Lantronix EMG 8500 User Manual

EMG™ Edge Management Gateway

User Guide

EMG 8500

Part Number PMD-00008

Revision A October 2019

Intellectual Property

Lantronix is a registered trademarks of Lantronix, Inc. in the United States and other countries. EMG and SLC are trademarks of Lantronix, Inc.

Patented: http://www.

Windows and Internet Explorer are registered trademarks of Microsoft Corporation. Firefox is a registered trademark of the Mozilla Foundation. Chrome is a trademark of Google Inc. All other trademarks and trade names are the property of their respective holders.

Warranty

For details on the Lantronix warranty policy, please go to our web site at

http

Contacts

Lantronix Corporate Headquarters

7535 Irvine Center Drive Suite100 Irvine, CA 92618, USA

Toll Free: 800-526-8766 Phone: 949-453-3990 Fax: 949-453-3995

Technical Support

Online: https://

lantronix.com/legal/patents/; additional patents pending.

s://www.lantronix.com/support/warranty.

www.lantronix.com/support

Sales Offices

For a current list of our domestic and international sales offices, go to the Lantronix web site at

https://

www.lantronix.com/about-us/contact.

Open Source Software

Some applications are Open Source software licensed under the Berkeley Software Distribution (BSD) license, the GNU General Public License (GPL) as published by the Free Software Foundation (FSF), or the Python Software Foundation (PFS) License Agreement for Python 2.7.3 (Python License). Lantronix grants you no right to receive source code to the Open Source software; however, in some cases, rights and access to source code for certain Open Source software may be available directly from Lantronix’ licensors. Your use of each Open Source component or software is subject to the terms of the applicable license. The BSD license is available at http://opensource.org/licenses

www.gnu.org/licenses/. The Python License is available at http://cmpt165.csil.sfu.ca/Python-Docs/ license.html. Your use of each Open Source component or software is subject to the terms of the

applicable license.

OPEN SOURCE SOFTWARE IS DISTRIBUTED WITHOUT ANY WARRANTY, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. SEE THE APPLICABLE LICENSE AGREEMENT FOR ADDITIONAL INFORMATION.

. The GNU General Public License is available at http://

EMG™ Edge Management Gateway User Guide 2

Disclaimer & Revisions

All information contained herein is provided “AS IS.” Lantronix undertakes no obligation to update the information in this publication. Lantronix does not make, and specifically disclaims, all warranties of any kind (express, implied or otherwise) regarding title, non-infringement, fitness, quality, accuracy, completeness, usefulness, suitability or performance of the information provided herein. Lantronix shall have no liability whatsoever to any user for any damages, losses and causes of action (whether in contract or in tort or otherwise) in connection with the user’s access or usage of any of the information or content contained herein. The information and specifications contained in this document are subject to change without notice.

Operation of this equipment in a residential area is likely to cause interference, in which case the user, at his or her own expense, will be required to take whatever measures may be required to correct the interference.

Note: This equipment has been tested and found to comply with the limits for Class A digital

device pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment. This equipment generates, uses, and can radiate radio frequency energy and, if not installed and used in accordance with this user guide, may cause interference to radio communications. Operation of this equipment in a residential area is likely to cause interference, in which case the user will be required to correct the interference at his own expense.

User Information

Class A Equipment (Broadcasting and communication equipments for office work)

Seller and user shall be noticed that this equipment is suitable for electromagnetic equipments for office work (Class A) and it can be used outside home.

Changes or modifications made to this device that are not explicitly approved by Lantronix will void the user's authority to operate this device.

EMG™ Edge Management Gateway User Guide 3

Revision History

Date Rev. Comments

October 2019 A Initial release for EMG 8500

EMG™ Edge Management Gateway User Guide 4

Intellectual Property ________________________________________________________2 Warranty _________________________________________________________________2 Contacts _________________________________________________________________2 Open Source Software ______________________________________________________2 Disclaimer & Revisions ______________________________________________________3 Revision History ___________________________________________________________4 Table of Contents __________________________________________________________5 List of Figures ____________________________________________________________15 List of Tables ____________________________________________________________19

1: About this Guide 20

Purpose and Audience _____________________________________________________20 Summary of Chapters ______________________________________________________20 Additional Documentation ___________________________________________________21

2: Introduction 22

EMG 8500 Overview _______________________________________________________ 22 Key Features _____________________________________________________________22

Console Management __________________________________________________22 Performance Monitoring _________________________________________________23 Security ______________________________________________________________ 23 Power _______________________________________________________________23

Integration with Lantronix ConsoleFlow™ ___________________________________23 Applications ______________________________________________________________23 Protocol Support __________________________________________________________24 Configuration Methods _____________________________________________________24 Product Information Label ___________________________________________________25 Hardware Components _____________________________________________________26 System Features __________________________________________________________28

Access Control ________________________________________________________28

Device Port Buffer _____________________________________________________28

Console Port Interface __________________________________________________28

Device Port Interfaces __________________________________________________29

I/O Modules __________________________________________________________30

Network Connections ___________________________________________________31

Connectivity Modules ___________________________________________________32

Front Panel LEDs ______________________________________________________33

Digital IO Port _________________________________________________________33

EMG™ Edge Management Gateway User Guide 5

3: Installation 35

Package Contents _________________________________________________________35

Order Information ______________________________________________________36

User Supplied Items ____________________________________________________36

Customize an EMG ____________________________________________________36 Hardware Specifications ____________________________________________________37 Physical Installation ________________________________________________________38

Rack Mount Installation _________________________________________________39

Wall Mounting Instructions _______________________________________________40

Connecting to a Device Port ______________________________________________41

Modular Expansion for I/O Module Bays ____________________________________43

Connecting to Network Ports _____________________________________________44

Modular Expansion for Connectivity Module Bays _____________________________44

Connecting Terminals ___________________________________________________ 45

Power Input __________________________________________________________46

I/O Module Installation __________________________________________________47

Connectivity Module Installation ___________________________________________48

4: Quick Setup 50

Recommendations ________________________________________________________ 50 IP Address _______________________________________________________________50 Lantronix Provisioning Manager ______________________________________________51 Method #1 Quick Setup on the Web Page ______________________________________ 51

