Lantronix PremierWave EN User Manual

PremierWave EN

User Guide

Part Number 900-579

Revision D February 2013

Copyright & Trademark

© 2013 Lantronix, Inc. All rights reserved. No part of the contents of this book may be transmitted
or reproduced in any form or by any means without the written permission of Lantronix.

Lantronix® and PremierWaveâ are registered trademarks and Device Installer™ is a tradema rk of
Lantronix, Inc.

Windows® and Internet Explorer® are registered trademarks of Microsoft Corporation. Mozilla®
and Firefox® are registered trademarks of the Mozilla Foundation. Chrome™ is a trademark of
Google. Opera™ is a trademark of Opera Software ASA. Tera Termâ is a registered trademark of
Vector, Inc. All other trademarks and trade names are the property of their respective holders.

Warranty

For details on the Lantronix warranty policy, please go to our web site at

www.lantronix.com/support/warranty

Contacts

Lantronix Corporate Headquarters

.

167 Technology Drive
Irvine, CA 92618, USA

Toll Free: 800-526-8766
Phone: 949-453-3990
Fax: 949-450-7249

Technical Support

Online: www.lantronix.com/support

Sales Offices

For a current list of our domestic and international sales offices, go to the Lantronix web site at

www.lantronix.com/about/contact

Disclaimer

The information in this guide may change without notice. The manufacturer assumes no
responsibility for any errors that may appear in this guide.

Revision History

Date Rev. Comments

January 2011 A Initial Document.
July 2011 B Updated for release 7.2.0.0. Includes the new Bridging feature.
July 2011 C Added chapter on OEM branding capabilities.
February 2013 D Updated to firmware 7.3.0.1R7.

.

PremierWave EN User Guide 2

Table of Contents

List of Figures _____________________________________________________________9
List of Tables _____________________________________________________________10

1:Using This Guide 12

Purpose and Audience _____________________________________________________12
Summary of Chapters ______________________________________________________12

The remaining chapters in this guide include: ________________________________12

Additional Documentation ___________________________________________________ 13

2:Introduction 14

Key Features _____________________________________________________________14
Applications ______________________________________________________________15
Protocol Support _________________________________________________________15
Troubleshooting Capabilities _________________________________________________15
Configuration Methods _____________________________________________________16
Addresses and Port Numbers ________________________________________________16

Hardware Address _________________________________ ____________________16
IP Address ___________________________________________________________16
Port Numbers _________________________________________________________16

Product Information Label ___________________________________________________17

3:Using DeviceInstaller 18

Accessing PremierWave EN Using DeviceInstaller _______________________________18
Device Detail Summary _____________________________________________________18

4:Configuration Using Web Manager 20

Accessing Web Manager ___________________________________________________20

Device Status Page ____________________________________________________21
Web Manager Components _________________________________________________22
Navigating Web Manager ___________________________________________________23

5:Network Settings 25

Network Interface Settings __________________________________________________25

To Configure Network Interface Settings ____________________________________26

To View Network Interface Status _________________________________________27
Network Link Settings _______ _______________________________________________27

SmartRoam __________________________________________________________27

To Configure Network Link Settings ________________________________________29

WLAN Link Status and Scan Commands ____________________________________29

To View WLAN Link Scan and Status Information _____________________________30
WLAN Profiles ____________________________________________________________31

To Configure WLAN Profiles _____________________________________________31

To Configure WLAN Profile Basic Settings ___________________________________32

To Configure WLAN Profile Advanced Settings _______________________________33

WLAN Profile Security Settings ___________________________________________34

To Configure WLAN Profile Security Settings ________________________________35

WLAN Profile WEP Settings ______________________________________________35

To Configure WLAN Profile WEP Settings ___________________________________36

WLAN Profile WPA and WPA2/IEEE802.11i Settings __________________________36

To Configure WLAN Profile WPA and WPA/IEEE802.11i Settings ________________38
WLAN Quick Connect ______________________________________________________39

To Configure WLAN Quick Connect ________________________________________39

6:Line and Tunnel Settings 40

USB-CDC-ACM _______________________________________________________40
Line Settings _____________________________________________________________41

To Configure Line Settings _______________________________________________42

To View Line Statistics __________________________________________________43
Tunnel Settings ___________________________________________________________43

Serial Settings ________________________________________________________43

To Configure Tunnel Serial Settings ________________________________________44

Packing Mode _________________________________________________________44

To Configure Tunnel Packing Mode Settings _________________________________45

Accept Mode ________________________________________________ __________45

To Configure Tunnel Accept Mode Settings __________________________________47

Connect Mode ________________________________________________________48

To Configure Tunnel Connect Mode Settings ________________________________49

Disconnect Mode ______________________________________________________49

To Configure Tunnel Disconnect Mode Settings ______________________________50

Modem Emulation ______________________________________________________50

To Configure Tunnel Modem Emulation Settings ______________________________51

Statistics _____________________________________________________________51

To View Tunnel Statistics ________________________________________________52

7:Terminal and Host Settings 53

Terminal Settings _____________________________________ ____________________53

To Configure the Terminal Network Connection _______________________________54

To Configure the Terminal Line Connection __________________________________ 54
Host Configuration ________________________________________________________54

To Configure Host Settings ______________________________________________55

PremierWave EN User Guide 4

8:Configurable Pin Manager 56

CPM: Configurable Pins ____________________________________________________56

CPM: Groups _________________________________________________________57

To Configure CPM Settings ______________________________________________58

9:Services Settings 59

DNS Settings _____________________________________________________________59

To View or Configure DNS Settings: _______________________________________59
FTP Settings _________________________________________________ ____________59

To Configure FTP Settings _______________________________________________60
Syslog Settings ___________________________________________________________60

To View or Configure Syslog Settings: ______________________________________60
HTTP Settings ________________________________ ____________________________61

To Configure HTTP Settings _____________________________________________62

To Configure HTTP Authentication _________________________________________63
RSS Settings _____________________________________________________________63

To Configure RSS Settings ______________________________________________63
SMTP Settings ___________________________________________________________64

To Configure SMTP Network Stack Settings _________________________________64

10:Security Settings 65

SSH Settings _____________________________________________________________65

SSH Server Host Keys __________________________________________________65

SSH Client Known Hosts ________________________________________________66

SSH Server Authorized Users ____________________________________________66

SSH Client Users ______________________________________________________67

To Configure SSH Settings ______________________________________________68
SSL Settings _____________________________________________________________68

Certificate and Key Generation ____________________________________ _______69

To Create a New Credential ______________________________________________69

Certificate Upload Settings _______________________________________________70

To Configure an Existing SSL Credential ____________________________________70

Trusted Authorities _____________________________________________________71

To Upload an Authority Certificate _________________________________________71

11:Maintenance and Diagnostics Settings 72

Filesystem Settings ________________________________________________________72

File Display ___________________________________________________________72

To Display Files _______________________________________________________72

File Modification _______________________________________________________73

File Transfer __________________________________________________________73

To Transfer or Modify Filesystem Files ______________________________________74

PremierWave EN User Guide 5

Protocol Stack Settings _____________________________________________________74

IP Settings ___________________________________________________________74

To Configure IP Network Stack Settings ____________________________________74

ICMP Settings _________________________________________________________75

To Configure ICMP Network Stack Settings __________________________________ 75

ARP Settings _________________________________________________________75

To Configure ARP Network Stack Settings __________________________________75

SMTP Settings ____________________________ ____________________________76

To Configure ARP Network Stack Settings __________________________________76
Diagnostics ______________________________________________________________76

Hardware ____________________________________________________________76

To View Hardware Information ____________________________________________76

IP Sockets ___________________________________________________________77

To View the List of IP Sockets ____________________________________________77

Ping ________________________________________________________________77

To Ping a Remote Host _________________________________________________77

Traceroute ___________________________________________________________77

To Perform a Traceroute ____________________ ____________________________78

Log _________________________________________________________________78

To Configure the Diagnostic Log Output ____________________________________78

Memory ______________________________________________________________79

To View Memory Usage _________________________________________________79
Processes ____________________________________________________________79
To View Process Information _____________________________________________79

Threads _________________________________________________________________79

To View Thread Information ______________________________________________79

System Settings __________________________________________________________80

To Reboot or Res

Query Port _______________________________________________________________80

To Configure Query Port ________________________________________________81

tore Factory Defaults _____________________________________80

12:Advanced Settings 82

Email Settings ____________________________________________________________ 82

To View, Configure and Send Email ________________________________________82
Command Line Interface Settings _____________________________________________83

Basic CLI Settings _____________________________________________________83

To View and Configure Basic CLI Settings ___________________________________83

Telnet Settings ____________________________________________________ ____84

To Configure Telnet Settings _____________________________________________84

SSH Settings _________________________________________________________84

To Configure SSH Settings ______________________________________________85
XML Settings _____________________________________________________________85

XML: Export Configuration _______________________________________________85

PremierWave EN User Guide 6

To Export Configuration in XML Format _____________________________________86

XML: Export Status _____________________________________________________86

To Export in XML Format ________________________________________________86

XML: Import Configuration _______________________________________________87

Import Configuration from External File _____________________________________87

Import Configuration from the Filesystem ____________________________________87

To Import Configuration in XML Format _____________________________________87

13:Bridging 88

Bridging Configuration ______________________________________________________88

To configure and enable bridging: _________________________________________88
Bridging Operation ________________________________________________________89
Bridge Configuration _______________________________________________________89

To View or Configure Bridge Settings ______________________________________89

14:Security in Detail 91

Public Key Infrastructure ____________________________________________________91
TLS (SSL) _______________________________________________________________91
Digital Certificates _________________________________________________________91
Trusted Authorities _________________________________________ _______________91
Obtaining Certificates ______________________________________________________92
Self-Signed Certificates _____________________________________________________92
Certificate Formats ________________________________________________________92
OpenSSL ________________________________________________________________92
Steel Belted RADIUS ______________________________________________________93
Free RADIUS ____________________________________________________________ 93

15:Updating Firmware 94

Obtaining Firmware ________________________________________________________94
Loading New Firmware through FTP __________________________________________94

16:Branding the PremierWave EN 95

Web Manager Customization ________________________________________________95
Short and Long Name Customization __________________________________________96

To Customize Short or Long Names _______________________________________96

Appendix A:Technical Support 97

Appendix B:Binary to Hexadecimal Conversions 98

Converting Binary to Hexadecimal ____________________________________________98

Conversion Table ______________________________________________________98

PremierWave EN User Guide 7

Scientific Calculator ____________________________________________________98

Appendix C:Compliance 100

Appendix D:USB-CDC-ACM Device Driver File
for Windows Hosts 102

PremierWave EN User Guide 8

List of Figures

Figure 2-1 PremierWave ENProduct Label_____________________________________________17
Figure 4-1 Components of the Web Manager Page______________________________________22

PremierWave EN User Guide 9

List of Tables

Table 5-1 Network Interface Settings _________________________________________________25
Table 5-2 Network 1 (eth0) Link Settings ______________________________________________27
Table 5-3 Network 2 (wlan0) Link Settings ____________________________________________28
Table 5-4 Network 2 Link Scan _____________________________________________________29
Table 5-5 Network 2 Link Scan Results on WebManager _________________________________29
Table 5-6 Network 2 Link Status ____________________________________________________30
Table 5-7 Creating, Deleting or Enabling WLAN Profiles __________________________________31
Table 5-8 WLAN Profile Basic Settings _______________________________________________32
Table 5-9 WLAN Profile Advanced Settings ___________________________________________33
Table 5-10 WLAN Profile Security Settings ____________________________________________34
Table 5-11 Additional WEP Settings for WLAN Profile. ___________________________________35
Table 5-12 WLAN Profile WPA and WPA2/IEEE802.11i Settings ___________________________37
Table 5-13 WLAN Quick Connect ___________________________________________________39
Table 6-1 Line Configuration Settings ________________________________________________41
Table 6-2 Line Command Mode Settings ______________________________________________42
Table 6-3 Tunnel Serial Settings ____________________________________________________43
Table 6-4 Tunnel Packing Mode Settings _____________________________________________44
Table 6-5 Tunnel Accept Mode Settings ______________________________________________46
Table 6-6 Tunnel Connect Mode Settings _____________________________________________48
Table 6-7 Tunnel Disconnect Mode Settings ___________________________________________50
Table 6-8 Tunnel Modem Emulation Settings __________________________________________50
Table 7-1 Terminal on Network and Line Settings _______________________________________53
Table 7-2 Host Configuration _______________________________________________________54
Table 8-1 Current Configurable Pins _________________________________________________56
Table 8-2 CP Status ______________________________________________________________56
Table 8-3 CPM Group Current Configuration ___________________________________________57
Table 8-4 CPM Group Status _______________________________________________________57
Table 9-1 DNS Settings ___________________________________________________________59
Table 9-2 FTP Settings ___________________________________________________________60
Table 9-3 Syslog Settings _________________________________________________________60
Table 9-4 HTTP Settings __________________________________________________________61
Table 9-5 HTTP Authentication Settings ______________________________________________62
Table 9-6 RSS Settings ___________________________________________________________63
Table 9-7 SMTP Network Stack Settings ______________________________________________64
Table 10-1 SSH Server Host Keys ___________________________________________________65
Table 10-2 SSH Client Known Hosts _________________________________________________66

PremierWave EN User Guide 10

Table 10-3 SSH Server Authorized Users _____________________________________________67
Table 10-4 SSH Client Users _______________________________________________________67
Table 10-5 Certificate and Key Generation Settings _____________________________________69
Table 10-6 Upload Certificate Settings _______________________________________________70
Table 10-7 Trusted Authority Settings ________________________________________________71
Table 11-1 File Display Settings ____________________________________________________72
Table 11-2 File Modification Settings _________________________________________________73
Table 11-3 File Transfer Settings ____________________________________________________73
Table 11-4 IP Network Stack Settings ________________________________________________74
Table 11-5 ICMP Network Stack Settings _____________________________________________75
Table 11-6 ARP Network Stack Settings ______________________________________________75
Table 11-7 SMTP Settings _________________________________________________________76
Table 11-8 Ping Settings __________________________________________________________77
Table 11-9 Traceroute Settings _____________________________________________________78
Table 11-10 Log Settings __________________________________________________________78
Table 11-11 System Settings _______________________________________________________80
Table 11-12 Query Port Settings ____________________________________________________80
Table 12-1 Email Configuration _____________________________________________________82
Table 12-2 CLI Configuration Settings ________________________________________________83
Table 12-3 Telnet Settings ________________________________________________________84
Table 12-4 SSH Settings __________________________________________________________84
Table 12-5 XML Exporting Configuration ______________________________________________85
Table 12-6 Exporting Status ________________________________________________________86
Table 12-7 Import Configuration from Filesystem Settings ________________________________87
Table 13-1 Bridge Settings _________________________________________________________89
Table 16-1 Short and Long Name Settings ____________________________________________96

PremierWave EN User Guide 11

1: Using This Guide

Purpose and Audience

This guide provides the information needed to configure, use, and update the Premier Wave EN. It
is intended for software developers and system integrators who are embedding this product into
their designs.

Summary of Chapters

The remaining chapters in this guide include:

Chapter Description

2: Introduction Main features of the product and the protocols it supports.

3: Using DeviceInstaller Instructions for viewing the current configuration using

4: Configuration Using Web Manager Instructions for accessing Web Manager and using it to configure

5: Network Settings Instructions for configuring network settings.
6: Line and Tunnel Settings Instructions for configuring line and tunnel settings.
7: Terminal and Host Settings Instructions for configuring terminal and host settings.
8: Configurable Pin Manager Information about the Configurable Pin Manager (CPM) including

9: Services Settings Instructions for configuring DNS, FTP, HTTP and Syslog settings.
10: Security Settings Instructions for configuring SSL security settings.
11: Maintenance and Diagnostics

Settings
12: Advanced Settings Instructions for configuring email, CLI and XML settings.

13: Bridging Instructions for bridging configuration.
14: Security in Detail Provides additional information on security settings available.
15: Updating Firmware Instructions for obtaining the latest firmware and updating the

16: Branding the PremierWave EN Instructions on how to brand your device.
Appendix A: Technical Support Instructions fo r conta cting Lantronix Technical Support.
Appendix B: Binary to Hexadecimal

Conversions
Appendix C: Compliance Lantronix compliance information.
Appendix D: USB-CDC-ACM Device

Driver File for Windows Hosts

Includes technical specifications.

DeviceInstaller.

settings for the device.

how to set the configurable pins to work with a device and
instructions for accessing Web Manager and using it to configure
settings for the device.

Instructions to maintain the PremierWave, view statistics, files,
and diagnose problems.

PremierWave.

Instructions for converting binary values to hexadecimals.

Information about the device driver file for windows host.

PremierWave EN User Guide 12

Additional Documentation

Visit the Lantronix Web site at www.lantronix.com/support/documentation for the latest
documentation and the following additional documentation.

Document Description

PremierWave EN Integration
Guide

PremierWave EN Command
Reference

PremierWave EN Eval Board
Quick Start Guide

PremierWave Eval Board User
Guide

DeviceInstaller Online Help Instructions for using the Lantronix Windows-based utility to locate the

Com Port Redirector Quick Start
and Online Help

1: Using This Guide

Information about the PremierWave hardware, testing the
PremierWave using the demonstration board, and integrating the
PremierWave into your product.

Instructions for accessing Command Mode (the command line
interface) using a Telnet connection, SSH connection or through the

serial port. Detailed information about the commands. Also provides

details for XML configuration and status.
Instructions for getting the PremierWave up and running.

Information needed to use the PremierWave on the evaluation board.

PremierWave and to view its current settings.
Instructions for using the Lantronix Windows-based utility to create

virtual com ports.

PremierWave EN User Guide 13

2: Introduction

The PremierWave EN embedded Ethernet Device Server is a comple te networ k-enabling solution
in a 30 (1.181) X 55 (2.165) X 6.45 (0.248) package. This miniature device server empowers
original equipment manufacturers (OEMs) to go to market quickly and easily with Ethernet and/or
wireless networking and web page serving capabilities built into their products. [DIMS = mm (in.)]

 XSO21A200-01-S
 XSO21R200-01-S

Key Features

 Power Supply: Regul ated 3.3V input required. There is a step-down converte r to 1.5V for the

processor core and 1.8V for the memory subsystem. All voltages have LC filtering to minimize
noises and emissions.

 Controller: 32-bit ARM9 microprocessor running at 400 megahertz (Mhz) with 32 KB Data

Cache and 32 Kilobytes (KB). Instruction Cache

 Memory:Up to 64 MB SDRAM, 256 MB and Flash, and (Default 64 MB each). Up to 16 MB

serial SPI Flash (Default 8 MB).

 Ethernet: 10/100 megab its per second (Mbps) Ethernet transceiver.Wireless: Dual Band

802.11 a/b/g/n with an on-board antenna and option for external antennas and diversity.

