EtherWAN EW50 User Manual

Download

Page 1

Industrial LTE Cellular Gateway

EW50

User Manual

Page 2

EW50 Industrial LTE Cellular Gateway

Preface

Audience

This guide is designed for the person who installs, configures, deploys, and maintains the Ethernet network. This document assumes the reader has moderate hardware, computer, and Internet skills.

Document Revision Level

This section provides a history of the revision changes to this document.

Revision

Document Version

Date

Description

Version 1

4/02/2018

First version of document

Version 2

5/02/2019

Minor fixes to images

Version 3

6/03/2019

Changed front cover picture

07/05/2019

Added TR-069 & LLDP function description

Page 3

EW50 Industrial LTE Cellular Gateway

Contents

Preface .............................................................................................................................................................. 2

Contents ..................................................................................................................................................... 3

Chapter 1 Introduction ...................................................................................................................................... 7

1.1 Introduction......................................................................................................................................... 7

1.2 Contents List ....................................................................................................................................... 8

1.2.1 Package Contents....................................................................................................................... 8

1.3 Hardware Configuration ...................................................................................................................... 9

1.4 LED Indicators .................................................................................................................................. 11

1.5 Installation & Maintenance Notice .................................................................................................... 12

1.5.1 SYSTEM REQUIREMENTS ................................................................................................. 12

1.5.2 WARNING ............................................................................................................................. 12

1.5.3 HOT SURFACE CAUTION ................................................................................................... 13

1.5.4 Product Information for CE RED Requirements ..................................................................... 14

1.6 Hardware Installation ........................................................................................................................ 15

1.6.1 Mount the Unit ....................................................................................................................... 15

1.6.2 Insert the SIM Card ................................................................................................................ 15

1.6.3 Connecting Power .................................................................................................................. 16

1.6.4 Connecting DI/DO Devices .................................................................................................... 17

1.6.6 Connecting Serial Devices ................................................................ ...................................... 18

1.6.7 Connecting to the Network or a Host ...................................................................................... 18

1.6.8 Setup by Configuring WEB UI .............................................................................................. 19

Chapter 2 Basic Network ................................................................................................................................ 20

2.1 WAN & Uplink ................................................................................................................................. 20

2.1.1 Physical Interface ................................................................................................................... 21

2.1.2 Internet Setup ......................................................................................................................... 26

2.2 LAN & VLAN .................................................................................................................................. 45

2.2.1 Ethernet LAN .......................................................................................................................... 45

2.2.2 VLAN .................................................................................................................................... 47

2.2.3 DHCP Server .......................................................................................................................... 58

2.3 IPv6 .................................................................................................................................................. 65

Page 4

EW50 Industrial LTE Cellular Gateway

2.3.1 IPv6 Configuration ................................................................................................................. 65

2.4 Port Forwarding ............................................................................................................................... 76

2.4.1 Configuration ......................................................................................................................... 77

2.4.2 Virtual Server & Virtual Computer.......................................................................................... 78

2.4.3 DMZ & Pass Through............................................................................................................. 84

2.5 Routing ............................................................................................................................................. 86

2.5.1 Static Routing ......................................................................................................................... 87

2.5.2 Dynamic Routing.................................................................................................................... 90

2.5.3 Routing Information ............................................................................................................... 98

2.6 DNS & DDNS .................................................................................................................................. 99

2.6.1 DNS & DDNS Configuration ................................................................................................. 99

Chapter 3 Object Definition ................................................................ .......................................................... 103

3.1 Scheduling ...................................................................................................................................... 103

3.1.1 Scheduling Configuration ..................................................................................................... 103

3.2 Grouping ......................................................................................................................................... 105

3.2.1 Host Grouping ...................................................................................................................... 105

3.3 External Server................................................................................................................................ 107

3.4 Certificates ...................................................................................................................................... 110

3.4.1 Configuration ....................................................................................................................... 110

3.4.2 My Certificate ...................................................................................................................... 113

3.4.3 Trusted Certificate ................................................................................................................ 120

3.4.4 Issue Certificate .................................................................................................................... 126

Chapter 4 Field Communication ................................................................................................................... 129

4.1 Bus & Protocol ................................................................................................................................ 129

4.1.1 Port Configuration ................................................................................................................ 129

4.1.2 Virtual COM ......................................................................................................................... 131

4.1.3 Modbus ................................................................................................................................ 141

4.2 Data Logging .................................................................................................................................. 151

4.2.1 Data Logging Configuration ................................................................................................ . 154

4.2.2 Scheme Setup ....................................................................................................................... 156

4.2.3 Log File Management ........................................................................................................... 158

Chapter 5 Security ........................................................................................................................................ 160

Page 5

EW50 Industrial LTE Cellular Gateway

5.1 VPN ................................................................ ................................................................................ 160

5.1.1 IPSec .................................................................................................................................... 161

5.1.2 OpenVPN ................................................................................................ ............................. 174

5.1.3 L2TP ................................ .................................................................................................... 187

5.1.4 PPTP ................................ .................................................................................................... 195

5.1.5 GRE ..................................................................................................................................... 202

5.2 Firewall ........................................................................................................................................... 206

5.2.1 Packet Filter ......................................................................................................................... 206

5.2.2 MAC Control........................................................................................................................ 211

5.2.3 IPS ....................................................................................................................................... 214

5.2.4 Options ................................................................................................................................. 218

Chapter 6 Administration .............................................................................................................................. 221

6.1 Configure & Manage ....................................................................................................................... 221

6.1.1 Command Script ................................................................................................................... 222

6.1.2 TR-069 ................................................................................................................................. 225

6.1.3 SNMP................................................................................................................................... 230

6.1.4 Telnet with CLI..................................................................................................................... 241

6.1.5 LLDP ................................................................................................................................... 245

6.2 System Operation ............................................................................................................................ 246

6.2.1 Password & MMI ................................................................ ................................................. 246

6.2.2 System Information .............................................................................................................. 248

6.2.3 System Time ......................................................................................................................... 249

6.2.4 System Log........................................................................................................................... 252

6.2.5 Backup & Restore ................................................................................................................. 256

6.2.6 Reboot & Reset ................................................................................................................... 257

6.3 FTP ................................................................................................................................................. 258

6.3.1 Server Configuration ............................................................................................................ 259

6.3.2 User Account ................................................................ ........................................................ 261

6.4 Diagnostics ..................................................................................................................................... 262

6.4.1 Diagnostic Tools ................................................................................................................... 262

6.4.2 Packet Analyzer .................................................................................................................... 263

Chapter 7 Service ......................................................................................................................................... 266

Page 6

EW50 Industrial LTE Cellular Gateway

7.1 Cellular Toolkit ............................................................................................................................... 266

7.1.1 Data Usage ........................................................................................................................... 267

7.1.2 SMS ..................................................................................................................................... 269

7.1.3 SIM PIN ................................ ............................................................................................... 272

7.1.4 USSD ................................................................................................................................... 276

7.1.5 Network Scan ....................................................................................................................... 279

7.2 Event Handling ............................................................................................................................... 281

7.2.1 Configuration ....................................................................................................................... 283

7.2.2 Managing Events ................................................................................................ .................. 292

7.2.3 Notifying Events ................................................................................................................... 295

Chapter 8 Status ............................................................................................................................................ 298

8.1 Dashboard ....................................................................................................................................... 298

8.1.1 Device Dashboard ................................................................................................................ 298

8.2 Basic Network ................................................................................................................................. 300

8.2.1 WAN & Uplink Status .......................................................................................................... 300

8.2.2 LAN & VLAN Status ........................................................................................................... 304

8.2.3 DDNS Status ........................................................................................................................ 305

8.3 Security ........................................................................................................................................... 306

8.3.1 VPN Status ........................................................................................................................... 306

8.3.2 Firewall Status ...................................................................................................................... 310

8.4 Administration................................................................................................................................. 313

8.4.1 Configure & Manage Status .................................................................................................. 313

8.4.2 Log Storage Status ................................................................................................................ 314

8.5 Statistics & Reports ......................................................................................................................... 315

8.5.1 Connection Session............................................................................................................... 315

8.5.2 Device Administration .......................................................................................................... 316

8.5.4 Cellular Usage ...................................................................................................................... 317

Specifications ................................................................................................................................ ................ 318

Contact Information ................................................................ ....................................................................... 320

Page 7

EW50 Industrial LTE Cellular Gateway

Chapter 1 Introduction

1.1 Introduction

Congratulations on your purchase of this product: Industrial Cellular Gateway. For M2M (Machine-to-Machine) applications, EtherWAN Cellular Gateway is the right choice.

With a built-in world-class 4G LTE module, just insert a SIM card from local mobile carrier to access the Internet. The dual SIM design provides redundancy and a reliable WAN connection for critical applications. Through VPN tunneling technology, remote sites easily become a part of the local Intranet, and all data is transmitted in a secure link. The DI/DO feature allows the gateway to respond in real time to events detected by sensors.

This EW50 is equipped with a host of security features including VPN, firewall, NAT, port forwarding, DHCP server and other features for outdoor IP surveillance applications. Redundant dual SIM cards lossless data transmission and network connections.

Main Features:

 Built-in high speed LTE modem with dual SIMs for uplink traffic failover.  Equipped with gigabit Ethernet ports to connect other IP-based devices.  RS-232/485 serial ports for controlling legacy serial or Modbus devices.  Digital I/O ports for integrating sensors, switches, or other alarm devices.  Constructed with solid and easy-to-mount metal body for industrial environments and to work with a

variety of M2M (Machine-to-Machine) applications.

Before you install and use this product, please read this manual in detail.

Page 8

EW50 Industrial LTE Cellular Gateway

1.2 Contents List

1.2.1 Package Contents

#Standard Package

Items

Description

Contents

Quantity

EW50

Industry LTE Cellular Gateway

1pcs

Cellular Antenna

2pcs

Power Adapter

(DC 12V/2A)

(*1)

1pcs

2 pin Terminal Block

1pcs

4 pin Terminal Block

1pcs

6 pin Terminal Block

1pcs

DIN-Rail Bracket

1pcs

The maximum power consumption of EW50 series products is 7 Watts.

Page 9

EW50 Industrial LTE Cellular Gateway

1.3 Hardware Configuration

 Front View

※Reset Button

The RESET button provides a quick and easy way to restore the default settings. Press the RESET button continuously for 6 seconds, and then release it. The device will reset to factory default settings.

Reset Button

LED Indicators

3G / 4G

Antenna

Serial Port

Auto MDI/MDIX RJ45 Ports

2x GE LAN to connect local devices

Page 10

EW50 Industrial LTE Cellular Gateway

 Bottom View

 Left View

SIM A

Slot

SIM B

Slot

3G/4G (Aux)

Antenna

3G/4G (Main)

Antenna

USB

Port

DI/DO

Terminal

Block

MicroSD

Slot

Power Terminal

Block

Page 11

EW50 Industrial LTE Cellular Gateway

1.4 LED Indicators

LED Icon

Indication

LED Color

Description

Power Source

Blue

Steady ON: Device is powered ON.

USB

Blue

OFF: No Serial data transferred via USB port Flashing: Data packets being transferred via USB port

SIM A/B

Blue

OFF: SIM not detected Slow Flash (per Second): SIM A/B was chosen for the connection Steady ON: Cellular connection successfully established (under SIM

A/B)

Cellular Signal

Blue

Steady On: Signal Strength is 61~100% Slow Flash (per Second): Signal Strength is 31~60% Fast Flash (per 0.5 second): Signal Strength is 0~30% Very Fast Flash: Device is in Recovery mode, or abnormal state.

Serial

Blue

OFF: No serial data transferred via serial port Flashing: while data packet transferred via Serial port

WAN/LAN1 ~ LAN 2

Green

Steady ON: Ethernet connection of LAN or WAN is established. Flashing: Data packets are being transferred. OFF: No Ethernet cable attached or device not linked.

Page 12

EW50 Industrial LTE Cellular Gateway

1.5 Installation & Maintenance Notice

1.5.1 SYSTEM REQUIREMENTS

Network Requirements

 A gigabit Ethernet RJ45 cable  3G/4G cellular service subscription  10/100/1000 Ethernet adapter on PC

Web-based Configuration Utility Requirements

Computer with the following:

 Windows®, Macintosh, or Linux-based operating

system

 An installed Ethernet adapter

Browser Requirements:

 Internet Explorer 6.0 or higher  Chrome 2.0 or higher  Firefox 3.0 or higher  Safari 3.0 or higher

1.5.2 WARNING



Only use the power supply that complys with the power

specification of the gateway. Using an out-of-spec

voltage rating power source is dangerous and may

damage the product.

 Do not open or repair the case yourself. If the product is

too hot, turn off the power immediately and have it

repaired at a qualified service center.

Attention

Page 13

EW50 Industrial LTE Cellular Gateway

1.5.3 HOT SURFACE CAUTION

CAUTION: The surface temperature for the metallic enclosure can be very high!

Especially after long periods of operation, when installed in a closed cabinet without air conditioning, or in a location with a high ambient temperature.

DO NOT touch the hot surface!!

Page 14

EW50 Industrial LTE Cellular Gateway

1.5.4 Product Information for CE RED Requirements

The following product information required to be presented in product User Manual for latest CE RED requirements.

