Device Port Settings

In the Device Ports - Settings page, configure IP and data (serial) settings for individual ports, and if the port connects to an external modem, configure modem settings as well.  

To enter device port settings:

  1. Enter or view the following:

IP Settings

Data Settings

Hardware Signal Triggers

Modem Settings

Modem Settings: Text Mode

Modem Settings: PPP Mode

Port Counters

 

Port

Displays the port number.

Mode

The status of the port; displays automatically.

Name

The name of the port. Valid characters are letters, numbers, dashes (-), periods and underscores ( _ ).

Group Access

If undefined, any group can access the device port. If one or more groups are specified (groups are delimited by the characters ',' (comma) or ';' (semicolon)), then any user who logs into the device port must be a member of one of the specified groups, otherwise access will be denied. Users authenticated via RADIUS may have a group (or groups) provided by the RADIUS server via the Filter-Id attribute that overrides the group defined for a user on the SLC or SLB unit. A group provided by a remote server must be either a single group or multiple groups delimited by the characters ',' (comma), ';' (semicolon), or '=' (equals) - for example "group=group1,group2;" or "group1,group2,group3".

Banner

Text to display when a user connects to a device port by means of Telnet, SSH, or TCP. If authentication is enabled for the device port, the banner displays once the user successfully logs in. Blank is the default.

Break Sequence

A series of one to ten characters users can enter on the command line interface to send a break signal to the external device. A suggested value is Esc+B (escape key, then uppercase “B” performed quickly but not simultaneously). You would specify this value as \x1bB, which is hexadecimal (\x) character 27 (1B) followed by a B.

View Port Log Seq

The key sequence used to view the Port Log while in Connect Direct mode. Non-printing characters can be specified by giving their hexidecimal code (see Break Sequence above). The default is Esc+V.

View Port Log

Select to allow the user to enter the View Port Log Sequence to view the Port Log during Connect Direct mode. The default is disabled.

Zero Port Counters

Resets all of the numerical values in the Port Counters table at the bottom of the page to zero (0).

Logging

Click the Settings link to configure file logging, email logging, local logging, and PC Card logging.

Connected to

The type of device connected to the device port. Currently, the SLC or SLB unit supports Lantronix's Secure Lantronix Remote Power Manager (SLP8 and SLP16), ServerTech CDUs and Sensorsoft devices. If the type of device is not listed, select undefined.

If you select SLP or ServerTech CDU and click Device Commands, the Device Ports - SLP / ServerTech CDU web page displays.  If you select Sensorsoft and click Device Comands, the Device Ports - Sensorsoft web page displays.

IP Settings

Telnet In

Enables access to this port through Telnet. Disabled by default.

SSH In

Enables access to this port through SSH. Disabled by default.

TCP In

Enables access to this port through a raw TCP connection. Disabled by default.

Port

Automatically assigned Telnet, SSH, and TCP port numbers. You may override this value, if desired.

Authentication

If selected, the SLC requires user authentication before granting access to the port. Authenticate is selected by default for Telnet and SSH, but not for TCP.

Timeout

Select the checkbox to cause an idle Telnet, SSH or TCP connection to disconnect after a specified number of seconds as defined in the Seconds field to the right.  The default is 600 seconds.

Seconds

Enter a value from 1 to 1800 seconds if selecting the Timeout checkbox to the left.

IP Address/
Netmask Bits

IP address used for this device port so a user can Telnet, SSH, or establish a raw TCP connection to this address and connect directly to the device port. The optional netmask bits specify the netmask to use for the IP address. For example, for a netmask of 255.255.255.0 specify 24 bits. If the netmask bits are not specified, a default netmask used for the class of network that the IP address falls in will be used.

For Telnet and SSH, the default TCP port numbers (22 and 23, respectively) are used to connect to the device port. For raw TCP, the TCP port number defined for TCP In to the device port is used.

Note that if Ethernet Bonding is enabled, assigning individual IP Addresses to Device Ports is not supported. Note that the IP address will be bound to Eth1 only, so if Eth2 is connected and configured, and Eth1 is not, this feature will not work.

Data Settings

Note:  Check the serial device’s equipment settings and documentation for the proper settings. The device port and the attached serial device must have the same settings.