 Serial Ports: Two high speed RS232/RS422/RS485 serial ports with all hardware

handshaking signals. Baud rate is software selectable (300 bps to 921600 bps). One
emulated serial port on the USB Device Port (up to Full Speed 12 Mbps), using standard CDC­ACM protocol.

 USB Ports: Two USB 2.0 full speedOne USB 2.0 Full Speed (12 Mbps) host device port
 Master/Slave high speed SPI interface
 I2C interface
 Configurable I/O Pins (CPs): Up to nine pins are configurable as general purpose I/Os if no

DTR or DCD is used on serial ports. Not 5V tolerant.

 Interface Signals: 3.3V-level interface signals.
 Configuration via CLI, XML and HTTP
 Ethernet to wireless tunneling
 Lantronix SmartRoam technology
 Temperatu re Range:Operates over a temperature range of -40°C to +85°C (-40°F to 158°F).

The storage temperature range is -40°C to 85°C (-40°F to 185°F).

PremierWave EN User Guide 14

Applications

The PremierWave EN device server connects serial devices such as those listed below to
Ethernet networks using the IP protocol family.

 ATM machines
 CNC controllers
 Data collection devices
 Universal Power Supply (UPS) management unit
 Telecommunications equipment
 Data display devices
 Security alarms and access control devices
 Handheld instruments
 Modems
 Time/attendance clocks and terminals
 Patient Monitoring Devices
 Glucose Analyzer s

2: Introduction

 Infusion Pumps

Protocol Support

The PremierWave EN device server contains a full-featured IP stack. Supporte d protocols include:

 ARP, SNMP v1/v2c/v3, IP, UDP, TCP, ICMP,BOOTP, DHCP, Auto IP, Telnet, FTP, FTPS,

DNS, TFTP, SSH, SSL/TLS, and Syslog for network communications and management.

 TCP, UDP, SSH, SSL and telnet tunneling to the serial port.
 TFTP for uploading/downloading files.
 FTP and HTTP/HTTPS for firmware upgrades and uploading/downloading files.
 SMTP AUTH, HTTP/HTTPS Post, FTP/FTPS Put and SNMP Traps

Troubleshooting Capabilities

The PremierWave EN offers a comprehensive diagnostic toolset that lets you troubleshoot
problems quickly and easily. Available from the CLI or Web Manager, the diagnostic tools let you:

 View memory and IP socket information.
 Perform ping and traceroute operations.
 Conduct forward or reverse DNS lookup operations.
 View all processes currently running on the PremierWave EN, including CPU utilization.
 View system log messages.

PremierWave EN User Guide 15

Configuration Methods

After installation, the PremierWave EN requires configuration. For the unit to operate correctly on
a network, it must have a unique IP address on the network. There are four basic methods for
logging into the PremierWave EN and assigning IP addresses and other configurable settings:

 Web Manager: View and configure all settings easily through a web browser using the

Lantronix Web Manager. (See “Configuration Using Web Manager” on page 20.)

 DeviceInstaller: Configure the IP address and related settings and view current settings on

the PremierWave EN using a Graphical User Interface (GUI) on a PC attached to a network.
You will need the latest version of DeviceInstaller. (See “Using DeviceInstaller” on page 18.)

 Command Mode: There are two methods for accessing Command Mode (CLI): making a

Telnet or SSH connection, or connecting a PC or other host running a terminal emulation
program to the unit’s USB port. (See the PremierWave EN Command Reference Guide for
instructions and available commands.)

 XML: The PremierWave EN supports XML-based configuration and setup records tha t ma ke

device configuration transparent to users and administrators. XML is easily editable with a
standard text or XML editor. (See the PremierWave EN Command Reference Guide for
instructions and commands.)

2: Introduction

Addresses and Port Numbers

Hardware Address

The hardware address is also referred to as the Ethernet address, physical address, or MAC
address. Sample hardware address:

 00-80-A3-14-1B-18

 00:80:A3:14:1B:18

IP Address

Every device connected to an IP network must have a unique IP add ress. This address references
the specific unit.

Port Numbers

Every TCP connection and every UDP datagram is defined by a destination and source IP
address, and a destination and source port nu mber. For example, a Telnet serv er commonly u ses
TCP port number 23.

The following is a list of the default server port numbers running on the PremierWave EN:

 TCP Port 22: SSH Server (Command Mode configuration)
 TCP Port 23: Telnet Server (Command Mode configuration)
 TCP Port 80: HTTP (Web Manager configuration)
 TCP Port 21: FTP
 UDP Port 30718: LDP (Lantronix Discovery Protocol) port
 TCP/UDP Port 10001: Tunnel 1 (see note below)

PremierWave EN User Guide 16

 UDP Port 1900 and TCP Port 30179: UPnP

Note: The hardware address on the

label is also the product serial number.
The hardware address on the label is the
address for the Ethernet (eth0) interface.
The WLAN (wlan0) interface uses the
Ethernet address "+1". For example, if
the product label hardware address is
00-80-A3-14-1B-18, then the Ethernet
address is 00-80-A3-14-1B-18 and the
WLAN address is 00-80-A3-14-1B-19.

Bar Code
MAC Address
Part Number
Country of Origin

& Manufacture

Revision

Manufacturing
Date Code

Note: Additional TCP/UDP ports and tunnels will be available, depending on the product

type. The default numbering of each additional TCP/UDP port and corresponding tunnel
will increase sequentially (i.e., TCP/UDP Port 1000X: Tunnel X).

Product Information Label

The product information label on the unit contains the
following information about the specific unit:

 Bar code
 Produ ct Revision
 Part Number
 Hardware Address(MAC Address)
 Manufacturing Date Code

Figure 2-1 PremierWave ENProduct Label

2: Introduction

PremierWave EN User Guide 17

3: Using DeviceInstaller

This chapter covers the steps for locating a PremierWave EN unit and viewing its properties and
device details. DeviceInstaller is a free utility program provided by Lantronix that discovers,
configures, upgrades and manages Lantronix Device Servers.

Notes:

 For instructions on using DeviceInstaller to configure the IP address and related

settings or

 Auto IP generates a random IP address in the range of 169.254.0.1 to

1

69.254.255.254, with a netmask of 255.255.0.0, if no BOOTP or DHCP server

fou

nd. These addresses are not routable.

Accessing PremierWave EN Using DeviceInstaller

Note: Make note of the MAC address. It is needed to locate the Pre mierWav e EN using

DeviceInstaller.

To use the DeviceInstaller utility, first install the latest version from the downloads page on the
Lantronix web site www.lantronix.com/downloads

1. Run the executable to start the installation process and respond to the installation wizard
prompts. (If prompted to select an installation type, select Typical.)

for more advanced features, see the DeviceInstaller Online Help.

.

is

2. Click Start -> All Programs -> Lantronix -> DeviceInstaller -> DeviceInstaller.

3. When DeviceInstaller starts, it will perform a network device search. To perform another
search, click Search.

4.

Expand the PremierWav
available Lantronix PremierWave EN devices appears.

5. Select the PremierWave EN unit by expanding its entry and clicking on its IP address to view
its configuration.

6. On the right page, click the Device Details tab. The current PremierWave EN configuration
appears. This is only a subset of the full configuration; the full configura tion may b e accessed
via Web Manager, CLI or XML.

Device Detail Summary

Note: The settings are Display Only in this table unless otherwise noted

Current Settings Description

Name Shows PremierWave”.

DHCP Device Name

e folder by clicking the + symbol next to the folder icon. The list of

The name associated with the PremierWave’s current IP address, if the IP
address was obtained dynamically.

PremierWave EN User Guide 18

3: Using DeviceInstaller

Current Settings Description

Configurable field. Enter a group to categorize the PremierWave. Double-

Group

Comments

Device Family Shows the PremierWave device family type as “PremierWave ”.
Short Name Shows ”premierwave_en” by default
Long Name Shows ”PremierWave EN” by default
Type Shows the device type as “PremierWave””.
ID Shows the PremierWave ID embedded within the unit.
Hardware Address Shows the PremierWave hardware (MAC) address.
Firmware Version Shows the firmware currently installed on the PremierWave.
Extended Firmware Version Provides additional information on the firmware version.
Online Status Shows the PremierWave status as Online, Offline, Unreachable (the

IP Address Shows the PremierWave current IP address. To change the IP address,

IP Address was Obtained Appears “Dynamically” if the PremierWave automatically received an IP

Subnet Mask Shows the subnet mask specifying the network segment on which the

Gateway Shows the IP address of the router of this network.

Number of Serial Ports Shows the number of serial inputs on the PremierWave.
Supports Configurable Pins Shows True, indicating configurable pins are available on the PremierWave.
Supports Email Triggers

click the field, type in the value, and press Enter to complete. This group
name is local to this PC and is not visible on other PCs or laptops using
DeviceInstaller.

Configurable field. Enter comments for the PremierWave. Double-click the
field, type in the value, and press Enter to complete. This description or
comment is local to this PC and is not visible on other PCs or laptops using
DeviceInstaller.

PremierWave is on a different subnet), or Busy (the PremierWave is
currently performing a task).

click the Assign IP button on the DeviceInstaller menu bar.

address (e.g., from DHCP). Appears “Statically” if the IP address was
configured manually.

If the IP address was assigned dynamically, the following fields appear:

 Obtain via DHCP with values of True or False.
 Obtain via BOOTP with values of True or False.

PremierWave resides.

There is no default.

Shows True, indicating email triggers are available on the PremierWave.

Telnet Supported Indicates whether Telnet is enabled on this PremierWave.
Telnet Port Shows the PremierWave port for Telnet sessions.
Web Enabled Indicates whether Web Manager access is enabled on this PremierWave.

Web Port

Firmware Upgradable

PremierWave EN User Guide 19

Shows the PremierWave port for Web Manager configuration (if Web
Enabled field is True).

Shows True, indicating the PremierWave firmware is upgradable as newer
versions become available.

4: Configuration Using Web Manager

This chapter describes how to configure PremierWave EN using Web Manager, the Lantronix
browser-based configuration tool. The unit’s configuration is stored in nonvolatile memory and is
retained without power. All changes take effect immediately, unless otherwise noted. It contains
the following sections:

 Accessing Web Manager
 Web Manager Components
 Navigating Web Manager

Accessing Web Manager

Note: You can also access the Web Manager by selecting the Web Configuration tab on

the DeviceInstaller window.

To access Web Manager, perform the following steps:

1. Open a standard web browser. Lantronix supports the latest version of Internet Explor

illa Suite, Mozilla Firefox, Safari, Chrome or

Moz

2

. Enter the IP address or hostname of the PremierWave EN in the address bar. The IP addre

y have been assigned manually using DeviceInstaller (see the PremierW

ma

ation Board Quick Start Guide) or automatically by DH

Evalu

Enter your username and password.The factory-default username is “admin” and th

3.

word is “PASS”. The Device Status web page displays configuration, network settings,

pass
line settings, tunneling settings, and product information.

Note: Th

would force re-authentication to take place the next time the web page is accessed.

e Logout button is available on any web page. Logging out of the web page

Opera.

ave EN

CP.

er,

e

ss

PremierWave EN User Guide 20

5: Configuration Using Web Manager

Device Status Page

The Device Status page is the first page that appears after you log into Web Manager. The Device
Status page appears when you click Status in the Main Menu in Web Manager.

PremierWave EN User Guide 21

Web Manager Components

Menu Bar

Links to
subpages

Items to
configure

Information
and Help Area

Header

Configuration and/or Status Area

Footer

Logout
button

The layout of a typical Web Manager page is below.

Figure 4-1 Components of the Web Manager Page

4: Configuration Using Web Manager

Web Manager pages have these sections:

The menu bar always appears at the left side of the page, regardless of the page shown. The
menu bar lists the names of the pages available in the Web Mana ger. To bring up a page, click it in
the menu bar.

The main area of the page has these additional sections:

 Links n ear the top of many page s, such as the one in the example abo ve, enable you to link to

additional subpages. On some pages, you must also select the item you are configuring, such
as a tunnel.

PremierWave EN User Guide 22

 In the middle of many pages, you can select or enter new configuration settings. Some pages

show status or statistics in this area rather than allow you to enter settings.

 At the bottom of most pages, the current configuration is displayed. In some cases, you can

reset or clear a setting.

 The information or help area shows information or instructions associated with the page.
 A Logout link is available at the upper right corner of every page. In Chrome or Safari, it is

necessary to close out of the browser to completely logout. If necessary, reopen the browser
to log back in.

 The footer appear s at the very bottom of the page. It contains copyright information and a link

to the Lantronix home page.

Navigating Web Manager

The Web Manager provides an intuitive point-and-click interface. A menu bar on the left side of
each page provides links you can click to navigate from one page to another. Some pages are
read-only, while others let you change configuration settings.

Note: There may be times when you must reboot the PremierWave EN for the new

configuration settings to take effect. The chapters that follow indicate when a change
requires a reboot. Anytime you reboot the unit, this operation will take some time to
complete. Please wait a minimum of 10-20 seconds after rebooting the unit before
attempting to make any subsequent connections.

4: Configuration Using Web Manager

Web Manager Page Description See

Page

Status Shows product information, network, line, and tunneling settings. 21
Bridge Allows you to configure a bridge and shows the current operational state of

the bridge.

CLI Shows Command Line Interface (CLI) statistics and lets you change the

current CLI configuration settings.

CPM Shows information about the Configurable Pins Manager (CPM) and how to

set the configurable pins and pin groups to work with a device.

Diagnostics Lets you perform various diagnostic procedures. 76
DNS Shows the current configuration of the DNS subsystem and the DNS cache. 59
Email Shows email statistics and lets you clear the email log, configure email

settings, and send an email.

Filesystem Shows file system statistics and lets you browse the file system to view a file,

create a file or directory, upload files using HTTP, copy a file, move a file, or
perform TFTP actions.

FTP Shows statistics and lets you change the current configuration for the File

Transfer Protocol (FTP) server.

Host Lets you view and change settings for a host on the network. 54
HTTP Shows HyperText Transfer Protocol (HT TP) statistics and lets you change the

current configuration and authentication settings.

Line Shows statistics and lets you change the current configuration and Command

mode settings of a serial line.

88

83

56

82

72

59

61

41

PremierWave EN User Guide 23

4: Configuration Using Web Manager

Web Manager Page
(continued)

Network Shows status and lets you configure the network interface. 25
Protocol Stack Lets you perform lower level network stack-specific activities. 74
Query Port Lets you change configuration settings for the query port. 76
RSS Lets you change current Really Simple Syndication (RSS) settings. 63
SmartRoam Lets you configure SmartRoam options through Network Link Setti ngs. 27
SSH Lets you change the configuration settings for SSH server host keys, SSH

SSL Lets you upload an existing certificate or create a new self-signed certificate. 68
Syslog Lets you specify the severity of events to log and the server and ports to

System Lets you reboot device, restore factory defaults, upload new firmware, and

Terminal Lets you change current settings for a terminal. 53
Tunnel Lets you change the current configuration settings for an incoming tunnel

WLAN Profiles Lets you view, edit, delete and create a WLAN profile on a device. 31
Quick Connect Lets you change configuration settings for the Quick Connect.

Description See

Page

65

server authorized users, SSH client known hosts, and SSH client users.

60

which the syslog should be sent.

80

change the device long and short names.

43

connection.

39

XML Lets you export XML configuration and status records, and import XML

configuration records.

85

PremierWave EN User Guide 24

5: Network Settings

The Network Settings show the status of the Ethernet or WLAN interface/link and let you
configure the settings on the device. Interface settings are related to the configuration of the IP
and related protocols. Link settings are related to the physical link connection, which carries the IP
traffic.

The PremierWave EN contains two network interfaces.Only one interface m ay be active at a time;
however, if bridging is enabled, both interfaces will be activated and controlled by the bridging
subsystem. The Ethernet interface is also called interface 1 or eth0, and the WLAN interface is
called interface 2 or wlan0.

Notes:

 Some settin gs require a reboot to take effect. These settings are noted below.
 Wait a minimum of 10-20 seconds after rebooting the unit before attempting to make

any subsequent connections.

 The blue text in the XML command strings of this chapter are to be replaced with a

user-specified name.

Network Interface Settings

Table 5-1 shows the network interface settings that can be configured.

These settings apply to both the Ethernet (eth0) and WLAN (wlan0) interfaces, but are configured
independently for each interface.

Table 5-1 Network Interface Settings

Network Interface
Settings

State Enables or disables the interface.
BOOTP Client Select to turn On or Off. At boot up, after the physical link is up, the

DHCP Client Select to turn On or Off. At boot up, after the physical link is up, the

Description

PremierWave will attempt to obtain IP settings from a BOOTP server.

Note: Overrides the configured IP address/mask, gateway, hostname, and

domain. When DHCP is Enabled, the system automatically uses DHCP,
regardless of whether BOOTP is Enabled. Changing this value requires you to
reboot the device.

PremierWave will attempt to obtain IP settings from a DHCP server and will
periodically renew these settings with the server.

Note: Overrides BOOTP, the configured IP address/mask, gateway,

hostname, and domain. Changing this value requires you to reboot the device.

Note: Within WebManager, click Renew to renew the DHCP lease.

PremierWave EN User Guide 25

5: Network Settings

Network Interface

Description

Settings (continued)

IP Address Enter the static IP address to use for the interface. You may enter it alone or in

CIDR format.

Note: This setting will be used if Static IP is active (both DHCP and BOOTP

are Disabled). Changing this value requires you to reboot the device. When
DHCP or BOOTP is enabled, the PremierWave EN tries to obtain an IP address
from a DHCP or BOOTP server. If it cannot, the PremierWave EN generates
and uses an Auto IP address in the range of 169.254.xxx.xxx, with a network
mask of 255.255.0.0.

Default Gateway Enter the IP address of the router for this network.

Note: This setting will be used if Static IP is active (both DHCP and BOOTP

are Disabled).

Hostname Enter the hostname for the interface. It must begin with a letter or number,

continue with a sequence of letters, numbers, or hyphens, and end with a letter
or number.

Note: This setting will take effect immediately, but will not register the

hostname with a DNS server until the next reboot.

Domain Enter the domain name suffix for the interface.

Note: This setting will be used when either Static IP or Auto IP is active, or if

DHCP/BOOTP is active and no Domain Suffix was acquired from the server.

DHCP Client ID Enter the ID if the DHCP server requires a DHCP Client ID option. The DHCP

server’s lease table shows IP addresses and MAC addresses for devices. The
lease table shows the Client ID, in hexadecimal notation, instead of the
PremierWave EN MAC address.

Primary DNS Enter the IP address of the primary Domain Name Server.

Note: This setting will be used when either Static IP or Auto IP is active, or if

DHCP/BOOTP is active and no DNS server was acquired from the server.

Secondary DNS Enter the IP address of the secondary Domain Name Server.

Note: This setting will be used when either Static IP or Auto IP is active, or if

DHCP/BOOTP is active and no DNS server was acquired from the server.

MTU When DHCP is enabled, the MTU size is (usually) provided with the IP address.

