Home » Lantronix Manuals » Electronics Accessories » Lantronix SGX 5150 » Manual Viewer

Lantronix SGX 5150 User Guide - Page 60

Remote Network, Local Network, Key Management, ISAKMP Phase 1 IKE, Unreachable Host Detection

Add to My Manuals
Save this manual to your list of manuals

Page 60 highlights

6: Network Settings VPN Setting Description Remote Network Endpoint Enter the remote VPN Gateway's IP Address. Subnet Enter the subnet behind the VPN Gateway. ID Enter the identifier expected to receive from the remote host during Phase 1 negotiation. Router/Next Hop Enter the next-hop gateway IP address for the VPN Gateway. Local Network Subnet Enter the subnet the local devices have access to or can be accessed from the VPN connection. ID Enter the identifier sent to the remote host during Phase 1 negotiation. Router/Next Hop Enter the next-hop gateway IP address for this connection to the public network. Key Management Perfect Forward Secrecy (PFS) Select to enable or disable the Perfect Forward Secrecy. Enabling this feature will require IKE to generate a new set of keys in Phase 2 rather than using the same key generated in Phase 1. Pre-shared Key (PSK) Enter the Pre-Shared Key used in the IPSec setting between the Local and VPN Gateway. ISAKMP Phase 1 (IKE) Aggressive Mode Select to enable or disable Aggressive Mode. In Aggressive mode, IKE tries to combine as much information into fewer packets while maintaining security. Aggressive mode is slightly faster but less secure. NAT Traversal Select to enable or disable NAT Traversal. If there is an external NAT device between VPN tunnels, the user must enable NAT Traversal. Encryption Select the encryption algorithm in key exchange from the drop-down menu. Authentication Select the hash algorithm in key exchange from the drop-down menu. DH Group Select the Diffie-Hellman (DH) groups (the Key Exchange group between the Remote and VPN Gateways) from the drop-down menu. IKE Lifetime Enter the number of hours for the IKE SA lifetime. ISAKMP Phase 2 (ESP) Encryption Select the encryption algorithm in data exchange from the drop-down menu. Authentication Select the hash algorithm in data exchange from the drop-down menu. DH Group Select the Diffie-Hellman (DH) groups (the Key Exchange group between the Remote and VPN Gateways) for Phase 2 from the drop-down menu. SA Lifetime Enter the number of hours for the SA lifetime in Phase 2. Unreachable Host Detection Host Enter the unreachable detection host monitoring the connectivity with the host on the remote network. Ping Interval Enter the Ping Interval to monitor connectivity with a host on the remote network. Max Tries Enter the number of Max Tries for pinging the host before the VPN tunnel is restarted. SGX 5150 IoT Device Gateway User Guide 60

