opengear ACM7000 Chaw Taws Teeb Chaw Taws Teeb
Cov ntaub ntawv khoom
Specifications:
- Khoom siv: ACM7000 Chaw Taws Teeb Chaw Taws Teeb
- Qauv: ACM7000-L Resilience Gateway
- Kev Tswj Xyuas: IM7200 Infrastructure Manager
- Console Servers: ib CM7100
- Version: 5.0-2023-12 Ib
Cov lus qhia siv khoom
Kev Tiv Thaiv Kev Nyab Xeeb:
Tsis txhob txuas lossis txiav lub console server thaum muaj cua daj cua dub. Ib txwm siv lub surge suppressor los yog UPS los tiv thaiv cov cuab yeej los ntawm kev hloov pauv.
FCC ceeb toom:
Cov cuab yeej no ua raws li Tshooj 15 ntawm FCC cov cai. Kev khiav hauj lwm ntawm cov cuab yeej no yog ua raws li cov hauv qab no: (1) Cov cuab yeej no yuav tsis ua rau muaj teeb meem cuam tshuam, thiab (2) cov cuab yeej no yuav tsum lees txais ib qho kev cuam tshuam uas yuav ua rau kev ua haujlwm tsis zoo.
FAQs
- Q: Kuv puas tuaj yeem siv ACM7000 Chaw Taws Teeb Chaw Taws Teeb thaum muaj cua daj cua dub?
- A: Tsis yog, nws raug qhia kom tsis txhob txuas lossis txiav lub console server thaum muaj cua daj cua dub los tiv thaiv kev puas tsuaj.
- Q: Dab tsi version ntawm FCC cov cai ua lub cuab yeej ua raws?
- A: Cov cuab yeej ua raws li Tshooj 15 ntawm FCC cov cai.
Cov neeg siv phau ntawv
ACM7000 Chaw Taws Teeb Chaw Taws Teeb ACM7000-L Resilience Gateway IM7200 Infrastructure Manager CM7100 Console Servers
Version 5.0 – 2023-12
Kev nyab xeeb
Ua raws li kev tiv thaiv kev nyab xeeb hauv qab no thaum txhim kho thiab ua haujlwm ntawm lub console server: · Tsis txhob tshem cov hlau npog. Tsis muaj cov neeg ua haujlwm pabcuam pabcuam hauv. Kev qhib lossis tshem lub hau yuav ua rau koj muaj kev phom sij voltage uas yuav ua rau hluav taws kub lossis hluav taws xob poob siab. Xa tag nrho cov kev pabcuam rau Opengear cov neeg ua haujlwm tsim nyog. · Txhawm rau kom tsis txhob muaj hluav taws xob poob siab, cov hlua hluav taws xob tiv thaiv hauv av yuav tsum txuas nrog rau hauv av. · Nco ntsoov rub lub ntsaws, tsis yog lub cable, thaum txiav lub hwj chim qaum ntawm lub qhov (socket).
Tsis txhob txuas lossis txiav lub console server thaum muaj cua daj cua dub. Kuj tseem siv lub surge suppressor lossis UPS los tiv thaiv cov khoom siv los ntawm cov khoom siv.
FCC Daim Ntawv Ceeb Toom
Cov cuab yeej no ua raws li Tshooj 15 ntawm FCC cov cai. Kev ua haujlwm ntawm cov cuab yeej no yog ua raws li hauv qab no
Cov xwm txheej: (1) Cov cuab yeej no yuav tsis ua rau muaj kev cuam tshuam tsis zoo, thiab (2) cov cuab yeej no yuav tsum lees txais ib qho kev cuam tshuam uas yuav ua rau kev ua haujlwm tsis zoo.
Cov txheej txheem rov qab tsim nyog thiab cov cuab yeej siv kev nyab xeeb tsim nyog yuav tsum tau siv los tiv thaiv kev raug mob, tuag lossis kev puas tsuaj vim lub cev tsis ua haujlwm. Xws li kev tiv thaiv yog lub luag haujlwm ntawm tus neeg siv. Cov khoom siv console server no tsis raug pom zoo siv los ua kev txhawb nqa lub neej lossis kev kho mob. Ib qho kev hloov pauv lossis kev hloov kho uas tau ua rau lub console server ntaus ntawv yam tsis muaj kev pom zoo meej lossis kev pom zoo ntawm Opengear yuav ua rau Opengear tsis muaj kev lav phib xaub lossis lub luag haujlwm ntawm kev raug mob lossis poob los ntawm kev ua haujlwm tsis zoo. Cov khoom siv no yog siv rau sab hauv tsev thiab tag nrho cov kev sib txuas lus tsuas yog txwv rau sab hauv lub tsev.
2
Cov neeg siv phau ntawv
Copyright
©Opengear Inc. 2023. Txhua Txoj Cai. Cov ntaub ntawv hauv daim ntawv no yuav raug hloov pauv yam tsis tau ceeb toom thiab tsis sawv cev rau kev cog lus ntawm ib feem ntawm Opengear. Opengear muab cov ntaub ntawv no "raws li yog," yam tsis muaj kev lav phib xaub ntawm txhua yam, qhia lossis qhia, suav nrog, tab sis tsis txwv rau, kev lees paub ntawm kev nyab xeeb lossis kev ua lag luam rau ib lub hom phiaj tshwj xeeb. Opengear tuaj yeem txhim kho thiab / lossis hloov pauv hauv phau ntawv no lossis hauv cov khoom lag luam thiab / lossis cov haujlwm tau piav qhia hauv phau ntawv no txhua lub sijhawm. Cov khoom no tuaj yeem suav nrog kev ua tsis raug lossis kev ua yuam kev typographical. Kev hloov pauv tau ua ntu zus rau cov ntaub ntawv no; Cov kev hloov pauv no yuav raug muab tso rau hauv cov ntawv luam tawm tshiab.\
Tshooj 1
Phau ntawv no
Phau ntawv no
Phau Ntawv Qhia Tus Neeg Siv no piav qhia txog kev txhim kho, ua haujlwm, thiab tswj hwm Opengear console servers. Phau ntawv no xav tias koj paub zoo txog Is Taws Nem thiab IP tes hauj lwm, HTTP, FTP, kev ua haujlwm ruaj ntseg yooj yim, thiab koj lub koom haum hauv lub network.
1.1 Hom neeg siv
Lub console server txhawb ob chav kawm ntawm cov neeg siv:
· Cov thawj coj uas muaj kev txwv tsis pub muaj teeb meem thiab kev tswj hwm txoj cai hla lub console
neeg rau zaub mov thiab cov khoom siv txuas nrog nrog rau txhua qhov kev pabcuam thiab cov chaw nres nkoj los tswj tag nrho cov khoom siv txuas nrog thiab cov khoom siv sib txuas hauv network (tus tswv). Cov thawj coj raug teeb tsa ua cov tswv cuab ntawm pawg neeg siv admin. Tus thawj coj tuaj yeem nkag mus thiab tswj lub console server siv cov khoom siv hluav taws xob, cov kab hais kom ua Linux lossis browser-based Management Console.
· Cov neeg siv uas tau teeb tsa los ntawm tus thawj tswj hwm nrog txwv tsis pub nkag mus thiab tswj txoj cai.
Cov neeg siv muaj qhov txwv view ntawm Management Console thiab tsuas tuaj yeem nkag mus rau cov khoom siv tau tso cai thiab review chaw nres nkoj cav. Cov neeg siv no tau teeb tsa los ua cov tswv cuab ntawm ib lossis ntau dua ntawm cov neeg siv khoom siv ua ntej xws li PPTPD, dialin, FTP, pmshell, cov neeg siv, lossis pawg neeg siv uas tus thawj tswj hwm tau tsim. Lawv tsuas yog tso cai los ua cov kev tswj hwm tshwj xeeb ntawm cov khoom siv txuas nrog tshwj xeeb. Cov neeg siv, thaum muaj kev tso cai, tuaj yeem nkag mus thiab tswj cov khoom siv sib txuas lossis network txuas nrog siv cov kev pabcuam tshwj xeeb (xws li Telnet, HHTPS, RDP, IPMI, Serial dhau LAN, Tswj fais fab). Cov neeg siv chaw taws teeb yog cov neeg siv uas tsis nyob ntawm tib ntu LAN raws li lub console server. Tus neeg siv tej thaj chaw deb tuaj yeem nyob hauv txoj kev txuas mus rau cov khoom siv tswj hwm hauv Is Taws Nem, tus thawj coj hauv lwm qhov chaw ua haujlwm txuas rau lub console server dhau lub tuam txhab VPN, lossis hauv tib chav lossis tib lub chaw ua haujlwm tab sis txuas nrog VLAN cais rau lub console. server.
1.2 Tswj Console
Opengear Management Console tso cai rau koj los teeb tsa thiab saib xyuas cov yam ntxwv ntawm koj lub Opengear console server. Management Console khiav hauv qhov browser thiab muab ib qho view ntawm console server thiab tag nrho cov khoom siv txuas nrog. Cov thawj coj tuaj yeem siv Management Console los teeb tsa thiab tswj cov console server, cov neeg siv, chaw nres nkoj, hosts, cov khoom siv hluav taws xob, thiab cov ntaub ntawv sib txuas thiab kev ceeb toom. Cov neeg siv tsis yog tus thawj tswj hwm tuaj yeem siv Management Console nrog txwv cov ntawv qhia zaub mov kom tswj tau xaiv cov khoom siv, review lawv cov cav, thiab nkag mus rau lawv siv lub built-in Web lub davhlau ya nyob twg.
Lub console server khiav ib qho embedded Linux operating system, thiab tuaj yeem teeb tsa ntawm kab hais kom ua. Koj tuaj yeem tau txais cov kab hais kom ua los ntawm xov tooj ntawm tes / dial-in, txuas ncaj qha mus rau console server's serial console / modem chaw nres nkoj, lossis los ntawm kev siv SSH lossis Telnet los txuas rau console server hla LAN (lossis txuas nrog PPTP, IPsec lossis OpenVPN) .
6
Cov neeg siv phau ntawv
Rau kev hais kom ua kab interface (CLI) cov lus txib thiab cov lus qhia siab heev, rub tawm Opengear CLI thiab Scripting Reference.pdf los ntawm https://ftp.opengear.com/download/documentation/manual/previous%20versions%20archived/
1.3 Xav paub ntxiv
Yog xav paub ntxiv, sab laj: · Opengear Products Web Qhov chaw: Saib https://opengear.com/products. Txhawm rau kom tau txais cov ntaub ntawv tshiab tshaj plaws ntawm dab tsi suav nrog koj lub console server, mus saib Dab tsi suav nrog rau koj cov khoom tshwj xeeb. · Phau Ntawv Qhia Pib Ceev: Kom tau txais Phau Ntawv Qhia Pib Ceev rau koj lub cuab yeej saib https://opengear.com/support/documentation/. · Opengear Knowledge Base: Mus saib https://opengear.zendesk.com kom nkag mus rau cov lus qhia txog kev siv tshuab, cov lus qhia tech, FAQs, thiab cov ntawv ceeb toom tseem ceeb. · Opengear CLI thiab Scripting Reference: https://ftp.opengear.com/download/documentation/manual/current/IM_ACM_and_CM710 0/Opengear%20CLI%20and%20Scripting%20Reference.pdf
7
Tshooj 2:
System Configuration
COV LUS COG LUS
Tshooj no muab cov lus qhia ua ntu zus rau kev teeb tsa thawj zaug ntawm koj lub console server thiab txuas mus rau Kev Tswj lossis Kev Ua Haujlwm LAN. Cov kauj ruam yog:
Qhib lub Management Console. Hloov tus password tus thawj tswj hwm. Teem tus IP chaw nyob console server tus thawj coj LAN chaw nres nkoj. Xaiv cov kev pabcuam kom qhib thiab nkag tau cov cai. Tshooj lus no tseem tham txog cov cuab yeej sib txuas lus software uas tus thawj coj yuav siv los nkag rau lub console server, thiab teeb tsa ntawm cov chaw nres nkoj LAN ntxiv.
2.1 Tswj Console Txuas
Koj lub console server los teeb tsa nrog lub neej ntawd IP Chaw Nyob 192.168.0.1 thiab subnet npog 255.255.255.0 rau NET1 (WAN). Rau kev teeb tsa thawj zaug, peb xav kom koj txuas lub computer ncaj qha rau lub console. Yog tias koj xaiv txuas koj LAN ua ntej ua tiav cov kauj ruam pib, xyuas kom meej tias:
· Tsis muaj lwm yam khoom siv hauv LAN nrog qhov chaw nyob ntawm 192.168.0.1. · Lub console server thiab lub khoos phis tawj nyob ntawm tib ntu LAN, tsis muaj kev cuam tshuam router
khoom siv.
2.1.1 Txuas lub khoos phis tawj teeb tsa Kom teeb tsa lub console server nrog lub browser, lub khoos phis tawj txuas nrog yuav tsum muaj qhov chaw nyob IP nyob rau tib yam li lub console server (rau example, 192.168.0.100):
· Txhawm rau teeb tsa IP Chaw Nyob ntawm koj lub computer Linux lossis Unix, khiav ifconfig. · Rau Windows PCs:
1. Nyem Pib> Chaw> Tswj Vaj Huam Sib Luag thiab ob npaug nias Network Txuas. 2. Txoj nyem rau ntawm Kev Sib Txuas Hauv Cheeb Tsam thiab xaiv Cov Khoom. 3. Xaiv Internet Protocol (TCP/IP) thiab nias Properties. 4. Xaiv Siv qhov chaw nyob IP hauv qab no thiab sau cov ntsiab lus hauv qab no:
o IP chaw nyob: 192.168.0.100 o Subnet daim npog qhov ncauj: 255.255.255.0 5. Yog tias koj xav khaws koj qhov chaw IP uas twb muaj lawm rau qhov kev sib txuas network no, nyem Advanced thiab Ntxiv cov saum toj no raws li kev sib txuas IP thib ob.
2.1.2 Browser txuas
Qhib qhov browser ntawm lub PC / chaw ua haujlwm txuas thiab nkag mus rau https://192.168.0.1.
Nkag mus nrog:
Username> root Password> default
8
Cov neeg siv phau ntawv
Thawj zaug koj nkag rau hauv, koj yuav tsum hloov tus password hauv paus. Nyem Submit.
Txhawm rau ua kom tiav qhov kev hloov pauv, sau tus password tshiab dua. Nyem Submit. Lub npov txais tos zoo tshwm sim.
Yog tias koj lub cev muaj lub cellular modem koj yuav tau txais cov kauj ruam los teeb tsa lub xov tooj ntawm tes router nta: · Kho lub cellular modem kev twb kev txuas (System> Dial page. Saib Tshooj 4) · Tso cai xa mus rau lub xov tooj ntawm tes (System> Firewall page. Saib Tshooj 4) · Pab kom IP masquerading rau kev sib txuas ntawm tes (System> Firewall page. Saib Tshooj 4)
Tom qab ua tiav txhua qhov ntawm cov kauj ruam saum toj no, koj tuaj yeem rov qab mus rau cov npe teeb tsa los ntawm nias lub logo Opengear nyob rau sab saum toj sab laug ntawm lub vijtsam. CEEB TOOM Yog tias koj tsis tuaj yeem txuas mus rau Management Console ntawm 192.168.0.1 lossis yog lub neej ntawd
Username/Password tsis raug txais, rov pib dua koj lub console server (Saib Tshooj 10).
9
Tshooj 2: System Configuration
2.2 Administrator Teeb tsa
2.2.1 Hloov lub hauv paus System Password Koj yuav tsum tau hloov lub hauv paus lo lus zais thaum koj xub nkag rau hauv lub cuab yeej. Koj tuaj yeem hloov tus password no txhua lub sijhawm.
1. Nyem Serial & Network> Cov Neeg Siv & Pab Pawg lossis, ntawm lub vijtsam Zoo siab txais tos, nyem Hloov tus password tswj hwm lub neej ntawd.
2. Scroll cia thiab nrhiav tus neeg siv hauv paus nkag hauv Cov Neeg Siv thiab nyem Kho. 3. Nkag mus rau tus password tshiab hauv cov password thiab paub meej cov teb.
CEEB TOOM Xyuas Txuag Password hla firmware erases txuag tus password kom nws tsis tau erased thaum lub firmware rov pib dua. Yog tias tus password no ploj lawm, lub cuab yeej yuav tsum tau firmware rov qab.
4. Nyem Thov. Nkag mus nrog tus password tshiab 2.2.2 Teeb tsa tus thawj tswj hwm tshiab Tsim tus neeg siv tshiab nrog cov cai tswj hwm thiab nkag mus ua tus neeg siv no rau kev tswj hwm kev ua haujlwm, tsis yog siv hauv paus.
10
Cov neeg siv phau ntawv
1. Nyem Serial & Network> Cov neeg siv & pab pawg. Scroll mus rau hauv qab ntawm nplooj ntawv thiab nyem qhov Add User khawm.
2. Sau tus neeg siv lub npe. 3. Nyob rau hauv pawg pawg, kos lub thawv admin. 4. Sau ib lo lus zais rau hauv tus password thiab lees paub teb.
5. Koj tseem tuaj yeem ntxiv SSH Tso Cai Keys thiab xaiv Disable Password Authentication rau tus neeg siv no.
6. Cov kev xaiv ntxiv rau cov neeg siv no tuaj yeem teeb tsa rau nplooj ntawv no suav nrog Cov Kev Xaiv Dial-in, Accessible Hosts, Accessible Ports, thiab Accessible RPC Outlets.
7. Nyem khawm Thov nyob hauv qab ntawm qhov screen los tsim tus neeg siv tshiab no.
11
Tshooj 2: System Configuration
2.2.3 Ntxiv System Name, System Description, thiab MOTD. 1. Xaiv System> Administration. 2. Nkag mus rau System Name thiab System Description rau lub console server kom muab nws tus ID cim thiab ua kom yooj yim rau kev txheeb xyuas. Lub Npe Lub Npe tuaj yeem muaj los ntawm 1 txog 64 tus lej cim thiab cov cim tshwj xeeb hauv qab (_), rho tawm (-), thiab lub sijhawm (.). System Description tuaj yeem muaj txog 254 tus cim.
3. MOTD Banner tuaj yeem siv los tso saib cov lus ntawm hnub ntawv rau cov neeg siv. Nws tshwm nyob rau sab laug ntawm lub vijtsam hauv qab lub logo Opengear.
4. Nyem Thov.
12
Tshooj 2: System Configuration
5. Xaiv System> Administration. 6. MOTD Banner tuaj yeem siv los tso saib cov ntawv xov xwm hnub rau cov neeg siv. Nws tshwm rau ntawm
sab laug ntawm qhov screen hauv qab lub Opengear logo. 7. Nyem Thov.