When not provided by the DHCP server, or using a static configuration, this
value is used. The MTU size can be from 576 to 1500 bytes, the default being
1500 bytes.

To Configure Network Interface Settings

Using Web Manager

 To modify Ethernet (eth0) settings, click Network on the menu and select Network 1 ->

Interface -> Configuration.

 To modify Wireless (wlan0) settings, click Network on the menu and select Network 2 ->

Interface -> Configuration.

Using the CLI

 To enter th e eth0 command level: enable -> config -> if 1
 To enter the wlan0 command level: enable -> config -> if 2

PremierWave EN User Guide 26

Using XML

 Include in your file: <configgroup name="interface" instance="eth0">
 Include in your file: <configgroup name="interface" instance="wlan0">

To View Network Interface Status

Using Web Manager

In Network Interface Status, you can view both the current operational settings as well as the
settings that would take affect upon a device reboot.

 To view Ethernet (eth0) Status, click Network on the menu and select Network 1 ->

Interface -> Status.

 To view Wireless (wlan0) Status, click Network on the menu and select Network 2 ->

Interface -> Status.

Network Link Settings

5: Network Settings

Physical link parameters can be configured for an Ethernet (eth0) Network Interface (see

Table 5-2) and a WLAN (wlan0) Network Interface (see Table 5-3).

Table 5-2 Network 1 (eth0) Link Settings

Network 1 Ethernet (eth0)
Link Settings

Speed Select the Ethernet link speed. (Default is Auto)

Duplex Select the Ethernet link duplex mode. (Default is Auto)

Description

 Auto = Auto-negotiation of Link Speed
 10 Mbps = Force 10 Mbps
 100 Mbps = Force 100 Mbps

 Auto = Auto-negotiation of Link Duplex
 Half = Force Half Duplex
 Full = Force Full Duplex

Notes:

 When speed is Auto, duplex must be Auto or Half.
 When speed is not Auto, duplex must be Half or Full.
 Fixed speed Full duplex will produce errors connected to Auto, due to duplex

mismatch.

SmartRoam

SmartRoam monitors the signal strengths of all in-range access points belonging to the Extended
Service Set (ESS) to which the PremierWave is currently connected. When an AP is found with a
signal strength which is significantly greater than that of the currently associated AP, SmartRoam
automatically switches to the new AP. This reduces interruptions in wireless connectivity and
ensures optimal signal strength. Roaming happens automatically and is comp letely transparent to
the user; no loss of network connectivity should occur.

PremierWave EN User Guide 27

5: Network Settings

SmartRoam periodically scans for access points which belong to the current ESS (having the
same SSID and security settings at the currently associated AP.) The results are then searched
for an AP with a 'stronger' signal (higher RSSI) than the current AP. If the search is successful,
SmartRoam triggers a disconnection from the current AP and a connection to the one selected
from the scan results.

Since moving between access points are a time-consuming process which can negatively impact
throughput, SmartRoam employs a delta value to ensure that the move only occurs if there would
be a significant gain in signal strength. When searching the results of a scan, SmartRoam only
considers those APs whose RSSI exceeds that of the currently associated AP by at least the delta
value.

Note: RSSI is reported in two different ways. When displayed in scan results the RSSI

is an instantaneous value obtained from a single beacon/probe response, and therefore
may vary across scan results. When reported in the status of the current connection (for
the associated access point) the value is averaged over time and is less prone to
fluctuation.

Table 5-3 Network 2 (wlan0) Link Settings

Network 2 WLAN (wlan0)
Link Settings

Choice 1 Profile
Choice 2 Profile
Choice 3 Profile
Choice 4 Profile

Out of Range Scan Interval Set the amount of time in seconds, between SmartRoaming scans.
Roaming Click to Enable or Disable SmartRoaming.
RSSI Delta The minimum difference (in dBm) between th e current RSSI and the RSSI

Debugging Level Set the verbosity level for printing WLAN Link messages to the TLOG

Active Channel Scan Time Set the amount of time, in milliseconds, the radio will dwell on each

Passive Channel Scan
Time

Radio Band Selection Select the band(s) on which the radio will operate. Options are 2.4 GHz

WLAN Watchdog Select to enable of disable.

Description

 Select up to four (4) WLAN Profiles for automatic connection to wireless

networks. More information on wireless settings is available in the
section, To Configure Network Link Settings on page 29.

 Enter the name of the WLAN Profile desired for each choice.

of any access point in the scan results before it will be considered as a
roaming candidate. The configured value will actually be used for the high­power delta. The roaming delta is cut in half for RSSI below -50dBm. The
value for the low-power delta will be derived from the configured one by
dividing it by two. Default value: 24dBm, range: 14 - 24dBm.

(Default is Info).

individual channel when performing an active scan. During active scanning,
the radio transmits probe requests and gathers probe responses from other
devices. The range of values is 50 to 150 msec.

Set the amount of time, in milliseconds, the radio will dwell on each
individual channel when performing a passive scan. During passive
scanning the radio does not transmit probe requests, instead relying on
beacons sent by other devices. The range of values is 100 to 400 msec.

only, 5 GHz only or Dual band.

PremierWave EN User Guide 28

5: Network Settings

To Configure Network Link Settings

Using Web Manager

 To modify Ethernet (eth0) Link information, click Network on the menu and select Network 1

-> Link.

 To modify Wireless (wlan0) Link information, click Network on the menu and select Network

2 -> Link -> Configuration.

Using the CLI

 To enter the eth0 Link command level: enable -> config -> if 1 -> link
 To enter the wlan0 Link command level: enable -> config -> if 2 -> link or

enable -> config -> if 2 -> link -> choice 1|2|3|4

Using XML

 Include in your file : <configgroup name="ethernet" instance="eth0">
 Include in your file: <configgroup name="wlan" instance="wlan0">

WLAN Link Status and Scan Commands

These commands display information about the current state of the wireless network.

Table 5-4 Network 2 Link Scan

WLAN Link Information
Commands

Scan “<network SSID>” Perform a scan for devices within ra nge of the PremierWave. Including the

Refresh scan results
every 15 seconds

(checkbox)

The results of the scan command are presented in the following format in the table below:

Table 5-5 Network 2 Link Scan Results on WebManager

Description

optional network SSID limits the scan to devices configured with the specified
network SSID. Omitting the network SSID performs a scan for all devices in
range.

Note: When omitting the network SSID it is still necessary to include the

opening and closing quotation marks (scan “”). When the PremierWave is
associated with an access point, scanning is only preformed on the band on
which the unit is connected.

 Check this to auto update the list of networks every 15 seconds.
 Uncheck this to stop auto update.

WLAN Link Scan Results Field Description

Network Name The Service Set Identifier (network name) of the device.
BSSID Basic Service Set Identifier.
Ch (Channel) The channel on which the device is operating.

PremierWave EN User Guide 29

5: Network Settings

WLAN Link Scan Results Field
(continued)

RSSI The instantaneous Received Signal Strength Indicator (RSSI) of the

Security Suite Indicates the security suite in use by the device as well as whether it is

Description

device measured in dBm.

Note: RSSI reported in scan results is a single sampling, while the

RSSI reported in the 'status' command (showing the signal strength of
the currently connected AP) is averaged over time.

operating in Adhoc (IBSS) mode.

The results of the status command are presented in the following format:

Table 5-6 Network 2 Link Status

WLAN Link Status Description

Connection State ndicates the connection state.
BSSID A unique identifier for the Basic Service Set corresponding to the

MAC address of the Access Point in infrastructure mode, or a
generated value in Adhoc mode.

SSID The Service Set Identifier of the connected network.
Topology The type of wireless network in use for the current association

(Adhoc or Infrastructure).

Active WLAN Profile Indicates which WLAN profile created the current connection to

the wireless network.

Pairwise Cipher The standard used to encrypt a particular type of data in the

current wireless association.

Group Cipher The standard used to encrypt a particular type of data in the

current wireless association.

Authentication Indicates the method of distributing encryption key material.
Security Suite Indicates the security suite used for the current association.
Channel The channel used for the current association.
IP Address The IP address assigned to the PremierWave.
RSSI A measure of the power level of the received radio signal in dBm,

specifically the RSSI of the currently associated AP averaged
over time.

Note: RSSI reported in scan results is a single sampling, while

the RSSI reported in the 'status' command (showing the signal
strength of the currently connected AP) is averaged over time.

To View WLAN Link Scan and Status Information

Using Web Manager

 To scan the Wireless (wlan0) Link, click Network in the menu and select Network 2 -> Link -

> Scan.

 To view the Wireless (wlan0) Link status information, click Network in the menu and select

Network 2 -> Link -> Status.

PremierWave EN User Guide 30

Using the CLI

 To enter the wlan0 Link command level: enable -> config -> if 2 -> link

Using XML

 Include in your file:

<statusgroup name="wlan status">

and

<statusgroup name="wlan scan">

WLAN Profiles

A WLAN profile defines all of the settings necessary to establish a wireless connection with either
an access point (in infrastructure mode) or another wireless client (in Adhoc mode). A maximum
of eight profiles can exist on the PremierWave EN at a time. All enabled profiles are active.

PremierWave now supports dynamic profiles and prioritization of the profiles. Dynamic Profiles are
the ones created via WPS or QuickConnect. Profiles are numbered based on priority. Dynamic
profiles (in reversed order of creation), choice list profiles (Choice1, Choice2, Choice3, and
Choice4), and then the remaining profiles. Use the number from output of 'show' command.

5: Network Settings

To Configure WLAN Profiles

You can view, edit, create or delete a WLAN profile.

Using WebManager

 Click WLAN Profiles on the menu.

Using the CLI

 To enter the wlan0 Profile command level: enable -> config -> wlan profiles

Using XML

 Include in your file : <configgroup name="wlan profile"

instance="profile_name">

Table 5-7 Creating, Deleting or Enabling WLAN Profiles

WLAN Profile Basic Settings Description

Create new profile Type in the name of the new profile to be created into the Create new

profile field. Then, click the Submit button which appears to create the

profile. Once created, the profile name may be clicked so you may edit
profile settings (see Table 5-8).

PremierWave EN User Guide 31

5: Network Settings

WLAN Profile Basic Settings

Description

(continued)

Enabled (checkbox) Click the Enabled checkbox beside the profile(s) to be enabled. Three

buttons will appear:

 Click the Submit button to permanently enable profile(s).
 Click the Apply button to enable the profile for testing purposes. If the

device reboots, this change will not be applied.

 Click the Cancel button to cancel this action, as desired.

View or Edit

(link to specific profile)

Click on a specific WLAN Profile name to edit the WLAN profile basic
settings (see Table 5-8).

Table 5-8 WLAN Profile Basic Settings

WLAN Profile Basic Settings Description

Network Name (SSID) Specify the name of the wireless network (SSID.)

Warning: Creating a new profile with a pre-existing network

name will cause the original network name and associated profile
to be overwritten.

Topology Specify Infrastructure (ESS) or Adhoc (IBSS) mode.

 Infrastructure: mode that communicates with access points.
 Adhoc: mode that communicates with other clients.

Channel Specify the channel for an Adhoc network.

Note: This setting only applies to the creation of an Adhoc network.

Scan 2.4 GHz Band Select to Enable or Disable scanning for a WLAN profile on the 2.4 GHz

band.

Note: Setting this value to “Disabled” prevents this profile from

connecting to any device operating in the 2.4 GHz band.

Scan 5 GHz Band Select to Enable or Disable scanning for a WLAN pr ofile on the 5 GHz

band.

Note: Setting this value to “Disabled” prevents this profile from

connecting to any device operating in the 5 GHz band.

Scan DFS Channels Select to Enable or Disable scanning on the DFS (Dynamic Frequency

Selection) channels in the 5 GHz band.

Note: This setting only applies if scanning in the 5 GHz band is enabled.

To Configure WLAN Profile Basic Settings

Using Web Manager

 To view or edit an existing WLAN profile or to create a new profile, click WLAN Profiles on the

menu and select an existing profile.

Using the CLI

 To enter the wlan0 Profile command level: enable -> config -> wlan profiles

-> edit <profile number> or enable -> config -> wlan profiles -> edit

<profile name>

PremierWave EN User Guide 32

5: Network Settings

Using XML

 Include in your file:

<configgroup name=”wlan profile” instance=”profile name”>

and

<configitem name=”basic”>

Table 5-9 WLAN Profile Advanced Settings

WLAN Profile Advanced Settings Description

TX Data Rate Maximum Specify the rate for data transmission.

Note: This setting only applies if ‘TX Data Rate’ is set to ‘Fixed’.

TX Data Rate Specify the type of transmission data rate:

 Fixed = keeps the transmission rate at the configured value.
 Auto-reduction = allows the PremierWave to reduce the data rate

automatically, depending on link quality.

TX Power Maximum Specify the maximum transmission output power in dBm.
Antenna Diversity Select th e antenna the radio will use or allow PremierWave to

automatically make the selection.

 Enabled = allow the PremierWave to select the antenna.
 Antenna 1 = use the internal antenna.
 Antenna 2 = use the external antenna.

Power Management Select to Enable or Disable power management, which reduces the

overall power consumption of the PremierWave unit, but can increase
latency.

 Enabled = allows the PremierWave to turn off the receiver when it

is idling.

 Disabled = keeps the receiver on at all times.

Power Management Interval Select number of beacons (100 msec interval) between 1 and 10.

The above-mentioned latency can be up to this number “X” 100
msec.

To Configure WLAN Profile Advanced Settings

Using Web Manager

 To view or edit an existing WLAN Profile, click WLAN Profiles on the menu and select an

existing profile.

Using the CLI

 To enter the wlan0 Profile Advanced command level: enable -> config -> wlan

profiles -> edit <profile name or number> -> advanced

PremierWave EN User Guide 33

5: Network Settings

Using XML

 Include in your file:

<configgroup name=”wlan profile” instance=”profile name”>

and

<configitem name=”security”>

WLAN Profile Security Settings

The PremierWave XNPremierWave EN supports WEP, WPA, and WPA2/IEEE 802.11i to secure
all wireless communication. WPA and WPA2/IEEE 802.11i are not available for Adhoc topology.

The WPA2/IEEE 802.11i mode is compliant with the Robust Secure Network specified in the IEEE
standard 802.11i.

Table 5-10 WLAN Profile Security Settings

WLAN Profile

Description

Security Settings

Suite Specify the security suite to be used for this profile.

 None = no authentication or encryption method will be used.
 WEP = Wired Equivalent Privacy
 WPA = WiFi Protected Access
 WPA2 /IEEE 802.11i = Robust Secure Network.

Authentication Select the authentication of the security key.

 PSK
 IEEE 802.1X

Note: This configuration option becomes available only when suites, WEP, WPA

or WPA2/IEEE 802.11i are selected.

Key Type Select the format of the security key.

Note: This configuration option becomes available only when suites, WEP, WPA

or WPA2/IEEE 802.11i are selected.

Key Size Select the key size:

 40 bits
 104 bits

Note: This configuration option becomes available only when the WEP suite is

selected.

Passphrase Select the passphrase consists of up to 63 characters.

Note: This configuration option becomes available only when suites, WEP, WPA

or WPA2/IEEE 802.11i are selected.

Note: Lantronix recommends using a passphrase of 20 characters or more for

maximum security. Spaces and punctuation characters are permitted.

Note: The passphrase input is not the same as ASCII input (as used on some

products.) ASCII is translated directly into hexadecimal bytes according to the
ASCII table, while a possibly larger passphrase is hashed into a key and provides
better security through a larger range of key values.

PremierWave EN User Guide 34

5: Network Settings

WLAN Profile

Description

Security Settings

Encryption Select the encryption for the key:

 CCMP
 TKIP
 WEP

Note: This configuration option becomes available only when suites WPA or

WPA2/IEEE 802.11i are selected.

To Configure WLAN Profile Security Settings

Using Web Manager

 To view or edit an existing WLAN Profile, click WLAN Profiles on the menu and select an

existing profile.

Using the CLI

 To enter the wlan0 Profile Advanced Security Command level: enable -> config ->

wlan profiles -> edit 1 -> advanced -> security

Using XML

 Include in your file :

<configgroup name=:”wlan profile” instance=”profile name”>

and

<configitem name=”security”>

WLAN Profile WEP Settings

WEP security is available in both Infrastructure and AdHoc modes. WEP is a simple and efficient
security mode encrypting the data via the RC4 algorithm. However, WEP has become more
vulnerable due to advances in hacking technology. State of the art equipment can find WEP keys
in five minutes. For stronger security, please use WPA, or better, WPA2 with AES (CCMP).

Table 5-11 Additional WEP Settings for WLAN Profile.

WLAN Profile WEP Settings Description

Suite Specify the security suite to be used for this profile.

 None = no authentication or encryption method will be used.
 WEP = Wired Equivalent Privacy
 WPA = WiFi Protected Access
 WPA2 /IEEE 802.11i = Robust Secure Network.

PremierWave EN User Guide 35

5: Network Settings

WLAN Profile WEP Settings
(continued)

Authentication Select one of the following options:

Key Type Select the format of the security key.

Key Size Select the key size in bits. Select 40 for WEP40 and WEP64;

TX Key Index Select one of four index listing keys for transmitting data.

Keys 1-4 Enter one or more encryption keys in hexadecimal format. Enter

Description

 Shared = encryption keys of both parties are compared as a

form of authentication. If mismatched, no connection is
established.

 Open = a connection is established without first checking for

matching encryption keys. However, mismatched keys will
result in garbled data and thus a lack of connectivity on the IP
level.

 Passphrase
 Hex

Note: This configuration option becomes available only when

suites, WEP, WPA or WPA2/IEEE 802.11i are selected.

select 104 for WEP104 and WEP128.

Reception is allowed with all four keys.

Note: For operability with some products that generate four

identical keys from a passphrase, this index must be one.

10 hexadecimal digits (0-9, a-f) for WEP40 and 26 for WEP104.
The configured keys are not shown for security reasons.

To Configure WLAN Profile WEP Settings

Using Web Manager

 To view or edit an existing WLAN Profile WEP setting, click WLAN Profiles on the menu,

select an existing profile and select WEP for the suite.

Using the CLI

 To enter the wlan0 Profile WEP command level: enable -> config -> wlan

profiles -> edit <profile name or number> -> advanced -> security -> wep

Using XML

 Include in your file:

<configgroup name=”wlan profile” instance=”profile name”>

and

<configitem name=”security”>

WLAN Profile WPA and WPA2/IEEE802.11i Settings

WPA and WPA2/IEEE802.11i security suites are available for Infrastructure mode only.
WPA is a security standard specified by the WiFi Alliance and is a close derivative of an early draft

of the IEEE802.11i specification. WEP was becoming vulnerable and finalizing the IEEE802.11i
standard was still far away. WPA2 is WiFi’s subset of the broad IEEE802.11i standard to enforce

PremierWave EN User Guide 36

5: Network Settings

better interoperability. The PremierWave XNPremierWave EN is compliant with both WPA2 and
IEEE802.11i.

