How it Works
Pelco
Loading...
POE8ATN
specification sheets
2 pgs2.1 Mb0
user manual
44 pgs1.56 Mb0
Table of contents
Loading...

Pelco POE8ATN, POE16ATN user manual

Download
POE8ATN / POE16ATN
8- or 16-Port IEEE802.3at
Midspan
User Manual
C3932M (8/13)
Contents
Important Safety Instructions ........................................................................................................................................................ 4
Important Notices ......................................................................................................................................................................... 4
Radio and Television Interference ................................................................................................................................. 4
Warranty ....................................................................................................................................................................................... 5
Specifications ............................................................................................................................................................................... 5
Installation Instructions ................................................................................................................................................................. 5
Cold Start ....................................................................................................................................................................... 6
When ‘System Reset’ is Clicked on the GUI (applications file) ...................................................................................... 7
Midspan Accessories ................................................................................................................................................................... 7
Using the Pelco GUI with a USB Cable and USB Driver Installation ............................................................................................ 8
Midspan GUI in USB Mode .......................................................................................................................................................... 9
GUI Connection Methods ........................................................................................................................................................... 13
Webpage Connection ................................................................................................................................................................. 19
SNMP V3 MIB ............................................................................................................................................................................ 25
2 C3932M (8/13)
SSL/TLS (optional) ..................................................................................................................................................................... 27
Root Certificates ......................................................................................................................................................................... 31
Adding Root Certificates to Mozilla Firefox .................................................................................................................. 34
Generating Security Certificates ................................................................................................................................................. 35
Enable SSL ................................................................................................................................................................................ 37
Troubleshooting ......................................................................................................................................................................... 39
SSL Troubleshooting .................................................................................................................................................................. 40
Dimension Drawing .................................................................................................................................................................... 41
Appendix A: SNMP V3 Settings ................................................................................................................................................. 42
3 C3932M (8/13)

Important Safety Instructions

1. Read, keep, and follow these instructions.
2. Heed all warnings.
3. There are no user-serviceable parts inside this unit. Only authorized service personnel may open the unit.
4. Installation and serv ic ing sh ould only be done by qualif ied serv ice person nel and con for m to all local cod es.
5. WARNING: To reduce the risk of fire or electric shock, do not expose this unit to rain or moisture if this unit is designed for indoor use only.
6. Unless this unit is specifically marked as a NEMA Type 3, 3R, 3S, 4, 4X, 6, or 6P enclosure, it is designed for indoor use only and it must not be installed where exposed to rain or moisture.
7. Do not block any ventilation openings. Install in accordance with the manufacturer’s instructi ons .
8. The installation method and materials should be capable of supporting four times the weight of the unit and equipment.
9. Do not install near any heat source.
10. Only use attachments/accessories specified by the manufacturer. Thoroughly familiarize yourself with the information in this manual prior to installation and operation.

Important Notices

REGULATORY NOTICES

This device complies with Part 15 of the FCC Rules. Operation is subject to the following two conditions: (1) this devi ce may not cause harmful interference, and (2) this device must accept any interference received, including interference that may cause undesired operation.

Radio and Television Interference

This equipment has been tested and found to comply with the limits of a Class B digital device, pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation. This equipment generates, uses, and can radiate radio frequency energy and, if not installed and used in accordance with the instructions, may cause harmful interference to radio communications. However there is no guarantee that the interference will not occur in a particular installation. If this equipment does cause harmful interference to radio or television reception, which can be determined by turning the equipment off and on, the user is encouraged to try to correct the interference by one or more of the following measures:
Reorient or relocate the receiving antenna.
Increase the separation between the equipment and the receiver.
Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.
Consult the dealer or an experienced radio/TV technician for help.
You may also find helpful the following booklet, prepared by the FCC: “How to Identify and Resolve Radio-TV Interference Problems.” This booklet is available from the U.S. Government Printing Office, Washington D.C. 20402.
Changes and Modifications not expressly approved by the manufacturer or registrant of this equipment can void your authority to operate this equipment under Federal Communications Commission’s rules.
This Class B digital apparatus complies with Canadian ICES-003. Cet appareil numérique de la classe B est conforme à la norme NMB-003 du Canada.
4 C3932M (8/13)

ESD WARNING

WARNING: This product is sensitive to Electrostatic Discharge (ESD). To avoid ESD damage to this product,
IEC320 C14 AC Input
DATA & POWER OUT
network switch
use ESD safe practices during installation. Before touching, adjusting or handling this product, corre ctly at tac h an ESD wrist strap to your wrist and appropriately discharge your body and tools. For more information about ESD control and safe handling practices of electronics, please refer to ANSI/ESD S20.20-1999 or contact the Electrostatic Discharge Association (www.esda.org).

Warranty

For information about Pelco’s product warranty and thereto related information, refer to www.pelco.com/warranty.

Specifications

Refer to www.pelco.com to download the most up-to-date POE8ATN/POE16ATN specification sheet.