Baud

The speed with which the device port exchanges data with the attached serial device. From the drop-down list, select the baud rate. Most devices use 9600 as the terminal/administration port, so the device port defaults to this value. Check the equipment settings and documentation for the proper baud rate.

Data Bits

Number of data bits used to transmit a character. From the drop-down list, select the number of data bits. The default is 8 data bits.

Stop Bits

The number of stop bit(s) used to indicate that a byte of data has been transmitted. From the drop-down list, select the number of stop bits. The default is 1.

Parity

Parity checking is a rudimentary method of detecting simple, single-bit errors. From the drop-down list, select the parity. None is the default.

Flow Control

A method of preventing buffer overflow and loss of data. The available methods include none, xon/xoff (software), and  RTS/CTS (hardware). The default is none.

Enable Logins

For serial devices connected to the device port, displays a login prompt and authenticates users. Successfully authenticated users are logged into the command line interface. Disabled is the default and is the correct setting if the device port is the endpoint for a connection.

Max Direct Connects

Enter the maximum number (1-10) of simultaneous connections for the device port. The default is 1.

Show Lines on Connecting

If Yes is selected, when the user either does a connect direct from the CLI or connects directly to the port using Telnet or SSH, the SLC or SLB unit outputs lines that it output before the user made the connection. The number of lines output is specified in the Yes, # of lines field.

For example, an SLC or SLB device issues a connect direct device 1 command to connect port 1 to a Linux server.

Then the SLC or SLB unit user gets a directory with the ls command exits the connection. When the SLC user issues another direct connect device 1”,  the output of the ls command (or some portion of it) is output again, so the user can know what state the server was left in.

Hardware Signal Triggers

Check

DSR on Connect

If this setting is enabled, the device port only establishes a connection if DSR (Data Set Ready) transitions to an asserted state. Disabled is the default unless dial-in, dial-out, or dial-back is enabled for the device port.

Disconnect on DSR

If a connection to a device port is currently in session, and the DSR signal transitions to a de-asserted state, the connection disconnects immediately. Disabled is the default unless dial-in, dial-out, or dial-back is enabled for the device port.

Modem Settings

Note: Depending on the State and Mode you select, the availability of subsequent fields differs.

State

Indicates whether an external modem is attached to the device port. If enabling, set the modem to dial-out, dial-in, dial-back, CBCP server, CBCP client, dial-on-demand, dial-in & dial-on-demand, dial-back & dial-on-demand, or dial-in/host list. Disabled by default. For more information on the different dialing types, see Modem Dialing States and Options.

Mode

The format in which the data flows back and forth:

Text: In this mode, the SLC or SLB unit assumes that the modem will be used for remotely logging into the command line. Text mode can only be used for dialing in or dialing back. Text is the default.

PPP: This mode establishes an IP-based link over the modem. PPP connections can be used for dial-out (e.g., the SLC or SLB device connects to an external network), dial-in (e.g., the external computer connects to the network that the SLC or SLB unit is part of), dial-back (dial-in followed by dial-out), dial-on-demand, CBCP server or CBCP client.

Use Sites

Enables the use of site-oriented modem parameters which can be activated by various modem-related events (authentication, outbound network traffic for dial-on-demand connections, etc.). Sites can be used with the following modem states: dial-in, dial-back, dial-on-demand, dial-in & dial-on-demand, dial-back & dial-on-demand, and CBCP server.

For more information see Sites.

Initialization Script

Commands sent to configure the modem may have up to 100 characters. Consult your modem’s documentation for recommended initialization options. If you do not specify an initialization script, the SLC uses a default initialization string of AT S7=45  SO=0  L1  V1  X4  &D2  &c1  E1  Q0.

Note: We recommend that the modem initialization script always be pre-pended with AT and include E1 V1 x4 Q0 so that the SLC or SLB unit may properly control the modem.

Modem Timeout

Timeout for all modem connections. Select Yes, seconds (1-9999) (default) for the SLC or SLB device to terminate the connection if no traffic is received during the configured idle time. Enter a value of from 1 to 9999 seconds. The default is 30 seconds.

Caller ID Logging

Select to enable the SLC or SLB unit to log caller IDs on incoming calls. Disabled by default.