Network Settings ______________________________________________________53

Date & Time Settings ___________________________________________________ 54

Administrator Settings __________________________________________________54 Method #2 Quick Setup on the Command Line Interface ___________________________55 Next Step _______________________________________________________________58 Limiting Sysadmin User Access ______________________________________________58

5: Web and Command Line Interfaces 59

Web Manager ____________________________________________________________59

Logging in ____________________________________________________________61

Logging Out __________________________________________________________61

Web Page Help _______________________________________________________61 Command Line Interface ____________________________________________________62

Logging In ____________________________________________________________62

Logging Out __________________________________________________________62

Command Syntax ______________________________________________________62

Command Line Help ____________________________________________________63

Tips _________________________________________________________________63

General CLI Commands _________________________________________________64

EMG™ Edge Management Gateway User Guide 6

6: Networking 66

Requirements ____________________________________________________________66 Network Port Settings ______________________________________________________67

Ethernet Interfaces (Eth1 and Eth2) ________________________________________70

Hostname & Name Servers ______________________________________________72

DNS Servers __________________________________________________________72

DHCP-Acquired DNS Servers ____________________________________________72

TCP Keepalive Parameters ______________________________________________73

Gateway _____________________________________________________________73

Fail-Over Settings ______________________________________________________73

Fail-Over Cellular Gateway Configuration ___________________________________74

Advanced Cellular Gateway Configuration ___________________________________75

Fail-Over Cellular Gateway Firmware _______________________________________75

Load Cellular Gateway Firmware Options ___________________________________76

Ethernet Counters _____________________________________________________76

Network Commands ____________________________________________________76 Cellular Modem Settings ____________________________________________________ 77

Cellular Interface ______________________________________________________78

Cellular Modem Configuration ____________________________________________78

Cellular Modem Firmware ________________________________________________78

Cellular Modem Commands ______________________________________________78 IP Filter _________________________________________________________________79

Viewing IP Filters ______________________________________________________79

Mapping Rulesets ______________________________________________________79

Enabling IP Filters _____________________________________________________80

Configuring IP Filters ___________________________________________________81

Rule Parameters _______________________________________________________ 82

Updating an IP Filter ____________________________________________________82

Deleting an IP Filter ____________________________________________________83

IP Filter Commands ____________________________________________________83 Routing _________________________________________________________________83

Dynamic Routing ______________________________________________________84

Static Routing _________________________________________________________84

Routing Commands ____________________________________________________84 VPN Settings _____________________________________________________________84

Sample ipsec.conf Files _________________________________________________ 95

VPN Commands ______________________________________________________100 Security ________________________________________________________________101 Performance Monitoring ___________________________________________________103

Performance Monitoring - Add/Edit Probe __________________________________106

Performance Monitoring - Results ________________________________________109

Performance Monitoring Commands ______________________________________112 FQDN List ______________________________________________________________113

EMG™ Edge Management Gateway User Guide 7

7: Services 114

System Logging and Other Services __________________________________________114 SSH/Telnet/Logging ______________________________________________________114

System Logging ______________________________________________________115

Audit Log ___________________________________________________________116

SMTP ______________________________________________________________ 116

SSH _______________________________________________________________116

Telnet ______________________________________________________________ 117

Web SSH/Web Telnet Settings __________________________________________117

SSH Commands ______________________________________________________118

Logging Commands ___________________________________________________118 SNMP _________________________________________________________________118

v1/v2c Communities ___________________________________________________121

Version 3 ___________________________________________________________121

V3 User Read-Only ___________________________________________________121

V3 User Read-Write ___________________________________________________122

V3 User Trap ________________________________________________________122

Services Commands __________________________________________________122 NFS and SMB/CIFS ______________________________________________________122

SMB/CIFS Share _____________________________________________________124

NFS and SMB/CIFS Commands _________________________________________124 Secure Lantronix Network __________________________________________________125

Browser Issues _______________________________________________________127

Troubleshooting Browser Issues _________________________________________128

Web SSH/Telnet Copy and Paste ________________________________________130

Secure Lantronix Network Commands _____________________________________130 Date and Time ___________________________________________________________131

Date and Time Commands ______________________________________________ 132 Web Server _____________________________________________________________133

Admin Web Commands ________________________________________________ 135

Services - SSL Certificate _______________________________________________ 135

Services - Web Sessions _______________________________________________ 138 ConsoleFlow ____________________________________________________________138

ConsoleFlow Commands _______________________________________________142

8: USB/SD Card Port 143

Set up USB/SD Card Storage _______________________________________________ 143 Manage Files ____________________________________________________________146

USB Commands ______________________________________________________147

SD Card Commands __________________________________________________147

EMG™ Edge Management Gateway User Guide 8

9: Device Ports 148

Connection Methods ______________________________________________________148 Permissions _____________________________________________________________148 I/O Modules _____________________________________________________________149 Device Status ___________________________________________________________150 Device Ports ____________________________________________________________150

Telnet/SSH/TCP in Port Numbers ________________________________________152

Device Port Global Commands __________________________________________152 Device Ports - Settings ____________________________________________________152

Device Port Settings ___________________________________________________155

IP Settings __________________________________________________________157

Data Settings ________________________________________________________158

Hardware Signal Triggers _______________________________________________159

Modem Settings (Device Ports) __________________________________________160

Modem Settings: Text Mode _____________________________________________ 161

Modem Settings: PPP Mode ____________________________________________162

Port Status and Counters _______________________________________________163

Device Ports - Power Management _______________________________________163

Device Port - Sensorsoft Device __________________________________________ 166

Device Port Commands ________________________________________________ 168

Device Commands ____________________________________________________168 Interacting with a Device Port _______________________________________________168 Device Ports - Logging and Events ___________________________________________169