Installation Instructions

Setting up your new Pelco Midspan is easy. With plug and play technology, the Midspan is fully functional upon delivery. There are no additional firmware downloads or need for additional hardware.
Review all important safety instructions before setting up this Midspan. Thoroughly familiarize yourself with the information in this installation manual prior to installation and operation.
1. Familiarize yourself with the Midspan. The AC power connector on the rear panel is C14 and requires a power cable with a C13 line socket.
2. For full functionality, Ethernet cables of Category 5 or better are required. Ethernet cables with RJ-45 connectors must be used to connect to the Midspan ports.
3. Connect power to the Midspan: Plug the AC power cord into the power connector on the rear of your Midspan.
Figure 1. POE8ATN/16ATN Rear Panel AC Power Connector
4. Start-up/cold start: Once the power cord is connected to a universal or redundant power source, the LEDs will illuminate in a specific sequence indicating power-up. On start-up, all LEDs should illuminate and the unit begins a cold start. The device runs through a quick power-on test that takes several seconds. During this period, all ports are initially disabled and the port indicators light up. After completing the cold start, ports will operate under normal conditions and the unit is ready to connect to powered devices. See the ‘LED INDICATORS’ section for more information about LED illumination during cold start.
to powered device
DATA IN from the
Figure 2. POE8ATN front panel ports (POE16ATN has additional 8 ports)
5. Once the Midspan is powered up, you can connect the Midspan to the network switch and your end devices. Using a Cat5 Ethernet cable or better, connect a channel on the network switch to the Pelco Midspan using the bottom ‘DATA’ ports only. This connection will allow for data to transfer from the network switch, and then get transferred along with power to the intended device from the ‘DATA & POWER’ port.
5 C3932M (8/13)
6. After the link is established, connect the corresponding ‘DATA & POWER’ port of the Midspan to a POE compatible
Data from the network switch to Ports 1 – 8 ‘DATA’ IN (ports 1 -16 for POE16ATN)
Ports 1 - 8 ‘DATA & POWER’ OUT to end devices (Ports 1 – 16 for POE16ATN) Each port connects to a valid 802.3at load
NOTE: Ethernet cables from
end device through a CAT5 or better cable. This allows a data port from the network switch to connect through the Midspan to the end device and carry both data and power on the same network cable. It is important to remember the following:
a. Each port used on the network switch must be connected through a dedicated port of the Midspan. A single data
connection between the switch and Midspan is not sufficient for multiple device use.
b. The ports on the front of the Midspan are paired; a ‘DATA’ port is paired with a ‘DATA & POWER’ port for each
numbered port. This means that data coming into Midspan ‘DATA’ port 1 from the switch will be transferred out on the ‘DATA & POWER’ port 1. If a device is connected to a port without the data cable in the corresponding ‘DATA’ port below the ‘DATA & POWER’ port, data will not be transferred. However, power will be transferred.
The PoE end device and network switch must have Ethernet cables running to the same port number on the Midspan.
the network switch and to the powered end device must be CAT5 or better.
Each port is paired with a ‘DATA & POWER’ OUT
Figure 3. DATA (IN) and DAT & POWER (OUT) paired connectors for each port

LED INDICATORS

Cold Start

a. AC – LED turns ‘green’ and remains on when unit is connected to a power source b. NIC – LED turns ‘solid green’ when connected » blinks ‘green’ at a slow rate until an Ethernet connection is made c. POE8ATN: 8-Ports (ports not connected) – LED turns ‘orange’ » green » orange » green » turns off – LED blinks ‘orange individually » port 1 » port 2 » port 3 » port 4 » port 5 » port 6 » port 7 » port 8 » Blinks ‘orange’ across all ports
POE16ATN: 16-Ports (ports not connected) – LED turns ‘orange’ » green » orange » green » turns off – LED blinks ‘orange individually » ports 1,9 » ports 2,10 » ports 3,11 » ports 4,12 » ports 5,13 » ports 6,14 » ports 7,15 » ports 8,16 » Blinks ‘orange’ across all 16 ports d. POE8ATN: 8-Ports (ports connected) – LED turns ‘orange’ » green » orange » green » turns off – LED turns ‘green individually » port 1 » port 2 » port 3 » port 4 » port 5 » port 6 » port 7 » port 8 » All 8-Ports are connected –LED remains green. POE16ATN: 16-Ports (ports connected) – LED turns ‘orange’ » green » orange » green » turns off – LED turns ‘green individually » ports 1,9 » ports 2,10 » ports 3,11 » ports 4,12 » ports 5,13 » ports 6,14 » ports 7,15 » ports 8,16 » All 16-Ports are connected – LED remains green
6 C3932M (8/13)

When ‘System Reset’ is Clicked on the GUI (applications file)

Indicates NIC is
N/A
N/A
Indicates NIC is
Indicates NIC is Indicates Midspan
Indicates Midspan
N/A
N/A
N/A
a. AC – LED remains ‘green’ b. NIC – LED remains blinking green if Ethernet connection is connected c. 16-Ports (ports connected) – same sequence as Cold Start d. 16-Ports (ports not connected) – same sequence as Cold Start
Table 1. LED Indicators
INDICATOR
Port LED
NIC LED
AC LED
Midsp
LED Off Green Orange Blinking Orange Blinking Green
Indicates port is disabled
disconnected from Network
is not powered
an Accessories
Indicates port is connected
is powered
CONDITIONS
Indicates port has an error
Indicates port is disconnected but enabled
communicating with Network
N/A
connected to Network

RACK MOUNTING OPTION

The 8-port and 16-port Midspans can be rack mounted on a 19” rack. Each unit ships with the optional 1U rack mount adaptor.
ure 4. Rack Mounted 19” Midspan With Installed 1U Rack Mounting Bracket Shown
Fig
7 C3932M (8/13)

Using the Pelco GUI with a USB Cable and USB Driver Installation

DOWNLOAD THE PELCO MIDSPAN POE GUI

Locate and download the file Pelco GUI Installation file for SNMP V3 Midspan from the support section of the Pelco website: www.pelco.com.
Follow the Installation Wizard to install the Pelco GUI for your model, and the USB-to-Serial Com Port driver. The USB-to­Serial Com Port driver is necessary for communicating between the Midspan via a Communication Port on the PC.
Figure 5. GUI Setup
NOTE: Refer to the Pelco website to insure you are installing the latest version of the Pelco GUI. The example shown is using
the Midspan POE GUI.