Note: For the Caller ID AT command, refer to the modem user guide.

Modem Command

Modem AT command used to initiate caller ID logging by the modem.

Note: For the AT command, refer to the modem user guide.

Dial-Back Number

Users with dial-back access can dial into the SLC or SLB device and enter their login and password. Once the SLC or SLB unit authenticates them, the modem hangs up and dials them back.

Select the phone number the modem dials back
on -a fixed number or a number associated with their login. If you select Fixed Number, enter the number (in the format 2123456789).

The dial-back number is also used for CBCP client as the number for a user-defined number. See Modem Dialing States and Options for more information.

Dial-Back Delay

For dial-back and CBCP Server, the number of seconds between the dial-in and dial-out portions of the dialing sequence.

Dial-Back Retries

For dial-back and CBCP Server, the number of times the SLC or SLB unit will retry the dial-out portion of the dialing sequence if the first attempt to dial-out fails.

Modem Settings: Text Mode   

Timeout Logins

If you selected Text mode, you can enable logins to time out after the connection is inactive for a specified number of minutes. The default is No. This setting is only applicable for text mode connections. PPP mode connections stay connected until either side drops the connection. Disabled by default.

Dial-In Host List

From the drop-down list, select the desired host list. The host list is a prioritized list of SSH, Telnet, and TCP hosts that are available for establishing outgoing modem connections or for connect direct at the CLI. The hosts in the list are cycled through until the SLC or SLB unit successfully connects to one.

To establish and configure host lists, click the Host Lists link.

Modem Settings:  PPP Mode

Negotiate IP Address

If the SLC or SLB unit and/or the serial device have dynamic IP addresses (e.g., IP addresses assigned by a DHCP server), select Yes. Yes is the default.

If the SLC or SLB unit or the modem have fixed IP addresses, select No, and enter the local IP (IP address of the port) and remote IP (IP address of the modem).

Authentication

Enables PAP or CHAP authentication for modem logins. PAP is the default. With PAP, users are authenticated by means of the Local Users and any of the remote authentication methods that are enabled. With CHAP, the CHAP Handshake fields authenticate the user.

CHAP Handshake

The host/secret (for UNIX systems) or user/password (for Windows systems) used for CHAP authentication. May have up to 128 characters.

CHAP Auth Uses

For CHAP authentication, determines what is used to validate the CHAP host/user sent by the remote peer: either the CHAP Host defined for the modem, or any of the users in the Local Users list.

Same authentication for Dial-in & Dial-on-Demand (DOD)

Select this option to let incoming connections (dial-in) use the same authentication settings as outgoing connections (dial-on-demand). If this option is not selected, then the dial-on-demand connections take their authentication settings from the DOD parameter settings. If DOD Authentication is PAP, then the DOD CHAP Handshake field is not used.

DOD Authentication

Enables PAP or CHAP authentication for dial-in & dial-on-demand. PAP is the default. With PAP, users are authenticated by means of the Local Users and any of the remote authentication methods that are enabled. With CHAP, the DOD CHAP Handshake fields authenticate the user.

DOD CHAP Handshake

For DOD Authentication, enter the host/username for UNIX systems) or secret/user password (for Windows systems) used for CHAP authentication. May have up to 128 characters.

Enable NAT

Select to enable Network Address Translation (NAT) for dial-in and dial-out PPP connections on a per modem (device port or PC Card) basis. Users dialing into the SLC or SLB unit access the network connected to Eth1 and/or Eth2.

Note: IP forwarding must be enabled on the Network - Settings page for NAT to work.

Dial-out Number

Phone number for dialing out to a remote system or serial device. May have up to 20 characters. Any format is acceptable.

Remote/Dial-out Login

User ID for authentication when dialing out to a remote system, or if a remote system requests authentication from the SLC or SLB device when it dials in. May have up to 32 characters.

Remote/Dial-out Password/ Retype

Password for authentication when dialing out to a remote system, or if a remote system requests authentication from the SLC or SLB unit when it dials in. May have up to 64 characters.

Restart Delay

The number of seconds after the timeout and before the SLC attempts another connection. The default is 30 seconds.