2.3 Kev Teeb Lub Network
Nkag mus rau tus IP chaw nyob rau tus thawj tswj hwm Ethernet (LAN/Network/Network1) chaw nres nkoj ntawm lub console server lossis pab nws tus neeg siv DHCP kom tau txais qhov chaw nyob IP los ntawm DHCP server. Los ntawm lub neej ntawd, lub console server muaj nws tus neeg siv DHCP tau qhib thiab tau txais txhua qhov chaw nyob IP uas tau muab los ntawm DHCP server ntawm koj lub network. Hauv lub xeev thawj zaug no, console server yuav teb rau ob qho tib si nws qhov chaw nyob Static 192.168.0.1 thiab nws qhov chaw nyob DHCP.
1. Nyem System> IP thiab nyem lub Network Interface tab. 2. Xaiv DHCP lossis Static rau txoj kev teeb tsa.
Yog tias koj xaiv Static, nkag mus rau IP Chaw Nyob, Subnet Mask, Gateway thiab DNS server cov ntsiab lus. Qhov kev xaiv no cuam tshuam tus neeg siv khoom DHCP.
12
Cov neeg siv phau ntawv
3. Lub console server LAN chaw nres nkoj tau kuaj pom Ethernet kev sib txuas ceev. Siv Media drop-down daim ntawv teev npe kaw Ethernet rau 10 Mb / s lossis 100Mb / s thiab rau Full Duplex lossis Ib Nrab Duplex.
Yog tias koj ntsib cov pob ntawv poob lossis kev ua haujlwm tsis zoo hauv lub network nrog qhov pib pib, hloov Ethernet Media nqis ntawm lub console server thiab lub cuab yeej nws txuas nrog. Feem ntau, hloov ob qho tib si rau 100baseTx-FD (100 megabits, tag nrho duplex).
4. Yog tias koj xaiv DHCP, lub console server yuav nrhiav cov ntsiab lus teeb tsa los ntawm DHCP server. Qhov kev xaiv no kaw qhov chaw nyob zoo li qub. Lub console server MAC tuaj yeem pom ntawm daim ntawv lo ntawm lub hauv paus phaj.
5. Koj tuaj yeem nkag mus rau qhov chaw nyob thib ob lossis cov npe sib cais ntawm cov chaw nyob hauv CIDR cov cim, xws li 192.168.1.1/24 ua tus IP Alias.
6. Nyem Thov 7. Rov qab txuas lub browser ntawm lub computer uas txuas nrog lub console server los ntawm kev nkag mus
http://your new IP address.
Yog tias koj hloov lub console server IP chaw nyob, koj yuav tsum rov kho koj lub computer kom muaj qhov chaw nyob IP hauv tib lub network xws li qhov chaw nyob tshiab console server. Koj tuaj yeem teeb tsa MTU ntawm Ethernet interfaces. Qhov no yog qhov kev xaiv siab heev los siv yog tias koj qhov kev xa tawm tsis ua haujlwm nrog lub neej ntawd MTU ntawm 1500 bytes. Txhawm rau teeb tsa MTU, nyem qhov System> IP thiab nyem lub Network Interface tab. Scroll cia rau hauv MTU teb thiab sau tus nqi xav tau. Cov txiaj ntsig siv tau yog los ntawm 1280 txog 1500 rau 100-megabit interfaces, thiab 1280 rau 9100 rau gigabit interfaces Yog tias kev sib txuas lossis kev sib txuas tau teeb tsa, MTU teeb tsa ntawm nplooj ntawv Network Interface yuav raug teeb tsa ntawm cov kev sib tshuam uas yog ib feem ntawm tus choj lossis daim ntawv cog lus. . CEEB TOOM Hauv qee kis, tus neeg siv tau teev tseg MTU yuav tsis siv. Qee tus neeg tsav tsheb NIC tuaj yeem hloov kho MTUs mus rau qhov siab tshaj plaws uas tau tso cai thiab lwm tus yuav rov qab qhov yuam kev. Koj tuaj yeem siv CLI hais kom ua los tswj MTU Loj: teeb tsa
# config -s config.interfaces.wan.mtu=1380 kos
# config -g config.interfaces.wan config.interfaces.wan.address 192.168.2.24 config.interfaces.wan.ddns.provider tsis muaj config.interfaces.wan.gateway 192.168.2.1 config.interfaces.wan.ipv6.mo. .interfaces.wan.media Nws pib config.interfaces.wan.mode static config.interfaces.wan.mtu 1380 config.interfaces.wan.netmask 255.255.255.0
13
Tshooj 2: System Configuration
2.3.1 IPv6 configuration Lub console server Ethernet interfaces txhawb IPv4 los ntawm lub neej ntawd. Lawv tuaj yeem raug teeb tsa rau kev ua haujlwm IPv6:
1. Nyem System> IP. Nyem qhov General Settings tab thiab kos Enable IPv6. Yog xav tau, nyem qhov Disable IPv6 rau Cellular checkbox.
2. Configure IPv6 tsis nyob rau txhua nplooj ntawv interface. IPv6 tuaj yeem teeb tsa rau hom Tsis Siv Neeg, uas yuav siv SLAAC lossis DHCPv6 los teeb tsa chaw nyob, txoj hauv kev, thiab DNS, lossis hom zoo li qub, uas tso cai rau cov ntaub ntawv chaw nyob nkag mus.
2.3.2 Dynamic DNS (DDNS) configuration Nrog Dynamic DNS (DDNS), ib lub console server uas nws tus IP chaw nyob yog dynamically muab tau nyob rau siv ib tug taag host los yog sau npe. Tsim ib tus as khauj nrog DDNS tus muab kev pabcuam uas koj xaiv. Thaum koj teeb tsa koj tus account DDNS, koj xaiv tus username, password, thiab hostname uas koj yuav siv los ua lub npe DNS. DDNS cov chaw muab kev pabcuam cia koj xaiv lub npe host URL thiab teeb tsa tus IP chaw nyob thawj zaug kom sib haum rau lub npe hostname URL.
14
Cov neeg siv phau ntawv
Txhawm rau pab thiab teeb tsa DDNS ntawm ib qho ntawm Ethernet lossis cellular network sib txuas ntawm lub console server. 1. Nyem System> IP thiab nqes mus rau ntu Dynamic DNS. Xaiv koj tus kws kho mob DDNS
los ntawm daim ntawv teev npe Dynamic DNS. Koj tuaj yeem teeb tsa DDNS cov ntaub ntawv hauv qab Cellular Modem tab hauv System> Dial.
2. Hauv DDNS Hostname, nkag mus rau qhov tsim nyog DNS hostname rau koj lub console server xws li yourhostname.dyndns.org.
3. Nkag mus rau DDNS Username thiab DDNS Password rau DDNS tus muab kev pabcuam account. 4. Qhia qhov ncua sij hawm siab kawg ntawm kev hloov tshiab hauv hnub. Ib qho DDNS hloov tshiab yuav raug xa mus txawm tias qhov
chaw nyob tsis tau hloov. 5. Qhia qhov tsawg kawg ntawm lub sijhawm kuaj xyuas qhov chaw nyob hloov hauv vib nas this. Hloov tshiab yuav
xa mus yog qhov chaw nyob tau hloov lawm. 6. Qhia meej qhov kev sim siab tshaj plaws rau ib qho kev hloov tshiab uas yog tus naj npawb ntawm lub sijhawm los sim hloov tshiab
ua ntej tso tseg. Qhov no yog 3 los ntawm lub neej ntawd. 7. Nyem Thov.
15
Tshooj 2: System Configuration
2.3.3 EAPoL hom rau WAN, LAN thiab OOBFO
(OOBFO muaj feem xyuam rau IM7216-2-24E-DAC nkaus xwb)
Tshajview ntawm EAPoL IEEE 802.1X, los yog PNAC (Port-based Network Access Control) ua rau kev siv lub cev nkag mus rau cov yam ntxwv ntawm IEEE 802 LAN infrastructures txhawm rau muab ib qho kev lees paub thiab tso cai cov cuab yeej txuas nrog LAN chaw nres nkoj uas muaj taw tes-rau- point kev twb kev txuas yam ntxwv, thiab ntawm kev tiv thaiv kev nkag mus rau qhov chaw nres nkoj nyob rau hauv cov ntaub ntawv uas authentication thiab tso cai tsis ua hauj lwm. Ib qhov chaw nres nkoj hauv cov ntsiab lus no yog ib qho taw qhia ntawm kev txuas mus rau LAN infrastructure.
Thaum tus tshiab wireless lossis wired node (WN) thov nkag mus rau LAN cov peev txheej, qhov chaw nkag (AP) nug txog WN tus kheej. Tsis muaj lwm yam kev tsheb thauj mus los tshaj li EAP tau tso cai ua ntej WN tau lees paub (qhov "chaw nres nkoj" raug kaw, lossis "tsis lees paub"). Lub wireless node uas thov authentication feem ntau hu ua Supplicant, Tus Supplicant yog lub luag hauj lwm rau teb rau Authenticator cov ntaub ntawv uas yuav tsim nws daim ntawv pov thawj. Tib yam mus rau qhov chaw nkag; tus Authenticator tsis yog qhov chaw nkag. Es tsis txhob, qhov chaw nkag tau muaj tus Authenticator. Tus Authenticator tsis tas yuav tsum nyob hauv qhov chaw nkag; nws tuaj yeem yog cov khoom siv sab nraud. Cov txheej txheem Authentication hauv qab no yog siv:
· EAP-MD5 supplicant o Txoj Kev EAP MD5-Challenge siv cov npe neeg siv / tus lej zais
· EAP-PEAP-MD5 o EAP PEAP (Protected EAP) MD5 authentication method siv cov neeg siv ntawv pov thawj thiab CA daim ntawv pov thawj
· EAP-TLS o EAP TLS (Transport Layer Security) authentication method yuav tsum muaj daim ntawv pov thawj CA, daim ntawv pov thawj tus neeg siv khoom thiab tus yuam sij ntiag tug.
EAP raws tu qauv, uas yog siv rau authentication, yog thawj zaug siv rau dial-up PPP. Tus kheej yog tus neeg siv lub npe, thiab PAP lossis CHAP authentication tau siv los xyuas tus neeg siv tus password. Raws li tus kheej raug xa mus kom meej (tsis yog encrypted), tus neeg phem phem yuav kawm tau tus neeg siv tus kheej. Yog li siv "Identity nkaum"; tus neeg tiag tiag tsis raug xa mus ua ntej qhov encrypted TLS qhov.
16
Cov neeg siv phau ntawv
Tom qab tus neeg raug xa mus lawm, cov txheej txheem authentication pib. Cov txheej txheem siv nruab nrab ntawm Tus Neeg Xa Khoom thiab Tus Neeg Pov Thawj yog EAP, (lossis EAPoL). Tus Authenticator rov encapsulates EAP cov lus rau RADIUS hom, thiab xa lawv mus rau Authentication Server. Thaum lub sij hawm authentication, Authenticator relays pob ntawv ntawm tus neeg thov kev pab thiab tus neeg rau zaub mov Authentication. Thaum cov txheej txheem authentication tiav, tus neeg rau zaub mov Authentication xa cov lus ua tiav (lossis tsis ua haujlwm, yog tias qhov kev lees paub ua tsis tiav). Tus Authenticator ces qhib "chaw nres nkoj" rau tus neeg thov. Kev lees paub qhov chaw tuaj yeem nkag mus tau los ntawm EAPoL Supplicant Settings nplooj ntawv. Cov xwm txheej ntawm EAPoL tam sim no tau nthuav tawm nthuav dav ntawm nplooj ntawv Status Statistics ntawm EAPoL tab:
Ib qho abstraction ntawm EAPoL ntawm ROLEs network tau tshwm sim hauv ntu "Kev Sib Txuas Tus Thawj Tswj" ntawm Dashboard interface.
17
Tshooj 2: System Configuration
Qhia hauv qab no yog ib qho example ntawm kev ua tiav authentication:
IEEE 802.1x (EAPOL) kev txhawb nqa ntawm qhov hloov pauv chaw nres nkoj ntawm IM7216-2-24E-DAC thiab ACM7004-5: Txhawm rau zam lub voj voog, cov neeg siv yuav tsum tsis txhob ntsaws ntau tshaj ib qho chaw nres nkoj mus rau tib theem siab hloov.
18
Cov neeg siv phau ntawv
2.4 Kev Pabcuam Nkag thiab Kev Tiv Thaiv Brute Force
Tus thawj coj tuaj yeem nkag mus rau lub console server thiab txuas nrog cov chaw nres nkoj thiab cov khoom siv tswj hwm siv ntau yam kev nkag mus rau cov txheej txheem / kev pabcuam. Rau txhua qhov nkag
· Cov kev pabcuam yuav tsum tau teeb tsa ua ntej thiab qhib kom khiav ntawm lub console server. · Kev nkag los ntawm firewall yuav tsum tau qhib rau txhua qhov kev sib txuas hauv network. Txhawm rau pab thiab teeb tsa ib qho kev pabcuam: 1. Nyem System> Services thiab nyem qhov Service Settings tab.
2. Qhib thiab teeb tsa cov kev pabcuam yooj yim:
HTTP
Los ntawm lub neej ntawd, HTTP kev pabcuam tau ua haujlwm thiab tsis tuaj yeem ua haujlwm tag nrho. Los ntawm lub neej ntawd, HTTP kev nkag tau raug kaw ntawm txhua qhov kev sib tshuam. Peb pom zoo kom qhov kev nkag mus no tseem tsis tau yog tias lub console server nkag mus rau hauv Is Taws Nem.
Hloov HTTP tso cai rau koj los teeb tsa lwm qhov chaw nres nkoj HTTP los mloog. Qhov kev pabcuam HTTP yuav txuas ntxiv mloog ntawm TCP chaw nres nkoj 80 rau CMS thiab kev sib txuas lus sib txuas tab sis yuav nkag tsis tau los ntawm firewall.
HTTPS
Los ntawm lub neej ntawd, HTTPS kev pabcuam tau khiav thiab qhib rau txhua qhov kev sib txuas hauv network. Nws raug pom zoo tias tsuas yog HTTPS nkag mus siv yog tias lub console server yuav tsum tau tswj hwm hauv ib lub network pej xeem. Qhov no ua kom cov thawj tswj hwm muaj kev nyab xeeb browser nkag mus rau txhua cov ntawv qhia zaub mov ntawm lub console server. Nws kuj tso cai rau cov neeg siv teeb tsa tsim nyog kom ruaj ntseg browser nkag mus rau xaiv Tswj cov ntawv qhia zaub mov.
HTTPS cov kev pabcuam tuaj yeem raug kaw lossis rov qhib dua los ntawm kev txheeb xyuas HTTPS Web Kev tswj hwm thiab lwm qhov chaw nres nkoj tau teev tseg (qhov chaw nres nkoj qub yog 443).
Telnet
Los ntawm lub neej ntawd, Telnet kev pabcuam tab tom ua haujlwm tab sis tsis ua haujlwm ntawm txhua qhov kev sib txuas hauv network.
Telnet tuaj yeem siv los muab tus thawj coj nkag mus rau qhov system hais kom ua kab plhaub. Cov kev pabcuam no yuav muaj txiaj ntsig zoo rau cov thawj coj hauv zos thiab cov neeg siv nkag mus rau cov consoles xaiv. Peb pom zoo kom koj lov tes taw qhov kev pabcuam no yog tias lub console server raug tswj hwm nyob deb.
Lub Enable Telnet hais kom ua plhaub checkbox yuav pab tau lossis lov tes taw Telnet kev pabcuam. Lwm qhov chaw nres nkoj Telnet los mloog tuaj yeem teev nyob rau hauv Alternate Telnet Chaw nres nkoj (nrawm chaw nres nkoj yog 23).
17
Tshooj 2: System Configuration
SSH
Qhov kev pabcuam no muab kev nyab xeeb SSH nkag mus rau lub console server thiab txuas nrog
thiab los ntawm lub neej ntawd SSH kev pabcuam tau khiav thiab qhib rau txhua qhov kev sib tshuam. Nws yog
pom zoo kom koj xaiv SSH raws li txoj cai uas tus thawj tswj hwm txuas rau
lub console server hauv Is Taws Nem lossis lwm lub network pej xeem. Qhov no yuav muab
Kev lees paub kev sib txuas lus ntawm SSH tus thov kev pab cuam ntawm cov chaw taws teeb
computer thiab SSH sever hauv console server. Yog xav paub ntxiv txog SSH
configuration Saib Tshooj 8 – Authentication.
Lub Enable SSH command plhaub checkbox yuav pab tau lossis lov tes taw qhov kev pabcuam no. Lwm qhov chaw SSH rau mloog tuaj yeem teev nyob rau hauv SSH cov lus txib plhaub chaw nres nkoj (qhov chaw nres nkoj yog 22).
3. Qhib thiab teeb tsa lwm cov kev pabcuam:
TFTP/FTP Yog tias pom ib daim npav USB flash lossis flash sab hauv ntawm lub console server, tshawb xyuas Enable TFTP (FTP) kev pabcuam ua rau qhov kev pabcuam no thiab teeb tsa lub neej ntawd tftp thiab ftp server ntawm USB flash. Cov servers no yog siv los khaws config files, tswj kev nkag mus thiab cov ntaub ntawv sib pauv thiab lwm yam. Files pauv siv tftp thiab ftp yuav muab cia rau hauv /var/mnt/storage.usb/tftpboot/ (los yog /var/mnt/storage.nvlog/tftpboot/ ntawm ACM7000series li). Unchecking Enable TFTP (FTP) kev pab cuam yuav lov tes taw TFTP (FTP) kev pab cuam.
DNS Relay Checking Enable DNS Server / Relay enables DNS relay feature yog li cov neeg siv tuaj yeem teeb tsa nrog lub console server tus IP rau lawv qhov chaw DNS server, thiab console server yuav xa cov lus nug DNS mus rau DNS server tiag.
Web Terminal Checking Enable Web Terminal tso cai web browser nkag mus rau qhov system hais kom ua kab plhaub ntawm Tswj> Terminal.
4. Txheeb xyuas lwm tus lej chaw nres nkoj rau Raw TCP, ncaj qha Telnet/SSH thiab tsis muaj kev lees paub Telnet/SSH cov kev pabcuam. Lub console server siv qhov tshwj xeeb rau TCP / IP chaw nres nkoj rau ntau yam kev nkag
cov kev pabcuam uas cov neeg siv tuaj yeem siv nkag mus rau cov khoom siv txuas nrog cov chaw nres nkoj serial (raws li tau hais hauv Tshooj 3 Configure Serial Ports). Tus thawj tswj hwm tuaj yeem teeb tsa lwm qhov sib txawv rau cov kev pabcuam no thiab cov chaw nres nkoj thib ob no yuav raug siv ntxiv rau qhov tsis raug.
