1. Manuals
  2. Brands
  3. LOYTEC Manuals
  4. Network Router
  5. LIP-33ECRB
  6. User manual

LOYTEC LIP-33ECRB User Manual

Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
L-IP
CEA-709/IP Router
User Manual
LOYTEC electronics GmbH

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the LIP-33ECRB and is the answer not in the manual?

Questions and answers

Related Manuals for LOYTEC LIP-33ECRB

Summary of Contents for LOYTEC LIP-33ECRB

  • Page 1  L-IP CEA-709/IP Router User Manual LOYTEC electronics GmbH...
  • Page 2 Version 8.2.8 Document № 88065918 LOYTEC MAKES AND YOU RECEIVE NO WARRANTIES OR CONDITIONS, EXPRESS, IMPLIED, STATUTORY OR IN ANY COMMUNICATION WITH YOU, LOYTEC SPECIFICALLY DISCLAIMS ANY IMPLIED WARRANTY OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. THIS...

  • Page 3: Table Of Contents

    L-IP Redundant Configuration ................ 38 6 Hardware Installation ................39 Enclosure......................39 Product Label ....................39 Mounting ......................40 LED signals ......................40 6.4.1 Power LED ....................40 6.4.2 Status LED ....................41 6.4.3 CEA-709 Activity LED ................41 Version 8.2.8 LOYTEC electronics GmbH...
  • Page 4 7.3.4 Using Multiple IP Ports ................57 7.3.5 802.1X Port Authentication ..............57 7.3.6 IP Host Configuration ................58 7.3.7 Dynamic DNS Configuration ..............59 7.3.8 WLAN Configuration ................59 7.3.9 Mesh Configuration ................. 62 7.3.10 VNC Configuration ................. 67 Version 8.2.8 LOYTEC electronics GmbH...
  • Page 5 8.3.3 Multiple L-IPs behind a NAT: Classic Method ........94 Multi-Cast Configuration ................. 94 Internet Timing Aspects ................... 95 8.5.1 Channel Timeout ..................95 8.5.2 Channel Delay..................96 8.5.3 Escrowing Timer (Packet Reorder Timer) ..........96 8.5.4 SNTP time server ..................96 Version 8.2.8 LOYTEC electronics GmbH...
  • Page 6 10.5.6 Node List Config ................... 120 10.5.7 Parameters ..................... 124 10.6 Web Interface ....................127 10.6.1 Status ..................... 127 10.6.2 Channel Statistics .................. 128 10.6.3 Alarm Log ..................... 129 10.6.4 Node List Configuration ................ 129 Version 8.2.8 LOYTEC electronics GmbH...
  • Page 7 14.5 CEA-709 Activity LED is flashing red ............156 14.6 The CEA-709 activity LED and the status LED are flashing red ....156 14.7 IP-852 traffic may flood the entire switched IP network ......157 Version 8.2.8 LOYTEC electronics GmbH...
  • Page 8 17 Specifications .................... 167 17.1 Physical Specifications..................167 17.1.1 LIP-xxECRB ..................167 17.1.2 LIP-3ECTC, LIP-33ECTC ..............167 17.1.3 LIP-3333ECTC ..................168 17.2 FCC Warning ....................168 17.3 CE Warning ....................168 18 Revision History ..................169 Version 8.2.8 LOYTEC electronics GmbH...
  • Page 9 CEA-852 ......Protocol standard for tunneling CEA-709 packets over IP channels IP ......... Internet Protocol LSD Tool ......LOYTEC System Diagnostics Tool MAC ........Media Access Control MD5 ........Message Digest 5, RFC 1321 NAT ........Network Address Translation, RFC 1631 SL ........

  • Page 11: Introduction

    See Chapter 15 for more information on this powerful system diagnostics tool. The built-in web server allows convenient device configuration through a standard web browser like Internet Explorer or Firefox. The web interface also allows backup and restoring Version 8.2.8 LOYTEC electronics GmbH...
  • Page 12 OpenVPN support enables secure remote management. For perfect integration into building management software such as the LWEB-900 by LOYTEC, the L-IP series “C” models offers an embedded OPC UA server with certificate authentication, which exposes important operational parameters as OPC tags. For enhanced maintainability by IT departments these models provide the same data also through an SNMP server.

  • Page 13: L-Ip Redundant

    L-IP Router is a powerful network diagnostics device. Its simple and intuitive user interface provides an immediate overview over the network status. Both the IP-852 channel Redundancy on the IP-Channel requires a redundant IP network infrastructure. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 14: L-Ip Models

    CEA-709 network can be observed with status LEDs. For trouble-shooting, the Router supports the remote LPA (LOYTEC Protocol Analyzer) functionality so that the network can be analyzed from any PC connected to the Internet. With the L-IP Redundant CEA-709/IP Router, setting up a redundant network which is comfortable to maintain becomes an easy task.

  • Page 15: Scope

    SSH, HTTPS, Firewall, VPN To operate these protocols an expansion module is needed and must be ordered separately Table 1: Available features in different L-IP models. 1.3 Scope This document covers L-IP devices with firmware version 8.2.8. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 16: Disclaimer Cyber Security

    To ensure that devices, systems, and networks are always protected against online threats, a holistic security concept is required that is implemented using the latest technology and is being kept up-to-date. The LOYTEC portfolio is only one component of such an overall concept.

