Teltonika RUT955 User manual

RUT955 User‘s Manual
1
USER MANUAL
RUT955 LTE Router
Teltonika Solutions
RUT955 User‘s Manual
2
Before using the device we strongly recommend reading this user manual first.
Do not rip open the device. Do not touch the device if the device block is broken.
All wireless devices for data transferring may be susceptible to interference, which could affect performance.
The device is not water-resistant. Keep it dry. The device is powered by low voltage +9V DC power adaptor.
Legal notice
Copyright © 2015 TELTONIKA Ltd. All rights reserved. Reproduction, transfer, distribution or storage of part or
all of the contents in this document in any form without the prior written permission of TELTONIKA Ltd is prohibited. The manufacturer reserves the right to modify the product and manual for the purpose of technical improvement without prior notice.
Other product and company names mentioned herein may be trademarks or trade names of their respective
owners.
Attention
Teltonika Solutions
RUT955 User‘s Manual
3
Table of Contents
Legal notice .............................................................................................................................................................. 2
Attention.................................................................................................................................................................. 2
SAFETY INFORMATION ............................................................................................................................................ 9
Device connection ............................................................................................................................................. 10
1 Introduction ................................................................................................................................................. 11
2 Specifications ............................................................................................................................................... 11
2.1 Ethernet ................................................................................................................................................... 11
2.2 Wi-Fi ......................................................................................................................................................... 11
2.3 Hardware ................................................................................................................................................. 11
2.4 Electrical, Mechanical & Environmental .................................................................................................. 12
2.5 Applications ............................................................................................................................................. 12
3 Setting up your router ................................................................................................................................. 13
3.1 Installation ............................................................................................................................................... 13
3.1.1 Front Panel and Back Panel ............................................................................................................. 13
3.1.2 Connection status LED indication .................................................................................................... 14
3.1.3 Hardware installation ...................................................................................................................... 14
3.2 Logging in ................................................................................................................................................. 15
4 Operation Modes ......................................................................................................................................... 18
5 Powering Options ........................................................................................................................................ 19
5.1 Powering the device from higher voltage................................................................................................ 19
6 Status ........................................................................................................................................................... 20
6.1 Overview .................................................................................................................................................. 20
6.2 System Information ................................................................................................................................. 21
6.3 Network Information ............................................................................................................................... 22
6.4 Device information .................................................................................................................................. 34
6.5 Services .................................................................................................................................................... 35
6.6 Routes ...................................................................................................................................................... 36
ARP ................................................................................................................................................... 36 6.6.1
Active IP Routes ............................................................................................................................... 36 6.6.2
Active IPv6-Routes ........................................................................................................................... 37 6.6.3
6.7 Graphs ...................................................................................................................................................... 38
Teltonika Solutions
RUT955 User‘s Manual
4
6.7.1 Mobile Signal Strength ..................................................................................................................... 38
6.7.2 Realtime Load .................................................................................................................................. 39
6.7.3 Realtime Traffic ................................................................................................................................ 40
6.7.4 Realtime Wireless ............................................................................................................................ 41
6.7.5 Realtime Connections ...................................................................................................................... 42
6.8 Mobile Traffic ........................................................................................................................................... 43
6.9 Events Log ................................................................................................................................................ 44
6.9.1 All Events .......................................................................................................................................... 44
6.9.2 System Events .................................................................................................................................. 45
6.9.3 Network Events ................................................................................................................................ 46
6.9.4 Events Reporting .............................................................................................................................. 47
6.9.5 Reporting Configuration .................................................................................................................. 52
7 Network ....................................................................................................................................................... 57
7.1 Mobile ...................................................................................................................................................... 57
7.1.1 General ............................................................................................................................................. 57
7.1.2 SIM Management ............................................................................................................................ 60
7.1.3 Network Operators .......................................................................................................................... 61
7.1.4 Mobile Data Limit............................................................................................................................. 63
7.1.5 SIM Idle Protection .......................................................................................................................... 64
7.2 WAN ......................................................................................................................................................... 66
7.2.1 Operation Mode .............................................................................................................................. 66
7.2.2 Common Configuration.................................................................................................................... 66
7.2.3 How do I set up a backup link? ........................................................................................................ 74
7.3 LAN ........................................................................................................................................................... 75
7.3.1 Configuration ................................................................................................................................... 75
7.3.2 DHCP Server ..................................................................................................................................... 76
7.3.3 Static Leases ..................................................................................................................................... 77
7.3.4 IP Aliases .......................................................................................................................................... 78
7.4 VLAN......................................................................................................................................................... 79
7.4.1 VLAN Networks ................................................................................................................................ 79
7.4.2 LAN Networks .................................................................................................................................. 80
7.5 Wireless ................................................................................................................................................... 81
7.5.1 Wireless Access Point ...................................................................................................................... 81
7.5.2 Wireless Station ............................................................................................................................... 85
Teltonika Solutions
RUT955 User‘s Manual
5
7.6 Firewall ..................................................................................................................................................... 86
7.6.1 General Settings ............................................................................................................................... 86
7.6.2 DMZ .................................................................................................................................................. 87
7.6.3 Zone Forwarding .............................................................................................................................. 87
7.6.4 Port Forwarding ............................................................................................................................... 88
7.6.5 Traffic Rules...................................................................................................................................... 91
7.6.6 Custom Rules ................................................................................................................................... 97
7.6.7 DDOS Prevention ............................................................................................................................. 98
7.6.8 Port Scan Prevention ..................................................................................................................... 101
7.7 Routing ................................................................................................................................................... 102
7.7.1 Static Routes .................................................................................................................................. 102
7.7.2 Dynamic Routes ............................................................................................................................. 103
............................................................................................................................................................. 105 7.7.1
............................................................................................................................................................. 105 7.7.2
7.8 Load Balancing ....................................................................................................................................... 112
8 Remote monitoring and administration .................................................................................................... 113
9 Services ...................................................................................................................................................... 115
9.1 VRRP ....................................................................................................................................................... 115
9.1.1 VRRP LAN Configuration Settings .................................................................................................. 115
9.1.2 Check Internet connection ............................................................................................................. 115
9.2 TR-069 .................................................................................................................................................... 116
9.2.1 TR-069 Parameters Configuration ................................................................................................. 116
9.3 Web filter ............................................................................................................................................... 117
9.3.1 Site Blocking ................................................................................................................................... 117
9.3.2 Proxy Based Content Blocker ......................................................................................................... 117
9.4 MQTT ..................................................................................................................................................... 118
9.4.1 MQTT Broker .................................................................................................................................. 118
9.4.2 MQTT Publisher ............................................................................................................................. 121
9.5 NTP ......................................................................................................................................................... 123
9.6 RS232/RS485 .......................................................................................................................................... 124
9.6.1 RS232 ............................................................................................................................................. 124
9.6.2 RS485 ............................................................................................................................................. 126
9.6.3 Modes of different serial types in RS232 and RS485 ..................................................................... 130
9.7 VPN ........................................................................................................................................................ 133
Teltonika Solutions
RUT955 User‘s Manual
6
9.7.1 OpenVPN ........................................................................................................................................ 133
............................................................................................................................................................. 136 9.7.1
9.7.2 IPSec ............................................................................................................................................... 139
9.7.3 GRE Tunnel ..................................................................................................................................... 142
9.7.4 PPTP ............................................................................................................................................... 144
9.7.5 L2TP ................................................................................................................................................ 146
9.8 Dynamic DNS .......................................................................................................................................... 148
9.9 SMS Utilities ........................................................................................................................................... 149
9.9.1 SMS Utilities ................................................................................................................................... 149
............................................................................................................................................................. 150 9.9.1
9.9.2 Call Utilities .................................................................................................................................... 159
9.9.3 User Groups ................................................................................................................................... 160
9.9.4 SMS Management .......................................................................................................................... 161
9.9.5 Remote Configuration .................................................................................................................... 163
9.9.6 Statistics ......................................................................................................................................... 166
9.10 SNMP ................................................................................................................................................. 167
9.10.1 SNMP Settings ............................................................................................................................... 167
9.10.2 TRAP Settings ................................................................................................................................ 168
9.11 SMS Gateway ..................................................................................................................................... 169
9.11.1 Post/Get Configuration ................................................................................................................. 169
9.11.2 Email to SMS ................................................................................................................................. 171
9.11.3 Scheduled Messages ..................................................................................................................... 172
9.11.4 Auto Reply ..................................................................................................................................... 173
9.11.5 SMS Forwarding ............................................................................................................................ 174
9.11.6 SMPP ............................................................................................................................................. 177
9.12 GPS ..................................................................................................................................................... 178
9.12.1 GPS ................................................................................................................................................ 178
9.12.2 GPS Settings .................................................................................................................................. 178
........................................................................................................................................................... 179 9.12.1
........................................................................................................................................................... 179 9.12.2
9.12.3 GPS Mode ...................................................................................................................................... 180
9.12.4 GPS I/O .......................................................................................................................................... 181
9.12.5 GPS Geofencing ............................................................................................................................. 182
9.13 Hotspot .............................................................................................................................................. 183
Teltonika Solutions
RUT955 User‘s Manual
7
9.13.1 General settings ............................................................................................................................ 183
9.13.2 Internet Access Restriction Settings ............................................................................................. 185
9.13.3 Logging .......................................................................................................................................... 185
9.13.4 Landing Page ................................................................................................................................. 186
9.13.5 Radius server configuration .......................................................................................................... 188
9.13.6 Statistics ........................................................................................................................................ 189
9.14 CLI....................................................................................................................................................... 189
9.15 Auto Reboot ....................................................................................................................................... 190
9.15.1 Ping Reboot ................................................................................................................................... 190
9.15.2 Periodic Reboot ............................................................................................................................. 191
9.16 Network Shares .................................................................................................................................. 191
9.16.1 Mounted File Systems ................................................................................................................... 191
9.16.2 Samba ............................................................................................................................................ 192
9.16.3 Samba User ................................................................................................................................... 192
9.17 Modbus TCP interface ........................................................................................................................ 194
9.18 UPNP .................................................................................................................................................. 195
9.18.1 General Settings ............................................................................................................................ 195
9.18.2 Advanced Settings ......................................................................................................................... 195
9.18.3 UPnP ACLs ..................................................................................................................................... 196
9.18.4 Active UPnP Redirects ................................................................................................................... 196
9.19 QoS ..................................................................................................................................................... 196
9.20 Input/Output ...................................................................................................................................... 197
9.20.1 Status............................................................................................................................................. 197
9.20.2 Input .............................................................................................................................................. 198
9.20.3 Output ........................................................................................................................................... 201
9.20.4 Input/Output hardware information ............................................................................................ 204
10 System ........................................................................................................................................................ 210
10.1 Configuration Wizard ......................................................................................................................... 210
10.2 Profiles ............................................................................................................................................... 212
10.3 Administration ................................................................................................................................... 213
10.3.1 General .......................................................................................................................................... 213
10.3.2 Troubleshoot ................................................................................................................................. 214
10.3.3 Backup ........................................................................................................................................... 215
10.3.4 Diagnostics .................................................................................................................................... 217
Teltonika Solutions
RUT955 User‘s Manual
8
10.3.5 MAC Clone ..................................................................................................................................... 218
10.3.6 Overview ....................................................................................................................................... 218
10.3.7 Monitoring .................................................................................................................................... 219
10.4 User scripts ........................................................................................................................................ 219
10.5 Restore point ..................................................................................................................................... 220
10.5.1 Restore point create ..................................................................................................................... 220
10.5.2 Restore point load ......................................................................................................................... 220
10.6 Firmware ............................................................................................................................................ 221
10.6.1 Firmware ....................................................................................................................................... 221
10.6.2 FOTA .............................................................................................................................................. 222
10.7 Reboot ................................................................................................................................................ 222
11 Device Recovery ......................................................................................................................................... 222
11.1 Reset button ...................................................................................................................................... 223
11.2 Bootloader’s WebUI ........................................................................................................................... 223
12 Glossary:..................................................................................................................................................... 223
13 Changelog .................................................................................................................................................. 226
Teltonika Solutions
RUT955 User‘s Manual
9
The device is intended to draw power from a Limited Power Source (LPS) whose power consumption should not exceed 15VA and the current rating of the overcurrent protective device should not exceed 2A.