Lub neej ntawd TCP/IP chaw nres nkoj chaw nyob rau Telnet nkag yog 2000, thiab qhov ntau rau Telnet yog IP Chaw Nyob: Chaw nres nkoj (2000 + serial chaw nres nkoj #) piv txwv li 2001 2048. Yog tias tus thawj tswj hwm tau teeb tsa 8000 ua lub hauv paus thib ob rau Telnet, serial chaw nres nkoj #2 ntawm lub console server tuaj yeem siv Telnet nkag ntawm IP
Chaw Nyob: 2002 thiab IP Chaw Nyob: 8002. Lub hauv paus pib rau SSH yog 3000; rau Raw TCP yog 4000; thiab rau RFC2217 nws yog 5000
5. Lwm cov kev pabcuam tuaj yeem qhib thiab teeb tsa los ntawm cov ntawv qhia zaub mov no los ntawm kev xaiv Nyem qhov no los teeb tsa:
Nagios Access to the Nagios NRPE monitoring daemon
NTAU
Nkag mus rau NUT UPS saib xyuas daemon
SNMP Enables snmp hauv console server. SNMP yog neeg xiam los ntawm lub neej ntawd
NTP
6. Nyem Thov. Cov lus pom zoo tshwm sim: Cov lus hloov pauv rau kev teeb tsa ua tiav
Cov Kev Pabcuam Access tej chaw tuaj yeem tsim los tso cai lossis thaiv kev nkag. Qhov no qhia tau hais tias cov neeg ua haujlwm pabcuam tau siv tau dhau los ntawm txhua lub network interface los txuas rau lub console server thiab los ntawm console server kom txuas cov khoom siv sib txuas thiab network txuas.
18
Cov neeg siv phau ntawv
1. Xaiv qhov Service Access tab ntawm qhov System> Services page.
2. Qhov no qhia txog cov kev pabcuam qhib rau lub console server's network interfaces. Nyob ntawm tus qauv console server tshwj xeeb cov kev cuam tshuam tshwm sim muaj xws li: · Network interface (rau tus thawj tswj hwm Ethernet kev sib txuas) · Management LAN / OOB Failover (thib ob Ethernet kev sib txuas) · Dialout / Cellular (V90 thiab 3G modem) · Dial-in (sab hauv los yog lwm V90 modem) · VPN (IPsec lossis Qhib VPN kev sib txuas ntawm txhua lub network interface)
3. Kos/uncheck rau txhua lub network uas cov kev pab cuam yuav tsum tau enabled/disabled Cov teb rau ICMP echoes (piv txwv li ping) kev pab cuam nkag mus xaiv uas yuav configured ntawm no stage. Qhov no tso cai rau lub console server teb rau cov lus thov ICMP echo tuaj. Ping yog enabled los ntawm lub neej ntawd. Txhawm rau kom muaj kev ruaj ntseg ntxiv, koj yuav tsum lov tes taw qhov kev pabcuam no thaum koj ua tiav qhov kev teeb tsa thawj zaug Koj tuaj yeem tso cai rau cov khoom siv chaw nres nkoj nkag los ntawm cov npe sib txuas sib txuas siv Raw TCP, ncaj qha Telnet / SSH, tsis muaj kev lees paub Telnet / SSH cov kev pabcuam, thiab lwm yam.
4. Nyem Thov Web Kev Tswj Chaw Pabcuam HSTS checkbox ua rau HTTP nruj kev thauj mus los ruaj ntseg. HSTS hom txhais tau hais tias StrictTransport-Security header yuav tsum raug xa hla HTTPS thauj. Ua raws web browser nco txog lub header no, thiab thaum nug kom hu rau tib tus tswv tsev dhau HTTP (dawb) nws yuav cia li hloov mus rau
19
Tshooj 2: System Configuration
HTTPS ua ntej sim HTTP, tsuav yog qhov browser tau nkag mus rau qhov chaw ruaj ntseg ib zaug thiab pom STS header.
Brute Force Protection Brute quab yuam kev tiv thaiv (Micro Fail2ban) ib ntus thaiv qhov chaw IPs uas qhia cov cim tsis zoo, xws li ntau dhau lo lus zais tsis ua tiav. Qhov no yuav pab tau thaum lub cuab yeej cov kev pabcuam network raug cuam tshuam rau lub network tsis ntseeg xws li cov pej xeem WAN thiab cov ntawv tawm tsam lossis software worms tau sim twv (brute force) cov neeg siv cov ntaub ntawv pov thawj thiab tau txais kev tso cai tsis raug cai.
Brute Force Protection tuaj yeem qhib rau cov kev pabcuam teev tseg. Los ntawm lub neej ntawd, ib zaug kev tiv thaiv tau qhib 3 lossis ntau dua kev sib txuas ua tsis tiav hauv 60 vib nas this los ntawm qhov tshwj xeeb IP ua rau nws raug txwv los ntawm kev sib txuas rau lub sijhawm teeb tsa. Kev sim txwv thiab ncua sij hawm txwv yuav raug kho. Active Bans kuj tau teev tseg thiab tej zaum yuav raug kho dua tshiab los ntawm reloading nplooj ntawv.
Nco tseg
Thaum khiav ntawm lub network tsis ntseeg, xav txog kev siv ntau lub tswv yim yog siv los kaw cov chaw taws teeb nkag. Qhov no suav nrog SSH pej xeem qhov kev lees paub qhov tseem ceeb, VPN, thiab Cov Cai Hluav Taws Xob rau
tso cai rau cov chaw taws teeb nkag los ntawm cov chaw ntseeg siab nkaus xwb. Saib ntawm Opengear Knowledge Base kom paub meej.
2.5 Kev sib txuas lus Software
Koj tau teeb tsa cov txheej txheem nkag rau cov neeg siv khoom siv thaum txuas mus rau console server. Cov neeg siv khoom siv kuj siv cov kev cai no thaum nkag mus rau console server serial txuas nrog cov khoom siv thiab network txuas nrog. Koj xav tau cov cuab yeej sib txuas lus software teeb tsa ntawm tus thawj tswj hwm thiab tus neeg siv lub computer. Txhawm rau txuas koj tuaj yeem siv cov cuab yeej xws li PuTTY thiab SSHTerm.
20
Cov neeg siv phau ntawv
Kev lag luam muaj cov khoom sib txuas ua ke ob peb qhov kev ntseeg siab SSH tunneling raws tu qauv nrog cov cuab yeej siv nrov xws li Telnet, SSH, HTTP, HTTPS, VNC, RDP los muab qhov taw tes-thiab-nias ruaj ntseg tswj chaw taws teeb nkag mus rau txhua lub tshuab thiab cov cuab yeej raug tswj. Cov ntaub ntawv hais txog kev siv cov khoom sib txuas rau qhov browser nkag mus rau console server's Management Console, Telnet / SSH nkag mus rau console server hais kom ua kab, thiab TCP / UDP txuas rau cov tswv uas txuas nrog lub network txuas nrog lub console server tuaj yeem pom hauv Tshooj 5. Cov khoom sib txuas tuaj yeem ua tau. ntsia rau ntawm Windows PCs, Mac OS X thiab feem ntau Linux, UNIX thiab Solaris systems.
2.6 Tswj Network Configuration
Console servers muaj cov chaw nres nkoj txuas ntxiv uas tuaj yeem teeb tsa los muab kev tswj hwm LAN nkag mus thiab / lossis tsis ua haujlwm lossis tawm ntawm pawg nkag. 2.6.1 Pab kom Management LAN Console servers tuaj yeem teeb tsa yog li qhov chaw nres nkoj Ethernet thib ob muab kev tswj hwm LAN rooj vag. Lub rooj vag muaj firewall, router thiab DHCP server nta. Koj yuav tsum txuas ib qho kev hloov LAN sab nraud rau Network 2 txhawm rau txuas cov tswv rau qhov kev tswj hwm LAN:
CEEB TOOM Qhov chaw nres nkoj Ethernet thib ob tuaj yeem teeb tsa raws li Kev Tswj Xyuas LAN lub rooj vag chaw nres nkoj lossis ua qhov chaw nres nkoj OOB/Failover. Xyuas kom koj tsis tau faib NET2 raws li Failover Interface thaum koj teeb tsa tus thawj tswj hwm kev sib txuas ntawm System> IP ntawv qhia zaub mov.
21
Tshooj 2: System Configuration
Txhawm rau teeb tsa Management LAN rooj vag: 1. Xaiv qhov Management LAN Interface tab ntawm qhov System> IP zaub mov thiab uncheck Disable. 2. Kho qhov chaw nyob IP thiab Subnet Mask rau Management LAN. Cia cov DNS teb tsis muaj. 3. Nyem Thov.
Kev tswj lub rooj vag muaj nuj nqi yog qhib nrog lub neej ntawd firewall thiab router cov cai teeb tsa yog li Kev Tswj LAN tsuas yog siv tau los ntawm SSH chaw nres nkoj xa mus. Qhov no ua kom cov chaw taws teeb thiab kev sib txuas hauv zos rau Managed devices ntawm Management LAN muaj kev nyab xeeb. Cov chaw nres nkoj LAN kuj tuaj yeem teeb tsa hauv kev sib txuas los yog sib koom ua ke lossis manually teeb tsa los ntawm kab hais kom ua. 2.6.2 Configure DHCP server Lub DHCP neeg rau zaub mov ua rau tsis siv neeg faib IP chaw nyob rau cov khoom siv ntawm Management LAN uas khiav DHCP cov neeg siv khoom. Txhawm rau pab kom DHCP server:
1. Nyem System> DHCP Server. 2. Nyob rau Network Interface tab, Kos Enable DHCP Server.
22
Cov neeg siv phau ntawv
3. Nkag mus rau qhov chaw nyob Gateway uas yuav muab rau DHCP cov neeg siv khoom. Yog tias daim teb no raug tso tseg, console server tus IP chaw nyob yog siv.
4. Nkag mus rau Primary DNS thiab Secondary DNS chaw nyob los tawm DHCP cov neeg siv khoom. Yog tias daim teb no raug tso tseg, console server tus IP chaw nyob yog siv.
5. Optionally nkag mus rau lub npe lub npe suffix los muab DHCP cov neeg siv khoom. 6. Nkag mus rau Default Lease time and Maximum Lease time in seconds. Qhov no yog lub sijhawm
tias tus IP chaw nyob dynamically tau siv tau ua ntej tus neeg siv yuav tsum thov nws dua. 7. Nyem Thov Lub DHCP neeg rau zaub mov teeb meem IP chaw nyob los ntawm cov chaw nyob uas tau teev tseg: 1. Nyem Ntxiv rau hauv Dynamic Address Allocation Pools teb. 2. Nkag mus rau DHCP Pool Pib Chaw Nyob thiab Chaw Nyob Kawg. 3. Nyem Thov.
23
Tshooj 2: System Configuration
DHCP neeg rau zaub mov kuj tseem txhawb nqa qhov chaw nyob IP ua ntej muab faib rau MAC chaw nyob tshwj xeeb thiab khaws cov chaw nyob IP kom siv los ntawm cov tswv sib txuas nrog cov chaw nyob IP ruaj. Txhawm rau khaws qhov chaw nyob IP rau ib tus tswv tsev tshwj xeeb:
1. Nyem Ntxiv nyob rau hauv qhov chaw nyob Reserved teb. 2. Sau lub Hostname, Hardware Chaw Nyob (MAC) thiab Statically Reserved IP chaw nyob rau
tus neeg siv khoom DHCP thiab nyem Thov.
Thaum DHCP tau faib cov chaw nyob, nws raug nquahu kom luam cov no rau hauv daim ntawv teev npe ua ntej kom tib tus IP chaw nyob yog qhov chaw nyob hauv qhov xwm txheej ntawm reboot.
24
Cov neeg siv phau ntawv
2.6.3 Xaiv Failover lossis broadband OOB Console servers muab qhov kev xaiv tsis ua haujlwm yog li thaum muaj teeb meem siv lub ntsiab LAN txuas rau kev nkag mus rau console server siv lwm txoj hauv kev siv. Txhawm rau kom tsis txhob ua yuam kev:
1. Xaiv cov nplooj ntawv Network Interface ntawm qhov System> IP zaub mov 2. Xaiv qhov Failover Interface siv thaum muaj xwm txheej outage ntawm lub network loj.
3. Nyem Thov. Failover ua haujlwm tom qab koj teev cov chaw sab nraud kom raug soj ntsuam kom ua rau tsis ua haujlwm thiab teeb tsa cov chaw nres nkoj tsis ua haujlwm.
2.6.4 Kev sib sau cov chaw nres nkoj hauv lub network Los ntawm lub neej ntawd, console server's Management LAN network ports tuaj yeem nkag tau siv SSH tunneling / chaw nres nkoj xa mus lossis los ntawm kev tsim ib qho IPsec VPN qhov rau lub console server. Tag nrho cov wired network ports ntawm lub console servers tuaj yeem sib sau ua ke los ntawm kev txuas los yog sib koom ua ke.
25
Cov neeg siv phau ntawv
· Los ntawm lub neej ntawd, Interface Aggregation yog neeg xiam rau ntawm System> IP> General Settings menu · Xaiv Choj Interfaces lossis Bond Interfaces
o Thaum txuas txuas tau qhib, kev sib txuas hauv network tau xa mus thoob plaws txhua qhov chaw nres nkoj Ethernet uas tsis muaj kev txwv firewall. Txhua qhov chaw nres nkoj Ethernet yog tag nrho cov pob tshab txuas ntawm cov ntaub ntawv txuas txheej (txheej 2) yog li lawv khaws lawv qhov chaw nyob MAC tshwj xeeb
o Nrog kev sib txuas, kev sib txuas hauv network tau nqa ntawm cov chaw nres nkoj tab sis tam sim no nrog ib qho chaw nyob MAC
Ob hom kev tshem tawm tag nrho cov Management LAN Interface thiab Out-of-Band/Failover Interface functions thiab lov tes taw DHCP Server · Hauv hom kev sib sau tag nrho cov chaw nres nkoj Ethernet tau sib sau ua ke siv Network Interface menu
25
Tshooj 2: System Configuration
2.6.5 Static routes Static routes muab txoj hauv kev ceev heev rau kev xa cov ntaub ntawv los ntawm ib lub subnet mus rau lwm lub subnet. Koj tuaj yeem nyuaj code ib txoj hauv kev uas qhia lub console server / router kom tau mus rau qee qhov subnet siv ib txoj hauv kev. Qhov no yuav muaj txiaj ntsig zoo rau kev nkag mus rau ntau yam subnets ntawm qhov chaw nyob deb thaum siv OOB kev sib txuas ntawm tes.
Txhawm rau ntxiv rau txoj kev zoo li qub mus rau cov lus qhia ntawm System:
1. Xaiv qhov Route Settings tab ntawm System> IP General Settings menu.
2. Nyem Txoj Kev Tshiab
3. Sau ib Route Name rau txoj kev.
4. Nyob rau hauv Destination Network/Host teb, nkag mus rau tus IP chaw nyob ntawm lub hom phiaj network/host uas txoj kev muab nkag mus rau.
5. Nkag mus rau tus nqi hauv Destination netmask teb uas txheeb xyuas qhov chaw network lossis tus tswv tsev. Txhua tus lej ntawm 0 thiab 32. Ib lub npog ntsej muag subnet ntawm 32 qhia txog tus tswv tsev.
6. Nkag mus rau Route Gateway nrog tus IP chaw nyob ntawm lub router uas yuav xa cov pob ntawv mus rau qhov chaw nyob network. Tej zaum qhov no yuav raug tso tseg.
7. Xaiv qhov Interface siv kom ncav cuag qhov chaw, tej zaum yuav raug tso tseg tsis muaj.
8. Sau tus nqi hauv Metric teb uas sawv cev rau qhov ntsuas ntawm qhov kev sib txuas no. Siv ib tus lej sib npaug lossis ntau dua 0. Qhov no tsuas yog yuav tsum tau teeb tsa yog tias ob lossis ntau txoj kev tsis sib haum xeeb lossis muaj lub hom phiaj sib tshooj.
9. Nyem Thov.
Nco tseg
Nplooj ntawv qhia txog txoj kev muab cov npe ntawm cov network interfaces thiab modems uas ib txoj hauv kev tuaj yeem khi. Nyob rau hauv cov ntaub ntawv ntawm ib tug modem, txoj kev yuav txuas mus rau ib qho kev sib tham dialup tsim los ntawm cov cuab yeej ntawd. Ib txoj hauv kev tuaj yeem teev nrog lub rooj vag, ib qho interface lossis ob qho tib si. Yog hais tias tus txheej txheem interface tsis ua haujlwm, cov kev teeb tsa rau qhov interface yuav tsis ua haujlwm.
26
Tus neeg siv phau ntawv 3. SERIAL PORT, HOST, Device & USER CONFIGURATION
Lub console server tso cai rau kev nkag mus thiab tswj cov khoom siv sib txuas thiab cov khoom siv txuas nrog network (tus tswv). Tus thawj coj yuav tsum teeb tsa txoj cai nkag mus rau txhua yam ntawm cov cuab yeej no thiab qhia meej cov kev pabcuam uas tuaj yeem siv los tswj cov khoom siv. Tus thawj coj tseem tuaj yeem teeb tsa cov neeg siv tshiab thiab qhia meej txhua tus neeg siv tus kheej nkag mus thiab tswj cov cai.
Tshooj lus no suav nrog txhua kauj ruam hauv kev teeb tsa lub network txuas thiab txuas txuas txuas nrog: · Serial Ports teeb tsa cov txheej txheem siv cov khoom siv sib txuas sib txuas · Cov neeg siv & Pawg teeb tsa cov neeg siv thiab txhais cov kev tso cai nkag rau txhua tus ntawm cov neeg siv no · Kev lees paub qhov no suav nrog ntau dua nthuav dav hauv Tshooj 8 · Network Hosts configuring nkag mus rau hauv lub zos network kev cob cog rua computers los yog cov khoom siv (tus tswv) · Configuring Trusted Networks – xaiv IP chaw nyob uas ntseeg cov neeg siv nkag los ntawm · Cascading thiab Redirection ntawm Serial Console Ports · Txuas rau lub hwj chim (UPS, PDU, thiab IPMI) thiab kev saib xyuas ib puag ncig (EMD) cov cuab yeej · Serial Port Redirection siv PortShare windows thiab Linux cov neeg siv khoom · Cov cuab yeej tswj hwm - nthuav qhia kev sib koom ua ke view ntawm tag nrho cov kev sib txuas · IPSec enabling VPN kev twb kev txuas · OpenVPN · PPTP
3.1 Configure Serial Ports
Thawj kauj ruam hauv kev teeb tsa lub chaw nres nkoj serial yog los teeb tsa Cov Chaw Sib Tham xws li cov kev cai thiab RS232 tsis tau siv rau cov ntaub ntawv txuas mus rau qhov chaw nres nkoj (xws li baud tus nqi). Xaiv hom hom twg qhov chaw nres nkoj yuav ua haujlwm nyob rau hauv. Txhua qhov chaw nres nkoj tuaj yeem tsim los txhawb ib qho ntawm cov haujlwm no:
· Hom neeg xiam oob qhab yog lub neej ntawd, qhov chaw nres nkoj serial tsis ua haujlwm
27
Tshooj 3:
Serial Chaw nres nkoj, tswv tsev, ntaus ntawv & tus neeg siv kev teeb tsa
· Console server hom enables kev nkag mus rau serial console chaw nres nkoj ntawm cov serially txuas li
· Hom ntaus ntawv teeb tsa lub chaw nres nkoj mus rau kev sib txuas lus nrog cov ntse serial tswj PDU, UPS lossis Environmental Monitor Devices (EMD)
· Terminal Server hom teeb tsa qhov chaw nres nkoj serial kom tos qhov kev nkag mus rau lub davhlau ya nyob twg · Serial Choj hom enables pob tshab interconnection ntawm ob lub chaw nres nkoj serial li ib
network.