  • Page 17: Safety Instructions

    Therefore, comply with the country-specific regulations and the corresponding safety guidelines. CAUTION Electrical Safety Essentially, electrical safety in building automation systems from LOYTEC is based on the use of extra-low voltage and safe isolation from mains voltage. CAUTION...
  • Page 18 Ensure proper working cable relief for installation in safety class II equipment. ATTENTION Environment Conditions LOYTEC devices have to be installed in a dry and clean environment. In addition the permissible environment conditions specified in the product data sheet must be observed. Version 8.2.8...
  • Page 19 50% of the nominal load. The nominal power of the transformer must be at least 25 VA. Using a transformer of smaller size, the ratio of open circuit voltage to voltage at full load becomes unfavorable (> + 20%). Version 8.2.8 LOYTEC electronics GmbH...
  • Page 20 Power over Ethernet (PoE) LPAD-7 Touch Panels require a PoE Class 1 power supply (max. 12W), which must be compliant to IEEE 802.3at-2009. For the power supply of the PoE switches observe the manufacturer’s specifications. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 21 Device Installation/Removal in De-Energized State Only Ensure that the power supply is switched off before starting to install or uninstall LOYTEC devices. Do NOT connect or disconnect equipment with power switched on, unless instructed otherwise. Do NOT assemble or disassemble devices with power switched on, unless instructed otherwise.
  • Page 22 (e.g. due to incorrect wiring) must be avoided at any circumstance and represents an immediate life danger or can lead to the entire or partial destruction of the building automation system. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 23: What's New In L-Ip

    The WLAN configuration of the port configuration has been re-modelled to better match the client and access point (AP) use cases. The tabs are now labelled WLAN Client and WLAN Access Point. These tabs are restricted to settings that apply to their respective use. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 24: New In L-Ip 7.6.0

    WiFi Enterprise To further increase security in a WiFi network, IT departments support the 802.1X authentication method on WiFi also known as WiFi Enterprise. LOYTEC devices can enable WiFi Enterprise in the WiFi settings by selecting WPA2-ENTERPRISE key management. The authentication methods Protected EAP (PEAP), Tunneled TLS (TTLS) and EAP-TLS (using certificates) are supported.

  • Page 25: New In L-Ip 7.0.0

    USB port and offers LTE/UMTS/GSM mobile network access. A SIM card from your provider needs to be inserted and the LOYTEC device is ready on the mobile network. A Mobile tab has been added to the port configuration interface for configuring the LTE-800.
  • Page 26 Figure 7: LTE-800 mobile configuration Internet Connection Sharing Combined with an LTE-800 mobile interface a LOYTEC device can act as a NAT router to share the mobile Internet connection with other devices on the LAN. For doing so, the Internet connection sharing feature can be enabled on the IP Host tab, where the default router interface is selected.

  • Page 27: New In L-Ip 6.4.0

    OpenVPN technology. An OpenVPN configuration file (.ovpn) can be installed on the Web interface and makes the LOYTEC device a VPN client and dial into the OpenVPN server defined by that file. Any standard OpenVPN configuration file can be used, which is auto-login, i.e.
  • Page 28 Figure 11: VPN client configuration on the Web interface Setting up a VPN client on the LOYTEC device may solve NAT router issues, because no port forwarding rules need to be configured. The device dials out to the OpenVPN server running on a public IP and establishes the VPN channel.
  • Page 29 WLAN-only devices. When plugging in a USB memory stick, a menu pops up (Figure 15) on the LCD interface that shows selected quick options, including firmware upgrade and backup. Figure 15: LCD pop-up menu for USB storage Version 8.2.8 LOYTEC electronics GmbH...

  • Page 30: New In L-Ip 6.1.0

    The wireless interface can be configured as a WLAN client, access point or mesh node. Using the latter, a wireless mesh network of LOYTEC devices can be built. Please refer to Section 7.3.8 to learn more about the WLAN interface.
  • Page 31 SNMP management base (MIB). All system registers are available in that MIB. The MIB file can be downloaded from the device and imported in the SNMP management tool. For more information on configuring and using SNMP with a LOYTEC device please refer to Section 11.1.

  • Page 32: Quick-Start Guide

    Depending on the desired redundancy mode choose one of the cabling topologies as shown in Figure 17 to Figure 19. More detailed instructions are shown in Chapter 6. Figure 17: L-IP Redundant Standalone with Bus Loop Monitoring Version 8.2.8 LOYTEC electronics GmbH...

  • Page 33: Ip Configuration Of The Client Device

    Note that if your PC has an IP address in a subnet other than 192.168.1.xxx, please open a command tool and enter the following route command to add a route to the device. To Add a Route to the Device Windows START → Run Enter ‘cmd’ and click OK. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 34 The Config menu opens. Click on Port Config and change to the tab Ethernet. The TCP/IP settings are selected as shown in Figure 22. Enter the IP address, the IP netmask, and IP gateway for this device. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 35: Configuration Via The Lcd Display

    Navigate to the IP address on the main screen and press the button. There navigate to the needed input fields, press and change the value. Press again to set the value. Continue to the next field. Finally navigate to Save and reboot and press. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 36: Configuration Server Settings

    Enter name and IP address and click the Save button as shown in Figure 23. Client devices include all other L-IPs and all PCs, which should participate in the communication on the IP-852 channel. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 37: Configure As Lon Router Drop-In Replacement

    Figure 25: Router Mode menu on the LCD display. The IP settings are not required in this operation mode. For firmware upgrade and other device maintenance on the Web interface, however, it is recommended to setup the IP address as well. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 38: L-Ip Redundant Configuration

    Add one L-IP Redundant built-in monitoring node “L-IP Redundant Diagnostic FT-10” device shape for each L-IP Redundant on the FT-10 channel. The corresponding device template will be installed with the L-IP Redundant Plug-In available from the LOYTEC webpage http://www.loytec.com. •...

  • Page 39: Hardware Installation

    6.2 Product Label The product label on the side of the L-IP contains the following information: • L-IP order number with bar-code (e.g. LIP-3ECTC, LIP-33ECTC, or LIP-33ECRB), • serial number with bar-code (Ser#), • unique node ID and virtual ID of each port (NIDx and VIDx) with bar-code, •...