The highest transient overvoltage in the output (secondary circuit) of the used PSU shall not exceed 36V peak.
The device can be used with a Personal Computer (first safety class) or a Notebook (second safety class). Associated equipment: a power supply unit (PSU) (LPS) and a personal computer (PC) that will comply with the requirements of standard EN 60950-1 amendment.
Do not mount or service the device during a thunderstorm.
To avoid mechanical damage to the device it is recommended to transport it packed in a damage-proof pack.
Protection of the primary circuits of the associated PC and PSU (LPS) against short circuits and earth faults of the associated PC will be provided as part of the building installation.
SAFETY INFORMATION
In this document you will be introduced on how to use a router safely. We suggest you to adhere to the following
recommendations in order to avoid personal injuries and or property damage.
You have to be familiar with the safety requirements before using the device!
To avoid burning and voltage caused traumas, of the personnel working with the device, please follow these safety
requirements.
To avoid mechanical damage to the device it is recommended to transport it packed in a damage-proof pack. While using the device it should be placed in such a manner so that its indicating LEDs would be visible as they inform in which working mode the device is and if it has any working problems.
Protection against overcurrent, short circuiting and earth faults should be provided as a part of the building installation.
Signal level of the device depends on the environment in which it is working in. In case the device starts working insufficiently, please refer to qualified personnel in order to repair this product. We recommend forwarding it to a repair center or the manufacturer. There are no exchangeable parts inside the device.
Teltonika Solutions
RUT955 User‘s Manual
10
Device connection
Teltonika Solutions
RUT955 User‘s Manual
11
1 Introduction
Thank you for purchasing a RUT955 LTE router!
RUT955 is part of the RUT9xx series of compact mobile routers with high speed wireless and Ethernet connections.
This router is ideal for people who‘d like to share their internet on the go, as it is not restricted by a cumbersome cable connection. Unrestricted, but not forgotten: the router still supports internet distribution via a broadband cable, simply plug it in to the wan port, set the router to a correct mode and you are ready to browse.
2 Specifications
2.1 Ethernet
IEEE 802.3, IEEE 802.3u standards 3 x LAN 10/100Mbps Ethernet ports 1 x WAN 10/100Mbps Ethernet port Supports Auto MDI/MDIX
2.2 Wi-Fi
IEEE 802.11b/g/n WiFi standards 2x2 MIMO AP and STA modes 64/128-bit WEP, WPA, WPA2, WPA&WPA2 encryption methods 2.401 – 2.495GHz Wi-Fi frequency range 20dBm max WiFi TX power SSID stealth mode and access control based on MAC address
2.3 Hardware
High performance 560 MHz CPU with 128 Mbytes of DDR2 memory 2 pin industrial DC power socket Attachable DIN rail adapter 4 pin industrial socket for 2/4 wire RS485 DB9 socket for full-featured RS232 USB A socket for external devices 4 pin industrial socket for 2/4 wire RS485 Reset/restore to default button 2 x SMA for LTE , 2 x RP-SMA for WiFi antenna connectors 4 x Ethernet LEDs, 1 x Power LED 1 x bi-color connection status LED, 5 x connection strength LEDs 10 pin industrial socket for inputs/outputs:
- 0 - 3 V digital input
- 0 - 30 V digital galvanically isolated input
- 0 - 24 V analog input 30 V, 250 mA digital open collector output
- 40 V, 4 A SPST relay output
Teltonika Solutions
RUT955 User‘s Manual
12
2.4 Electrical, Mechanical & Environmental
Dimensions (H x W x D) 80mm x 106mm x 46mm Weight 250g Power supply 100 – 240 VAC -> 9 VDC wall adapter Input voltage range 9 – 30VDC Power consumption < 7W Operating temperature -40° to 75° C Storage temperature -45° to 80° C Operating humidity 10% to 90% Non-condensing Storage humidity 5% to 95% Non-condensing
2.5 Applications
Teltonika Solutions
RUT955 User‘s Manual
13
1,2,3
LAN Ethernet ports
1 LTE auxiliary antenna connector*
4
WAN Ethernet port
2 GPS antenna connector
5,6,7
LAN LEDs
3 LTE main antenna connector*
8
WAN LED
4 USB connector
9
RS485 connector
5,7
WiFi antenna connectors
10
Power socket
6 Reset button
11
RS232 connector
*LTE main/aux antenna connector positions depend on the router’s modem: Quectel: 1 – MAIN; 3 - AUX Huawei: 1 – AUX; 3 - MAIN Telit: 1 – AUX; 3 – MAIN
12
Inputs and outputs connector
13
Power LED
14
Connection LED
15
Signal strength LED
3 Setting up your router
3.1 Installation
After you unpack the box, follow the steps documented below in order to properly connect the device. For better Wi-Fi performance, put the device in a clearly visible spot, as obstacles such as walls and doors hinder the signal.
1. First assemble your router by attaching the necessary antennas and inserting the SIM card(s).
2. To power up your router, please use the power adapter included in the box (IMPORTANT: using a
different power adapter can damage and void the warranty for this product).
3. If you have a wired broadband connection you will also have to connect it to the WAN port of the router.
3.1.1 Front Panel and Back Panel
To find out your router’s modem brand, check the bottom of your router. You should find a sticker containing information about the router (Serial, IMEI, LAN MAC, etc.). The first line is the router’s product code. The seventh symbol of the code indicates the router’s modem:
Quectel: A, H, J, K, L, M, P Huawei: 1, 3, 5, 7, 9, B, F Telit: 0, 2, G
Below is an example of a sticker with a Huawei modem (the modem symbol is highlighted in yellow)
Teltonika Solutions
RUT955 User‘s Manual
14
SIM 1 (primary)
SIM 2 (secondary)
3.1.2 Connection status LED indication
Constant blinking ( 2Hz) – router is turning on.
LED turned off – it has no 4G data connection
LED turned on – it has 4G data connection.
Explanation of connection status LED indication:
1. Green and red blinking alternatively every 500 ms: no SIM or bad PIN;
2. Green, red and yellow blinking alternatively every 500 ms: connecting to GSM;
3. Red blinking every 1 sec: connected 2G, but no data session established;
4. Yellow blinking every 1 sec: connected 3G, no data session established;
5. Green blinking every 1 sec: connected 4G, no data session established;
6. Red lit and blinking rapidly while data is being transferred: connected 2G with data session;
7. Yellow lit and blinking rapidly while data is being transferred: connected 3G with data session;
8. Green lit and blinking rapidly while data is being transferred: connected 4G with data session;
3.1.3 Hardware installation
1. Remove the back panel and insert a SIM card(s) which was given by your ISP (Internet Service Provider). Correct
SIM card orientation is shown in the picture.
2. Attach LTE main and Wi-Fi antennas.
3. Connect the power adapter to the socket on the front panel of the device. Then plug the other end of the power
adapter into a wall outlet or power strip.
4. Connect to the device wirelessly (SSID: Teltonika_Router) or use an Ethernet cable and plug it into any LAN
Ethernet port.
Teltonika Solutions
RUT955 User‘s Manual
15
1. Press the start button
2. Type in “network connections”, wait for the
results to pop up
3.2 Logging in
After you’re complete with the setting up as described in the section above, you are ready to start logging into your
router and start configuring it. This example shows how to connect on Windows 7. On windows Vista: click Start -> Control Panel -> Network and Sharing Centre -> Manage network Connections -> (go to step 4). On Windows XP: Click Start -> Settings -> Network Connections -> (see step 4). You wont’s see “Internet protocol version 4(TCP/IPv4)”, instead
you’ll have to select “TCP/IP Settings” and click options -> (go to step 6). On Windows 10 type “Network and Sharing Center” into the search bar and go there. In the navigation bar on the left side of the window click “Change adapter
settings” -> (go to step 4).
We first must set up our network card so that it could properly communicate with the router.
Teltonika Solutions
RUT955 User‘s Manual
16
3. Click “View network connections”
4. Then right click on your wireless device that you
use to connect to other access points (it is the one with the name “Wireless Network Connection” and has signal bars on its icon)
5. Select Internet Protocol Version 4 (TCP/IPv4) and then
click Properties
6. By default the router is going to have DHCP
enabled, which means that if you select “Obtain an IP address automatically” and “Obtain DNS server address automatically”, the router should lease
you an IP address and you should be ready to login.
Teltonika Solutions
RUT955 User‘s Manual
17
7. If you choose to configure manually here’s what you do:
First select an IP address. Due to the stock settings that your router has arrived with, you can only enter an IP in the form of 192.168.1.XXX , where XXX is a number in the range of 2-254 (192.168.1.2 ,
192.168.1.254 , 192.168.1.155 and so on are valid;
192.168.1.0 , 192.168.1.1 , 192.168.1.255 ,
192.168.1.699 and so on are not). Next we enter the
subnet mask: “255.255.255.0”. Then we enter the default gateway: “192.168.1.1”. Finally we enter
primary and secondary DNS server IPs. One will suffice, though it is good to have a secondary one as well as it will act as a backup if the first should fail.
The DNS can be your router’s IP (192.168.1.1), but it
can also be some external DNS server (like the one Google provides: 8.8.8.8).
Right click on the Wireless network icon and select Connect / Disconnect. A list should pop up with all
available wireless networks. Select “Teltonika” and
click connect.Then we launch our favorite browser and enter the routers IP into the address field:
Press enter. If there are no problems you should be greeted with a login screen such as this:
Enter the default password, which is “admin01” into the “Password” field and then either click Login with your
mouse or press the Enter key. You have now successfully logged into the RUT955!
From here on out you can configure almost any aspect of your router.
Teltonika Solutions
RUT955 User‘s Manual
18
WAN
Main WAN
Backup WAN
LAN
Mobile
x
Ethernet
√ √ Wi-Fi
4 Operation Modes
The RUT9xx series router supports various operation modes. It can be connected to the internet (WAN) via mobile, standard Ethernet cable or via a wireless network. When connecting to the internet, you may also backup your main WAN connection with one or two backup connections. Any interface can act like backup if configured so. At first the router uses its main WAN connection, if it is lost then the router tries to connect via backup with higher priority and if that fails too, the router tries the second backup option.
Operation modes will be explained more thoroughly in this section.
Teltonika Solutions
RUT955 User‘s Manual
19
5 Powering Options
The RUT9xx router can be powered from a power socket or over an Ethernet port. Depending on your network architecture you can use the LAN1 port to power the device.
RUT9xx can be powered from a power socket and over Ethernet simultaneously. The power socket has higher priority meaning that the device will draw power from the power socket as long as it is available.
When RUT9xx is switching from one power source to another it loses power for a fraction of a second and may reboot. The device will function correctly after the reboot.
Though the device can be powered over an Ethernet port it is not compliant with the IEEE 802.3af-2003 standard. Powering RUT9xx from a IEEE 802.3af-2003 power supply will damage the device as it is not rated for input voltages of the PoE standard.
5.1 Powering the device from higher voltage
If you decide not to use our standard 9 VDC wall adapters and want to power the device from higher voltage (15 – 30 VDC) please make sure that you choose a power supply of high quality. Some power supplies can produce voltage peaks significantly higher than the declared output voltage, especially during the process of connection and disconnection.
While the device is designed to accept input voltage of up to 30 VDC, peaks from high voltage power supplies can harm the device. If you want to use high voltage power supplies it is recommended to also use additional safety equipment to suppress voltage peaks from the power supply.
Teltonika Solutions
RUT955 User‘s Manual
20
6 Status
The status section contains various information, like IP addresses of various network interfaces, the state of the routers memory, firmware version, DHCP leases, associated wireless stations, graphs indicating load, traffic and much more.