1. Xaiv Serial & Network> Serial Chaw nres nkoj los tso saib cov ntsiab lus chaw nres nkoj 2. Los ntawm lub neej ntawd, txhua qhov chaw nres nkoj serial tau teeb tsa hauv Console server hom. Nyem Edit ib sab ntawm qhov chaw nres nkoj yuav
kho dua tshiab. Los yog nyem Kho Ntau qhov chaw nres nkoj thiab xaiv cov chaw nres nkoj twg koj xav kom teeb tsa ua pawg. 3. Thaum koj tau teeb tsa cov chaw sib xws thiab hom rau txhua qhov chaw nres nkoj, teeb tsa tej thaj chaw deb syslog (saib cov ntu hauv qab no rau cov ntaub ntawv tshwj xeeb). Nyem Thov 4. Yog tias lub console server tau teeb tsa nrog kev faib Nagios saib xyuas, siv Nagios Chaw xaiv los pab kom cov kev pabcuam nominated ntawm tus tswv tsev yuav tsum tau saib xyuas 3.1.1 Cov Chaw Sib Tham Muaj ntau qhov chaw uas tuaj yeem teeb tsa rau txhua qhov serial. chaw nres nkoj. Cov no yog ywj siab ntawm hom uas siv qhov chaw nres nkoj. Cov serial chaw nres nkoj tsis yuav tsum tau teem kom lawv phim cov serial chaw nres nkoj tsis nyob rau hauv lub ntaus ntawv koj txuas mus rau qhov chaw nres nkoj:
28
Cov neeg siv phau ntawv
· Ntaus rau hauv daim ntawv lo rau qhov chaw nres nkoj · Xaiv qhov tsim nyog Baud Rate, Parity, Data Bits, Stop Bits thiab Flow Control rau txhua qhov chaw nres nkoj
· Teeb qhov chaw nres nkoj Pinout. Cov ntawv qhia zaub mov no tshwm sim rau IM7200 cov chaw nres nkoj uas tus pin-tawm rau txhua qhov RJ45 serial chaw nres nkoj tuaj yeem teeb tsa raws li X2 (Cisco Ncaj) lossis X1 (Cisco Rolled)
· Teem DTR hom. Qhov no tso cai rau koj xaiv yog tias DTR ib txwm tau lees paub lossis tsuas yog lees paub thaum muaj kev sib tham siv neeg siv
· Ua ntej txuas ntxiv nrog kev teeb tsa chaw nres nkoj txuas ntxiv, koj yuav tsum txuas cov chaw nres nkoj mus rau cov khoom siv serial lawv yuav tswj thiab xyuas kom lawv muaj qhov sib txuam
3.1.2
Console Server Hom
Xaiv Console neeg rau zaub mov hom kom pab tau cov chaw taws teeb tswj kev nkag mus rau serial console uas txuas rau qhov chaw nres nkoj serial:
Logging Level Qhov no qhia txog qib ntawm cov ntaub ntawv yuav tsum tau nkag mus thiab saib xyuas.
29
Tshooj 3: Serial Chaw nres nkoj, Tus Tswv Cuab, Ntaus & Tus Neeg Siv Khoom Siv
Theem 0: Disable logging (default)
Theem 1: LOGIN, LOGOUT thiab SIGNAL txheej xwm
Qib 2: Nkag mus LOGIN, LOGOUT, SIGNAL, TXDATA thiab RXDATA cov xwm txheej
Qib 3: Nkag mus LOGIN, LOGOUT, SIGNAL thiab RXDATA cov xwm txheej
Theem 4: LOGIN, LOGOUT, SIGNAL thiab TXDATA txheej xwm
Cov tswv yim / RXDATA yog cov ntaub ntawv tau txais los ntawm Opengear ntaus ntawv los ntawm cov khoom siv txuas nrog, thiab cov zis / TXDATA yog cov ntaub ntawv xa los ntawm Opengear ntaus ntawv (xws li ntaus los ntawm tus neeg siv) rau cov khoom siv txuas nrog.
Cov cuab yeej consoles feem ntau ncha rov qab cov cim raws li lawv tau ntaus kom TXDATA ntaus los ntawm tus neeg siv tom qab tau txais raws li RXDATA, tso tawm ntawm lawv lub davhlau ya nyob twg.
CEEB TOOM: Tom qab prompting rau tus password, cov khoom txuas txuas xa * cim los tiv thaiv tus password los ntawm kev tshwm sim.
Telnet Thaum Telnet kev pabcuam tau qhib rau ntawm lub console server, Telnet tus neeg siv khoom ntawm tus neeg siv lub khoos phis tawj tuaj yeem txuas mus rau cov khoom siv txuas nrog rau qhov chaw nres nkoj ntawm lub console server. Vim hais tias Telnet kev sib txuas lus yog unencrypted, cov txheej txheem no tsuas yog pom zoo rau kev sib txuas hauv zos lossis VPN tunneled.
Yog hais tias cov chaw taws teeb sib txuas lus tau raug tunneled nrog lub connector, Telnet tuaj yeem siv rau kev nkag mus rau cov khoom siv txuas nrog no kom ruaj ntseg.
Nco tseg
Hauv console server hom, cov neeg siv tuaj yeem siv qhov sib txuas los teeb tsa Telnet kev sib txuas ruaj ntseg uas yog SSH tunneled los ntawm lawv cov neeg siv computers mus rau qhov chaw nres nkoj ntawm lub console server. Cov Connectors tuaj yeem ntsia tau rau ntawm Windows PCs thiab feem ntau Linux platforms thiab nws ua kom muaj kev ruaj ntseg Telnet kev sib txuas kom raug xaiv nrog taw tes-thiab-nias.
Txhawm rau siv cov khoom sib txuas kom nkag mus rau consoles ntawm lub console server serial ports, teeb tsa lub connector nrog lub console server ua lub rooj vag, thiab ua tus tswv tsev, thiab pab Telnet kev pabcuam ntawm Chaw nres nkoj (2000 + serial chaw nres nkoj #) piv txwv li 2001.
Koj tuaj yeem siv cov txheej txheem sib txuas lus xws li PuTTY los teeb tsa Telnet ncaj qha lossis SSH txuas rau cov chaw nres nkoj serial.
CEEB TOOM Nyob rau hauv Console neeg rau zaub mov hom, thaum koj txuas mus rau ib tug serial chaw nres nkoj koj txuas ntawm pmshell. Txhawm rau tsim kom muaj BREAK ntawm qhov chaw nres nkoj serial, ntaus cov cim kab ke ~ b. Yog tias koj ua qhov no dhau ntawm OpenSSH hom ~~b.
SSH
Nws raug nquahu kom koj siv SSH raws tu qauv thaum cov neeg siv txuas rau lub console server
(los yog txuas los ntawm lub console server mus rau qhov txuas serial consoles) hauv Is Taws Nem lossis ib qho twg
lwm lub network pej xeem.
Rau SSH nkag mus rau lub consoles ntawm cov khoom siv txuas nrog lub console server serial ports, koj tuaj yeem siv lub connector. Configure lub connector nrog lub console server raws li lub rooj vag, thiab raws li ib tug tswv tsev, thiab pab kom SSH kev pab cuam ntawm Chaw nres nkoj (3000 + serial chaw nres nkoj #) piv txwv li 3001-3048.
Koj tseem tuaj yeem siv cov pob khoom sib txuas lus, xws li PuTTY lossis SSHTerm rau SSH txuas rau chaw nres nkoj IP Chaw Nyob _ Chaw nres nkoj (3000 + serial chaw nres nkoj #) piv txwv li 3001
Kev sib txuas SSH tuaj yeem teeb tsa siv tus qauv SSH chaw nres nkoj 22. Qhov chaw nres nkoj serial nkag tau raug txheeb xyuas los ntawm kev ntxiv tus piav qhia rau tus neeg siv lub npe. Qhov no syntax txhawb:
:
:
30
Cov neeg siv phau ntawv
: : Rau tus neeg siv npe hu ua chris nkag mus rau qhov chaw nres nkoj 2, thaum teeb tsa SSHTerm lossis PuTTY SSH tus neeg siv, tsis yog siv lub npe siv = chris thiab ssh chaw nres nkoj = 3002, lwm qhov yog ntaus username = chris:port02 (lossis username = chris: ttyS1) thiab ssh chaw nres nkoj = 22. Los yog los ntawm kev ntaus username = chris: serial thiab ssh chaw nres nkoj = 22, tus neeg siv tau nthuav tawm nrog kev xaiv chaw nres nkoj:
Cov syntax no tso cai rau cov neeg siv teeb tsa SSH qhov rau txhua qhov chaw nres nkoj nrog ib qho chaw nres nkoj IP 22 yuav tsum tau qhib rau hauv lawv lub qhov hluav taws xob / qhov rooj.
CEEB TOOM Hauv console server hom, koj txuas mus rau qhov chaw nres nkoj serial ntawm pmshell. Txhawm rau tsim kom muaj BREAK ntawm qhov chaw nres nkoj serial, ntaus cov cim kab ke ~ b. Yog tias koj ua qhov no dhau OpenSSH, ntaus ~~b.
TCP
RAW TCP tso cai rau kev sib txuas rau TCP lub qhov (socket). Thaum cov kev sib txuas lus zoo li PuTTY
kuj txhawb RAW TCP, cov txheej txheem no feem ntau yog siv los ntawm daim ntawv thov kev cai
Rau RAW TCP, qhov chaw nyob chaw nyob yog IP chaw nyob _ Chaw nres nkoj (4000 + serial chaw nres nkoj #) piv txwv li 4001 4048
RAW TCP tseem tso cai rau qhov chaw nres nkoj serial yuav tsum tau nkag mus rau cov chaw taws teeb console server, yog li ob lub chaw nres nkoj serial tuaj yeem sib cuam tshuam hauv lub network (saib Tshooj 3.1.6 Serial Bridging)
RFC2217 Xaiv RFC2217 enables serial chaw nres nkoj redirection ntawm qhov chaw nres nkoj. Rau RFC2217, qhov chaw nres nkoj default yog IP Chaw Nyob _ Chaw nres nkoj (5000 + serial chaw nres nkoj #) piv txwv li 5001 5048
Cov neeg siv software tshwj xeeb muaj rau Windows UNIX thiab Linux uas txhawb nqa RFC2217 virtual com ports, yog li tus tswv tsev nyob deb nroog tuaj yeem saib xyuas thiab tswj cov chaw taws teeb serially txuas nrog xws li lawv txuas nrog lub chaw nres nkoj hauv zos (saib Tshooj 3.6 Serial Port Redirection kom paub meej)
RFC2217 tseem tso cai rau qhov chaw nres nkoj serial yuav tsum tau txuas mus rau lub chaw taws teeb console server, yog li ob lub chaw nres nkoj serial tuaj yeem sib cuam tshuam hauv lub network (saib Tshooj 3.1.6 Serial Bridging)
Unauthentication Telnet Qhov no ua rau Telnet nkag mus rau qhov chaw nres nkoj serial yam tsis muaj ntawv pov thawj pov thawj. Thaum tus neeg siv nkag mus rau lub console server rau Telnet rau qhov chaw nres nkoj serial, lawv tau txais kev nkag mus sai. Nrog Telnet tsis muaj tseeb, lawv txuas ncaj qha mus rau qhov chaw nres nkoj yam tsis muaj kev sib tw console server. Yog hais tias tus neeg siv Telnet ua kom muaj kev lees paub, txhua cov ntaub ntawv nkag tau tso cai rau kev sib txuas.
31
Tshooj 3: Serial Chaw nres nkoj, Tus Tswv Cuab, Ntaus & Tus Neeg Siv Khoom Siv
Hom no yog siv nrog rau lwm qhov system (xws li conserver) tswj cov neeg siv kev lees paub thiab nkag mus rau cov cai ntawm qib khoom siv.
Kev nkag mus rau hauv ib lub cuab yeej txuas nrog lub console server yuav xav tau kev lees paub.
Rau Unauthentiated Telnet qhov chaw nres nkoj default yog IP Chaw Nyob _ Chaw nres nkoj (6000 + serial chaw nres nkoj #) piv txwv li 6001 6048
Unauthentication SSH Qhov no tso cai rau SSH nkag mus rau qhov chaw nres nkoj serial yam tsis muaj ntawv pov thawj pov thawj. Thaum tus neeg siv nkag mus rau lub console server rau Telnet rau qhov chaw nres nkoj serial, lawv tau txais kev nkag mus sai. Nrog tsis muaj kev lees paub SSH lawv txuas ncaj qha mus rau qhov chaw nres nkoj yam tsis muaj kev sib tw console server.
Hom no yog siv thaum koj muaj lwm qhov kev tswj hwm tus neeg siv kev lees paub thiab nkag mus rau cov cai ntawm qib khoom siv tab sis xav kom nkag mus rau qhov kev sib kho thoob plaws hauv lub network.
Kev nkag mus rau hauv ib lub cuab yeej txuas nrog lub console server yuav xav tau kev lees paub.
Rau Unauthentiated Telnet qhov chaw nres nkoj default yog IP Chaw Nyob _ Chaw nres nkoj (7000 + serial chaw nres nkoj #) piv txwv li 7001 7048
Cov : txoj kev nkag mus rau qhov chaw nres nkoj (raws li tau piav qhia hauv ntu SSH saum toj no) ib txwm xav tau kev lees paub.
Web Terminal Qhov no enables web browser nkag mus rau qhov chaw nres nkoj serial ntawm Tswj> Devices: Serial siv Management Console's ua hauv AJAX davhlau ya nyob twg. Web Terminal txuas raws li qhov tam sim no authenticated Management Console tus neeg siv thiab tsis rov lees paub dua. Saib tshooj 12.3 kom paub meej ntxiv.
IP Alias
Ua kom nkag mus rau qhov chaw nres nkoj serial siv qhov chaw nyob IP tshwj xeeb, teev hauv CIDR hom. Txhua qhov chaw nres nkoj serial tuaj yeem raug xa mus rau ib lossis ntau tus IP npe, teeb tsa ntawm ib lub network-interface. Ib qhov chaw nres nkoj serial tuaj yeem, piv txwv liample, ua kom nkag mus tau ntawm ob qho tib si 192.168.0.148 (raws li ib feem ntawm lub network sab hauv) thiab 10.10.10.148 (raws li ib feem ntawm Kev Tswj Xyuas LAN). Nws tseem tuaj yeem ua kom muaj qhov chaw nres nkoj muaj nyob ntawm ob qhov chaw nyob IP ntawm tib lub network (example, 192.168.0.148 and 192.168.0.248).
Cov chaw nyob IP no tsuas yog siv tau los nkag mus rau qhov chaw nres nkoj tshwj xeeb, siv tau siv tus qauv raws tu qauv TCP chaw nres nkoj tus lej ntawm cov kev pabcuam console server. Rau example, SSH ntawm qhov chaw nres nkoj 3 yuav nkag tau rau ntawm qhov chaw nres nkoj 22 ntawm qhov chaw nres nkoj serial IP alias (qhov chaw nyob ntawm lub console server qhov chaw nyob tseem ceeb nws muaj nyob rau ntawm chaw nres nkoj 2003).
Cov yam ntxwv no tseem tuaj yeem teeb tsa los ntawm ntau qhov chaw nres nkoj hloov nplooj ntawv. Nyob rau hauv rooj plaub no tus IP chaw nyob yog siv raws li nram no, nrog rau thawj qhov chaw nres nkoj tau txais tus IP nkag mus thiab cov tom ntej tau txais incremented, nrog cov lej raug hla mus rau ib qho chaw nres nkoj tsis tau xaiv. Rau example, yog xaiv cov chaw nres nkoj 2, 3 thiab 5 thiab tus IP alias 10.0.0.1/24 tau nkag rau Network Interface, cov chaw nyob hauv qab no raug muab rau:
Chaw nres nkoj 2: 10.0.0.1/24
Chaw nres nkoj 3: 10.0.0.2/24
Chaw nres nkoj 5: 10.0.0.4/24
IP Aliases kuj txhawb IPv6 alias chaw nyob. Qhov txawv tsuas yog qhov chaw nyob yog tus lej hexadecimal, yog li qhov chaw nres nkoj 10 tuaj yeem sib haum rau qhov chaw nyob xaus hauv A, thiab 11 mus rau ib qho xaus hauv B, tsis yog 10 lossis 11 raws li IPv4.
32
Cov neeg siv phau ntawv
Encrypt Traffic / Authenticate Pab kom tsis txhob muaj qhov encryption thiab authentication ntawm RFC2217 serial kev sib txuas lus siv Portshare (kom muaj zog encryption siv VPN).
Lub Sijhawm Tshaj Tawm Thaum muaj kev sib txuas tau tsim los rau ib qho chaw nres nkoj tshwj xeeb (xws li RFC2217 redirection lossis Telnet kev twb kev txuas mus rau lub computer tej thaj chaw deb), txhua tus neeg tuaj ntawm qhov chaw nres nkoj tau xa mus rau hauv lub network ntawm tus cwj pwm los ntawm cov cim. Lub sij hawm tsub zuj zuj qhia txog lub sij hawm uas cov cim tau sau ua ntej xa mus ua ib pob ntawv hauv lub network
Escape Character Hloov cov cim siv rau xa cov cim khiav. Lub neej ntawd yog ~. Hloov Backspace Hloov lub neej ntawd backspace tus nqi ntawm CTRL +? (127) nrog CTRL + h (8). Power Menu Cov lus txib kom coj mus rau cov ntawv qhia fais fab yog ~p thiab ua kom lub plhaub lub hwj chim hais kom a
tus neeg siv tuaj yeem tswj hwm lub zog txuas rau lub cuab yeej tswj hwm los ntawm kab hais kom ua thaum lawv Telnet lossis SSH txuas nrog lub cuab yeej. Cov cuab yeej tswj hwm yuav tsum tau teeb tsa nrog nws ob qho tib si Serial chaw nres nkoj txuas thiab Fais fab txuas teeb tsa.
Kev Sib Txuas Ib Leeg Qhov no txwv qhov chaw nres nkoj rau ib qho kev sib txuas yog li yog tias ntau tus neeg siv muaj cai nkag mus rau ib qho chaw nres nkoj tsuas yog ib tus neeg siv ib zaug tuaj yeem nkag mus rau qhov chaw nres nkoj (xws li chaw nres nkoj snooping tsis tso cai).
