SGX 5150 IoT Device Gateway User Guide Part Number 900-776-R Revision A October 2016
Intellectual Property © 2016 Lantronix, Inc. All rights reserved. No part of the contents of this publication may be transmitted or reproduced in any form or by any means without the written permission of Lantronix. Lantronix is a registered trademark of Lantronix, Inc. in the United States and other countries. DeviceInstaller is a trademark of Lantronix, Inc. Patented: http://patents.lantronix.com; additional patents pending. Wi-Fi is a registered trademark of the Wi-Fi Alliance Corporation.
Open Source Software Some applications are Open Source software licensed under the Berkeley Software Distribution (BSD) license, the GNU General Public License (GPL) as published by the Free Software Foundation (FSF), and the Python Software Foundation (PSF) License Agreement for Python 2.7.6 (Python License). Lantronix grants you no right to receive source code to the Open Source software. Your use of each Open Source component or software is subject to the terms of the applicable license.
Table of Contents Intellectual Property ________________________________________________________ 2 Warranty _________________________________________________________________ 2 Contacts _________________________________________________________________ 2 Disclaimer ________________________________________________________________ 2 Open Source Software ______________________________________________________ 3 Revision History ___________________________________________________________ 3 List of Figures ________
Installing the SGX 5150 ____________________________________________________ 27 Optional SGX 5150 Bracket _________________________________________________ 29 Wireless Quick Connect ____________________________________________________ 30 4: Using DeviceInstaller 31 Installing DeviceInstaller ____________________________________________________ 31 Accessing the SGX 5150 Using DeviceInstaller __________________________________ 31 Next Step ____________________________________________________________ 33 5:
QoS Statistics and Configuration __________________________________________ 55 To View and Configure Wired Network (USB) QoS Settings _____________________ 56 Wired (usb0) Network Failover ____________________________________________ 56 To View and Configure Wired (USB0) Network Failover Settings _________________ 57 Protocol Stack ____________________________________________________________ 57 IP Settings ___________________________________________________________ 57 To Configure IP Protocol Stack Settings
Traceroute _______________________________________________________________ 73 To Perform a Traceroute ________________________________________________ 73 9: Administration 74 Actions _________________________________________________________________ 74 To Configure Action Settings _____________________________________________ 75 Python ______________________________________________________________ 76 Applications ______________________________________________________________ 77 To Configure Application Se
To Configure HTTP Authentication _________________________________________ 92 Line ____________________________________________________________________92 Line Status and Configuration ____________________________________________ 92 To View and Configure Line Configuration and Command Mode _________________ 94 USB ____________________________________________________________________94 USB Statistics _________________________________________________________ 94 To View USB Statistics ___________________________
Tunnel Statistics ______________________________________________________ 111 To View Tunnel Statistics _______________________________________________ 111 Serial Settings _______________________________________________________ 111 To Configure Tunnel Serial Settings _______________________________________ 112 Packing Mode ________________________________________________________ 112 To Configure Tunnel Packing Mode Settings ________________________________ 113 Accept Mode ____________________________________
List of Figures Figure 2-1 Serial/USB/Ethernet to Wi-Fi Connectivity_____________________________________ 18 Figure 2-2 Ethernet to Wi-Fi Bridge __________________________________________________ 18 Figure 2-3 Product Label __________________________________________________________ 21 Figure 3-1 Front Panel ____________________________________________________________ 23 Figure 3-3 Back Panel_____________________________________________________________ 23 Figure 3-12 Wi-Fi Protected Setup ___________________
List of Tables Table 3-2 SGX 5150 LEDs and Descriptions __________________________________________ 23 Table 3-4 Serial RJ45 Connector Pinout and LEDs _____________________________________ 24 Table 3-5 USB Type C Connector Pinout _____________________________________________ 24 Table 3-6 Power Input Interface ____________________________________________________ 25 Table 3-7 Ethernet RJ45 Connector Pinout ___________________________________________ 25 Table 3-8 Left Ethernet LED ______________________________
Table 7-2 File Transfer Settings ____________________________________________________ 67 Table 8-1 DNS Settings __________________________________________________________ 69 Table 8-2 Log Settings ___________________________________________________________ 71 Table 8-3 Ping Configuration ______________________________________________________ 71 Table 8-4 Traceroute Settings______________________________________________________ 73 Table 9-1 Action Settings ____________________________________________________
Table 9-34 SSH Client Known Hosts _______________________________________________ 101 Table 9-35 SSH Client Users _____________________________________________________ 101 Table 9-36 SSL Credential - Upload Certificate _______________________________________ 103 Table 9-37 SSL Credential - Create New Self-Signed Certificate__________________________ 104 Table 9-38 SSL Trusted Authority__________________________________________________ 105 Table 9-39 SSL CSR (Certificate Signing Request) ____________________
1: Using This Guide Purpose and Audience This document provides information needed to configure, use, and update the Lantronix® SGX 5150 IoT device gateway. It is intended for system integrators who are configuring this product. Summary of Chapters The remaining chapters in this guide include: Chapter Description 2: Introduction Describes main features of the product and the protocols it supports. Includes technical specifications.
1: Using This Guide Document (continued) Description DeviceInstaller Utility Online Help Instructions for using the Windows® operating system-based utility to locate the device and to view its current settings. Com Port Redirectory Quick Start and Online Help Instructions for using the Windows operating system-based utility to create virtual com ports. Secure Com Port Redirector User Guide Instructions for using the Windows operating system-based utility to create secure virtual com ports.
2: Introduction The SGX 5150 is a turnkey WLAN IoT device gateway that securely connects deployed devices to the enterprise network through serial, USB or Ethernet interfaces. It simplifies enterprise Wi-Fi® deployments and accelerates the availability of connected devices within enterprise, medical/ healthcare and industrial automation applications.