Section	Page
SGX 5150 IoT Device Gateway User Guide	1
Intellectual Property	2
Warranty	2
Contacts	2
Disclaimer	2
Open Source Software	3
Revision History	3
Table of Contents	4
List of Figures	10
List of Tables	11
1: Using This Guide	14
Purpose and Audience	14
Summary of Chapters	14
Additional Documentation	14
2: Introduction	16
Key Features	16
Applications	17
SGX 5150 User Cases	18
Protocol Support	19
Troubleshooting Capabilities	19
Configuration Methods	19
Addresses and Port Numbers	20
Hardware Address	20
IP Address	20
Port Numbers	20
Product Information Label	20
3: Installation of the SGX 5150	22
Package Contents	22
User-Supplied Items	22
Hardware Components	23
Front Panel	23
Back Panel	23
Serial Interface	23
USB Connection	24
Power	25
Ethernet Ports	25
Wi-Fi Protected Setup (WPS)	26
Reset Button	27
To Start WPS	27
Installing the SGX 5150	27
Observe the following guidelines when connecting the serial devices:	27
Perform the following steps to install your device:	27
Optional SGX 5150 Bracket	29
Wireless Quick Connect	30
4: Using DeviceInstaller	31
Installing DeviceInstaller	31
Accessing the SGX 5150 Using DeviceInstaller	31
Next Step	33
5: Configuration Using Web Manager	34
Accessing Web Manager	34
To access Web Manager through a web browser:	34
Status Page	35
Web Manager Components	37
Web Manager pages have these sections:	37
Navigating Web Manager	38
6: Network Settings	40
Access Point	40
To View or Configure Access Point Settings	40
Using Web Manager	40
Using the CLI	40
Using XML	41
Bridge	41
Bridge Status and Configuration	42
To View or Configure Bridge Settings	42
Using Web Manager	42
Using the CLI	43
Using XML	43
Wired (eth0) Network	43
Interface Status and Configuration	43
To Configure Network Interface Settings	45
Using Web Manager	45
Using the CLI	45
Using XML	45
Link Status and Configuration	45
To Configure Network Link Settings	46
Using Web Manager	46
Using the CLI	46
Using XML	46
QoS Statistics and Configuration	46
To View and Configure Wired Network QoS Settings	47
Using Web Manager	47
Using the CLI	47
Using XML	47
Wired (eth0) Network Failover	47
To View and Configure Wired Network Failover Settings	48
Using Web Manager	48
Using the CLI	48
Using XML	48
Wireless (wlan0) Network	48
Wireless (wlan0) Network Interface	48
To View or Configure Wireless Network Interface Settings	50
Using Web Manager	50
Using the CLI	50
Using XML	50
Wireless (wlan0) Network Link	50
To View or Configure Network Link Settings	51
Using Web Manager	51
Using the CLI	51
Using XML	51
Wireless (wlan0) Network QoS	51
To View or Configure Wireless Network QoS Settings	52
Using Web Manager	52
Using the CLI	52
Using XML	52
Wireless (wlan0) Network Failover	52
To View or Configure Wireless Network Failover Settings	53
Using Web Manager	53
Using the CLI	53
Using XML	53
Wired (usb0) Network	53
Interface (usb0) Status and Configuration	53
To Configure Network Interface Settings	55
Using Web Manager	55
Using the CLI	55
Using XML	55
QoS Statistics and Configuration	55
To View and Configure Wired Network (USB) QoS Settings	56
Using Web Manager	56
Using the CLI	56
Using XML	56
Wired (usb0) Network Failover	56
To View and Configure Wired (USB0) Network Failover Settings	57
Using Web Manager	57
Using the CLI	57
Using XML	57
Protocol Stack	57
IP Settings	57
Using Web Manager	58
Using the CLI	58
Using XML	58
To Configure ICMP Protocol Stack Settings	58
Using Web Manager	58
Using the CLI	58
Using XML	58
ARP Settings	58
Using Web Manager	58
Using the CLI	58
Using XML	58
VPN	59
Configuring VPN Settings	61
Using Web Manager	61
Using the CLI	61
Using XML	61
Wi-Fi Protected Setup	61
To Initiate WPS	61
Using Web Manager	61
Using the CLI	61
Using XML	61
To Show WPS Status	62
Using the CLI	62
Using XML	62
WLAN Scan/QuickConnect	62
To View WLAN Link Scan and Status Information	63
Using Web Manager	63
Using the CLI	63
Using XML	63
WLAN Profiles	63
Configuring WLAN Profile Settings	63
Using Web Manager	63
Using the CLI	64
Using XML	64
7: Filesystem	67
File Transfer and Modification	67
To View, Transfer, or Modify Filesystem Files	68
Using Web Manager	68
Using the CLI	68
Using XML	68
8: Diagnostics	69
DNS	69
Accessing the DNS Settings	69
Using Web Manager	69
Using CLI	70
Using XML	70
Hardware	70
To View Hardware Information	70
Using Web Manager	70
Using the CLI	70
Using XML	70
IP Sockets	70
To View the List of IP Sockets	70
Using Web Manager	70
Using the CLI	70
Using XML	70
Log	71
To Configure the Diagnostic Log Output	71
Using Web Manager	71
Using the CLI	71
Using XML	71
Memory	71
To View Memory Usage	71
Using Web Manager	71
Using the CLI	71
Using XML	71
Ping	71
To Ping a Remote Host	72
Using Web Manager	72
Using the CLI	72
Using XML	72
Processes	72
To View Process Information	72
Using Web Manager	72
Using the CLI	72
Using XML	72
Routes	72
Using Web Manager	72
Using CLI	72
Using XML	72
Threads	73
To View Thread Information	73
Using Web Manager	73
Using the CLI	73
Using XML	73
Traceroute	73
To Perform a Traceroute	73
Using Web Manager	73
Using the CLI	73
Using XML	73
9: Administration	74
Actions	74
To Configure Action Settings	75
Using Web Manager	75