6.1 Overview
The Overview window displays various information summaries.
Teltonika Solutions
RUT955 User‘s Manual
21
Field Name
Sample value
Explanation
1.
Router Name
RUT955
Name of the router (hostname of the routers system)
2.
Host name
Teltonika-RUT955.com
Indicates how router will be seen by other devices on the network
3.
Router Model
Teltonika RUT955 LTE
Routers model
4.
Firmware Version
RUT9XX_R_00.02.376
The version of the firmware that the router is currently operating on
5.
Kernel Version
3.10.36
The Linux kernel version that is currently running on the router
6.
Local Time
2016-05-24, 11:01:14
Shows the current system time
7.
Uptime
0d 0h 42m 1s (since 2016-05-24, 10:19:03)
Indicates how long it has been since the router booted up. Reboots will reset this timer to 0
8.
Load Average
1 min: 99%; 5 mins: 63%; 15 mins: 35%
Indicates how busy the router is
9.
Temperature
34.9° C
Device’s temperature
Field Name
Sample Value
Explanation
1.
Free
84868 kB /126556 kB (67%)
The amount of memory that is free.
2.
Cached
14740 kB /126556 kB (11%)
The memory that is dedicated to storing frequently accessed data
3.
Buffered
5476 kB / 126556 kB (4%)
The size of the area in which data is temporarily stored before moving it to another location
6.2 System Information
The System Information window displays data about the routers operating system.
System explanation:
Memory explanation:
Teltonika Solutions
RUT955 User‘s Manual
22
Field Name
Sample Value
Explanation
1.
Data connection state
Connected
Mobile data connection status
2.
IMEI
861107030078134
Modem's IMEI (International Mobile Equipment Identity) number
3.
IMSI
246020100944448
IMSI (International Mobile Subscriber Identity) is used to identify the user in a cellular network
4.
SIM card state
Ready
Indicates the SIM card's state, e.g. PIN required, Not inserted, etc.
5.
Signal strength
-67 dBm
Received Signal Strength Indicator (RSSI). Signal strength measured in dBm
6.
Cell ID
1037079
ID of the operator cell that the device is currently connected to
7.
RSRP
-95 dBm
Indicates the Reference Signal Received Power
8.
RSRQ
-8 dBm
Indicates the Reference Signal Received Quality
9.
SINR
16.3 dBm
Indicates the Signal to Interference plus Noise Ratio
6.3 Network Information
6.3.1 Mobile
The Mobile Information window displays information about the mobile connection.
Mobile information:
Teltonika Solutions
RUT955 User‘s Manual
23
10.
Operator
LT BITE GSM
Mobile operator's name
11.
Operator state
Registered (home)
GSM network's status
12.
Connection type
4G (LTE)
Indicates the GSM network's access technology
13.
Bytes received
15.7 MB (16453520 bytes)
How many bytes were received via mobile data connection
14.
Bytes sent
624.0 KB (638962 bytes)
How many bytes were sent via mobile data connection
15.
Reboot modem
-
Reboots the modem
16.
Restart connection
-
Restarts the mobile connection
17.
(Re)register
-
Reregisters the SIM card to a network operator
18.
Refresh
-
Refreshes the Mobile Information window
Teltonika Solutions
RUT955 User‘s Manual
24
Field Name
Sample Value
Explanation
1.
Interface
Mobile
Specifies the interface through which the router is connecting to the internet. This can either be Wired, Mobile or Wi-Fi
2.
Type*
Qmi2
Specifies the connection type
3.
IP address
188.69.245.225
The IP address that the router uses to connect the internet
4.
Netmask
255.255.255.252
Specifies a mask used to define how large the WAN network is
5.
Gateway
188.69.245.226
The address where traffic destined for the internet is routed to
6.
DNS 1 DNS 2
194.176.32.129
195.22.175.1
Domain name server(s)
7.
Connected
0h 0m 56s
How long the connection has been successfully maintained
8.
Ports
-
A visual indication of which ports are being used
9.
Backup WAN Status
READY
Indicates the status of backup WAN
10.
Refresh
-
Refreshes the WAN Information window
6.3.2 WAN
The WAN Information window displays information about the current WAN connection.
WAN information:
* When using a different WAN interface, this field shows the type of protocol being used. It can either be DHCP, Static or PPPoE.
Teltonika Solutions
RUT955 User‘s Manual
25
Field Name
Sample Value
Explanation
1.
Name
Lan
Lan instance name
2.
IP address
192.168.56.1
The address that the router uses on the LAN network
3.
Netmask
255.255.255.0
A mask used to define how large the LAN network is
4.
Ethernet MAC address
00:51:33:77:56:16
MAC (Media Access Control) address used for communication in an Ethernet LAN
5.
Connected for
4h 38m 24s
How long LAN has been successfully maintained
Field Name
Sample Value
Explanation
1.
Hostname
DESKTOP-69EIUGN
DHCP client's hostname
2.
IP address
192.168.56.124
The IP address of one of the device’s connected to the LAN
3.
LAN name
Lan
Lan instance name
4.
MAC address
18:66:DA:28:6A:34
The MAC address of the network interface on which the lease will be used.
5.
Lease time remaining
11h 52m 57s
Remaining lease time for addresses handed out to clients
6.
Ports
-
A visual indication of which ports are being used
7.
Refresh
-
Refreshes the LAN Information window
6.3.3 LAN
The LAN Information window displays information about LAN connections.
LAN information:
DHCP Leases
If your DHCP server is enabled, this field will show how many devices have received an IP address and what those IP addresses are.
Teltonika Solutions
RUT955 User‘s Manual
26
Field Name
Sample Value
Explanation
1.
Channel
6 (2.44 GHz)
The channel that the AP, to which the router is connected to, uses. Your wireless radio is forced to work on this channel in order to maintain the connection
2.
Country
00 (World)
Country code
3.
SSID
GG
The SSID that the AP, to which the router is connected to, uses
4.
Mode
Station (STA)
Indicates that the router is a client to some local AP
5.
Encryption
WPA2 PSK (CCMP)
The type of encryption that the AP uses
6.
Wireless MAC
C0:11:73:94:E8:E5
The MAC address of the access points radio
7.
Signal Quality
100%
The quality between the routers radio and some other device that is connecting to the router. Will show 0% if no devices are trying to connect or are currently maintaining a connection
8.
Bit rate
72.2 MBit/s
The maximum possible physical throughput that the routers radio can handle. Keep in mind that this value is cumulative - the bitrate will be shared between the router and other possible devices that connect the local AP
6.3.4 Wireless
Wireless can work in two modes: Access Point (AP) or Station (STA). AP is when the wireless radio is used to create an Access Point that other devices can connect to. STA is when the router’s radio is used to connect to another Access Point via WAN.
6.3.4.1 Station
The Wireless Information window displays information about wireless connections (Station mode.)
Client mode information
Teltonika Solutions
RUT955 User‘s Manual
27
Field Name
Sample Value
Explanation
1.
Channel
11 (2.46 GHz)
The channel that is used to broadcast the SSID and to establish new connections to devices
2.
Country code
00(World)
Country code
3.
SSID
HAL10000
The SSID is a name by which other devices will recognize the router
4.
Mode
Access Point (AP)
Indicates that you router is an access point
5.
Encryption
Mixed WPA/WPA2 PSK (CCMP)
The type of encryption that the router uses to authenticate, establish and maintain connections
6.
Wireless MAC
00:51:33:77:56:18
MAC address of the router’s wireless radio
7.
Signal Quality
73%
The signal quality between the routers radio and another device that is connected to the router. Will show 0% if no devices are trying to connect or are currently maintaining a connection
8.
Bit rate
57.8 MBit/s
The bitrate shared between all devices that are connected to the router’s wireless network
Field Name
Sample Value
Explanation
1.
MAC Address
1C:7B:21:58:69:C3
Associated station's MAC (Media Access Control) address
2.
Device Name
android-3757690c5aecac34
DHCP client's hostname
3.
Signal
-59 dBm
Received Signal Strength Indicator (RSSI)
4.
RX Rate
6.0Mbit/s, MCS 5, 20MHz
The rate at which packets are received from the associated station
5.
TX Rate
57.8Mbit/s, MCS 5, 20MHz
The rate at which packets are sent to the associated station
6.3.4.2 Access Point
The Wireless Information window displays information about wireless connections (Access Point mode.)
Wireless AP information
Associated stations*
* This can either be the information of the Access Point that the router is connected to in STA mode or a list of all devices that are connected to the router’s AP.
Teltonika Solutions
RUT955 User‘s Manual
28
Field Name
Sample Value
Explanation
1.
Enabled
Yes
OpenVPN status
2.
Status
Connected
Connection status
3.
Type
Client
The type of OpenVPN instance that has been created
4.
IP
10.0.0.6
Remote virtual network's IP address
5.
Mask
255.255.255.255
Remote virtual network's subnet mask
6.
Time
0h 0m 16s
Connection uptime
6.3.5 OpenVPN Client
The OpenVPN Information window displays OpenVPN client or server information.
Teltonika Solutions
RUT955 User‘s Manual
29
Field Name
Sample Value
Explanation
1.
Enabled
Yes
OpenVPN status
2.
Status
Connected
Connection status
2.
Type
Server
The type of OpenVPN instance that has been created
3.
IP
10.0.0.1
Remote virtual network's IP address
4.
Mask
255.255.255.255
Remote virtual network's subnet mask
5.
Time
0h 0m 28s
Connection uptime
Field Name
Possible Values
Explanation
1.
Common Name
Test001
Client’s common name
2.
Real Address
212.59.13.225:52638
Client’s IP address and port number
3.
Virtual Address
10.0.0.6
Virtual address which has been given to a client
4.
Connection Since
Thu May 05 2016 07:46:29 GMT + 0300 (FLE Standard Time)
Since when the connection has been established
6.3.6 OpenVPN Server
Clients Information*
* The OpenVPN Information window also shows connected client information when an OpenVPN TLS server instance is online.
Teltonika Solutions
RUT955 User‘s Manual
30
Field Name
Sample Value
Explanation
1.
Status
Enabled
VRRP status
2.
Virtual IP
192.168.1.253
Virtual IP address (-es) for LAN’s VRRP (Virtual Router Redundancy Protocol ) cluster
3.
Priority
100
Router with the highest priority value on the same VRRP cluster will act as a master; range [1 - 255]
4.
Router*
Master
Connection mode
6.3.7 VRRP
The VRRP Information window displays VRRP(Virtual Router Redundancy Protocol) LAN Status.
*Exclusive to other Modes with Slave.
Teltonika Solutions
RUT955 User‘s Manual
31
6.3.8 Topology
The Network Topology window provides the ability to scan and quickly retrieve information about devices in your network. When the router uses Mobile as WAN and the selected Connection type is „PPP“, you can only scan the LAN side.
Teltonika Solutions
RUT955 User‘s Manual
32
Field Name
Possible Values
Explanation
1.
Type
SSH; HTTP; HTTPS
Type of connection protocol
2.
Status
Disabled/Enabled
Connection status
3.
Port
22; 80; 443
Port used for the connection
4.
Active connections
0(0.00B);1(53.28 KB); 0(0.00 B)
Count of active connections and amount of data transmitted
6.3.9 Access
6.3.9.1 Access Status
The Access Status window displays information about active local and remote SSH, HTTP and HTTPS connections.
Teltonika Solutions
RUT955 User‘s Manual
33
Field Name
Possible Value
Explanation
1.
Type
SSH; HTTP; HTTPS
Type of connection protocol
2.
Date
2016-03-03, 13:40:59
Date and time of connection
3.
IP
192.168.56.205
IP address from which the connection was made
4.
Authentications Status
Failed; Succeeded
Result of authentication attempt
6.3.9.2 Last Connections
The Last Connections window displays information about the last 3 connections for each of the different connection types.