  • Page 40: Mounting

    Available LEDs and their location on the respective device model can be found on the product’s installation sheet. The installation sheet can be found in the product’s box. 6.4.1 Power LED The power LED lights up green when power is supplied to the power terminals. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 41: Status Led

    Every time the L-IP Redundant contacts its twin router the LED is switched off shortly to signal this activity. 6.4.5 Ethernet Link LED The Ethernet Link LED lights up green whenever an Ethernet cable is plugged-in and a physical connection with a switch, hub, or PC can be established. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 42: Ethernet Activity Led

    If the LED is flashing green the network segment connected to this port is ok. • If the LED is flashing red a potential problem exists on the network segment connected to this port. This state is referred to as overload condition. A port overload condition occurs if Version 8.2.8 LOYTEC electronics GmbH...

  • Page 43: Status Button

    For a deeper analysis of the reason of the overload condition it is recommended to use a protocol analyzer (e.g. LOYTEC’s LPA) or a similar tool. The exact reason of the overload condition can also be determined with the LSD Tool (see Chapter 15).

  • Page 44: Lcd Display And Jog Dial

    Send ID messages: When selecting this menu, the device sends out service pin, BACnet I-Am, and identification broadcasts for finding the device in the L-Config tool on all applicable ports. • Reload config: By choosing this menu, the device performs a quick restart by reloading its configuration only. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 45: Sending A Node Pin Message

    Figure 34: Setting the CS address on the LCD UI. This opens the CEA-709 over IP menu with the following settings: • Config Server IP: Enter the IP address of the configuration server into the four separate input fields. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 46: Router Mode Settings

    (see Chapter 12). Important: All used and unused ports must be properly terminated. LOYTEC recommends the use of the LOYTEC L-Term series network terminators (LT-13 or LT-33 respectively). For unused ports, it is recommended to use a 100 Ohm 0.25 W resistor between terminals A and B as termination.

  • Page 47: L-Ip Redundant

    (see Chapter 12). Important: All used and unused ports must be properly terminated. LOYTEC recommends the use of the LOYTEC L-Term series network terminators (LT-13 or LT-33 respectively). For unused ports, it is recommended to use a 100 Ohm 0.25 W resistor between terminals A and B as termination.
  • Page 48 L-IP User Manual LOYTEC Important: If operated with bus loop monitoring enabled, the loop must not contain any repeaters! Version 8.2.8 LOYTEC electronics GmbH...

  • Page 49: Web Interface

    The password strength indicator will inform you about the security quality of your passwords. Enter the passwords in the screen as shown in Figure 37 and then click on Set passwords. Figure 37: Configure admin and operator passwords. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 50: Device Information

    If you click on Config in the left menu, you will be asked to enter the administrator password in order to make changes to the settings as shown in Figure 39. Enter the administrator password and select Login. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 51: Device Statistics

    The default log direction is newest entries on top. The direction can be edited by clicking on the arrow in the column header. To save the log click on the Save System Log button. When contacting LOYTEC support, have a copy of this log ready. Figure 40: System Log Page.

  • Page 52: Statistics

    Update all CEA-852 statistics. To reset all statistics counters to zero, click on the button Clear all CEA-852 statistics. The field Date/Time of clear will reflect the time of the last counter reset. Figure 42: Part of the CEA-852 Statistics Page. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 53: Enhanced Communications Test

    The packet capture feature allows configuring and running a local packet capture for the Ethernet ports. Please refer to Section 14.9 for more information on how to set up local capture and configure remote packet capture with Wireshark. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 54: Mobile Network

    The system configuration page is shown in Figure 45. This page allows configuring the device’s system time and other system settings. The TCP/IP Configuration link is a shortcut to the Ethernet port configuration. Follow that link to change the IP settings of the device. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 55: Port Configuration

    Some ports allow exclusive protocol activation only, other ports (e.g., the Ethernet port) allow multiple protocols bound to that port. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 56: Ip Configuration

    Models with one Ethernet port only do not have these settings here. Other standard protocols that are bound to the Ethernet interface are SSH, FTP, Telnet, and HTTP (Web server). By deselecting the checkbox, those protocols can be individually Version 8.2.8 LOYTEC electronics GmbH...

  • Page 57: Using Multiple Ip Ports

    To further increase security in a network installation, IT departments support the 802.1X port authentication method. This standard requires a device to authenticate its port on the network switch, before traffic into the network is allowed. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 58: Ip Host Configuration

    L-IP User Manual LOYTEC LOYTEC devices can enable 802.1X port authentication in the Port Mode settings on the Ethernet tabs of the port configuration (see Figure 50). Set the checkbox Enable 802.1X. Then choose an authentication EAP Type required by your IT department. The following EAP types are supported: •...