2: Introduction • U-NII-2e (5.47 – 5.725 GHz) Channels 100 – 140 • U-NII-3 (5.725 – 5.825 GHz) Channels 149 - 165 Serial Ports: Two 300 to 921 kbaud with options of RS-232 serial ports or multi-protocol RS232/422/485 serial ports. USB Ports: One USB 2.0 high speed interfaces via USB type C connector. Configuration via CLI, XML and HTTP. Ethernet to wireless tunneling. Built-in site survey tool. Temperature Range: Operates over a temperature range of -40°C to +70°C (-40°F to 158°F).
2: Introduction SGX 5150 User Cases Figure 2-1 Serial/USB/Ethernet to Wi-Fi Connectivity Figure 2-2 Ethernet to Wi-Fi Bridge SGX 5150 IoT Device Gateway User Guide 18
2: Introduction Protocol Support The SGX 5150 contains a full-featured IP networking and wireless software stack: DHCP Client, DHCP Server, DHCPv6 Client uPnP (Discovery), LCAP (77FE), Telnet, SSH, SSLv3/TLSv1, (S)FTP, HTTP(S) IPv4/IPv6, TCP, UDP, ICMP, ARP, Auto-IP, DNS, SNMP v2/v3 WPA/WPA2 Personal, WPA2 Enterprise (EAP-TLS, EAP-TTLS, EAP-PEAPv0/v1, EAPFAST) Troubleshooting Capabilities The SGX 5150 offers a comprehensive diagnostic tool set that lets you troubleshoot problems quickly and
2: Introduction Addresses and Port Numbers Hardware Address The hardware address is also referred to as the Ethernet address, physical address, or MAC address. The first three bytes of the Ethernet address are fixed and identify the unit as a Lantronix product. The fourth, fifth, and sixth bytes are unique numbers assigned to each unit.
2: Introduction Figure 2-3 Product Label SGX 5150 IoT Device Gateway User Guide 21
3: Installation of the SGX 5150 This chapter describes how to install the SGX 5150 device gateway. It contains the following sections: Package Contents User-Supplied Items Hardware Components Installing the SGX 5150 Package Contents The SGX 5150 package includes the following items: SGX 5150 IoT device gateway 2 external antennas with RP-SMA connectors Type A to type C USB cable Note: This cable is compliant to the specification mandated 56k Ω pull-up.
3: Installation of the SGX 5150 Hardware Components Front Panel Figure 3-1 Front Panel Table 3-2 SGX 5150 LEDs and Descriptions LED Description Status No IP obtained from eth0 network: L, L, S, S, S No IP obtained from wlan0 network: L, L, L, S, S, S No IP obtained from the usb0 network: L, L, L, L, L, S No eth0 link: L, L, S, S No wlan link: L, L, L, S, S No usb0 link: L, L, L, L, L, S, S WLAN The wlan indicator light and color pattern indicates the wlan status according to Table 3-10 a
3: Installation of the SGX 5150 Note: Multi-protocol ports come with configurable terminations 120 ohm on TX+/- and RX+/-. Table 3-4 Serial RJ45 Connector Pinout and LEDs Pin Number Signal Name for RS-232 Signal Name for RS-422/485 (4 wire) 1 RTS (output from SGX) TX+ (output from SGX) 2 DTR (output from SGX) Not used/do not connect. 3 TXD (output from SGX) TX- (output from SGX) 4 GND GND 5 GND GND 6 RXD (input to SGX) RX+ (input to SGX) 7 DCD (input to SGX) Not used/do not connect.
3: Installation of the SGX 5150 Power Table 3-6 Power Input Interface Power Input Description Barrel Connector USB Type C Connector Ethernet PoE RJ45 Connector Power Consumptions Center contact fork type for better grip 9-30 VDC Input with center = (+) Reverse polarity protection up to 30 VDC USB VBUS 5V powering (default setting) SGX can provide VBUS 5V 0.
3: Installation of the SGX 5150 Table 3-9 Right Ethernet LED Color/Status Blinking Light Green Link Up OFF No Link The Ethernet port can conect to an Ethernet (10 Mbps) or fast Ethernet (100 Mbps) network. Table 3-10 WLAN Signal Strength Indicator at 2.
3: Installation of the SGX 5150 Table 3-13 WPS Status Indicator The WLAN link LED is used to indicate WPS status. See below for blink patterns. WPS Status Blink Pattern WPS is enabled and on Short, continuous WPS has a profile error Long, long, long, short, short, 2 seconds off, continuous WPS has a timeout error Long, long, long, short, short, short, short, 2 seconds off, continuous Notes: For Table 3-11 above, a “long” blink is 0.7 seconds of light followed by 0.3 seconds of no light.
3: Installation of the SGX 5150 3. Mount or place the device securely. 4. Supply power to the SGX 5150 and connect it to the user device by using the supplied tape A to type C USB cable. As soon as you plug the device into power, the device powers up automatically, the self-test begins, and LEDs would indicate the device's status. Note: The SGX 5150 supports a power range of 9 to 30 VDC and can be powered up via the barrel-power adapter or USB port. 5.
3: Installation of the SGX 5150 Optional SGX 5150 Bracket A bracket accessory for securing the SGX 5150 IoT device gateway can be purchased at the Lantronix Online Store at https://store.lantronix.com/ or by calling Lantronix Sales at 800-4227055.
3: Installation of the SGX 5150 Wireless Quick Connect Continue with these steps for Wireless Quick Connect after installing the SGX 5150 IoT device gateway. 1. From your Wi-Fi device, connect to SSID SGX5150_*, where * is your gateway 12-digit serial number. 2. From your browser, connect to 192.168.0.1 using these login credentials: User ID = admin Password = PASS Note: For security purposes, please change the admin password during initial setup. 3.