Teltonika Solutions
RUT955 User‘s Manual
34
Field Name
Sample Value
Explanation
1.
Serial number
54656
Serial number of the device
2.
Product code
RUT955H7V020
Product code of the device
3.
Batch number
0001
Batch number used during device’s manufacturing process
4.
Hardware revision
0002
Hardware revision of the device
5.
IMEI
861107030078134
Identification number of the internal modem
6.
IMSI
246020100944448
Subscriber identification number of the internal modem
6.
Ethernet LAN MAC
00:51:33:77:56:16
MAC address of the Ethernet LAN ports
7.
Ethernet WAN MAC
00:51:33:77:56:17
MAC address of the Ethernet WAN port
8.
Wireless MAC
00:51:33:77:56:18
MAC address of the Wi-Fi interface
9.
Model
EC25
Router’s modem model
10.
FW version
EC25EFAR02A03M4G
Router’s modem firmware version
6.4 Device information
The Device Information page displays factory information that was written into the device during the manufacturing process.
Teltonika Solutions
RUT955 User‘s Manual
35
6.5 Services
The Services page displays the status of available services and gives you the ability turn them on/off or restart them.
Teltonika Solutions
RUT955 User‘s Manual
36
Field Name
Sample Value
Explanation
1.
IP address
192.168.56.235
Recently cashed IP addresses of every immediate device that was communicating with the router
2.
MAC address
1C:7B:21:58:69:C3
Recently cached MAC addresses of every immediate device that was communicating with the router
3.
Interface
br-lan
Interface that the device used for connection
Field Name
Sample Value
Explanation
1.
Network
wan
Interface used to transmit TCP/IP packets through
2.
Target
0.0.0.0
Indicates where a TCP/IP packet with a specific IP address will be directed
3.
IP gateway
192.168.90.254
Indicates through which gateway a TCP/IP packet will be directed
4.
Metric
0
Indicates interface’s priority of usage
6.6 Routes
The Routes page displays the router’s ARP table and active IP and IPv6 routes.
ARP 6.6.1
The ARP table shows the routers recently cached MAC addresses of every immediate device that was communicating with the router.
Active IP Routes 6.6.2
The Active IP Routes section shows the router’s routing table. The routing table indicates where a TCP/IP packet with a specific IP address will be directed to.
Teltonika Solutions
RUT955 User‘s Manual
37
Field Name
Sample Value
Explanation
1.
Network
loopback
Network interface used
2.
Target
0:0:0:0:0:0:0:0/0
Indicates where a TCP/IP packet with a specific IP address will be directed
3.
IPv6 gateway
0:0:0:0:0:0:0:0/0
Indicates through which gateway a TCP/IP packet will be directed
4.
Metric
FFFFFFFF
Indicates interface’s priority of usage
Active IPv6-Routes 6.6.3
The Active IPv6-Routes table shows active IPv6 routes for data packet transition.
Teltonika Solutions
RUT955 User‘s Manual
38
Field Name
Sample Value
Explanation
1.
Connection type
4G (LTE)
Type of mobile connection used
2.
Signal
-67 dBm
Current signal strength value
3.
Average
-68.2 dBm
Average signal strength value
4.
Peak
-61 dBm
Peak signal strength value
6.7 Graphs
The Real-time graph window displays various statistical data changes over time in the form of graphs.
6.7.1 Mobile Signal Strength
The Mobile Signal strength graph displays mobile signal strength variation in time (measured in dBm).
Teltonika Solutions
RUT955 User‘s Manual
39
Field Name
Sample Value
Explanation
1.
1/5/15 Minute Load
2.39
Time interval for load averaging, colour of the diagram
2.
Average
2.41
Average CPU load value over a time interval (1/5/15 Minute)
3.
Peak
3.67
Peak CPU load value of the time interval
6.7.2 Realtime Load
The Realtime Load window displays a tri-graph that illustrates average CPU load values in real time. The graph consists out of three color coded graphs, each one corresponding to the average CPU load over 1 (red), 5 (orange) and 15 (yellow) most recent minutes.
Teltonika Solutions
RUT955 User‘s Manual
40
Field Name
Explanation
1.
Bridge
Cumulative graph, which encompasses wired Ethernet LAN and the wireless network
2.
LAN
Graphs the total traffic that has passed through both LAN network interfaces
3.
WAN (Wired)
Graphs the amount of traffic that has passed through the current active WAN connection
4.
Wi-Fi
Shows the amount of traffic that has been sent and received through the wireless radio
6.7.3 Realtime Traffic
The Realtime Traffic window lets you monitor average inbound and outbound traffic over the course of 3 minutes; each new measurement is taken every 3 seconds. The graphs consist out of two color coded graphs: the green graph shows the outbound traffic, the blue graph shows the inbound traffic. Although not graphed, the page also displays peak loads and averages of inbound and outbound traffic.
Teltonika Solutions
RUT955 User‘s Manual
41
6.7.4 Realtime Wireless
The Realtime Wireless window displays the wireless radio signal strength, signal noise, average and peak signal levels and the theoretical maximum channel permeability.
Teltonika Solutions
RUT955 User‘s Manual
42
6.7.5 Realtime Connections
The Realtime Connections window displays currently active network connections with the information about network, protocol, source and destination addresses and transfer speed.
Teltonika Solutions
RUT955 User‘s Manual
43
Field Name
Possible Value
Explanation
1.
Enable
Enable/Disable
Makes the function active or inactive
2.
Interval between records (sec)
(minimum) 60 (sec)
The interval between logging records
6.8 Mobile Traffic
The Mobile Traffic graphs display the mobile connection data that was sent and received this day, week or month for each or both of the SIM cards.
By default the mobile traffic usage logging is disabled. In order to use this function, you will have to enable it in the Configuration tab.
Teltonika Solutions
RUT955 User‘s Manual
44
6.9 Events Log
The Events Log windows display records of such event as logins, reboots, resets, connections and configuration changes.
6.9.1 All Events
The All Events window displays all of the router’s recorded events, their types and times of occurrence.
Teltonika Solutions
RUT955 User‘s Manual
45
6.9.2 System Events
The System Events window displays all system events, their types and times of occurrence. These events include authentication, reboot requests, incoming and outgoing SMS messages and calls, emails, configuration changes and DHCP events.
Teltonika Solutions
RUT955 User‘s Manual
46
6.9.3 Network Events
The Network Events window displays information about recent network events like new connections, lease status changes, network types or operator changes.
Teltonika Solutions
RUT955 User‘s Manual
47
6.9.4 Events Reporting
The Events Reporting page gives you the ability to configure rules that will inform you via SMS or email when certain events occur on your router. These events can be almost anything – configuration changes, new connections, various status updates, SIM switches, etc.
6.9.4.1 Events Reporting Configuration
The Events Reporting Configuration tab is used to customize Events Reporting Rules. Here you can specify any event type and subtype, chose whether you want to be informed by an SMS message or email, modify what kind of information you want receive should an event occur. To open this window, create a rule and press “edit”.
Teltonika Solutions
RUT955 User‘s Manual
48
Field Name
Sample Value
Explanation
1.
Enable
Enable
Make a rule active/inactive
2.
Event type
Reboot
Select the type of event that you wish to receive information about
3.
Event subtype
After unexpected shut down
Specify the subtype of the event
4.
Action
Send SMS
Action to perform when the specified event occurs
5.
Enable delivery retry
Enable
Enable SMS delivery retry on unsuccessful delivery attempts
6.9.4.1.1 Send SMS
Teltonika Solutions
RUT955 User‘s Manual
49
6.
Retry interval
5 min.
The amount of time after an unsuccessful attempt before the delivery retry is initiated
7
7.
Retry count
2
How many attempts of delivery retry will be performed
8.
Message text on Event
Router name - %rn; Event type - %et; Event text - %ex; Time stamp
- %ts;
The content of the message
9.
Get status after reboot
Enable
Indicate whether to receive router’s status information after reboot or not
10.
Status message after reboot
Router name - %rn; WAN IP - %wi; Connection state - %cs; Connection type - %ct; Signal strength - %ss; New FW available ­%fs;
The content of the status message
11.
Recipient‘s
phone number
+37061111111
The phone number that will receive the message after the specified event occurs
Teltonika Solutions
RUT955 User‘s Manual
50
6.9.4.1.2 Send email
Teltonika Solutions
RUT955 User‘s Manual
51
Field Name
Sample Value
Explanation
1.
Enable
Enable
Make the rule active or inactive
2.
Event type
Reboot
Select the type of event that you wish to receive information about
3.
Event subtype
After unexpected shut down
Specify the subtype of the event
4.
Action
Send email
Action to perform when the specified event occurs
5.
Enable delivery retry
Enable
Enable email delivery retry on unsuccessful delivery attempts
6.
Retry interval
5 min.
The amount of time after an unsuccessful attempt before the delivery retry is initiated
7
7.
Retry count
2
How many attempts of delivery retry will be performed
8
8.
Subject
Reboot
The subject of the email
9.
Message text on Event
Router name - %rn; Event type - %et; Event text - %ex; Time stamp
- %ts;
The content of the message
10.
Get status after reboot
Disable
Indicate whether to receive router’s status information after reboot
or not
11.
SMTP server
mail.hostname.com
Sender’s email provider SMTP (Simple Mail Transfer Protocol) server address
12.
SMTP server port
12345
Sender’s email provider SMTP server port number
13.
Secure connection
Enable
Enable or disable secure connection (use only if the server has SSL or TLS)
14.
User name
user_name
Sender’s email account user name
15.
Password
••••••••••••
Sender’s email account password
16.
Sender’s email
address
sender@email.com
Sender’s email address
17.
Recipient’s email
address
recipient@email.com
Recipient’s email address
18.
Send test email
Send
Sends out a simulated test message according to your given data
Teltonika Solutions
RUT955 User‘s Manual
52
6.9.5 Reporting Configuration
The Reporting Configuration window lets you create rules that transfer logs to email or FTP.
Teltonika Solutions
RUT955 User‘s Manual
53
6.9.5.1 Events Log Report Configuration
The Events Log Report Configuration window gives you the ability to change the configuration of periodic events reporting to email or FTP. You can access it by creating a rule and pressing the “edit” button next to it, just like Event Reporting Configuration.
6.9.5.1.1 FTP
Teltonika Solutions
RUT955 User‘s Manual
54
Field Name
Sample Value
Explanation
1.
Enable
Enable
Make the rule active or inactive
2.
Events log
System
Events log to which the rule is applied
3.
Transfer type
FTP
Events log file transfer type: Email or FTP
4.
Compress file
Disable
Enable or disable compress events log file using gzip
5.
Host
hostname.com
FTP (File Transfer Protocol) host name, e.g. ftp.example.com,
192.168.123.123. Allowed characters (a-z-A-Z0-9!@#$%^&*+-/=?_`{|}~. )
6.
User name
user_name
User name for authentication on SMTP (Simple Mail Transfer Protocol) or FTP (File Transfer Protocol) server. Allowed characters (a-z-A-Z0-9!@#$%^&*+­/=?_`{|}~. )
7.
Password
••••••••••••
Password for authentication on SMTP (Simple Mail Transfer Protocol) or FTP (File Transfer Protocol) server. Allowed characters (a-z-A-Z0-9!@#$%^&*+­/=?_`{|}~. )
8.
Interval between reports
Week
The frequency at which Events log reports will be submitted
9.
Weekday
Sunday
Day of the week on which the events log report will be submitted
10.
Hour
1
Hour of the day on which the events log report will be submitted
Teltonika Solutions
RUT955 User‘s Manual
55
6.9.5.1.2 Email
Teltonika Solutions
RUT955 User‘s Manual
56
Field Name
Sample Value
Explanation
1.
Enable
Enable
Make the rule active or inactive
2.
Events log
Network
Events log to which the rule is applied
3.
Transfer type
Email
Events log file transfer type: Email or FTP
4.