CBCP Server Allow No Callback

For CBCP Server state, allows "No Callback" as an option in the CBCP handshake in addition to User-defined Number and Admin-defined Number.

CBCP Client Type

For CBCP Client, this selects the number that the client would like to use for callback - either a user-defined number passed to the server (specified by the Fixed Dial-back Number) or an administrator-defined number determined by the server based on the login that is PAP or CHAP authenticated.

  1. To save settings for just this port, click Apply.

  2. To save selected settings to ports other than the one you are configuring:

a) From the Apply Settings drop-down box, select none, a group of settings, or All.

b) In to Device Ports, type the device port numbers, separated by commas; indicate a range of port numbers with a hyphen (e.g., 2, 5, 7-10).

Note: It may take a few minutes for the system to apply the settings to multiple ports.

To view port status and counters:

Port Counters describe the status of signals and interfaces.  The SLC or SLB unit updates and increments them as signals change and data is sent in and out of the system.  These counters can be used to help troubleshoot connections or diagnose problems because they give the user an overview of the state of various parameters. By setting them to zero and then re-checking them at a later time, the user can view changes in status.

The chart in the middle of the page displays the flow control lines and port statistics for the device port. The system automatically updates these values. To reset them to zeros, select the Zero port counters checkbox in the IP Settings section of the page..

Note:  Status and statistics shown on the web interface represent a snapshot in time. To see the most recent data, reload the web page.


Modem Dialing States and Options

This section describes the modem states and the options that are used for each modem state. For a description of modem states that can be used with sites, see Sites.

Dial-in - The SLC or SLB unit waits for a peer to call the SLC or SLB device to establish a text (command line) or PPP connection.

Dial-out - The SLC or SLB unit dials a remote peer to establish a PPP connection. The SLC or SLB device dials the Dial-out Number, and if the remote peer requests PAP or CHAP authentication, provides the Remote/Dial-out Login and Remote/Dial-out Password as authentication tokens. Once authenticated, a PPP session will be established using either negotiated IP addresses or specific IP addresses (determined by the Negotiate IP Address setting).

Dial-back - The SLC or SLB unit waits for a peer to call the device, establishes a text (command line) or PPP connection, authenticates the user, and if the SLC or SLB unit is able to determine a dial-back number to use, hangs up and calls the dial-back number to establish either a text or PPP connection.

Dial-on-demand - The SLC or SLB device automatically dial outs and establishes a PPP connection when IP traffic destined for a remote network needs to be sent. It will remain connected until no data packets have been sent to the peer for a specified amount of time. The modem cannot be configured for Negotiate IP Address - it must be configured with a Local IP and a Remote IP as the PPP connection will be established when it sees IP traffic destined for the Remote IP. When this occurs, the SLC or SLB unit dials the Dial-out Number, and if the remote peer requests PAP or CHAP authentication, provides the Remote/Dial-out Login and Remote/Dial-out Password as authentication tokens. Once authenticated, a PPP session will be established using the Local IP and the Remote IP. The PPP connection will stay active until no IP traffic for the Remote IP is sent for Modem Timeout seconds. Once the timeout has expired, the PPP connection will be terminated and will not be reestablished for at least Restart Delay seconds.

Dial-in & Dial-on-demand - A modem is configured to be in two modes: answering incoming calls to establish a PPP connection, and automatically dialing out to establish a PPP connection when IP traffic destined for a remote network needs to be sent. When either event occurs (an incoming call or IP traffic destined for the remote network), the other mode will be disabled. The modem cannot be configured for Negotiate IP Address - it must be configured with a Local IP and a Remote IP as the PPP connection will be established when it sees IP traffic destined for the Remote IP.

Dial-back & Dial-on-demand - A modem is configured to be in two modes: answering incoming calls to initiate a dial-back, and automatically dialing out to establish a PPP connection when IP traffic destined for a remote network needs to be sent. When either event occurs (an incoming call or IP traffic destined for the remote network), the other mode will be disabled. The modem cannot be configured for Negotiate IP Address - it must be configured with a Local IP and a Remote IP as the PPP connection will be established when it sees IP traffic destined for the Remote IP.