4: Using DeviceInstaller This chapter covers the steps for getting the SGX 5150 unit online and for viewing its current configuration though the Lantronix DeviceInstaller application. DeviceInstaller is a free utility program that discovers, configures, upgrades, and manages Lantronix devices. It can be downloaded from the Lantronix website at www.lantronix.com/support/downloads.
4: Using DeviceInstaller Table 4-1 SGX 5150 Configuration in DeviceInstaller Current Settings Name DHCP Device Name Description Configurable field. A name that identifies the SGX 5150 unit. The name field is blank by default. Double-click the field, type in the value, and press Enter to complete. This name is not visible on other PCs or laptops using DeviceInstaller. Non-configurable field. Displays the name associated with SGX 5150 unit’s current IP address, if the IP address was obtained dynamically.
4: Using DeviceInstaller Current Settings Description Gateway Non-configurable field. Displays the SGX 5150 unit’s current gateway. To change the default gateway, click the Assign IP button on the DeviceInstaller menu bar. Interfaces Non-configurable field. Displays the status of the wired (eth0) and wireless (wlan0) interfaces. Click the plus icon to expand eth0 or wlan0 and see specific interfaces organized beneath each. Number of Serial Ports Non-configurable field.
5: Configuration Using Web Manager This chapter describes how to configure the SGX 5150 unit using Web Manager, the Lantronix browser-based configuration tool. The device’s configuration is stored in non-volatile memory and is retained across device reset and during loss of power to the device. All changes take effect immediately, unless otherwise noted.
5: Configuration Using Web Manager Status Page This page appears upon logging into Web Manager and when you click the Status tab.
5: Configuration Using Web Manager Figure 5-2 Status Page (Section 2 of 2) SGX 5150 IoT Device Gateway User Guide 36
5: Configuration Using Web Manager Web Manager Components The layout of a typical Web Manager page is below. Figure 5-3 Components of the Web Manager Page Header Menu Bar Status and/or Configuration Area Web Manager pages have these sections: The Status, Network, Diagnostics and Administration tabs located in the header at the top of the page provide direct access to each Web Manager page of the same name. All the functionality is accessible through Web Manager and is divided between these tab/pages.
5: Configuration Using Web Manager Navigating Web Manager The table below provides a shortcut to the various software features available for viewing and configuration through Web Manager. Table 5-5 Web Manager Pages Web Manager Page Description Page Status Shows product information, network, line, and tunneling settings. 35 Access Point Allows you to configure an access point and shows the current operational state of existing access points.
5: Configuration Using Web Manager Web Manager Page Description Protocol Stack Lets you perform lower level network stack-specific activities. 57 QuickConnect Lets you change configuration settings for the Quick Connect. 62 Quick Setup Shows the quick setup configuration options for the device. 124 Routes Shows the current system routing table. 72 Threads Shows thread ID numbers, names and CPU usage. 73 Traceroute Shows how to perform a traceroute to a network host.
6: Network Settings Network settings for the SGX 5150 can be viewed and modified under the Network tab in the Web Manager user interface. This chapter describes the following network settings: Access Point Bridge Wired (eth0) Network Wireless (wlan0) Network Wired (usb0) Network Protocol Stack VPN Wi-Fi Protected Setup WLAN Scan/QuickConnect WLAN Profiles Access Point Configure software-enabled access point interface on this page.
6: Network Settings Using XML Include in your file: Bridge The SGX 5150 bridges traffic between an Ethernet and WLAN interface. For example, br0 is a bridge between eth0 and wlan0. When a bridge is enabled, the Wired (eth0) Network configuration is used for configuring direct connections into the device over the primary interface; the Wireless (wlan0) Network configuration is ignored.
6: Network Settings Bridge Status and Configuration View-only status information on the Bridge1 (br0) Status page displays whether bridging is currently enabled, active, and the following (if any): Ethernet link, WLAN link, primary interface, bridging MAC, Ethernet MAC, WLAN MAC, bridging IP address, and bridging IPv6 address. Ethernet to WLAN and WLAN to Ethernet statistics are provided for unicast, nonunicast, discards and octets.
6: Network Settings Using the CLI To enter the command level: enable > config > bridge 1 Using XML Include in your file: Wired (eth0) Network Network interface settings apply to both the wired Ethernet (eth0) and wireless WLAN (wlan0) interfaces, but are configured independently for each interface. The wired network pages are described in this section.
6: Network Settings Field/Button Description IP Address Enter the static IPv4 address to use for the interface. You may enter it alone or in CIDR format. Note: This setting will be used if Static IP is active (both DHCP and BOOTP are Disabled). Changing this value requires you to reboot the device. When DHCP or BOOTP is enabled, the SGX 5150 unit tries to obtain an IPv4 address from a DHCP or BOOTP server. If it cannot, the SGX 5150 unit generates and uses an Auto IP address in the range of 169.254.xxx.
6: Network Settings Field/Button Description IPv6 Primary DNS Enter the IP address of the primary domain name server. Note: This setting will be used when either Static IP or Auto IP is active, or if DHCP/BOOTP is active and no DNS server was acquired from the server. IPv6 Secondary DNS Enter the IP address of the secondary domain name server. Note: This setting will be used when either Static IP or Auto IP is active, or if DHCP/BOOTP is active and no DNS server was acquired from the server.
6: Network Settings To Configure Network Link Settings Using Web Manager To view Ethernet (eth0) link statistics, on the Network page, select Wired Network > Link. To configure Ethernet (eth0) link settings, on the Network page, select Wired Network > Link > Configuration.
6: Network Settings Wired (eth0) Network Settings Description Network Enter the Network, if the Network filter type is selected. Ports Enter the Port, if the Port filter type is selected. Priority Select the priority of the filter from the drop-down menu. To View and Configure Wired Network QoS Settings Using Web Manager To view Ethernet (eth0) QoS statistics, click Network on the menu and select Wired Network > QoS.