33
Tshooj 3: Serial Chaw nres nkoj, Tus Tswv Cuab, Ntaus & Tus Neeg Siv Khoom Siv
3.1.3 Ntaus (RPC, UPS, Ib puag ncig) Hom Hom no teeb tsa cov chaw nres nkoj xaiv los sib txuas lus nrog cov khoom siv hluav taws xob tsis sib cuam tshuam (UPS), Chaw taws teeb tswj hluav taws xob / Fais fab faib (RPC) lossis Environmental Monitoring Device (Environmental)
1. Xaiv yam khoom siv yam xav tau (UPS, RPC, lossis ib puag ncig)
2. Nkag mus rau nplooj ntawv teeb tsa cov cuab yeej tsim nyog (Serial & Network> UPS Connections, RPC Connection lossis Environmental) raws li tau piav qhia hauv Tshooj 7.
3.1.4 ·
Terminal Server Hom
Xaiv Terminal Server Hom thiab Terminal Hom (vt220, vt102, vt100, Linux lossis ANSI) los pab kom tau txais txiaj ntsig ntawm qhov chaw nres nkoj xaiv
Lub getty teeb tsa qhov chaw nres nkoj thiab tos kom muaj kev sib txuas ua ke. Ib qho kev sib txuas ua haujlwm ntawm ib lub cuab yeej serial yog qhia los ntawm cov ntaub ntawv nqa khoom nqa khoom ntes (DCD) tus pin ntawm cov khoom siv serial. Thaum kuaj pom qhov kev sib txuas, qhov kev pab cuam getty teeb tsa tus ID nkag mus: sai, thiab invokes tus ID nkag mus kev pab cuam los tswj lub kaw lus nkag.
CEEB TOOM Xaiv Terminal Server hom lov tes taw Port Manager rau qhov chaw nres nkoj serial, yog li cov ntaub ntawv tsis raug kaw rau kev ceeb toom thiab lwm yam.
34
Cov neeg siv phau ntawv
3.1.5 Serial Bridging Hom Nrog serial bridging, serial cov ntaub ntawv ntawm ib qho chaw nres nkoj serial ntawm ib lub console server yog encapsulated rau hauv network packets thiab thauj hla lub network mus rau lub console thib ob uas nws tau sawv cev ua cov ntaub ntawv serial. Ob lub console servers ua raws li cov kab hluav taws xob virtual ntawm IP network. Ib lub console server tau teeb tsa ua tus Server. Tus neeg rau zaub mov serial chaw nres nkoj yuav tsum tau txuas rau hauv Console server hom nrog RFC2217 lossis RAW enabled. Rau Client console server, serial chaw nres nkoj yuav tsum tau muab tso rau hauv Bridging Hom:
· Xaiv Serial Bridging Hom thiab qhia meej IP chaw nyob ntawm tus neeg rau zaub mov console server thiab TCP chaw nres nkoj ntawm qhov chaw nres nkoj tej thaj chaw deb (rau RFC2217 bridging qhov no yuav yog 5001-5048)
· Los ntawm lub neej ntawd, tus neeg siv khoom txuas txuas siv RAW TCP. Xaiv RFC2217 yog tias qhov no yog console server hom koj tau teev nyob rau ntawm lub server console server
· Koj tuaj yeem ruaj ntseg kev sib txuas lus ntawm Ethernet hauv zos los ntawm kev ua kom SSH. Tsim thiab upload cov yuam sij.
3.1.6 Syslog Ntxiv rau inbuilt logging thiab saib xyuas uas yuav siv tau rau serial-txuas thiab network-txuas kev tswj kev nkag, raws li tau hais nyob rau hauv Tshooj 6, lub console server kuj tau teeb tsa los txhawb cov chaw taws teeb syslog raws tu qauv ntawm ib qhov chaw nres nkoj serial. hauv paus:
· Xaiv qhov Syslog Facility/Priority fields los pab kom nkag tau cov tsheb khiav ntawm qhov chaw nres nkoj xaiv rau syslog server; thiab txheeb thiab ua raws li cov lus nkag (ie redirect lawv / xa email ceeb toom.)
35
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
Rau example, yog tias lub khoos phis tawj txuas nrog serial chaw nres nkoj 3 yuav tsum tsis txhob xa ib yam dab tsi tawm ntawm nws qhov chaw nres nkoj serial console, tus thawj coj tuaj yeem teeb tsa qhov chaw rau qhov chaw nres nkoj rau hauv zos0 (local0 .. local7 yog txhais tau tias rau qhov chaw hauv zos qhov tseem ceeb), thiab Qhov Tseem Ceeb rau qhov tseem ceeb. . Ntawm qhov tseem ceeb no, yog tias lub console server syslog server tau txais cov lus, nws nce kev ceeb toom. Saib Tshooj 6. 3.1.7 NMEA Streaming Lub ACM7000-L tuaj yeem muab GPS NMEA cov ntaub ntawv streaming los ntawm sab hauv GPS / cellular modem. Cov ntaub ntawv kwj no nthuav tawm raws li cov ntaub ntawv serial ntawm chaw nres nkoj 5 ntawm ACM qauv.
Cov Chaw Sib Tham (baud tus nqi thiab lwm yam) tsis quav ntsej thaum teeb tsa NMEA serial chaw nres nkoj. Koj tuaj yeem qhia meej txog Fix Frequency (piv txwv li qhov kho GPS no txiav txim siab seb GPS kho tau npaum li cas). Koj tuaj yeem siv tag nrho Console Server Hom, Syslog thiab Serial Bridging nqis rau qhov chaw nres nkoj no.
Koj tuaj yeem siv pmshell, webplhaub, SSH, RFC2217 lossis RawTCP kom tau txais ntawm cov kwj deg:
Rau example, siv Web Terminal:
36
Cov neeg siv phau ntawv
3.1.8 USB Consoles
Console servers nrog USB chaw nres nkoj txhawb nqa USB console txuas rau cov khoom siv los ntawm ntau tus neeg muag khoom, suav nrog Cisco, HP, Dell thiab Brocade. Cov chaw nres nkoj USB no tuaj yeem ua haujlwm raws li RS-232 serial chaw nres nkoj thaum USB-rau-serial adapter txuas nrog.
Cov chaw nres nkoj USB no muaj raws li cov chaw nres nkoj tsis tu ncua thiab tau nthuav tawm cov lej hauv web UI tom qab tag nrho RJ45 serial chaw nres nkoj.
ACM7008-2 muaj yim RJ45 serial chaw nres nkoj nyob rau tom qab ntawm lub console server thiab plaub USB chaw nres nkoj rau pem hauv ntej. Hauv Serial & Network> Serial Port cov no tau teev tseg raws li
Chaw nres nkoj # Connector
1
RJ 45
2
RJ 45
3
RJ 45
4
RJ 45
5
RJ 45
6
RJ 45
7
RJ 45
8
RJ 45
9
USB
10 USB
11 USB
12 USB
Yog tias qhov tshwj xeeb ACM7008-2 yog tus qauv ntawm tes, chaw nres nkoj # 13 - rau GPS - kuj yuav raug teev tseg.
Lub 7216-24U muaj 16 RJ45 serial chaw nres nkoj thiab 24 USB chaw nres nkoj ntawm nws lub ntsej muag tom qab nrog rau ob qhov chaw nres nkoj USB pem hauv ntej thiab (hauv cov qauv ntawm tes) GPS.
Lub RJ45 cov chaw nres nkoj serial tau nthuav tawm hauv Serial & Network> Serial Chaw nres nkoj raws li cov chaw nres nkoj 1. Lub 16 rearfacing USB ports coj cov chaw nres nkoj 24, thiab cov chaw nres nkoj USB pem hauv ntej tau teev ntawm chaw nres nkoj naj npawb 17 thiab 40 raws li. Thiab, raws li nrog ACM41-42, yog tias qhov tshwj xeeb 7008-2U yog tus qauv ntawm tes, GPS tau nthuav tawm ntawm chaw nres nkoj 7216.
Cov chaw sib xws (baud tus nqi, thiab lwm yam) yog siv thaum teeb tsa cov chaw nres nkoj, tab sis qee qhov kev ua haujlwm yuav tsis ua haujlwm nyob ntawm qhov kev siv ntawm cov hauv paus USB serial nti.
3.2 Ntxiv thiab kho cov neeg siv
Tus thawj coj siv qhov kev xaiv cov ntawv qhia zaub mov no los tsim, kho thiab tshem tawm cov neeg siv thiab los txhais cov kev tso cai nkag rau txhua tus neeg siv no.
37
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
Cov neeg siv tuaj yeem raug tso cai nkag mus rau cov kev pabcuam tshwj xeeb, cov chaw nres nkoj serial, cov khoom siv hluav taws xob thiab cov chaw sib txuas uas tau teev tseg. Cov neeg siv no tuaj yeem muab tag nrho cov neeg ua haujlwm raws li txoj cai (nrog rau tag nrho cov teeb tsa thiab kev tswj hwm thiab kev nkag mus rau cov cai).
Cov neeg siv tuaj yeem muab ntxiv rau hauv pab pawg. Rau pawg tau teeb tsa los ntawm lub neej ntawd:
admin
Muab unlimited configuration thiab tswj txoj cai.
pptpd ua
Tso cai nkag mus rau PPTP VPN server. Cov neeg siv hauv pab pawg no muaj lawv tus password khaws cia hauv cov ntawv ntshiab.
dialin
Tso cai rau dialin nkag ntawm modems. Cov neeg siv hauv pab pawg no muaj lawv tus password khaws cia hauv cov ntawv ntshiab.
ftp ua
Tso cai rau ftp nkag thiab file nkag mus rau cov khoom siv cia.
pmshell
Teem lub plhaub default rau pmshell.
cov neeg siv
Muab cov cai tswj kev yooj yim rau cov neeg siv.
Pawg admin muab cov tswv cuab tag nrho cov cai tswj hwm. Tus neeg siv admin tuaj yeem nkag mus rau lub console server siv ib qho ntawm cov kev pabcuam uas tau qhib rau hauv System> Cov Kev Pabcuam Lawv tuaj yeem nkag mus rau ib qho ntawm cov Hosts txuas lossis cov chaw nres nkoj serial siv ib qho ntawm cov kev pabcuam uas tau qhib rau cov kev sib txuas no. Tsuas yog cov neeg siv ntseeg siab yuav tsum muaj kev nkag mus rau tus thawj tswj hwm
Cov pab pawg neeg siv muab cov tswv cuab txwv tsis pub nkag mus rau console server thiab txuas nrog cov tswv thiab cov khoom siv sib txuas. Cov neeg siv no tsuas tuaj yeem nkag mus rau ntu Kev Tswj Xyuas ntawm Management Console cov ntawv qhia zaub mov thiab lawv tsis muaj kab hais kom nkag mus rau console server. Lawv tsuas tuaj yeem nkag mus rau cov Hosts thiab cov khoom siv sib txuas uas tau kuaj xyuas rau lawv, siv cov kev pabcuam uas tau qhib
Cov neeg siv hauv pptd, dialin, ftp lossis pmshell pab pawg tau txwv cov neeg siv lub plhaub nkag mus rau cov khoom siv tau raug xaiv tab sis lawv yuav tsis muaj kev nkag ncaj qha rau lub console server. Txhawm rau ntxiv qhov no cov neeg siv yuav tsum yog tus tswv cuab ntawm cov neeg siv lossis pawg tswj hwm
Tus thawj coj tuaj yeem teeb tsa cov pab pawg ntxiv nrog cov cuab yeej siv hluav taws xob tshwj xeeb, chaw nres nkoj serial thiab kev tso cai rau tus tswv tsev. Cov neeg siv hauv cov pab pawg ntxiv no tsis muaj kev nkag mus rau Management Console cov ntawv qhia lossis lawv tsis muaj cov kab hais kom nkag mus rau console server.
38
Cov neeg siv phau ntawv
Tus thawj coj tuaj yeem teeb tsa cov neeg siv nrog cov cuab yeej siv hluav taws xob tshwj xeeb, chaw nres nkoj serial thiab tus tswv tsev nkag mus tau tso cai uas tsis yog tswv cuab ntawm ib pawg. Cov neeg siv no tsis muaj kev nkag mus rau Management Console cov ntawv qhia lossis cov kab hais kom nkag mus rau lub console server. 3.2.1 Teeb tsa pab pawg tshiab Los teeb tsa cov pab pawg tshiab thiab cov neeg siv tshiab, thiab faib cov neeg siv raws li cov tswv cuab ntawm cov pab pawg tshwj xeeb:
1. Xaiv Serial & Network> Cov Neeg Siv & Pawg los tso saib tag nrho cov pab pawg thiab cov neeg siv 2. Nyem Ntxiv Pab Pawg kom ntxiv ib pab pawg tshiab
3. Ntxiv ib pab pawg npe thiab cov lus piav qhia rau txhua pab pawg tshiab, thiab tso npe rau Accessible Hosts, Accessible Ports thiab Accessible RPC Outlets uas cov neeg siv hauv pab pawg tshiab no yuav nkag tau.
4. Nyem Thov 5. Tus thawj tswj hwm tuaj yeem Kho lossis tshem tawm ib pab pawg ntxiv 3.2.2 Teeb tsa cov neeg siv tshiab Kom teeb tsa cov neeg siv tshiab, thiab faib cov neeg siv raws li cov tswv cuab ntawm cov pab pawg tshwj xeeb: 1. Xaiv Serial & Network> Cov Neeg Siv & Pawg los tso saib txhua pab pawg thiab cov neeg siv 2. Nyem Ntxiv Cov Neeg Siv
39
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
3. Ntxiv lub Username rau txhua tus neeg siv tshiab. Koj kuj tseem tuaj yeem suav nrog cov ntaub ntawv ntsig txog tus neeg siv (xws li cov ntaub ntawv tiv tauj) hauv Cov lus piav qhia. Tus neeg siv lub npe tuaj yeem muaj los ntawm 1 txog 127 tus lej cim thiab cov cim "-" "_" thiab "."
4. Qhia meej cov pab pawg twg uas koj xav kom tus neeg siv los ua ib tug tswv cuab ntawm 5. Ntxiv ib tus password paub tseeb rau txhua tus neeg siv tshiab. Tag nrho cov cim raug tso cai. 6. SSH pass-key authentication tuaj yeem siv tau. Muab cov yuam sij pej xeem ntawm kev tso cai pej xeem / ntiag tug
keypairs rau tus neeg siv no nyob rau hauv Tso Cai SSH Keys teb 7. Kos Disable Password Authentication tsuas yog tso cai rau pej xeem key authentication rau tus neeg siv no
thaum siv SSH 8. Kos Pab Tau Dial-Back hauv Dial-in Options zaub mov kom tso cai rau kev sib txuas ntawm kev sib txuas rov qab
yuav tsum tau triggered los ntawm kev nkag mus rau hauv qhov chaw nres nkoj no. Nkag mus rau Tus Xov Tooj Dial-Back nrog tus lej xov tooj kom hu-rov qab thaum cov neeg siv nkag rau hauv 9. Tshawb xyuas Accessible Hosts thiab/lossis Accessible Ports los xaiv cov chaw nres nkoj thiab cov chaw sib txuas hauv network koj xav kom tus neeg siv muaj cai nkag mus rau 10. Yog muaj cov RPC teeb tsa, kos Accessible RPC Outlets kom qhia meej tias qhov hluav taws xob twg tus neeg siv tuaj yeem tswj tau (piv txwv li Fais Fab On/Off) 11. Nyem Thov. Tus neeg siv tshiab yuav tuaj yeem nkag mus rau Network Devices, Ports thiab RPC Outlets. Yog tias tus neeg siv yog ib pab pawg, lawv tuaj yeem nkag mus rau lwm yam khoom siv / chaw nres nkoj / qhov hluav taws xob nkag mus rau pab pawg
40
Cov neeg siv phau ntawv
Tsis muaj kev txwv ntawm tus naj npawb ntawm cov neeg siv koj tuaj yeem teeb tsa lossis tus naj npawb ntawm cov neeg siv ib qho chaw nres nkoj lossis tus tswv tsev. Ntau tus neeg siv tuaj yeem tswj / saib xyuas ib qho chaw nres nkoj lossis tus tswv tsev. Tsis muaj kev txwv rau tus naj npawb ntawm pawg thiab txhua tus neeg siv tuaj yeem ua tus tswv cuab ntawm ntau pawg. Tus neeg siv tsis tas yuav yog tus tswv cuab ntawm ib pawg, tab sis yog tias tus neeg siv yog tus tswv cuab ntawm pawg neeg siv tsis raug, lawv yuav tsis tuaj yeem siv Management Console los tswj cov chaw nres nkoj. Txawm hais tias tsis muaj kev txwv, lub sij hawm rov teeb tsa nce ntxiv raws li tus lej thiab qhov nyuaj ntxiv. Peb pom zoo kom cov neeg siv tag nrho thiab pab pawg khaws cia qis dua 250. Tus thawj coj kuj tuaj yeem hloov kho qhov chaw nkag rau txhua tus neeg siv uas twb muaj lawm:
· Xaiv Serial & Network> Cov Neeg Siv & Pawg thiab nyem Kho kom raug hloov kho cov cai nkag mus rau tus neeg siv · Nyem Delete kom tshem tawm tus neeg siv · Nyem Disable los thaiv kev nkag mus ib ntus
3.3 Kev lees paub tseeb
Saib Tshooj 8 kom paub meej txog kev txheeb xyuas qhov tseeb.
3.4 Network Hosts
Txhawm rau saib xyuas thiab nkag mus rau lub khoos phis tawj hauv zos lossis cov khoom siv hauv zos (hu ua tus tswv tsev) koj yuav tsum txheeb xyuas tus tswv tsev:
1. Xaiv Serial & Network> Network Hosts nthuav qhia tag nrho cov network txuas nrog Hosts uas tau qhib rau kev siv.
2. Nyem Ntxiv Host kom nkag mus rau lub party tshiab (los yog xaiv Kho kom raug hloov kho cov chaw rau tus tswv tsev uas twb muaj lawm)
41
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
3. Yog tias tus tswv tsev yog PDU lossis UPS cov khoom siv hluav taws xob lossis lub server nrog IPMI tswj fais fab, qhia RPC (rau IPMI thiab PDU) lossis UPS thiab hom ntaus ntawv. Tus thawj tswj hwm tuaj yeem teeb tsa cov cuab yeej no thiab ua kom cov neeg siv tau tso cai rau lub zog ntawm lub voj voog, thiab lwm yam. Saib Tshooj 7. Txwv tsis pub tawm Hom Ntaus Ntaus mus rau Tsis muaj.
4. Yog hais tias lub console server tau teeb tsa nrog kev faib Nagios saib xyuas, koj tseem yuav pom Nagios Chaw xaiv los ua kom cov kev pabcuam nominated ntawm Tus Tswv yuav tsum tau saib xyuas.
5. Nyem Thov. Qhov no tsim tus tswv tsev tshiab thiab tseem tsim cov cuab yeej tswj hwm tshiab nrog tib lub npe.
3.5 Trusted Networks
Lub Trusted Networks chaw muab kev xaiv rau koj los xaiv tus IP chaw nyob uas cov neeg siv yuav tsum nyob ntawm, kom nkag mus rau console server serial ports:
42
Cov neeg siv phau ntawv
1. Xaiv Serial & Network> Trusted Networks 2. Txhawm rau ntxiv ib qho kev ntseeg siab tshiab, xaiv Ntxiv Txoj Cai. Thaum tsis muaj Txoj Cai, tsis muaj kev nkag mus
kev txwv raws li qhov chaw nyob IP uas cov neeg siv tuaj yeem nyob.