Compress file
Disable
Enable or disable compress events log file using gzip
5.
Subject
Test
Subject of the email
6.
Message
text message
The message of the email
7.
SMTP server
mail.email.com
Sender’s email provider SMTP (Simple Mail Transfer Protocol)
server address
8.
SMTP server port
12345
Sender’s email provider SMTP server port number
9.
Secure connection
Enable/Disable
Enable or disable secure connection (use only if the server has SSL or TLS)
10.
User name
User
Sender’s email account user name
11.
Password
••••••••••••
Sender’s email account password
12.
Sender‘s email
address
sendersemail@example.com
Sender’s email address
13.
Recipient‘s
email address
recipientemail@example.com
Recipient’s email address
14.
Interval between reboots
Week
The frequency at which Events log reports will be submitted
15.
Weekday
Sunday
Day of the week on which the events log report will be submitted
16.
Hour
1
Hour of the day on which the events log report will be submitted
Teltonika Solutions
RUT955 User‘s Manual
57
7 Network
7.1 Mobile
7.1.1 General
In the Mobile Configuration window you can configure various mobile settings that are used in order to connect to your local 2G/3G/LTE network.
Teltonika Solutions
RUT955 User‘s Manual
58
Field Name
Possible values
Explanation
1.
Connection type
PPP / QMI
Defines how the router's modem will connect to the internet.
PPP mode uses a dialling number to establish a data connection. QMI mode (default) does not use dialling or the PPP protocol to
establish a data connection and it is usually faster than PPP mode
2.
Mode
NAT / Passthrough / Bridge
NAT mode enables network address translation on the router. Bridge mode bridges the LTE data connection with LAN. In this mode
the router does not have an internet connection as the ISP provides an IP address directly to the end device. Using Bridge mode will disable most of the router’s capabilities and you will only be able to access your router's settings with a static IP address. Passthrough mode works in a similar fashion to Bridge mode, except in passthrough mode the router does have an internet connection
3.
APN
“APN”
An Access Point Name (APN) is a gateway between a GSM, GPRS, 3G or 4G mobile network and another computer network
4.
PIN number*
Any number that falls between 0000 and 9999
A personal identification number is a numeric password used to authenticate a user to a system
5.
Dialing number
*99#
A Dialling number is used to establish a mobile PPP connection
6.
Authentication method
CHAP, PAP or none
The Authentication method that your GSM carrier uses to authenticate new connections on its network
7.
Username
user_name
The username used to connect to your carriers network. This field becomes available when you select an authentication method (i.e., the selected authentication method is not “None”)
8.
Password
••••••••••••
The password used to connect to your carriers network
9.
Service mode
2G only, 3G only, 4G (LTE) only or Automatic.
Your service mode preference. If your local mobile network supports 2G, 3G and 4G (LTE) you can specify to which type of network you wish to connect, e.g. if you choose 2G, the router will connect to a 2G network, so long as it is available, otherwise it will connect to a network that provides better connectivity. If you select Automatic, then the router will connect to the network that provides the best connectivity
10.
Deny data roaming
Enable / Disable
When enabled this function prevents the device from establishing mobile data connection while not in your home network
11.
Use IPv4 only
Enable / Disable
When enabled this function makes the device use only IPv4 settings when connecting to an operator
12.
Mobile Data On Demand
Enable / Disable
When Enabled The Mobile Data On Demand function keeps the mobile data connection on only when it is in use
No data timeout (sec) – 10 - 99999999
The mobile data connection will be terminated if no data is transferred during the timeout period specified in this field
13.
Force LTE network
Enable/Disable
When enabled this function makes the router connect to an LTE network after every specified amount of seconds
Enable/Disable
When enabled the modem will reregister before trying to connect to an LTE network
180 – 3600
Time in seconds between attempts to connect to an LTE network
*Warning: If you enter an invalid PIN number (i.e. if the entered PIN does not match the one that is used in the SIM card), your SIM card will get blocked.
To avoid such mishaps it is highly advised to use an unprotected SIM. If you happen to insert a protected SIM and the PIN number is incorrect, your card won’t get blocked immediately, although after a couple of reboots OR configuration saves it will.
Teltonika Solutions
RUT955 User‘s Manual
59
Field name
Possible values
Explanation
DHCP mode*
Static
The Static mode requires that you enter your computer’s MAC address (xx:xx:xx:xx:xx:xx) and select a lease time (expiration time for the leased address.) The device will get an IP address from your GSM operator. Other devices that are
connected to the router will get IP addresses from the router’s DHCP server, but
they will not have internet access
Dynamic
In Dynamic mode the GSM operator will connect to the router first and give out an IP address to your computer. When using Passthrough in Dynamic mode, the
router‘s LAN DHCP server will be disabled, but it will enabled again automatically
when you switch to a different mode
No DHCP
In No DHCP mode the IP address, subnet mask, default gateway and DNS from the GSM operator will have to be entered on your computer manually. When using
Passthrough in No DHCP mode, the router‘s LAN DHCP server will be disabled, but
it will become enabled automatically when you switch to a different mode
7.1.1.1 Passthrough Mode
Passthrough mode is used to redirect all traffic to another device. In the process the router itself becomes
“transparent” as all traffic is redirected to another device which will also have the router’s public IP address assigned to
it.
*Using Passthrough Mode will disable most of the router‘s capabilities!
Teltonika Solutions
RUT955 User‘s Manual
60
Field name
Possible values
Explanation
1.
Primary SIM card
SIM 1 / SIM 2
Which SIM card will be used by the system as the primary SIM card
2.
Enable automatic switching
Enable/Disable
Automatically switch between primary and secondary SIM cards based on the various rules and criterions defined below
3.
Check interval
1-3600
Check interval in seconds
4.
On weak signal
Enable/Disable
Performs a SIM card switch when signal strength drops below the specified threshold
5.
On data limit*
Enable/Disable
Performs a SIM card switch when mobile data limit is reached
6.
On SMS limit*
Enable/Disable
Performs a SIM card switch when the SMS limit is reached
7.
On roaming
Enable/Disable
Performs a SIM card switch when roaming is detected
8.
No network
Enable/Disable
Performs a SIM card switch when no operator is detected
9.
On network denied
Enable/Disable
Performs a SIM card switch when access to a network is denied
10.
On data connection fail
Enable/Disable
Performs a SIM card switch when data connection fails
7.1.2 SIM Management
The SIM Management window is used for setting your primary SIM card and setting up scenarios after which the router will perform a SIM switch.
* Your carrier's data usage accounting may differ. Teltonika is not liable should any accounting discrepancies occur.
Teltonika Solutions
RUT955 User‘s Manual
61
Field Name
Sample Value
Explanation
1.
SIM card in use
SIM 1
Shows the SIM card in use
2.
Current operator
LT BITE GSM
GSM operator's name
3.
Scan for operators*
-
Initiates a scan for available operators in your area
4.
Connection mode
Auto
Lets you chose whether you want to select your operator manually or automatically
7.1.3 Network Operators
The Network Operators window provides you with the ability to scan, select and enter manual Network Operator codes. This function is a great utility when the router is in Roaming conditions. Operator selection is only available for the primary SIM card. In order to specify an operator for the other SIM card it must first be selected as the primary SIM in the “SIM Management” section.
*While scanning for operators, you will lose your current mobile connection!
Teltonika Solutions
RUT955 User‘s Manual
62
Field name
Possible values
Explanation
1.
Enable
Enable/Disable
Enable/disable operator blocking
2.
Mode
Whitelist/Blacklist
Whitelist - allows every operator on the list, blocks every other operator. Blacklist - blocks every operator on the list, allows every other operator
3.
Name
TELE2
Operator’s name
4.
Operator code
24603
Operator’s code
7.1.3.1 Operators List
The Operators List window provides you with the opportunity to create either a white list or a black list to help you differentiate preferred operators from unwanted operators. This is especially useful when travelling to different countries because it gives you protection from unwanted data charges by denying the SIM card access to unknown or unwanted operators.
Teltonika Solutions
RUT955 User‘s Manual
63
Data Connection Limit Configuration
Field Name
Sample value
Explanation
1.
Enable data connection limit
Enable/Disable
Disables the mobile data connection when the limit for the current period is reached
2.
Data limit* (MB)
10
Data limit that triggers the mobile data disconnection
3.
Period
Month
Period for which the mobile data limiting will be applied
4.
Start day/ Start hour
1
A starting time for the mobile data limiting period
SMS Warning Configuration
1.
Enable SMS warning
Enable/Disable
Enables the sending of a warning SMS message before or when the mobile data limit for the current period is reached
2.
Data limit* (MB)
5
Data limit which triggers the warning message
3.
Period
Month
Period for which the mobile data limiting should apply
4.
Start day/ Start hour
1
A starting time for mobile data limiting period
5.
Phone number
+37012345678
A phone number to send the warning SMS message to
Clear Data Limit
1.
Clear data limit
-
Clears all sent and received data for the selected period
7.1.4 Mobile Data Limit
The Mobile Data Limit window provides you with the ability to set data limits for your SIM cards in order to protect yourself from unwanted data charges.
* Your carrier's data usage accounting may differ. Teltonika is not liable should any accounting discrepancies occur.
Teltonika Solutions
RUT955 User‘s Manual
64
Field Name
Possible values
Explanation
1.
Enable
Enable/Disable
Enables SIM idle protection
2.
Period
Month / Week
The frequency at which the SIM switch will be initiated
3.
Day
1-31 / Monday ­Sunday
Specifies the day of SIM idle protection activation. 1-31 if the period is a month; Monday – Sunday if the period is a week
4.
Hour
1 - 24
Specifies the hour of SIM idle protection activation
5.
Minute
0 - 60
Specifies the minute of SIM idle protection activation
6.
Host to ping
127.0.0.1
Specifies the IP address or domain name to send data packages to
7.
Ping package size
56
Specifies the ping package size in bytes
8.
Ping requests
2
Number of ping requests that will be sent
7.1.5 SIM Idle Protection
Some operators block user SIM cards after a period of inactivity. The SIM Idle Protection window provides you with the possibility to configure the router to periodically switch to the secondary SIM card and establish a data connection with a mobile network in order to prevent the SIM card blocking.
7.1.5.1 Settings
Teltonika Solutions
RUT955 User‘s Manual
65
Field Name
Sample value
Explanation
1.
SIM
SIM1
SIM card number
2.
SIM state
OK (inserted)
Status of the SIM card
3.
IMSI
246020100944448
International Mobile Subscriber Identity used to identify the user in a cellular network
4.
ICCID
8937002160600414481
Integrated circuit card identifier used to identify the SIM card internationally
5.
Host IP
8.8.8.8
IP address of the host
6.
WAN IP
84.15.198.92
SIM card’s public IP address
7.
Ping
Success
Status of the ping attempt
7.1.5.2 Test
The SIM Idle Protection Test window lets you test the functionality of SIM Idle Protection with the parameters entered at the settings tab. Once you press the ‘Test’* button it will simulate a SIM Protection scenario for both of the SIM cards. Once you initiate the test do not commit any actions until the test is finished, as doing otherwise will result in errors that can only be resolved by reseting your device..
*During test phase do not commit any action, wait for the test to finish
Teltonika Solutions
RUT955 User‘s Manual
66
Field Name
Possible values
Explanation
1.
Main WAN
Wired/Mobile/Wi-Fi
Allows you to select the main WAN
2.
Backup WAN / Load Balancing
Enable/Disable
Allows you to select one or two interface to act as your backup WAN
3.
Interface Name
WAN/WAN2/WAN3
Names of the WAN interfaces
4.
Protocol
Static/DHCP/PPPoE
The protocol used by a WAN interface
5.
IP Address
192.168.90.66
WAN IP address
6.
Sort
-
Allows you to sort table rows and change interface priority (i.e., the highest interface has the highest priority)
7.2 WAN
7.2.1 Operation Mode
The WAN window lets you determine how the router will be connecting to the internet. You can chose between three types of WAN – Mobile, Wired and Wi-Fi.