Local Logging ________________________________________________________169

NFS File Logging _____________________________________________________169

USB and SD Card Logging ______________________________________________ 170

Token/Data Detection __________________________________________________170

Syslog Logging _______________________________________________________170

Token & Data Detection ________________________________________________171

Local Logging ________________________________________________________173

Log Viewing Attributes _________________________________________________173

NFS File Logging _____________________________________________________173

USB / SD Card Logging ________________________________________________ 173

Syslog Logging _______________________________________________________173

Logging Commands ___________________________________________________174 Console Port ____________________________________________________________174

Console Port Commands _______________________________________________175 DIO Port _______________________________________________________________ 175

DIO Commands ______________________________________________________176 Xmodem _______________________________________________________________176

Xmodem Commands __________________________________________________179 Host Lists ______________________________________________________________180

Host Parameters ______________________________________________________ 180

EMG™ Edge Management Gateway User Guide 9

Host List Commands __________________________________________________183 Sites __________________________________________________________________183

Site Commands ______________________________________________________186 Modem Dialing States _____________________________________________________ 186

Dial In ______________________________________________________________186

Dial-back ____________________________________________________________ 187

Dial-on-demand ______________________________________________________188

Dial-in & Dial-on-demand _______________________________________________188

Dial-back & Dial-on-demand _____________________________________________ 189

CBCP Server and CBCP Client __________________________________________189

CBCP Server ________________________________________________________190

CBCP Client _________________________________________________________190

Key Sequences ______________________________________________________191

10: Remote Power Managers 192

Devices - RPMs _________________________________________________________192

RPMs - Add Device ___________________________________________________195 RPMs - Manage Device ___________________________________________________198 RPMs - Outlets __________________________________________________________202 RPM Shutdown Procedure _________________________________________________202 Optimizing and Troubleshooting RPM Behavior _________________________________204

RPM Commands _____________________________________________________205

11: Scripts 206

Script Commands _____________________________________________________211 Batch Script Syntax _______________________________________________________211 Interface Script Syntax ____________________________________________________212

Primary Commands ___________________________________________________213

Secondary Commands _________________________________________________214

Control Flow Commands _______________________________________________216 Custom Script Syntax _____________________________________________________218 Example Scripts _________________________________________________________219

12: Connections 235

Typical Setup Scenarios for the EMG unit _____________________________________ 235

Terminal Server ______________________________________________________235

Remote Access Server _________________________________________________236

Reverse Terminal Server _______________________________________________ 236

Multiport Device Server ________________________________________________237

Console Server _______________________________________________________237

Connection Configuration _______________________________________________238

Connection Commands ________________________________________________240

EMG™ Edge Management Gateway User Guide 10

13: User Authentication 241

Authentication Commands ______________________________________________243 User Rights _____________________________________________________________243 Local and Remote User Settings ____________________________________________245

Adding, Editing or Deleting a User ________________________________________246

Shortcut ____________________________________________________________250

Local Users Commands ________________________________________________250

Remote User Rights Commands _________________________________________250 NIS ___________________________________________________________________ 251

NIS Commands ______________________________________________________253 LDAP __________________________________________________________________254

LDAP Commands _____________________________________________________258 RADIUS ________________________________________________________________259

RADIUS Commands ___________________________________________________262

User Attributes & Permissions from LDAP Schema or RADIUS VSA _____________ 262 Kerberos _______________________________________________________________263

Kerberos Commands __________________________________________________ 266 TACACS+ ______________________________________________________________266

TACACS+ Groups ____________________________________________________267

TACACS+ Commands _________________________________________________270 Groups ________________________________________________________________271

Group Commands ____________________________________________________274 SSH Keys ______________________________________________________________274

Imported Keys _______________________________________________________274

Exported Keys _______________________________________________________274

Imported Keys (SSH In) ________________________________________________ 276

Host & Login for Import _________________________________________________ 276

Exported Keys (SSH Out) _______________________________________________ 276

Host and Login for Export _______________________________________________277

SSH Commands ______________________________________________________279 Custom Menus __________________________________________________________279

Custom User Menu Commands __________________________________________282

14: Maintenance 283

Firmware & Configurations _________________________________________________283

HTTPS Push Configuration Restore _______________________________________ 283

Internal Temperature __________________________________________________286

Site Information ______________________________________________________286

EMG Firmware _______________________________________________________286

Boot Banks and Bootloader Settings ______________________________________287

Load Firmware Via Options _____________________________________________288

Configuration Management _____________________________________________288

EMG™ Edge Management Gateway User Guide 11

Manage Files ________________________________________________________290

Administrative Commands ______________________________________________ 290

System Logs _________________________________________________________291

System Log Commands ________________________________________________292 Audit Log _______________________________________________________________293

Audit Log Commands __________________________________________________294 Email Log ______________________________________________________________ 294

Logging Commands ___________________________________________________294 Diagnostics _____________________________________________________________295

Diagnostic Commands _________________________________________________298 Status/Reports __________________________________________________________298

View Report _________________________________________________________298

Status Commands ____________________________________________________300 Emailing Logs and Reports _________________________________________________ 300 Events _________________________________________________________________303

Events Commands ____________________________________________________305 Banners ________________________________________________________________305

Administrative Banner Commands ________________________________________306

15: Application Examples 307

Telnet/SSH to a Remote Device _____________________________________________308 Dial-in (Text Mode) to a Remote Device _______________________________________ 309 Local Serial Connection to Network Device via Telnet ____________________________311

16: Command Reference 313

Introduction to Commands _________________________________________________313

Command ___________________________________________________________313

Command Line Help ___________________________________________________314

Tips ________________________________________________________________314 Administrative Commands _________________________________________________ 315 Audit Log Commands _____________________________________________________327 Authentication Commands _________________________________________________327 Kerberos Commands _____________________________________________________328 LDAP Commands ________________________________________________________329 Local Users Commands ___________________________________________________331 NIS Commands __________________________________________________________335 RADIUS Commands ______________________________________________________336 TACACS+ Commands ____________________________________________________337 User Permissions Commands _______________________________________________338 Remote User Commands __________________________________________________339 Cellular Modem Commands ________________________________________________341 ConsoleFlow Commands __________________________________________________342 CLI Commands __________________________________________________________344