USB cable connection

To use the Pelco GUI with a USB cable, connect a USB cable to the USB connector located in the front of the Midspan and to a USB port on the management PC/laptop. NOTE: The USB cable is not included with the Midspan.
ure 6. USB cable connection
Fig
8 C3932M (8/13)

Midspan GUI in USB Mode

The USB Graphical User Interface (GUI) can be used to configure and manage the POE8ATN and POE16ATN POE Midspan systems. If you have successfully installed the Pelco GUI and USB driver – Please locate the Pelco Midspan POE GUI on your desktop or from your Start Menu. Click on the executable file to open the GUI.

GUI MAIN WINDOW

Step 1: Choose Connection Type USB.
Figure 7. GUI Main Window
Step 2: Select the proper COM port from the drop down menu, then press the ‘Search PoE’ button and click the Midspan
listed for access to its controls.
Figure 8. GUI Connection Infor m ation
9 C3932M (8/13)

USB GUI SYSTEM CONTROL AND INFORMATION

The System Information/Operation panel on the GUI supports the main system level parameters. It also displays information about the POE ID, firmware revision and system status.
Figure 9. System Setup, Control, Information, and Port Commands
The system level parameters that can be configured are:
System Reset – This is a function that allows the GUI to reset the software on the Midspan.
Firmware Download – This feature is used to download new application/firmware codes onto the unit. Refer to the
Pelco website www.pelco.com for the latest firmware for your Midspan.
During the ‘Download in Progress’, the GUI function buttons will be temporarily disabled.
Figure 10. System Update
Example of the firmware file: Pelco _v1_0.S99
NOTE: Allow the GUI a few seconds to respond to the commands selected. DO NOT click or check any commands simultaneously. If a command is selected more than once within two seconds, the GUI might not respond properly.
Save Parameters to Flash - This button will save system and port parameters to flash memory. NOTE: If you do not save parameters to Flash, all configuration changes will be lost if the unit is powered down.
Restore Factory Defaults – This button will reset the defaults in the firmware, clear any stored data in the flash memory, and the device will reset automatically. After the device has successfully reset, should the GUI not respond to commands, exit the GUI and reconnect.
The ‘System Information’ field spe cifi es the hardware and firmware revision of the PoE device. System ID/Name – click “Edit” to edit/change the description of the system. If you click “Cancel”, the previous description will
be set for the system. To make this permanent, the user must click “Save Parameters to Flash.”
10 C3932M (8/13)

USB GUI PORT DESCRIPTION

The Port Description panel shows 24-ports. On the PoE Midspans that have 8 or 16-ports, the port numbers higher than the system port count will be shaded grey and disabled. Each section specifies the individual port descriptions for the system.
Figure 11. Port Description
Changes to the port configuration in this section can be enacted when the user clicks the “Send Port Control” button. It will send the port information to the μP for 24-Ports. Please allow the GUI 10 seconds to refresh when this action is taken.
Port Description – Click “Edit” to edit/change the description of the port. Click “OK” to set description on the GUI screen. If you click “Cancel”, the previous description will be set for that particular port. Click “Send Port Control” to send the
descriptions to the system. To make this permanent, the user must click “Save Parameters to Flash.”
Enable – This check box can administratively enable or disable the selected port. If “Enable/Disable All Port” check box is selected, all ports will be enabled. Initially, the check box is not checked, but by default all ports are enabl ed. Cli ck “Send
Port Control” to send the command to the system. To make this permanent, the user must click “Save Parameters to Flash.”
If the “Detect Legacy Signature” check box is selected, all ports are enabled and the firmware will try to detect legacy devices. By default, legacy detection is disabled. When the box is checked, the message in blue states that the “Legacy Detect is
Enabled” (Figure 11). Click “Send Port Control” to send the command to the system. To make this permanent, the
user must click “Save Parameters to Flash.” A “Legacy Signature” is an older device signature that predates the 802.3af
specification and typically contains a strong capacitance signature. Enabling “Detect Legacy Signature” allows for detection of older devices not compliant wit h the 802.3af spe cif ica tion. It is recommended legacy detecti on be enable d.
The colored indicators show the status of the individual ports. A ‘Yellow’ indicator shows the port is detecting or ready to be connected. A ‘Red’ indicator shows the port as Disable/Error. A ‘Green’ indicator shows that the port is connected to a compliant load.
Figure 12. Colored Indicator Key (Port Status)
11 C3932M (8/13)

USB GUI PARAMETRIC INFORMATION

This section allows users to review, but not edit, Parametric Information for each port.
Figure 13. Parametric Information
The Port Parametric Information panel has the following set of parameters that are displayed:
• Discovery R (ohms) – This value represents the discovered resistance (R) of the port in ohms.
• Current (mA) – This value represents the current (I) of the port in milliamperes.
• Voltage (V) – This value represents the voltage (V) of the port.
• Power (mW) – This value represents the power of the port in milliwatts.
• Class Current (mA) – This value represents the class current of the port in milliamperes.
• Determined Class – This value represents the class of the discovered device. NOTE: If the ports are less than 24-ports for the system, those ports greater than the total system port count will read all units
of measure. In the figure above, Port 5 is connected to a compliant load while Ports 1-4 and 6-8 are r eady to be connect ed.
12 C3932M (8/13)