7.2.2 Common Configuration
You can further configure each of your WAN interfaces by clicking the ‘edit’ button found at the far right of the WAN table next to each interface:
It will open the Common Configuration window where you can select the protocol to be used with your by your WAN interface, configure your backup WAN settings, set up IP aliases, custom DNS servers and more.
Teltonika Solutions
RUT955 User‘s Manual
67
Filed name
Sample Value
Explanation
1.
Protocol
Static
The protocol used by the WAN interface
2.
IPv4 address
192.168.90.66
Your routers address on the WAN network
3.
IPv4 netmask
255.255.255.0
A mask used to define how “large” the WAN network is
4.
IPv4 gateway
192.168.90.254
The address where the router will send all the outgoing traffic
5.
IPv4 broadcast
192.168.90.255
Broadcast address (auto generated if not set). It is best to leave this blank unless you know what you are doing
6.
Use custom DNS servers
8.8.8.8
8.8.4.4
Usually the gateway has some predefined DNS servers. As such the
router, when it needs to resolve a hostname (“www.google.com”, “www.cnn.com”, etc…) to an IP address, it will forward all the DNS
requests to the gateway. By entering custom DNS servers the router will take care of the host name resolution. You can enter multiple DNS servers to provide redundancy in case one of the servers fails
7.2.2.1 General Setup
You can switch between Static, DHCP or PPPoE protocols by selecting the one that you want to use and then pressing the ‘Switch Protocol’* button.
*The “Switch protocol” button does not apply any changes. In order for the changes to take effect, you must click the “Save” button found at the bottom
left corner of the window after you are done making changes.
7.2.2.1.1 Static:
The Static protocol is used when the source of your internet doesn’t have a DHCP server enabled. Therefore, in order to connect to the internet, you have to make configurations in accordance to the source (much like in the Logging
In section of this user’s manual.)
Teltonika Solutions
RUT955 User‘s Manual
68
Filed name
Sample Value
Explanation
1.
Protocol
PPPoE
The protocol used by the WAN interface
2.
PAP/CHAP username
user_name
The username that you would use to connect to your carriers network
3.
PAP/CHAP password
••••••••••••
The password that you would use to connect to your carrier’s network
4.
Access Concentrator
auto
The name of the access concentrator. Leave empty to auto detect
5.
Service Name
auto
The name of the service. Leave empty to auto detect
7.2.2.1.2 DHCP:
The DHCP protocol should be used when the source of your internet has a DHCP server enabled. If that is the case, when you select the DHCP protocol you can use it as is, because most networks will not require any additional advanced configuration.
7.2.2.1.3 PPPoE
The PPPoE protocol is mainly used if you have a DSL internet provider.
Teltonika Solutions
RUT955 User‘s Manual
69
Field name
Sample value
Explanation
1.
Disable NAT
On/Off
Toggle Network Address Translation (NAT) on or off for the selected network interface
2
Override MAC address
00:51:33:77:56:17
Override MAC address of the WAN interface. If your ISP gives you a static IP address it might also bind it to your computers MAC address (i.e. that IP will only work with your computer but not with your router). In this field you can enter your computers MAC address and fool the gateway in to thinking that it is communicating with your computer
3.
Override MTU
1500
Maximum Transmission Unit (MTU) specifies the largest possible size of a data packet
4.
Use gateway metric
0
The WAN configuration by default generates a routing table entry. In this field you can alter the metric of that entry
7.2.2.2 Advanced
The Advanced Setting tab offers you the ability to configure more advanced settings for each of the protocols. If you are unsure of how to alter these settings, it is highly recommended to leave them unchanged or consult a trained professional.
7.2.2.2.1 Static
The Advanced Settings tab will change in accordance to which network protocol is selected. For the Static protocol you can turn NAT on or off, override the router’s MAC address, MTU and define the gateway metric. You will find additional information on how to define these settings bellow.
Teltonika Solutions
RUT955 User‘s Manual
70
Field name
Sample value
Explanation
1.
Disable NAT
On/Off
Toggle Network Address Translation (NAT) on or off for the selected network interface
2
Use broadcast flag
Enable/Disable
Required for certain ISPs, e.g. Charter with DOCSIS 3
3.
Use default gateway
Enable/Disable
If left unchecked, no default route is configured
4.
Use DNS servers advertised by peer
Enable/Disable
If left unchecked, the advertised DNS server addresses are ignored
5.
Use custom DNS Servers
8.8.8.8
8.8.4.4
Lets you chose your own preferred DNS servers
6.
User gateway metric
0
The WAN configuration by default generates a routing table entry. In this field you can alter the metric of that entry
7.
Client ID to send when requesting DHCP
Client ID which will be sent when requesting a DHCP lease
8.
Vendor Class to send when requesting DHCP
Vendor class which will be sent when requesting a DHCP lease
9.
Override MAC address
00:51:33:77:56:17
Override MAC address of the WAN interface. If your ISP gives you a static IP address it might also bind it to your computers MAC address (i.e. that IP will only work with your computer but
not with your router). In this field you can enter your computer’s
MAC address and fool the gateway in to thinking that it is communicating with your computer
7.2.2.2.2 DHCP
For the DHCP protocol you can turn NAT on or off, specify custom DNS servers, define the gateway metric, override the router’s MAC address, set MTU and more. You will find additional information on how to define these settings bellow.
Teltonika Solutions
RUT955 User‘s Manual
71
10.
Override MTU
1500
Maximum Transmission Unit (MTU) specifies the largest possible size of a data packet
Field name
Sample value
Explanation
1.
Disable NAT
Enable/Disable
Toggle Network Address Translation (NAT) on or off for the selected network interface
2
Use default gateway
Enable/Disable
If left unchecked, no default route is configured
3.
Use gateway metric
0
The WAN configuration by default generates a routing table entry. In this field you can alter the metric of that entry
4.
Use DNS servers advertised by peer
Enable/Disable
If left unchecked, the advertised DNS server addresses are ignored
5.
Use Custom DNS Servers
8.8.8.8
8.8.4.4
Lets you chose you own preferred DNS servers
5.
LCP echo failure threshold
0
Presume peer to be dead after given amount of LCP echo failures. Leave it at 0 to ignore failures
6.
LCP echo interval
5
Send LCP echo requests at the given interval in seconds. This function is only effective in conjunction with failure threshold
7.
Inactivity timeout
0
Close inactive connection after the given amount of seconds. Leave it at 0 to persist connection
7.2.2.2.3 PPPoE
For the PPPoE protocol you can turn NAT on or off, specify custom DNS servers, define the gateway metric, configure LCP echo settings and more. You will find additional information on how to define these settings bellow.
Teltonika Solutions
RUT955 User‘s Manual
72
7.2.2.3 IP Aliases
7.2.2.3.1 General setup
IP Aliases are a way of defining or reaching a subnet that works in the same space as the regular network. This is useful if you need to reach the router in the same network but in a different subnet. If you have a static IP configuration on your computer and don’t want to change it every time you need to reach a router in a different subnet, you can configure an IP alias in order to do so.
As you can see, the configuration is very similar to the static protocol; only in the example an IP address with a 99th subnet is defined. If some device has an IP in the 99th subnet (e.g., 192.168.99.xxx) and the subnets gateway metric is
“higher” and the device is trying to reach the internet it will reroute it’s traffic not to the gateway that is defined in
common configurations but through the one that is specified in IP aliases.
7.2.2.3.2 Advanced Settings
You may also define a broadcast address and a custom DNS server for your IP Aliases in the Advanced Settings tab.
Teltonika Solutions
RUT955 User‘s Manual
73
Field Name
Possible values
Explanation
1.
Health monitor interval
Disable/5/10/20/30/60/120 Seconds
The interval at which health checks are performed
2.
Health monitor ICMP host(s)
8.8.4.4 / Disable / DNS Server(s) / WAN Gateway / custom
Indicate where to send ping requests for a health check. As there is no definitive way to determine when the connection to internet is down for good, it is best to define a host whose availability is that of the internet as a whole (e.g., 8.8.8.8, 8.8.4.4)
3.
Health monitor ICMP timeout
1/2/3/4/5/10 Seconds
The frequency at which ICMP requests are to be sent. It is advised to set a higher value if your connection has high latency or high jitter (latency spikes)
4.
Attempts before failover
1/3/5/10/15/20
The number of failed ping attempts after which the connection is to be declared as “down”
5.
Attempts before recovery
1/3/5/10/15/20
The number of successful ping attempts after which the connection is to be declared as “up”
7.2.2.4 Backup WAN configuration
Backup WAN is a function that allows you to back up your primary connection in case it goes down. There can be two backup connections selected at one time. In that case, when the primary connection fails, the router tries to use the backup with the higher priority and if this one is unavailable or fails too, then the router tries the backup with the lower priority.
The majority of the options consist of timing and other important parameters that help determine the health of your primary connection. Regular health checks are constantly performed in the form of ICMP packets (Pings) on your primary connection. When the connections state starts to change (READY->NOT READY and vice versa) a necessary amount of failed or passed health checks has to be reached before the state changes completely. This delay is instituted
so as to mitigate “spikes” in connection availability, but it also extends the time before the backup link can be brought
up or down.
Teltonika Solutions
RUT955 User‘s Manual
74
7.2.3 How do I set up a backup link?
First you must select a main link and choose one or two backup links in the WAN section. Then push the “Edit”
button and configure your WAN and Backup Wan settings to your liking.
Click Save after you have made your changes and wait until the settings are applied. You can monitor main/backup WAN status in the Status -> Network Information -> WAN page. If everything is working correctly you should see something like this:
The above picture shows the status for the Mobile Backup WAN configured on a wired main link. You can now simulate a downed link by simply unplugging your Ethernet WAN cable. When you’ve done so you should see this:
When the main connection is down, all the traffic will go through the backup WAN interface (in this case, mobile.) When you plug the cable back in, the connection will be restored and the traffic will again go through the main WAN interface (in this case, wired.)
Teltonika Solutions
RUT955 User‘s Manual
75
Field name
Sample value
Explanation
1.
IP address
192.168.56.1
IP address that the router uses on the LAN network
2
IP netmask
255.255.255.0
A mask used to define how large the LAN network is
3.
IP broadcast
192.168.56.255
IP broadcasts are used by BOOTP and DHCP clients to find and send requests to their respective servers
Field name
Possible values
Explanation
1.
Accept router advertisements
Enable/Disable
When enabled, this function allows accepting router advertisements (disabled by default)
2.
Override MTU
0 - 1500
MTU (Maximum Transmission Unit) specifies the largest possible size of a data packet
3.
Use gateway metric
Any integer number
The LAN configuration generates an entry in the routing table. In this field you can alter the metric of that entry. Higher metric means higher priority
4.
Use WAN port as LAN
Enable/Disable
Lets you use the WAN port as if it were a LAN port
7.3 LAN
This page is used to configure the LAN network, where all your devices and computers that you connect to the router will reside.
7.3.1 Configuration
7.3.1.1 General Setup
7.3.1.2 Advanced settings
Teltonika Solutions
RUT955 User‘s Manual
76
Field Name
Sample value
Explanation
1.
DHCP
Enable / Disable/ DHCP Relay
Enables or disables DHCP Server. If DHCP Relay is selected, you will be prompted to enter an IP address of another DHCP server in your LAN. In this case, Whenever a new device connects to the router, the router will redirect any DHCP requests to the specified DHCP Server
2.
Start
100
The starting IP address value. e.g., if your router’s LAN IP is 192.168.2.1 and your subnet mask is 255.255.255.0 that means that in your network a valid IP address has to be in the range of [192.168.2.1 – 192.168.2.254](192.168.2.0 and
192.168.2.255 are special unavailable addresses). If the Start value is set to 100 then the DHCP server will only lease out addresses starting from 192.168.2.100
3.