Using the CLI	75
Using XML	76
Python	76
IDE	76
Applications	77
To Configure Application Settings	77
Using Web Manager	77
Using the CLI	78
Using XML	78
CLI	78
CLI Status and Configuration	78
To View and Configure Basic CLI Settings	79
Using Web Manager	79
Using the CLI	79
Using XML	79
Clock	79
To Specify a Clock-Setting Method	79
Using Web Manager	79
Using the CLI	79
Using XML	79
Discovery	80
To Configure Discovery	80
Using Web Manager	80
Using the CLI	80
Using XML	80
Email	80
To View, Configure and Send Email	81
Using Web Manager	81
Using the CLI	81
Using XML	81
FTP	81
To Configure FTP Settings	81
Using Web Manager	81
Using the CLI	81
Using XML	82
Gateway	82
Status	82
WAN	82
WAN MAC Address Filters	83
To Configure Gateway WAN Settings	83
Using Web Manager	83
Using the CLI	83
Using XML	83
Port Forwarding	83
To Configure Gateway Port Forwarding Settings	84
Using Web Manager	84
Using the CLI	84
Using XML	84
Static Routes	84
To Configure Gateway Static Route Settings	85
Using Web Manager	85
Using the CLI	85
Using XML	85
DHCP Server	85
To Configure Gateway DHCP Server Settings	86
Using Web Manager	86
Using the CLI	86
Using XML	86
Static Lease Listing	86
Routing Protocols	86
To Configure Gateway Routing Protocol Settings	87
Using Web Manager	87
Using the CLI	87
Using XML	87
Virtual IP	87
To Configure Gateway Virtual IP	88
Using Web Manager	88
Using the CLI	88
Using XML	88
GRE	88
To Configure Tunnel Serial Settings	88
Using Web Manager	88
Using the CLI	89
Using XML	89
Host	89
To Configure Host Settings	89
Using Web Manager	89
Using the CLI	89
Using XML	89
HTTP	90
Interface Status, Configuration and Authentication	90
To View or Configure HTTP	91
Using Web Manager	91
Using the CLI	91
Using XML	91
To Configure HTTP Authentication	92
Using Web Manager	92
Using the CLI	92
Using XML	92
Line	92
Line Status and Configuration	92
To View and Configure Line Configuration and Command Mode	94
Using Web Manager	94
Using the CLI	94
Using XML	94
USB	94
USB Statistics	94
To View USB Statistics	94
Using Web Manager	94
Using the CLI	94
Using XML	94
USB Configuration	95
To Configure USB Settings	95
Using Web Manager	95
Using the CLI	95
Using XML	95
USB Serial Command Mode	95
To Configure USB Command Mode	96
Using Web Manager	96
Using the CLI	96
Using XML	96
Modbus	96
Serial Transmission Mode	96
Modbus Statistics	97
Modbus Configuration	97
To View and Configure the Modbus Server	97
Using Web Manager	97
Using the CLI	97
Using XML	97
SMTP	98
To Configure SMTP Settings	98
Using Web Manager	98
Using the CLI	98
Using XML	98
SNMP Settings	98
To Configure SNMP Settings	99
Using Web Manager	99
Using the CLI	99
Using XML	99
SSH	99
SSH Server: Host Keys	99
SSH Server: Authorized Users	100
SSH Client: Known Hosts	100
SSH Client: Users	101
To Configure SSH Settings	102
Using Web Manager	102
Using the CLI	102
Using XML	102
SSL	102
Credentials	102
To Create a New Credential	103
Using Web Manager	103
Using the CLI	103
Using XML	103
To Delete a Credential	103
Using Web Manager	103
Using CLI	103
Using XML	103
To Configure an SSL Credential to Use an Uploaded Certificate	104
To Configure an SSL Credential to Use a Self-Signed Certificate	105
Trusted Authorities	105
To Upload an Authority Certificate	105
To upload a trusted authority certificate:	105
CSR (Certificate Signing Request)	106
Syslog	107
To Configure Syslog Settings	107
Using Web Manager	107
Using CLI	107
Using XML	107
System	108
To access System settings:	109
Using Web Manager	109
Using the CLI	109
Using XML	109
Terminal	109
To Configure the Terminal Network Connection	110
Using Web Manager	110
Using the CLI	110
Using XML	110
To Configure the Terminal Line Connection	110
Using Web Manager	110
Using the CLI	110
Using XML	111
Tunnel	111
Tunnel Statistics	111
To View Tunnel Statistics	111
Using Web Manager	111
Using the CLI	111
Using XML	111
Serial Settings	111
To Configure Tunnel Serial Settings	112
Using Web Manager	112
Using the CLI	112
Using XML	112
Packing Mode	112
To Configure Tunnel Packing Mode Settings	113
Using Web Manager	113
Using the CLI	113
Using XML	113
Accept Mode	113
To Configure Tunnel Accept Mode Settings	115
Using Web Manager	115
Using the CLI	115
Using XML	115
Connect Mode	115
To Configure Tunnel Connect Mode Settings	118
Using Web Manager	118
Using the CLI	118
Using XML	118
Connecting Multiple Hosts	118
Host List Promotion	118
To promote a specific Host:	118
Disconnect Mode	119
To Configure Tunnel Disconnect Mode Settings	119
Using Web Manager	119
Using the CLI	119
Using XML	119
Modem Emulation	119
To Configure Tunnel Modem Emulation Settings	120
Using Web Manager	120
Using the CLI	120
Using XML	120
User Management	121
To Change the User Admin Password	121
Using the CLI	121
Using XML	121
XML	121
To Export Configuration	121
Using Web Manager	121
Using the CLI	122
Using XML	122
To Export Status	122
Using Web Manager	122
Using the CLI	123
Using XML	123
To Import Configuration	123
Using Web Manager	123
Using the CLI	123
Using XML	123
Quick Setup	124
To Utilize Quick Setup	124
Using Web Manager	124
Using the CLI	126
Using XML	126
A: Lantronix Technical Support	127
B: Compliance	128