Dial-in/Host List - The SLC waits for a peer to call and establishes a text (command line) connection to the first host in a Host List that connects. A host list of a prioritized list of SSH, Telnet or raw TCP hosts to connect to. If Authentication is enabled for the Host List, the user will be prompted for a login and password, and will be authenticated via the currently enabled authentication methods (Local Users, NIS, LDAP, etc). Once authenticated, the SLC will try to connect to each host in the host list until a successful connection is established.

CBCP Server and CBCP Client - Callback Control Protocl (CBCP) is a PPP option that negotiates the use of callback where the server, after authenticating the client, terminates the connection and calls the client back at a phone number that is determined by the CBCP handshake. For more information on CBCP, see http://technet.microsoft.com/en-us/library/cc957979.aspx. CBCP is used primarily by Microsoft PPP peers. CBCP supports two options for determining the number to dial on callback: the client can specify a user-defined number for the server to dial on callback, or the client can request the server use an administrator-defined number to dial on callback. Optionally, some servers may also allow "no callback" as an option.

CBCP Server - The SLC or SLB unit waits for a client to call the it, establish a PPP connection, authenticate the user, and negotiate a dial-back number with the client using CBCP. If the SLC or SLB unit is able to determine a dial-back number to use, it hangs up and calls the dial-back number.

When a call is received, a PPP connection is established, and the user will be authenticated via PAP or CHAP (configured with the Authentication setting). For PAP, the Local/Remote list will be used to authenticate the login and password sent by the PPP peer. For CHAP, the CHAP Handshake Host/User Name and Secret/User Password will be used to authenticate CHAP Challenge response sent by the PPP peer. If the remote peer requests PAP or CHAP authentication from the SLC or SLB unit , the Remote/Dial-out Login and Remote/Dial-out Password will be provided as authentication tokens. Once authenticated, the CBCP handshake with the client determines the number to use for dial-back. The SLC or SLB device will present the client with the available options: if the authenticated user is a Local/Remote User with Allow Dial-back enabled and a Dial-back Number defined, the administrator-defined option is allowed; if this is not the case, the user-defined number is allowed. Additionally, if CBCP Server Allow No Callback is enabled, the client can also select no callback (the PPP connection established at dial-in will remain up). The client will select from the available callback options. If the SLC or SLB unit can determine a dial-back number to use, it will hang up and wait Dial-back Delay seconds before initiating the dial-back (if the dial-back fails, the SLC will try Dial-back Retries times to dial-back). The SLC or SLB device will call back the previously authenticated remote peer, and if the remote peer requests PAP or CHAP authentication, provide the Remote/Dial-out Login and Remote/Dial-out Password as authentication tokens. Once authenticated, a PPP session will be established using either negotiated IP addresses or specific IP addresses (determined by the Negotiate IP Address setting).

CBCP Client - The SLC or SLB unit will dial out to a CBCP server, establish a PPP connection, negotiate a callback number with the server using CBCP, terminate the connection, and wait for the server to call back. The SLC or SLB device dials the Dial-out Number, and if the remote peer requests PAP or CHAP authentication, provides the Remote/Dial-out Login and Remote/Dial-out Password as authentication tokens. Once authenticated, the CBCP handshake with the server determines the number to use for dial-back. The SLC or SLB device will request the type of number defined by CBCP Client Type - either an Admin-defined Number (the CBCP server determines the number to call) or a User-defined Number (the SLC or SLB unit will provide the Fixed Dial-back Number as the number to call). If the CBCP handshake is successful, the SLC or SLB unit will terminate the PPP connection, hang up, and wait for the server to dial back. When the remote server calls back the SLC or SLB unit and the PPP connection is established, the user will be authenticated via PAP or CHAP (configured with the Authentication setting). For PAP, the Local/Remote list will be used to authenticate the login and password sent by the PPP peer. For CHAP, the CHAP Handshake Host/User Name and Secret/User Password will be used to authenticate CHAP Challenge response sent by the PPP peer. Once authenticated, a PPP session will be established using either negotiated IP addresses or specific IP addresses (determined by the Negotiate IP Address setting).

Notes:


See also

Device Ports-SLP / ServerTech CDU

Device Ports-Logging Overview

Device Ports-Logging

Device Ports