(1) Frequency Band & Maximum Power

1.a Frequency Band for Cellular Connection

Band number

Operating Frequency

Max output power

LTE FDD BAND 1

Uplink: 1920-1980 MHz Downlink: 2110-2170 MHz

23 ±2.7 dBm

LTE FDD BAND 3

Uplink: 1710-1785 MHz Downlink: 1805-1880 MHz

LTE FDD BAND 7

Uplink: 2500-2570 MHz Downlink: 2620-2690 MHz

LTE FDD BAND 8

Uplink: 880-915 MHz Downlink: 925-960 MHz

LTE FDD BAND 20

Uplink: 832-862 MHz Downlink: 791-821 MHz

WCDMA BAND 1

Uplink: 1920-1980 MHz Downlink: 2110-2170 MHz

24 +1/-3 dBm

WCDMA BAND 8

Uplink: 880-915 MHz Downlink: 925-960 MHz

E-GSM

Uplink: 880-915 MHz Downlink: 925-960 MHz

33 ±2 dBm

DCS

Uplink: 1710-1785 MHz Downlink: 1805-1880 MHz

30 ±2 dBm

(2) RF Exposure Statements

The antenna of the product, under normal conditions, should be at least 20 cm away from the body of the

user.

The information presented in this section is ONLY valid for the EU/EFTA regional version. For non-CE/EFTA versions, refer to the

corresponding product specification.

Page 15

EW50 Industrial LTE Cellular Gateway

1.6 Hardware Installation

This chapter describes how to install and configure the hardware

1.6.1 Mount the Unit

The EW50 series product can be mounted on a wall, horizontal plane, or DIN Rail in a cabinet with the mounting accessories. The mounting accessories are not screwed on the product when shipped from factory. Screw the DIN-rail bracket on the product first.

1.6.2 Insert the SIM Card

WARNING: BEFORE INSERTING OR CHANGING THE SIM CARD, PLEASE MAKE SURE THAT DEVICE POWER IS SWITCHED OFF.

The SIM card slots are located at the bottom side of the housing. Unscrew and remove the outer SIM card cover before installing or removing the SIM card. After SIM card is correctly placed, return the outer SIM card cover to its original position and screw it in place.

Step 1:

Pull the SIM holder in the direction indicated by the red arrow to

unlock it.

Step 2:

Lift up the SIM holder, and insert the SIM card.

Step 3:

Put the SIM holder back, and push it in the direction indicated by the red arrow

to lock it.

Page 16

EW50 Industrial LTE Cellular Gateway

1.6.3 Connecting Power

The EW50 series products can be powered by connecting a DC power source to the terminal block. It supports 9 to 36V DC power input. The following picture indicates the power terminal block pin assignments. Please

check carefully and connect to the right power requirements and polarity.

There is a DC12V/1A power adapter3 in the package for you to easily connect DC power adapter to this terminal block.

WARNNING: This commercial-grade power adapter is mainly for ease of powering up the purchased device for initial configuration. It is not intended for operation in environments with extreme raanges of temperature. PREPARE OR PURCHASE AN INDUSTRIAL-GRADE POWER SUPPLY FOR LONG-TERM USE.

The maximum power consumption of the EW50 series is 7 Watts.

GND

PWR

Page 17

EW50 Industrial LTE Cellular Gateway

1.6.4 Connecting DI/DO Devices

There is one DI (digital input) and one DO (digital output) port next to the power terminal block. Refer to the following specification for connection of DI and DO devices.

Mode

Specification

Digital Input Trigger Voltage (high)

Logic level 1: 5V~30V

Normal Voltage (low)

Logic level 0: 0V~2V

Digital Output

Voltage (Relay Mode)

Depends on external device Maximum voltage is 30V

Maximum Current

Example of Connection Diagram

DI+ DI

DO+ DO

Page 18

EW50 Industrial LTE Cellular Gateway

1.6.6 Connecting Serial Devices

The EW50 has a 6-pin Terminal Block serial port for connecting to your serial device. Connect the serial device to the terminal block with the right pin assignments of RS-232/485 (shown below).

Pin 1 2 3 4 5 6

Pin1

Pin2

Pin3

Pin4

Pin5

Pin6

Port

SPort-0

SPort-1

RS-232

RXD

TXD

GND

RXD

TXD

RS-485

DATA-

DATA+

GND

DATA-

DATA+

1.6.7 Connecting to the Network or a Host

The EW50 series provides RJ45 ports to connect 10/100/1000Mbps Ethernet. It can auto detect the transmission speed on the network and configure itself automatically. Connect one Ethernet cable to the RJ45 port (LAN) of the device and plug another end of the Ethernet cable into your computer’s network port. In this way, you can use the RJ45 Ethernet cable to connect to the host PC’s Ethernet port for configuring the device.

Page 19

EW50 Industrial LTE Cellular Gateway

1.6.8 Setup by Configuring WEB UI

You can use the web UI to configure the device.

The IP Address is (http://192.168.123.254)4

When you see the login page, enter the password ‘admin’

and then click the ‘Login’ button.

The default LAN IP address of this gateway is 192.168.123.254. If you change it, you will need to log in using

the new IP address.

2 It is strongly recommended to change this login password from the default value.

Page 20

EW50 Industrial LTE Cellular Gateway

Chapter 2 Basic Network

2.1 WAN & Uplink

The gateway provides multiple WAN interfaces to let client hosts in the Intranet of the gateway access the Internet via ISP. But ISPs apply various connection protocols to let gateways or user's devices dial in to ISPs and then link to the Internet via different kinds

of media.

So, the WAN Connection lets you specify the WAN Physical Interface, WAN Internet Setup and WAN Load Balance for Intranet to access Internet. For each WAN interface, you must specify its physical interface first and then its Internet setup to connect to ISP. Since the gateway has multiple WAN interfaces, you can assign physical interface to participate in the Load Balance function.

Page 21

EW50 Industrial LTE Cellular Gateway

2.1.1 Physical Interface

M2M gateways are usually equipped with various WAN interfaces to support different WAN connection scenarios. You can configure the WAN interfaces one by one to get proper internet connection setup. Refer to the product specification for

the available WAN interfaces in your model.

The first step to configure one WAN interface is to specify which kind of connection media is to be used for the WAN connection, as shown in "Physical Interface" page.

In the "Physical Interface" page, there are two configuration windows, "Physical Interface List" and "Interface Configuration". The "Physical Interface List" window shows all the available physical interfaces. After clicking on the "Edit" button for the interface in "Physical Interface List" window the "Interface Configuration" window will appear.

Physical Interface:

• Ethernet WAN: The gateway has one or more RJ45 WAN ports that can be configured to be WAN connections. You can directly connect to external DSL modem or setup behind a firewall device.

• 3G/4G WAN: The gateway has one built-in 3G/4G cellular as WAN connection. For each cellular WAN, there are 1 or 2 SIM card slots.

Page 22

EW50 Industrial LTE Cellular Gateway

Operation Mode:

There are three option items “Always on”, “Failover”, and “Disable” for the operation mode setting.

Always on: Set this WAN interface to be active all the time. When two or more WAN are established at

"Always on" mode, outgoing data will pass through these WAN connections based on load balance policies.

Failover:

A failover interface is a backup connection to the primary. That means only when the primary WAN connection is broken, the backup connection will be started up to substitute the primary connection. As shown in the diagram, WAN-2 is backup WAN for WAN-1. WAN-1 serves as the primary connection with operation mode "Always on". WAN-2 won’t be activated until WAN-1 is disconnected. When WAN-1 connection is recovered, it will take over data traffic again. At that time, WAN-2 connection will be terminated.

 POWER OFF the gateway before you insert or

remove a SIM card.

 The SIM card can be damaged if you insert or

remove SIM card while the gateway is in operation.

Page 23

EW50 Industrial LTE Cellular Gateway

Seamless Failover:

In addition, there is a "Seamless" option for Failover operation mode. When seamless option is activated by checking the "Seamless" box in the configuration window, both the primary connection and the failover connection are started up after system rebooting. But only the primary connection executes data transfer, while the failover one just keeps the connection alive. As soon as the primary connection is lost, the system will switch to the failover connection.

When the “Seamless” enable checkbox is activated, it can allow the Failover interface to be connected continuously from the time the system boots up. The failover WAN interface maintains the connection without transferring data traffic. This is to shorten

the switch time during failover process. When the primary connection is disconnected, failover interface will take over the data transfer mission instantly by only changing the routing path to the failover interface. The dialing-up time of failover connection is reduced since it has been connected beforehand.

VLAN Tagging

Sometimes, your ISP requires a VLAN tag to be inserted into the WAN packets from the Gateway for specific services. Please enable VLAN tagging and specify tag in the WAN physical interface. Please note that only Ethernet and ADSL physical interfaces support this feature. For devices with 3G/4G WAN only, it is disabled.

Page 24

EW50 Industrial LTE Cellular Gateway

Physical Interface Setting

Go to Basic Network > WAN > Physical Interface tab.

The Physical Interface allows for the setup of the physical WAN interface and adjustment of WAN’s behavior.

Note: Number of available WAN Interfaces varies by model.

When the Edit button is applied, an Interface Configuration screen will appear. WAN-1 interface is used in this example.

Interface Configuration:

Page 25

EW50 Industrial LTE Cellular Gateway

Interface Configuration

Item

Value setting

Description

Physical Interface

1. Required setting

2. WAN-1 is the primary interface and is factory set to Always on.

Select one expected interface from the available interface dropdown list. Depending on the gateway model, Disable and Failover options will be available only to multiple WAN gateways. WAN-2 ~ WAN-4 interfaces are only available to multiple WAN gateways.

Operation Mode

Required setting

Define the operation mode of the interface. Select Always on to make this WAN always active. Select Disable to disable this WAN interface. Select Failover to make this WAN a Failover WAN when the primary or the secondary WAN link fails. Then select the primary or the existing secondary WAN interface to switch Failover from.

(Note: for WAN-1, only Always on option is available.)

VLAN Tagging

Optional setting

Check Enable box to enter tag value provided by your ISP. Otherwise uncheck the box.

Value Range: 1 ~ 4095.

Note: This feature is NOT available for 3G/4G WAN connection.

Page 26

EW50 Industrial LTE Cellular Gateway

2.1.2 Internet Setup

After specifying the physical interface for each WAN connection, the connection profile must be configured to satisfy the dial-in process of the ISP, so that all client hosts in the Intranet of the gateway can access the Internet.

On the "Internet Setup" page there are some configuration windows: "Internet Connection List", "Internet Connection Configuration", "WAN Type Configuration" and related configuration windows for each WAN type. For the Internet setup of each WAN interface, you must specify its WAN type of physical interface first and then the related parameter configuration for that WAN type.

After clicking on the "Edit" button of a physical interface in "Internet Setup List" window, the "Internet Connection Configuration" window will appear to let you specify which kind of WAN type that you will use for that physical interface to make an Internet connection. Based on your chosen WAN type, you can configure necessary parameters in each corresponding configuration window.

Page 27

EW50 Industrial LTE Cellular Gateway

Internet Connection List - Ethernet WAN

WAN Type for Ethernet Interface:

Ethernet is the most common WAN and uplink interface for M2M gateways. Usually it is connected with xDSL or cable modem for you to setup the WAN connection. There are various WAN types for connection with an ISP.

• Static IP: Select this option if the ISP provides a fixed IP. This is usually is more expensive, but important

for cooperate requirements.

• Dynamic IP: The assigned IP address for the WAN by a DHCP server is different every time. This is cheaper

and usually for consumer use.

• PPP over Ethernet: As known as PPPoE. This WAN type is widely used for ADSL connection. IP is usually

different for every dial up.

• PPTP: This WAN type is popular in some countries, like Russia.

• L2TP: This WAN type is popular in some countries, like Israel.

Configure Ethernet WAN Setting

When the Edit button is applied, the Internet Connection Configuration screen will appear. WAN-1 interface is used in this example.

Page 28

EW50 Industrial LTE Cellular Gateway

WAN Type = Dynamic IP

When selected, "Dynamic IP WAN Type Configuration" will appear. Items and settings are explained below.

Dynamic IP WAN Type Configuration

Item

Value setting

Description

Host Name

Optional setting

Enter the host name provided by your service provider.

ISP Registered MAC Address

Optional setting

Enter the MAC address that you have registered with your service provider. Or Click the Clone button to clone your PC’s MAC to this field.

Usually this is the PC’s MAC address assigned to allow you to connect to

the Internet.

WAN Type= Static IP

When selected, "Static IP WAN Type Configuration" will appear. Items and settings are explained below.

Page 29

EW50 Industrial LTE Cellular Gateway

Static IP WAN Type Configuration

Item

Value setting

Description

WAN IP Address

Required setting

Enter the WAN IP address given by your service provider

WAN Subnet Mask

Required setting

Enter the WAN subnet mask given by your service provider

WAN Gateway

Required setting

Enter the WAN gateway IP address given by your service provider

Primary DNS

Required setting

Enter the primary WAN DNS IP address given by your service provider

Secondary DNS

Optional setting

Enter the secondary WAN DNS IP address given by your service provider

WAN Type= PPPoE

When selected, "PPPoE WAN Type Configuration" will appear. Items and settings are explained below.