3. Xaiv cov chaw nres nkoj nkag tau uas txoj cai tshiab yuav raug siv rau
4. Nkag mus rau Chaw Nyob Network ntawm lub subnet kom tau txais kev tso cai nkag
5. Qhia meej txog qhov chaw nyob uas yuav tsum tau tso cai los ntawm kev nkag mus rau Network Mask rau qhov kev tso cai IP ntau xws li
· Txhawm rau tso cai rau txhua tus neeg siv nyob nrog ib qho tshwj xeeb Class C network txuas mus rau qhov chaw nres nkoj, ntxiv cov cai hauv qab no Trusted Network Tshiab:
Network IP Chaw Nyob
204.15.5.0
SubnetMask
255.255.255.0
· Tso cai tsuas yog ib tus neeg siv nyob ntawm qhov chaw nyob IP tshwj xeeb los txuas:
Network IP Chaw Nyob
204.15.5.13
SubnetMask
255.255.255.255
· Kom tso cai rau tag nrho cov neeg siv kev khiav hauj lwm los ntawm nyob rau hauv ib tug tej thaj chaw ntawm IP chaw nyob (hais ib qho ntawm peb caug chaw nyob los ntawm 204.15.5.129 mus rau 204.15.5.158) tso cai kev twb kev txuas mus rau lub nominated chaw nres nkoj:
Host/Subnet Chaw Nyob
204.15.5.128
SubnetMask
255.255.255.224
6. Nyem Thov
43
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
3.6 Serial Port Cascading
Cascaded Ports tso cai rau koj los ua pawg faib console servers yog li cov chaw nres nkoj loj (txog 1000) tuaj yeem teeb tsa thiab nkag los ntawm ib tus IP chaw nyob thiab tswj hwm los ntawm ib qho Kev Tswj Xyuas Console. Ib lub console server, Cov Thawj Coj, tswj hwm lwm lub console servers raws li Node units thiab tag nrho cov chaw nres nkoj ntawm Node units tshwm sim zoo li lawv yog ib feem ntawm Pawg Thawj Coj. Opengear's clustering txuas txhua Node mus rau Thawj Tswj Hwm nrog kev sib txuas SSH. Qhov no yog ua tiav siv kev lees paub qhov tseem ceeb rau pej xeem, yog li Thawj Tswj Hwm tuaj yeem nkag mus rau txhua Node siv SSH tus khub tseem ceeb (tsis yog siv cov passwords). Qhov no ua kom muaj kev ruaj ntseg kev sib txuas lus ntawm Thawj Tswj Hwm thiab Nodes ua rau Node console server units tau muab faib hauv zos ntawm LAN lossis nyob deb thoob ntiaj teb.
3.6.1 Tsis siv neeg tsim thiab xa cov yuam sij SSH Txhawm rau teeb tsa pej xeem cov ntawv pov thawj qhov tseem ceeb koj yuav tsum xub tsim ib qho RSA lossis DSA tus khub tseem ceeb thiab xa lawv mus rau hauv Thawj Tswj Hwm thiab Node console servers. Qhov no tuaj yeem ua tiav los ntawm Lub Tsev Kawm Ntawv Tseem Ceeb:
44
Cov neeg siv phau ntawv
1. Xaiv Qhov System> Administration ntawm Thawj Tswj Xyuas Kev Tswj Xyuas
2. Tshawb xyuas Tsim SSH cov yuam sij tau txais. 3. Nyem Thov
Tom ntej no koj yuav tsum xaiv seb puas tsim cov yuam sij siv RSA thiab / lossis DSA (yog tias tsis paub meej, xaiv RSA nkaus xwb). Tsim txhua txheej ntawm cov yuam sij yuav tsum tau ob feeb thiab cov yuam sij tshiab rhuav tshem cov yuam sij qub ntawm hom ntawd. Thaum cov tiam tshiab tab tom ua haujlwm, kev ua haujlwm ntawm SSH cov yuam sij (xws li cascading) yuav tsum tsis ua haujlwm kom txog thaum lawv hloov kho nrog cov yuam sij tshiab. Txhawm rau tsim cov yuam sij:
1. Kos lub thawv rau cov yuam sij koj xav tsim. 2. Nyem Thov
3. Thaum cov yuam sij tshiab tau tsim, nyem qhov txuas Nyem qhov no rov qab. Cov yuam sij raug xa mus
mus rau Cov Thawj Coj thiab txuas nrog Nodes.
3.6.2 Manually tsim thiab upload SSH cov yuam sij Hloov pauv yog tias koj muaj RSA lossis DSA tus khub tseem ceeb koj tuaj yeem xa lawv mus rau Cov Thawj Coj thiab Node consoleservers. Txhawm rau rub tus yuam sij rau pej xeem thiab ntiag tug tus khub mus rau Tus Thawj Coj console server:
1. Xaiv Qhov System> Kev Tswj Xyuas ntawm Thawj Tswj Xyuas Kev Tswj Xyuas
2. Xauj rau qhov chaw koj tau khaws RSA (lossis DSA) Public Key thiab upload rau SSH RSA (DSA) Public Key
3. Xauj mus rau qhov khaws cia RSA (los yog DSA) Private Key thiab upload rau SSH RSA (DSA) Private Key 4. Nyem Thov
45
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
Tom ntej no, koj yuav tsum sau npe rau Public Key ua tus Tso Cai Tseem Ceeb ntawm Node. Nyob rau hauv cov ntaub ntawv ntawm ib tug Primary nrog ntau Nodes, koj upload ib RSA los yog DSA pej xeem yuam sij rau txhua Node.
1. Xaiv Qhov System> Kev Tswj Xyuas ntawm Node's Management Console 2. Xauj rau RSA (lossis DSA) Public Key thiab xa mus rau Node's SSH Tso Cai Key
3. Nyem Thov Cov kauj ruam tom ntej yog txhawm rau ntiv tes txhua qhov kev sib txuas tshiab Node-Primary. Cov kauj ruam no ua pov thawj tias koj tab tom tsim kev sib tham SSH rau leej twg koj xav tias koj yog. Ntawm qhov kev sib txuas thawj zaug Node tau txais tus ntiv tes los ntawm Thawj Tswj Hwm siv rau txhua qhov kev sib txuas yav tom ntej: Txhawm rau tsim kom muaj tus ntiv tes thawj zaug nkag rau hauv Primary server li hauv paus thiab tsim kom muaj kev sib txuas SSH rau theNode chaw taws teeb tswj:
# ssh remhost Thaum qhov kev sib txuas SSH tau tsim, koj raug hais kom lees txais tus yuam sij. Teb yog thiab tus ntiv tes ntxiv rau hauv cov npe ntawm cov tswv tsev paub. Yog tias koj raug nug kom muab tus password, muaj teeb meem uploading yuam sij. 3.6.3 Configure Nodes thiab lawv cov chaw nres nkoj serial Pib teeb tsa Nodes thiab teeb tsa Node serial ports los ntawm Primary console server:
1. Xaiv Serial & Network> Cascaded Ports ntawm Thawj Tswj Hwm Console: 2. Txhawm rau ntxiv kev txhawb nqa pawg, xaiv Ntxiv Node
Koj tsis tuaj yeem ntxiv Nodes kom txog thaum koj tau tsim cov yuam sij SSH. Txhawm rau txheeb xyuas thiab teeb tsa lub Node:
46
Cov neeg siv phau ntawv
1. Nkag mus rau tej thaj chaw deb IP Chaw nyob lossis DNS Lub Npe rau Node console server 2. Nkag mus rau cov lus piav qhia luv luv thiab daim ntawv luv luv rau ntawm Node 3. Nkag mus rau tag nrho cov chaw nres nkoj ntawm lub Node unit hauv Number of Ports 4. Nyem Thov. Qhov no tsim qhov SSH qhov nruab nrab ntawm Thawj Tswj Hwm thiab Cov Node tshiab
Cov Serial & Network> Cascaded Ports cov ntawv qhia zaub mov qhia tag nrho cov nodes thiab cov chaw nres nkoj tus lej uas tau muab faib rau hauv Thawj. Yog hais tias tus thawj tswj hwm console muaj 16 qhov chaw nres nkoj ntawm nws tus kheej, cov chaw nres nkoj 1-16 tau muab faib ua ntej rau Thawj Pawg, yog li thawj qhov ntxiv yog muab chaw nres nkoj 17 txuas ntxiv mus. Thaum koj tau ntxiv tag nrho cov Node console servers, Node serial ports thiab cov khoom siv sib txuas tau teeb tsa thiab siv tau los ntawm Primary's Management Console ntawv qhia zaub mov thiab nkag mus tau los ntawm Primary's IP chaw nyob.
1. Xaiv qhov tsim nyog Serial & Network> Serial Chaw nres nkoj thiab Kho kom raug teeb tsa cov chaw nres nkoj serial ntawm lub
Node.
2. Xaiv qhov tsim nyog Serial & Network> Cov neeg siv & Pawg ntxiv rau cov neeg siv tshiab uas muaj cai nkag
mus rau Node serial chaw nres nkoj (los yog txuas ntxiv cov neeg siv uas twb muaj lawm nkag tau cov cai).
3. Xaiv qhov tsim nyog Serial & Network> Trusted Networks los qhia cov chaw nyob network uas
tuaj yeem nkag mus rau nominated serial ports. 4. Xaiv qhov tsim nyog ceeb toom & Logging> Alerts rau configure Node port Connection, State
Changeor Pattern Match ceeb toom. Cov kev hloov pauv uas tau ua nyob rau hauv Thawj Tswj Hwm tau nthuav tawm mus rau tag nrho cov nodes thaum koj nyem Thov.
3.6.4 Tswj Nodes Lub Hauv Paus yog tswj hwm ntawm Node serial ports. Rau example, yog tias hloov tus neeg siv cov cai nkag los yog hloov kho ib qho chaw nres nkoj ntawm qhov chaw pib, qhov hloov kho tshiab files raug xa tawm mus rau txhua Node nyob rau hauv parallel.Txhua Node ua kev hloov pauv rau lawv cov kev teeb tsa hauv zos (thiab tsuas yog hloov pauv uas cuam tshuam rau nws cov chaw nres nkoj tshwj xeeb). Koj tuaj yeem siv Node Management Console hauv zos los hloov cov chaw ntawm txhua qhov chaw nres nkoj serial (xws li hloov cov nqi baud). Cov kev hloov no tau sau dua lwm zaus thaum Lub Tsev Kawm Ntawv Qib Siab xa tawm ib qho kev teeb tsa file hloov tshiab. Thaum lub hauv paus tseem ceeb tswj hwm tag nrho cov node serial chaw nres nkoj ntsig txog kev ua haujlwm, nws tsis yog thawj zaug ntawm node network host kev sib txuas lossis dhau ntawm Node Console Server system. Node ua haujlwm xws li IP, SMTP & SNMP Chaw, Hnub & Sijhawm, DHCP server yuav tsum tau tswj hwm los ntawm kev nkag mus rau txhua qhov ntawm cov haujlwm ncaj qha thiab cov haujlwm no tsis dhau sau thaum cov kev hloov pauv tau nthuav tawm los ntawm Thawj Tswj Hwm. Lub Node's Network Host thiab IPMI nqis yuav tsum tau teeb tsa ntawm txhua qhov.
47
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
Thawj Tswj Hwm Console muab kev sib sau ua ke view ntawm cov chaw rau nws tus kheej thiab tag nrhoNode's serial ports. Lub Hauv Paus Tsev Kawm Ntawv tsis muab kev sib koom ua ke tag nrho view. Rau example, yog tias koj xav paub seb leej twg tau nkag mus rau hauv cov chaw nres nkoj cascaded serial los ntawm thawj, koj yuav pom tias Status > Active Users tsuas yog qhia cov neeg siv nquag ntawm Primary's ports, yog li koj yuav tsum tau sau cov ntawv sau kev cai los muab qhov no view.
3.7 Serial Chaw Redirection (PortShare)
Opengear's Port Share software muab lub virtual serial chaw nres nkoj thev naus laus zis koj lub Windows thiab Linux daim ntawv thov yuav tsum qhib cov chaw taws teeb chaw nres nkoj thiab nyeem cov ntaub ntawv los ntawm cov khoom siv sib txuas uas txuas nrog koj lub console server.
PortShare tau muab pub dawb rau txhua lub console server thiab koj tau tso cai rau nruab PortShare ntawm ib lossis ntau lub khoos phis tawj rau kev nkag mus rau txhua yam khoom siv txuas nrog lub console server chaw nres nkoj. PortShare rau Windows Lub portshare_setup.exe tuaj yeem rub tawm los ntawm ftp site. Saib PortShare User Manual thiab Quick Start kom paub meej txog kev teeb tsa thiab kev ua haujlwm. PortShare rau Linux Tus tsav tsheb PortShare rau Linux maps lub console server serial chaw nres nkoj mus rau tus tswv tsev sim chaw nres nkoj. Opengear tau tso tawm cov portshare-serial-neeg siv raws li qhov qhib qhov chaw siv rau Linux, AIX, HPUX, SCO, Solaris thiab UnixWare. Cov khoom siv no tuaj yeem rub tawm los ntawm ftp site. Qhov no PortShare serial chaw nres nkoj redirector tso cai rau koj siv ib tug serial ntaus ntawv txuas nrog rau tej thaj chaw deb console server li yog hais tias nws twb txuas nrog koj lub zos serial chaw nres nkoj. Portshare-serial-client tsim lub pseudo tty chaw nres nkoj, txuas daim ntawv thov serial mus rau pseudo tty chaw nres nkoj, tau txais cov ntaub ntawv los ntawm pseudo tty chaw nres nkoj, xa mus rau console server los ntawm network thiab tau txais cov ntaub ntawv los ntawm console server los ntawm network thiab xa mus rau nws. mus rau pseudo-tty chaw nres nkoj. .tar file tuaj yeem rub tawm los ntawm ftp site. Saib PortShare User Manual thiab Quick Start kom paub meej txog kev teeb tsa thiab kev ua haujlwm.
48
Cov neeg siv phau ntawv
3.8 Tswj cov cuab yeej
Nplooj ntawv Managed Devices nthuav tawm ib qho kev sib sau ua ke view ntawm tag nrho cov kev sib txuas mus rau ib lub cuab yeej uas tuaj yeem nkag tau thiab saib xyuas los ntawm console server. Rau view cov kev sib txuas rau cov khoom siv, xaiv Serial & Network> Managed Devices
Qhov kev tshuaj ntsuam no qhia tag nrho cov kev tswj xyuas nrog lawv cov lus piav qhia / Sau thiab cov npe ntawm txhua qhov kev sib txuas:
· Serial Chaw nres nkoj # (yog tias txuas txuas txuas nrog) lossis · USB (yog tias txuas nrog USB) · IP Chaw Nyob (yog tias muaj kev sib txuas hauv network) · Lub zog PDU / qhov hluav taws xob cov ntsiab lus (yog tias tsim nyog) thiab ib qho kev sib txuas UPS Cov khoom siv xws li cov servers yuav muaj ntau tshaj ib qho kev sib txuas fais fab (piv txwv li ob lub zog muab) thiab ntau tshaj ib qho kev sib txuas hauv network (xws li rau BMC / kev pabcuam processor). Txhua tus neeg siv tau view cov tswj kev sib txuas ntawm cov cuab yeej no los ntawm kev xaiv Tswj> Devices. Cov thawj coj kuj tuaj yeem hloov kho thiab ntxiv / rho tawm cov khoom tswj hwm no thiab lawv cov kev sib txuas. Txhawm rau hloov kho cov cuab yeej uas twb muaj lawm thiab ntxiv cov kev sib txuas tshiab: 1. Xaiv Kho kom raug ntawm Serial & Network> Tswj cov cuab yeej thiab nyem Ntxiv Kev Sib Txuas 2. Xaiv hom kev sib txuas rau kev sib txuas tshiab (Serial, Network Host, UPS lossis RPC) thiab xaiv
qhov kev sib txuas los ntawm cov npe nthuav tawm ntawm kev teeb tsa tsis tau faib cov tswv tsev / chaw nres nkoj / qhov hluav taws xob
49
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
Txhawm rau ntxiv ib lub network tshiab txuas nrog tswj cov cuab yeej: 1. Tus Thawj Coj ntxiv ib lub network tshiab txuas nrog tswj cov cuab yeej siv Ntxiv Tswv Cuab ntawm Serial & Network> Network Host menu. Qhov no cia li tsim ib tug coj tshiab tswj ntaus ntawv. 2. Thaum ntxiv lub network tshiab txuas nrog RPC lossis UPS lub zog hluav taws xob, koj teeb tsa Network Host, xaiv nws li RPC lossis UPS. Mus rau RPC Kev Sib Txuas lossis UPS Kev Sib Txuas los teeb tsa cov kev sib txuas uas cuam tshuam. Cov cuab yeej tswj hwm tshiab nrog tib lub npe / piav qhia raws li RPC / UPS Lub Tswv Yim tsis tsim kom txog thaum qhov kev sib txuas no ua tiav.
CEEB TOOM Cov npe ntawm lub qhov hluav taws xob ntawm PDU tau tsim tshiab yog qhov hluav taws xob 1 thiab qhov hluav taws xob 2. Thaum koj txuas ib qho khoom tswj hwm tshwj xeeb uas rub lub hwj chim los ntawm lub qhov hluav taws xob, lub qhov hluav taws xob siv lub npe ntawm lub tshuab tswj fais fab.
Txhawm rau ntxiv ib qho tshiab serially txuas nrog tswj cov cuab yeej: 1. Kho qhov chaw nres nkoj siv Serial & Network> Serial Port menu (Saib Tshooj 3.1 Configure Serial Port) 2. Xaiv Serial & Network> Managed Devices thiab nyem Ntxiv Ntaus 3. Nkag mus rau ib lub cuab yeej Lub npe thiab cov lus piav qhia rau lub cuab yeej tswj hwm
4. Nyem Ntxiv Kev Sib Txuas thiab xaiv Serial thiab Chaw nres nkoj uas txuas rau lub cuab yeej tswj hwm
5. Ntxiv UPS/RPC fais fab kev twb kev txuas los yog network kev twb kev txuas los yog lwm yam serial kev twb kev txuas nyem Ntxiv Connection
6. Nyem Thov
Nco tseg
Txhawm rau teeb tsa RPC UPS lossis EMD cov cuab yeej sib txuas, teeb tsa qhov chaw nres nkoj serial, xaiv nws ua Cov Khoom Siv, thiab sau lub npe thiab piav qhia rau cov cuab yeej ntawd hauv Serial & Network> RPC Kev Txuas (lossis UPS Kev Sib Txuas lossis Ib puag ncig). Qhov no tsim cov cuab yeej tswj hwm tshiab sib xws nrog tib lub npe / piav qhia raws li RPC / UPS Tus Tswv Cuab. Cov npe ntawm lub qhov hluav taws xob ntawm PDU tsim tshiab no yog qhov hluav taws xob 1 thiab qhov hluav taws xob 2. Thaum koj txuas lub cuab yeej tswj hwm uas rub lub zog los ntawm lub qhov hluav taws xob, lub qhov hluav taws xob siv lub npe ntawm lub tshuab tswj fais fab.