  • Page 59: Dynamic Dns Configuration

    7.3.7 Dynamic DNS Configuration LOYTEC devices can be configured to register for a dynamic DNS service. The settings are made in the Dynamic DNS protocol details field on the IP Host tab of the port configuration as shown in Figure 9.
  • Page 60 The show checkbox shows the PSK in clear text. • Verbose Logging: In case of connection problems, this checkbox can be activated to store wireless connection information in the OS log. It is not recommended to leave this option activated during normal operation. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 61 SSID: This is the service set ID identifying the wireless network provided by this access point. The hide SSID checkbox hides the SSID, so that it cannot be scanned. Not that hiding an SSID has more security drawbacks than advantages, so that this setting should be left deactivated. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 62: Mesh Configuration

    TCP/IP settings in the port configuration for a Mesh network are configured the same way as described for the access point configuration in Section 7.3.8. The configuration settings for the Mesh Point or Mesh Portal mode are shown in Figure 56. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 63 PIN: This field is used to choose an 8-digit PIN code. The Generate PSK button generates a 64-digit pre-shard key from this PIN code. The PIN code also makes Mesh setup easier on the LCD display. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 64 Mesh Point is enforced by the editor. • Delete a Mesh Point/connection: Select a Mesh Point or a connection by clicking on it. Then press the DEL key. By pressing the ESC key the selection is removed. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 65 -70 dBm. By looking at the color-coded connection it is fairly easy to identify weak connections and go forward to troubleshoot weak spots in the configuration. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 66 Mesh point. More statistics information are the Mesh path metric, the sequence number, the expiration period, the buffered packets and the state of the Mesh path. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 67: Vnc Configuration

    7.3.10 VNC Configuration LOYTEC devices equipped with an LCD display also provide remote access over Ethernet to the LCD display. The VNC protocol is used for this purpose and the device implements a VNC server for exposing the display. The VNC server is by default disabled on the device.

  • Page 68: Device Configuration

    Extended NAT mode. Please refer to Section 8.3 to learn more about configuring the Extended NAT mode in the configuration server. The configuration server sets the SNTP server addresses and the Channel timeout. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 69: Router Configuration

    Switch mode, this page has two more configuration fields: Subnet/node learning and Group learning. Per default the router mode is set according to the DIP switches. See Section 8.1 for more information on the different router modes. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 70: Server Configuration

    Enter NTP timer server address and ports in the fields Primary SNTP and Secondary SNTP. The L-IP will synchronize to NTP time if primary or primary and secondary NTP servers are specified. A list of available timeservers can be found at www.ntp.org. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 71: Channel List

    Each member can be selected for that action in an individual check- box in the Sel column. Actions available are: disable, enable, delete, assign to NAT, and remove from NAT. For more information on the actions on NAT routers refer to Section 8.3.2. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 72: Ssh Server Configuration

    Figure 67. It is possible to enable or disable the SSH server and to change the TCP port of the SSH server. The default SSH server port is 22. These settings will be active after rebooting. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 73: Snmp

    1) VPN client mode connects to a VPN server to join the VPN, 2) VPN simple server mode sets up its own VPN server on the LOYTEC device and offers an OpenVPN configuration for download that can be used to connect a VPN client to the LOYTEC device.
  • Page 74 Under Upload OpenVPN configuration click Choose File button and choose an OpenVPN (.ovpn) configuration file provided by your OpenVPN server. Then click Upload to transfer the ovpn file onto the LOYTEC device. Typical OpenVPN servers such as OpenVPN Access Server or Synology OpenVPN server are supported.

  • Page 75: Lte Configuration

    Currently, only one client is allowed to connect at a time. 7.3.19 LTE Configuration LOYTEC devices supporting the LTE-800 adapter can be used to logging into a mobile LTE network. To enable the LTE-800 adapter on the LOYTEC device, the first configuration step is to select the port mode “Separate network”...

  • Page 76: Security

    7.4 Security 7.4.1 Change Passwords The admin and operator passwords have been configured when contacting the device for the first time. Passwords for locally created users have been set when creating the user. To Version 8.2.8 LOYTEC electronics GmbH...

  • Page 77: Certificate Management

    The default HTTPS server port is 443. These settings will be active after rebooting. When connecting with a web browser to the LOYTEC device you will be warned that the server uses a self-signed certificate. You need to accept the certificate in order to continue.
  • Page 78 (see Figure 77 below). Reboot the device to activate the change. Figure 77: New created self-signed certificate To widen acceptance of the LOYTEC server in a hostile environment (e.g. when using over the Internet), consider installing a server certificate signed by a certification authority to prevent man-in-the-middle attacks.
  • Page 79 Figure 79: Copy and paste for the X.509 certificate request. Order the certificate. The LOYTEC device requires the certificate to be encoded in PEM format in order to be pasted easily.

  • Page 80: User Management

    Then click the save icon. To edit the password or role of a local user, click the respective edit icon, update the content and click on the save icon. Figure 81: User management page. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 81: Documentation

    IP settings, if this option is enabled, • Users and passwords, if this option is enabled, • Device settings (time zone, etc.), • CEA-709 commissioning information, • CEA-852 device and configuration server information (if enabled), Version 8.2.8 LOYTEC electronics GmbH...

  • Page 82: Firmware

    Web Update: With Web update the device searches for the latest available firmware on the LOYTEC server. Click on the refresh symbol, if no latest version is displayed. Please note, that the device must have a DNS server configured to find the LOYTEC server.

  • Page 83: Documentation

    7.6.5 Safe Reboot Whenever a setting has been changed that affects connectivity to the device’s Web interface (e.g. IP address) the next reboot is executed as a safe reboot. This is indicated as shown in Figure 86. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 84: Contact, Logout

    7.7 Contact, Logout The Contact item provides contact information and a link to the latest user manual and the latest firmware version. The Logout item closes the current session. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 85: Operating Modes

    1000/600 devices. This operating mode should also be used in networks with more than 10 IP devices on one IP channel and heavy network traffic on the IP channel (more than 500 packets/s) since channel routing sends the Version 8.2.8 LOYTEC electronics GmbH...

  • Page 86: Smart Switch Mode

    We do not recommend this operating mode for IP channels with more than 10 IP-852 devices and packet rates of more than 500 packets/s. Please use the configured router mode from Section 8.1.1 for larger IP channel configurations. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 87: Store-And-Forward Repeater Mode

    This condition is met if nodes are installed, using an LNS based tool, on different channels that are separated either with a router shape or with an L-IP LonMaker shape provided by LOYTEC. Please download the L-IP LonMaker shapes from our website at www.loytec.com.