Limit
150
How many addresses the DHCP server can lease out. Continuing from the above example: if the start address is 192.168.2.100 and the server can lease out 150 (sample value) addresses starting from 192.168.2.100 and ending in
192.168.2.249 (100 + 150 – 1 = 249; this is because the first address is inclusive)
4.
Lease time
12
The duration of an IP lease. Leased out addresses will expire after the amount of time specified in this field and the device that was using the lease will have to send a new DHCP request to the router's DHCP server. However, if the device stays connected, its lease will be renewed after half of the specified amount of time passes, e.g., if the lease time is 12 hours, then every 6 hours the device will send a request to the router asking to renew its lease. Lease time can be set in hours or minutes. The minimal amount of time that can be specified is 2min
7.3.2 DHCP Server
DHCP server is the router side service that can automatically configure the TCP/IP settings of any device that requests such a service. If you connect a device that has been configured to obtain an IP address automatically the DHCP server will lease out an IP address and the device will be able to communicate with the router.
7.3.2.1 General Setup
Teltonika Solutions
RUT955 User‘s Manual
77
Field Name
Sample Value
Explanation
1.
Dynamic DHCP
Enabled / Disabled
Enables Dynamic allocation of client addresses. If this is disabled, only clients that have static IP leases will be served
2.
Enable DNS rebind protection
Enabled / Disabled
Enables DNS rebind attack protection by discarding upstream RFC1918 responses (leave default unless necessary otherwise)
3.
Force
Enabled / Disabled
By default the router’s DHCP server will not start when it is
connected to a network segment that already has a working DHCP server. If enabled, the DHCP force function ensures that the router will always start it’s DHCP server, even if there is another DHCP server already running in the router’s network
4.
IP netmask
255.255.255.0
Overrides your LAN netmask thus making the DHCP server think that it’s serving a larger or smaller network than it actually is
5.
DHCP Options
6,8.8.8.8.,8.8.4.4
Additional options to be added to the DHCP server. For example with '26,1470' or 'option:mtu, 1470' you can assign an MTU per DHCP
Field Name
Sample Value
Explanation
1.
Hostname
Printer
A custom name that will be linked with the device
2.
MAC address
10:a5:d0:70:9c:72 (192.168.1.104)
Device’s MAC address
3.
IP address
192.168.1.104
The desirable IP address that will be reserved for the specified device
7.3.2.2 Advanced settings
You can also define some advanced options that specify how the DHCP server will operate in your LAN network.
7.3.3 Static Leases
Static IP leases are used to reserve specific IP addresses for specific devices by binding them to their MAC address. This is useful when you have a stationary device connected to your network that you need to reach frequently, e.g., printer, fax, etc.
Teltonika Solutions
RUT955 User‘s Manual
78
7.3.4 IP Aliases
7.3.4.1 General Setup
IP Aliases are a way of defining or reaching a subnet that works in the same space as the regular network. This is useful if you need to reach the router that is located in the same network but in a different subnet. If you have a static IP configuration on your computer and don’t want to change it every time you need to reach a router in a different subnet, you can configure an IP alias in order to do so.
7.3.4.1 Advanced Settings
You may also optionally define a broadcast address and a custom DNS server.
You can find the directions on how to configure IP aliases in the WAN section of this document
Teltonika Solutions
RUT955 User‘s Manual
79
Field Name
Possible Values
Explanation
1.
VLAN mode
Disabled / Port based / Tag based
Lets you choose the VLAN mode or disable VLAN functionality
Field Name
Possible Values
Explanation
1.
VLAN ID
1-4094
VLAN Identification number
2.
LAN ports 1 / 2 / 3
On / Off / Tagged
Switches the LAN port state
3.
Wireless access points
Enabled / Disabled
Assign selected access point(s) to the selected LAN
4.
LAN
None / lan (default LAN name)
Assign selected LAN ports and wireless access point(s) to a LAN network
7.4 VLAN
The VLAN window provides you with the possibility to create and configure your own Virtual LAN networks, which can either be Port based or Tag based.
7.4.1 VLAN Networks
7.4.1.1 VLAN Functionality
7.4.1.2 Port based VLAN
Teltonika Solutions
RUT955 User‘s Manual
80
Field Name
Possible Values
Explanation
1.
VLAN ID
1-4094
VLAN Identification number
2.
Wireless access points
Enabled / Disabled
Assign selected access point(s) to the selected LAN
3.
LAN
None / lan (default LAN name)
Assign selected wireless access point(s) to a LAN network
Field Name
Sample Value
Explanation
1.
LAN name
Lan
Specifies LAN name
2.
Interface name
eth0 tap0
Specifies LAN interface name
7.4.1.3 Tagged based VLAN
7.4.2 LAN Networks
In the LAN Networks page you can create extra LAN networks, and assign them with LAN Ports and wireless access points. You can get extra information on how to configure any of your LAN settings in section 7.3 LAN.
Teltonika Solutions
RUT955 User‘s Manual
81
7.5 Wireless
The Wireless configuration window provides you with the possibility to configure your wireless access points and wireless stations. The Wireless Station Mode will become active only when Wi-Fi is configured as an active WAN interface (either main or backup.)
Above is the overview of the Wireless Configuration window. It displays active access points and stations. Here you can disable or enable your Wi-Fi interfaces, remove unwanted access points or stations or enter a configuration window for each Wi-Fi, where you can configure it more thoroughly.
7.5.1 Wireless Access Point
The Wireless Access Point configuration window is used to make changes to different access points. It is divided into two main sections – device and interface. One is dedicated to configuring hardware parameters, the other – software. To access this window, simply click the ‘edit’ button next to the Wi-Fi interface that you wish to configure:
7.5.1.1 Device Configuration
The Device Configuration section is used for configuring Wi-Fi hardware parameters.
7.5.1.1.1 General Setup
Here you can toggle the availability of the wireless radio and the physical channel frequency.
Teltonika Solutions
RUT955 User‘s Manual
82
Field Name
Possible Values
Explanation
1.
Mode
Auto, 802.11b,
802.11g, 802.11g+n
Different modes provide different wireless standard support which directly impacts the radio's throughput performance
2.
HT mode
20MHz / 40MHz 2nd channel above
HT (High Throughput) mode. 40 MHz bandwidth provides better performance
3.
Country code
Any ISO/IEC 3166 alpha2 country code
SO/IEC 3166 alpha2 country codes as defined in ISO 3166-1 standard
4.
Transmit power
20% / 40% / 60% / 80% / 100 %
Wi-Fi signal power
5.
Fragmentation threshold
256-2346
The smallest packet size that can be fragmented and transmitted by multiple frames. In areas were interference is a problem, setting a lower fragment threshold might help reduce the probability of unsuccessful packet transfers, thus increasing speed
6.
RTS/CTS threshold
0-2347
RTS/CTS (Request to Send/Clear to Send) are mechanisms, used to reduce frame collisions introduced by the hidden node problem. It can help resolve problems arising when several access points are in the same area, contending
Field Name
Possible Values
Explanation
1.
SSID
any_name
The name of your Wi-Fi interface. When other Wi-Fi capable computers or devices scan the area for Wi-Fi networks they will see your network with this name
2.
Hide SSID
Enabled/Disabled
Will render your SSID hidden from other devices that try to scan the area
7.5.1.1.2 Advanced Settings
7.5.1.2 Interface Configuration
7.5.1.2.1 General Setup
Teltonika Solutions
RUT955 User‘s Manual
83
Field Name
Sample Value
Explanation
1.
Encryption*
WEP open system
The type of Wi-Fi encryption used
2.
User key slot
Key #1
Which key is used for authentication
3.
Key #1 / Key #2 / Key #3 / Key #4
••••••••••
A 10 symbol custom key used for authentication
Field Name
Sample Value
Explanation
1.
Encryption*
WPA-PSK/WPA2-PSK mixed mode
The type of Wi-Fi encryption used
2.
Cipher
Auto
An algorithm for performing encryption or decryption
3.
Key
••••••••••••
A custom passphrase used for authentication (at least 8 characters long)
7.5.1.2.2 Wireless Security
The Wireless Security tab is used to determine what kind of encryption your WLAN will use. You can choose between different types of WEP (Wireless Encryption Protocol) or WPA (Wi-Fi Protected Access.) WPA provides better security because it uses improved data encryption through the temporal key integrity protocol (TKIP) but not all devices support WPA and will work only with WEP type of encryption.
7.5.1.2.2.1 WEP
7.5.1.2.2.2 WPA
*Some authentication methods won’t support TKIP (and TKIP&CCMP) encryption
Teltonika Solutions
RUT955 User‘s Manual
84
Field Name
Sample Value
Explanation
1.
MAC address filter
Allow listed only / Allow all except listed
Allow listed only only allows devices with MAC addresses specified in the MAC list to connect to your Wi-Fi network Allow all except listed - blocks devices with MAC addresses specified in the MAC list to connect to your W-Fi network
2.
Mac list
C0:11:73:94:E8:E5
List of MAC addresses to be included or excluded from connecting to your Wi-Fi network
Field Name
Sample Value
Explanation
1.
Separate clients
Enabled / Disabled
Prevents Wi-Fi clients from communicating with each other on the same subnet
2.
Increase TTL packet size
Enabled / Disabled
Increase TTL packet size for incoming packets
7.5.1.2.3 MAC Filter
The MAC Filter tab is used for setting up rules that allow or exclude devices with specified MAC addresses from connecting to your Wi-Fi network.
7.5.1.2.4 Advanced settings
Teltonika Solutions
RUT955 User‘s Manual
85
7.5.2 Wireless Station
RUT955 can also work as a Wi-Fi client. Configuring client mode is nearly identical to AP, except for the fact that most of the options are dictated by the wireless access point that the router is connecting to. Changing them can result in an interrupted connection to that AP.
In addition to standard options you can also click the Scan button to rescan the surrounding area and attempt to connect to a new wireless access point.
After which you will be redirected to the window shown below.
Pressing Start scan will initiate a scan for available Wi-Fi Access Points in the area. After the scan finishes, you will see a list of these Access points. Choose one according to your liking and press the Join Network button next to it.
Teltonika Solutions
RUT955 User‘s Manual
86
Field Name
Possible values
Explanation
1.
Drop Invalid packets
Checked/Unchecked
A “Drop” action is performed on a packet that is determined to be invalid
2.
Input
Reject/Drop/Accept
DEFAULT* action that is to be performed for packets that pass through the Input chain
3.
Output
Reject/Drop/Accept
DEFAULT* action that is to be performed for packets that pass through the Output chain
4.
Forward
Reject/Drop/Accept
DEFAULT* action that is to be performed for packets that pass through the Forward chain
7.6 Firewall
In this section we will look over the various firewall features that come with RUT955.
7.6.1 General Settings
The routers firewall is a standard Linux iptables package, which uses routing chains and policies to facilitate control over inbound and outbound traffic.
*DEFAULT: When a packet goes through a firewall chain it is matched against all the rules of that specific chain. If no rule matches said packet, an according Action (Drop, Reject or Accept) is performed
Accept – Packet gets to continue down to the next chain;
Drop – Packet is stopped and deleted;
Reject – Packet is stopped, deleted and, differently from Drop, an ICMP packet containing a message of rejection is
sent to the source of the dropped packet.
Teltonika Solutions
RUT955 User‘s Manual
87
Field Name
Possible values
Explanation
1.
Enable
Checked/Unchecked
Enables DMZ
2.
DMZ host IP address
Any IP address from your LAN
Internal host to which the DMZ rule will be applied
Field Name
Sample value
Explanation
1.
Source zone
vpn: openvpn
The source zone from which data packets will redirected from
2.
Destination zones
lan
The destination zone to which data packets will be redirected to
3.
Default forwarding action
reject
Action to be performed with the redirected packets
7.6.2 DMZ
By enabling DMZ for a specific internal host (e.g., your computer), you will expose that host and its services to the routers WAN network (i.e. – the internet.)