GUI Connection Methods

DIRECT CONNECTION BETWEEN PC AND MIDSPAN; NO ROUTER OR SWITCH USED, DEFAULT STATIC IP ADDRESS

In this mode both the PC and Midspan must share the same subnet. The default address of the Midspan is
192.168.1.100. The PC must be set to an IP address that is 192.168.1.xxx where x can be any 3 digit address except 100 and be between 101-254. Typically a good value to use is 192.168.1.110. In order to set the PC properly to communicate with the Midspan, access your network setting for the Ethernet wired connection.
Figure 14. Internet Protocol Settings
1. Click on Internet Protocol Version 4 and enter the settings shown.
13 C3932M (8/13)
2. Click ‘OK’ twice and open the Pelco MIDSPAN POE GUI.
Figure 15. GUI Window
3. Click on the Setting Button in the upper right corner to bring up the ‘User Security Parameters’ pop-up.
4. Set the IP range to search as shown in the figure below.
5. Set the communities as shown in the figure below. Make sure the box by the SNMP V3 is not checked so you
can edit the communities if needed.
Figure 16. User Security Parameters
14 C3932M (8/13)
6. Click on the SNMPV3 box and enter the default User: admin, AuthPassword: 12345678 and PrivPassword:
12345678 (same password for both).
Figure 17. User Security Parameters
All default settings are listed in Appendix A.
7. Click ‘OK’ when done and you are returned to the main GUI window where you need to click on “Search PoE.”
Your PoE device will be seen in the window below.
Figure 18. Connection Information
15 C3932M (8/13)
8. Click on the listed Midspan in the window and the GUI will connect to the device on IP address 192.168.1.100.
Figure 19. GUI Window Connection Status
You can now use the GUI to control and configure the Midspan as described in the sections for USB GUI control. NOTE: POE firmware cannot be updated when connected using the network connection. POE firmware can only be
updated using the USB connection.
16 C3932M (8/13)

THROUGH A SWITCH OR ROUTER (DHCP IP ADDRESS MODE)

Make sure your network settings are set for DHCP, especially if you just followed the previous section for a direct connection to the Midspan.
Figure 20. Internet Protocol Settings
1. Following the same steps as previously shown, open the Pelco GUI and set the settings as shown below.
NOTE: The IP address of the Midspan follows the (PC) computer IP address except for the last 3 digits. Since we do not know where the Midspan is located on the network, we need to search for it, thus the discovery is set for 100-254.
2. Click ‘OK’ and then click “Search PoE.” This may take some time since we are searching many IP addresses so
be patient. Another method of finding the IP address would be to use an available IP scan ner and search for a PoE System. You can then just search for that IP address the same way we did for the direct PC to Midspan connection.
Figure 21. User Security Parameters Setting s
17 C3932M (8/13)
After finding and clicking on the Midspan found in the GUI, the GUI will populate with connection information.
Figure 22. GUI Window Connection Status
You may now use the GUI to control and configure the Midspan as described in the sections for USB GUI control. NOTE: POE firmware cannot be updated when connected using the network connection. POE firmware can only be
updated using the USB connection.
18 C3932M (8/13)

Webpage Connection

The Midspan is also capable of being connected and controlled through a browser. In order to locate the Midspan on your network, you might need to redo the GUI IP address search or use an IP scanner to find out the IP address. Once you know the IP address, you can type the address into your browser and login.
In our example we know the IP address is 192.168.31.128. We type this into the browser and the login page pops up. Click on Setup Login and use admin as default user and no password (blank) to gain access to the Midspan.
NOTE: If you forget your login password, contact Pelco Sales for further instructions. For up-to-date contact information, visit our website www.pelco.com.
NOTE: The Username and Password are both Case Sensitive.
Figure 23. Webpage Controller Status
19 C3932M (8/13)

PORT STATUS

The main window of the controller is a simple GUI that allows the user to enable and disable Midspan ports. It is also a limited display of parametric information. A more complete list of parametric information is available using Pelco GUI software available on the website www.pelco.com.
Figure 24. Webpage Device Configuration
IMPORTANT NOTE: If the webpage does not automatically refresh, adjust the browser settings as follows:

For IE users:

1. Select Tools >> Internet Options
2. Click the Settings butto n in Browsing History
3. Select the ‘Every time I visit the webpage’ button
4. Click ‘OK’ to close the Settings dialog
5. Click ‘OK’ to close the Internet Options dialog
20 C3932M (8/13)

SYSTEM ADMINISTRATION

Click on System and see the fields which are editable to the user.
Figure 25. Webpage Device Configuration
User name – default = admin – may be changed Password – default =blank – may be changed IP address – default PC to Midspan 192.168.1.100. This may be changed but the user must remember the new IP
address otherwise the manual section on PC to Midspan connections will not connect. Gateway and DNS server – these can be set according to your network needs and should only be adjusted by your IT
specialist. DHCP Client – can be disabled and then the IP address 192.168.1.100 becomes the only address that the Midspan can
communicate on. SSL – default is disabled but if you need SSL communication, then please enable the function here and follow the section
of the manual describing how to implement SSL. Firmware Backup – click the Backup button and you will get a pop-up to save a BIN file of the current Firmware and
settings. Save in a location that will be easy for you to remember and the file may be renamed to user specifications.
Firmware Upgrade – This allows the user to update the firmware on the SNMP card inside the Midspan. CAUTION: Be careful as improper operation may cause permanent damage to your device. Do not remove power from
the device or close this window during updating. It will take several minutes to run and should not be interrupted. Click browse then locate your firmware file (it will have a .bin file extension). Then click update.
21 C3932M (8/13)

Firmware file example:

