The status of the ALS162 reception is symbolised by two states: > 0: reception of a signal but no synchronisation. > 1: reception of the signal ok. 4.11.5.
Page 72 4.11.6. Syslog Log To view the Syslog log, follow these steps: 1) HISTORY Menu > Syslog logs This log is a feedback for each type of log. It is a standard log generated by the Syslog protocol. It is possible to perform a search on this log using the search bar. 4.11.7. Alarm history To view the history of alarms and acknowledge them, follow these steps: 1) HISTORY menu >...
Page 73 1) SYSTEM menu > Tools > Upgrade and backup. 2) Click on , and the following window will appear for selection of the file to be imported: The latest firmware version is available at www.bodet-time.com 4.12.2. Loading and saving a configuration To save a configuration, follow these steps: 1) SYSTEM menu > Tools > Upgrade and backup.
Page 74 4.12.3. Firmware version and online help To view the Netsilon firmware version and option cards, proceed as follows: 1) SYSTEM menu > General > Versions: To access the product manual, proceed as follows: 1) SYSTEM menu > General > Online help: 4.12.4.
Page 75 4.12.7. Removing an option card If an option card is physically removed from Netsilon, it must also be removed from the web server so as not to generate false alarms. To remove an option card from the Netsilon software, follow these steps: 1) SYSTEM menu >...
Page 76 ETH0 port): Authentication by password 1) Download a program enabling to log in to Netsilon remotely (e.g.: PuTTY). 2) Note the IP address of Netsilon 7. 3) Open the program (PuTTY). 4) Enter the IP address. 5) Enter the default ID and password to access the command set. As a reminder: >...
Page 77 Authentication by public key 1) Download a program that will generate public/private keys (e.g.: PuTTY Key Generator). 2) Generate a public/private key by clicking on Hover your PC mouse over this space to generate the key 3) Save the public key in a file (.txt type) to be imported in the Certificates and keys menu of Netsilon in the «public keys»...
Page 78 5) Download a program enabling the connection (e.g.: PuTTY). 6) Open the program (PuTTY). 7) Enter the IP address of Netsilon: 8) Enter the location on your PC containing the private key matching the public key imported in Netsilon: 9) Enter the user: 10) Click on , the following window opens:...
Page 79 6. CONFIGURATION BY CONSOLE > To access the Netsilon web server, follow these steps (Netsilon must be connected to the PC via its COM serial port). T he physical connection between the PC and Netsilon must be a direct link via an RS232 (DB9) male/ female serial cable. 1) Download a program enabling to log in to Netsilon (e.g.: PuTTY). 2) Open the program (PuTTY).
Page 80 7. CONTROL PANEL MENUS Main menu tree Configuration of menus via the control panel provides for basic settings. Advanced settings are configured via the web server. Menus are automatically closed after 45 seconds of inactivity on the control panel. 10:54.32 Tues 19 SEP 20__ System ok See chapter 7.1.1 System menu Network õ Network ok See chapter 7.1.2 Network menu USB transfer õ USB transfer ok See chapter 7.1.3 USB transfer menu...
Page 81 7.1.1. System menu This menu can be used to view the following parameters: > the product’s MAC address, > the name of the product and its firmware version, > the option card(s) installed, > the language used for the menus displayed on the LCD screen. 10:54.32 Tues 19 SEP 20__ System...
Page 82 7.1.2. Network menu This menu can be used to view, define and configure the parameters of the ETH0 network port only. 10:54.32 Tues 19 SEP 20__ System ok Network õ Network ok USB transfer õ 192.168.1.0/24 With a DHCP server Display ETH0 ok No gateway ok Config. ETH0 õ...
Page 83 7.1.3. USB transfer menu The Netsilon time server can load or save its programming by means of a USB key. Before creating any new programming, it is necessary to save the existing one on a USB key. 10:54.32 Tues 19 SEP 20__ System ok Network õ...
Page 84 Technician menu This menu is only accessible with a technician code. This daily code is held by BODET. To obtain this code, contact BODET customer support and ensure that you have the MAC address for the ETH0 network output. In this menu, it is possible to: > lock or unlock the control panel, > restore the default administrator account, >...