Table 5-12 WLAN Profile WPA and WPA2/IEEE802.11i Settings

WLAN Profile WPA

Description

& WPA2 Settings

Suite Specify the security suite to be used for this profile.

 None = no authentication or encryption method will be used.
 WEP = Wired Equivalent Privacy
 WPA = WiFi Protected Access
 WPA2 /IEEE 802.11i = Robust Secure Network.

Authentication Select the authentication method to be used.

 PSK = Pre-Shared Key. The same key needs to be configured on both sides of

the connection. (On the PremierWave and on the Access Point.)

 IEEE 802.1X = This authentication method communicates with a RADIUS

authentication server that is part of the network. The RADIUS server will match
the credentials sent by the PremierWave with an internal database.

Key 64 hexadecimal digits (32 bytes.)
IEEE 802.1X Select the protocol to use to authenticate the WLAN client.

 LEAP = Lightweight Extensible Authentication Protocol. A derivative of the

original Cisco LEAP, which was a predecessor of 802.1X. Real Cisco LEAP
uses a special MAC layer authentication (called Network EAP) and cannot work
with WPA/WPA2. The PremierWave uses a more generic version to be
compatible with other major brand WiFi equipment. The authentication back end
is the same.

 EAP-TLS = Extensible Authentication Protocol - Transport Layer Security. Uses

the latest incarnation of the Secure Sockets Layer (SSL) standard and is the
most secure because it requires authentication certificates on both the network
side and the PremierWave side.

 EAP-TTLS = Extensible Authentication Protocol - Tunneled Transport Layer

Security.

 PEAP = Protected Extensible Authentication Protocol.
 EAP-TTLS and PEAP have been developed to avoid the requirement of

certificates on the client side (PremierWave), which makes deployment more
cumbersome. Both make use of EAP-TLS to authenticate the server (network)
side and establish an encrypted tunnel. This is called the outer-authentication.
Then a conventional authentication method (MD5, MSCHAP, etc.) is used
through the tunnel to authenticate the PremierWave. This is called inner
authentication.

 EAP-TTLS and PEAP have been developed by different consortia and vary in

details, of which the most visible is the supported list of inner authen tications.

Note: When using EAP-TLS, EAP-TTLS or PEAP authority, at least one authority

certificate will have to be installed in the SSL configuration that is able to verify the
RADIUS server’s certificate. In case of EAP-TLS, also a certificate and matching
private key need to be configured to authenticate the PremierWave EN to the
RADIUS server. For more information about SSL certificates see TLS (SSL) on

page 91.

PremierWave EN User Guide 37

5: Network Settings

WLAN Profile WPA

Description

& WPA2 Settings
(continued)

EAP-TTLS Option Select the inner authentication method to be used with EAP-TTLS (if configured).

 EAP-MSCHAPv2
 MSCHAPv2
 MSCHAP
 CHAP
 PAP
 EAP-MD5

PEAP Option Select the inner authentication method to be used with EAP-PEAP (if configured).

 EAP-MSCHAPv2
 EAP-MD5

Username User ID for identifying the PremierWave to the RADIUS server in the network
Password Select the password for identifying the PremierWave to the RADIUS server in the

network.

Validate Certificate Select to Enable or Disable. If enabled, the PremierWave will attempt to validate

the certificate received from the RADIUS server.

Encryption Select one or more encryption types, listed from strongest to least strong. At least

one selection will have to match the Access Points intended to connect with.

 CCMP = Uses AES as basis and is the strongest encryption option.
 TKIP = Uses WEP as the basis, but adds extra checks and variations for added

protection.

 WEP = Based on RC4.

Note: In case the encryption settings on the Access Point(s) can still be chosen,

the capabilities of the Access Point(s) and the other clients that need to use the
network need to be taken into account.

Credentials Indicate the name of client certificate (required for EAP-TLS.) For more information

about SSL certificates see sections, TLS (SSL) on page 91.

To Configure WLAN Profile WPA and WPA/IEEE802.11i Settings

Using Web Manager

 To view or edit an existing WLAN Profile WPA setting, click WLAN Profiles on the menu,

select an existing infrastructure profile and select WPA or WPA2/IEEE802.11i for the suite.

Using the CLI

 To enter the wlan0 Profile WPAX command level: enable -> config -> wlan

profiles -> edit <profile name or number> -> advanced -> security -> wpax
or enable -> config -> wlan profiles -> edit <profile name or number> ->

security -> wpax

Using XML

 Include in your file:

<configgroup name=”wlan profile” instance=”profile name”>

and

<configitem name=”security”>

PremierWave EN User Guide 38

WLAN Quick Connect

WLAN QuickConnect allows users to add a WLAN profile from a list of available networks auto­refreshed every 15 seconds. Details of the selected network are pre-populated, so little or no
configuration is required by the user. Users can test the network connection before adding it to the
pool of WLAN profiles.

5: Network Settings

Table 5-13 WLAN Quick Connect

WLAN Quick Connect
Settings

Network Name (search field) Enter a network name and click Scan to search for a network.
Scan “<network SSID>” Perform a scan for devices within range of the PremierWave. Including the

Refresh scan results every
15 seconds (checkbox)

Network Name (link) SSID of a network. Click this link to display its configuration profile.
BSSID Basic service set identifier. This is a unique 48-bits address that identifies

CH Channel number and frequency (MHz) of a network.
RSSI An instantaneous value indicating the signal strength of the network. The

Security Suite Security suite of a network (e.g., WEP, WPA, WPA2, WPS, IBSS).

Description

optional network SSID limits the scan to devices configured with the
specified network SSID. Omitting the network SSID performs a scan fo r all
devices in range.

Note: When the PremierWave is associated with an access point,

scanning is only preformed on the band on which the unit is connected.

 Check this to auto update the list of networks every 15 seconds.
 Uncheck this to stop auto update.

the access point that creates the wireless network.

best to worst signal strength is indicated by green, yellow and red
respectively.

Note: RSSI reported in scan results is a single sampling, while the RSSI

reported in the 'status' command (showing the sign al strength of the
currently connected AP) is averaged over time.

Note: Although they are reported with the security flags, WPS and IBSS

are not security settings. WPS indicates that an AP supports WPS and
IBSS indicates a device operating in adhoc mode.

To Configure WLAN Quick Connect

Using Web Manager

 To view or edit an existing WLAN Quick Connect settings, click WLAN QuickConnect on the

menu.

PremierWave EN User Guide 39

6: Line and Tunnel Settings

The PremierWave EN contains three lines . All lines use standard RS232/RS485 serial ports,
except Line 3 which is an emulated serial port over the USB Device (USB-CDC-ACM).

All lines (except Line 3) can be configured to operate in the following modes:

 RS232
 RS485 Full Duplex (also compatible with RS-422)
 RS485 Half Duplex, with and without termination impedance
 All serial settings such as Baud Rate, Parity, Data Bits, etc, apply to these Lines.

USB-CDC-ACM

Line 3 can only operate as an emulated serial port over th e USB Device po rt. It uses the standard
CDC-ACM protocol, which is supported natively by most host operating systems (Windows, Linux,
etc.). Since it is an emulated serial port, most standard serial port settings are irrelevant. Flow
control is inherent to the USB protocol, and the line speed (Baud Rate) will be "as fast as
conditions permit".

When the PremierWave EN USB Device port is cabled to a host, it will identify itself with the
industry standard USB Vendor ID of 0x0525 and Product ID of 0xa4a7.

When attached to a Windows host, a device driver .inf file (see Appendix E - USB-CDC-ACM
Device Driver File for Windows Hosts) must be installed the first time the port is cabled. Once
installed, Windows will configure an available COM port, each time the USB cable is attached.

Caution: Under Windows, if the PremierWave EN device is rebooted when an

active COM port is configured and in use, the COM port will come back
up in an unstable state. When this happens, any terminal program
accessing the COM port must be disconnected, and the USB cable
physically replugged (or the COM port under Device Manager disabled/
enabled).

When attached to a Linux host, the USB-CDC-ACM connection will automatically be configured,
assuming the Linux host is configured for USB host opera tio n an d th e "cd c_a cm " dr ive r is
available. Once recognized, the cdc_acm driver will configure a standard serial port in the /dev/
ttyACMx series, where x is a number 0, 1, 2, 3, etc.

Caution: Under Linux, if t he /dev/ttyACMx de vice is in us e when the PremierWave

EN is rebooted, some terminal programs under Linux will automatically
disconnect while others will not. If a terminal program does not
disconnect automatically, when the PremierWave EN comes back up,
the CDC-ACM connection will be enumerated to a different /dev/ttyACMx
device.

PremierWave EN User Guide 40

Line Settings

The Line Settings allow configuration of the serial lines (ports).
Some settings may be specific to only certain lines. Such settings are noted below.

Line Settings Description

Name Enter a name or short description for the line, if desired. By default, there is

Interface Set the interface type for the Line. The default is RS232 for Lines 1 and 2,

Termination Select to Enable or Disable Line Termination. The default is Disable.

State Select to Enable or Disable the operational state of the Line. The default is

Protocol Set the operational protocol for the Line. The default is Tunnel. Choices are:

Baud Rate Set the Baud Rate (speed) of the Line. The default is 9600.

Parity Set the Parity of the Line. The default is None.

Data Bits Set the number of data bits for the Line. The default is 8.

Stop Bits Set the number of stop bits for the Line. The default is 1.

Flow Control Set the flow control for the Line. The default is None.

Xon Char Set Xon Char to be used when Flow Control is set to Software. Prefix decimal

6: Line and Tunnel Settings

Table 6-1 Line Configuration Settings

no name specified. A name that contains white space must be quoted.

and USB-CDC-ACM for Line 3.
Choices are:

 RS232 (Lines 1 and 2 only)
 RS485 Full-Duplex (Lines 1 and 2 only)
 RS485 Half-Duplex (Lines 1 and 2 only)
 USB-CDC-ACM (Line 3 only) = CDC-ACM over USB

Note: This setting is only relevant for Lines 1 and 2 with Interface type RS485

Half-Duplex.

Enable.

 None
 Tunnel = Serial-Network tunneling protocol.

Any set speed between 300 and 921600 may be selected: 300, 600, 1200,
2400, 4800, 9600, 19200, 38400, 57600, 115200, 230400, 460800, 921600.
When selecting a Custom baud rate, you may manually enter any value
between 300 and 5000000.

Note: Custom baud rates are not supported when a line is configured for

Command Mode. For Interface type USB-CDC-ACM (Line 3 only), this setting
is irrelevant.

Note: For Interface type USB-CDC-ACM (Line 3 only), this setting is

irrelevant.

Note: For Interface type USB-CDC-ACM (Line 3 only), this setting is

irrelevant.

Note: For Interface type USB-CDC-ACM (Line 3 only), this setting is

irrelevant.

Note: For Interface type USB-CDC-ACM (Line 3 only), this setting is

irrelevant.

with \ or prefix hexadecimal with 0x or prefix a single control character
<control>.

PremierWave EN User Guide 41

6: Line and Tunnel Settings

Line Settings (continued) Description

Xoff Char Set Xoff Char to be used when Flow Control is set to Software. Prefix decimal

with \ or prefix hexadecimal with 0x or prefix a single control character
<control>.

Gap Timer Set the Gap Timer delay to Set the number of milliseconds to pass from the

last character received before the driver forwards the received serial bytes.
By default, the delay is four character periods at the current baud rate
(minimum 1 msec).

Threshold Set the number of threshold bytes which need to be received in order for the

driver to forward received charact er s .

Table 6-2 Line Command Mode Settings

Line Command
Mode Settings

Mode Set the Command Mode state of the Line. When in Command Mode, a CLI session

Wait Time Enter the amount of time to wait during boot time for the Serial String. This timer

Serial String Enter the Text or Binary string of bytes that must be read on the Serial Line during

Echo Serial String Select Enable or Disable for Echo Serial String. Applies only if mode is “User Serial

Signon Message Enter the string of bytes to be sent to the Serial Line during boot time. It may contain

Description

operates exclusively on the Line. Choices are:

 Always
 User Serial String
 Disabled

Note: In order to enable Command Mode on the Line, Tunneling on the Line must

be Disabled (both Connect and Accept modes). Also, custom baud rates are not
supported in Command Mode.

starts right after the Signon Message has been set on the Serial Line and applies
only if mode is “Use Serial String”.

boot time in order to enable Command Mode. It may contain a time element to
specify a required delay in milliseconds x, formed as {x}. Applies only if mode is
“User Serial String”. It may contain a binary character(s) of the form [x]. For
example, use decimal [12] or hex [0xc].

String”. Select enable to echo received characters backed out on the line while
looking for the serial string.

a binary character(s) of the form [x]. For example, use decimal [12] or hex [0xc].

To Configure Line Settings

Note: The following section describes the steps to view and configure Line 1 settings;

these steps apply to other line instances of the device.

Using Web Manager

 To configure a specific line, click Line in the menu and se lect Line 1 -> Configuration (Table

6-1).

 To configure a spe cific line in Command Mode, click Line in the menu and select Line 1 ->

Command Mode (Table 6-2).

Using the CLI

PremierWave EN User Guide 42

6: Line and Tunnel Settings

 To enter Line 1 command level: enable -> line 1

Using XML

 Include in your file : <configgroup name="line" instance="1">
 Include in your file : <configgroup name="serial command mode" instance="1">

To View Line Statistics

Using Web Manager

 To view statistics for a specific line, click Line in the menu and select Line 1 -> Statistics.

Using the CLI

 To view Line statistics: enable -> line 1, show statistics

Using XML

 Include in your file: <statusgroup name=”line” instance=”1”>

Tunnel Settings

Tunneling allows serial devices to communicate over a network, without “being aware” of the
devices which establish the network connection between them. Tunneling parameters are
configured using the Tunnel menu and submenus under Setup. The Tunn el settings allow you to
configure how the Serial-Network tunneling operates. Tunneling is available on all serial lines.
The connections on one serial line are separate from those on another serial por t.

Note: The following section describes the steps to view and configure Tunnel 1 settings;

these steps apply to other tunnel instance s of the de vic e.

Serial Settings

These serial settings for the tunnel apply to the Serial Line interface. The Line Settings and
Protocol are displayed for informational purposes and must be configured from the Line settings.

Tunnel Serial
Settings

Line Settings Line Settings information here is display only. Go to the section, To Configure

Protocol Protocol information here is display only. Go to the section, To Configure

Table 6-3 Tunnel Serial Settings

Description

Line Settings to modify these settings.

Line Settings to modify these settings.

PremierWave EN User Guide 43

6: Line and Tunnel Settings

Tunnel Serial

Description

Settings (continued)

DTR Select the conditions in which the Data Terminal Ready (DTR) control signal

on the serial line are asserted. Choices are:

 Unasserted
 TruPort = the DTR is asserted whenever either a connect or an accept

mode tunnel connection is active with the Telnet Protocol RFC2217 saying
that the remote DSR is asserted.

 Asserted while connected = the DTR is asserted whenever either a

connect or an accept mode tunnel connection is active.

 Continuously asserted

To Configure Tunnel Serial Settings

Using Web Manager

 To configure the Serial Settings for a specific tunnel, click Tunnel in the menu and select

Tunnel 1 -> Serial Settings.

Using the CLI

 To enter Tunnel 1 command level: enable -> tunnel 1 -> serial

Using XML

 Include in your file : <configgroup name=”tunnel serial” instance=”1”>

Packing Mode

With Packing, data from the serial Line is not sent over the network immediately. Instead, data is
queued and sent in segments, when either the timeout or byte threshold is reached. Packing
applies to both Accept and Connect Modes.

Table 6-4 Tunnel Packing Mode Settings

Tunnel Packing Mode
Settings

Mode Configure the Tunnel Packing Mode. Choices are:

Threshold Set the threshold (byte count). If the received serial data reaches this

Timeout Set the timeout value, in milliseconds, after the first character is received on

Description

 Disable = Data not packed.
 Timeout = data sent after timeout occurs.
 Send Character = data sent when the Send Character is read on the Serial

Line.

threshold, then the data will be sent on the network. Valid range is 100 to
1450 bytes. Default is 512.

the serial line, before data is sent on the network. Valid range is 1 to 30000
milliseconds. Default is 1000.

PremierWave EN User Guide 44

6: Line and Tunnel Settings

Tunnel Packing Mode
Settings (continued)

Send Character Enter Control Characters in any of the following forms:

Trailing Character Enter Control Characters in any of the following forms:

Description

 <control>J
 0xA (hexadecimal)
 \10 (decimal)

If used, the Send Character is a single printable character or a control
character that, when read on the Serial Line, forces the queued data to be
sent on the network immediately.

 <control>J
 0xA (hexadecimal)
 \10 (decimal).

If used, the Trailing Character is a single printable character or a control
character that is injected into the outgoing data stream right after the Send
Character. Disable the Trailing Character by blanking the field (setting it to
<None>).

To Configure Tunnel Packing Mode Settings

Using Web Manager

 To configure the Packing Mode for a specific tunnel, click Tunnel in the menu and select

Tunnel 1 -> Packing Mode.

Using the CLI

 To enter the Tunnel 1 Packing command level: enable -> tunnel 1 -> packing

Using XML

 Include in your file : <configgroup name="tunnel packing" instance="1">

Accept Mode

In Accept Mode, the PremierWave EN listens (waits) for incoming connections from the network. A
remote node on the network initiates the connection.

The configurable local port is the port the remote device connects to for this connection. There is
no remote port or address. Supported serial lines and associated local port numbe rs progress
sequentially in matching value. For instance, the default local port is 10001 for serial line 1 and the
default local port for serial line 2 is 10002, and so on for the number of serial lines supported.

Serial data can still be received while waiting for a network connection, keeping in mind serial data
buffer limitations.

PremierWave EN User Guide 45

Table 6-5 Tunnel Accept Mode Settings

6: Line and Tunnel Settings

Tunnel Accept Mode

Description

Settings

Mode Set the method used to start a tunnel in Accept mode. Choices are:

 Disable = do not accept an incoming connection.
 Always = accept an incoming connection (default).
 Any Character = start waiting for an incoming connection when any

character is read on the serial line.

 Start Character = start waiting for an incoming connection when the

start character for the selected tunnel is read on the serial line.

 Modem Control Asserted = start waiting for an incoming connection as

long as the Modem Control pin (DSR) is asserted on the serial line until
a connection is made.

 Modem Emulation = start waiting for an incoming connection when

triggered by modem emulation AT commands. Connect mode must
also be set to Modem Emulation.

Local Port Set the port number for use as the network local port. The default local port

number for each supported serial line number progresses sequentially in
equal value so that Tunnel X : 1000X. For example:

 Tunnel 1 : 10001
 Tunnel 2 : 10002

Protocol Select the protocol type for use with Accept Mode:

 SSH
 SSL
 TCP (default protocol)
 TCP AES
 Telnet

Credentials Specifies the name of the set of RSA and/or DSA certificates and keys to

be used for an SSL connection.