  • Page 88: Operating Modes

    Every logical IP-852 channel requires one configuration server that manages all CEA-852 devices (L-INX, L-IP, LOYTEC NIC852, i.LON 1000, i.LON 600, LonMaker, etc.) on this channel. A simple network from Figure 91 uses two L-IP devices to connect two CEA-709 channels.

  • Page 89: Device

    IP address of a configuration server stored and contacts the configuration server direct or the configuration server has a list of the IP addresses of the devices and the configuration server contacts the device. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 90 IP-852 channel. 8.2.2.3 Using the Built-In Configuration Server For security purposes, the configuration server contacts each CEA-852 device on the IP-852 channel. Therefore, one must enter a list of all channel members in the CEA-852 Version 8.2.8 LOYTEC electronics GmbH...

  • Page 91: Firewall And Nat Router Configuration

    NAT router. This mode of operation is referred to as “Standard” channel mode. It is fully compliant with CEA-852. LOYTEC’s newer devices such as the L-IP and the L-INX family support more than one CEA-852 channel member behind a NAT router. This mode of operation is referred to as “Extended NAT”...

  • Page 92: Multiple L-Ips Behind A Nat: Extended Nat Mode

    Currently these are L-IP, i.LON 600, the NIC852 PC software and other CEA-852 capable devices from LOYTEC. If there are other devices in the channel, this method does not work. Incompatible devices are disabled from the channel in this case.
  • Page 93 IP-852 devices in Figure 94 through the Web UI is depicted in Figure 95. To remove a device from a NAT router but not delete it, select it and choose Remove from NAT as the action. Figure 95: Adding a member with extended NAT Mode on the Web UI. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 94: Multiple L-Ips Behind A Nat: Classic Method

    IP configuration menu. Please contact your system administrator to obtain a valid multi-cast address for your network. All L-IPs must be configured with the same multi-cast address and use the same client port (1628 is recommended). Also note, that Version 8.2.8 LOYTEC electronics GmbH...

  • Page 95: Internet Timing Aspects

    IP-852 channel for longer than what is specified in Channel Timeout in ms, the packet is discarded. The device always needs to synchronize with an SNTP timeserver when a Channel Timeout is set other than 0 ms. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 96: Channel Delay

    IP-852 channel. Use aggregation if you have a high channel load but can tolerate some additional propagation delay given by the aggregation time value. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 97: Md5 Authentication

    Auto-NAT feature in the device permanently monitors the current NAT address. When the device detects a change in the NAT address it re-registers with the configuration server using this new address. This feature requires a LOYTEC configuration server (e.g., L-INX, L-IP) and “Roaming Members” enabled on that CS.

  • Page 98: The L-Ip In A Network

    LOYTEC 9 The L-IP in a Network The L-IP is based on LOYTEC’s powerful L-Core and L-Chip technology. It is designed to be very robust and reliable in real-life applications. The L-IP either behaves completely transparent in a network or can be configured to behave like a configured CEA-709 router.

  • Page 99: L-Ip Acts As A Smart Switch

    Existing installations using TP-1250 and/or FT-10 segments only can require routers between the network segments. In this case no IP-852 channel is required, nor are any IP settings required. The older LOYTEC L-Switch™ devices were used in such installations. Other manufacturers also provided LON routers (for example Echelon LonPoint™ routers).

  • Page 100: Using L-Ip In Lns (Lonmaker) Networks

    9.4 Using L-IP in LNS (LonMaker) Networks We provide LonMaker shapes in order to add an L-IP to a LonMaker drawing. Please download the shapes from our homepage at http://www.loytec.com. Detailed instructions on how to use the L-IP together with LNS based network management tools can be found in Section 15.
  • Page 101 Internet one should specify an address for a Time Server and enable the SNTP Client. If you already have an NTP client installed on your PC, which synchronizes your PC clock to an NTP timer Version 8.2.8 LOYTEC electronics GmbH...
  • Page 102 Now drag the L-IP (Router) shape from the “LoytecShapes” stencil onto the drawing area. Choose the existing channel “IP Channel” for the first router port and the existing channel “Channel 1” for the second port. Finally you must commission the Version 8.2.8 LOYTEC electronics GmbH...

  • Page 103: Remote Lpa Operation

    FT-10 channel connected to the L-IP with IP address 192.168.1.210. For this operation, the LPA-IP does not need to be a member of the IP-852 channel. Note that this functionality is only available with LOYTEC CEA-852 devices. Figure 105: Remote LPA principle.

  • Page 104: Ip Redundant

    (C) and with the router (B) and therefore with nodes in other segments (A). Node device failure: A node fails due to power failure or device failure. As a result the node cannot perform its function anymore and cannot be reached by its communication partners (A,B,C). Version 8.2.8 LOYTEC electronics GmbH...

  • Page 105: Conventional Strategies For Redundancy

    If the L-IP Redundant sees different traffic on its two terminals, the cable is deemed to be broken. In this case it starts to duplicate the traffic from Assuming a redundant backbone. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 106: Router Redundancy

    To guarantee proper function of the bus loop monitoring algorithm it is required to keep average bandwidth utilization on the monitored segment below 50%! Bandwidth utilization can be monitored using the LOYTEC LPA or the built in diagnostic functions (see Sections 10.5.4 and 10.6.1).