SNMP Firmware (version 3) is posted to the support section of www.pelco.com. Check the revision date from the login screen of the controller and check the date of the firmware posted on the Pelco website. If the dates are not the same, it is recommended that users follow the above section on Firmware Update to ensure their Midspan is operating with the most current software.
Restore Default Settings – This function is used to revert back to the default settings for the Firmware. This will undo any changes that you’ve made so far to the Firmware configuration. After using this function, users will have the option to go back or to reboot their system.
Click connection speed. Check the Midspan IP Address again as it may have changed depending on the user settings for
DHCP Client.
NOTE: If you change the Administrator name and password, users should ensure that it is written down in a safe place for
reference.
Click
to reboot the system with the new changes. This may take a few minutes depending on the
to make any changes permanent.
22 C3932M (8/13)

SNMP SETTINGS

The new SNMP v3 has added security features that were not found on previous versions of the management protocol. These include additional password protection. All default values are located and specified in Appendix A.
Figure 26. Webpage Controller Setup
NOTE: Trap Notifications are blocked from entering through the Windows Firewall. Please configure the Windows Firewall
settings to allow incoming Network Connections, by adding a specific program (i.e. the SNMP Console). If the user is using the Authentication and Privacy passwords, they must remember these to use the Pelco GUI. Open the
Pelco GUI and locate and click setting.
Figure 27. Connection Setup
A pop-up for the User Security Parameters will allow you to enter the correct IP Address of your Midspan. If the user is using the Authentication and Privacy Passwords ensure that SNMPv3 is checked and enter in the correct passwords in the spaces provided. The default passwords for both are: 12345678. Ensure that the User also matches the name entered in the Controller Setup.
23 C3932M (8/13)
ure 28. GUI User Security Setup Parameters
Fig
Default Settings User: admin
AuthPassword: 12345678 PrivPassword: 12345678 User and Passwords are bo th cas e sens itiv e.
24 C3932M (8/13)

SNMP V3 MIB

NOTE: Visit www.pelco.com to download the latest SNMP MIB for the NIC interface.
If you choose to use your own SNMP console, rename the SNMP MIB text file to the file extension that matches your SNMP Console. Follow the instructions for your SNMP Console to install the MIB file.
Check the Pelco website occasionally for the latest updates for the MIB and SNMP firmware.