EMG™ Edge Management Gateway User Guide 12

Connection Commands ____________________________________________________346 Console Port Commands __________________________________________________349 Custom User Menu Commands _____________________________________________350 Date and Time Commands _________________________________________________351 Device Commands _______________________________________________________353 Device Port Commands ___________________________________________________354 DIO Commands _________________________________________________________358 Diagnostic Commands ____________________________________________________359 Events Commands _______________________________________________________363 Groups Commands _______________________________________________________ 365 Host List Commands ______________________________________________________366 Internal Modem Commands ________________________________________________367 IP Filter Commands ______________________________________________________368 Logging Commands ______________________________________________________369 Network Commands ______________________________________________________372 NFS and SMB/CIFS Commands _____________________________________________376 Performance Monitoring Commands _________________________________________377 Routing Commands ______________________________________________________381 RPM Commands _________________________________________________________382 Script Commands ________________________________________________________384 SD Card Commands ______________________________________________________ 387 Security Commands ______________________________________________________388 Services Commands ______________________________________________________ 388 Site Commands __________________________________________________________389 SLC Network Commands __________________________________________________390 SSH Key Commands _____________________________________________________391 Status Commands ________________________________________________________394 System Log Commands ___________________________________________________395 USB Access Commands ___________________________________________________396 USB Device Commands ___________________________________________________396 USB Storage Commands __________________________________________________397 USB Modem Commands __________________________________________________399 VPN Commands _________________________________________________________400 Temperature Commands __________________________________________________ 403 Xmodem Commands _____________________________________________________403

Appendix A: Security Considerations 405

Security Practice _________________________________________________________405 Factors Affecting Security __________________________________________________405

Appendix B: Safety Information 406

Safety Precautions _______________________________________________________406

Fuse Caution Statement ________________________________________________406

EMG™ Edge Management Gateway User Guide 13

Cover ______________________________________________________________406

Power Plug __________________________________________________________406

Input Supply _________________________________________________________ 407

Grounding ___________________________________________________________407

Rack Mounting _______________________________________________________ 407

Wall Mounting ________________________________________________________407

Port Connections _____________________________________________________408

Appendix C: Adapters and Pinouts 409

Appendix D: Protocol Glossary 412

Appendix E: Compliance Information 415

RoHS, REACH and WEEE Compliance Statement ______________________________416

EMG™ Edge Management Gateway User Guide 14

List of Figures

Figure 2-1 EMG 8500 Edge Management Gateway _____________________________________22

Figure 2-2 EMG 8500 Product Label _________________________________________________25

Figure 2-3 EMG 8500 Unit (front side) ________________________________________________26

Figure 2-4 EMG 8500 Unit (back side) ________________________________________________27

Figure 2-5 Console Port (Front Side) _________________________________________________29

Figure 2-7 I/O Modules ____________________________________________________________30

Figure 2-9 Dual Ethernet Network Connection __________________________________________31

Figure 2-10 Dual SFP Connection. Inserting the SFP transceiver ___________________________32

Figure 2-11 LTE Cellular Modem Module ______________________________________________33

Figure 2-13 Digital I/O Port ________________________________________________________34

Figure 3-4 Rack Mount Dimensions __________________________________________________ 40

Figure 3-5 Wall Mount Dimensions___________________________________________________41

Figure 3-8 Sample Device Port Connections (Front Side) _________________________________43

Figure 3-10 Sample Connectivity Module Configuration (Back Side) _________________________45

Figure 3-11 Power Input ___________________________________________________________46

Figure 4-2 Quick Setup ____________________________________________________________52

Figure 4-3 Quick Setup Completed in Web Manager _____________________________________54

Figure 4-4 Home _________________________________________________________________55

Figure 4-5 Beginning of Quick Setup Script ____________________________________________55

Figure 4-6 Quick Setup Completed in CLI _____________________________________________57

Figure 5-1 Web Page Layout _______________________________________________________59

Figure 5-2 Sample Dashboard ______________________________________________________60

Figure 6-1 Network > Network Settings (1 of 2) _________________________________________68

Figure 6-2 Network > Network Settings (2 of 2) _________________________________________69

Figure 6-3 Network Settings > SFP NIC Information & Diagnostics __________________________70

Figure 6-4 Network > Cellular Modem Settings Page_____________________________________77

Figure 6-5 Network > IP Filter ______________________________________________________79

Figure 6-6 Network > IP Filter Ruleset (Adding/Editing Rulesets) ___________________________81

Figure 6-7 Network > Routing _______________________________________________________83

Figure 6-8 Network > VPN (1 of 2) ___________________________________________________86

Figure 6-9 Network > VPN (2 of 2) ___________________________________________________87

Figure 6-10 Network > Security ____________________________________________________102

Figure 6-11 Network > Perf Monitoring _______________________________________________104

Figure 6-12 Performance Monitoring - Add/Edit Probe___________________________________106

Figure 6-14 Performance Monitoring - Operations ______________________________________112

EMG™ Edge Management Gateway User Guide 15

Figure 6-15 FQDN List ___________________________________________________________113

Figure 7-1 Services > SSH/Telnet/Logging____________________________________________115

Figure 7-2 Services > SNMP ______________________________________________________119

Figure 7-3 Services > NFS & SMB/CIFS _____________________________________________123

Figure 7-4 Services > Secure Lantronix Network _______________________________________125

Figure 7-5 IP Address Login Page __________________________________________________126

Figure 7-6 SSH or Telnet CLI Session _______________________________________________ 126

Figure 7-7 Disabled Port Number Popup Window ______________________________________ 127

Figure 7-8 Services > Secure Lantronix Network - Search Options _________________________128