6: Network Settings To View and Configure Wired Network Failover Settings Using Web Manager To view Ethernet Failover statistics, click Network on the menu and select Wired Network > Failover. To modify Ethernet Failover settings, click Network on the menu and select Wired Network > Failover > Configuration.
6: Network Settings Field/Button Description DHCP Client Select to turn On or Off. At boot up, after the physical link is up, the SGX 5150 unit will attempt to obtain IPv4 settings from a DHCP server and will periodically renew these settings with the server. Note: Overrides BOOTP, the configured IPv4 address/mask, gateway, hostname, and domain. Changing this value requires you to reboot the device. Within Web Manager, click Renew to renew the DHCP lease.
6: Network Settings Field/Button Description IP v6 Default Gateway Enter the default IPv6 default gateway. IPv6 Domain Enter the domain name suffix for the interface. Note: This setting will be used when either Static IP or Auto IP is active, or if DHCP/BOOTP is active and no Domain Suffix was acquired from the server. IPv6 Primary DNS Enter the IP address of the primary Domain Name Server.
6: Network Settings Field/Button Description Wi-Fi Direct GO Mode Select to enable or disable. If enabled, WPS issues the credentials when the client device indicates that it wishes to connect with our device. No password is required. Go to Wi-Fi Protected Setup (on page 61) to setup WPS. To View or Configure Network Link Settings Using Web Manager To view wireless (wlan0) link statistics, on the Network page, select Wireless Network > Link.
6: Network Settings Table 6-10 Adding or Deleting Wireless (wlan0) Network QoS Settings Adding or Deleting Wireless Network (QoS) Settings Description Delete Click the checkbox to the left of any existing QoS filter to be deleted and click the Submit button. Filter type Select the filter type from the drop-down window: Mac Address Network Port MAC Address Enter the MAC address, if the MAC Address filter type is selected. Network Enter the Network, if the Network filter type is selected.
6: Network Settings Settings Description Failback Threshold Indicate the number of successful pings - after which the device will failback to the Ethernet interface. To View or Configure Wireless Network Failover Settings Using Web Manager To view wireless network Failover statistics, click Network on the menu and select Wireless Network > Failover. To modify wireless network Failover settings, click Network on the menu and select Wireless Network > Failover > Configuration.
6: Network Settings Field/Button Description DHCP Client Select to turn On or Off. At boot up, after the physical link is up, the SGX 5150 unit will attempt to obtain IPv4 settings from a DHCP server and will periodically renew these settings with the server. Note: Overrides the BOOTP client, the configured IPv4 address/mask, gateway, hostname, and domain. Changing this value requires you to reboot the device. Within Web Manager, click Renew to renew the DHCP lease.
6: Network Settings Field/Button Description IPv6 Default Gateway Enter the default IPv6 default gateway. IPv6 Domain Enter the domain name suffix for the interface. Note: This setting will be used when either Static IP or Auto IP is active, or if DHCP/BOOTP is active and no Domain Suffix was acquired from the server. IPv6 Primary DNS Enter the IP address of the primary domain name server.
6: Network Settings Table 6-13 Wired (usb0) Network QoS Settings Wired (usb0) Network Description Settings State Click to enable or disable state. Import filters Click to enable or disable import filters to import configurations from other interfaces. Uplink Speed Enter the maximum uplink speed. Set 0 to set speed to default. Delete Click the checkbox to the left of any existing QoS filter to be deleted and click the Submit button.
6: Network Settings Wired (usb0) Network (Failover) Settings Description Interval Indicate the interval in which to test reachability Failover Threshold Indicate the allowed number of failed pings – after which the device will failover to the wlan0 interface. Failback Threshold Indicate the number of successful pings – after which the device will failback to the Ethernet interface.
6: Network Settings To Configure IP Protocol Stack Settings Using Web Manager To configure IP protocol settings, on the Network page, click Protocol Stack > IP. Using the CLI To enter the command level: enable > config > ip Using XML Include in your file: ICMP Settings This page contains lower level ICMP Network Stack specific configuration items.
6: Network Settings Protocol Stack ARP Settings Description Clear Click the Clear link above all listed addresses to remove all the addresses. Remove Click the Remove link beside a specific address to remove it. To Configure ARP Network Stack Settings Using Web Manager To configure ARP protocol settings, on the Network page, click Protocol Stack > ARP.
6: Network Settings VPN Setting Description Remote Network Endpoint Enter the remote VPN Gateway’s IP Address. Subnet Enter the subnet behind the VPN Gateway. ID Enter the identifier expected to receive from the remote host during Phase 1 negotiation. Router/Next Hop Enter the next-hop gateway IP address for the VPN Gateway. Local Network Subnet Enter the subnet the local devices have access to or can be accessed from the VPN connection.
6: Network Settings Configuring VPN Settings You may edit or view VPN settings. Using Web Manager To view or configure VPN settings on the Network page, click VPN.
6: Network Settings To Show WPS Status Using the CLI To enter the command level: enable > config > if 2 > link Using XML Not applicable. WLAN Scan/QuickConnect Going to this page initiates a scan of wireless networks within range of the SGX 5150 unit and allows users to add a WLAN profile after testing it. This list refreshes automatically every 15 seconds. There is also an option to automatically update the scan results every 60 seconds, which is disabled by default.
6: Network Settings WLAN Quick Connect Settings (continued) Description Security Suite The security suite of a network. For example: WEP, WPA, WPA2, WPS. Although WPS is reported with the security flags, it does not indicate a security setting. WPS indicates that an AP supports WPS. To View WLAN Link Scan and Status Information Using Web Manager To view the WLAN Link Scan and Status information, on the Network page, click WLAN Scan/Quick Connect. Using the CLI Not applicable.
