Server User Manual

ManualsBrandsPerle Systems ManualsServer5500161-40

411

412

413

414

415

416

417

418

419

420

Table Of Contents

SDS/SCS/STS/MDC User’s Guide
Table of Contents
Preface
- About This Book
- Intended Audience
- Documentation
- Typeface Conventions
- Online Help
Introduction
- About the IOLAN
- IOLAN Family Models
- IOLAN Features
Hardware and Connectivity
- Introduction
- IOLAN Components
- Power Supply Specifications
- Getting to Know Your IOLAN
- Powering Up the IOLAN
Configuration Methods
- Introduction
- Configuration Methods Overview
  - Configures an IP Address
  - Requires a Configured IP Address
- Easy Config Wizard
- DeviceManager
- WebManager
- Command Line Interface
- Menu
- DHCP/BOOTP
- SNMP
- IOLAN+ Interface
Getting Started
- Introduction
- Easy Configuration Wizard
- Setting Up the Network
- Setting Up the Serial Port(s)
- Setting Up Users
Using DeviceManager and WebManager
- Introduction
- Navigating DeviceManager/WebManager
- Using DeviceManager to Connect to the IOLAN
- Using WebManager to Connect to the IOLAN
  - Logging into the IOLAN
- Configuration Files
- Managing the IOLAN
Network Settings
- Introduction
- IP Settings
- Advanced
Configuring Serial Ports
- Introduction
- Serial Ports
  - Overview
  - Functionality
- Serial Port Profiles
- Port Buffering
- Advanced
Configuring Users
- Introduction
- User Settings
  - Overview
  - Functionality
- Adding/Editing Users
Configuring Security
- Introduction
- Authentication
- SSH
- SSL/TLS
- VPN
- Services
- Keys and Certificates
Configuring I/O Interfaces
- Introduction
- Settings
- Channels
- I/O UDP
  - UDP Unicast Format
  - UDP Unicast Example
- I/O Modbus Slave
- Modbus I/O Access
- TruePort I/O
  - TruePort/Modbus Combination
  - API Over TruePort Only
- Accessing I/O Data Via TruePort
- I/O SNMP Traps
Configuring Clustering
- Introduction
- Clustering Slave List
Configuring the Option Card
- Introduction
- Option Card Settings
  - Overview
  - Functionality
- Configuring the IOLAN Modem Card
- Configuring a Wireless WAN Card
  - Overview
  - Field Descriptions
Configuring the System
- Introduction
- Alerts
  - Email Alerts
  - Syslog
- Management
Controlling the RPS, I/O Channels, and IPsec Tunnels
- Introduction
- RPS Control
- Serial Port Power Control
  - Overview
  - Field Descriptions
- I/O Channels
  - Overview
- IPsec Tunnel Control
System Administration
- Introduction
- Managing Configuration Files
- Downloading IOLAN Firmware
- Calibrating I/O
- Setting the IOLAN’s Date and Time
- Rebooting the IOLAN
- Resetting the IOLAN to Factory Defaults
- Resetting the SecurID Node Secret
- Language Support
- Downloading Terminal Definitions
  - Creating Terminal Definition Files
- Resetting Configuration Parameters
- Lost Admin Password
Applications
- Introduction
- Configuring Modbus
- Configuring PPP Dial On Demand
- Setting Up Printers
- Configuring a Virtual Private Network
RADIUS and TACACS+
- Introduction
- RADIUS
- TACACS+
SSL/TLS Ciphers
- Introduction
- Valid SSL/TLS Ciphers
Virtual Modem AT Commands
- Virtual Modem Initialization Commands
Pinouts and Cabling Diagrams
- Serial Pinouts
- Power Over Ethernet Pinouts
- EIA-232 Cabling Diagrams
  - Terminal DB25 Connector
  - Modem DB25 Connector
Setting Jumpers
- Introduction
I/O Wiring Diagrams
- Wiring I/O Diagrams
Utilities
- Introduction
- TruePort
- API I/O Access Over TruePort
  - API Request Format
  - API Response Format
- Decoder
Accessories
- Introduction
- Installing a Perle PCI Card
- Starter Kit (Adapters/Cable)
- SCS48C/SCS32C/SCS16C/SCS8C Starter Kit (Adapters/Cable)
Troubleshooting
- Introduction
- Hardware Troubleshooting
  - Power/Ready LED Labels
- Communication Issues
- DeviceManager Problems
- Host Problems
- RADIUS Authentication Problems
- Login Problems
- Problems with Terminals
- Unknown IP Address
- DHCP/BOOTP Problems
- Callback Problems
- Language Problems
- Modem Problems
- PPP Problems
- Printing Problems
- Long Reboot Cycle
- SSL/TLS
- I/O Models
- IPv6 Issues
- Contacting Technical Support
  - Making a Technical Support Query
  - Repair Procedure
  - Feedback on this Manual
Glossary
Index

Troubleshooting 415

SSL/TLS

If you are experiencing problems obtaining a successful SSL/TLS connection, you can set your

Syslog Level to Notice and view the syslog for the following messages:

Line not SSL enabled. Abort connection when a user who is configured for Service SSL_RAW

tries to login on the serial port.

The user has been configured for an SSL_RAW connection, but the line has not been configured to

enable SSL. To resolve this, either enable the line for SSL or change the user's

Service to

TCP_CLEAR if SSL is not wanted.

Could not obtain peer's certificate.

z User has selected a cipher key exchange of ADH (anonymous Diffie-Hellman) and enabled Peer

verification. ADH does not use certificates so they will not be sent in an SSL/TLS handshake.

Disable Peer Verification or change to a cipher suite that uses certificates.

z User has selected Peer Verification on the configured SSL/TLS server and has not configured a

certificate for the client. Either disable peer verification on the SSL/TLS server or configure a

certificate for the SSL/TLS client.

SSL_accept failed on the SSL/TLS server device.

z The device has failed to accept an SSL/TLS connection on top of a TCP connection that has just

been established. This could indicate that the peer from which TruePort is trying to accept a

connection from is not configured for SSL/TLS. Verify that the peer has been configured for an

SSL/TLS client connection.

Certificate did not match configuration

z The message is displayed when Validate Peer Certificate has been enabled, but the configured

Validation Criteria does not match the corresponding data in the certificate received from the

peer. The data configured must match exactly to the data in the certificate. The data is also case

sensitive.

unknown protocol message when trying to make an SSL/TLS connection

z This will be displayed when both sides of the TCP connection are configured as SSL/TLS

clients. Change one of the end points to act as an SSL/TLS server.

z One of the endpoints is not configured for SSL/TLS. Make sure both endpoints are configured

for SSL/TLS, verify that one is a client and the other is a server.

tlsv1 alert handshake failure or sslv3 alert handshake failure

z The remote site has an SSL/TLS error and is sending this message with an alert message. Look at

the error messages on the remote end and fix the problem indicated.

I/O Models

An I/O Digital or Relay controlled motor is starting/stopping

z Digital and Relay channels have automatically resetting fuses, meaning that if the circuit gets

overloaded and the fuse blows, it will automatically reset when the circuit cools down.

An A4R2 model is starting/stopping

z The A4R2 model can run at 55 degrees Celsius ambient temperature when the input voltage is

22VDC or below. If the input voltage exceeds 22VDC, the maximum ambient temperature will

drop into the range of 45-50 degrees Celsius to run successfully.