Page 85 8. SUPPORT Status of LEDs on front panel The LEDs can provide Netsilon status information. Status and Description Check that… colour 1) The mains (AC) power supply cable is connected to a Netsilon connector and the No power supply power supply switch is ON. 2) The direct current (DC) wires are connected to the connector.
Page 86 Web browser not opening > With a DHCP server Check that the DHCP server delivers the IP address: IP address displayed on Netsilon LCD screen (see chapter 3.4 Configuration with a DHCP server) > Without a DHCP server: fixed IP address Check that the network settings are correct: IP address available, subnet mask, gateway, etc. (see chapter 3.5 Configuration without a DHCP server) >...
Page 87 The format (file system) of the USB key is FAT16/FAT32 or NTFS. BODET technical support To request technical support for this equipment: 1) Go to the “Support” page of the www.bodet-time.com website: Click on the link: http://www.bodet-time.com/en/customer-support.html 2) Fill in the contact form.
Page 88 9. ANNEXES Annex 1: synchronisation 9.1.1. Primary source / secondary source Scenario 1: loss of synchronisation from the primary then secondary sources > Freerun on product start-up > Synchronisation with the primary source (e.g. GLONASS) > Loss of synchronisation from the primary source > Holdover > Synchronisation with the secondary source (e.g. NTP) >...
Page 89 Time. 2 synchro. Statuses: Freerun Freerun Loss of synchronisation then Notifications: switch to freerun T he timeout duration depends on the synchronisation source: > Bodet GPS / GLONASS: 5 minutes > NTP: 15 minutes > ALS: 10 minutes (switching in holdover mode after 5 consecutive bad frames – the status of the ALS162 source becomes unavailable)
Page 90 9.1.2. Automatic selection The synchronisation source is automatically selected based on reception quality. No holdover between changing synchronisation sources. Scenario 1: loss of synchronisation from the primary then secondary sources > Freerun on product start-up > Synchronisation with the primary source (e.g. GPS) > Synchronisation with the secondary source (e.g. NTP) >...
Page 91 Annex 2: functions The following table summarises the availability of functions: Functions Description Web Server Console Control panel Network Interfaces: configure the ETH0 interface √ √ √ √ Interfaces: configure the other network interfaces √ √ √ Routes: configure static IPv4 / IPv6 routes √...
Page 92 Annex 3: rights according to profile: administrator & user The following table summarises the availability of functions: Function mode Description Admin. User Network Interfaces: configure the ETH0 interface Interfaces: configure the other network interfaces Routes: configure static IPv4 / IPv6 routes Services: activate services Notification Alarms: configure alarms and alarm thresholds (satellite reception and certificate expiration) SNMP Trap: enable and configure the SNMP trap SMTP: enable and configure the SMTP Syslog: enable and configure the Syslog log...
Page 93 Annex 4: saved settings Function mode Description Saved Network Interfaces: configure the ETH0 interface Interfaces: configure the other network interfaces Routes: configure static IPv4 / IPv6 routes Services: activate services Notification Alarms: configure alarms and alarm thresholds (satellite reception and certificate expiration) SNMP Trap: enable and configure the SNMP trap √...
Page 94 Annex 5: list of command sets List of Netsilon commands: Category Command Description General helpcli List of all commands System systemversion Displays the versions of Netsilon and its option cards systemoptioncard List of installed option cards systemlistservices Displays the status of services systemservice [service] [ON/OFF] Change the status of a service systemlanguage [FR/UK/ES/DE/NL/IT]...
Page 95 net4getdns [interface] Indicates the DNS server of all ports or the requested port Interface =0 or 1 or 2 or 3 or 4 or 5 net4setdns [interface] [addr4] Set the parameters of the DNS server Interface =0 or 1 or 2 or 3 or 4 or 5 net4getgate [interface] Indicates the gateway of all ports or the...
Page 96 Annex 6: secure file for SCP and SFTP transfer Netsilon has a secure file transfer functionality that uses client tools: SCP and SFTP. Authentication is carried out by using the default account password or the public key. 1. Make an SCP file transfer to Netsilon using authentication by default account password: scp authorized_keys scp@10.10.200.5: .ssh scp@10.10.200.135 password: admin49 (always use the same password as bodetadmin)

This manual is also suitable for:

Netsilon 7 ac Netsilon 7 dc Netsilon 7 ac+dc Netsilon 7 ac+ac 907 900 907 901 ... Show all