Figure 7-9 Services > Date & Time _________________________________________________131

Figure 7-10 Services > Web Server ________________________________________________133

Figure 7-11 Web Server - SSL Certificate_____________________________________________136

Figure 7-12 Web Server - Web Sessions _____________________________________________138

Figure 7-13 Services > ConsoleFlow ________________________________________________140

Figure 8-1 Devices > USB / SD Card ________________________________________________144

Figure 8-2 Devices > USB > Configure ______________________________________________145

Figure 8-3 Devices > SD Card > Configure ___________________________________________145

Figure 8-4 Firmware and Configurations - Manage Files _________________________________147

Figure 9-2 Devices > Device Status _________________________________________________150

Figure 9-3 Devices > Device Ports __________________________________________________151

Figure 9-4 Device Ports > Settings (1 of 2)____________________________________________154

Figure 9-5 Device Ports > Settings (2 of 2)____________________________________________155

Figure 9-7 Device Ports - Power Management_________________________________________165

Figure 9-8 Devices > Device Ports - Sensorsoft ________________________________________167

Figure 9-9 Sensorsoft Status ______________________________________________________168

Figure 9-10 Devices > Device Ports - Logging & Events _________________________________171

Figure 9-11 Devices > Console Port _________________________________________________ 174

Figure 9-12 Devices > Host Lists ___________________________________________________180

Figure 9-13 Devices >View Host Lists _______________________________________________182

Figure 9-14 Devices > Sites _______________________________________________________184

Figure 10-1 Devices > RPMs ______________________________________________________192

Figure 10-2 RPM Shutdown Order __________________________________________________193

Figure 10-3 RPM Notifications _____________________________________________________ 194

Figure 10-4 RPM Raw Data Log____________________________________________________194

Figure 10-5 RPM Logs ___________________________________________________________195

Figure 10-6 RPM Environmental Log ________________________________________________ 195

Figure 10-7 Devices > RPMs - Add Device ___________________________________________196

Figure 10-8 RPMs - Manage Device_________________________________________________ 199

EMG™ Edge Management Gateway User Guide 16

Figure 10-9 RPMs - Outlets _______________________________________________________202

Figure 11-1 Devices > Scripts______________________________________________________206

Figure 11-2 Adding or Editing New Scripts ____________________________________________207

Figure 11-3 Scripts > Custom Scripts - Scheduler ______________________________________209

Figure 12-1 Terminal Server _______________________________________________________235

Figure 12-2 Remote Access Server _________________________________________________236

Figure 12-3 Reverse Terminal Server________________________________________________ 236

Figure 12-4 Multiport Device Server _________________________________________________237

Figure 12-5 Console Server _______________________________________________________238

Figure 12-6 Devices > Connections _________________________________________________239

Figure 12-7 Current Connections ___________________________________________________240

Figure 13-1 User Authentication > Auth Methods _______________________________________242

Figure 13-3 User Authentication > Local/Remote Users__________________________________245

Figure 13-4 User Authentication > Local/Remote User Settings ___________________________247

Figure 13-5 User Authentication > NIS _______________________________________________251

Figure 13-6 User Authentication > LDAP _____________________________________________255

Figure 13-7 User Authentication > RADIUS ___________________________________________259

Figure 13-8 User Authentication > Kerberos___________________________________________264

Figure 13-9 User Authentication > TACACS+__________________________________________268

Figure 13-10 User Authentication > Groups ___________________________________________272

Figure 13-11 User Authentication > SSH Keys_________________________________________275

Figure 13-12 Current Host Keys ____________________________________________________278

Figure 13-13 User Authentication > Custom Menus _____________________________________ 280

Figure 14-1 Maintenance > Firmware & Configurations __________________________________285

Figure 14-2 Network > Firmware/Config > Manage _____________________________________290

Figure 14-3 Maintenance > System Logs _____________________________________________291

Figure 14-4 View System Logs _____________________________________________________292

Figure 14-5 Maintenance > Audit Log________________________________________________293

Figure 14-6 Maintenance > Email Log _______________________________________________294

Figure 14-7 Maintenance > Diagnostics ______________________________________________295

Figure 14-8 Diagnostics Output ____________________________________________________297

Figure 14-9 Maintenance > Status/Reports ___________________________________________298

Figure 14-10 Generated Status/Reports______________________________________________300

Figure 14-11 Emailed Log or Report_________________________________________________ 301

Figure 14-12 About EMG _________________________________________________________302

Figure 14-13 Maintenance > Events _________________________________________________ 303

Figure 14-14 Maintenance > Banners________________________________________________305

Figure 15-1 EMG - Configuration ___________________________________________________307

EMG™ Edge Management Gateway User Guide 17

Figure 15-2 Remote User Connected to a SUN Server via the Console Manager______________308

Figure 15-3 Dial-in (Text Mode) to a Remote Device ____________________________________309

Figure 15-4 Local Serial Connection to Network Device via Telnet _________________________311

Figure C-1 RJ45 Receptacle to DB25M DCE Adapter for the EMG Unit (PN 200.2066A)________409

Figure C-2 RJ45 Receptacle to DB25F DCE Adapter for the EMG Unit (PN 200.2067A) ________ 410

Figure C-3 RJ45 Receptacle to DB9M DCE Adapter for the EMG Unit (PN 200.2069A)_________410

Figure C-4 RJ45 Receptacle to DB9F DCE Adapter for the EMG Unit (PN 200.2070A) _________ 411

Figure C-5 RJ45 Receptacle to DB25M DTE Adapter (PN 200.2073) _______________________411

EMG™ Edge Management Gateway User Guide 18

List of Tables

Table 2-6 Console (DTE) Port Pinout ________________________________________________29

Table 2-8 Device (DCE Reversed & DTE) Port Pinout ___________________________________30

Table 2-12 Front Panel LED Indicators _______________________________________________ 33

Table 3-1 EMG 8500 Parts ________________________________________________________35

Table 3-2 EMG 8500 Device Modules ________________________________________________35