6: Network Settings Using the CLI To enter the WLAN Profile level: enable > configure > wlan profiles Using XML Include in your file: Table 6-22 Individual WLAN Profile Settings WLAN Profile Settings Description Network Name (SSID) Enter or modify the network name. State Click to enable or disable. Suite Select a security suite configuration: Authentication None Select None to not select a security suite.
6: Network Settings WLAN Profile Settings Description Passphrase If Passphrase key type is selected, enter an alphanumeric phrase up to 63 characters in length in this field which becomes available. Spaces and special characters are allowed. Check Show Password to show the passphrase entered. TX Key Index If WEP security suite and Hex key type have been selected, then select the TX key index from the drop-down menu, which becomes available. IEEE 802.1X If IEEE 802.
6: Network Settings WLAN Profile Settings Description Credentials After EAP-TLS is selected and the Validate Certificate is enabled, either: Select the credential, if listed in the drop-down menu, to validate. Type the name of the credential if the credential is not listed in the dropdown menu. Username Enter a username. Password Enter a password if the LEAP, EAP-TTLS and PEAP option is chosen.
7: Filesystem The Filesystem page provides statistics and current usage information for the flash filesystem. From here you may format the entire filesystem. Directories can be created, deleted, moved, and renamed. A directory must be empty before it can be deleted. Files can be created, deleted, moved, renamed, uploaded via HTTP, and transfered to and from a TFTP server. Newly created files will be empty. Some filesystems may contain a 'lost+found' directory.
7: Filesystem File Transfer Settings Description Remote File Enter the name of the file at the remote location that is to be stored locally (“get’) or externally (“put”). Host Enter the IP address or name of the host involved in this operation. Port Enter the number of the port involved in TFTP operations. To View, Transfer, or Modify Filesystem Files Using Web Manager To view current filesystem browser statistics or to format the filesystem, click Filesystem in the menu and select Statistics.
8: Diagnostics Diagnostic settings for the SGX 5150 unit can be viewed and modified under the Diagnostics tab in the Web Manager user interface. This chapter describes the following diagnostic settings: DNS Hardware IP Sockets Log Memory Ping Processes Routes Threads Traceroute DNS The primary and secondary DNS addresses come from the active interface. DHCP or BOOTP can override the static addresses from the network interface configurations.
8: Diagnostics Wireless (wlan0) Network interface settings according to instructions at Wireless (wlan0) Network (on page 48). Using CLI To enter CLI command level: enable > dns Using XML Not applicable. Hardware View the CPU type, CPU speed, RAM size and flash size of the hardware on this Web Manager page. To View Hardware Information Using Web Manager To view hardware information, on the Diagnostics page, click Hardware.
8: Diagnostics Log Configure a line or disable the diagnostic log on this Web Manager page. Table 8-2 Log Settings Diagnostics Log Description Output Select a diagnostic log output type: Disable - Turn off the logging feature. Line (1, 2, or 3) - Directs logging to the selected serial line. USB 1 To Configure the Diagnostic Log Output Using Web Manager To configure the Diagnostic Log output, on the Diagnostics page, click Log.
8: Diagnostics IP Socket Description Count Enter the number of ping packets that the SGX 5150 unit attempts to send to the Host. The default number of packets is 3. Timeout Enter the time in seconds that the SGX 5150 unit waits for a response from the Host before it times out. The default time is 5 seconds. To Ping a Remote Host Using Web Manager To view memory information, on the Diagnostics page, click Ping.
8: Diagnostics Threads The SGX 5150 unit threads information shows details of threads in the ltrx_evo task which can be useful for technical experts in debugging. To View Thread Information Using Web Manager To view thread information, on the Diagnostics page, click Threads. Using the CLI To enter the command level: enable > auto show processes or show processes Using XML Not applicable. Traceroute You can use traceroute to trace a packet from the SGX 5150 unit to an Internet host.
9: Administration Administrative features for the SGX 5150 unit are organized beneath the Administration tab in the Web Manager user interface.
9: Administration Action Settings Description Email Use Email to send an email to configured Email recipients. If an Alarm Email profile number is selected, that email will be sent when the alarm is turned on. The contents of Alarm Message will be placed into the email body when an alarm email is sent. If the alarm stays on longer than the Reminder Interval, another alarm email is sent. If a Normal Email profile number is selected, that email will be sent when the alarm is turned off.
9: Administration To enter the wlan0 link state change command level: enable > config > action > wlan0 link state change To enter device temperature change command level: enable > config > action > device temperature change To enter on scheduled reboot command level: enable > config > action > on scheduled reboot Using XML Include in your file: Include in your file: PAGE 779: Administration Applications The SGX 5150 supports the ability to install and uninstall user-defined Python scripts and packages and will include the following: bin python libpython{version}.so lib "python precompiled scripts libpython{version} "python shared libraries Table 9-2 contains the setting options for configuring, installing, uninstalling and running external applications via Python scripts. Caution: Use extreme caution when installing and running scripts.
9: Administration Using the CLI To enter the application script change command level: enable > config > applications Using XML Include in your file: CLI The command line interface (CLI) settings allow you to control how users connect to and interact with the command line of the SGX 5150 unit. It is possible to configure access via the Telnet and SSH protocols, in addition to general CLI options.
9: Administration To View and Configure Basic CLI Settings Using Web Manager To view CLI statistics, on the Administration page, click CLI > Statistics. To configure basic CLI settings, on the Administration page, click CLI > Configuration.
9: Administration Discovery Network discovery allows your computer to locate other computers and devices on the network. This setting also allows other computers to see your computer. The current statistics and configuration options for device discovery, including UPnP query port, are available for the SGX 5150 unit.