  • Page 107: Device And Network Monitoring

    1 and the last one reaching from port 2. This information is also provided to the user via network variables, in the L-IP Redundant plug-in, and in the web interface. The primary router is the device with the higher VID1. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 108: The L-Ip Redundant In A Network

    LNS 3, Service Pack 7 or higher • Windows XP, Windows Vista or Windows 7. The L-IP Redundant Plug-In can be downloaded from the LOYTEC website http://www.loytec.com. To install the configuration utility double click on Setup and follow the installation steps. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 109 L-IP User Manual LOYTEC Figure 110: Be sure to be logged in as Administrator on Windows 2000/XP. Figure 111: L-IP Redundant Plug-In welcome screen. Figure 112: You have to agree to the Software License Agreement. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 110: Registering The L-Ip Redundant Plug-In

    LNS based network management tool. In the following section the process is described for LonMaker for Windows 3.1. Refer to the documentation of your network management tool on how to register a plug-in. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 111 Under LonMaker => Network Properties => Plug-In Registration make sure that the L-IP Redundant Configuration Plug-In shows up under “Already Registered”. Figure 116: Double check that the L-IP Redundant Configuration Plug-In is properly registered Version 8.2.8 LOYTEC electronics GmbH...

  • Page 112: Adding The L-Ip Redundant

    For operating the L-IP Redundant in twin router mode (router redundancy, see Figure 108), the following steps have to be performed: • Add two router shapes. Connect both to the same IP-Channel on one side and to the same FT-10 Channel on the other side of the router. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 113 After the router and the diagnostic node have been configured, use the L-IP Redundant Plug-In (see Section 10.5) or the web interface (see Section 10.6) to enter a node list for node monitoring or to change the parameters for bus loop monitoring and twin router monitoring. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 114: L-Ip Redundant Plug-In

    The “Twin Router Selection” shows the name of the primary and – if present – the secondary router. The one currently selected is marked. By clicking on the other one the selection can be changed on the fly. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 115: Device Status

    “L-IP Red. Status” icon on the left side of the L-IP Redundant Plug-In window (see Figure 120). Note: Most of the diagnostic information is only available if the plug-in is running in online mode and the device is accessible over the network. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 116 This list shows all the nodes in the node list of the device with the current status. If a node is not reachable/offline or the ring is open and the node is only reachable via one loop port the Version 8.2.8 LOYTEC electronics GmbH...

  • Page 117: Channel Statistics

    Shows the time elapsed since the L-IP was (re-)booted. The following data is shown for each channel the L-IP Redundant is attached to (CEA-709/CEA-852): Elapsed time Shows the time since L-IP Redundant powered up or since the statistics for this port where reset. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 118: Alarm Log

    Finally all statistic data can be cleared by pressing the “clear statistics” button. 10.5.5 Alarm Log Whenever an alarm occurs (e.g. “Ring open”) on the L-IP Redundant it is logged in the internal alarm log. The alarm log can hold up to 256 alarms. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 119 1 or port 2 respectively. This error can only occur on the secondary (inactive) twin router. • “Dev No <no> error” or “<desc> error”: Node with number <no> or description <desc> is either not reachable or not configured online. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 120: Node List Config

    The node with index 1 must be the node closest to loop port 1 while the last node in the list must be the node closest to loop port 2. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 121 Finally the node list can be downloaded to the device and an existing node list can be uploaded from the device. 10.5.6.1 Manually add and edit nodes You can double click on “Create new node…” to open the new node dialog box (see Figure 126). Figure 126: Adding a new node. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 122 To change the order of the node list select the entries and move them up and down with the arrows in the toolbar (see Figure 129). To select multiple items press the CTRL-key while selecting. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 123 Further, the node list can be exported and imported to/from a CSV-file. This allows using a spreadsheet application (e.g. Microsoft Excel) to create and edit the node list (see Figure 131). Figure 130: Transfer the node list between applications with Copy & Paste. Figure 131: Importing a CSV-file. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 124: Parameters

    Enable Twin Router Deselecting this check box will disable twin router monitoring (see Section 10.2.2). Note: If no twin router is present it is not required to turn off twin router monitoring. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 125 It must be identical on both twin routers. Warning Limit This value defines the limit for issuing the “Forwarding Warnings” (see nvoTwinStatus, Section 10.7.4 or alarm log, Section 10.6.3): If the number of packets forwarded by the local Version 8.2.8 LOYTEC electronics GmbH...
  • Page 126 Set this value to 0 to exclude the CRC error rate from the calculation of the overload state. Missed Preamble Limit This value defines the upper missed preamble rate limit for the calculation of the overload condition. If the current missed preamble rate exceeds this limit the corresponding channel Version 8.2.8 LOYTEC electronics GmbH...

  • Page 127: Web Interface

    L-IP Redundant Plug-In (see Section 10.5.3). Major differences compared to the plug-in interface are: • When clicking on the “Send Service Pin Message” button a service pin message is sent by the L-IP Redundant Diagnostic node. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 128: Channel Statistics

    Figure 137: The L-IP Redundant Web Interface – Device Statistics Page. 10.6.2 Channel Statistics Figure 138 shows the channel statistics page. This page offers similar information as the channel statistics view of the L-IP Redundant Plug-In (see Section 10.5.4). Version 8.2.8 LOYTEC electronics GmbH...

  • Page 129: Alarm Log

    Figure 139: The L-IP Redundant Web Interface – Alarm Log Page 10.6.4 Node List Configuration Figure 140 shows the node list configuration page. This page offers similar information as the node list view of the L-IP Redundant Plug-In (see Section 10.5.6). Version 8.2.8 LOYTEC electronics GmbH...

  • Page 130: Parameters

    Note that the node list is included in the backup and restore operation offered by the web interface (see Section 7.6.1). 10.6.5 Parameters Figure 141 shows the parameters page. This page offers similar information as the parameters view of the L-IP Redundant Plug-In (see Section 10.5.7). Version 8.2.8 LOYTEC electronics GmbH...