Table 3-3 EMG Technical Specifications ______________________________________________37

Table 3-6 Console Port and Device Port - Reverse Pinout Disabled _________________________ 42

Table 3-7 Device Port - Reverse Pinout Enabled (Default) ________________________________42

Table 3-9 Available I/O Module Configurations _________________________________________44

Table 4-1 Methods of Assigning an IP Address _________________________________________50

Table 5-3 SCS Commands ________________________________________________________ 64

Table 5-4 CLI Keyboard Shortcuts ___________________________________________________ 65

Table 6-13 Error Conditions Detected by Probes ______________________________________111

Table 9-1 Supported I/O Module Configurations _______________________________________149

Table 9-6 Port Status and Counters _________________________________________________163

Table 11-4 Interface Script Syntax Definitions _________________________________________212

Table 11-5 Primary Commands ____________________________________________________213

Table 11-6 Secondary Commands _________________________________________________215

Table 11-7 Control Flow Commands ________________________________________________216

Table 13-2 User Types and Rights _________________________________________________244

Table 16-1 Actions and Category Options ___________________________________________ 313

EMG™ Edge Management Gateway User Guide 19

1: About this Guide

Purpose and Audience

This guide provides the information needed to install, configure, and use the Lantronix EMG™ edge management gateway. The EMG gateway is for IT professionals who must remotely and securely configure and administer servers, routers, switches, telephone equipment, or other devices equipped with a serial port for facilities that are typically remote branch offices or “distributed” IT locations.

Note: EMG edge management gateways are referred to as either EMG or as EMG 8500

when referring to the specific series. Edge management gateway or console manager may be used to describe the EMG devices.

Summary of Chapters

The remaining chapters in this guide include:

Chapter Description

Chapter 2: Introduction Describes the EMG models, their main features, and the protocols they

support.

Chapter 3: Installation Provides technical specifications; describes connection form factors and

power supplies; provides instructions for installing the EMG in a rack.

Chapter 4: Quick Setup Provides instructions for getting your EMG unit up and running and for

configuring required settings.

Chapter 5: Web and Command Line Interfaces

Chapter 6: Networking Provides instructions for configuring network ports, firewall and routing

Chapter 7: Services Provides instructions for enabling and disabling system logging, SSH and

Chapter 8: USB/SD Card Port Provides instructions for using the USB and SD Card ports.

Chapter 9: Device Ports Provides instructions for configuring global device port settings, individual

Chapter 10: Remote Power Managers

Chapter 11: Scripts Provides instructions for creating scripts to automate tasks performed on the

Chapter 12: Connections Provides instructions for configuring connections and viewing, updating, or

Chapter 13: User Authentication

Describes the web and command line interfaces available for configuring the EMG.

The configuration chapters (6-15) provide detailed instructions for using the web interface and include equivalent command line interface commands.

settings, and VPN.

Telnet logins, SNMP, SMTP, and the date and time.

device port settings, and console port settings.

Provides instructions for using RPMs.

EMG command line interface (CLI) or on device ports.

disconnecting a connection.

Provides instructions for enabling or disabling methods that authenticate users who attempt to log in via the web, SSH, Telnet, or the console port. Provides instructions for creating custom menus.

EMG™ Edge Management Gateway User Guide 20

1: About this Guide

Chapter (continued) Description

Chapter 14: Maintenance Provides instructions for upgrading firmware, viewing system logs and

diagnostics, generating reports, and defining events. Includes information about web pages and commands used to shut down and reboot the EMG.

Chapter 15: Application Examples

Chapter 16: Command Reference

Appendix A: Security Considerations

Appendix B: Safety Information

Appendix C: Adapters and Pinouts

Appendix D: Protocol Glossary

Appendix E: Compliance Information

Shows three different configurations to set up and use the EMG unit.

Lists and describes all of the commands available on the EMG command line interface.

Provides tips for enhancing EMG security.

Lists safety precautions for using the EMG.

Includes adapter and pinout diagrams.

Lists the protocols supported by the EMG unit with brief descriptions.

Provides information about the EMG unit’s compliance with industry standards.

Additional Documentation

Visit the Lantronix Web site at www.lantronix.com/support/documentation for the latest documentation and the following additional documentation.

Document Description

EMG Quick Start Guide Provides accessories and part number information,

EMG Product Brief Provides product overview and specifications.

hardware installation instructions, directions to connect the EMG unit, and network IP configuration information.

EMG™ Edge Management Gateway User Guide 21

2: Introduction

The EMG edge management gateway enables IT system administrators to manage remote servers and IT infrastructure equipment securely over the Internet.

IT equipment can be configured, administered, and managed in a variety of ways, but most devices have one of two methods in common: via USB port and/or via an RS-232 serial port, sometimes called a console, auxiliary, or management port. These ports are often accessed directly by connecting a terminal or laptop to them, meaning that the administrator must be in the same physical location as the equipment. The EMG gives the administrator a way to access them remotely from anywhere there is a network or modem connection.

EMG 8500 Overview

The EMG 8500 is a modular edge management gateway that offers serial RJ45 and USB console connectivity with user swappable I/O modules and connectivity modules. The EMG unit can accommodate up to two user swappable I/O modules (4 port serial RJ45 and/or 4 port serial USB).

For connectivity, the EMG provides dual Ethernet or dual small form-factor pluggable (SFP) network ports and up to two user replaceable modules for one LTE cellular modem, and in a future release for one Wi-Fi modem or dialup modem.

Figure 2-1 EMG 8500 Edge Management Gateway

Key Features

Console Management

 Enables system administrators to remotely manage devices with serial and/or USB console

ports with RS-232C (now EIA-232) or USB compatible serial consoles in a 1U-tall rack space.

 Provides up to 8 serial RJ45 RS-232 or USB Type A console connections.