9: Administration Email – Configuration Description Settings (continued) Priority Select the priority level for the email alert: Urgent High Normal Low Very Low To View, Configure and Send Email Note: The following section describes the steps to view and configure Email 1 settings; these steps apply to other emails available for the device. Using Web Manager To view Email statistics, on the Administrations page, click Email > Statistics.
9: Administration Using XML Include in your file: Gateway The SGX 5150 IoT device gateway can be configured as a wireless router with DHCP server functionality. Status This page displays the current configuration and statistics information for the gateway. To view gateway status: click Gateway on the menu and select Status.
9: Administration WAN MAC Address Filters Accept or drop traffic from specified MAC addresses using the settings below. Table 9-9 Adding a New MAC Address Filters Adding or Deleting New MAC Description Address Filter Settings Delete Click the checkbox to the left of any existing mac address filter to be deleted and click the Submit button. MAC Address Enter a new mac address to add a new filter. Action Select to Accept or Drop above indicated MAC Address field.
9: Administration Table 9-11 Adding a New Port Forwarding Rule Adding New Port Forwarding Rule Settings Description Name Enter a User Friendly name for the rule (optional) Ingress IP Address (Optional) Enter the destination address of the packets. This option can only be used with single ports and not with port range. Start Port Enter the starting port number. End Port Enter the end port number (optional). If start port and end port are same it assumes a single port.
9: Administration Table 9-13 Adding a New Static Route Adding New Static Route Settings Description Name User friendly name for the route Network Network or Host for the route Gateway Gateway for the route Interface Interface for the route Metric Priority for the route. Lower metric means higher priority To Configure Gateway Static Route Settings Using Web Manager To modify gateway static route information, on the Administrations page, click Gateway > Configuration > Static Routes.
9: Administration To Configure Gateway DHCP Server Settings Using Web Manager To modify gateway DHCP server or static lease information, on the Administrations page, click Gateway > Configuration > DHCP Server.
9: Administration Table 9-17 Routing Protocol Settings Routing Settings Description State (RIP) Select to enable or disable the RIP state. Version Select how the RIP is to be configured. It can accept Version 1, Version 2, or Version 1 and 2. Update Interval Indicate the number of seconds for the Update Interval. Send unsolicited Response message every Update Interval seconds containing the complete routing table to all neighboring RIP routers.
9: Administration Virtual IP Settings Description Delete (checkbox) Check the Delete checkbox adjacent to a virtual IP address (if any listed) to be deleted, clicking the Submit button. Name Enter a name of the virtual IP address. IP Address Enter the virtual IP address to which the LAN IP address is to be mapped. LAN IP Address Enter the LAN IP address to which the virtual IP address is to be mapped.
9: Administration Using the CLI To enter GRE command level: enable > gre Using XML Include in your file: Host Table 9-20 Host Settings Host Settings Description Name Enter a name for the host. This name appears on the Login Connect Menu. To leave a host out of the menu, leave this field blank. Protocol Select the protocol to use to connect to the host. Choices are: Telnet SSH Note: SSH keys must be loaded or created on the SSH page for the SSH protocol to work.
9: Administration HTTP Hypertext Transfer Protocol (HTTP) is a request-response standard protocol between clients and servers. HTTP defines how messages are formatted and transmitted. It also defines the actions Web servers and browsers take in response to different commands. HTTP Authentication enables the requirement of user names and passwords for access to the device.
9: Administration HTTP Settings Description Log Format Set the log format string for the HTTP server.
9: Administration HTTP Authentication Settings Description Delete Click to delete the existing configuration. To Configure HTTP Authentication Using Web Manager To configure HTTP authentication, on the Administration page, click HTTP > Authentication. Using the CLI To enter the HTTP command level: enable > config > http Using XML Include in your file: Line The SGX 5150 unit contains three RS232 serial port types.
9: Administration Line Settings Protocol Description Set the operational protocol for the Line. The default is Tunnel. Choices are: None Tunnel Note: The Line currently only supports None so can be used in Command Mode, for CLI. Tunnel, as in serial-networking tunneling protocol, will be supported in a future software release. Baud Rate Select the desired baud rate from the drop-down menu. Parity Select parity from the drop-down menu: None, Even or Odd.
9: Administration Line Command Mode Description Settings (continued) Signon Message Enter the string of bytes to be sent to the Serial Line during boot time. It may contain a binary character(s) of the form [x]. For example, use decimal [12] or hex [0xc]. Click the Submit button after entering the signon message. Note: The Submit button will only appear if the Mode is not disabled.
9: Administration USB Configuration This page displays the current configuration of the USB Line. Changing any of the fields takes effect immediately. Further configuration is available at Wired Network (USB) for 'Ethernet Device' mode. Table 9-25 USB Configuration USB Settings Description Name Enter the Name of the usb line. Named lines appear in the 'Login Connect Menu', if enabled. Set it blank to leave it out of the menu. Interface Select the Interface from the drop-down menu.
9: Administration USB Command Mode Description Settings (continued) Serial String Enter the Serial String. The Serial String is a string of bytes that must be read on the USB Line during boot time in order to enable Command Mode. It may contain a time element to specify a required delay in milliseconds x, formed as {x}. Echo Serial String Select to enable or disable. Signon Message Enter the Signon Message, which is a string of bytes that is sent on the USB Line during boot time.
9: Administration Table 9-28 Modbus Transmission Modes RTU ASCII Address: 8 bits (0 to 247 decimal, 0 is used for broadcast) Function: 8 bits (1 to 255, 0 is not valid) Data: N X 8 bits (N=0 to 252 bytes) CRC Check: 16 bits Address: 2 CHARS Function: 2 CHARS Data: N CHARS (N=0 to 252 CHARS) LRC Check: 2 CHARS The Modbus web pages allow you to check Modbus status and make configuration changes.