PPPoE WAN Type Configuration

Item

Value setting

Description

IPv6 Dual Stack

1. Optional setting

2. Unchecked by default

Click the Enable checkbox to activate the IPv6 Dual stack function.

PPPoE Account

Required setting

Enter the PPPoE User Name provided by your service provider.

PPPoE Password

Required setting

Enter the PPPoE password provided by your service provider.

Primary DNS

Optional setting

Enter the IP address of Primary DNS server.

Secondary DNS

Optional setting

Enter the IP address of Secondary DNS server.

Service Name

Optional setting

Enter the service name if your ISP requires it

Assigned IP Address

Optional setting

Enter the IP address assigned by your service provider.

Page 30

EW50 Industrial LTE Cellular Gateway

WAN Type= PPTP

When selected, "PPTP WAN Type Configuration" will appear. Items and settings are explained below.

PPTP WAN Type Configuration

Item

Value setting

Description

IP Mode

Required setting

Select either Static or Dynamic IP address for PPTP Internet connection.

 When Static IP Address is selected, you will need to enter the WAN IP

Address, WAN Subnet Mask, and WAN Gateway.

 WAN IP Address (Required setting): Enter the WAN IP address

given by your service provider.

 WAN Subnet Mask (Required setting): Enter the WAN subnet

mask given by your service provider.

 WAN Gateway (Required setting): Enter the WAN gateway IP

address given by your service provider.

 When Dynamic IP is selected, the above settings are not required.

Server IP Address/Name

Required setting

Enter the PPTP server name or IP Address.

PPTP Account

Required setting

Enter the PPTP username provided by your service provider.

PPTP Password

Required setting

Enter the PPTP connection password provided by your service provider.

Connection ID

Optional setting

Enter a name to identify the PPTP connection.

MPPE

Optional setting

Select Enable to enable MPPE (Microsoft Point-to-Point Encryption) security for PPTP connection.

Page 31

EW50 Industrial LTE Cellular Gateway

WAN Type= L2TP

When selected, "L2TP WAN Type Configuration" will appear. Items and settings are explained below.

L2TP WAN Type Configuration

Item

Value setting

Description

IP Mode

Required setting

Select either Static or Dynamic IP address for L2TP Internet connection.

 When Static IP Address is selected, you will need to enter the WAN IP

Address, WAN Subnet Mask, and WAN Gateway.

 WAN IP Address (Required setting): Enter the WAN IP address

given by your service provider.

 WAN Subnet Mask (Required setting): Enter the WAN subnet

mask given by your service provider.

 WAN Gateway (Required setting): Enter the WAN gateway IP

address given by your service provider.

 When Dynamic IP is selected, the above settings are not required.

Server IP Address/Name

Required setting

Enter the L2TP server name or IP Address.

L2TP Account

Required setting

Enter the L2TP username provided by your service provider.

L2TP Password

Required setting

Enter the L2TP connection password provided by your service provider.

Service Port

Required setting

Enter the service port for the Internet service. There are three options:

 Auto: Port will be automatically assigned.  1701 (For Cisco): Set service port to port 1701 to connect to

CISCO server.

 User-defined: enter a service port provided by your service

provider.

MPPE

Optional setting

Select Enable to enable MPPE (Microsoft Point-to-Point Encryption) security for PPTP connection.

Page 32

EW50 Industrial LTE Cellular Gateway

Ethernet Connection Common Configuration

There are some important parameters to be set up no matter which type of WAN is selected.

Connection Control.

Auto-reconnect: The gateway will establish an Internet connection automatically once it has been booted up, and try to reconnect once the connection is down. It is recommended to choose this scheme for mission critical applications to ensure full-time Internet connection.

Connect-on-demand: The gateway will not start to establish an Internet connection until local data is going to be sent to the WAN side. After normal data transfer between LAN and WAN sides, this gateway will disconnect the WAN connection if idle time reaches value of Maximum Idle Time.

Page 33

EW50 Industrial LTE Cellular Gateway

Manually: This gateway will not start to establish a WAN connection until the “Connect” button in web UI is pressed. After normal data transfer between LAN and WAN sides, this gateway will disconnect if idle time reaches value of Maximum Idle Time.

Note: If the WAN interface serves as the primary one for another WAN interface in Failover role, the Connection Control parameter will not be available on both WANs as the system must set it to “Auto- reconnect”.

Network Monitoring

When it is necessary to monitor connection status continuously, "ICMP Check" and "FQDN Query" are used. When there is high connection traffic, checking packets will waste bandwidth, and the response time of replied packets may also increase. To prevent "Network Monitoring" from working abnormally, enabling the "Checking Loading" option will stop connection checking when there is high traffic. It will wait for another "Check Interval" and then check loading again.

When you do “Network Monitoring”, if the reply time is

longer than "Latency" or no response time is longer than "Checking Timeout", the "Fail" count will be increased. If it is continuous and "Fail" count is more than the configured "Fail Threshold", the gateway will do an exception handling process and re-initialize the connection again. Otherwise, network monitoring process will restart.

Page 34

EW50 Industrial LTE Cellular Gateway

Set up “Ethernet Common Configuration”

Ethernet WAN Common Configuration

Item

Value setting

Description

Connection Control

Required setting

There are three connection modes.

 Auto-reconnect enables the router to always keep the Internet

connection on.

 Connect-on-demand enables the router to automatically re-

establish Internet connection as soon as user attempts to access the Internet. Internet connection will be disconnected when it has been inactive for a specified idle time.

 Connect Manually allows user to connect to Internet manually.

Internet connection will be inactive after it has been inactive for specified idle time.

Note: If the WAN interface serves as the primary one for another WAN interface in Failover role (and vice versa), the Connection Control parameter will not be available on both WANs as the system must set it to “Auto-reconnect”

Maximum Idle Time

1. Optional setting

2. 600 seconds is default

Specify the Maximum Idle Time setting to disconnect the internet connection when the connection idle times out.

Value Range: 300 ~ 86400. Note: This field is available only when Connect-on-demand or Connect Manually is selected as the connection control scheme.

MTU

1. Required setting

2. Auto(0) is set by default

3. Manual set range 1200~1500

MTU refers to Maximum Transmission Unit. It specifies the largest packet size permitted for Internet transmission. When set to Auto (value ‘0’), the router selects the best MTU for best Internet connection performance.

NAT

1. Optional setting

2. NAT is enabled by default

Enable NAT (Network Address Translation) on the WAN connection. Uncheck the box to disable NAT.

IGMP

1. Required setting

2. Disable is set by default

Enable IGMP (Internet Group Management Protocol) to enable the router to listen to IGMP packets to discover which interfaces are connected to which device. The router uses the interface information generated by IGMP to reduce bandwidth consumption in a multi-access network environment to avoid flooding the entire network.

WAN IP Alias

1. Optional setting

2. Box is unchecked by default

Enable WAN IP Alias then enter the IP address provided by your service provider. WAN IP Alias is used by the device router and is treated as a second set of WAN IP to provide dual WAN IP address to your LAN network.

Network Monitoring

1. Optional setting

2. Enabled by default

When the Network Monitoring feature is enabled, the gateway will use DNS Query or ICMP to periodically check Internet connection status.  Choose either DNS Query or ICMP Checking to detect WAN link.

With DNS Query, the system checks the connection by sending DNS Query packets to the destination specified in Target 1 and Target 2. With ICMP Checking, the system will check connection by sending ICMP request packets to the destination specified in Target 1 and Target 2.

 Loading Check

Enabling Loading Check allows the router to ignore unreturned DNS Queries or ICMP requests when WAN bandwidth is fully occupied. This is to prevent false link-down status.

Page 35

EW50 Industrial LTE Cellular Gateway

 Check Interval defines the transmitting interval between two DNS

Query or ICMP checking packets.

 Check Timeout defines the timeout of each DNS query/ICMP.  Latency Threshold defines the tolerance threshold of responding

time.

 Fail Threshold specifies the detected disconnection before the router

recognize the WAN link down status. Enter a number of detecting disconnection times to be the threshold before disconnection is acknowledged.

 Target1 (DNS1 set by default) specifies the first target of sending DNS

query/ICMP requests.

 DNS1: set the primary DNS to be the target.  DNS2: set the secondary DNS to be the target.  Gateway: set the Current gateway to be the target.  Other Host: enter an IP address to be the target.

 Target2 (None set by default) specifies the second target of sending

DNS query/ICMP request.

 None: to disable Target2.  DNS1: set the primary DNS to be the target.  DNS2: set the secondary DNS to be the target.  Gateway: set the current gateway to be the target.  Other Host: enter an IP address to be the target.

Save

N/A

Click Save to save the settings.

Undo

N/A

Click Undo to cancel the settings.

Network Monitoring Configuration

Item

Value setting

Description

Network Monitoring Configuration

1. Optional setting

2. Box is checked by default

Check the Enable box to activate the network monitoring function.

Checking Method

1. Optional setting

2. DNS Query is set by

default

Choose either DNS Query or ICMP Checking to detect WAN link. With DNS Query, the system checks the connection by sending DNS Query packets to the destination specified in Target 1 and Target 2. With ICMP Checking, the system will check connection by sending ICMP request packets to the destination specified in Target 1 and Target 2.

Query Interval defines the transmitting interval between two DNS Query or ICMP checking packets.

Loading Check

1. Optional setting

2. Box is checked by default

Check the Enable box to activate the loading check function. Enable Loading Check allows the gateway to ignore unreturned DNS queries or ICMP requests when WAN bandwidth is fully occupied. This is to prevent false link-down status.

Latency Threshold defines the tolerance threshold of responding time. Fail Threshold specifies the number of detected disconnections before the

router recognizes the WAN link down status. Enter a number of detected disconnection times as the threshold for disconnection.

Target 1

1. Optional setting

2. DNS1 is selected by default

Target1 specifies the first target of sending DNS query/ICMP request. DNS1: set the primary DNS to be the target. DNS2: set the secondary DNS to be the target. Gateway: set the Current gateway to be the target.

Page 36

EW50 Industrial LTE Cellular Gateway

Other Host: enter an IP address to be the target.

Target 2

1. Optional setting

2. None is selected by default

Target1 specifies the second target of sending DNS query/ICMP requests. None: no second target is required. DNS1: set the primary DNS to be the target. DNS2: set the secondary DNS to be the target. Gateway: set the Current gateway to be the target. Other Host: enter an IP address to be the target.

Save

N/A

Click Save to save the settings.

Undo

N/A

Click Undo to cancel the settings.

Page 37

EW50 Industrial LTE Cellular Gateway

Internet Connection – 3G/4G WAN

Preferred SIM Card – Dual SIM Fail Over

For 3G/4G embedded devices, one embedded cellular module can create only one WAN interface. This device features dual SIM cards for one module with special fail-over mechanism. It is called Dual SIM Failover. This feature is useful for ISP switch-over when location is changed. Within “Dual SIM Failover,” there are various usage scenarios, including "SIM-A First," "SIM-B First“ with “Failback” enabled or not, and “SIM-A Only and “SIM-B Only”.

Page 38

EW50 Industrial LTE Cellular Gateway

SIM-A/SIM-B only: When “SIM-A Only” or “SIM-B Only” is used, the specified SIM slot card is the only one used for negotiation parameters between the gateway device and cellular ISP.

SIM-A / SIM-B first without Failback enabled

By default, the “SIM-A First” scenario is used to connect to cellular ISP for data transfer. In the case of “SIM-A First” or “SIM-B First” scenario, the gateway will try to connect to the Internet by using SIM-A or SIM-B card first. If the connection is broken, the gateway will automatically switch to use the other SIM card as an alternate and will not switch back to use original SIM card except when the current SIM connection is also broken. That is, SIM-A and SIM-B are used iteratively, but either one will keep being used for data transfer when current connection is still alive.

SIM-A / SIM-B first with Failback enabled

With Failback option enabled, “SIM-A First” scenario is used to connect when the connection is broken, gateway system will switch to use SIM-B. And when SIM-A connection is recovered, it will switch back to use the original SIM-A card

Configure 3G/4G WAN Setting

When the Edit button is applied, Internet Connection Configuration, and 3G/4G WAN Configuration screens will appear. WAN-2 interface is used in this example.

Page 39

EW50 Industrial LTE Cellular Gateway

3G/4G Connection Configuration

Item

Value setting

Description

WAN Type

1. Required setting

2. 3G/4G is set by

default.

From the dropdown box, select the Internet connection method for 3G/4G WAN Connection. Only 3G/4G is available.

Preferred SIM Card

1. Required setting

2. By default SIM-A First is selected

3. Failback is unchecked by default

Choose which SIM card you want to use for the connection. When SIM-A First or SIM-B First is selected, it means the connection is built

first by using SIM A/SIM B. If the connection fails, it will switch to the other SIM card and try to dial again, until the connection is up. When SIM-A only or SIM-B only is selected, it will try to dial up only using the SIM card you selected. When Failback is checked, it means if the connection is dialed-up not using the main SIM you selected, it will failback to the main SIM and try to establish the connection periodically.

Note_1: For producta with a single SIM design, only SIM-A Only option is available. Note_2: Failback is available only when SIM-A First or SIM-B First is selected.

Configure SIM-A / SIM-B Card

Here you can set configurations for the cellular connection according to your requirements.

Note_1: Configurations of SIM-B Card follow the same rule of Configurations of SIM-A Card, here we list SIM-A as the example.