SNMP MIB

SNMP Version: SNMPv3 TCP, UDP Port: 161 SNMP (Simple Network Management Protocol)1
Table 2: GUI MIB
OID Name Type Value Description
1.3.6.1.24852.2.2.1.0 poeSystemActionHubReset INTEGER ready (0)
1.3.6.1.24852.2.2.2.0
1.3.6.1.24852.2.2.3.0 poeSystemActionHubSaveConfiguration INTEGER ready (0)
1.3.6.1.24852.2.2.4.0 poeSystemAllPortPowerEnable INTEGER ready (0)
1.3.6.1.24852.2.2.6.0 poeSystemHWVersion DisplayString Read-Only System hardware version for the
1.3.6.1.24852.2.2.7.0 poeSystemNumberOfChannel INTEGER Read-Only Number of ports available in the
1.3.6.1.24852.2.2.8.0 poeSystemProductPartNumber INTEGER Read-Only Displays the product part
1.3.6.1.24852.2.2.10.0 poeSystemFirmwareVersion DisplayString Read-Only System firmware version for the
1.3.6.1.24852.2.2.11.0 poeSystemDescription DisplayString
1.3.6.1.24852.2.2.12.0 poeSystemConsumptionPower*** INTEGER Read-Only Measured power usage
poeSystemActionHubRestoreFactoryDefault
INTEGER ready (0)
(SIZE (0… 10))
reset (1)
restore (1)
save (1)
disable (1) enable (2)
Read/Write System Description, max. length
Reset the P oE controller
Restore factory defaults
Save the PoE parameters to flash
Setting this object to value enable (2) enables detection mechanism for all ports.
Setting this object to value disable (1) disables detection mechanism for all ports.
main board
system
number
PoE
of 10 characters
expressed in Watts
1.3.6.1.24852.2.2.13.0 poeSystemControlACPower*** INTEGER Read/Write Sets the value of available
1.3.6.1.24852.2.2.14.0 poeSystemControlDCPower INTEGER Read/Write Sets the value of available
1.3.6.1.24852.2.2.15.0 poeSystemControlBothPower*** INTEGER Read/Write Sets the value of the total
1.3.6.1.24852.2.3.1.1.1-24 poePortIndex INTEGER Read-Only A unique value for each port
power in Watts to be supplied by secondary (AC) power supply
power in Watts to be supplied by secondary (DC) power supply
available power in Watts to be supplied by both power sources
25 C3932M (8/13)
OID Name Type Value Description
1.3.6.1.24852.2.3.1.2.1-24 poePortPowerEnable INTEGER (1.2147483647)
1.3.6.1.24852.2.3.1.3.1-24 poePortControlMaxPower*** INTEGER Read/Write Specifies the max. power in
6.1.4.1.24852.2.3.1.4.1.0 poePortCurrentStatus*** INTEGER undercurrent (1)
Disable (1) Enable (2)
overcur rent (2) both (3) ok (4)
Setting this object to a value disable (1) disables the detection mechanism for the port.
Setting this object to a value enable (2) enables the detection mechanism for the port.
Watts to the port Describes a current port status
related to the power generation. The value undercurrent (1) indicates that the port current is below the minimal value since the attribute was last clear ed. The value overcurrent (2) indicates that the port exceeds the maximum value since the attribute was last cleared. The value both (3) indicates that both undercurrent and overcurrent occ urred since t he attribute was last cleared. The value ok (4) indicates neither an undercurrent or an overcurrent condition has been detected since the attribute was last cleared. This attribute is c leared with the poePortCurrentStatusClear action.
1.3.6.1.4.1.24852.2.3.1.5.0 poePortCurrentStatusClear*** INTEGER off (1)
1.3.6.1.4.1.24852.1.2.1.6.1-24 poePortDescription DisplayString (SIZE (0… 10))
1.3.6.1.4.1.24852.2.3.1.7.1-24 poePortDetectionStatus*** INTEGER Read-Only Off (0)
1.3.6.1.4.1.24852.2.3.1.8.1-24 poePortPowerClassifications*** INTEGER Read-Only Class0 (1)
1.3.6.1.4.1.24852.2.3.1.9.1-24 poePortPowerDetectionControl*** INTEGER Read/Write Command controls the port
1.3.6.1.4.1.24852.2.3.1.10.1-24 poePortPowerPriority*** INTEGER Critical (1)
1.3.6.1.4.1.24852.2.3.1.11.1-24 poePortPower INTEGER Read-Only Port power reading in mWatts
clear (2)
Read/Write Describes the port description
High (2) Low (3)
Setting the value of this object to clear (2) clears the value of the poePortCurrentStatus and enables the agent to update the poePortCurrentStatus. During Read operation, this value will be off (1).
for the port
DescR (1) DiscC (3) RampUp (4) RampDown (5) Samplel (8) SampleV (9)
Class1 (2) Class2 (3) Class3 (4) Class4 (5)
power detection control Sets port priority
1.3.6.1.4.1.24852.2.3.1.12.1-24 poePortVoltage INTEGER Read-Only Port voltage reading in Volts
1.3.6.1.4.1.24852.2.3.1.13.1-24 poePortCurrent INTEGER Read-Only Port current reading in mAmps
1.3.6.1.4.1.24852.2.3.1.14.1-24 poePortResistance INTEGER Read-Only Port r esistance reading i n Ohms
26 C3932M (8/13)
OID Name Type Value Description
1.3.6.1.4.1.24852.2.4.1.1.1-24 poeTrapsControlGroupIndex INTEGER (0.65535)
1.3.6.1.4.1.24852.2.4.1.2.1-24 poeTrapsControlEnable INTEGER Traps Disabled (1)
1.3.6.1.4.1.24852.2.5.1 poePortHWFailTrap NOTIFICATION Hardware failure trap
1.3.6.1.4.1.24852.2.5.2 poePortPeakOverCurrentTrap NOTIFICATION Peak over current trap
1.3.6.1.4.1.24852.2.5.3 poePortOverloadTrap NOTIFICATION Overload trap
1.3.6.1.4.1.24852.2.5.4 poePortDiscoveryFailTrap NOTIFICATION Discovery failure trap
1.3.6.1.4.1.24852.2.5.6 poePortDisconnectTrap NOTIFICATION Port disconnect trap
1.3.6.1.4.1.24852.2.5.7 poePortVoltageFailTrap NOTIFICATION Port voltage failure trap
Not accessible Uniquely describes the group
Traps Enabled (2)
the Trap control is located Enables and disables the trap
from the Agent
*** This function is currently disabled. Reserved for future use. NOTE:
The NIC Interface Midspan performs under the TCP/IP, UDP port of 161. UDP port 161 for SNMP is an official IANA registered EDP port number. While attempting to connect to the NIC Interface Midspan via a different network domain2, the user must acknowledge that the local network supports the UDP port 161.

SSL/TLS (optional)

As an added layer of security above standard SNMPv3 encryption, Pelco has added an option for Secure Sockets Layer (SSL)/Transport Layer Security (TLS) to ensure a secure connection over a network and provide additional security to the transfer of data. It is strongly recommended that first time users familiarize themselves with all steps within this section before attempting.
1. Getting Started
To get started, please visit the support section of our website, www.pelco.com, and download the following files packaged as Certificate Software under SNMPv3 Firmware:
setup.exe (this will install the Cygwin program allowing you to create the necessary security certificates)
x509 folder
Step 1: Copy the folder x509 to c:\x509. Step 2: Ensure that the SNMPv3 firmware is up-to-date. Check the firmware revision on your Midspan to the version
online at www.pelco.com. Step 3: Launch setup.exe to run the Cygwin installation wizard and follow the instructions below. Users do not need to
use this program if another is preferred, however all instructions in this manual are for this particular software.
Figure 29: Cygwin Setup File Icon
27 C3932M (8/13)
2. Installing Cygwin
Figure 30. Cygwin Welcome Screen
Click the Install from Internet radio button, t hen click Next.
Figure 31. Cygwin Choose Installation Screen
Select a Directory where you would like the cygwin software installed. The default is C:\cygwin. All Users is selected by default. Select Just Me to only install the program for a specific user if multiple accounts share the computer, then click Next.
28 C3932M (8/13)
Figure 32. Cygwin Installation Directory Screen
Select the Direct Connection radio button, then click Next.
Figure 33. Cygwin Connection Type Screen
Select a webpage to download the software from, http://cygwin.mirrors.hoobly.com is sufficient. Now click Next to download.
Figure 34. Cygwin Choose Download Site
29 C3932M (8/13)
Click the View button located in the upper right hand corner once to get to the screens below. Scroll down till you find libopenssl100: The OpenSSL Runtime Environment and click skip till 1.0.1e-2 appears. Then continue scrolling down to find openssl: The OpenSSL runtime environment and click “Skip” till you get 1.0.1e-2 appears. Click next to begin the installation. Alternatively you can use the search box entering ssl to bring up these two files.
Figure 35. Cygwin Installation Log Locating libopenssl100
Figure 36. Cygwin Installation Locati n g o p enssl
The download process may take a few minutes. Once completed the wizard will give you options for where you would like to place a shortcut icon to the Cygwin program terminal. Cli c k finish to end the ins tall ati on pr ocess .
30 C3932M (8/13)