AES Encrypt Key Specify the text or hexadecimal advanced encryption standard (AES) key

for encrypting outgoing data for a TCP AES connection.

AES Decrypt Key Specify the text or hexadecimal AES key for decrypting incoming data for a

TCP AES connection.

TCP Keep Alive Enter the time, in milliseconds, the PremierWave waits during a silent TCP

connection before checking if the currently connected network device is
still on the network. If the unit gets no response after 1 attempt, it drops
the connection. Enter 0 to disable.

Flush Serial Set whether the serial line data buffer is flushed upon a new network

connection. Choices are:

 Enabled = serial data buffer is flushed on network connection
 Disabled = serial data buffer is not flushed on network connection

(default)

Block Serial Set whether Block Serial is enabled for debugging purposes. Choices are:

 Enabled = if Enabled, incoming characters from the serial line will not

be forwarded to the network. Instead, they will be buffered and will
eventually flow off the serial line if hardware or software flow control is
configured.

 Disabled = this is the default setting; incoming characters from the

Serial Line are sent on into the network. Any buffered characters are
sent first.

PremierWave EN User Guide 46

6: Line and Tunnel Settings

Tunnel Accept Mode

Description

Settings (continued)

Block Network Set whe the r Block Network is enabled for debugging purposes. Choices

are:

 Enabled = if Enabled, incoming characters from the network will not be

forwarded to the Serial Line. Instead, they will be buffered and will
eventually flow off the network side.

 Disabled = this is the default setting; incoming characters from the

network are sent on into the Serial Line. Any buffered characters are
sent first.

Password Enter a password. This password can be up to 31 characters in length and

must contain only alphanumeric characters and punctuation. When set,
clients must send the correct password string to the unit within 30 seconds
from opening network connection in order to enable data transmission.
The password sent to the unit must be terminated with one of the following:

 0A (Line Feed)
 00 (Null)
 0D 0A (Carriage Return/Line Feed)
 0D 00 (Carriage Return/Null)

If, Prompt for Password is set to Enabled and a password is provided,
the user will be prompted for the password upon connection.

Prompt for Password Select Enabled or Disabled (to enable or disable). This option will only

appear if a password is specified above.

Email on Connect Select an email profile number to which an email notification will be sent

upon the establishment of an accept mode tunnel.

Email on Disconnect Select an email profile number to which an email notification will be sent

upon the disconnection of an accept mode tunnel.

CP Output Enter the CP Output Group whose value should change when a

connection is established and dropped. Connection Value specifies the
value to set the CP Group to when a connection is established.
Disconnection Value specifies the value to set the CP Group to when the
connection is closed. To display the “Connection Value” and
“Disconnection Value”, first enter a “CP Output Group”, then click outside
that field.

To Configure Tunnel Accept Mode Settings

Using Web Manager

 To configure the Acce pt Mode for a specific tunnel, click Tunnel in the menu and select

Tunnel 1 -> Accept Mode.

Using the CLI

 To enter Tunnel 1 Accept Mode command level: enable -> tunnel 1 -> accept

Using XML

 Include in your file : <configgroup name="tunnel accept" instance="1">

PremierWave EN User Guide 47

6: Line and Tunnel Settings

Connect Mode

In Connect Mode, the PremierWave EN continues to attempt an outgoing connection on the
network, until established. If the connection attempt fails or the connection drops, then it retries
after a timeout. The remote node on the network must listen for the Connect Mode’s connection.

For Connect Mode to function, it must be enabled, have a r emote station (no de) configured , and a
remote port configured (TCP or UDP). When established, Connect Mode is always on. Enter the
remote station as an IP address or DNS name. The PremierWave EN will not make a connection
unless it can resolve the address.

For Connect Mode using UDP, the PremierWave EN accepts packets from any device on the
network. It will send packets to the last device that sent it packets.

Note: The Port in Connect Mode is not the same port configured in Accept Mode.

The TCP keepalive time is the time in which probes are periodically sent to the other end of the
connection. This ensures the other side is still connected.

Table 6-6 Tunnel Connect Mode Settings

Tunnel Connect Mode
Settings

Mode Set the method to be used to attempt a connection to a remote host or device.

Local Port Enter an alternative Local Port. The Local Port is set to <Random> by default

Host 1 Click on the displayed information to expand it for editing. If <None> is

Reconnect Timer Set the value of the reconnect timeout (in milliseconds) for outgoing connections

Flush Serial Data Set whether the serial Line data buffer is flushed upon a new network

Description

Choices are:

 Disable = an outgoing connection is never attempted. (default)
 Always = a connection is attempted until one is made. If the connection gets

disconnected, the PremierWave retries until it makes a connection.

 Any Character = a connection is attempte d when any character is read on

the serial line.

 Start Character = a connection is attempted when the start character for the

selected tunnel is read on the serial line.

 Modem Control Asserted = a connection is attempted as long as the

Modem Control pin (DSR) is asserted, until a connection is made.

 Modem Emulation = a connection is attempted when triggered by modem

emulation AT commands.

but can be overridden. Blank the field to restore the default.

displayed, clicking it will allow you to configure a new host. At least one Host is
required to enable Connect Mode as this information is necessary to connect to
that host.

established by the device. Valid range is 1 to 65535 milliseconds. Default is

15000.

connection. Choices are:

 Enabled = serial data buffer is flushed on network connection
 Disabled = serial data buffer is not flushed on network connection (default)

PremierWave EN User Guide 48

6: Line and Tunnel Settings

Tunnel Connect Mode
Settings (continued)

Block Serial Set whether Block Serial is enabled for debugging purposes. Choices are:

Block Network Set whether Block Network is enabled for debugging purposes. Choices are:

Email on Connect Select an email profile number to which an email notification will be sent upon

Email on Disconnect Select an email profile number to which an email notification will be sent upon

CP Output Enter the CP Output Group whose value should change when a connection is

Description

 Enabled = If Enabled, incoming characters from the Serial Line will not be

forwarded to the network. Instead, they will be buffered and will eventually
flow off the Serial Line if hardware or software flow control is configured.

 Disabled = this is the default setting; incoming characters from the Serial Line

are sent on into the network. Any buffered characters are sent first.

 Enabled = If Enabled, incoming characters from the network will not be

forwarded to the Serial Line. Instead, they will be buffered and will eventually
flow off the network side.

 Disabled = this is the default setting; incoming characters from the network

are sent on into the Serial Line. Any buffered characters are sent first.

the establishment of an accept mode tunnel.

the disconnection of an accept mode tunnel.

established and dropped. Connection Value specifies the value to set the CP
Group to when a connection is established. Disconnection Value specifies the
value to set the CP Group to when the connection is closed. To display the
“Connection Value” and “Disconnection Value”, first enter a “CP Output Group”,
then click outside that field.

To Configure Tunnel Connect Mode Settings

Using Web Manager

 To configure the Connect Mode for a specific tunnel, click Tunnel in the menu and select

Tunnel 1 -> Connect Mode.

Using the CLI

 To ente r the Tunnel 1 Co nnect Mode command level: enable -> tunnel 1 -> connect

Using XML

 Include in your file : <configgroup name="tunnel connect" instance="1">

Disconnect Mode

Specifies the optional conditions for disconnecting any Accept Mode or Connect Mode connection
that may be established. If any of these conditions are selected but do not occur and the network
disconnects to the device, a Connect Mode connection will attempt to reconnect. However, if none
of these conditions are selected, a closure from the network is taken as a disconnect.

PremierWave EN User Guide 49

Table 6-7 Tunnel Disconnect Mode Settings

6: Line and Tunnel Settings

Tunnel Disconnect

Description

Mode Settings

Stop Character Enter the Stop Character which when received on the Serial Line, disconnects the

tunnel. The Stop Character may be designated as a single printable character or
as a control character. Control characters may be input in any of the following
forms: <control>J or 0xA(hexadercimal) or \10 (decimal). Disable the Stop
Character by blanking the field to set it to <None>.

Modem Control Set whether Modem Control enables disconnect when the Modem Control pin is not

asserted on the Serial Line. Choices are:

 Enabled
 Disabled (default)

Timeout Enter the number of milliseconds a tu nnel may be idle before disconnection. The

value of zero disables the idle timeout.

Flush Serial Data Set whether to flush the Serial Line when the Tunnel is disconnected. Choices are:

 Enabled
 Disabled (default)

To Configure Tunnel Disconnect Mode Settings

Using Web Manager

 To configure the Disconnect Mode for a specific tunnel, click Tunnel in the menu and select

Tunnel 1 -> Disconnect Mode.

Using the CLI

 To ente r the Tunnel 1 Discon nect command level: enable -> tunnel 1 -> disconnect

Using XML

 Include in your file : <configgroup name=”tunnel disconnect” instance=”1”>

Modem Emulation

Some older equipment is designed to attach to a serial por t and dial into a network with a mod em.
This equipment uses AT commands to control the connection. For compatibility with these older
devices on modern networks, our product mimics the behavior of the modem.

Table 6-8 Tunnel Modem Emulation Settings

Tunnel Modem
Emulation Settings

Echo Pluses Set whether the pluses will be echoed back during a “pause +++ pause” escape

Description

sequence on the Serial Line. Choices are:

 Enabled
 Disabled (default)

PremierWave EN User Guide 50

6: Line and Tunnel Settings

Tunnel Modem

Description

Emulation Settings

Echo Commands Set whether characters read on the Serial Line will be echoed, while the Line is in

Modem Command Mode. Choices are:

 Enabled
 Disabled (default)

Verbose Response Set whether Modem Response Codes are sent out on the Serial Line. Choices are:

 Enabled
 Disabled (default)

Response Type Select a representation for the Modem Response Codes sent out on the Serial

Line. Choices are:

 Text (ATV1) (default)
 Numeric (ATV0)

Error Unknown
Commands

Set whether the Error Unknown Commands is enabled (ATU0) and ERROR is
returned on the Serial Line for unrecognized AT commands. OTherwise (ATU1)
OK is returned for unrecognized AT commands. Choices are:

 Enabled
 Disabled (default)

Incoming Connection Set how and if requests are answered after an incoming RING (ATS0=2). Choices

are:

 Disabled (default)
 Automatic
 Manual

Connect String Enter the customized Connect String sent to the Serial Line with the Connect

Modem Response Code.

Display Remote IP Set whether the Display Remote IP is enabled so that the incoming RING sent on

the Serial Line is followed by the IP address of the caller. Choices are:

 Enabled
 Disabled (default)

To Configure Tunnel Modem Emulation Settings

Using Web Manager

 To configure the Mo dem Emulation for a specific tunnel, click Tunnel in the menu and select

Tunnel 1 -> Modem Emulation.

Using the CLI

 To enter the Tunnel 1 Modem command level: enable -> tunnel 1 -> modem

Using XML

 Include in your file : <configgroup name=”tunnel modem” instance=”1”>

Statistics

Tunnel statistics contains data counters, error counters, connection time and connection
information. Statistics are available at each individual connection and aggregated across all
connections.

PremierWave EN User Guide 51

6: Line and Tunnel Settings

To View Tunnel Statistics

Using Web Manager

 To view statistics for a specific tunnel, click Tunnel in the menu and select the Tunnel 1 ->

Statistics.

Using the CLI

 To view Tunnel 1 statistics: enable -> tunnel 1, show statistics

Using XML

 Include in your file : <statusgroup name=”tunnel” instance=”1”>

PremierWave EN User Guide 52

7: Terminal and Host Settings

Predefined connections are available via telnet, ssh, or a se rial port. A user can ch oose one of the
presented options and the device automatically makes the predefined connection.

Either the Telnet, SSH, or serial port connection can present the CLI or the Login Connect Menu.
By default, the CLI is presented when the device is accessed. When configured to present the
Login Connect Menu, the hosts configured via the Host selections, and named serial lines are
presented.

Terminal Settings

You can configure whether each serial line or the telnet/SSH server presents a CLI or a Login
Connect menu when a connection is made.

Table 7-1 Terminal on Network and Line Settings

Terminal on Network
and Line Settings

Terminal Type Enter text to describe the type of terminal. The text will be sent to a host via IAC.

Login Connect Menu Select the interface to display when the user logs in. Choices are:

Exit Connect Menu Select whether to display a choice for the user to exit the Login Connect Menu

Send Break Enter a Send Break control character, e.g., <control> Y, or blank to disable.

Break Duration Enter how long the break should last in milliseconds, up to 10000. Default is

Echo Applies only to Connect Mode Telnet connections, not to Accept Mode. Only

Description

Note: IAC means, “interpret as command.” It is a way to send commands over

the network such as send break or start echoing.

 Enabled = shows the Login Connect Menu.
 Disabled = shows the CLI (default)

and reach the CLI. Choices are:

 Enabled = a choice allows the user to exit to the CLI.
 Disabled = there is no exit to the CLI (default)

When the Send Break control character is received from the network on its way
to the serial line, it is not sent to the line; instead, the line output is forced to be
inactive (the break condition).

Note: This configuration option is only available for Line Terminals.

500.

Note: This configuration option is only available for Line Terminals.

disable Echo if your terminal echoes, in which case you will see double of each
character typed. Default is enabled.

PremierWave EN User Guide 53

7: Terminal and Host Settings

To Configure the Terminal Network Connection

Using Web Manager

 To configure the Te rminal on Network, click Terminal on the menu and select Network ->

Configuration.

Using the CLI

 To enter the Terminal Network command level: enable -> config -> terminal

network

Using XML

 Include in your file : <configgroup name=”terminal” instance=”network”>

To Configure the Terminal Line Connection

Note: The following section describes the steps to view and configure Terminal 1

settings; these steps apply to other terminal instances of the device.

Using Web Manager

 To configure a pa rticular Terminal Line, click Terminal on the menu and select Line 1 ->

Configuration.

Using the CLI

 To enter the Terminal Line command level: enable -> config -> terminal 1

Using XML

 Include in your file : <configgroup name=”terminal” instance=”1”>

Host Configuration

Host Settings Description

Name Enter a name for the host. This name appears on the Login Connect

Protocol Select the protocol to use to connect to the host. Choices are:

SSH Username Appears if you selected SSH as the protocol . Enter a username to

Table 7-2 Host Configuration

Menu. To leave a host out of the menu, leave this field blank.

 Telnet
 SSH

Note: SSH keys must be loaded or created on the SSH page for the

SSH protocol to work.

select a pre-configured Username/Password/Key (configured on the
SSH: Client Users page), or leave it blank to be prompted for a
username and password at connect time.

PremierWave EN User Guide 54

7: Terminal and Host Settings

Host Settings Description

Remote Address Enter an IP address for the host to which the device will connect.
Remote Port Enter the port on the host to which the device will connect.

To Configure Host Settings

Note: The following section describes the steps to view and configure Host 1 settings;

these steps apply to other host instances of the device.

Using Web Manager

 To configure a particular Host, click Host on the menu and select Host 1 -> Configuration.

Using the CLI

 To enter the Host command level: enable -> config -> host 1

Using XML

 Include in your file : <configgroup name=”host” instance=”1”>

PremierWave EN User Guide 55

8: Configurable Pin Manager

The Configurable Pin Manager is responsible for assignment and control of the configurable pins
(CPs) available on the PremierWave EN. There are nine configurable pins on the PremierWave
EN.

You must configure the CPs by making them part of a group. A CP Group may consist of one or
more CPs. This increases flexibility when incorporating the PremierWave EN into another system.

Note: The blue text in the XML command strings of this chapter are to be replaced with

a user-specified name.

CPM: Configurable Pins

Each CP is associated with an external hardware pin. CPs can trigger an outside event, like
sending an email message or starting Command Mode on a serial Line.

The Current Configuration table shows the current settings for each CP.

Table 8-1 Current Configurable Pins

CP Ref Configured as Value Groups Active in group

CP1 Pin 14 Input 0 1 <available>
CP2 Pin 16 Input 1 1 <available>
CP3 Pin 18 Input 0 0 <available>
CP4 Pin 20 Input 1 0 <available>
CP5 Pin 32 Input 0 0 <available>
CP6 Pin 27 Input 0 0 <available>
CP7 Pin 44 Input 0 0 <available>
CP8 Pin 38 Input 0 0 <available>
CP9 Pin 42 Input 0 0 <available>

CPM – CPs Status Description

Name
State
Type Shows the CP hardware pin type. Can be updated. Choices are:

Value Shows the last bit in the CP cu rrent value.
Bit

PremierWave EN User Guide 56

Table 8-2 CP Status

Shows the CP number.
Shows the current enable state of the CP.

 Input
 Output

When a CP is configured as output, it can be toggled by setting the
value. Whatever value is given, the first bit 0) is used as the setting.
1 means asserted and 0 means de-asserted. Additionally, the CP
logic can be inverted so that assertion is low.

Visual display of the bitwise 32 bit placeholders for a CP.

CPM – CPs Status (continued) Description

Level

I/O

Logic
Binary
CP#
Groups

A “+” symbol indicates the CP is asserted (the voltage is high). A “­“indicates the CP voltage is low.

Indicates the current status of the pin:

 I = input
 O = output
 <blank> = unassigned

An “I” indicates the CP is inverted (active low).
Shows the binary assertion value of the corresponding bit.
Shows the CP number.
Lists the groups in which the CP is a member.

Notes:

 To modify a CP, all groups in which it is a member must be disabled.
 The changes to a CP configuration are not saved in FLASH. Instead, these CP

settings are used when the CP is added to a CP Group. When the CP Group is
saved, its CP settings are saved with it. Thus, a particular CP may be defined as
"Input" in one group but as "Output" in another. Only one group containing any
particular CP may be enabled at once.

8: Configurable Pin Manager

CPM: Groups

The CP Groups settings allow for the management of CP groups. Groups can be created or
deleted. CPs can be added to or removed from groups. A group, based on its state, can trigger
outside events (such as sending email messages). Only an enabled group can be a trigger.

Table 8-3 CPM Group Current Configuration

CPM – Groups Current
Configuration

Group Name Shows the CP group’s name.
State Indicates whether the group is enabled or disabled.
CP Info Shows the number of CPs assigned to the group.

CPM – Groups Group
Status

Name Shows the CP Group name.
State Current enable state of the CP group.
Value Shows the CP group’s curre nt value or shows “Disabled” if the group is

Bit Visual display of the bit placeholders for a CP.
Level A “+” symbol indica tes the CP’s bit position is asserted (the voltage is high).

Description

Table 8-4 CPM Group Status

Description

disabled.

A “-“ indicates the CP voltage is low.

PremierWave EN User Guide 57

8: Configurable Pin Manager

CPM – Groups Group

Description

Status (continued)

I/O Indicates the current status of the pin:

 I = input
 O = output
 <blank> = unassigned

Logic An “I” indicates the CP output is inverted.
Binary Shows the assertion value of the corresponding bit.

X = group is disabled or bit is unassigned in group

CP# Shows the configurable pin number and its bit position in the CP group.

To Configure CPM Settings

Using Web Manager

 To configure a config urable pin, click CPM in the menu, select CPs and then the desired CP

to configure.