3.9 IPsec VPN Cov
ACM7000, CM7100, thiab IM7200 suav nrog Openswan, ib qho kev siv Linux ntawm IPsec (IP Security) raws tu qauv, uas tuaj yeem siv los teeb tsa Virtual Private Network (VPN). Lub VPN tso cai rau ntau lub vev xaib lossis cov thawj tswj hwm chaw taws teeb nkag mus rau lub console server thiab cov cuab yeej tswj hwm kev nyab xeeb hauv Is Taws Nem.
50
Cov neeg siv phau ntawv
Tus thawj coj tuaj yeem tsim kom muaj kev sib txuas lus zais VPN kev sib txuas ntawm console servers faib ntawm cov chaw nyob deb thiab lub rooj vag VPN (xws li Cisco router khiav IOS IPsec) ntawm lawv lub chaw haujlwm hauv nruab nrab:
· Cov neeg siv ntawm lub chaw ua haujlwm hauv nruab nrab tuaj yeem nkag mus rau cov chaw taws teeb console tau ruaj ntseg thiab txuas nrog cov khoom siv serial console thiab cov tshuab ntawm Management LAN subnet ntawm qhov chaw nyob deb xws li lawv nyob hauv zos.
· Tag nrho cov chaw taws teeb console no tuaj yeem saib xyuas nrog CMS6000 ntawm lub hauv paus network · Nrog rau kev sib txuas, cov ntaub ntawv serial los ntawm cov maub los ntawm lub hauv paus chaw ua haujlwm tshuab tuaj yeem ruaj ntseg.
txuas nrog cov khoom siv tswj hwm ntawm cov chaw nyob deb Cov thawj coj ntawm txoj kev ua tub rog tuaj yeem siv VPN IPsec software tus neeg siv rau kev nkag mus rau lub console server thiab txhua lub tshuab ntawm Management LAN subnet ntawm qhov chaw nyob deb
Kev teeb tsa ntawm IPsec yog qhov nyuaj heev yog li Opengear muab GUI interface rau kev teeb tsa yooj yim raws li tau piav qhia hauv qab no. Txhawm rau qhib lub qhov rooj VPN:
1. Xaiv IPsec VPN ntawm Serial & Networks zaub mov
2. Nyem Ntxiv thiab ua kom tiav qhov Add IPsec Qhov screen 3. Sau txhua lub npe piav qhia koj xav txheeb xyuas IPsec Qhov koj tau ntxiv xws li
WestStOutlet-VPN
51
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
4. Xaiv txoj kev Authentication uas yuav tsum tau siv, xws li RSA cov npe kos npe lossis ib daim ntawv zais zais (PSK) o Yog tias koj xaiv RSA koj raug nug kom nyem qhov no los tsim cov yuam sij. Qhov no tsim ib qho RSA pej xeem tus yuam sij rau lub console server (sab laug Public Key). Nrhiav tus yuam sij siv rau ntawm lub qhov rooj tej thaj chaw deb, txiav thiab muab tso rau hauv Txoj Cai Public Key
o Yog tias koj xaiv Shared secret, nkag mus rau Pre-shared secret (PSK). PSK yuav tsum phim PSK teeb tsa ntawm lwm qhov kawg ntawm lub qhov
5. Nyob rau hauv Authentication Protocol xaiv qhov kev lees paub raws cai siv. Ob leeg ua pov thawj raws li ib feem ntawm ESP (Encapsulating Security Payload) encryption lossis cais siv AH (Authentication Header) raws tu qauv.
52
Cov neeg siv phau ntawv
6. Nkag mus rau Sab laug ID thiab Txoj Cai ID. Qhov no yog tus cim uas lub zos host/gateway thiab tej thaj chaw deb host/gateway siv rau IPsec kev sib tham thiab authentication. Txhua tus ID yuav tsum suav nrog @ thiab tuaj yeem suav nrog lub npe tsim nyog (piv txwv li left@example.com)
7. Nkag mus rau pej xeem IP lossis DNS chaw nyob ntawm Opengear VPN lub rooj vag no raws li Chaw Nyob sab laug. Koj tuaj yeem tso qhov no dawb paug los siv lub interface ntawm txoj hauv kev
8. Nyob rau hauv Txoj Cai Chaw Nyob nkag mus rau pej xeem IP lossis DNS chaw nyob ntawm thaj chaw deb kawg ntawm lub qhov (tsuas yog qhov kawg ntawm cov chaw taws teeb muaj qhov chaw nyob zoo li qub lossis DynDNS). Txwv tsis pub tso qhov no tseg
9. Yog tias Opengear VPN lub rooj vag ua haujlwm ua lub rooj vag VPN rau ib lub zos subnet (xws li lub console server muaj Management LAN configured) nkag mus rau cov ntaub ntawv ntiag tug subnet hauv Left Subnet. Siv cov cim CIDR (qhov twg tus IP chaw nyob yog ua raws li tus lej thiab tus lej ntawm 'ib' khoom hauv binary notation ntawm netmask). Rau example, 192.168.0.0/24 qhia tus IP chaw nyob uas thawj 24 khoom siv los ua qhov chaw nyob network. Qhov no yog tib yam li 255.255.255.0. Yog tias kev nkag mus rau VPN tsuas yog rau lub console server thiab rau nws cov khoom siv txuas nrog serial console, tawm sab laug Subnet dawb paug
10. Yog tias muaj lub rooj vag VPN ntawm qhov chaw deb kawg, nkag mus rau cov ntaub ntawv ntiag tug subnet hauv Right Subnet. Siv cov cim CIDR thiab tso tseg yog tias tsuas muaj ib lub chaw nyob deb
11. Xaiv qhov Initiate Tunnel yog tias qhov kev sib txuas yuav tsum pib los ntawm Left console server kawg. Qhov no tsuas yog pib los ntawm lub rooj vag VPN (Sab laug) yog tias qhov chaw deb kawg tau teeb tsa nrog qhov chaw zoo li qub (lossis DynDNS) IP chaw nyob
12. Nyem Thov kom txuag tau cov kev hloov pauv
CEEB TOOM Cov ntsiab lus teeb tsa tau teeb tsa ntawm lub console server (xa mus rau sab laug lossis Lub Chaw Hauv Zos) yuav tsum sib phim cov teeb tsa nkag mus thaum teeb tsa chaw taws teeb (Txoj Cai) tus tswv / rooj vag lossis software thov. Saib http://www.opengear.com/faq.html kom paub meej txog kev teeb tsa cov chaw taws teeb no
3.10 OpenVPN
ACM7000, CM7100, thiab IM7200 nrog firmware V3.2 thiab tom qab ntawd suav nrog OpenVPN. OpenVPN siv lub tsev qiv ntawv OpenSSL rau encryption, authentication, thiab ntawv pov thawj, uas txhais tau hais tias nws siv SSL/TSL (Secure Socket Layer/Transport Layer Security) rau kev sib pauv tseem ceeb thiab tuaj yeem nkag mus rau ob qho tib si cov ntaub ntawv thiab kev tswj hwm. Siv OpenVPN tso cai rau lub tsev ntawm cross-platform, point-to-point VPNs siv X.509 PKI (Public Key Infrastructure) lossis kev cai teeb tsa files. OpenVPN tso cai rau kev ruaj ntseg tunneling ntawm cov ntaub ntawv los ntawm ib qho TCP / UDP chaw nres nkoj hla lub network tsis ruaj ntseg, yog li muab kev nyab xeeb nkag mus rau ntau qhov chaw thiab kev tswj xyuas chaw taws teeb nyab xeeb rau lub console server hauv Is Taws Nem. OpenVPN tseem tso cai siv Dynamic IP chaw nyob los ntawm ob tus neeg rau zaub mov thiab cov neeg siv khoom yog li muab cov neeg siv khoom txav mus los. Rau example, ib qho OpenVPN qhov yuav raug tsim los ntawm ib tus neeg siv lub qhov rais roaming thiab Opengear console server nyob rau hauv cov ntaub ntawv chaw. Kev teeb tsa ntawm OpenVPN tuaj yeem nyuaj yog li Opengear muab GUI interface rau kev teeb tsa yooj yim raws li tau piav qhia hauv qab no. Cov ncauj lus kom ntxaws ntxiv muaj nyob ntawm http://www.openvpn.net
3.10.1 Qhib OpenVPN 1. Xaiv OpenVPN ntawm Serial & Networks zaub mov
53
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
2. Nyem Ntxiv thiab ua tiav qhov Add OpenVPN Qhov screen 3. Sau txhua lub npe piav qhia koj xav txheeb xyuas qhov OpenVPN Qhov koj tab tom ntxiv, rau example
NorthStOutlet-VPN
4. Xaiv cov txheej txheem authentication los siv. Txhawm rau txheeb xyuas kev siv daim ntawv pov thawj xaiv PKI (X.509 Daim Ntawv Pov Thawj) lossis xaiv Kev Cai Kho Kom Zoo rau upload kev cai teeb tsa files. Kev cai configurations yuav tsum tau muab cia rau hauv /etc/config.
CEEB TOOM Yog tias koj xaiv PKI, tsim: Daim ntawv pov thawj cais (tseem hu ua tus yuam sij pej xeem). Daim ntawv pov thawj no File yog *.crt file ntaus Private Key rau server thiab txhua tus neeg siv khoom. Qhov no Private Key File yog ib tug *.key file hom
Primary Certificate Authority (CA) daim ntawv pov thawj thiab tus yuam sij uas yog siv los kos npe rau txhua tus neeg rau zaub mov
andclient daim ntawv pov thawj. Daim ntawv pov thawj hauv paus CA no yog *.crt file hom Rau ib lub server, koj kuj yuav xav tau dh1024.pem (Diffie Hellman tsis). Saib http://openvpn.net/easyrsa.html rau cov lus qhia rau kev tswj hwm RSA yooj yim. Rau lwm txoj hauv kev authentication saib http://openvpn.net/index.php/documentation/howto.html#auth.
5. Xaiv lub Device Driver siv, Tun-IP lossis Kais-Ethernet. Lub TUN (network tunnel) thiab TAP (network kais) tsav tsheb yog cov tsav tsheb virtual uas txhawb nqa IP tunneling thiab Ethernet tunneling, feem. TUN thiab TAP yog ib feem ntawm Linux ntsiav.
6. Xaiv UDP lossis TCP raws li Txoj Cai. UDP yog lub neej ntawd thiab cov txheej txheem nyiam rau OpenVPN. 7. Kos los yog uncheck lub Compression khawm kom pab los yog lov tes taw compression. 8. Nyob rau hauv Tunnel hom, xaiv seb qhov no yog Client lossis Server kawg ntawm lub qhov. Thaum khiav li
tus neeg rau zaub mov, lub console server txhawb ntau tus neeg siv txuas rau VPN server hla tib qhov chaw nres nkoj.
54
Cov neeg siv phau ntawv
3.10.2 Configure li Server lossis Client
1. Ua kom tiav Cov Lus Qhia Cov Neeg Siv Khoom lossis Cov Lus Qhia Neeg rau zaub mov nyob ntawm qhov hom hom xaiv. o Yog tias Client tau raug xaiv lawm, Qhov Chaw Nyob Hauv Tsev Chaw Nyob yog qhov chaw nyob ntawm OpenVPN Server. o Yog tias tus neeg rau zaub mov tau raug xaiv, nkag mus rau IP Pool Network chaw nyob thiab IP Pool Network daim npog qhov ncauj rau IP Pool. Lub network txhais los ntawm IP Pool Network chaw nyob / daim npog qhov ncauj yog siv los muab cov chaw nyob rau kev sib txuas cov neeg siv khoom.
2. Nyem Thov kom txuag tau cov kev hloov pauv
55
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
3. Nkag mus rau daim ntawv pov thawj pov thawj thiab files, xaiv Tswj OpenVPN Files tab. Upload los yog xauj rau cov ntawv pov thawj muaj feem cuam tshuam thiab files.
4. Thov khaws cov kev hloov pauv. Txuag files yog tshwm nyob rau hauv liab nyob rau sab xis ntawm lub Upload khawm.
5. Txhawm rau qhib OpenVPN, Kho qhov OpenVPN qhov
56
Cov neeg siv phau ntawv
6. Kos lub pob Enabled. 7. Thov kom txuag tau cov kev hloov CEEB TOOM Nco ntsoov tias lub console server lub sijhawm raug raug thaum ua haujlwm nrog OpenVPN kom zam dhau.
teeb meem authentication.
8. Xaiv Statistics ntawm Status menu kom paub tseeb tias lub qhov yog ua haujlwm.
57
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
3.10.3 Windows OpenVPN Client thiab Server teeb tsa ntu no qhia txog kev teeb tsa thiab teeb tsa ntawm Windows OpenVPN tus neeg siv lossis Windows OpenVPN server thiab teeb tsa VPN txuas rau lub console server. Console servers tsim cov neeg siv Windows config tau txais los ntawm GUI rau Pre-shared Secret (Static Key File) configurations.
Hloov OpenVPN GUI rau Windows software (uas suav nrog cov qauv OpenVPN pob ntxiv rau Windows GUI) tuaj yeem rub tawm los ntawm http://openvpn.net. Thaum nruab rau ntawm lub tshuab Windows, ib qho OpenVPN icon ntxiv rau ntawm Chaw Ceeb Toom nyob rau sab xis ntawm lub taskbar. Txoj nyem rau ntawm lub cim no txhawm rau pib thiab nres VPN kev sib txuas, kho cov teeb tsa, thiab view cov ntaub ntawv.
Thaum OpenVPN software pib khiav, C: Program FilesOpenVPNconfig folder yog scanned rau .opvn files. Cov nplaub tshev no raug kuaj xyuas dua rau kev teeb tsa tshiab files thaum twg OpenVPN GUI icon yog rightclicked. Thaum OpenVPN raug teeb tsa, tsim ib qho kev teeb tsa file:
58
Cov neeg siv phau ntawv
Siv cov ntawv nyeem, tsim ib qho xxxx.ovpn file thiab txuag hauv C: Program FilesOpenVPNconfig. Rau example, C: Txoj haujlwm FilesOpenVPNconfigclient.ovpn
Ib example ntawm OpenVPN Windows client configuration file yog qhia hauv qab no:
# piav qhia: IM4216_client tus neeg siv khoom proto udp verb 3 dev tun tej thaj chaw deb 192.168.250.152 chaw nres nkoj 1194 ca c:\openvpnkeys\ca.crt cert c:\openvpnkeys\client.crt key c:\openvpnkeys\binpers. ua comp-lzo
Ib example ntawm OpenVPN Windows Server configuration file yog qhia hauv qab no:
server 10.100.10.0 255.255.255.0 chaw nres nkoj 1194 keepalive 10 120 proto udp mssfix 1400 persist-key persist-tun dev tun ca:\openvpnkeys\ca.crt cert c:\key\servervp: key dh c:\openvpnkeys\dh.pem comp-lzo verb 1 syslog IM4216_OpenVPN_Server
Windows client/server configuration file kev xaiv yog:
Options #description: Client server proto udp proto tcp mssfix lus qhia
dev tu dev dev tap
Kev piav qhia Qhov no yog cov lus piav qhia txog kev teeb tsa. Cov kab lus pib nrog `#' thiab tsis quav ntsej los ntawm OpenVPN. Qhia meej seb qhov no yuav yog tus neeg siv khoom lossis kev teeb tsa server file. Hauv server configuration file, txhais tus IP chaw nyob pas dej ua ke thiab netmask. Rau example, server 10.100.10.0 255.255.255.0 Teem cov txheej txheem rau UDP lossis TCP. Tus neeg siv khoom thiab tus neeg rau zaub mov yuav tsum siv tib qhov chaw. Mssfix teeb tsa qhov loj tshaj plaws ntawm pob ntawv. Qhov no tsuas yog pab tau rau UDP yog tias muaj teeb meem tshwm sim.
Teeb lub log file theem kev hais lus. Log verbosity theem tuaj yeem teeb tsa los ntawm 0 (yam tsawg kawg) txog 15 (siab tshaj). Rau example, 0 = ntsiag to tshwj tsis yog qhov ua rau tuag taus 3 = nruab nrab cov zis, zoo rau kev siv dav dav 5 = pab nrog kev debugging kev twb kev txuas teeb meem 9 = verbose, zoo heev rau kev daws teeb meem Xaiv 'dev tun' los tsim ib txoj kab IP los yog 'dev kais' los tsim ib qho Ethernet qhov. Tus neeg siv khoom thiab tus neeg rau zaub mov yuav tsum siv tib qhov chaw.
59
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
nyob deb Chaw nres nkoj Keepalive
http-proxy cafile npe>
daim ntawv pov thawjfile npe>
tus yuam sijfile npe>
ua dhfile npe> Nobind persist-key persist-tun cipher BF-CBC Blowfish (default) cipher AES-128-CBC AES cipher DES-EDE3-CBC Triple-DES comp-lzo syslog
Lub hostname / IP ntawm OpenVPN server thaum ua haujlwm ua tus neeg siv khoom. Nkag mus rau DNS hostname lossis qhov chaw nyob IP zoo li qub ntawm lub server. UDP / TCP chaw nres nkoj ntawm lub server. Keepalive siv ping kom muaj kev sib tham OpenVPN ciaj sia. 'Keepalive 10 120' pings txhua 10 vib nas this thiab xav tias cov phooj ywg tej thaj chaw deb poob yog tias tsis muaj ping tau txais ntau dua 120 lub sijhawm thib ob. Yog tias yuav tsum muaj npe nkag mus rau tus neeg rau zaub mov, nkag mus rau lub npe neeg rau zaub mov DNS npe lossis tus IP thiab tus lej chaw nres nkoj. Nkag mus rau CA daim ntawv pov thawj file npe thiab qhov chaw. Tib daim ntawv pov thawj CA file tuaj yeem siv los ntawm server thiab txhua tus neeg siv khoom. Nco tseg: Xyuas kom meej tias txhua '' nyob rau hauv kab ntawv qhia tau hloov nrog ' \'. Rau example, c:openvpnkeysca.crt yuav dhau los ua c:\openvpnkeys\ca.crt Sau tus neeg siv khoom lossis daim ntawv pov thawj server file npe thiab qhov chaw. Txhua tus neeg thov yuav tsum muaj nws daim ntawv pov thawj thiab tus yuam sij files. Nco tseg: Xyuas kom meej tias txhua '' nyob rau hauv kab ntawv qhia tau hloov nrog ' \'. Nkag mus rau file lub npe thiab qhov chaw ntawm tus neeg siv khoom lossis tus neeg rau zaub mov tus yuam sij. Txhua tus neeg thov yuav tsum muaj nws daim ntawv pov thawj thiab tus yuam sij files. Nco tseg: Xyuas kom meej tias txhua '' nyob rau hauv kab ntawv qhia tau hloov nrog ' \'. Qhov no tsuas yog siv los ntawm lub server. Nkag mus rau txoj hauv kev rau tus yuam sij nrog Diffie-Hellman tsis. 'Nobind' yog siv thaum cov neeg siv khoom tsis tas yuav khi rau qhov chaw nyob hauv zos lossis tus lej chaw nres nkoj tshwj xeeb. Qhov no yog cov ntaub ntawv nyob rau hauv feem ntau cov neeg siv configurations. Qhov kev xaiv no txwv tsis pub rov muab cov yuam sij hla rov pib dua. Qhov kev xaiv no txwv tsis pub kaw thiab rov qhib dua ntawm TUN / TAP cov khoom siv thoob plaws kev rov pib dua. Xaiv ib tug cryptographic cipher. Tus neeg siv khoom thiab tus neeg rau zaub mov yuav tsum siv tib qhov chaw.