9: Administration SMTP Table 9-30 SMTP Settings SMTP Settings Description From Address Enter the From Address here. This is an email address and is required. If you wish to direct oubtound email messages through a mail server, put your client email address here. Server Address Enter the Server Address to direct outbound email messages through a mail server. Server Port Enter the SMTP server port number.
9: Administration SNMP Settings Description System Description Update the system description, as necessary. The default system information includes the manufacturer name, model name, version and the serial number of the device. System Location Specify a system location for the SNMP setting. Lantronix MIB File Click the Lantronix MIB file name to save and load it into the MIB browser and trap receiver. This is the base MIB file for Lantronix products. Load or compile this file first.
9: Administration Table 9-32 SSH Server Host Keys SSH Settings Description Private Key Enter the path and name of the existing private key you want to upload. In Web Manager, you can also browse to the private key to be uploaded. Be sure the private key will not be compromised in transit. This implies the data is uploaded over some kind of secure private network. Public Key Enter the path and name of the existing public key you want to upload.
9: Administration Table 9-34 SSH Client Known Hosts SSH Settings Description Server Specify either a DNS Hostname or IP Address when adding public host keys for a Server. This Server name should match the name used as the Remote Address in Connect Mode Tunneling. Public RSA Key Click the Browse... button to browse to the existing public RSA key you want to use with this user. In Web Manager, you can also browse to the public RSA key to be uploaded.
9: Administration SSH Settings Description Bit Size Select the bit length of the new key: 512 768 1024 2048 4096 Using a larger bit size takes more time to generate the key. Approximate times are: 1 second for a 512 bit RSA key 1 second for a 768 bit RSA key 1 second for a 1024 bit RSA key 2 seconds for a 512 bit DSA key 2 seconds for a 768 bit DSA key 20 seconds for a 1024 bit DSA key Note: Some SSH clients require RSA host keys to be at least 1024 bits long.
9: Administration To Create a New Credential Using Web Manager 1. In Web Manager, click the Administration tab in the header. 2. Click SSL. 3. Click Credentials. 4. Type the name for your credential in the Create new credential field. 5. Click Submit. The new SSL credential appears in the list. Using the CLI To enter the SSL command level: enable > ssl Using XML Include in your file:
9: Administration Table 9-37 SSL Credential - Create New Self-Signed Certificate Field Description Country (2 Letter code) Enter the 2 letter code for the country where the organization is located. This is a two-letter ISO code (e.g., “US” for the United States). State/Province Enter the state or province where the organization is located. Locality (City) Enter the city where the organization is located. Organization Enter the organization name to which the SGX 5150 unit belongs.
9: Administration To Configure an SSL Credential to Use a Self-Signed Certificate 1. In the Web Manager, click the Administration tab. 2. Click SSL. 3. Click Credentials. 4. Under View or Edit, click the credential you wish to modify to access the information page for that credential. 5. Enter the details for a new self-signed certificate for this credential. Reference Table 9-37 SSL Credential - Create New Self-Signed Certificate on page 104. 6. Click Submit.
9: Administration Notes: Ensure that the certificate is formatted properly with a valid open and close tag. Ensure that the Private Key is associated to the selected certificate and that it is formatted properly with a valid open and close tag. If the New Certificate field is set to None, the certificate is not supported. 6. Click Submit.
9: Administration Syslog The system log (Syslog) provides information that shows the current configuration and statistics of the Syslog. You can configure the Syslog host and set the severity level for events to log. Note: The system log is saved to local storage, but is not retained through reboots unless diagnostics logging to the file system is enabled. To allow the administrator to save the complete system log, save the system log to a server that supports remote logging services.
9: Administration System The SGX 5150 settings allow for rebooting the device, restoring factory defaults, uploading new firmware and updating a system’s short and long name. Note: Anytime you reboot the unit, this operation will take some time to complete. Please wait a minimum of 10-20 seconds after rebooting the unit before attempting to make any subsequent connections. Table 9-40 System Settings System Settings Description State Select to enable or disable the reboot schedule.
9: Administration System Settings Description Standalone Firmware Installer Click Reboot to Standalone Firmware Installer to reboot the device to a standalone firmware installer mode. When the device is rebooted, your browser should be refreshed and redirected to the firmware installer page after 30 seconds. Upload and install new device firmware from that page. Short Name Enter a short name for the system name. A maximum of 32 characters are allowed. Long Name Enter a long name for the system name.
9: Administration Terminal on Network and Line Settings Description Exit Connect Menu Select whether to display a choice for the user to exit the Login Connect Menu and reach the CLI. Choices are: Send Break Enabled = a choice allows the user to exit to the CLI. Disabled = there is no exit to the CLI (default) Enter the Send Break control character received from the network on its way to a serial line which would cause the line output to be forced inactive.
9: Administration Using XML Include in your file: Tunnel Tunneling allows serial devices to communicate over a network without ‘being aware’ of the devices that establish the network connection between them. Tunneling parameters are configured using the Tunnel menu and submenus. The Tunnel settings allow you to configure how the Serial-Network tunneling operates. Tunneling is available on all serial lines.
9: Administration Terminal Serial Settings Description (continued) DTR Select the conditions in which the Data Terminal Ready (DTR) control signal on the serial line are asserted. Choices are: Unasserted TruPort = the DTR is asserted whenever either a connect or an accept mode tunnel connection is active with the Telnet Protocol RFC2217 saying that the remote DSR is asserted. Asserted while connected = the DTR is asserted whenever either a connect or an accept mode tunnel connection is active.
9: Administration Tunnel Packing Mode Description Settings (continued) Timeout Set the timeout value, in milliseconds, after the first character is received on the serial line, before data is sent on the network. Valid range is 1 to 30000 milliseconds. Default is 1000. This setting becomes available when the Timeout mode is selected. Note: This configuration option appears when Timeout mode is selected.