Note_2: Both Connection with SIM-A Card and Connection with SIM-B Card will pop up only when the SIM-A First or SIM-B First is selected, otherwise only one will pop up.

Page 40

EW50 Industrial LTE Cellular Gateway

Connection with SIM-A/-B Card

Item

Value setting

Description

Network Type

1. Required setting

2. By default Auto is selected

Select Auto to register a network automatically, regardless of the network type. Select 2G Only to register 2G networks only. Select 2G Prefer to register 2G networks first if available. Select 3G only to register 3G networks only. Select 3G Prefer to register 3G networks first if available. Select LTE only to register LTE networks only.

Note: Options may vary by model.

Dial-Up Profile

1. Required setting

2. By default Manual- configuration is selected

Specify the type of dial-up profile for your 3G/4G network. It can be

Manual-configuration, APN Profile List, or Auto-detection.

Select Manual-configuration to set APN (Access Point Name), Dial Number, Account, and Password to what your carrier provides. Select APN Profile List to set more than one profile to dial up in turn, until the connection is established. A new field will pop up. Go to Basic Network > WAN & Uplink > Internet Setup > SIM-A APN Profile List for details. Select Auto-detection to automatically bring out all configurations needed while dialing-up, by comparing the IMSI of the SIM card to the record listed in the manufacturer’s database.

Note_1: It is highly recommended to select the Manual or APN Profile List to specify the network for your subscription. Your ISP should provide such network settings. Note_2: If you select Auto-detection, it is likely to connect to an improper network, or fail to find a valid APN for your ISP.

APN

1. Required setting

2. String format: any text

Enter the APN you want to use to establish the connection. This is a required setting if you selected Manual-configuration as dial-up profile scheme.

PIN code

1. Optional setting

2. String format: integer

Enter the PIN (Personal Identification Number) code if needed to unlock your SIM card.

Dial Number, Account, Password

1. Optional setting

2. String format: any text

Enter the optional Dial Number, Account, and Password settings if your ISP provided these settings. Note: These settings are only displayed when Manual-configuration is selected.

Authentication

1. Required setting

2. By default Auto is selected

Select PAP (Password Authentication Protocol) and use such protocol to be authenticated with the carrier’s server. Select CHAP (Challenge Handshake Authentication Protocol) and use such protocol to be authenticated with the carrier’s server. When Auto is selected, it means it will authenticate with the server using either PAP or CHAP.

IP Mode

1. Required setting

2. By default Dynamic IP is selected

When Dynamic IP is selected, it means it will get all IP configurations from the carrier’s server and set to the device directly. If you have specific application provided by the carrier, and want to set IP configurations on your own, you can switch to Static IP mode and fill in all parameters that required, such as IP address, subnet mask and gateway. Note: IP Subnet Mask is Required setting. Make sure you have the right configuration.

Primary DNS

1. Optional setting

Enter the IP address to change the primary DNS (Domain Name Server)

Page 41

EW50 Industrial LTE Cellular Gateway

2. String format: IP address (IPv4 type)

setting. If it is not filled-in, the server address is given by the carrier while dialing-up.

Secondary DNS

1. Optional setting

2. String format: IP address (IPv4 type)

Enter the IP address to change the secondary DNS (Domain Name Server) setting. If it is not filled-in, the server address is given by the carrier while dialing-up.

Roaming

Unchecked by default

Check the box to establish the connection even if the registration status is roaming, not in home network.

Note: Additional charges may be incurred if the connection is set to roaming.

Create/Edit SIM-A / SIM-B APN Profile List

You can add a new APN profile for the connection, or modify the contents of an APN profile you have added. It is available only when you select Dial-Up Profile as APN Profile List.

This lists all the APN profiles you created, making it easy to check and modify. It is available only when you select Dial-Up Profile as APN Profile List.

When Add button is applied, an APN Profile Configuration screen will appear.

SIM-A/-B APN Profile Configuration

Item

Value setting

Description

Profile Name

1. By default Profile-x is listed

2. String format: any text

Enter the profile name you want to describe for this profile.

APN

String format: any text

Enter the APN you want to use to establish the connection.

Account

String format: any text

Enter the Account you want to use for the authentication.

Value Range: 0 ~ 53 characters.

Password

String format: any text

Enter the Password you want to use for the authentication.

Page 42

EW50 Industrial LTE Cellular Gateway

Authentication

1. Required setting

2. Auto is selected by default

Select the Authentication method for the 3G/4G connection. It can be Auto, PAP, CHAP, or None.

Priority

1. Required setting

2. String format: integer

Enter the value for the dial-up order. The valid value is from 1 to 16. It will start to dial up with the profile that assigned with the smallest number.

Value Range: 1 ~ 16.

Profile

The box is checked by default

Check the box to enable this profile. Uncheck the box to disable this profile in dialing-up action.

Save

N/A

Click the Save button to save the configuration.

Undo

N/A

Click the Undo button to restore what you just configured back to the previous setting.

Back

N/A

When the Back button is clicked, the screen will return to the previous page.

Setup 3G/4G Connection Common Configuration

Here you can change common configurations for 3G/4G WAN.

3G/4G Connection Common Configuration

Item

Value setting

Description

Connection Control

By default Autoreconnect is selected

When Auto-reconnect is selected, it means the device will try to keep the Internet connection on at all timed whenever the physical link is connected. When Connect-on-demand is selected, it means the Internet connection will be established only when data traffic is detected. When Connect Manually is selected, it means the Connect button must be clicked to dial up the connection manually. Please go to Status > Basic Network > WAN & Uplink tab for details.

Note: If the WAN interface serves as the primary one for another WAN interface in Failover role( and vice versa), the Connection Control parameter will not be available on both WANs as the system must set it to “Auto-reconnect”

Maximum Idle Time

1. Optional setting

Specify the maximum Idle time setting to disconnect the internet

Page 43

EW50 Industrial LTE Cellular Gateway

2. By default 600 seconds is filled-in

connection when the connection has idle timed out.

Value Range: 300 ~ 86400.

Note: This field is available only when Connect-on-demand or Connect Manually is selected as the connection control scheme.

Time Schedule

1. Required setting

2. By default (0) Always is selected

When (0) Always is selected, it means this WAN is operating all the time. Once you have set other schedule rules, there will be other options to select. Please go to Object Definition > Scheduling for details.

MTU

1. Required setting

2. By default 0 is filled-in

Specify the MTU (Maximum Transmission Unit) for the 3G/4G connection.

Value Range: 512 ~ 1500, 0 is for auto.

IP Pass-through (Cellular Bridge)

1. Unchecked by default

2. String format for Fixed MAC: MAC address, e.g. 00:50:18:aa:bb:cc

When Enable box is checked, it means the device will directly assign the WAN IP to the first connected local LAN client. However, when an optional Fixed MAC is a non-zero value, it means only the client with this MAC address can get the WAN IP address.

Note: When the IP Pass-through is on, NAT and WAN IP Alias will be unavailable until the function is disabled again.

NAT

Checked by default

Uncheck the box to disable NAT (Network Address Translation) function.

IGMP

By default Disable is selected

Select Auto to enable IGMP function. Check the Enable box to enable IGMP Proxy.

WAN IP Alias

1. Unchecked by default

2. String format: IP address (IPv4 type)

Check the box to enable WAN IP Alias, and fill in the IP address you want to assign.

Network Monitoring Configuration

Item

Value setting

Description

Network Monitoring Configuration

1. Optional setting

2. Box is checked by default

Check the Enable box to activate the network monitoring function.

Checking Method

1. Optional setting

2. DNS Query is set by

default

Page 44

EW50 Industrial LTE Cellular Gateway

Query Interval defines the transmitting interval between two DNS Query or ICMP checking packets.

Loading Check

1. Optional setting

2. Box is checked by default

Latency Threshold defines the tolerance threshold of responding time. Fail Threshold specifies the detected disconnection before the router

recognize the WAN link down status. Enter a number of detected disconnection times to be the threshold before disconnection is acknowledged.

Target 1

1. Optional setting

2. DNS1 is selected by default

Target1 specifies the first target of sending DNS query/ICMP request. DNS1: set the primary DNS to be the target. DNS2: set the secondary DNS to be the target. Gateway: set the current gateway to be the target. Other Host: enter an IP address to be the target.

Target 2

1. Optional setting

2. None is selected by default

Target1 specifies the second target of sending DNS query/ICMP request. None: no second target is required. DNS1: set the primary DNS to be the target. DNS2: set the secondary DNS to be the target. Gateway: set the Current gateway to be the target. Other Host: enter an IP address to be the target.

Save

N/A

Click Save to save the settings.

Undo

N/A

Click Undo to cancel the settings.

Page 45

EW50 Industrial LTE Cellular Gateway

2.2 LAN & VLAN

This section describes the configuration of LAN and VLAN. VLAN is an optional feature, and its presence depends on the gateway model.

2.2.1 Ethernet LAN

The Local Area Network (LAN) can be used to share data or files among computers attached to a network. The following diagram illustrates a network of wired and interconnected computers.

Follow the following instructions to set up an IPv4 Ethernet LAN.

Configuration

Item

Value setting

Description

IP Mode

N/A

It shows the LAN IP mode for the gateway. Static IP: If there is at least one WAN interface activated, the LAN IP mode is fixed in Static IP mode. Dynamic IP: If all the available WAN inferfaces are disabled, the LAN IP mode can be Dynamic IP mode.

LAN IP Address

1. Required setting

2. 192.168.123.254 is set by default

Enter the local IP address of this device. The network device(s) on your network must use the LAN IP address of this device as their Default Gateway. You can change it if necessary.

Note: This is also the IP address of the web UI. If you change it, you will need to

enter the new IP address in the browser in order to see the web UI.

Subnet Mask

1. Required setting

2. 255.255.255.0 (/24) is set by default

Page 46

EW50 Industrial LTE Cellular Gateway

addresses are allowed in this subnet. However, one of them is occupied by the LAN IP address of this gateway, so there are a maximum of 253 clients allowed in LAN network.

Value Range: 255.0.0.0 (/8) ~ 255.255.255.252 (/30).

Save

N/A

Click the Save button to save the configuration

Undo

N/A

Click the Undo button to restore previous settings.

Create / Edit Additional IP

This gateway provides the LAN IP alias function for special management considerations. You can add additional LAN IPs for this gateway, and access this gateway through the additional IPs.

When Add button is applied, THHE Additional IP Configuration screen will appear.

Configuration

Item

Value setting

Description

Name

1. Optional setting

Enter the name for the alias IP address.

Interface

1. Required setting

2. lo is set by default

Specify the Interface type. It can be lo or br0.

IP Address

1. Optional setting

2. 192.168.123.254 is set by default

Enter the additional IP address for this device.

Subnet Mask

1. Required setting

2. 255.255.255.0 (/24) is set by default

Select the subnet mask for this gateway from the dropdown list. Subnet mask defines how many clients are allowed in one network or subnet. The default subnet mask is 255.255.255.0 (/24), and it means maximum 254 IP addresses are allowed in this subnet. However, one of them is occupied by LAN IP address of this gateway, so there are a maximum of 253 clients allowed in the LAN network.

Value Range: 255.0.0.0 (/8) ~ 255.255.255.255 (/32).

Save

Click the Save button to save the configuration

Page 47

EW50 Industrial LTE Cellular Gateway

2.2.2 VLAN

VLAN (Virtual LAN) is a logical network under a certain switch or router device to group client hosts with a specific VLAN ID. This gateway supports both Port-based VLAN and Tag-based VLAN. These functions allow

you to divide local network into different “virtual LANs”. It is common requirement for some application

scenarios. For example, if there are various departments within an SMB, all client hosts in the same department should own common access privilege and QoS property. You can assign departments either by port-based VLAN or tag-based VLAN as a group, and then configure it as needed. In some cases, the ISP may need the router to support “VLAN tags” for certain kinds of services (e.g. IPTV). You can group all devices requiring this service in one tag-based VLAN.

If the gateway has only one physical Ethernet LAN port, only very limited configuration is available if you enable Port-based VLANs.

 Port-based VLAN

Port-based VLANs can group Ethernet ports, Port-1 ~ Port-4, and Wi-Fi Virtual Access Points, VAP-1 ~ VAP-8, together for differentiated services like Internet surfing, multimedia enjoyment, VoIP, and so on. Two operation modes, NAT and Bridge, can be applied to each VLAN group. One DHCP server can be allocated for a NAT VLAN group to let group host members obtain IP addresses. Thus, each host can access Internet via the NAT mechanism of business access gateway. In bridge mode, Intranet packet flow is delivered out WAN trunk port with VLAN tag to upper link for different services.

A port-based VLAN is a group of ports on an Ethernet or Virtual APs of Wired or Wireless Gateway that form a logical LAN segment. The following is an example.

In a company, the administrator designs 3 network segments: Lobby/Meeting Room, Office, and Data Center. In a Wireless Gateway, the administrator can configure Lobby/Meeting Room segment with VLAN ID 3. The VLAN group includes Port-3 and VAP-8 (SSID: Guest) with NAT mode and DHCP-3 server equipped. The office segment is configured with VLAN ID 2. The VLAN group includes Port-2 and VAP-1 (SSID: Staff) with NAT mode

Page 48

EW50 Industrial LTE Cellular Gateway

and DHCP-2 server equipped. Finally, the administrator also configures the Data Center segment with VLAN ID

1. The VLAN group includes Port-1 with NAT mode to WAN interface as shown in following diagram.

The above diiagram shows a general case for a gateway with 3 Ethernet LAN ports. If the device has only one Ethernet LAN port, there will be only one VLAN group for the device. Under such a situation, it still supports both the NAT and Bridge mode for the Port-based VLAN configuration.