 To configure a CPM Group, click CPM in the menu, select Groups and then the desired

Group Name to configure.

Using the CLI

 To enter the CPM command level: enable -> cpm

Using XML

 Include in your file : <configgroup name=”cp group” instance=”group name”>
 Include in your file : <configitem name=”cp” instance=”cp number”>

PremierWave EN User Guide 58

9: Services Settings

DNS Settings

This section describes the active run-time settings for the domain name system (DNS) protocol.
The primary and secondary DNS addresses come from the active interface. The static addresses
from the Network Interface configuration settings may be overridden by DHCP.

Note: The blue text in the XML command strings of this chapter are to be replaced with

a user-specified name.

Setting / Field Description

Lookup Perform one of the following:

 Enter an IP address, and perform a reverse Lookup to locate the hostname for

that IP address

 Enter a hostname, and perform a forward Lookup to locate the corresponding IP

address

To View or Configure DNS Settings:

Table 9-1 DNS Settings

Using Web Manager

 To view DNS current status, click DNS in the menu.
 To lookup DNS name or IP address, click DNS in the menu to access the Lookup field.

Note: To configure DNS for cases where it is not supplied by a protocol, click Network

in the menu and select Interface -> Configuration.

Using the CLI

 To enter the DNS command level: enable -> dns

Using XML

 Include in your file : <configgroup name=”interface” instance=”eth0”>

FTP Settings

The FTP protocol can be used to upload and download user files, and upgrade the PremierWave
EN firmware. A configurable option is provided to enable or disable access via this protocol.

PremierWave EN User Guide 59

Table 9-2 FTP Settings

FTP Settings Description

State Select to enable or disable the FTP server:

 Enabled (default)
 Disabled

To Configure FTP Settings

Using Web Manager

 To configure FTP, click FTP in the menu.

Using the CLI

 To enter the FTP command level: enable -> config -> ftp

Using XML

 Include in your file : <configgroup name=”ftp server”>

9: Services Settings

Syslog Settings

The Syslog information shows the current configuration and statistics of the syslog. Here you can
configure the syslog host and the severity of the events to log.

Note: The system log is always saved to local storage, but it is not retained through

reboots unless diagnostics logging to the filesystem is enabled. Saving the system log to a
server that supports remote logging services (see RFC 3164) allows the administrator to
save the complete system log history. The default port is 514.

Syslog Settings Description

State Select to enable or disable the syslog:

Host Enter the IP address of the remote server to which system logs are sent for storage.
Remote Port Enter the number of the port on the remote server that supports logging services.

Severity Log Level Specify the minimum level of system message the PremierWave should log. This

Table 9-3 Syslog Settings

 Enabled
 Disabled (default)

The default is 514.

setting applies to all syslog facilities. The drop-down list in the Web Manager is in
descending order of severity (e.g., Emergency is more severe than Alert.)

To View or Configure Syslog Settings:

Using Web Manager

 To configure the Syslog, click Syslog in the menu.

PremierWave EN User Guide 60

Using the CLI

 To enter the Syslog command level: enable -> config -> syslog

Using XML

 Include in your file : <configgroup name=”syslog”>

HTTP Settings

Hypertext Transfer Protocol (HTTP) is the transport protocol for communica ting hypertext
documents on the Internet. HTTP defines how messages are formatted and transmitted. It also
defines the actions web servers and browsers should take in response to different commands.
HTTP Authentication enables the requirement of usernames and passwords for access to the
device.

HTTP Settings Description

State Select to enable or disable the HTTP server:

Port Enter the port for the HTTP server to use. The default is 80.
Secure Port Enter the port for the HTTPS server to use. The default is 443. The HTTP

Secure Protocols Select to enable or disable th e following protocols:

Secure Credentials Specify the name of the set of RSA and/or DSA certificates and keys to be

Max Timeout Enter the maximum time for the HTTP server to wait when receiving a

Max Bytes Enter the maximum number of bytes the HTTP server accepts when receiving

Logging State Select to enable or disable HTTP server logging:

Max Log Entries Set the maximum number of HTTP server log entries. Only the last Max Log

9: Services Settings

Table 9-4 HTTP Settings

 Enabled (default)
 Disabled

server only listens on the HTTPS Port when an SSL certificate is configured.

 SSL3 = Secure Sockets Layer version 3
 TLS1.0 = Transport Layer Security version 1.0. TLS 1.0 is the successor of

SSL3 as defined by the IETF.

 TLS1.1 = Transport Layer Security version 1.1

The protocols are enabled by default.

Note: A server certificate and associated private key need to be installed in

the SSL configuration section to use HTTPS.

used for the secure connection.

request. This prevents Denial-of-Service (DoS) attacks. The default is 10
seconds.

a request. The default is 40 KB (this prevents DoS attacks).

 Enabled (default)
 Disabled

Note: You may need to increase this number in some cases where the

browser is sending data aggressively within TCP windows size limit, when file
(including firmware upgrade) is uploaded from webpage.

Entries are cached and viewable.

PremierWave EN User Guide 61

9: Services Settings

HTTP Settings (continued) Description

Log Format Set the log format string for the HTTP server. Follow these Log Format rules:

 %a - remote IP address (could be a proxy)
 %b - bytes sent excluding headers
 %B - bytes sent excluding headers (0 = '-')
 %h - remote host (same as '%a')
 %{h}i - header contents from request (h = header string)
 %m - request method
 %p - ephemeral local port value used for request
 %q - query string (prepend with '?' or empty '-')
 %t - timestamp HH:MM:SS (same as Apache '%(%H:%M:%S)t' or

'%(%T)t')

 %u - remote user (could be bogus for 401 status)
 %U - URL path info
 %r - first line of request (same as '%m %U%q <version>')
 %s - return status

Authentication Timeout The timeout period applies if the selected authentication type is either Digest

or SSL/Digest. After this period of inactivity, the client must authenticate
again.

To Configure HTTP Settings

Using Web Manager

 To configure HTTP se ttings, click HTTP in the menu and select Configuration.
 To view HTTP statistics, click HTTP in the menu and select Statistics.

Using the CLI

 To enter the HTTP command level: enable -> config -> http

Using XML

 Include in your file : <configgroup name=”http server”>

Table 9-5 HTTP Authentication Settings

HTTP Authentication
Settings

URI Enter the Uniform Resource Identifier (URI).

Auth Type Select the authentication type:

Description

Note: The URI must begin with ‘/’ to refer to the filesystem.

 None = no authentication is necessary.
 Basic = encodes passwords using Base64.
 Digest = encodes passwords using MD5.
 SSL = can only be accessed over SSL (no password is required).
 SSL/Basic = is accessible only over SSL and encodes passwords using Base64.
 SSL/Digest = is accessible only over SSL and encodes passwords using MD5.

Note: When changing the parameters of Digest or SSL Digest authentication, it is

often best to close and reopen the browser to ensure it does not attempt to use
cached authentication information.

PremierWave EN User Guide 62

To Configure HTTP Authentication

Using Web Manager

 To configure HTTP Authentication, click HTTP in the menu and select Authentication.

Using the CLI

 To enter the HTTP command level: enable -> config -> http

Using XML

 Include in your file : <configgroup name=”http authentication uri”

instance=”uri name”>

RSS Settings

Really Simple Syndication (RSS) (sometimes referred to as Rich Site Summary) is a method of
feeding online content to Web users. Instead of actively searching for configuration changes, RSS
feeds permit viewing only relevant and new information regarding changes made via an RSS
publisher. The RSS feeds may also be stored to the file system cfg_log.txt file.

9: Services Settings

Table 9-6 RSS Settings

RSS Settings Description

RSS Feed Select On or Off for RSS feeds to an RSS publisher. The default settin g is off.
Persistent Select On or Off for RSS feed to be written to a file (cfg_log.txt) and to be available

across reboots. The default setting is off.

Max Entries Set the maximum number of log entries. Only the last Max Entries are cached and

viewable.

View Click th e button to view RSS feeds.
Clear Click the button to clear RSS feed data..

To Configure RSS Settings

Using Web Manager

 To configure RSS, click RSS in the menu.

Using the CLI

 To enter the RSS command level: enable -> config -> rss

Using XML

 Include in your file: <configgroup name=”rss”>

PremierWave EN User Guide 63

SMTP Settings

9: Services Settings

Table 9-7 SMTP Network Stack Settings

Protocol Stack SMTP
Settings

From Address Enter the From Address here. This is an email address and is required. If you wish

Server Address Enter the Server Address to direct outbound email messages through a mail

Server Port Enter the SMTP server port number. The default is 25
Username Enter a Username to direct outbound email messages through a mail server.
Password Enter a Password to direct outbound email messages through a mail server.
Overriding Domain Enter the domain name to override the current domain name in EHLO (Extended

Description

to direct oubtound email messages through a mail server, put your client email
address here.

server.

Hello).

To Configure SMTP Network Stack Settings

Using Web Manager

 To configure SMTP protocol settings, click SMTP in the menu and select SMTP.

Using the CLI

 To enter the command level: enable -> config -> smtp

Using XML

 Include in your file: <configgroup name=”smtp”>

PremierWave EN User Guide 64

10: Security Settings

The PremierWave EN device supports Secure Shell (SSH) and Secure Sockets Layer (SSL). SSH
is a network protocol for securely accessing a remote device. SSH provides a secure, encrypted
communication channel between two hosts over a network. It provides authentication and
message integrity services.

Secure Sockets Layer (SSL) is a protocol that manages data transmission security over the
Internet. It uses digital certificates for authentication and cryptography against eavesdropping and
tampering. It provides encryption and message integrity services. SSL is widely used for secure
communication to a web server. SSL uses certificates and private keys.

Note: The device supports SSLv3 and its successors, TLS1.0 and TLS1.1. An incoming

SSLv2 connection attempt is answered with an SSLv3 response. If the initiator also
supports SSLv3, SSLv3 handles the rest of the connection.

SSH Settings

SSH is a network protocol for securely accessing a remote device over an encrypted channel. This
protocol manages the security of internet data transmission between two hosts over a network by
providing encryption, authentication, and message integrity services.

Two instances require configuration: when the Prem ie rWa ve is the SSH serve r an d wh en it is an
SSH client. The SSH server is used by the CLI (Command Mode) and for tunneling in Accept
Mode. The SSH client is for tunneling in Connect Mode.

To configure the PremierWave as an SSH server, there are two requirements:

 Defined Host Keys: both private and public keys are required. These keys are used for the

Diffie-Hellman key exchange (used for the underlying encryption protocol).

 Defined Users: these users are permitted to connect to the PremierWave SSH server.

SSH Server Host Keys

The SSH Server Host Keys are used by all applications that play the role of an SSH Server.
Specifically Tunneling in Accept Mode. These keys can be created elsewhere and uploaded to the
device or automatically generated on the device.

If uploading existing keys, take care to ensure the Private Key will not be compromised in transit.
This implies the data is uploaded over some kind of secure private network.

Note: Some SSH Clients require RSA Host Keys to be at least 1024 bits in size.

Table 10-1 SSH Server Host Keys

RSS Settings Description

Private Key Enter the path and name of the existing private key you want to upload. In

WebManager, you can also browse to the private key to be uploaded. Be sure the
private key will not be compromised in transit. This implies the data is uploaded over
some kind of secure private network.

PremierWave EN User Guide 65

10: Security Settings

RSS Settings
(continued)

Public Key Enter the path and name of the existing public key you want to upload. In

Key Type Select a key type to use for the new key:

Bit Size Select a bit length for the new key:

Description

WebManager, you can also browse to the public key to be uploaded.

 RSA
 DSA

 512
 768
 1024

Note: SSH Keys from other programs may be converted to the required PremierWave

format. Use Open SSH to perform the conversion.

SSH Client Known Hosts

The SSH Client Known Hosts are used by all applications that play the role of an SSH Client.
Specifically in Action Connect Mode. Configuring these public keys are optional but if they exist
another layer of security is offered which helps prevent Man-in-the-Middle (MITM) attacks.

Table 10-2 SSH Client Known Hosts

RSS Settings Description

Server Specify either a DNS Hostname or IP Address when adding pu blic host keys for a

Server. This Server name should match the name used as the Remote Address in
Connect Mode Tunneling.

Public RSA Key Enter the path and name of the existing public RSA key you want to use with this

user. In WebManager, you can also browse to the public RSA key to be uploaded. If
authentication is successful with the key, no password is required.

Public DSA Key Enter the path and name of the existing public DSA key you want to use with this

user. In WebManager, you can also browse to the public DSA key to be uploaded.If
authentication is successful with the key, no password is required.

Note: These settings are not required for communication. They protect against Man-In-

The-Middle (MITM) attacks.

SSH Server Authorized Users

The SSH Server Authorized Users are used by all applications that play the role of an SSH Server
and specifically Tunneling in Accept. Every user account must have a Password.

The user's Public Keys are optional and only necessary if public key authentication is wanted.
Using public key authentication will allow a connection to be made without the password being
asked at that time.

Note: When uploading the security keys, ensure the keys are not compromised in

transit.

PremierWave EN User Guide 66

10: Security Settings

Table 10-3 SSH Server Authorized Users

RSS Settings Description

Username Enter a new username or edit an existing one.
Password Enter a new password or edit an existing one.
Public RSA Key Enter the path and name of the existing public RSA key you want to use with this

user. In WebManager, you can also browse to the public RSA key to be uploaded. If
authentication is successful with the key, no password is required.

Public DSA Key Enter the path and name of the existing public DSA key you want to use with this

user. In WebManager, you can also browse to the public DSA key to be uploaded.If
authentication is successful with the key, no password is required.

SSH Client Users

The SSH Client Users are used by all applications that play the role of an SSH Client. Specifically
Tunneling in Connect Mode. To configure th e Prem ier Wave a s an SSH client, a n SSH clie nt u ser
must be both configured and also exist on the remote SSH server.

At the very least, a Password or Key Pair must be configured for a user. The keys for public key
authentication can be created elsewhere and uploaded to the device or automatically generated
on the device.

If uploading existing Keys, take care to ensure the Private Key will not be compromised in transit.
This implies the data is uploaded over some kind of secure private network.

The default Remote Command is '<Default login shell>' which tells the SSH Server to execute a
remote shell upon connection. This can be changed to anything the SSH Server on the remote
host can execute.

Note: If you are providing a key by uploading a file, make sure that the key is not

password protected.

Table 10-4 SSH Client Users

RSS Settings Description

Username Enter the name that the device uses to connect to an SSH server.
Password Enter the password associated with the username.
Remote Command Enter the command that can be executed remotely. Default is shell, which tells the

SSH server to execute a remote shell upon connection. This command can be
changed to anything the remote host can perform.

Private Key Enter the path and name of the existing private key you want to upload. In

WebManager, you can also browse to the private key to be uploaded. Be sure the
private key will not be compromised in transit. This implies the data is uploaded over
some kind of secure private network.

Public Key Enter the path and name of the existing public key you want to upload. In

WebManager, you can also browse to the public key to be uploaded.

Key Type Select a bit length for the key:

 RSA
 DSA

PremierWave EN User Guide 67

10: Security Settings

RSS Settings

Description

(continued)

Bit Size Select the bit length of the new key:

 512
 768
 1024

Using a larger Bit Size takes more time to generate the key. Approximate times are:

 1 second for a 512 bit RSA key
 1 second for a 768 bit RSA key
 1 second for a 1024 bit RSA key
 2 seconds for a 512 bit DSA key
 2 seconds for a 768 bit DSA key
 20 seconds for a 1024 bit DSA key

Note: Some SSH clients require RSA host keys to be at least 1024 bits long. This

device generates keys up to 2048 bits long.

To Configure SSH Settings

Using Web Manager

 To configure SSH, click SSH in the menu.

Using the CLI

 To enter the SSH command level: enable -> ssh

Using XML

 Include in your file: <configgroup name=”ssh server”>

and

<configgroup name=”ssh client”>

SSL Settings

Secure Sockets Layer (SSL) is a protocol for managing the security of data transmission over the
Internet. It provides encryption, authentication, and message integrity services. SSL is widely used
for secure communication to a web server, and also for wireless authentication.

Certificate/Private key combinations can be obtai ned from an external Certificate Authority (CA)
and uploaded into the unit. Self-signed certificates with associated private key can be generated
by the device server itself.

Note: The blue text in the XML command strings of this chapter are to be replaced with

a user-specified name.

PremierWave EN User Guide 68

10: Security Settings

Certificate and Key Generation

The PremierWave EN can generate self signed certificates a nd their corres ponding keys. This can
be done for both the rsa and dsa certificate formats. Certificates can be identified on the
PremierWave EN by a name provided at generation time.

Table 10-5 Certificate and Key Generation Settings

Certificate Generation

Description

Settings

Country (2 Letter Code) Enter the 2-letter country code to be assi gned to the new self-signed

certificate.
Examples: US for United States and CA for Canada

State/Province Enter the state or province to be assigned to the new self-signed certificate.
Locality (City) Enter the city or locality to be assigned to the new self-signed certificate.
Organization Enter the organization to be associated with the new self-signed certificate.
Organization Unit Enter the organizational unit to be associated with the new self-signed

certificate.

Common Name Enter the common name to be associated with the new self signed

certificate, preferrably matching the hostname or the ip address of the
device, whichever will be the intended access approach. This is a required
field.

Expires Enter the expiration date, in mm/dd/yyyy format, for the new self-signed

certificate.
Example: An expiration date of May 9, 2012 is entered as 05/09/2012.

Key length Select the bit size of the new self-signed certificate. Choices are:

 512 bits
 768 bits
 1024 bits
 2048 bits

The larger the bit size, the longer it takes to generate the key.

Type Select the type of key:

 RSA = Public-Key Cryptography algorithm based on large prime

numbers, invented by Rivest Shamir and Adleman. Used for encryption
and signing.

 DSA = Digital Signature Algorithm also based on large prime numbers,

but can only be used for signing. Developed by the US government to
avoid the patents on RSA.

To Create a New Credential

Using Web Manager

 To create a new credential, click SSL in the menu and select Credentials.

Using the CLI

 To enter the SSL command level: enable -> ssl
 To enter the Credentials command level: enable -> ssl -> credentials

PremierWave EN User Guide 69

10: Security Settings

Using XML

 Not applicable.

Certificate Upload Settings

SSL certificates identify the PremierWave EN to peers, and can be used with some methods of
wireless authentication. Certificate and key pairs can b e uploaded to the PremierWave EN through
either the CLI or XML import mechanisms. Certificates can be identified on the PremierWave EN
by a name provided at upload time.

Table 10-6 Upload Certificate Settings

Upload
Certificate
Settings

New Certificate SSL certificate to be uploaded.

New Private Key The key needs to belong to the certificate entered above.

Description

RSA or DSA certificates are allowed.
The format of the certificate must be PEM. It must start with “

CERTIFICATE-----

Certificate Authorities add comments before and/or after these lines. Those need to be
deleted before upload.