Match case Limit results 1 per page

6: Network Settings

SGX 5150 IoT Device Gateway User Guide

Remote Network

Endpoint

Enter the remote VPN Gateway’s IP Address.

Subnet

Enter the subnet behind the VPN Gateway.

Enter the identifier expected to receive from the remote host during Phase 1

negotiation.

Router/Next Hop

Enter the next-hop gateway IP address for the VPN Gateway.

Local Network

Subnet

Enter the subnet the local devices have access to or can be accessed from

the VPN connection.

Enter the identifier sent to the remote host during Phase 1 negotiation.

Router/Next Hop

Enter the next-hop gateway IP address for this connection to the public

network.

Key Management

Perfect Forward Secrecy

(PFS)

Select to enable or disable the Perfect Forward Secrecy. Enabling this

feature will require IKE to generate a new set of keys in Phase 2 rather than

using the same key generated in Phase 1.

Pre-shared Key (PSK)

Enter the Pre-Shared Key used in the IPSec setting between the Local and

VPN Gateway.

ISAKMP Phase 1 (IKE)

Aggressive Mode

Select to enable or disable Aggressive Mode. In Aggressive mode, IKE tries

to combine as much information into fewer packets while maintaining

security. Aggressive mode is slightly faster but less secure.

NAT Traversal

Select to enable or disable NAT Traversal. If there is an external NAT device

between VPN tunnels, the user must enable NAT Traversal.

Encryption

Select the encryption algorithm in key exchange from the drop-down menu.

Authentication

Select the hash algorithm in key exchange from the drop-down menu.

DH Group

Select the Diffie-Hellman (DH) groups (the Key Exchange group between the

Remote and VPN Gateways) from the drop-down menu.

IKE Lifetime

Enter the number of hours for the IKE SA lifetime.

ISAKMP Phase 2 (ESP)

Encryption

Select the encryption algorithm in data exchange from the drop-down menu.

Authentication

Select the hash algorithm in data exchange from the drop-down menu.

DH Group

Select the Diffie-Hellman (DH) groups (the Key Exchange group between the

Remote and VPN Gateways) for Phase 2 from the drop-down menu.

SA Lifetime

Enter the number of hours for the SA lifetime in Phase 2.

Unreachable Host Detection

Host

Enter the unreachable detection host monitoring the connectivity with the

host on the remote network.

Ping Interval

Enter the Ping Interval to monitor connectivity with a host on the remote

network.

Max Tries

Enter the number of Max Tries for pinging the host before the VPN tunnel is

restarted.

VPN Setting

Description