  • Page 131: Network Interface

    10.7.1 Node Object The Node Object functional block is shown in Figure 142. In addition to the mandatory functions defined in the LonMark Node Object functional profile the following optional and user defined functions are implemented: Version 8.2.8 LOYTEC electronics GmbH...

  • Page 132: Bus Loop Monitor Object

    L-IP was (re-)booted. 10.7.2 Bus Loop Monitor Object Figure 143 shows the Bus Loop Monitor Object functional block. This functional block is responsible for the bus loop monitoring (see Section 10.2.1). It has the following network variables: Version 8.2.8 LOYTEC electronics GmbH...

  • Page 133: Device Monitor Object

    L-IP is in twin router mode and the device is in standby mode and thus inactive. • bit1: 0 if all monitored nodes node is reachable and online or was not yet queried, 1 otherwise. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 134 -> index 1, bit1 -> index 2, etc.). Array element nvoRingXReceived[0] represents nodes with index 1- 64, while array element nvoRingXReceived[1] represents nodes with index 65-128. If the corresponding bit in nvoRingAReceived[X] is set to 1 the node was responding on loop Version 8.2.8 LOYTEC electronics GmbH...

  • Page 135: Twin Router Object

    As already mentioned in Section 10.4.3.2 these two network variables are used to establish the connection between paired L-IP Redundant devices. Figure 145: Twin Router Object. SNVT_state_64 nvoTwinStatus This network variable represents the current state of the twin router object. Currently the following bits are used: Version 8.2.8 LOYTEC electronics GmbH...

  • Page 136: Channel Monitor Objects

    L-IP Redundant is attached to: The channel monitor object with index 0 corresponds to the CEA-709 side of the L-IP Redundant, while the object with index 1 corresponds to the CEA-852/IP side of the L-IP Redundant. Each object has the following network variables: Version 8.2.8 LOYTEC electronics GmbH...
  • Page 137 (e.g. while the device is commissioned). Polled only. SNVT_count_32 nvoAvgPackets The average number of packets per second received or transmitted via the associated channel since power-up or since the statistics for this port where reset. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 138 Maximum value of nvoIvalPackets since power-up or since the statistics for this port where reset. SNVT_count_32 nvoIvalMissPrea Number of missed preambles per second on the associated channel measured during the last interval. A missed preamble is detected, whenever the link layer receives a preamble, which Version 8.2.8 LOYTEC electronics GmbH...
  • Page 139 SNVT_lev_cont nvoOverloadRatio Ratio between statistic intervals during which the channel was in overload condition and intervals during which the channel was not in overload condition since power-up or since the statistics for this port where reset. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 140: Operating Interfaces

    Every data item is assigned an object ID (OID). A device can support an arbitrary number of MIBs, such as CPU statistics or network traffic statistics. 11.1.1 SNMP Features LOYTEC devices supporting SNMP share these common features: • Read-only access for SNMP version 2C and 3 •...

  • Page 141: Exposing Data Points To Snmp

    The SNMP agent allows exposing data points to SNMP. It considers every data point which is exposed via OPC also to be exposed via SNMP. As SNMP has several restrictions on what can be represented, the following mappings are made: Version 8.2.8 LOYTEC electronics GmbH...

  • Page 142: Snmp Security

    SNMP Version 2C uses unencrypted authentication and payload. The community string is transmitted in clear text and can be easily extracted from captured network traffic. SNMP Version 3 supports encrypted authentication and payload encryption. LOYTEC devices support only authentication. The password is not transmitted in clear text then.

  • Page 143: Network Media

    The TP-1250 uses transformers for galvanic isolation. The topology of a TP-1250 network is a bus. Thus, both ends of the bus cable need to be terminated. LOYTEC recommends using its L-TERM network terminators (LT-13) for network termination (see Figure 149).
  • Page 144 In a double terminated bus topology, two terminations are required. These terminations need to be placed at each end of the bus. LOYTEC recommends using its L-TERM network terminators (LT-13, LT-33 or LT-03) for network termination (see Figure 149). 12.3 RS-485 The L-IP RS-485 ports are fully compatible with the parameters specified by TIA/EIA RS-485 for this channel.

  • Page 145: Redundant Ethernet

    For this discussion, the term upstream is used to designate the direction towards the network, which the devices are connected to. Likewise, the term downstream is used to designate devices more distant to the network which the devices are connected to. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 146 Please note, that this is a feature of the switch, not of the L-IP, so that LOYTEC cannot give a guarantee that this will work with a particular switch model. In no case redundant cabling options will work with unmanaged switches. The older Spanning Tree Protocol (STP) should not be used for this type of application, as it converges too slowly.

  • Page 147: Upstream Options

    Single upstream connection: Switch1 (or Switch2, but not both) is connected to the upstream network while Switch2 only provides a redundant path to the Loytec devices. The redundant path is created by a direct Ethernet cable between Switch1 and Switch2 which needs to be plugged into a lower-numbered port than the L-IP devices are connected to.

  • Page 148: Switch Settings

    Switch1, Switch2 and the Upstream switch. This test should be done continuously, especially during switch and device power cycles. • Check that all devices can be reached (ICMP ping). Execute these tests for these conditions: Version 8.2.8 LOYTEC electronics GmbH...

  • Page 149: Example Switch Configuration

    Devices supporting the LWLAN-800 wireless adapter can be connected to IEEE 802.11 wireless networks. The following operation modes are supported: • Client mode (separate network): The WLAN client connected to an existing access point. The firewall of the WLAN interface can be configured to provide Version 8.2.8 LOYTEC electronics GmbH...