The format of the file must be PEM. It must start with “

PRIVATE KEY-----

Read DSA instead of RSA in case of a DSA key. Some Certificate Authorities add
comments before and/or after these lines. Those need to be deleted before upload.

“ and end with “-----END CERTIFICATE-----“. Some

” and end with “-----END RSA PRIVATE KEY-----”.

-----BEGIN

-----BEGIN RSA

To Configure an Existing SSL Credential

Using Web Manager

 To configure an existing SSL Credential, click SSL in the menu and select Credentials.

Using the CLI

 To enter the SSL command level: enable -> ssl
 To enter th e Credential command level: enable -> ssl -> credentials

Using XML

 Include in your file:

<configgroup name=”ssl”>

and <configitem name=”credentials” instance=”name”>
and <value name="RSA certificate"/> or <value name="DSA certificate"/>

PremierWave EN User Guide 70

10: Security Settings

Trusted Authorities

One or more authority certificates are needed to verify a peer's identity. Authority certificates are
used with some wireless authentication methods. These certificates do not require a private key.
SSL certificate for HTTPS and FTPS connections under Action must be uploaded here.

Table 10-7 Trusted Authority Settings

Trusted Authorities
Settings

Authority SSL authority certificate.

Delete Click the Delete button beside a specific certificate authority to delete it.

Description

RSA or DSA certificates are allowed.
The format of the authority certificate can be PEM or PKCS7. PEM files

must start with “-----BEGIN CERTIFICATE-----” and end with “---

--END CERTIFICATE-----”. Some Certificate Authorities add
comments before and/or after these lines. Those need to be deleted
before upload.

To Upload an Authority Certificate

Using Web Manager

 To upload an Authority Certificate, click SSL in the menu and select Trusted Authorities.

Using the CLI

 To enter the SSL command level: enable -> ssl
 To enter the Trusted Authorities command level: enable -> ssl -> trusted

authorities

Using XML

 Include in your file:

<configgroup name=”ssl”>

and <configitem name=”trusted authority” instance =”1”>
and <configitem name=”intermediate authority” instance=”1”>

PremierWave EN User Guide 71

11: Maintenance and Diagnostics Settings

Filesystem Settings

Use the file system to list, view, add, remove, and transfer files. The PremierWave EN uses a flash
file system to store.

File Display

It is possible to view the list of existing files, and to view their contents in the ASCII or hexadecimal
formats.

Table 11-1 File Display Settings

File Display Commands Description

ls Displays a list of files on the PremierWave, and their respective sizes.
cat Displays the specified file in ASCII format.
dump Displays the specified file in a combination of hexadecimal and ASCII

formats.

pwd Print working directory.
cd Change directories.
show tree Display file/directory tree.

To Display Files

Using Web Manager

 To view existing files and file contents, click FIlesystem in the menu and select Browse.

Using the CLI

 To enter the Filesystem command level: enable -> filesystem

Using XML

 Not applicable.

PremierWave EN User Guide 72

11: Maintenance and Diagnostics Settings

File Modification

The PremierWave EN allows for the creation and removal of files on its filesystem.

Table 11-2 File Modification Settings

File Modification
Commands

rm Removes the specified file from the file system.
touch Creates the specified file as an empty file.
cp Creates a copy of a file.
mkdir Creates a directory on the file system.
rmdir Removes a directory from the file system.
format Format the file system and remove all data.

Description

File Transfer

Files can be transferred to and from the PremierWave EN via the TFTP protocol. This can be
useful for saving and restoring XML configuration files. Files can also be uploaded via HTTP.

Table 11-3 File Transfer Settings

File Transfer Settings Description

Create Browse to location of the file to be created.
Upload File Browse to location of the file to be uploa ded.
Copy File Enter the source and destination for file to be copied.
Move Enter the source and destination for file to be moved.
Action Select the action that is to be performed via TFTP:

 Get = a “get” command will be executed to store a file locally.
 Put = a “put” command will be executed to send a file to a remote

location.

Local File Enter the name of the local file on which the specified “get” or “put” action is

to be performed.

Remote File Enter the name of the file at the remote location that is to be stored locally

(“get’) or externally (“put”).

Host Enter the IP address or name of the host involved in this operation.
Port Enter the number of the port involved in TFTP operations.

PremierWave EN User Guide 73

To Transfer or Modify Filesystem Files

Using Web Manager

 To create a new file or directory, upload an existing file, copy or move a file, click Filesystem

in the menu and select Browse.

Using the CLI

 To enter the Filesystem command level: enable -> filesystem

Using XML

 Not applicable.

Protocol Stack Settings

There are various low level network stack specific items that are available for configuration. This
includes settings related to IP, ICMP, ARP and SMTP, which are described in the sections below.

11: Maintenance and Diagnostics Settings

IP Settings

Table 11-4 IP Network Stack Settings

Protocol Stack
IP Settings

IP Time to Live This value typically fills the Time To Live in the IP header. SNMP refers to this

Multicast Time to Live This value fills the Time To Live in any multicast IP header. Normally this value

Description

value as "ipDefaultTTL".
Enter the number of hops to be transmitted before the packet is discarded.

will be one so the packet will be blocked at the first router. It is the number of
hops allowed before a Multicast packet is discarded.

Enter the value to be greater than one to intentionally propagate multicast
packets to additional routers.

To Configure IP Network Stack Settings

Using Web Manager

 To configure IP protocol settings, click Protocol Stack in the menu and select IP.

Using the CLI

 To enter the command level: enable -> config -> ip

Using XML

 Include in your file: <configgroup name=”ip”>

PremierWave EN User Guide 74

ICMP Settings

11: Maintenance and Diagnostics Settings

Table 11-5 ICMP Network Stack Settings

Protocol Stack
ICMP Settings

State The State selection is used to turn on/off processing of ICMP messages.

Description

This includes both incoming and outgoing messages. Choose Enabled or
Disabled.

To Configure ICMP Network Stack Settings

Using Web Manager

 To configure ICMP protocol settings, click Protocol Stack in the menu and select ICMP.

Using the CLI

 To enter the command level: enable -> config -> icmp

Using XML

 Include in your file: <configgroup name=”icmp”>

ARP Settings

Table 11-6 ARP Network Stack Settings

Protocol Stack
ARP Settings

IP Address Enter the IP address to add to the ARP cache.
MAC Address Enter the MAC address to add to the ARP cache.
Remove Click the Remove link beside a specific address to remove it.
Remove All Click the Remove All link underneath all listed addresses to remove all the

Description

addresses.

To Configure ARP Network Stack Settings

Using Web Manager

 To configure ARP protocol settings, click Protocol Stack in the menu and select ARP.

Using the CLI

 To enter the command level: enable -> config -> arp

Using XML

 Include in your file: <configgroup name=”arp”>

PremierWave EN User Guide 75

11: Maintenance and Diagnostics Settings

SMTP Settings

Table 11-7 SMTP Settings

SMTP Settings Description

Relay Address Enter the Relay Address to be used to direct all outbound email messages

through a mail server.

Relay Port Enter the Relay Port number to be used for all outbound email messages

through the mail server.

To Configure ARP Network Stack Settings

Using Web Manager

 To configure SMTP protocol settings, click Protocol Stack in the menu and select SMTP.

Using the CLI

 To enter the command level: enable -> config -> smtp

Using XML

 Include in your file: <configgroup name=”smtp”>

Diagnostics

The PremierWave EN has several tools for diagnostics and statistics. Various options allow for the
configuration or viewing of IP socket information, ping, traceroute, memory, and processes.

Hardware
To View Hardware Information

Using Web Manager

 To view hardware information, click Diagnostics in the menu and select Hardware.

Using the CLI

 To enter the command level: enable -> device, show hardware information

Using XML

 Include in your file: <statusgroup name=”hardware”>

PremierWave EN User Guide 76

11: Maintenance and Diagnostics Settings

IP Sockets

You can view the list of listening and connected IP sockets.

To View the List of IP Sockets

Using Web Manager

 To view IP Sockets, click Diagnostics in the menu and select IP Sockets.

Using the CLI

 To enter the command level: enable, show ip sockets

Using XML

 Include in your file: <statusgroup name=”ip sockets”>

Ping

The ping command can be used to test connectivity to a remote host.

Table 11-8 Ping Settings

Diagnostics: Ping
Settings (continued)

Host Enter the IP address or host name for the PremierWave to ping.
Count Enter the number of ping packets PremierWave should attempt to send to the Host.

Timeout Enter the time, in seconds, for the PremierWave to wait for a response from the

Description

The default is 5.

host before timing out. The default is 5 seconds.

To Ping a Remote Host

Using Web Manager

 To ping a Remote Host, click Diagnostics in the menu and select Ping.

Using the CLI

 To enter the command level: enable

Using XML

 Not applicable.

Traceroute

Here you can trace a packet from the PremierWave EN to an Internet host, showing how many
hops the packet requires to reach the host and how long each hop takes. If you visit a web site
whose pages appear slowly, you can use tracer ou te to de te rm in e whe r e the lon ges t de la ys are
occurring.

PremierWave EN User Guide 77

11: Maintenance and Diagnostics Settings

Table 11-9 Traceroute Settings

Diagnostics:
Traceroute Settings

Host Enter the IP address or DNS hostname. This address is used to show the path

Protocol Specify the traceroute protocol.

Description

between it and the PremierWave when issuing the traceroute command.

To Perform a Traceroute

Using Web Manager

 To perform a Traceroute, click Diagnostics in the menu and select Traceroute.

Using the CLI

 To enter the command level: enable

Using XML

 Not applicable.

Log

Table 11-10 Log Settings

Diagnostics: Log Description

Output Select a diagnostic log output type:

 Disable - Turn off the login feature.
 Filesystem - Directs logging to /log.txt.
 Line (1 , 2, or 3) - Directs logging to the selected serial line.

Max Length Set the maximum length of the log.txt file.

Note: This setting becomes available when Filesystem is selected.

To Configure the Diagnostic Log Output

Using Web Manager

 To configure the Diagnostic Log output, click Diagnostics in the menu and select Log.

Using the CLI

 To enter the command level: enable -> config -> diagnostics -> log

Using XML

 Include in your file:

<configgroup name=”diagnostics”>

and

<configitem name=”log”>

PremierWave EN User Guide 78

11: Maintenance and Diagnostics Settings

Memory

The memory information shows the total, used, and available memory (in kilobytes).

To View Memory Usage

Using Web Manager

 To view memory information, click Diagnostics in the menu and select Memory.

Using the CLI

 To enter the command level: enable -> device, show memory

Using XML

 Include in your file : <statusgroup name=”memory”>

Processes

The PremierWave EN Processes information shows all the processes currently running on the
system. It shows the Process ID (PID), Parent Process ID (PPID), user, CPU percentage,
percentage of total CPU cycles, and process command line information.

To View Process Information

Using Web Manager

 To view process information, click Diagnostics in the menu and select Processes.

Using the CLI

 To enter the command level: enable, show processes

Using XML

 Include in your file: <statusgroup name=”processes”>

Threads

The PremierWave Threads information shows details of threads in the ltrx_evo task which can be
useful for technical experts in debugging.

To View Thread Information

Using Web Manager

 To view thread information, click Diagnostics in the menu and select Threads.

Using the CLI

 To enter the command level: enable -> device, show task state

PremierWave EN User Guide 79

System Settings

The PremierWave EN System settings allow for rebooting the device, restoring factory defaults,
uploading new firmware and updating a system’s short and long name.

Note: Anytime you reboot the unit, this operation will take some time to complete.

Please wait a minimum of 10-20 seconds after rebooting the unit before attempting to
make any subsequent connections.

System Settings Description

Reboot Device
Restore Factory Defaults

Upload New Firmware

Short Name Enter a short name for the system name. A maximum of 32 characters are

Long Name Enter a long name for the system name. A maximum of 64 characters are

11: Maintenance and Diagnostics Settings

Table 11-11 System Settings

Reboots the device.

Note: Restores the device to the original factory settings. All configuration will

be lost. The PremierWave automatically reboots upon setting back to the
defaults.

FTP to the PremierWave. Write the new firmware file to firmware.rom on the
PremierWave. The device automatically reboots upon the installation of new
firmware. See the section, FTP Settings on page 59.

allowed.

allowed.

To Reboot or Restore Factory Defaults

Using Web Manager

 To access the area with options to reboot, restore to factory defaults, upload new firmware,

update the system name (long or short names) or to view the current configu ration, click
System in the menu.

Using the CLI

 To enter the command level: enable

Using XML

 Include in your file: <configgroup name=”xml import control”>

Query Port

The current statistics and configuration options for Query Port are available for the PremierWave.

Discovery Description

State Select to enable or disable the query port server from responding to autodiscovery

Table 11-12 Query Port Settings

messages on port 0x77FE.

PremierWave EN User Guide 80

11: Maintenance and Diagnostics Settings

To Configure Query Port

Using Web Manager

 To access the area with options to configure discovery, go to the Admin tab/page and click

Query Port in the menu.

Using the CLI

 To enter the command level: enable -> config -> query port

Using XML

 Include in your file: <configgroup name=”query port”>

PremierWave EN User Guide 81

12: Advanced Settings

Email Settings

View and configure email alerts relating to events occurring within the system.

Table 12-1 Email Configuration

Email – Configuration
Settings

To Enter the email address to which the email alerts will be sent. Multiple

CC Enter the email address to which the email alerts will be copied. Multiple

From Enter the email address to list in the From field of the email alert. Required

Reply-To Enter the email address to list in the Reply-To field of the email alert.
Subject Enter the subject for the email alert.
Message File Enter the path of the file to send with the email alert. This file appears within

Overriding Domain Enter the Overriding Domain to be used to forge the sender domain name in

Server Port Enter the Server Port number for emails.
Local Port Enter the Local Port number for emails.
Priority Select the priority level for the email alert:

Trigger Email Send Enter the CP Group name that will be automatically trigger an email.

Description

addresses are separated by semicolon (;). Required field if an email is to be
sent.

addresses are separated by semicolon (;).

field if an email is to be sent.

the message body of the email.

the outgoing email message.

 Urgent
 High
 Normal
 Low
 Very Low

To View, Configure and Send Email

Note: The following section describes the steps to view and configure Email 1 settings;

these steps apply to other emails available for the device.

Using Web Manager

 To view Email statistics, click Email in the menu and select Email 1 -> Statistics.
 To configure basic Email settings, click Email in the menu and select Email 1 ->

Configuration.

 To send an email, click Email in the menu and select Email 1 -> Send Email.

PremierWave EN User Guide 82

Using the CLI

 To enter Email command level: enable -> email 1

Using XML

 Include in your file: <configgroup name=”email” instance=”1”>

Command Line Interface Settings

The Command Line Interface settings allow you to control how users connect to and interact with
the PremierWave EN's command line. It is possible to configure access via the Telnet and SSH
protocols, in addition to general CLI options.

Basic CLI Settings

The basic CLI settings control general CLI access and usability options.

Table 12-2 CLI Configuration Settings

12: Advanced Settings

Command Line Interface
Configuration Settings

Login Password Enter the password for logins by the admin account. The default password is

Enable Level Password Enter the password for access to the Command Mode Enable level. There is

Quit Connect Line Enter the Quit Connect Line string to be used to terminate a telnet or SSH

Inactivity Timeout Set a time period in which the CLI session should disconnect if no data is

Line Authentication Enable or Disable authentication for CLI access on the serial lines.

Description

“PASS”.

no password by default.

session and resume the CLI. Type <control> before the key to be pressed
while holding down the [Ctrl] key (example: <control>L>.

received. Enter 0 to disable. Blank the display field to restore the default.

To View and Configure Basic CLI Settings

Using Web Manager

 To view CLI statistics, click CLI in the menu and select Statistics.
 To configure basic CLI settings, click CLI in the menu and select Configuration.

Using the CLI

 To enter CLI command level: enable -> config -> cli

Using XML

 Include in your file: <configgroup name=”cli”>

PremierWave EN User Guide 83

12: Advanced Settings

Telnet Settings

The telnet settings control CLI access to the PremierWave EN over the Telnet protocol.

Table 12-3 Telnet Settings

Telnet Settings Description

Telnet State Enable or Disable CLI access via telnet
Telnet Port Enter an alternative Telnet Port to override the default used by the CLI server.

Blank the field to restore the default.

Telnet Max Sessions Specify the maximum number of concurrent Telnet sessions that will be allowed.
Telnet Authentication Enable or Disable authentication for telnet logins.

To Configure Telnet Settings

Using Web Manager

 To configure Te lnet settings, click CLI in the menu and select Configuration.

Using the CLI

 To enter the Telnet command level: enable -> config -> cli -> telnet

Using XML

 Include in your file:

<configgroup name=”telnet”>

and

<configitem name=”state”>

and

<configitem name=”authentication”>

SSH Settings

The SSH settings control CLI access to the PremierWave EN over the SSH protocol.

Table 12-4 SSH Settings

SSH Settings Description

SSH State Select to Enable or Disable CLI access via telnet.
SSH Port Specify the SSH Port and override the default, as needed. Blank the field to

restore the default.

SSH Max Sessions Specify the maximum number of concurrent SSH sessions that will be allowed.

PremierWave EN User Guide 84

To Configure SSH Settings

Using Web Manager

 To configure SSH settings, click CLI in the menu and select Configuration.

Using the CLI

 To enter the SSH command level: enable -> config -> cli -> ssh

Using XML

 Include in your file:

<configgroup name=”ssh”>

and

<configitem name=”state”>

XML Settings

12: Advanced Settings

The PremierWave EN allows for the configuration of units using an XML configuration record
(XCR). Export a current configuration for use on other PremierWave EN or import a saved
configuration file.

XML: Export Configuration

You can export the current system configuration in XML format. The generated XML file can be
imported later to restore a configuration. It can also be modified and imported to update the
configuration on this PremierWave EN unit or another. The XML data can be dumped to the
screen or exported to a file on the file system.

By default, all groups are exported. You may also select a subset of groups to export.

Table 12-5 XML Exporting Configuration

XML Export Configuration
Settings

Export to browser Select this option to export the XCR data in the selected fields to the

Export to local file Select this option to export the XCR data to a file on the device. If you select

Export secrets Select to export secret password and key information. Use only with a

Comments Select this option to include descriptive comments in the XML.

Description

browser. Use the “xcr dump” command to export the data to the browser.

this option, enter a file name for the XML configuration record. Use the “xcr
export” command to export the data to a local file.

secure link, and save only in secure locations.

Note: Only use with extreme caution.

Lines to Export Select instances to be exported in the line, serial, tunnel and terminal

PremierWave EN User Guide 85

groups.

12: Advanced Settings

XML Export Configuration
Settings (continued)

Groups to Export Check the configuration groups that are to be exported to the XML

Description

configuration record. The group list should be comma delimited and
encased in double quotes. The list of available groups can be viewed with
the “xcr list” command.

To Export Configuration in XML Format

Using Web Manager

 To export configuration format, click XML in the menu and select Export Configuration.

Using the CLI

 To enter the XML command level: enable -> xml

Using XML

 Not applicable.