7.6.3 Zone Forwarding
A zone section groups one or more interfaces and serves as a source or destination for forwardings, rules and redirects. The Zone Forwarding window allows you to configure these forwardings.
Teltonika Solutions
RUT955 User‘s Manual
88
Field Name
Possible values
Explanation
1.
Name
New rule’s name
Name of the rule, used purely to make rule management easier
2.
Protocol
TCP/UDP/TCP+UDP/Other
Type of protocol of incoming packet
3.
External Port
1800 or 2000-2200
From this port on the WAN network the traffic will be forwarded
4.
Internal IP address
IP address of some device on your LAN
The IP address of the internal machine that hosts some service that we want to access from the outside
5.
Internal port
1800 or 2000-2200
The rule will redirect the traffic to this port on the internal machine
7.6.4 Port Forwarding
The Port Forwarding window is used to set up servers and services on local LAN machines. The picture below shows how you can set up a rule that would allow a website that is being hosted on 192.168.1.109, to be reached from the outside by entering http://routersExternalIp:12345/
Teltonika Solutions
RUT955 User‘s Manual
89
Field Name
Possible values
Explanation
1.
Name
rule’s name
Name of the rule
2.
Protocol
TCP/UDP/TCP+ UDP/ICMP/Custom
You may specify multiple by selecting (custom) and then entering protocols separated by space
3.
Source zone
gre/hotspot/l2tp/lan/pptp/vpn/wan
Match incoming traffic from this zone only
4.
Source MAC address
Any MAC address
Match incoming traffic from these MACs only
5.
Source IP address
Any IP address or range of IPs
Match incoming traffic from this IP or range only
7.
Source port
Any port
Match incoming traffic originating from the given source port or port range on the client host only
8.
External IP address
Any external IP address
Match incoming traffic directed at the given IP address only
9.
External port
Any external port
Match incoming traffic directed at the given destination port or port range on this host only
When you click edit you can fine tune a rule to near perfection, if you should desire that:
Teltonika Solutions
RUT955 User‘s Manual
90
10.
Internal zone
gre/hotspot/l2tp/lan/pptp/vpn/wan
Redirect matched incoming traffic to the specified internal zone
11.
Internal IP address
Any Internal IP address
Redirect matched incoming traffic to the specified internal host
12.
Internal port
Any port
Redirect matched incoming traffic to the given port on the internal host
13.
Enable NAT loopback
Enable/Disable
NAT loopback enables your local network (i.e. behind your router/modem) to connect to a forward-facing IP address (such as 208.112.93.73) of a machine that it also on your local network
14.
Extra arguments
-
Passes additional arguments to iptables. Use with care!
Teltonika Solutions
RUT955 User‘s Manual
91
Field Name
Explanation
1.
Name
Name of the rule. Used for easier rule management purposes
2.
Protocol
Protocol type of incoming or outgoing packet
3.
Source
Match incoming traffic from this IP or range only
4.
Destination
Redirect matched traffic to the given IP address and destination port
5.
Action
Action to be performed with the packet if it matches the rule
6.
Enable
Uncheck to make the rule inactive. The rule will not be deleted, but it also will not be loaded into the firewall
7.
Sort
When a packet arrives, it gets checked for a matching rule. If there are several rules that match the rule, the first one is applied, i.e., the order of the rule list impacts how your firewall operates, therefore you are given the ability to sort your list however you want
7.6.5 Traffic Rules
The Traffic Rules page contains a more generalized rule definition. With it you can block or open ports, alter how traffic is forwarded between LAN and WAN and many more things.
Teltonika Solutions
RUT955 User‘s Manual
92
Field Name
Possible values
Explanation
1.
Name
Rule’s name
Used to make rule management easier
2.
Restrict to address family
IPv4 and IPV6 / IPv4 only / IPv6 only
Match traffic from selected address family only
3.
Protocol
TCP / UDP / Any / ICMP / Custom
Protocol of the packet that is being matched against traffic rules
4.
Match ICMP type
Any
Match traffic with selected ICMP type only
5.
Source zone
Any zone / gre / hotspot / l2tp / lan / pptp / vpn / wan
Match incoming traffic from the selected zone only
6.
Source MAC address
Any MAC address
Match incoming traffic from these MACs only
7.
Source address
Any IP address or range
Match incoming traffic from this IP or range only
8.
Source port
Any port
Match incoming traffic originating from the given source port or port range on the client host only
When you click edit you can fine tune a rule to near perfection, if you should desire that:
Teltonika Solutions
RUT955 User‘s Manual
93
9.
Destination zone
Device/Any zone/LAN/VPN/WAN
Match forwarded traffic to the given destination zone only
10.
Destination address
any
Match forwarded traffic to the given destination IP address or IP range only
11.
Destination port
67
Match forwarded traffic to the given destination port or port range only
12.
Action
Drop/Accept/Reject + chain + additional rules
Action to be taken on the packet if it matches the rule. You can also define additional options like limiting packet volume, and defining to which chain the rule belongs
Field Name
Sample value
Explanation
1.
Name
Open_Port_Rule
Name of the rule, used for easier management
2.
Protocol
TCP/UDP/Any/ICMP/Custom
Protocol of the packet that is being matched against traffic rules
3.
External port
1-65535
Match incoming traffic directed at the given destination port or port range on this host
7.6.5.1 Open Ports On Router
Teltonika Solutions
RUT955 User‘s Manual
94
Field Name
Possible values
Explanation
1.
Name
Rule’s name
Name of the rule, used for easier management
2.
Source
GRE / HOTSPOT / L2TP / LAN / PPTP / VPN / WAN
Match incoming traffic from selected address family only
3.
Destination
GRE / HOTSPOT / L2TP / LAN / PPTP / VPN / WAN
Forward incoming traffic to selected address family only
Field Name
Possible values
Explanation
1.
Name
Rule’s name
Name of the rule, used for easier management
2.
Protocol
TCP/UDP/Any/ICMP/Custom
Protocol of the packet that is being matched against traffic rules
3.
Source
GRE / HOTSPOT / L2TP / LAN / PPTP / VPN / WAN
Match incoming traffic from selected address family only
4.
Destination
GRE / HOTSPOT / L2TP / LAN / PPTP / VPN / WAN
Forward incoming traffic to selected address family only
5.
SNAT
Rewrite to source IP
192.168.55.55, port 15465
SNAT (Source Network Address Translation) rewrites packet's source IP address and port
6.
Enable
Enable/Disable
Makes the rule active/inactive
7.6.5.2 New Forward Rule
7.6.5.3 Source NAT
Source NAT is a specific form of masquerading which allows fine grained control over the source IP used for outgoing traffic, for example to map multiple WAN addresses to internal subnets.
Teltonika Solutions
RUT955 User‘s Manual
95
Field Name
Sample value
Explanation
1.
Name
Rule’s name
Name of the rule, used for easier management
2.
Protocol
All protocols / TCP / UDP / TCP+UDP / ICMP / Custom
Protocol of the packet that is being matched against traffic rules
3.
Source zone
Any zone / gre / hotspot / l2tp / lan / pptp / vpn / wan
Match incoming traffic from the selected zone only
4.
Source MAC address
Any MAC address
Match incoming traffic from these MACs only
5.
Source address
Any IP address or range
Match incoming traffic from this IP or range only
6.
Source port
Any port
Match incoming traffic originating from the given source port or port range on the client host only
You can configure firewall source NAT rules, by clicking the edit button next to them:
Teltonika Solutions
RUT955 User‘s Manual
96
7.
Destination zone
Device/Any zone/LAN/VPN/WAN
Match forwarded traffic to the given destination zone only
8.
Destination address
Any IP address
Match forwarded traffic to the given destination IP address or IP range only
9.
Destination port
Any port
Match forwarded traffic to the given destination port or port range only
10.
SNAT IP address
Any IP address
Rewrite matched traffic to the given IP address
11.
SNAT port
Any port
Rewrite matched traffic to the given source port. May be left empty to only rewrite the IP address
12.
Extra arguments
Passes additional arguments to iptables. Use with care!
Teltonika Solutions
RUT955 User‘s Manual
97
7.6.6 Custom Rules
The custom rules page provides with the ultimate freedom in defining your rules – you can enter them straight into the iptables program. Just type them out into the text field ant it will get executed as a Linux shell script. If you are unsure of how to use iptables, check out the Internet for manuals, examples and explanations.
Teltonika Solutions
RUT955 User‘s Manual
98
Field Name
Possible values
Explanation
1.
Enable SYN flood protection
Enable/Disable
Makes router more resistant to SYN flood attacks
2.
SYN flood rate
Integer numbers
Set rate limit (packets per second) for SYN packets above which the traffic is considered flooded
3.
SYN flood burst
Integer numbers
Set burst limit for SYN packets above which the traffic is considered flooded if it exceeds the allowed rate
4.
TCP SYN cookies
Enable/Disable
Enable the use of SYN cookies (particular choices of initial TCP sequence numbers by TCP servers)
7.6.7 DDOS Prevention
The DDOS prevention page allows you to set up protections from various types of DDOS attacks. You will find information on all of these methods bellow.
7.6.7.1 SYN Flood Protection
SYN Flood Protection allows you to protect yourself from attacks that exploit part of the normal TCP three-way handshake to consume resources on the targeted server and render it unresponsive. Essentially, with SYN flood DDOS, the offender sends TCP connection requests faster than the targeted machine can process them, causing network oversaturation.
Teltonika Solutions
RUT955 User‘s Manual
99
Field Name
Possible values
Explanation
1.
Enable ICMP requests
Enable/Disable
Blocks remote ICMP echo-request type
2.
Enable ICMP limit
Enable/Disable
Enable ICMP echo-request limit in selected period
3.
Limit period
Second/Minute/Hour/Day
Select ICMP echo-request period limit.
4.
Limit
Integer numbers
Maximum ICMP echo-request number during the period
5.
Limit burst
Integer numbers
Indicate the maximum burst before the above limit kicks in
Field Name
Possible values
Explanation
1.
Enable SSH limit
Enable/Disable
Enable SSH connection limit in a selected period
2.
Limit period
Second/Minute/Hour/Day
The period in which SSH connections are to be limited
3.
Limit
Integer numbers
Maximum SSH connections during the set period
4.
Limit burst
Integer numbers
Indicate the maximum burst before the above limit kicks in
7.6.7.2 Remote ICMP requests
Some attackers use ICMP echo request packets directed to IP broadcast addresses from remote locations to generate denial-of-service attacks.
7.6.7.3 SSH Attack Prevention
Prevent SSH (allows a user to run commands on a machine's command prompt without them being physically present near the machine) attacks by limiting connections in a defined period.
Teltonika Solutions
RUT955 User‘s Manual
100
Field Name
Possible values
Explanation
1.
Enable HTTP limit
Enable/Disable
Limits HTTP connections per set period of time
2.
Limit period
Second/Minute/Hour/Day
The period in which HTTP connections are to be limited
3.
Limit
Integer number
Maximum HTTP connections during the set period
4.
Limit burst
Integer number
The maximum burst before the above limit kicks in
Field Name
Possible values
Explanation
1.
Enable HTTPS limit
Enable/Disable
Limits HTTPS connections per set period of time
2.
Limit period
Second/Minute/Hour/Day
The period in which HTTPS connections are to be limited
3.
Limit
Integer number
Maximum HTTPS connections during the set period
4.
Limit burst
Integer number
The maximum burst before the above limit kicks in
7.6.7.4 HTTP Attack Prevention
An HTTP attack sends a complete, legitimate HTTP header, which includes a 'Content-Length' field to specify the size of the message body to follow. However, the attacker then proceeds to send the actual message body at an extremely slow rate (e.g. 1 byte/110 seconds.) Due to the entire message being correct and complete, the target server will attempt to obey the 'Content-Length' field in the header, and wait for the entire body of the message to be transmitted, hence slowing it down.
7.6.7.5 HTTPS Attack Prevention
Teltonika Solutions
Loading...