 Tag-based VLAN

 The tag-based VLAN function can group Ethernet ports, Port-1 ~ Port-4, and Wi-Fi Virtual Access

Points, VAP-1 ~ VAP-8, together with different VLAN tags for deployment in subnets. All packet flows can carry different VLAN tags even at the same physical Ethernet port. These flows can be directed to different destinations because they have differentiated tags. The approach is very useful to group hosts at different geographic locations into the same workgroup.

 Tag-based VLANs are also called VLAN Trunks. The VLAN Trunk collects all packet flows with

different VLAN IDs from the router and delivers them in the Intranet. VLAN membership in a tagged VLAN is determined by VLAN ID information within the packet frames that are received on a port. The administrator can further use a VLAN switch to separate the VLAN trunk to different groups based on VLAN ID. The following is an example.

Page 49

EW50 Industrial LTE Cellular Gateway

The administrator designs 3 network segments, Lab, Meeting Rooms, and Office. In a Secure VPN Gateway, the administrator can configure the Office segment with VLAN ID 12. The VLAN group is equipped with DHCP3 server to construct a 192.168.12.x subnet. He also configures the Meeting Rooms segment with VLAN ID 11. The VLAN group is equipped with DHCP-2 server to construct a 192.168.11.x subnet for Intranet only. That is, client hosts in VLAN 11 group cannot access the Internet. At last, he configures the Lab segment with VLAN ID

10. The VLAN group is equipped with DHCP-1 server to construct a 192.168.10.x subnet.

Page 50

EW50 Industrial LTE Cellular Gateway

 VLAN Groups Access Control

The administrator can specify the Internet access permission for all VLAN groups. He can also configure which VLAN groups are allowed to communicate with each other.

VLAN Group Internet Access

The administrator can specify members of one VLAN group to be able to access Internet or not. Following is an example that VLAN groups of VID is 2 and 3 can access Internet but the one with VID 1 cannot access Internet. That is, visitors in the meeting room and staff in the office network can access Internet. But the computers/servers in data center cannot access Internet due to security considerations. The servers in the data center are only for trusted staff or are accessed through secure tunnels.

Page 51

EW50 Industrial LTE Cellular Gateway

Inter VLAN Group Routing:

In Port-based tagging, the administrator can specify member hosts of one VLAN group to be able or not able to communicate with another VLAN group. This is a communication pair, and one VLAN group can join many communication pairs. But communication pairs do not have a transitive property. That is, if A can communicate with B, and B can communicate with C, it doesn’t imply that A can communicate with C. An example is shown in the following diagram. VLAN groups of VID 1 and 2 can access each other but the ones between VID 1 and VID 3 and between VID 2 and VID 3 cannot.

Page 52

EW50 Industrial LTE Cellular Gateway

VLAN Setting

Go to Basic Network > LAN & VLAN > VLAN Tab.

The VLAN function allows you to divide a local network into different virtual LANs, either port-based or tagbased.

Configuration

Item

Value setting

Description

VLAN Type

Port-based is selected by

default

Select the VLAN type that you want to use. Port-based: Port-based VLAN allows you to add rules for each LAN port, and you can implement advanced controls with the VLAN ID. Tag-based: Tag-based VLAN allows you to add VLAN ID, and select members and DHCP Server for this VLAN ID. Go to Tag-based VLAN List table.

Save

Click the Save button to save the configuration

Port-based VLAN – Create/Edit VLAN Rules

The port-based VLAN allows you to customize each LAN port. There is a default rule that shows the configuration of all LAN ports. If your device has a DMZ port, you will see DMZ configuration too. The maximum number of rules is based on the number of LAN ports.

When Add button is applied, the Port-based VLAN Configuration screen will appear. It includes 3 sections: Port-based VLAN Configuration, IP Fixed Mapping Rule List, and Inter VLAN Group Routing (enter through a

button).

Page 53

EW50 Industrial LTE Cellular Gateway

Port-based VLAN – Configuration

Port-based VLAN Configuration

Item

Value setting

Description

Name

1. Required setting

2. String format: already has default text

Define the Name of this rule. It has default text and cannot be modified.

VLAN ID

Required setting

Define the VLAN ID number, range is 1~4094.

VLAN Tagging

Disable is selected by

default.

The rule is activated according to VLAN ID and Port Members configuration when Enable is selected.

The rule is activated according Port Members configuration when Disable is selected.

NAT / Bridge

NAT is selected by default.

Select NAT mode or Bridge mode for the rule.

Page 54

EW50 Industrial LTE Cellular Gateway

Port Members

Unchecked by default.

Select which LAN port(s) and VAP(s) that you want to add to the rule. Note: The available member list will depend on product model.

WAN & WAN VID to Join

All WANs is selected by

default.

Select which WAN or All WANs that allow accessing Internet. Note: If Bridge mode is selected, you need to select a WAN and enter a VID.

LAN IP Address

Required setting

Assign an IP Address for the DHCP Server that the rule used, this IP address is a gateway IP.

Subnet Mask

255.255.255.0(/24) is

selected by default.

Select a Subnet Mask for the DHCP Server.

DHCP Server /Relay

Server is selected by default.

Define the DHCP Server type.

There are three types: Server, Relay, and Disable. Relay: Select Relay to enable DHCP Relay function for the VLAN group. You only

need to fill the DHCP Server IP Address field. Server: Select Server to enable DHCP Server function for the VLAN group. You need to specify the DHCP Server settings. Disable: Select Disable to disable the DHCP Server function for the VLAN group.

DHCP Server IP Address

(for DHCP Relay only)

Required setting

If you select Relay type of DHCP Server, assign a DHCP Server IP Address that the gateway will relay the DHCP requests to the assigned DHCP server.

DHCP Server Name

Required setting

Define name of the DHCP Server.

IP Pool

Required setting

Define the IP Pool range. There are Starting Address and Ending Address fields. If a client requests an IP address from this DHCP Server, it will assign an IP address in the range of IP

pool.

Lease Time

Required setting

Define a period of time for an IP Address that the DHCP Server leases to a new device. By default, the lease time is 86400 seconds.

Domain Name

String format, any text

The Domain Name of this DHCP Server.

Value Range: 0 ~ 31 characters.

Primary DNS

IPv4 format

The Primary DNS of this DHCP Server.

Secondary DNS

IPv4 format

The Secondary DNS of this DHCP Server.

Primary WINS

IPv4 format

The Primary WINS of this DHCP Server.

Secondary WINS

IPv4 format

The Secondary WINS of this DHCP Server.

Gateway

IPv4 format

The Gateway of this DHCP Server.

Enable

Unchecked by default

Click Enable box to activate this rule.

Save

Click the Save button to save the configuration

Undo

Click the Undo button to restore previous settings.

Page 55

EW50 Industrial LTE Cellular Gateway

Additionally, you can add some IP rules to the IP Fixed Mapping Rule List if DHCP Server for the VLAN groups is required.

When Add button is applied, the Mapping Rule Configuration screen will appear.

Mapping Rule Configuration

Item

Value setting

Description

MAC Address

Required setting

Define the MAC Address target that the DHCP Server wants to match.

IP Address

Required setting

Define the IP Address that the DHCP Server will assign. If there is a request from the MAC Address filled in the above field, the DHCP Server will assign this IP Address to the client whose MAC Address matched the rule.

Enable

Unchecked by default

Click Enable box to activate this rule.

Save

Click the Save button to save the configuration

Note: Always click on the Apply button to apply the changes after the web browser refresh has taken you back to the VLAN page.

Page 56

EW50 Industrial LTE Cellular Gateway

Port-based VLAN – Inter VLAN Group Routing

Click the VLAN Group Routing button, and the VLAN Group Internet Access Definition and Inter VLAN Group Routing screen will appear.

When the Edit button is applied, a screen similar to this will appear.

Inter VLAN Group Routing

Item

Value setting

Description

VALN Group Internet Access Definition

All boxes are checked by default.

By default, all boxes are checked, meaning all VLAN ID members are allowed to access WAN interface. If a VLAN ID box is unchecked, it means the VLAN ID member can’t access the Internet. Note: VLAN ID 1 is always available; it is the default VLAN ID of the LAN. Other

VLAN IDs are available only when they are enabled.

Inter VLAN Group Routing

Unchecked by default

Click the VLAN IDs box to enable the Inter VLAN access function.

By default, members in different VLAN IDs can’t access each other. The gateway

supports up to 4 rules for Inter VLAN Group Routing. For example, if ID_1 and ID_2 are checked, it means members in VLAN ID_1 can access members of VLAN ID_2, and vice versa.

Save

N/A

Click the Save button to save the configuration

Page 57

EW50 Industrial LTE Cellular Gateway

Tag-based VLAN – Create/Edit VLAN Rules

The Tag-based VLAN allows you to customize each LAN port according to VLAN ID. There is a default rule that shows the configuration of all LAN ports and all VAPs. If your device has a DMZ port, you will see DMZ configuration too. The router supports up to a maximum of 128 tag-based VLAN rule sets.

When thhe Add button is applied, the Tag-based VLAN Configuration screen will appear.

Tag-based VLAN Configuration

Item

Value setting

Description

VALN ID

Required setting

Define the VLAN ID number, range is 6~4094.

Internet Access

The box is checked by default.

Click Enable box to allow the members in the VLAN group access to internet.

Port

Unchecked by default

Check the LAN port box(es) to join the VLAN group.

VAP

Unchecked by default

Check the VAP box(es) to join the VLAN group. Note: Only the wireless gateway has the VAP list.

DHCP Server

DHCP 1 is selected by

default.

Select a DHCP Server for these members of this VLAN group. To create or edit DHCP server for VLAN, refer to Basic Network > LAN & VLAN >

DHCP Server.

Save

N/A

Click Save button to save the configuration Note: After clicking the Save button, always click the Apply button to apply the settings.

Page 58

EW50 Industrial LTE Cellular Gateway

2.2.3 DHCP Server

 DHCP Server

The gateway supports up to 4 DHCP servers to fulfill the DHCP requests from different VLAN groups (refer to VLAN section for details). There is one default setting for whose LAN IP Address is the same as the gateway LAN interface, with its default Subnet Mask setting as “255.255.255.0”, and its default IP Pool range is from

“.100” to “.200” as shown at the DHCP Server List page on gateway’s Web UI.

More DHCP server configurations can be added by clicking on the “Add” button behind “DHCP Server List”, or clicking on the “Edit” button at the end of each DHCP Server on list to edit the current settings. Additionally, you can select a DHCP Server and delete it by clicking on the “Select” check-box and the “Delete” button.

Page 59

EW50 Industrial LTE Cellular Gateway

 Fixed Mapping

User can assign fixed IP address to a specific client MAC address, when targets already exist in the DHCP Client List, or add other Mapping Rules manually in advance.

Page 60

EW50 Industrial LTE Cellular Gateway

DHCP Server Setting

Go to Basic Network > LAN & VLAN > DHCP Server Tab.

The DHCP Server setting allows user to create and customize DHCP Server policies to assign IP Addresses to the devices on the local area network (LAN).

Create / Edit DHCP Server Policy

The gateway allows you to customize your DHCP Server Policy. If multiple LAN ports are available, you can define one policy for each LAN (or VLAN group). A maximum of 4 policy sets are supported.

When Add button is applied, the DHCP Server Configuration screen will appear.

Page 61

EW50 Industrial LTE Cellular Gateway

DHCP Server Configuration

Item

Value setting

Description

DHCP Server Name

1. String format, any text

2. Required setting

Enter a DHCP Server name.

LAN IP Address

1. IPv4 format.

2. Required setting

The LAN IP Address of this DHCP Server.

Subnet Mask

255.0.0.0 (/8) is set by default

The Subnet Mask of this DHCP Server.

IP Pool

1. IPv4 format.

2. Required setting

The IP Pool of this DHCP Server. It is composed of Starting Address entered in this field and Ending Address entered in this field.

Lease Time

1. Numeric string format.

2. Required setting

The Lease Time of this DHCP Server.

Value Range: 300 ~ 604800 seconds.

Domain Name

String format, any text

The Domain Name of this DHCP Server.

Primary DNS

IPv4 format

The Primary DNS of this DHCP Server.

Secondary DNS

IPv4 format

The Secondary DNS of this DHCP Server.

Primary WINS

IPv4 format

The Primary WINS of this DHCP Server.

Secondary WINS

IPv4 format

The Secondary WINS of this DHCP Server.

Gateway

IPv4 format

The Gateway of this DHCP Server.

Server

Unchecked by default

Click Enable box to activate this DHCP Server.

Save

N/A

Click the Save button to save the configuration

Undo

N/A

Click the Undo button to restore what you just configured back to the previous setting.

Back

N/A

When the Back button is clicked the screen will return to the DHCP Server Configuration page.