Root Certificates

GENERATING ROOT CERTIFICATES

Double click the Cygwin icon to run the command terminal.
Figure 37. Cygwin Terminal Icon
The following steps to generate the new certificate need to be followed exactly: Step 1: enter the following - cd c:/x509 and press the enter key Step 2: enter the following - bash x509.sh and press the enter key Step 3: The root certificates must be generated first so enter a capital R to rebuild the root certificates to your individual
specifications. The terminal is case sensitive so a lower case ‘r’ will register as an invalid command.
Figure 38. Building Root Certificates
Follow the on screen directions. Not all information needs to be entered. To leave as default leave blank pressing enter to move to the next item. Remember or write down any unique information entered as it will need to be re-entered exactly when generating the security certificates.
31 C3932M (8/13)

INSTALLING ROOT CERTIFICATES

Locate the root certificate by opening the c:/x509 folder
Figure 39. Locating Root Certificates Folder
Then open the folder root and double click rootca.crt to start the installation wizard.
Figure 40. Locating the Root Certificate
The wizard will pop up and indicate that the root certificate is not trusted. Click the install certificate button towards the bottom of the window.
Figure 41. Installing Root Certificates
32 C3932M (8/13)
Click through the wizard and select the radio button ‘Place all certificates in the following store’. Click browse and select the ‘Trusted Root Certificates Folder’. Then click ‘OK’.
Figure 42. Placing Root Certificates
When attempting to finish the installation a pop up window with a security warning may appear asking you if you are certain you want to install this certificate. Click yes and finish the installation.
Figure 43. Installing Root Certificates Security Prompt
The root certificates are now installed for users of Internet Explorer, Google Chrome and Safari. For Mozilla Firefox users, the root certificates will also need to be installed into the browser. Please continue reading this part if using Firefox otherwise skip to part 4 to generate security certificates.
33 C3932M (8/13)

Adding Root Certificates to Mozilla Firefox

Launch the Mozilla Firefox browser and navigate the Firefox tab to select Options. Under the Advanced tab select view certificates.
Figure 44. Importing Root Certificates in Firefox
Click the Import button along the bottom and locate the rootca.crt file under c:/x509/root. The wizard will ask the trust levels for this certificate. Ensure that the ‘Trust this CA to identify websites’ checkbox is checked and then click ‘OK’. The certificat e is now installed and you can continue to generate and install the Security Certificates.
Figure 45. Placing Root Certificates in Firefox
34 C3932M (8/13)

Generating Security Certificates

Launch the Cygwin command terminal again and follow the same first two steps as used to generate the root certificates. The following steps to generate the new certificate need to be followed exactly: Step 1: enter the following - cd c:/x509 and press the enter key Step 2: enter the following - bash x509.sh and press the enter key Step 3: To generate the security certificates, enter a capital N. Remember that the terminal is case sensitive so a lower
case ‘n’ will register as an invalid command.
Figure 46. Generating Security Certifi cates
The information in the Security Certificate must match the Root Certificate be it the default settings (left blank) or the user selected entries. The Domain/IP address must also match that of the Midspan. If the IP address is changed, a new certificate must be generated.

INSTALLING SECURITY CERTIFICATES

Locate the Security Certificate in the folder c:/x509/certs. Double Click the file boa-ssl.crt to start the installation process. Click install certificate in the pop-up window to start the installation process. When prompted where to place the certificate, select the radio button Place all certificates in the following store then hit the browse button. Select ‘Trusted Publishers’ before clicking ‘OK’ and completing the installation.
35 C3932M (8/13)
Figure 47. Installing Security Certificates

LOAD CERTIFICATES INTO THE MIDSP AN SNM P CARD

Now that the certificates have been generated, they need to be uploaded into the Midsp an. Open the folder containing the certificates. They will be located at c:\x509\certs.
Ensure connection with your Midspan via SNMP. Then in a new windows browser window enter the following: ftp://xxx.xxx.xxx.xxx, where the x’s represent the URL of your Midspan. You will need to log in as you would through normal http:// access.
Figure 48. Midspan FTP Directory in Windows
36 C3932M (8/13)
Open the folders Flash then config then ssl. Now copy the files boa-ssl.crt and boa-ssl.pem from the folder x509/certs and replace the files already in the Midspan directory.
Figure 49. Loading Certificate to Midspan

Enable SSL

Go to the webpage http://XXX.XXX.XX.XXX where XXX.XXX.XX.XXX is the IP address of your Midspan. Access the System page to alter the Device Configuration. Under the LAN heading there will be an option for SSL. The default option is set to
Disable. Click the down arrow to change the settings to Enable. Click save and reboot the Midspan to restart with SSL.
Figure 50. Enabling SSL
37 C3932M (8/13)

ACCESS VIA SSL

The webpage will now display an error message saying that there is no connection to this page. The Midspan may no longer be accessed via http://. You must now use the webpage https://XXX.XXX.XX.XXX where XXX.XXX.XX.XXX is the IP address of your Midspan. You may now login with the secure connection.
Figure 51. Access via SSL
NOTE: Some users may experience response delays when the SSL option is set to enable.
38 C3932M (8/13)