  • Page 150: Mesh Networking

    802.11s also provides strong encryption using the AuthSAE (Simultaneous Authentication of Equals) protocol, so that each pair of mesh nodes use an encrypted link. It is resistant to passive, active and dictionary attacks, given a strong pre-shared key. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 151: Hardware Installation

    Connect the LWLAN-800 interface to the device with a USB cable, and then power the device. Do not remove the interface during operation. The LWLAN-800 supports two antennas which should be mounted outside any metallized housing. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 152: Ip Firmware Update

    13.2 Firmware Update via the IP Network To download the firmware via the IP network the L-IP must have a valid IP configuration (see Section 5.2). You will need the LOYTEC L-852 Download Tool, which can be downloaded from our homepage at www.loytec.com.
  • Page 153 L-IP User Manual LOYTEC Figure 156: The L-852 Download Tool If the upgrade is successful the following window appears (Figure 157). Figure 157: Successful firmware upgrade. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 154: Troubleshooting

    Please make sure to set the DIP-switches according to Figure 87 as CEA-709 configured router and reboot the L-IP. If the L-IP is used in smart switch mode simply do not commission the L-IP. If the problem still persists please contact LOYTEC support (see Section 14.8). Version 8.2.8 LOYTEC electronics GmbH...

  • Page 155: L-Ip Packet Routing Fails If Channel Timeout Is Activated

    SNTP requests at port 123. 14.3 Default Gateway Address is wrong Problem The L-IP reports the error “Can’t set default route:” during the boot process. LOYTEC electronics GmbH www.loytec.com Testing Board ID (0E) Passed Testing RAM...

  • Page 156: Activity Led Is Flashing Red

    Solution If this problem occurs because a firmware update was attempted (and failed somehow), simply retry downloading the new firmware image. If no firmware update was attempted, please contact LOYTEC support (see Section 14.8). Version 8.2.8 LOYTEC electronics GmbH...

  • Page 157: Traffic May Flood The Entire Switched Ip Network

    Please activate the keep alive function on the configuration server to establish two-way communication with the CNIP router. 14.8 Technical Support LOYTEC offers free telephone and e-mail support for our L-IP product series. If none of the above descriptions solves your specific problem please contact us at the following address:...

  • Page 158: Packet Capture

    The log can be downloaded from the Web interface. To verify that the device is set up correctly, go to Statistics → Packet capture as shown in Figure 160. Figure 160: Packet capture statistics. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 159: Run Wireshark Remote Capture

    Wireshark installation to this version or use a newer Wireshark version. To add a remote capture port Open Wireshark and choose the menu Capture → Options… . This opens the Capture Options dialog as shown in Figure 162. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 160 Enter the correct settings for Host and Port (default 2002) and, if authentication is enabled, enter Username and Password in the corresponding fields as shown in Figure 164. Note that only the users admin and operator are allowed to connect. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 161 To Start a Remote Capture Select the created remote interface from the interface list in the main window. It is named ‘Raw Ethernet traffic’ for remote Ethernet capture. Click the Start button as shown in Figure 166. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 162 Figure 166: Start Remote Capture in Wireshark. Wireshark will attempt to establish a connection to the device and, if successful, start displaying packets. An example capture is shown in Figure 167. Figure 167: Example Ethernet remote capture in progress. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 163: Application Notes

    Application Note Topic AN002E How to use the enhanced statistic features of the L-IP with LSD Tool the LOYTEC system diagnostics tool (LSD tool) AN003E How to use the L-IP with LonMaker and other network L-IP and LNS management tools...

  • Page 164: Security Hardening Guide

    The firmware is distributed as a downloadable file. The device can be upgraded by placing the firmware image onto the device using the procedure described in Chapter 13. The device firmware is signed by LOYTEC and its signature integrity is verified before the upgrade is allowed.

  • Page 165: Services

    The service is disabled by default. 16.5 Upgrade Key Strength The secure services (HTTPS, SSH) rely on certificates to authenticate the device against the connecting client. This is key to prevent man-in-the-middle attacks. The device comes with Version 8.2.8 LOYTEC electronics GmbH...

  • Page 166: Logging And Auditing

    Initial password setting is enforced. To protect usage of the admin password, the admin user can create additional user accounts with an admin role. Those additional user accounts can be disabled as needed. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 167: Specifications

    Humidity (non condensing) storage 10 to 90 % RH @ 50C Enclosure Installation enclosure 107 mm wide, DIN 43 880 Environmental Protection IP 40 (enclosure); IP 20 (screw terminals) Installation rail mounting (EN 50 022) wall mounting Version 8.2.8 LOYTEC electronics GmbH...

  • Page 168: Lip-3333Ectc

    17.3 CE Warning This is a Class B product. In a domestic environment, this product may cause radio interference in which case the user may be required to take adequate measures. Version 8.2.8 LOYTEC electronics GmbH...

  • Page 169: Revision History

    L-IP User Manual LOYTEC 18 Revision History Version 8.2.8 LOYTEC electronics GmbH...
  • Page 170 Updated for firmware version 6.4. Section 6.2.1 language selection. Added Section 6.2.14 SSH Server Configuration. Updated Section 6.2.15 Certificate Management. Section 6.2.16 Documented backup before firmware download. Added Section 6.5.1 Safe Reboot. Updated Chapter 15 Security Hardening Guide. Version 8.2.8 LOYTEC electronics GmbH...
  • Page 171 2024-06-15 8.2.8 Updated for firmware version 8.2.8. Added model LIP-13ECTC. Added Section 5.4 Configure as LON Router drop-in replacement. Added Section 6.6.4 Router Mode LCD menu. Added Section 9.3 L-IP Acts as an L- Switch. Version 8.2.8 LOYTEC electronics GmbH...

This manual is also suitable for:

Lip-1ectcLip-3ectcLip-13ectcLip-33ectcLip-3333ectc

Table of Contents