Create / Edit Mapping Rule List on DHCP Server

The gateway allows you to customize your Mapping Rule List on DHCP Server. It supports up to a maximum of 64 rule sets. When Fix Mapping button is applied, the Mapping Rule List screen will appear.

When Add button is applied, the Mapping Rule Configuration screen will appear.

Page 62

EW50 Industrial LTE Cellular Gateway

Mapping Rule Configuration

Item

Value setting

Description

MAC Address

1. MAC Address string format

2. Required setting

The MAC Address of this mapping rule.

IP Address

1. IPv4 format.

2. Required setting

The IP Address of this mapping rule.

Rule

Unchecked by default

Click Enable box to activate this rule.

Save

N/A

Click the Save button to save the configuration

Undo

N/A

Click the Undo button to restore previous settings.

Back

N/A

When the Back button is clicked the screen will return to the DHCP Server Configuration page.

View / Copy DHCP Client List

When DHCP Client List button is applied, DHCP Client List screen will appear.

When the DHCP Client is selected and Copy to Fixed Mapping button is applied. The IP and MAC address of DHCP Client will apply to the Mapping Rule List on specific DHCP Server automatically.

Enable / Disable DHCP Server Options

The DHCP Server Options setting allows user to set DHCP OPTIONS 66, 72, or 114. Click the Enable button to activate the DHCP option function, and the DHCP Server will add the expected options in its sending out DHCPOFFER DHCPACK packages.

Page 63

EW50 Industrial LTE Cellular Gateway

Option

Meaning

RFC

TFTP server name

[RFC 2132]

Default World Wide Web Server

[RFC 2132]

114

URL

[RFC 3679]

Create / Edit DHCP Server Options

The gateway supports up to a maximum of 99 option settings.

When Add/Edit button is applied, the DHCP Server Option Configuration screen will appear.

DHCP Server Option Configuration

Item

Value setting

Description

Option Name

1. String format, any text

2. Required setting.

Enter a DHCP Server Option name.

DHCP Server Select

Dropdown list of all available DHCP servers.

Choose the DHCP server this option should apply to.

Option Select

1. Required setting.

2. Option 66 is selected by default.

Choose the specific option from the dropdown list. It can be Option 66, Option

72, or Option 144. Option 66 for TFTP; Option 72 for www; Option 144 for URL.

Type

Dropdown list of DHCP

Each option has different value types.

Page 64

EW50 Industrial LTE Cellular Gateway

server option value type

66 72

114

Value

1. IPv4 format

2. FQDN format

3. IP list

4. URL format

5. Required setting

Should conform to Type:

66 66

72 72

114 114

Enable

Unchecked by default

Click Enable box to activate this setting.

Save

Click the Save button to save the setting.

Undo

When the Undo button is clicked the screen will return back with nothing changed.

Page 65

EW50 Industrial LTE Cellular Gateway

2.3 IPv6

The growth of the Internet has created a need for more addresses than are possible with IPv4. IPv6 (Internet The growth of the Internet has created a need for more addresses than are possible with IPv4. IPv6 (Internet Protocol version 6) is a version of the Internet Protocol (IP) intended to succeed IPv4, which is the protocol currently used to direct almost all Internet traffic. IPv6 also implements additional features not present in IPv4. It simplifies aspects of address assignment (stateless address auto-configuration), network renumbering and router announcements when changing Internet connectivity providers.

2.3.1 IPv6 Configuration

The IPv6 Configuration setting allows user to set the IPv6 connection type to access the IPv6 network. This gateway supports various types of IPv6 connection, including Static IPv6, DHCPv6, PPPoEv6, 6to4, and 6in4

Note: For products only having 3G/4G WAN interface, only 6to4 and 6in4 are supported. Please contact your

Page 66

EW50 Industrial LTE Cellular Gateway

ISP to understand IPv6 support and settings before you proceed with IPv6 setup.

IPv6 WAN Connection Type

Static IPv6

Static IPv6 performs the same function as static IPv4. The static IPv6 provides manual setting of IPv6 addresses, IPv6 default gateway addresses, and IPv6 DNS.

The above diagram depicts IPv6 IP addressing. Use the information provided by your ISP to setup the IPv6 network.

DHCPv6

DHCP in IPv6 performs the same function as DHCP in IPv4. The DHCP server sends IP address, DNS server addresses and other possible data to the DHCP client to configure automatically. The server also sends a lease time of the address and time to re-contact the server for IPv6 address renewal. The client then has to resend a request to renew the IPv6 address.

Page 67

EW50 Industrial LTE Cellular Gateway

The above diagram depicts DHCP IPv6 IP addressing. The DHCPv6 server on the ISP side assigns IPv6 address,

IPv6 default gateway address, and IPv6 DNS to client hosts automatically.

PPPoEv6

PPPoEv6 in IPv6 performs the same function as PPPoE in IPv4. The PPPoEv6 server provides configuration parameters based on PPPoEv6 client requests. When a PPPoEv6 server gets a client request and successfully authenticates it, the server sends IP address, DNS server addresses and other required parameters to automatically configure the client.

The diagram above depicts the IPv6 addressing through PPPoE, PPPoEv6 server (DSLAM) on the ISP side provides IPv6 configuration upon receiving PPPoEv6 client request. When PPPoEv6 server gets client request and successfully authenticates it, the server sends IP address, DNS server addresses and other required parameters to automatically configure the client.

6to4

6to4 is one mechanism to establish automatic IPv6 in IPv4 tunnels and to enable complete IPv6 site communication. The only thing a 6to4 user needs is a global IPv4 address.

6to4 may be used by an individual host, or by a local IPv6 network. When used by a host, it must have a global IPv4 address connected, and the host is responsible for encapsulation of outgoing IPv6 packets and decapsulation of incoming 6to4 packets. If the host is configured to forward packets for other clients, often a local network, it is then a router.

Page 68

EW50 Industrial LTE Cellular Gateway

In the above diagram, the 6to4 means there is no need to set gateway address "automatic" tunneling solution. The relay server, as defined in RFC 3068 has included segments 192.88.99.0/24 used as 6to4 relay of any-cast address to complete 6in4 setting.

6in4

6in4 is an Internet transition mechanism for Internet IPv4 to IPv6 migration. 6in4 uses tunneling to encapsulate IPv6 traffic over explicitly-configured IPv4 links. As defined in RFC 4213, the 6in4 traffic is sent over the IPv4 Internet inside IPv4 packets whose IP headers have the IP protocol number set to 41. This protocol number is specifically designated for IPv6 encapsulation.

In the above diagram, the 6in4 usually needs to register to a 6in4 tunnel service, known as Tunnel Broker, in order to be used. It also needs end point global IPv4 address as 114.39.16.49 to complete 6in4 setting.

Page 69

EW50 Industrial LTE Cellular Gateway

IPv6 Configuration Setting

Go to Basic Network > IPv6 > Configuration Tab. The IPv6 Configuration setting allows user to set the IPv6 connection type to access the IPv6 network.

IPv6 Configuration

Item

Value setting

Description

IPv6

Unchecked by default

Check the Enable box to activate the IPv6 function.

WAN Connection Type

1. Can only be selected when IPv6 Enabled

2. Required setting

Define the selected IPv6 WAN Connection Type to establish the IPv6 connectivity.

Select Static IPv6 when your ISP provides you with a set IPv6 addresses. Then go to Static IPv6 WAN Type Configuration. Select DHCPv6 when your ISP provides you with DHCPv6 services. Select PPPoEv6 when your ISP provides you with PPPoEv6 account settings.

Select 6to4 when you want to user IPv6 connection over IPv4. Select 6in4 when you want to user IPv6 connection over IPv4.

Note: For products with only 3G/4G WAN interface, only 6to4 and 6in4 are supported.

Static IPv6 WAN Type Configuration

Page 70

EW50 Industrial LTE Cellular Gateway

Static IPv6 WAN Type Configuration

Item

Value setting

Description

IPv6 Address

Required setting

Enter the WAN IPv6 Address for the router.

Subnet Prefix Length

Required setting

Enter the WAN Subnet Prefix Length for the router.

Default Gateway

Required setting

Enter the WAN Default Gateway IPv6 address.

Primary DNS

Optional setting

Enter the WAN primary DNS Server.

Secondary DNS

Optional setting

Enter the WAN secondary DNS Server.

MLD Snooping

Unchecked by default

Enable/Disable the MLD Snooping function

LAN Configuration

Item

Value setting

Description

Global Address

Required setting

Enter the LAN IPv6 Address for the router.

Link-local Address

Value auto-created

Show the link-local address for LAN interface of router.

Go to Address Auto-configuration (summary) to set up the LAN environment.

When the above settings are configured, click the Save button to save the configuration, and click the Reboot button to reboot the router.

Page 71

EW50 Industrial LTE Cellular Gateway

DHCPv6 WAN Type Configuration

Item

Value setting

Description

DNS

The option [From Server] is selected by default

Select the [Specific DNS] option to activate Primary DNS and Secondary DNS. Then fill in the DNS information.

Primary DNS

Cannot be modified by default

Enter the WAN primary DNS Server.

Secondary DNS

Cannot be modified by default

Enter the WAN secondary DNS Server.

MLD

Unchecked by default

Enable/Disable the MLD Snooping function

LAN Configuration

Item

Value setting

Description

Global Address

Value auto-created

Enter the LAN IPv6 Address for the router.

Link-local Address

Value auto-created

Show the link-local address for LAN interface of router.

Go to Address Auto-configuration (summary) to set up the LAN environment.

When above settings are configured, click the Save button to save the configuration, and click Reboot button to reboot the router.

Page 72

EW50 Industrial LTE Cellular Gateway

PPPoEv6 WAN Type Configuration

Item

Value setting

Description

Account

Required setting

Enter the Account for setting up PPPoEv6 connection. If you need more information, contact your ISP.

Value Range: 0 ~ 45 characters.

Password

Required setting

Enter the Password for setting up PPPoEv6 connection. If you need more information, contact your ISP.

Service Name

Required setting/Option

Enter the Service Name for setting up PPPoEv6 connection. If you need more information, contact your ISP.

Value Range: 0 ~ 45 characters.

Connection Control

Fixed value

The value is Auto-reconnect(Always on).

MTU

Required setting

Enter the MTU for setting up PPPoEv6 connection. If you need more information, contact your ISP.

Value Range: 1280 ~ 1492.

MLD Snooping

Unchecked by default

Enable/Disable the MLD Snooping function

LAN Configuration

Item

Value setting

Description

Global Address

Value auto-created

The LAN IPv6 Address for the router.

Link-local Address

Value auto-created

Show the link-local address for LAN interface of router.

Go to Address Auto-configuration (summary) to set up up the LAN environment. When above settings are configured, click the save button to save the configuration and click reboot button to

Page 73

EW50 Industrial LTE Cellular Gateway

reboot the router.

6to4 WAN Type Configuration

Item

Value setting

Description

6to4 Address

Value auto-created

IPv6 address for access the IPv6 network.

Primary DNS

Optional setting

Enter the WAN primary DNS Server.

Secondary DNS

Optional setting

Enter the WAN secondary DNS Server.

MLD

Unchecked by default

Enable/Disable the MLD Snooping function

LAN Configuration

Item

Value setting

Description

Global Address

Optional setting

Enter the LAN IPv6 Address for the router. Value Range: 0 ~ FFFF.

Link-local Address

Value auto-created

Show the link-local address for LAN interface of router.

Go to Address Auto-configuration (summary) to set up the LAN environment.

When above settings are configured, click the save button to save the configuration and click reboot button to reboot the router.

Page 74

EW50 Industrial LTE Cellular Gateway

6in4 WAN Type Configuration

Locate an IPv6 tunnel broker to establish 6in4 tunnel.

Then enter the Local IPv4 address of router into Client IPv4 Address field in IPv6 tunnel broker setting page.

6in4 WAN Type Configuration

Item

Value setting

Description

Remote IPv4 Address

Required setting

Enter Server IPv4 Address from tunnel broker in this field.

Local IPv4 Address

Value auto-created

IPv4 address of this router.

Local IPv6 Address

Required setting

Enter Client IPv6 Address from tunnel broker in this field.

Primary DNS

Optional setting

Enter the WAN primary DNS Server.

Secondary DNS

Optional setting

Enter the WAN secondary DNS Server.

MLD

Unchecked by default

Enable/Disable the MLD Snooping function

LAN Configuration

Item

Value setting

Description

Global Address

Required setting

Enter Routed /64 from tunnel broker in this field.

Link-local Address

Value auto-created

Show the link-local address for LAN interface of router.

Then go to Address Auto-configuration (summary) for setting the LAN environment. When above settings are configured, click the save button to save the configuration and click reboot button to reboot the router.

Page 75

EW50 Industrial LTE Cellular Gateway

Address Auto-configuration

Item

Value setting

Description

Auto-configuration

Unchecked by default

Check to enable the Auto configuration feature.

Auto-configuration Type

1. Can be selected

when Auto- configuration is

enabled

2. Stateless is selected by default

Define the selected IPv6 WAN Connection Type to establish the IPv6 connectivity. Select Stateless to manage the Local Area Network to be SLAAC + RDNSS Router Advertisement Lifetime (Required setting): Enter the Router Advertisement Lifetime (in seconds). 200 is set by default. Value Range: 0 ~ 65535.