Troubleshooting

Verify Midspan is properly connected to an AC power source.
1. Port maybe disabled and need to be enabled using the GUI. Ensure
2. Assure Ports are connected to a Network.
1. Power is applied to the Midspan
If problems occur with the Midspan, verify the following: NOTE: The troubleshooting solutions provided can only solve minor problems. If your problem is not listed, see contact
information next page.
Table 3: Troubleshooting
Problem Possible Solutions
1. Assure that AC power cord is connected.
Midspan does not power up
AC LED not lit
Port LED do not light ‘green’
The GUI window does not update port status
Others. Please verify the following:
2. Assure that AC power cord is in good condition.
3. If solution 1 & 2 are true, then disconnect the AC power cord and reconnect. Observe Port LEDs to verify proper power up.
Ports are enabled, then ‘Save Flash Parameters’
Click “System Reset” and wait for the System to Reboot.
2. The network Ethernet cable is connected to the Data port
3. The powered device Ethernet cable is connected to the Data & Power port
4. Proper type of Ethernet cable is used, do not use crossover-type Ethernet cable
5. Cable pairs are connected to corresponding ports.
39 C3932M (8/13)

SSL Troubleshooting

1. Ensure that the IP address is correct. If the power is reset on the Midspan, the
1. Regenerate the security certificate. An error may have occurred.
1. Check to ensure that the Midspan is properly connected to the network.
This section is for the diagnosis of minor problems that may occur during the set-up of SSL capability on the Midspan. If your issue is not listed here, see contact information below.
Table 4. SSL Troubleshooting
Problem Possible Solutions
Unable to access the web based GUI
I’ve completed all the steps and the certificate isn’t workin g
IP address may be re-assigned by the network and a new IP address is necessary. You will need to create a new certificate based on this new IP address. A static IP address is best for this option as the IP address will remain constant.
2. Ensure that you are accessing through https:// and not the normal http://. The web-based GUI will not open unless accessed through https://.
2. Check that the IP address has not changed.
3. Regenerate a Root certificate. See the section ‘Generating a Root Certificate’ for instructions .
4. Ensure that the SSL option is enabled and that the URL starts with https://.
5. Ensure that the Root certificate is properly loaded into the internet browser. For Mozilla Firefox, this may require removing the certificate and reloading.
Others
2. Check all the Ethernet cables for integrity.
3. Ensure all firmware is up to date. This program uses third party software; therefore, check to make sure the latest firmware is being used.
If the instructions provided fail to solve your problem, contact Pelco Product Support at 1-800-289-9100 (U SA and Canada) or +1-559-292-1981 (international) for assistance. Be sure to have the serial number available when calling.
Do not try to repair the unit yourself. Leave maintenance and repairs to qualified technical personnel only.
40 C3932M (8/13)

Dimension Drawing

NOTE: VALUES IN PARENTHESES ARE INCHES; ALL OTHERS ARE CENTIMETERS.
41 C3932M (8/13)

Appendix A: SNMP V3 Settings

DEFAULT GUI SNMP V3 SETTINGS

Table 5. SNMP Settings
Default Setting Description
SNMP Versions V1/V2/V3
Get Community String Public Set Community String Private User Admin
Authentication Mode HMAC-MD5 Authentication Password 12345678
Privacy Mode CBC-DES Privacy Password 12345678
Trap Hosts
0.0.0.0
0.0.0.0
0.0.0.0
0.0.0.0
This function describes the current version of SNMP management that the user is running. This version is V3.
Option to set to public or private Option to set to public or private Logon name that may be defined by the user. If changed, the information
should be recorded in a safe place for future reference. Option to set encryption to HMAC-MD5 or HMAC-SHA1 User defined password may be left to the default setting of 1-18 characters
in length. If changed, the information should be recorded in a safe place for future reference. This option may be used in place of the Community Strings for SNMPv3 Access via Midspan POE GUI (see below).
Option to set privacy encryption to CDC-DES or CFB-AES-128 User defined password may be left to the default setting of 1-18 characters
in length. If changed, the information should be recorded in a safe place for future reference. This option may be used in place of the Community Strings for SNMPv3 Access via Midspan POE GUI (see below).
Trap hosts are the destination IP addresses that you want the Traps to be sent to.
42 C3932M (8/13)

DEFAULT WEBPAGE SNMP V3 SETTINGS

Table 6. Controller Setup
Default Settings Description
Administrator Admin
The login administrator is a user defined name that is used at login. Record your new login name in a safe location for future use.
Password (blank)
IP Address 192.168.1.111
Subnet mask 255.255/255.0
Gateway address 192.168.0.1
DNS server 168.95.192.1
DHCP Client Enable
The login password can be empty or 1-14 characters long. Record your new password in a safe location for future use. The password is also used while performing SNMP firmware updates.
Four groups of numbers assigned by the network server (DHCP mode enabled) or user defined (DHCP mode disabled).
Four groups of numbers assigned by the network server (DHCP mode enabled) or user defined (DHCP mode disabled).
Four groups of numbers assigned by the network server (DHCP mode enabled) or User defined (DHCP mode disabled).
Four groups of numbers assigned to the network server.
The default setting of the DHCP client is ‘Enable’ which sets the DHCP client to Dynamic mode. Dynamic mode allows the network server to automatically assign the IP address, subnet mask, and Gateway address.
If the DHCP client is set to ‘Disable’, the DHCP is in the Static mode. The Static mode allows the user to manually assign the IP address, subnet mask, and Gateway address.
NOTE: If the user manually assigns the IP address, the DHCP client must be set to Disable.
43 C3932M (8/13)
Loading...
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use