XML: Export Status

You can export the current status in XML format. By default, all groups are exported. Yo u may also
select a subset of groups to export.

Table 12-6 Exporting Status

XML Export Status
Settings

Export to browser Select this option to export the XCR data in the selected fields to the browser. Use

Export to local file Select this option to export the XCR data to a file on the device. If you select this

Lines to Export Select instances to be exported in the line, serial, tunnel and terminal groups.
Groups to Export Check the configuration groups that are to be exported to the XML configuration

Description

the “xcr dump” command to export the data to the browser.

option, enter a file name for the XML configuration record. Use the “xcr export”
command to export the data to a local file.

record. The group list should be comma delimited and encased in double quotes.
The list of available groups can be viewed with the “xcr list” command.

To Export in XML Format

Using Web Manager

 To export configuration format, click XML in the menu and select Export Status.

Using the CLI

 To enter the XML command level: enable -> xml

PremierWave EN User Guide 86

12: Advanced Settings

Using XML

 Not applicable.

XML: Import Configuration

Here you can import a system configuration from an XML file.
The XML data can be imported from a file on the file system or pasted into a CLI session. The

groups to import can be specified at the command line, the default is all groups.

Import Configuration from External File

This import option requires entering the path and file name of the external XCR file you want to
import.

Import Configuration from the Filesystem

This import option picks up settings from a file and your import selections of groups, lines, and
instances. The list of files can be viewed from the filesystem level of the CLI.

Table 12-7 Import Configuration from Filesystem Settings

Import Configuration
from Filesystem Settings

Filename Enter the name of the file on the PremierWave (local to its filesystem) that

Lines to Import Select filter instances to be imported in the line, serial, tunnel and terminal

Whole Groups to Import Select the configuration groups to import from the XML configuration record.

Text List Enter the string to import specific instances of a group. The textual format of

Description

contains XCR data.

groups. This affects both Whole Groups to Import and Text List selections.

This option imports all instances of each selected group.

this string is: <g>:<i>;<g>:<i>;...
Each group name <g> is followed by a colon and the instance value <i> and

each <g>:<i> value is separated by a semi-colon. If a group has no instance
then only the group name <g> should be specified.

To Import Configuration in XML Format

Using Web Manager

 To import configuration, click XML in the menu and select Import Configuration.

Using the CLI

 To enter the XML command level: enable -> xml

Using XML

 Not applicable.

PremierWave EN User Guide 87

13: Bridging

PremierWave EN supports bridging of traffic between a single external Ethernet device and the
wireless network. When bridging is enabled and a ctive, the MAC address of the e xternal device is
used as the MAC address for the WLAN interface. The PremierWave EN then bridges traffic
between the two interfaces. The external Ethernet device appears as a wireless node on the
network.

When bridging is enabled, the concept of the Primary Interface is introduced. The Primary
Interface is the interface over which all device features and services operate, as if bridging were
not enabled. FTP, Telnet/SSH CLI, HTTP, 77FE, etc, all may be accessed as usual over the
Primary Interface. The Primary Interface dynamically switches between eth0 and wlan0,
depending on the state of the Ethernet physical link. If the Ethernet link is up, eth0 is the Primary
Interface; otherwise, wlan0 is the Primary Interface.

When bridging is enabled, operation of Network 1 (eth0) and Network 2 (wlan0) are overridden
and controlled by the bridging subsystem. Each Network Interface’s own configuration is used
when it becomes the Primary Interface. Network 1 (eth0) and Network 2 (wlan0) Link
Configuration settings are still used to configure and control the physical links.

Bridging Configuration

To configure and enable bridging:

1. Configure Network 1 (eth0) and Network 2 (wlan0) Interface settings, which will be used for
the Primary Interface. For example,

 DHCP Disabled
 IP Address 192.168.1.100/24
 Default Gateway 192.168.1.1

2. Configure Network 1 (eth0) Link settings, if desired. These include the Ethernet link speed
and duplex.

3. Configure Network 2 (wlan0) Link settings as desired for connection to a wireless network.
Primarily, configure the WLAN Profile(s) for connection to the wireless network.

4. Create the corresponding WLAN Profile(s) under WLAN Profiles.
At this point, it is a good idea to ensure that the PremierWave EN can connect to your wireless

network, before enabling bridging. Check your WLAN settings by continuing with the following
steps:

5. Enable Network 2 (wlan0) and Disable Network 1 (eth0).

6. Configure Network 2 (wlan0) Interface settings as desired.

7. Reboot.

8. Verify the wireless connection.

9. Enable Bridge 1 (br0).

10. Optionally configure the Bridge 1 Bridging MAC Address.

11. Reboot for changes to take effect.

PremierWave EN User Guide 88

Bridging Operation

During initialization, both eth0 and wlan0 are enabled and controlled by the bridging subsystem.
Important aspects to keep in mind:

 If eth0 physical link is down, wlan0 is the Primary Interface.
 If eth0 physical link is up, eth0 is the Primary Interface.

When eth0 link is up, wlan0 link is established, and the Bridging MAC Address is acquired (via pre­configuration or auto-detection), Bridging enters the Active state. If either link goes down, bridging
falls back to the Inactive state.

When in the Active state, all packets that arrive on the wlan0 interface are bridged out the eth0
interface. Similarly, all packets that arrive on the eth0 interface a re bridged out the wlan0 interface.
However, exceptions to this behavior include:

 Ethernet packets directed specifically to the Ethernet (eth0) MAC Address are terminated

internally and are not bridged to WLAN.

 ARP Requests for the Primary Interface's IP address are terminated internally and are not

bridged to WLAN

 Ethernet packets which are not originated from the Bridging MAC Address are discarded

13: Bridging

Bridge Configuration

A bridge may be configured between an Ethernet interface and a WLAN interface. A bridge
represents a relationship between the interface minor numbers. For example, br0 is a bridge
between eth0 and wlan0.

WLAN Profile WPA & WPA2
Settings

State Enable or disable bridging.
Bridging MAC Address Specify the MAC address of bridgeable traffic between the Ethernet and

To View or Configure Bridge Settings

Table 13-1 Bridge Settings

Description

WLAN interfaces. When bridging is active, this MAC Address will be used as
the MAC address of the WLAN interface. Packets received on the Ethernet
interface from this address will be bridged to the WLAN interface (except
traffic directed at the Primary Interface). If this field is not configured, then the
device waits for the first packet to arrive on the Ethernet interface and uses
the source address as the bridging address.

Note: if a Bridging MAC Address is not configured, then once it is obtained

and configured dynamically, it remains in effect until a reboot.

Using Web Manager

 To view the Bridge status, click Bridge on the menu, select a particular bridge and click

Status.

 To configure Bridge settings, click Bridge on the menu, select a particular bridge and click

Configuration.

PremierWave EN User Guide 89

13: Bridging

Using the CLI

 To enter the Bridge command level: enable -> config -> bridge 1 or enable -

> config -> bridge br0

Using XML

 Include in your file: <configgroup name=”bridge” instance=”br0”>

PremierWave EN User Guide 90

14: Security in Detail

Public Key Infrastructure

Public key infrastructure (PKI) is based on an encryption technique that uses two keys: a public
key and private key. Public keys can be used to encrypt messages which can only be decrypted
using the private key. This technique is referred to as asymmetric encryption, as opposed to
symmetric encryption, in which a single secret key is used by both parties.

TLS (SSL)

Transport Layer Security (TLS) and its prede cessor, Secure Sockets Layer (SSL), use asymmetric
encryption for authentication. In some scenarios, only a server needs to be authenticated, in
others both client and server authenticate each other. Once authentication is established, clients
and servers use asymmetric encryption to exchange a secret key. Communication then proceeds
with symmetric encryption, using this key.

SSH and some wireless authentication methods on the PremierWave EN make use of SSL. The
PremierWave EN supports SSLv2, SSlv3, and TLS1.0.

TLS/SSL application hosts use separate digital certificates as a basis for authentication in both
directions: to prove their own identity to the other party, and to verify the identity of the other party.
In proving its own authenticity, the PremierWave EN will use its own "personal" certificate. In
verifying the authenticity of the other party, the PremierWave EN will use a "trusted authority"
certificate.

In short:

 When using EAP-TLS, the PremierWave EN needs a personal certificate with matching

private key to identify itself and sign its messages.

 When using EAP-TLS, EAP-TTLS or PEAP, the PremierWave EN needs the authority

certificate(s) that can authenticate those it wishes to communicate with.

Digital Certificates

The goal of a certificate is to authenticate its sender. It is analogous to a paper document that
contains personal identification information and is signed by an authority, for example a notary or
government agency. With digital certificates, a cryptographic key is used to create a unique digital
signature.

Trusted Authorities

A private key is used by a trusted certificate authority (CA) to create a unique digital signature.
Along with this private key is a certificate of authority, containi ng a matching public key that can b e
used to verify the authority's signature but not re-create it.

A chain of signed certificates, anchored by a root CA, can be used to establish a sender's
authenticity. Each link in the chain is certified by a signed certificate from the previous link, with

PremierWave EN User Guide 91

the exception of the root CA. This way, trust is transferred alon g th e cha i n, from th e ro ot CA
through any number of intermediate authorities, ultimately to the agent that needs to prove its
authenticity.

Obtaining Certificates

Signed certificates are typically obtained from well-known CAs, such as VeriSign. This is done by
submitting a certificate request for a CA, typically for a fee. The CA will sign the certificate request,
producing a certificate/key combo: th e cer tificate contains the identity of the owner and the public
key, and the private key is available separately for use by the owner.

As an alternative to acquiring a signed certificate from a CA, you can act as your own CA and
create self-signed certificates. This is often done for testing scenarios, and sometimes for closed
environments where the expense of a CA-signed root certificate is not necessary.

Self-Signed Certificates

A few utilities exist to generate self-signed certificates or sign certificate requests. The
PremierWave EN also has the ability to generate its own self-signed certificate/key combo. You
can use XML to export the certificate in PEM format, but you can n ot ex po rt the key. Hence the
internal certificate generator can only be used for certificates that are to identify that particular
PremierWave EN.

14: Security in Detail

Certificate Formats

Certificates and private keys can be stored in several file formats. Best known are PKCS12, DER
and PEM. Certificate and key can be in the same file or in separate files. Additionally, the key can
be either be encrypted with a password or left in the clear. However, the PremierWave EN
currently only accepts separate PEM files, with the key unencrypted.

Several utilities exist to convert between the formats.

OpenSSL

OpenSSL is a widely used open source set of SSL related command line utilities. It can act as
server or client. It can also generate or sign certificate requests, and can convert from and to
several different of formats.

OpenSSL is available in binary form for Linux and Windows.
To generate a self-signed RSA certif icate/key combo:

openssl req -x509 -nodes -days 365 -newkey rsa:1024 -keyout mp_key.pem ­out mp_cert.pem

See w

ww.openssl.org or www.madboa.com/geek/openssl for more information.

Note: Signing other certificate requests is also possible with OpenSSL but the details of

this process are outside the scope of this document.

PremierWave EN User Guide 92

Steel Belted RADIUS

Steel Belted RADIUS is a commercial RADIUS server from Juniper Networks that provides a GUI
administration interface. It also provides a certificate request and self-signed certificate generator.

The self-signed certificate has extension .sbrpvk and is in the PKCS12 format. OpenSSL can
convert this into a PEM format certificate and key:

openssl pkcs12 -in sbr_certkey.sbrpvk -nodes -out sbr_certkey.pem

The sbr_certkey.pem file contains both certificate and key. If loading the SBR certificate into
PremierWave EN as an authority, you will need to edit it:

1. Open the file in any plain text editor.

2. Delete all info before "----- BEGIN CERTIFICATE-----" and after "----- END

CERTIFICATE-----", and then save as sbr_cert.pem.
SBR accepts trusted-root certificates in the DER format. Again, OpenSSL can convert any format

into DER:

openssl x509 -inform pem -in mp_cert.pem -outform der -out mp_cert.der

Note: With SBR, when the identity information includes special characters such as

dashes and periods, SBR changes the format it uses to store these strings and becomes
incompatible with the current PremierWave EN release. Support may be added for this
and other formats in future releases.

14: Security in Detail

Free RADIUS

Free RADIUS is another versatile Linux open-source RADIUS server.

PremierWave EN User Guide 93

15: Updating Firmware

Obtaining Firmware

Obtain the most up-to-date firmware and release notes for the unit from the Lantronix Web site
(www.lantronix.com/support/downloads/

Loading New Firmware through Web Manager

Upload the firmware using the device web manager System page.

To upload new firmware:

1. Select System in the menu bar. The System page appears.

Figure 13-1 Uploading New Firmware

) or by using anonymous FTP (ftp://ftp.lantronix.com/).

2. Click Browse (under the Upload New Firmware heading) to browse to the firmware file.

3. Select the file and click Open.

PremierWave EN User Guide 94

4. Click Upload to install the firmware on the PremierWave EN.

5. Click OK in the confirmation popup which appears. The firmware will be installed and the
device will automatically reboot afterwards.

6. Close and reopen the web manager internet browser to view the device’s updated web pages.

Note: You may need to increase HTTP Max Bytes in some cases where the browser is

sending data aggressively within TCP windows size limit when file (including firmware
upgrade) is uploaded from webpage.

Loading New Firmware through FTP

Firmware may be updated by sending the file to the PremierWave EN over an FTP connection.
The destination file name on the PremierWave EN must be "firmware.rom". The device will reboot
upon successful completion of the firmware upgrade.

Example FTP session:

$ ftp 192.168.10.127
Connected to 192.168.10.127.
220 (vsFTPd 2.0.7)
Name (192.168.10.127:user): admin
331 Please specify the password.
Password:
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> put premierwave_en_7_3_0_1R7.rom
200 PORT command successful. Consider using PASV.
150 Ok to send data.
226 File receive OK.
9308164 bytes sent in 3.05 seconds (3047859 bytes/s)
ftp> quit
221 Goodbye.

13: Updating Firmware

PremierWave EN User Guide 95

16: Branding the PremierWave EN

This chapter describes how to brand your PremierWave EN by using Web Manager and
Command Line Interface (CLI). It contains the following sections on customization:

 Web Manager Customization
 Short and Long Name Customization

Web Manager Customization

Customize the Web Manager's appearance by modifying index.html, style.css, and the product
logo. The style (fonts, colors, and spacing) of the We b Ma na ger is cont ro lled with style .c ss. The
text and graphics are controlled with index.html. The p roduct logo is th e image in top- left corner of
the page and defaults to a product name image.

Note: The recommended dimensions of the new graphic are 300px width and 50px

height.

The Web Manager files are hidden and are incorporated directly into the firmware image but may
be overridden by placing the appropriate file in the appropriate directory on the PremierWave EN
file system.

Web Manager files can be retrieved and overridden with the following procedure:

1. FTP to the PremierWave EN device.

2. Make a directory (mkdir) and name it http/config .

3. Change to the directory (cd) that you create d in ste p 2 (http/config).

4. Save the contents of index.html and style.css by using a web browser and navigating to

http://<PremierWaveEN>/config/index.html and http://<PremierWaveEN>/

config/style.css.

5. Modify the file as required or create a new one with the same name.

6. To customize the product logo, save the image of your choice as logo.gif .

7. Put the file(s) by using put <filename>.

8. Type quit. The overriding files appear in the file system's http/config directory.

9. Restart any open browser to view the changes.

10. If you wish to go back to the default files in the firmware image, simply delete the overriding
files from the file system.

PremierWave EN User Guide 96

Short and Long Name Customization

You can customize the short and long names in your PremierWave EN. The names display in the
CLI show command and in the System web page in the Current Configuration table. The short
name is used for the show command. Both names display in the CLI Product Type field.

Table 16-1 Short and Long Name Settings

Name Settings Description

Short Name Enter a short name for the system name. A maximum of 32 characters are allowed.
Long Name Enter a long name for the system name. A maximum of 64 characters are allowed.

To Customize Short or Long Names

Using Web Manager

 To access the area with options to customize the short name and the long name of the

product, or to view the current configuration, click System in the menu.

16: Branding the PremierWave EN

Using the CLI

 To enter the command level: enable

Using XML

 Include in your file:

<configitem name=“short name”>

and

<configitem name=“long name”>

PremierWave EN User Guide 97

Appendix A: T echnical Support

If you are unable to resolve an issue using the information in this documentation, please contact
Technical Support:

Technical Support US

Check our online knowledge base or send a question to Technical Support at

http://www.lantronix.com/support

Technical Support Europe, Middle East, Africa

Phone: +33 13 930 4172
Email: eu_techsupp@lantronix.com or eu_support@lantronix.com

Firmware downloads, FAQs, and the most up-to-date documentation are available at

http://www.lantronix.com/support

When you report a problem, please provide the following information:

 Your name, and your company name, address, and phone number
 Lantronix model number
 Lantronix serial number/MAC address
 Firmware version (on the first screen shown when you Telnet to the device and type show)
 Description of the problem

.

 Status of the unit when the problem occurred (please try to include information on user and

n

etwork activity at the time of the problem)

 Additionally, it may be useful to export and submit the exported XML Configuration file.

PremierWave EN User Guide 98

Appendix B: Binary to Hexadecimal Conversions

Decimal Binary Hex

0 0000 0
1 0001 1
2 0010 2
3 0011 3
4 0100 4
5 0101 5
6 0110 6
7 0111 7
8 1000 8
9 1001 9
10 1010 A
11 1011 B
12 1100 C
13 1101 D
14 1110 E
15 1111 F

Table B-1 Binary to Hexadecimal

Conversion

Many of the unit's configuration procedures require you to assemble a series of options
(represented as bits) into a complete command (represented as a byte).

The resulting binary value must be converted to a hexadecimal representation.
Use this chapter to learn to convert binary values to hexadecimals or to look up hexadecimal

values in the tables of configuration options. The tables include:

 Command Mode (serial string sign-on message)
 AES Keys

Converting Binary to Hexadecimal

Following are two simple ways to convert binary
numbers to hexadecimal notation.

Conversion Table

Hexadecimal digits have values ranging from 0 to F,
which are represented as 0-9, A (for 10), B (for 11),
etc. To convert a binary value (for example, 0100

1100) to a hexadecimal representation, treat the

upper and lower four bits separately to produce a two­digit hexadecimal number (in this case, 4C). Use the
following table to convert values from binary to
hexadecimal.

Scientific Calculator

Another simple way to convert binary to hexadecimal
is to use a scientific calculator, such as the one
available on the Windows operating systems. For
example:

1. On the Windows Start menu, click Programs ->
Accessories -> Calculator.

2. On the View menu, select Scientific. The
scientific calculator appears.

3. Click Bin (Binary), and type the number you want
to convert.

PremierWave EN User Guide 99

Figure B-2 Windows Scientific Calculator

4. Click Hex. The hexadecimal value appears.

Appendix B: Binary to Hexadecimal Conversions

Figure B-3 Hexadecimal Values in the Scientific Calculator

PremierWave EN User Guide

100