Select Stateful to manage the Local Area Network to be Stateful (DHCPv6). IPv6 Address Range (Start) (Required setting): Enter the starting IPv6 Address for the DHCPv6 range for your local computers. 0100 is set by default.

Value Range: 0001 ~ FFFF.

IPv6 Address Range (End) (Required setting): Enter the ending IPv6 Address for

the DHCPv6 range for your local computers. 0200 is set by default.

Value Range: 0001 ~ FFFF.

IPv6 Address Lifetime (Required setting): Enter the DHCPv6 lifetime for your

local computers. 36000 is set by default. Value Range: 0 ~ 65535.

Page 76

EW50 Industrial LTE Cellular Gateway

2.4 Port Forwarding

Network address translation (NAT) is a methodology of remapping one IP address space into another by modifying network address information in Internet Protocol (IP) datagram packet headers while they are in transit across a traffic routing device. The technique was originally used for ease of rerouting traffic in IP networks without renumbering every host. It has become a popular and essential tool in conserving global address space allocations in face of IPv4 address exhaustion. This product embeds and activates the NAT function. You also can disable the NAT function in [Basic Network]-[WAN & Uplink]-[Internet Setup]-[WAN Type Configuration] page.

Usually all local hosts or servers behind corporate gateway are protected by NAT firewall. NAT firewall will filter out unrecognized packets to protect your Intranet. So, all local hosts are invisible to the outside world. Port forwarding or port mapping is function that redirects a communication request from one address and port number combination to assigned one. This technique is most commonly used to make services on a host residing on a protected or masqueraded (internal) network available to hosts on the opposite side of the gateway (external network), by remapping the destination IP address and port number.

Page 77

EW50 Industrial LTE Cellular Gateway

2.4.1 Configuration

NAT Loopback

This feature allows you to access the WAN global IP address from your inside NAT local network. It is useful when you run a server inside your network. For example, if you set a mail server at LAN side, your local devices can access this mail server through gateway’s global IP address when NAT loopback feature is enabled. When accessing the email server from the LAN side or at the WAN side, you don’t need to change the IP address of the mail server.

Configuration Setting

Go to Basic Network > Port Forwarding > Configuration tab.

The NAT Loopback allows user to access the WAN IP address from inside your local network.

Enable NAT Loopback

Configuration

Item

Value setting

Description

NAT Loopback

Checked by default

Check the Enable box to activate the NAT function

Save

N/A

Click the Save button to save the settings.

Undo

N/A

Click the Undo button to cancel settings

Page 78

EW50 Industrial LTE Cellular Gateway

2.4.2 Virtual Server & Virtual Computer

There are some important Port Forwarding functions implemented within the gateway, including "Virtual Server", "NAT loopback" and "Virtual Computer". These allow personnel to access servers behind the gateway from outside the network. Those servers can be set up by using "Virtual Server" feature. NAT Loopback can allow access to servers from the LAN side with a global IP address and no change in settings.

"Virtual computer" is a host behind a NAT gateway whose IP address is a global one and is visible to the outside world. Since it is behind NAT, it is protected by gateway firewall. To configure Virtual Computer, just map the local IP of the virtual computer to a global IP.

Page 79

EW50 Industrial LTE Cellular Gateway

Virtual Server & NAT Loopback

"Virtual Server" allows you to access servers with the global IP address or FQDN of the gateway as if they are servers existing in the Internet. But in fact, these servers are located in the Intranet and are physically behind the gateway. The gateway serves the service requests by port forwarding the requests to the LAN servers and transfers the replies from LAN servers to the requester on the WAN side. As shown in the example, an E-mail virtual

server is defined to be located at a server with IP address

10.0.75.101 in the Intranet of Network-A, including SMTP service port 25 and POP3 service port 110. So, the

remote user can access the E-mail server with the gateway’s global IP 118.18.81.33 from its WAN side. But the real E-mail server is located at LAN side and the gateway is the port forwarder for E-mail service.

NAT Loopback allows you to access the WAN global IP address from your inside NAT local network. It is useful when you run a server inside your network. For example, if you set up a mail server on the LAN side, your local devices can access this mail server through the gateway’s global IP address when NAT loopback is enabled. Then there is no need to change the IP address of the mail server.

Virtual Computer

"Virtual Computer" allows you to assign LAN hosts to global IP addresses, so that they can be visible to outside world. While so, they are protected by the gateway firewall as client hosts in the Intranet. For example, if you set up an FTP file server on the LAN side with local IP address 10.0.75.102 and global IP address 118.18.82.44, a remote user can access the file server while it is hidden behind the NAT gateway. That is because the gateway takes care of all access to the IP address 118.18.82.44, including forwarding access requests to the file server and to send the replies from the server to the outside world.

Page 80

EW50 Industrial LTE Cellular Gateway

Virtual Server & Virtual Computer Setting

Go to Basic Network > Port Forwarding > Virtual Server & Virtual Computer tab.

Enable Virtual Server and Virtual Computer

Configuration

Item

Value setting

Description

Virtual Server

Unchecked by default

Check the Enable box to activate this port forwarding function

Virtual Computer

The box is checked by default

Check the Enable box to activate this port forwarding function

Save

N/A

Click the Save button to save the settings.

Undo

N/A

Click the Undo button to cancel the settings.

Create / Edit Virtual Server

The gateway allows you to customize your Virtual Server rules. It supports up to a maximum of 20 rule-based Virtual Server sets.

When the Add button is applied, the Virtual Server Rule Configuration screen will appear.

Page 81

EW50 Industrial LTE Cellular Gateway

Virtual Server Rule Configuration

Item

Value setting

Description

WAN Interface

1. Required setting

2. Default is ALL.

Define the selected interface to be the packet-entering interface of the gateway. If the packets to be filtered are coming from WAN-x then select WAN-x for this field. Select ALL for packets coming into the gateway from any interface. Note: The available check boxes (WAN-1 ~ WAN-4) depend on the number of WAN interfaces for the product.

Server IP

Required setting

This field is to specify the IP address of the interface selected in the WAN Interface setting above.

Protocol

Required setting

When “ICMPv4” is selected, the protocol of packet filter rule is ICMPv4. Apply Time Schedule to this rule, otherwise leave it as Always. (Refer to Scheduling setting under Object Definition). Check Enable box to enable this rule.

When “TCP” is selected, the protocol of packet filter rule is TCP. Public Port is a predefined port from Well-known Service, and Private Port is the same as Public Port number. When Public Port is set as Single Port and a port number specified, Private Port can be set as Single Port number. When Public Port is set as Port Range and a port range specified, Private Port can be set to Single Port or Port Range. Value Range: 1 ~ 65535 for Public Port, Private Port.

When “UDP” is selected, the protocol of packet filter rule is UDP. Public Port is a predefined port from Well-known Service, and Private Port is the same as Public Port number. When Public Port is set as Single Port and a port number specified, Private Port can be set as Single Port number. When Public Port is set as Port Range and a port range specified, Private Port can be set to Single Port or Port Range. Value Range: 1 ~ 65535 for Public Port, Private Port.

Page 82

EW50 Industrial LTE Cellular Gateway

When “TCP & UDP” is selected, protocol of packet filter rule is TCP and UDP. Public Port is a predefined port from Well-known Service, and Private Port is the same as Public Port number. When Public Port is set as Single Port and a port number specified, Private Port can be set as Single Port number. When Public Port is set as Port Range and a port range specified, Private Port can be set to Single Port or Port Range. Value Range: 1 ~ 65535 for Public Port, Private Port.

When “GRE” is selected, The protocol of packet filter rule is GRE.

When “ESP” is selected, the protocol of packet filter rule is ESP.

When “SCTP” is selected, the protocol of packet filter rule is SCTP.

When “User-defined” is selected, the protocol of packet filter rule is User- defined. For Protocol Number, enter a port number.

Time Schedule

1. Optional setting

2. (0)Always Is selected by default.

Apply Time Schedule to this rule; otherwise leave it as (0)Always. (refer to Scheduling setting under Object Definition)

Rule

1. Optional setting

2.Unchecked by default

Check the Enable box to activate the rule.

Save

N/A

Click the Save button to save the settings.

Undo

N/A

Click the Undo button to cancel the settings.

Back

N/A

When the Back button is clicked the screen will return to previous page.

Page 83

EW50 Industrial LTE Cellular Gateway

Create / Edit Virtual Computer

The gateway allows you to customize your Virtual Computer rules. It supports up to a maximum of 20 rulebased Virtual Computer sets.

When the Add button is applied, the Virtual Computer Rule Configuration screen will appear.

Virtual Computer Rule Configuration

Item

Value setting

Description

Global IP

Required setting

Specify the IP address of the WAN IP.

Local IP

Required setting

Specify the IP address of the LAN IP.

Enable

N/A

Check Enable box to enable this rule.

Save

N/A

Click the Save button to save the settings.

Page 84

EW50 Industrial LTE Cellular Gateway

2.4.3 DMZ & Pass Through

A DMZ (Demilitarized Zone) Host is a host that is exposed to the Internet but still within the protection of a firewall by gateway device. This function allows a computer to execute 2-way communication for Internet games, Video conferencing, Internet telephony and other special applications. In some cases when a specific application is blocked by NAT mechanism, you can set the LAN computer as a DMZ host to solve this problem.

The DMZ function allows you to ask the gateway to pass through all normal packets to the DMZ host behind the NAT gateway only when these packets are not expected to be received by applications in the gateway or by other client hosts in the Intranet. The DMZ host is also protected by the gateway firewall. Activate the feature and specify the DMZ host with a host in the Intranet when needed.

DMZ Scenario

When the network administrator wants to set up service daemons in a host behind a NAT gateway to allow remote users to actively request services from the server, the host should be configured as a DMZ Host. As shown in the diagram, there is an X server installed as DMZ host, whose IP address is

10.0.75.100. A remote user can request services from X server just as it is provided by the gateway whose global IP address is 118.18.81.33. The gateway will forward those packets, not belonging to any configured virtual server or applications, directly to the DMZ host.

Page 85

EW50 Industrial LTE Cellular Gateway

VPN Pass through Scenario

Since VPN traffic is different from that of TCP or UDP connection, it will be blocked by NAT gateway. To support the pass through function for the VPN connections initiating from VPN clients behind NAT gateway, the gateway must implement some kind of VPN pass through function for such application. The gateway supports the pass through function for IPsec, PPTP, and L2TP connections.

DMZ & Pass Through Setting

Go to Basic Network > Port Forwarding > DMZ & Pass Through tab.

Enable DMZ and Pass Through

Configuration

Item

Value setting

Description

DMZ

1. Required setting

2. Default is ALL.

Check the Enable box to activate the DMZ function Define the selected interface to be the packet-entering interface of the gateway, and fill in the IP address of Host LAN IP in DMZ Host field. If the packets to be filtered are coming from WAN-x then select WAN-x for this field. Select ALL for packets coming into the router from any interfaces. Note: The available check boxes (WAN-1 ~ WAN-4) depend on the number of WAN interfaces for the product.

Pass Through Enable

The boxes are checked by default

Check the box to enable pass through function for IPsec, PPTP, and L2TP. With the pass through function enabled, the VPN hosts behind the gateway can still connect to remote VPN servers.

Save

N/A

Click the Save button to save the settings.

Undo

N/A

Click the Undo button to cancel the settings

Page 86

EW50 Industrial LTE Cellular Gateway

2.5 Routing

If you have more than one router and subnet, you will need to enable routing in order to allow packets to find a proper routing path and allow different subnets to communicate with each other. Routing is the process of selecting best paths in a network. It is performed for many kinds of networks, like electronic data networks (such as the Internet), by using packet switching technology. The routing process usually directs forwarding on the basis of routing tables which maintain a record of the routes to various network destinations. Thus, constructing routing tables, which are held in the router's memory, is very important for efficient routing. Most routing algorithms use only one network path at a time.

The routing tables can contain pre-defined routing paths for specific destinations. This is static routing. However, if the contents of routing tables record the obtained routing paths from neighbor routers by using protocols such as RIP, OSPF and BGP, this is dynamic routing. Both routing approaches will be illustrated. In addition, the gateway has advanced configurable routing software Quagga built-in for more complex routing

applications. It can be configured via Telnet CLI.

Page 87

EW50 Industrial LTE Cellular Gateway

2.5.1 Static Routing

"Static Routing" lets you define the routing paths for some dedicated hosts/servers or subnets to be stored in the routing table of the gateway. The gateway routes incoming packets to different peer gateways based on the routing table. You need to define the static routing information in the gateway routing rule list.

When the administrator of the gateway wants to specify what kinds of packets will be transferred via which gateway interface and which peer gateway to their destination. It can be carried out by the "Static Routing" feature. Dedicated packet flows from the Intranet will be routed to their destination via the predefined peer gateway and corresponding gateway interface that are defined in the system routing table by manual.

As shown in the diagram, when the destination is Google, rule 1 sets interface as ADSL, routing gateway as IP-DSLAM gateway 192.168.121.253. All packets to Google will go through WAN-1. The similar rule 2 sets 3G/4G as interface for traffic going to Yahoo.

Page 88

EW50 Industrial LTE Cellular Gateway

Static Routing Setting

Go to Basic Network > Routing > Static Routing Tab.