 Dual 10/100/1000 Base-T Ethernet or dual 1 Gb SFP network ports for in-band network device

access

EMG™ Edge Management Gateway User Guide 22

2: Introduction

 Local terminal or internal cellular modem (LTE cellular) for out-of-band network device access

 Modular design allows user to add or swap I/O modules (RJ45, USB) and connectivity

modules (LTE cellular)

 Data logging, device port buffering, network performance monitoring, system event logs and

console event notification via email

 Integrated automatic fail-over/failback mechanism for seamless connection to IT equipment

 Sun Break Safe compatible

 Remote power manager (RPM) control of UPS and PDU devices

 Scripting to automate tasks performed on the CLI or on device ports

Performance Monitoring

 Performance Monitoring probes to analyze network performance

Security

 Enterprise-grade security and secure user access control with local or remote authentication

Power

 An external Universal AC (90W, 100-240V, 50/60 Hz) power supply provides power to the unit

DC power port. The DC power port supports 9 to 30Vdc.

 Convection cooled, silent operation, low power consumption

Integration with Lantronix ConsoleFlow™

 Compatible with Lantronix ConsoleFlow™management software for an end-to-end Out-of-

Band (OOB) management solution.

Applications

The EMG edge management gateway is suitable for remote and secure management of the following types of IT equipment:

 Servers: Unix, Linux, Windows, and others.

 Networking equipment: Routers, switches, storage networking.

 Telecom: PBX, voice switches.

 Other systems with serial interfaces: Heating/cooling systems, security/building access

systems, uninterruptible power supply (UPS), medical devices.

EMG™ Edge Management Gateway User Guide 23

Protocol Support

The EMG supports the following protocols:

 TCP/IP network protocol

 SSH, TLS, SSL, Telnet and TCP for connections in and out of device ports

 DHCP and BOOTP for dynamic IP address assignment

 DNS for IP address name resolution

 SNMP for remote monitoring and management

 SCP, FTP, and SFTP for file transfers and firmware upgrades

 TFTP for firmware upgrades

 SMTP for mail transfer

 HTTPS (SSL) for secure browser-based configuration

 NTP for time synchronization

 UDP, PPP with PAP/CHAP, NFS and CIFS for data storage

 LDAP/AD, NIS, RADIUS with VSA support, CHAP, PAP, Kerberos, TACACS+, and SecurID

(via RADIUS) for remote authentication

2: Introduction

 Callback Control Protocol (CBCP) for PPP server callback

 StrongSwan IPsec for VPN access

For brief descriptions of these protocols, see Appendix D: Protocol Glossary on page 412.

Configuration Methods

After installation, the EMG requires configuration. For the unit to operate correctly on a network, it must have a unique IP address on the network. This IP address references the specific unit.

For details on how to configure the unit with basic network settings, see Chapter 4: Quick Setup.

The EMG provides the following methods for logging into the unit to configure EMG settings monitor performance:

 Web Manager: View and configure all settings through a secure, encrypted web interface

using most web browsers (Firefox, Chrome, or Internet Explorer with the latest browser updates). See Chapter 5: Web and Command Line Interfaces.

 Command Line Interface (CLI): The command mode may be accessed through Telnet, SSH,

Web Telnet/SSH or connecting a terminal (or a PC running a terminal emulation program) to the unit’s console port. See Chapter 5: Web and Command Line Interfaces.

EMG™ Edge Management Gateway User Guide 24

Product Information Label

The product information label on the unit contains the following information about the specific unit:

 Bar Code

 Product Part Number

 Product Revision

 Manufacturing Date Code

 Country of Manufacturing Origin

 Hardware Address (MAC address or serial number)

 Device ID (used to connect to ConsoleFlow central management software)

2: Introduction

Figure 2-2 EMG 8500 Product Label

Product Part Number

Product Revision

Country of

Manufacturing Origin

Serial Number

Device ID

(ConsoleFlow)

Manufacturing Date Code

Bar Code

EMG™ Edge Management Gateway User Guide 25

Hardware Components

 EMG Chassis: The EMG has a 1U-tall (1.75 inch), 212.6mm [8.37”] L x 167.68mm [6.60”] W

x 43.21mm [1.70”]

 Front Chassis: Figure 2-3 shows the front view of the EMG:

H chassis. Options for rack mounting and wall mounting are available.

2: Introduction

Figure 2-3 EMG 8500 Unit (front side)

DIO Port Micro

SD Card

LEDs

The front of the EMG unit appearance and function will depend upon the type(s) of I/O modules installed in Bay 1 and Bay 2.

Console Port

USB Port

Two I/O Modular Device Port Bays

- Two I/O Module Bays are available to accommodate a total of 8 device ports depending

on the number of I/O modules installed. Configuration possibilities are listed below. See

Table 3-9 on page 44 which describes different I/O module configurations.

 Up to two 4 port RJ45 I/O modules can be installed to provide a maximum of 8 serial

RS-232C (EIA-232) device ports. The serial RJ45 ports match the RJ45 pinouts of the console ports of many popular devices found in a network environment, and where different can be converted using Lantronix adapters. The RJ45 ports have software reversible pinouts to switch between digital terminal equipment (DTE) and digital communications equipment (DCE) applications. See Appendix C: Adapters and

Pinouts on page 409 for more information on serial adapters and pin-outs.

 Up to two 4 port USB I/O modules can be installed to provide a maximum of 8 USB

type A device ports.

 A combination of 4 port USB I/O modules and 4 port RJ45 I/O modules can be

installed to provide up to 8 serial device ports.

- One serial console port (RJ45, RS-232) for VT100 terminal or PC with emulation with

light emitting diode (LED) for activity indicators

- One 2.0 USB type A port (HS, FS, LS) for use with flash drive or external USB modem

(V.92 dialup)

EMG™ Edge Management Gateway User Guide 26

2: Introduction

One Micro Secure Digital (micro SD) memory card slot for use with micro SD card to collect logs, save configurations, and update firmware. (Micro SD card provided by the user)

- One digital IO (DIO) port with two digital inputs and one relay output (terminal block) for

use with sensors

- LED indicators for ethernet port status and connectivity module status

 Back Chassis: Figure 2-4 shows the back view of the EMG 8500:

Figure 2-4 EMG 8500 Unit (back side)

Two Connectivity Module Bays

The appearance and function of the EMG will depend upon the type(s) of the installed connectivity modules.