9: Administration Table 9-44 Tunnel Accept Mode Settings Tunnel Accept Mode Settings Description Mode Set the method used to start a tunnel in Accept mode. Choices are: Disable = do not accept an incoming connection. Always = accept an incoming connection (default). Any Character = start waiting for an incoming connection when any character is read on the serial line.
9: Administration Tunnel Accept Mode Settings (continued) Description Block Serial Set whether Block Serial is enabled for debugging purposes. Choices are: Enabled = if Enabled, incoming characters from the serial line will not be forwarded to the network. Instead, they will be buffered and will eventually flow off the serial line if hardware or software flow control is configured. Disabled = this is the default setting; incoming characters from the Serial Line are sent on into the network.
9: Administration remote station as an IPv4 or IPv6 address or DNS name. The SGX 5150 will not make a connection unless it can resolve the address. For Connect Mode using UDP, the SGX 5150 accepts packets from any device on the network. It will send packets to the last device that sent it packets. Note: The port in Connect Mode is not the same port configured in Accept Mode. Telnet protocol is not supported in Tunnels on USB interfaces.
9: Administration Tunnel Connect Mode Settings (continued) Description Block Network Set whether Block Network is enabled for debugging purposes. Choices are: Enabled = If Enabled, incoming characters from the network will not be forwarded to the Serial Line. Instead, they will be buffered and will eventually flow off the network side. Disabled = this is the default setting; incoming characters from the network are sent on into the Serial Line. Any buffered characters are sent first.
9: Administration alive timer is significantly smaller than the user timeout, probes will continue to be sent for an unreachable host until the user timeout expires. If there is data in flight when the TCP retransmission timeout kicks in, the user timeout is checked as a limiting condition only when the timer expirations would normally be checked during RTO handling.
9: Administration Disconnect Mode Specifies the optional conditions for disconnecting any Accept Mode or Connect Mode connection that may be established. If any of these conditions are selected but do not occur and the network disconnects to the device, a Connect Mode connection will attempt to reconnect. However, if none of these conditions are selected, a closure from the network is taken as a disconnected host. The device can support a maximum of 64 total aggregate connections.
9: Administration Table 9-48 Tunnel Modem Emulation Settings Tunnel Modem Emulation Settings Description Echo Pluses Set whether the pluses will be echoed back during a “pause +++ pause” escape sequence on the Serial Line. Choices are: Enabled Disabled (default) Echo Commands Set whether characters read on the Serial Line will be echoed, while the Line is in Modem Command Mode.
9: Administration User Management This page displays the configuration of users. The Admin Password is used for initial login access from the Telnet port, SSH port, FTP, HTTP, and serial line. To Change the User Admin Password Using Web Manager 1. In the Web Manager, click the Administration tab. 2. Click User Management. 3. In the Admin Password field, enter the desired password. The default password is PASS. 4. Clicking the Show Password checkbox allows you to see the existing password.
9: Administration 3. Click Export Configuration. 4. Select where to send exported status information: Export to browser sends the information into a separate web window which appears. Export to local file sends information into a new locally saved file. A file name must be specified in field provided if this option is selected. 5. Select Download (from link) to download this content as a file, or click Export to browser to open a web browser with this content. 6.
9: Administration 5. For Lines to Export, check the lines and/or the network that you want to export to the XML configuration file. Clicking the Clear All button will uncheck all checkboxes. Clicking the Select All button will check all checkboxes. 6. Click the desired Groups to Export. Several checkboxes are available. Clicking the Clear All button will uncheck all checkboxes. Clicking the Select All button will check all checkboxes.
9: Administration Table 9-49 Configuration from Filesystem Setting Description Filename Enter the name of the file on the SGX 5150 unit (local to its filesystem) that contains XCR data. Lines to Import Select filter instances to be imported in the line, serial, tunnel and terminal groups. This affects both Whole Groups to Import and Text List selections. Click Clear All to clear all checkmarks, or Select All to check all checkmarks.
9: Administration Table 9-51 Bridge 1 (br0) Configuration Setting Description State Select to enable or disable the state Transparent Mode Select to enable or disable the transparent mode. Ethernet Interface Select the desired interface: eth0 or usb0 Bridging MAC Address Enter the bridging MAC address Bridging IP Address Enter the bridging IP address Auto Detect IPv4 Address Check the radio button to enable it.
9: Administration Using the CLI Not applicable. Using XML Not applicable.
A: Lantronix Technical Support Lantronix offers many resources to support our customers and products at http://www.lantronix.com/support. For instance, you can ask a question, find firmware downloads, access the FTP site and search through tutorials. At this site you can also find FAQs, bulletins, warranty information, extended support services and product documentation. To contact technical support or sales, look up your local office at http://www.lantronix.com/about/contact.html.
B: Compliance (According to ISO/IEC Guide and EN 45014) Manufacturer’s Name & Address: Lantronix, Inc. 7535 Irvine Center Drive, Suite 100, Irvine, CA 92618 USA Product Name Model: SGX 5150 IoT Device Gateway Conforms to the following standards or other normative documents: Safety UL 60950-1, 2nd Edition, 2011-12-19 (Information Technology Equipment - Safety - Part 1: General Requirements) EN 60950-1:2006 + A11:2009 + A1:2010 + A12:2011 + A2:2013 CSA C22.2 No.
B: Compliance Table B-1 Country Transmitter IDs Country Specification USA FCC ID R68PW2050 Canada IC ID 3867A-PW2050 Mexico RCPLAPW15-2109 Japan ID 201-152843 Manufacturer’s Contact: Lantronix, Inc. 7535 Irvine Center Drive Suite 100 Irvine, CA 92618 USA Tel: 949-453-3990 Fax: 949-453-3995 RoHS, REACH and WEEE Compliance Statement Please visit http://www.lantronix.com/legal/rohs/ for Lantronix's statement about RoHS, REACH and WEEE compliance.