There are three configuration windows for the static routing feature, including "Configuration", "Static Routing Rule List" and "Static Routing Rule Configuration". "Configuration" window lets you activate the global static routing feature. Even when there are existing routing rules, routing can be disabled temporarily by unchecking the Enable box. "Static Routing Rule List" window lists all your defined static routing rule entries. Use "Add" or "Edit" button to add and create one new static routing rule or to modify an existing one.

When "Add" or "Edit" button is applied, the "Static Routing Rule Configuration" window will appear to let you define a static routing rule.

Enable Static Routing

Check the Enable box to activate the "Static Routing" feature.

Static Routing

Item

Value setting

Description

Static Routing

The box is unchecked by default

Check the Enable box to activate this function

Create / Edit Static Routing Rules

The Static Routing Rule List shows the set up parameters of all static routing rule entries. To configure a static routing rule, you must specify related parameters including the destination IP address and subnet mask of dedicated host/server or subnet, the IP address of peer gateway, the metric and the rule activation.

The gateway allows you to customize static routing rules. It supports up to a maximum of 64 rule sets. When the Add button is applied, the Static Routing Rule Configuration screen will appear, while the Edit button at

the end of each static routing rule will let you modify the rule.

Page 89

EW50 Industrial LTE Cellular Gateway

IPv4 Static Routing

Item

Value setting

Description

Destination IP

1. IPv4 Format

2. Required setting

Specify the Destination IP of this static routing rule.

Subnet Mask

255.255.255.0 (/24) is set by default

Specify the Subnet Mask of this static routing rule.

Gateway IP

1. IPv4 Format

2. Required setting

Specify the Gateway IP of this static routing rule.

Interface

Auto is set by default

Select the Interface of this static routing rule. It can be Auto, or the available WAN / LAN interfaces.

Metric

1. Numeric String Format

2. Required setting

The Metric of this static routing rule.

Value Range: 0 ~ 255.

Rule

Unchecked by default

Click Enable box to activate this rule.

Save

Click the Save button to save the configuration

Undo

Click the Undo button to restore previous settings.

Back

When the Back button is clicked the screen will return to the Static Routing Configuration page.

Page 90

EW50 Industrial LTE Cellular Gateway

2.5.2 Dynamic Routing

Dynamic Routing, also called adaptive routing, describes the capability of a system, through which routes are characterized by their destination, to alter the path that the route takes through the system in response to a change in network conditions.

This gateway supports dynamic routing protocols, including RIPv1/RIPv2 (Routing Information Protocol), OSPF (Open Shortest Path First), and BGP (Border Gateway Protocol), to establish the routing table automatically. Dynamic routing can be very useful when there are many subnets in your network. Generally speaking, RIP is suitable for small networks. OSPF is more suitable for medium networks. BGP is more used for large network infrastructure.

The supported dynamic routing protocols are described as follows.

Page 91

EW50 Industrial LTE Cellular Gateway

RIP Scenario

T he Routing Information Protocol (RIP) is one of the oldest distance-vector routing protocols. It employs the hop count as a routing metric. RIP prevents routing loops by implementing a limit on the number of hops allowed in a path from the source to a destination. The maximum number of hops allowed for RIP is 15. This hop limit, however, also limits the size of networks that RIP can support. A hop count of 16 is considered an infinite distance, in other words the route is considered unreachable. RIP implements the split horizon, route poisoning and hold-down mechanisms to prevent incorrect routing information from being propagated.

OSPF Scenario

Open Shortest Path First (OSPF) is a routing protocol that uses link state routing algorithm. It is the most widely used interior gateway protocol (IGP) in large enterprise networks. It gathers link state information from available routers and constructs a topology map of the network. The topology is presented as a routing table which routes datagrams based solely on the destination IP address.

The network administrator can deploy an OSPF gateway in large enterprise network to get its routing table from the enterprise backbone, and forward routing information to other routers, which are not linked to the enterprise backbone. Usually, an OSPF network is subdivided into routing areas to simplify administration and optimize traffic and resource utilization.

As shown in the diagram, the OSPF gateway gathers routing information from the backbone gateways in area 0, and will forward its routing information to the routers in area 1 and area 2 which are not in the backbone.

Page 92

EW50 Industrial LTE Cellular Gateway

BGP Scenario

Border Gateway Protocol (BGP) is a standard exterior gateway protocol designed to exchange routing and reachability information between autonomous systems (AS) on the Internet. It usually makes routing decisions based on paths, network policies, or rule-sets.

Most ISPs use BGP to establish routing between one another (especially for multihomed networks). Very large private IP networks also use BGP internally. The major BGP gateway within one AS will link with other border gateways for exchanging routing information. It will distribute the collected data in AS to all routers in other AS.

As shown in the diagram, BGP 0 is gateway to dominate AS0 (self IP is 10.100.0.1 and self ID is 100). It links with other BGP gateways in the Internet. The scenario is like a subnet in one ISP being linked with ones in other ISPs. By operating with BGP protocol, BGP 0 can gather routing information from other BGP gateways in the Internet. It then forwards the routing data to the routers in its dominated AS. Finally, the routers resided in AS 0 know how to route packets to other AS.

Page 93

EW50 Industrial LTE Cellular Gateway

Dynamic Routing Setting

Go to Basic Network > Routing > Dynamic Routing Tab.

The dynamic routing setting allows user to customize RIP, OSPF, and BGP protocols through the router based on their office settings.

In the "Dynamic Routing" page, there are seven configuration windows for dynamic routing feature. They are "RIP Configuration", "OSPF Configuration", "OSPF Area List", "OSPF Area Configuration", "BGP Configuration", "BGP Neighbor List" and "BGP Neighbor Configuration". RIP, OSPF and BGP protocols can be configured individually.

The "RIP Configuration" window lets you choose which version of RIP protocol to be activated, or to disable it. The "OSPF Configuration" window lets you activate the OSPF dynamic routing protocol and specify its backbone subnet. Moreover, the "OSPF Area List" window lists all defined areas in the OSPF network. The "BGP Configuration" window will let you activate the BGP dynamic routing protocol and specify its self ID. The "BGP Neighbor List" window lists all defined neighbors in the BGP network.

Enable Dynamic Routing

Check the "Enable" box to activate the "Dynamic Routing" feature.

Configuration

Item

Value setting

Description

Dynamic Routing

Unchecked by default

Check the Enable box to activate this function

Page 94

EW50 Industrial LTE Cellular Gateway

RIP Configuration

The RIP configuration setting allows user to customize RIP protocol through the router based on their office setting.

RIP Configuration

Item

Value setting

Description

RIP Enable

Disabled by default

Select Disable to disable RIP protocol. Select RIP v1 to enable RIPv1 protocol. Select RIP v2 to enable RIPv2 protocol.

OSPF Configuration

Item

Value setting

Description

OSPF

Disable is set by default

Click Enable box to activate the OSPF protocol.

Router ID

1. IPv4 Format

2. Required setting

The Router ID of this router in OSPF protocol

Authentication

None is set by default

The Authentication method of this router in OSPF protocol. Select None to disable Authentication in OSPF protocol. Select Text to enable Text Authentication with entered the Key in this field in OSPF protocol. Select MD5 to enable MD5 Authentication with entered the ID and Key in these

Page 95

EW50 Industrial LTE Cellular Gateway

fields on OSPF protocol.

Backbone Subnet

1. Classless Inter Domain Routing (CIDR) Subnet Mask Notation. (Ex:

192.168.1.0/24)

2. Required setting

The Backbone Subnet of this router on OSPF protocol.

Create / Edit OSPF Area Rules

The gateway allows you to custom your OSPF Area List rules. It supports up to a maximum of 32 rule sets.

When the Add button is applied, the OSPF Area Rule Configuration screen will appear.

OSPF Area Configuration

Item

Value setting

Description

Area Subnet

1. Classless Inter Domain Routing (CIDR) Subnet Mask Notation. (Ex:

192.168.1.0/24)

2. Required setting

The Area Subnet of this router in OSPF Area List.

Area ID

1. IPv4 Format

2. Required setting

The Area ID of this router in OSPF Area List.

Area

Unchecked by default

Click Enable box to activate this rule.

Save

N/A

Click the Save button to save the configuration

Page 96

EW50 Industrial LTE Cellular Gateway

BGP Configuration

The BGP configuration setting allows user to customize BGP protocol through the router setting.

BGP Network Configuration

Item

Value setting

Description

BGP

Unchecked by default

Check the Enable box to activate the BGP protocol.

ASN

1. Numeric String Format

2. Required setting

The ASN Number of this router on BGP protocol.

Value Range: 1 ~ 4294967295.

Router ID

1. IPv4 Format

2. Required setting

The Router ID of this router on BGP protocol.

Create / Edit BGP Network Rules

The gateway allows you to customize your BGP Network rules. It supports up to a maximum of 32 rule sets.

When the Add button is applied, the BGP Network Rule Configuration screen will appear.

Item

Value setting

Description

Network Subnet

1. IPv4 Format

2. Required setting

The Network Subnet of this router in BGP Network List. Enter the IP address in this field and the selected subnet mask.

Network

Unchecked by default

Click Enable box to activate this rule.

Save

N/A

Click the Save button to save the configuration

Page 97

EW50 Industrial LTE Cellular Gateway

Create / Edit BGP Neighbor Rules

The gateway allows you to customize your BGP Neighbor rules. It supports up to a maximum of 32 rule sets.

When the Add button is applied, the BGP Neighbor Rule Configuration screen will appear.

BGP Neighbor Configuration

Item

Value setting

Description

Neighbor IP

1. IPv4 Format

2. Required setting

The Neighbor IP of this router on BGP Neighbor List.

Remote ASN

1. Numeric String Format

2. Required setting

The Remote ASN of this router on BGP Neighbor List.

Value Range: 1 ~ 4294967295.

Neighbor

Unchecked by default

Click Enable box to activate this rule.

Save

N/A

Click the Save button to save the configuration

Page 98

EW50 Industrial LTE Cellular Gateway

2.5.3 Routing Information

The routing information allows the user to view the routing table and policy routing information. Policy Routing Information is only available when the Load Balance function is enabled and the Load Balance

Strategy is By User Policy.

Go to Basic Network > Routing > Routing Information Tab.

Routing Table

Item

Value setting

Description

Destination IP

N/A

Routing record of Destination IP. IPv4 Format.

Subnet Mask

N/A

Routing record of Subnet Mask. IPv4 Format.

Gateway IP

N/A

Routing record of Gateway IP. IPv4 Format.

Metric

N/A

Routing record of Metric. Numeric String Format.

Interface

N/A

Routing record of Interface Type. String Format.

Policy Routing Information

Item

Value setting

Description

Policy Routing Source

N/A

Policy Routing of Source. String Format.

Source IP

N/A

Policy Routing of Source IP. IPv4 Format.

Destination IP

N/A

Policy Routing of Destination IP. IPv4 Format.

Destination Port

N/A

Policy Routing of Destination Port. String Format.

WAN Interface

N/A

Policy Routing of WAN Interface. String Format.

Page 99

EW50 Industrial LTE Cellular Gateway

2.6 DNS & DDNS

How does a user access your server if your WAN IP address changes all the time? One way is to register a new domain name, and maintain your own DNS server. Another simpler way is to apply a domain name to a thirdparty DDNS service provider.

2.6.1 DNS & DDNS Configuration

Dynamic DNS

To host your server on a changing IP address, you have to use dynamic domain name service (DDNS). Therefore, anyone wishing to reach your host only needs to know the domain name. Dynamic DNS will map the name of your host to your current IP address, which changes each time you connect your Internet service provider.

The Dynamic DNS service allows the gateway to alias a public dynamic IP address to a static domain name, allowing the gateway to be more easily accessed from various locations on the Internet. As

shown in the diagram, the user registered a domain name to a third-party DDNS service provider (NO-IP) to use DDNS function. Once the IP address of designated

WAN interface has changed, the dynamic DNS agent in the gateway will inform the DDNS server with the new IP address. The server automatically re-maps your domain name with the changed IP address. So, other hosts or remote users on the Internet are able to link to your gateway by using your domain name regardless of the changing global IP address..

Page 100

EW50 Industrial LTE Cellular Gateway

100

DNS & DDNS Setting

Go to Basic Network > DNS & DDNS > Configuration Tab.

The DNS & DDNS setting allows user to setup Dynamic DNS feature and DNS redirect rules.

Setup Dynamic DNS

The gateway allows you to customize Dynamic DNS settings.

DDNS (Dynamic DNS) Configuration

Item

Value setting

Description

DDNS

Unchecked by default

Check the Enable box to activate this function.

WAN Interface

WAN 1 is set by default

Select the WAN Interface IP Address of the gateway.

Provider

DynDNS.org (Dynamic) is

set by default

Select your DDNS provider of Dynamic DNS. It can be DynDNS.org(Dynamic),

DynDNS.org(Custom), NO-IP.com, etc...

Host Name

1. String format, any text

2. Required setting

Your registered host name of Dynamic DNS.

Value Range: 0 ~ 63 characters.

User Name / EMail

1. String format, any text

2. Required setting

Enter your User name or E-mail addresss of Dynamic DNS.

Password / Key

1. String format, any text

2. Required setting

Enter your Password or Key of Dynamic DNS.

Save

N/A

Click Save to save the settings

Undo

N/A

Click Undo to cancel the settings