The EMG supports the use of single mode and multi-mode fiber optic SFP transceiver modules.

Power inlet

Dual Ethernet and SFP Ports

- Two Connectivity Module Bays accommodate up to two connectivity modules.

Configuration possibilities are listed below. See Figure 3-10 on page 45 for a sample

connectivity module configuration.

 One LTE cellular modem module can be installed to provide cellular connectivity.

- Network Interface: Dual 10/100/1000 Base-T Ethernet port I/F card. Ethernet ports are

referred to as Eth1 and Eth2 in the user interface and this user guide.

- Network Interface: Dual 1 Gigabit-capable SFP port I/F card to support single or multi-

mode fiber optic SFP transceiver modules. SFP transceiver modules are referred to as

SFP1 and SFP2 in the user interface and this user guide.

Note: EMG will recognize two network connections. Either Eth1 or SFP1 is active, but

not both. Similarly, either Eth2 or SFP2 is active, but not both.

 Lantronix offers SFP Transceivers (“modules”) for EMG 8500 edge management

gateways and SLC 8000 console managers with fiber SFP ports. To learn more, go to

https://www.lantronix.com/products/sfp/

 SFP transceiver modules are provided by users according to fiber mode and brand

preferences.

EMG™ Edge Management Gateway User Guide 27

 Network ports and the SFP port have LEDs to indicate link and activity status. If a

single mode and a multi-mode are both installed on the EMG unit, the device can be configured to utilize one mode at a time.

- Power supply inlet: The unit accepts a 9 to 30 Vdc power input via a back-panel

connector. A universal AC power input (100-240V, 50/60 Hz) to 12 Vdc power supply brick

is available for use with the unit.

System Features

This section describes system features, interfaces, and ports of the EMG.

Access Control

The system administrator controls access to attached servers or devices by assigning access rights to up to 128 user profiles. Each user has an assigned ID, password, and access rights. Other user profile access options may include externally configured authentication methods such as Radius, TACACS+, NIS, and LDAP. Groups are supported in LDAP, RADIUS (using VSA), and TACACS+ (using priv_lvl).

2: Introduction

Device Port Buffer

The EMG unit supports real-time data logging for each device port. The port can save the data log to a file, send an email notification of an issue, or take no action.

You can define the path for logged data on a port-by-port basis, configure file size and number of files per port for each logging event, and configure the device log to send an email alert message automatically to the appropriate parties indicating a particular error.

Console Port Interface

The EMG unit supports local access through a dedicated front panel serial console port (see

Figure 2-3). The console port supports the RS-232C (EIA-232) standard. RJ45 cabling (e.g.,

category 5 or 6 patch cabling) is used.

Figure 2-5 and Table 2-6 show the Console port and port pinout.

The console port supports the following baud rate options: 300, 600, 1200, 2400, 4800, 9600, 19200, 38400, 57600, 115200, 230400, 460800, and 921600 baud.

EMG™ Edge Management Gateway User Guide 28

Figure 2-5 Console Port (Front Side)

Table 2-6 Console (DTE) Port Pinout

DTE Pin Description

1 RTS (output)

2 DTR (output)

3 TXD (output)

4 Ground

5 Ground

6 RXD (input)

7 DSR (input)

8 CTS (input)

2: Introduction

Device Port Interfaces

RS-232 RJ45 Interface

The device ports are located on the front of the EMG unit in the I/O module device port bays (see

Figure 2-3).

All devices attached to the RJ45 device ports must support the RS-232C (EIA-232) standard. For serial RJ45 device ports, RJ45 cabling (e.g., category 5 or 6 patch cabling) is used.

Serial RJ45 device ports for the EMG are reversed by default so that straight-through RJ45 patch cables may be used to connect to Cisco and Sun RJ45 serial console ports. See Figure 2-7 and

Table 2-8. The RJ45 ports have software reversible pinouts to switch between DTE and DCE

applications.

Note: RJ45 to DB9/DB25 adapters are available from Lantronix. For serial pinout

information, see the Appendix C: Adapters and Pinouts on page 409.

Additional device port features:

 RAW TCP, Telnet or SSH to a serial port by IP address per port or by IP address and TCP port

number

 Simultaneous access on the same port - “listen” and “direct” connect mode

 Device ports support the following baud rate options: 300, 600, 1200, 2400, 4800, 9600,

19200, 38400, 57600, 115200, 230400, 460800, and 921600 baud.

USB Interface

EMG™ Edge Management Gateway User Guide 29

2: Introduction

The USB device ports are located on the front of the EMG unit in the I/O module device port bays (see Figure 2-3). USB device ports can be used with a USB type A connector to serial adapter, if needed.

I/O Modules

EMG provides two I/O slots for user replaceable I/O modules to be installed on the front side of the EMG 8500 unit.

Figure 2-7 shows a sample configuration of an EMG 8500 unit containing one 4 port USB I/O

module in Bay 1 and one 4 port RJ45 I/O module in Bay 2 for a total of 8 device ports.

Note: When installing the I/O modules, they can be populated or swapped in any order.

One but not both of the slots can be empty. The I/O modules must only be installed on the front of the unit, never in the connectivity slots on the back.

Figure 2-7 I/O Modules

I/O Module Device Port Bays

Bay 1 Bay 2

4-port RJ45 I/O module4-port USB I/O module

Table 2-8 Device (DCE Reversed & DTE) Port Pinout

DCE Pin DTE Pin Description

8 1 RTS (output)

7 2 DTR (output)

6 3 TXD (output)

5 4 Ground

4 5 Ground

3 6 RXD (input)

2 7 DSR (input)

1 8 CTS (input)

EMG™ Edge Management Gateway User Guide 30

+ 386 hidden pages