Pab kom compression ntawm OpenVPN txuas. Qhov no yuav tsum tau qhib rau ob tus neeg siv khoom thiab lub server. Los ntawm lub neej ntawd, cov cav nyob hauv syslog lossis, yog tias khiav raws li kev pabcuam ntawm Qhov rai, hauv Program FilesOpenVPNlog directory.
Txhawm rau pib qhov OpenVPN qhov tom qab tsim cov neeg siv khoom / server teeb tsa files: 1. Txoj nyem rau ntawm OpenVPN icon hauv thaj chaw Ceeb Toom 2. Xaiv cov neeg siv khoom tshiab lossis kev teeb tsa server. 3. Nyem Txuas
4. Lub log file yog tshwm sim raws li kev sib txuas tau tsim
60
Cov neeg siv phau ntawv
5. Thaum tsim tau, OpenVPN icon qhia cov lus qhia txog kev sib txuas ua tiav thiab muab IP. Cov ntaub ntawv no, nrog rau lub sijhawm sib txuas tau tsim, muaj los ntawm scrolling hla OpenVPN icon.
3.11 PPTP VPN
Console servers suav nrog PPTP (Point-to-Point Tunneling Protocol) server. PPTP yog siv rau kev sib txuas lus ntawm lub cev lossis kev sib txuas virtual. PPP cov ntsiab lus kawg txhais qhov chaw nyob IP virtual rau lawv tus kheej. Txoj kev mus rau cov tes hauj lwm tuaj yeem txhais tau nrog cov chaw nyob IP no ua lub rooj vag, uas ua rau muaj kev xa mus hla lub qhov. PPTP tsim ib qhov av ntawm lub cev PPP qhov kawg thiab thauj cov ntaub ntawv hla lub qhov.
Lub zog ntawm PPTP yog nws qhov yooj yim ntawm kev teeb tsa thiab kev koom ua ke rau hauv Microsoft infrastructure uas twb muaj lawm. Nws feem ntau yog siv rau kev sib txuas ib leeg Windows cov neeg siv khoom. Yog tias koj nqa koj lub khoos phis tawj portable ntawm kev mus ncig ua lag luam, koj tuaj yeem hu rau tus lej hauv zos txuas rau koj qhov chaw muab kev pabcuam hauv Is Taws Nem (ISP) thiab tsim kev sib txuas thib ob (tunnel) rau hauv koj lub chaw ua haujlwm thoob plaws Is Taws Nem thiab muaj tib qho kev nkag mus rau koj. neeg network zoo li yog tias koj tau txuas ncaj qha los ntawm koj lub chaw ua haujlwm. Telecommuters tseem tuaj yeem teeb tsa VPN qhov hla ntawm lawv cov cable modem lossis DSL txuas rau lawv lub zos ISP.
61
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
Txhawm rau teeb tsa PPTP kev sib txuas los ntawm cov chaw taws teeb Windows tus neeg siv khoom rau koj cov khoom siv Opengear thiab hauv zos network:
1. Qhib thiab teeb tsa PPTP VPN neeg rau zaub mov ntawm koj lub cuab yeej Opengear 2. teeb tsa VPN cov neeg siv nyiaj ntawm Opengear cov cuab yeej thiab pab kom tsim nyog
authentication 3. Kho cov neeg siv khoom VPN ntawm cov chaw nyob deb. Tus neeg siv tsis xav tau software tshwj xeeb li
PPTP Server txhawb tus txheej txheem PPTP tus neeg siv software suav nrog Windows NT thiab tom qab 4. Txuas rau cov chaw taws teeb VPN 3.11.1 Pab kom PPTP VPN server 1. Xaiv PPTP VPN ntawm Serial & Networks zaub mov
2. Xaiv lub Enable check box kom pab tau PPTP neeg rau zaub mov 3. Xaiv qhov tsawg kawg nkaus authentication yuav tsum tau. Kev nkag tau raug tsis kam lees rau cov neeg siv nyob deb nroog sim ua
txuas siv cov txheej txheem authentication tsis muaj zog dua li cov txheej txheem xaiv. Cov txheej txheem tau piav qhia hauv qab no, los ntawm qhov muaj zog tshaj plaws mus rau qhov tsis muaj zog. · Encrypted Authentication (MS-CHAP v2): Hom kev lees paub zoo tshaj plaws los siv; qhov no yog
qhov kev xaiv pom zoo · Weakly Encrypted Authentication (CHAP): Qhov no yog hom tsis muaj zog ntawm encrypted password
authentication siv. Nws tsis pom zoo kom cov neeg siv txuas nrog qhov no vim nws muab kev tiv thaiv tus password tsawg heev. Tsis tas li ntawd nco ntsoov tias cov neeg siv txuas nrog CHAP tsis tuaj yeem nkag mus rau kev nkag mus
62
Cov neeg siv phau ntawv
· Unencrypted Authentication (PAP): Nov yog cov ntawv nyeem lo lus zais authentication. Thaum siv hom authentication no, tus neeg siv tus password yog kis tsis tau.
· Tsis yog 4. Xaiv qhov yuav tsum tau encryption Level. Kev nkag tau raug tsis kam lees rau cov neeg siv nyob deb nroog sim txuas
uas tsis siv qib encryption no. 5. Hauv Chaw Nyob Hauv Zos nkag mus rau IP chaw nyob txhawm rau muab rau tus neeg rau zaub mov kawg ntawm kev sib txuas VPN 6. Hauv Chaw Nyob Hauv Chaw Nkag Nkag Nkag mus rau lub pas dej ntawm IP chaw nyob txhawm rau muab rau tus neeg siv khoom tuaj lub VPN
kev sib txuas (piv txwv li 192.168.1.10-20). Qhov no yuav tsum yog qhov chaw nyob IP dawb lossis ntau qhov chaw nyob los ntawm lub network uas cov neeg siv nyob deb tau muab rau thaum txuas nrog Opengear appliance 7. Nkag mus rau qhov xav tau ntawm qhov siab tshaj plaws Transmission Unit (MTU) rau PPTP interfaces rau hauv MTU teb (defaults rau 1400) 8. Hauv DNS Server teb, nkag mus rau IP chaw nyob ntawm DNS neeg rau zaub mov uas muab IP chaw nyob rau txuas PPTP cov neeg siv 9. Hauv WINS Server teb, nkag mus rau IP chaw nyob ntawm WINS server uas muab IP chaw nyob rau txuas PPTP tus neeg siv khoom 10. Pab kom Verbose Logging los pab daws teeb meem kev sib txuas 11. Nyem Thov Chaw 3.11.2 Ntxiv ib tus neeg siv PPTP 1. Xaiv Cov Neeg Siv & Pawg ntawm Serial & Networks ntawv qhia zaub mov thiab ua tiav cov teb raws li tau hais hauv ntu 3.2. 2. Xyuas kom tseeb tias pawg pptpd tau raug kuaj xyuas, kom tso cai nkag mus rau PPTP VPN server. Nco tseg - cov neeg siv hauv pab pawg no muaj lawv cov passwords khaws cia hauv cov ntawv ntshiab. 3. Ceev faj ntawm tus neeg siv lub npe thiab tus password rau thaum koj xav tau txuas rau VPN kev twb kev txuas 4. Nyem Thov
63
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
3.11.3 Teeb tsa cov chaw taws teeb PPTP tus neeg siv kom paub tseeb tias cov chaw taws teeb VPN tus neeg siv PC muaj kev sib txuas hauv Is Taws Nem. Txhawm rau tsim kev sib txuas VPN thoob plaws Is Taws Nem, koj yuav tsum teeb tsa ob qhov kev sib txuas sib txuas. Ib qho kev sib txuas yog rau ISP, thiab lwm qhov kev sib txuas yog rau VPN qhov mus rau Opengear khoom siv. CEEB TOOM Cov txheej txheem no teeb tsa tus neeg siv PPTP hauv Windows Professional operating system. Cov kauj ruam
Tej zaum yuav txawv me ntsis nyob ntawm koj lub network nkag lossis yog tias koj siv lwm qhov version ntawm Windows. Cov lus qhia ntxaws ntxiv muaj los ntawm Microsoft web qhov chaw. 1. Nkag mus rau koj tus neeg siv Windows nrog cov cai tswj hwm 2. Los ntawm Network & Sib Koom Chaw ntawm Pawg Tswj Xyuas Xaiv Network Txuas thiab tsim kev sib txuas tshiab
64
Cov neeg siv phau ntawv
3. Xaiv Siv Kuv Kev Sib Txuas Hauv Is Taws Nem (VPN) thiab nkag mus rau IP Chaw Nyob ntawm Opengear appliance Txhawm rau txuas cov chaw taws teeb VPN cov neeg siv khoom mus rau lub network hauv zos, koj yuav tsum paub tus username thiab password rau PPTP tus account koj ntxiv, nrog rau Internet IP. chaw nyob ntawm cov khoom siv Opengear. Yog tias koj ISP tsis tau faib koj qhov chaw nyob IP zoo li qub, xav txog kev siv DNS kev pabcuam dynamic. Txwv tsis pub koj yuav tsum hloov kho PPTP tus neeg siv khoom teeb tsa txhua zaus koj qhov chaw nyob IP Internet hloov.
65
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
3.12 Hu rau Tsev
Txhua lub console servers suav nrog Hu Xov Tooj Hauv Tsev uas pib teeb tsa qhov chaw ruaj ntseg SSH los ntawm lub console server mus rau qhov chaw nruab nrab ntawm Opengear Lighthouse. Lub console server sau npe ua tus neeg sib tw ntawm Lighthouse. Thaum tau txais qhov ntawd nws dhau los ua Managed Console Server.
Lighthouse saib xyuas Managed Console Server thiab cov thawj coj tuaj yeem nkag mus rau cov chaw taws teeb tswj Managed Console Server los ntawm Lighthouse. Qhov kev nkag mus no muaj txawm tias thaum lub chaw taws teeb console server nyob tom qab tus neeg sab nrauv firewall lossis muaj qhov chaw nyob tus IP uas tsis siv tau.
Nco tseg
Lighthouse tswj pej xeem qhov tseem ceeb authenticated SSH kev sib txuas rau txhua tus ntawm nws Managed Console Servers. Cov kev sib txuas no yog siv los saib xyuas, qhia thiab nkag mus rau Managed Console Servers thiab cov cuab yeej tswj hwm txuas nrog Managed Console Server.
Txhawm rau tswj hwm Local Console Servers, lossis console servers uas tuaj yeem ncav cuag los ntawm Lighthouse, SSHconnections tau pib los ntawm Lighthouse.
Txhawm rau tswj cov chaw taws teeb Console Servers, lossis console servers uas yog firewalled, tsis tuaj yeem, lossis lwm yam tsis tuaj yeem ncav cuag los ntawm Lighthouse, SSH kev sib txuas yog pib los ntawm Managed ConsoleServer los ntawm kev sib txuas Hu rau Tsev.
Qhov no ua kom muaj kev nyab xeeb, kev sib txuas lus muaj tseeb thiab ua rau Managed Console Servers units tau muab faib rau hauv ib cheeb tsam ntawm LAN, lossis nyob deb thoob ntiaj teb.
3.12.1 Teem Hu Tus Neeg Sib Tw Hauv Tsev Kom teeb tsa lub console server ua tus neeg sib tw hu xov tooj hauv tsev ntawm Lighthouse:
1. Xaiv Hu Tsev ntawm Serial & Network zaub mov
2. Yog tias koj tseem tsis tau tsim lossis xa ib khub SSH tseem ceeb rau lub console server, ua li ntawd ua ntej pib
3. Nyem Ntxiv
4. Nkag mus rau tus IP chaw nyob lossis DNS npe (xws li qhov chaw nyob DNS dynamic) ntawm Lighthouse.
5. Nkag mus rau tus password uas koj tau teeb tsa hauv CMS raws li Hu Rau Tsev Password.
66
Cov neeg siv phau ntawv
6. Nyem Thov Cov kauj ruam no pib qhov kev sib txuas Hu Hauv Tsev los ntawm console server mus rau Lighthouse. Qhov no tsim SSHlistening chaw nres nkoj ntawm Lighthouse thiab teeb tsa lub console server ua tus neeg sib tw.
Thaum tus neeg sib tw tau txais kev pom zoo ntawm Lighthouse ib qho SSH qhov rau lub console server raug xa rov qab mus rau qhov kev sib txuas Hu rau Tsev. Lub console server tau dhau los ua Managed Console Server thiab Lighthouse tuaj yeem txuas rau thiab saib xyuas nws los ntawm qhov qhov. 3.12.2 Txais Hu rau Tsev neeg tus neeg sib tw ua Managed Console Server ntawm Lighthouse Tshooj no muab ib qho ntxivview ntawm kev teeb tsa Lighthouse los saib xyuas console Lighthouse servers uas txuas nrog ntawm Hu rau Tsev. Yog xav paub ntxiv mus saib Lighthouse User Guide:
1. Sau tus password tshiab Hu rau Tsev ntawm lub Lighthouse. Tus password no yog siv los lees txais
Hu rau Homeconnections los ntawm cov neeg sib tw console servers
2. Lub Lighthouse tuaj yeem tiv tauj los ntawm console server nws yuav tsum muaj tus IP zoo li qub
chaw nyob lossis, yog siv DHCP, raug teeb tsa kom siv qhov kev pabcuam DNS dynamic
Lub Configure> Managed Console Servers screen ntawm Lighthouse qhia cov xwm txheej ntawm
local andremote Managed Console Servers thiab cov neeg sib tw.
Ntu Managed Console Servers qhia cov console servers raug saib xyuas los ntawm
Lighthouse.Qhov Kev Tshawb Nrhiav Console Servers seem muaj:
o Local Console Servers drop-down uas teev tag nrho cov console servers uas nyob rau ntawm
tib lub subnet li Lighthouse, thiab tsis raug saib xyuas
67
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
o Cov Chaw Taws Teeb Cov Chaw Taws Teeb Nruab Nrab poob qis uas teev tag nrho cov console servers uas tau tsim kev sib txuas Hu rau Tsev thiab tsis raug saib xyuas (piv txwv li cov neeg sib tw). Koj tuaj yeem nyem Refresh kom hloov tshiab
Txhawm rau ntxiv ib tus neeg sib tw console rau hauv Managed Console Server daim ntawv teev npe, xaiv nws los ntawm cov chaw taws teeb Console Servers nco-down daim ntawv teev npe thiab nyem Ntxiv. Nkag mus IP Chaw Nyob thiab SSH Chaw Nres Nkoj (yog tias cov teb no tsis tau ua tiav nws pib) thiab sau cov lus piav qhia thiab lub npe tshwj xeeb rau Managed Console server koj tab tom ntxiv
Nkag mus rau qhov chaw deb hauv paus Password (piv txwv li System Password uas tau teem rau ntawm no Managed Console server). Lo lus zais no yog siv los ntawm Lighthouse los tshaj tawm nws pib tsim SSH yuam sij thiab tsis khaws cia. Nyem Thov. Lub Lighthouse teeb tsa kev ruaj ntseg SSH kev sib txuas mus rau thiab los ntawm Managed Console Server thiab khaws nws cov Managed Devices, user account details and configured alerts 3.12.3 Hu Lub Tsev mus rau ib tug generic central SSH server Yog hais tias koj txuas mus rau ib tug generic SSH server (tsis yog Lighthouse) Koj tuaj yeem teeb tsa Advanced settings: · Nkag mus rau SSH Server Port thiab SSH User. · Sau cov ntsiab lus rau qhov chaw nres nkoj SSH rau pem hauv ntej los tsim
Los ntawm kev xaiv Listening Server, koj tuaj yeem tsim qhov chaw nres nkoj Chaw Taws Teeb rau pem hauv ntej los ntawm Server mus rau chav tsev no, lossis Chaw nres nkoj hauv zos rau pem hauv ntej ntawm chav tsev no mus rau Server:
68
Cov neeg siv phau ntawv
· Qhia kom muaj chaw nres nkoj mloog mus rau pem hauv ntej los ntawm, tawm hauv daim teb no dawb paug los faib qhov chaw nres nkoj tsis siv · Nkag mus rau Lub Hom Phiaj Server thiab Lub Hom Phiaj Chaw nres nkoj uas yuav yog tus tau txais kev sib txuas xa mus
3.13 IP Passthrough
IP Passthrough yog siv los ua ib qho kev sib txuas ntawm modem (xws li hauv xov tooj ntawm tes modem) zoo li kev sib txuas Ethernet tsis tu ncua mus rau tus thib peb-tog downstream router, tso cai rau tus downstream router siv modem kev twb kev txuas ua thawj los yog thaub qab WAN interface.
Cov cuab yeej Opengear muab cov modem IP chaw nyob thiab DNS cov ntsiab lus rau cov khoom siv qis dua DHCP thiab hla kev sib txuas hauv network mus thiab los ntawm modem thiab router.
Thaum IP Passthrough hloov Opengear rau hauv modem-rau-Ethernet ib nrab choj, qee qhov kev pabcuam 4 (HTTP / HTTPS / SSH) yuav raug txiav tawm ntawm Opengear (Kev Pabcuam cuam tshuam). Tsis tas li ntawd, cov kev pabcuam uas khiav ntawm Opengear tuaj yeem pib kev sib txuas ntawm cov xovtooj ntawm tes ywj pheej ntawm cov downstream router.
Qhov no tso cai rau Opengear txuas ntxiv siv rau kev tswj hwm tawm ntawm pawg thiab ceeb toom thiab tseem raug tswj hwm ntawm Lighthouse, thaum nyob hauv IP Passthrough hom.
3.13.1 Downstream Router Teeb Kom siv kev sib txuas tsis ua haujlwm ntawm lub router downstream (aka Failover rau Cellular lossis F2C), nws yuav tsum muaj ob lossis ntau dua WAN interfaces.
CEEB TOOM Failover hauv IP Passthrough ntsiab lus yog ua los ntawm downstream router, thiab cov built-in out-ofband failover logic ntawm Opengear tsis muaj nyob rau hauv IP Passthrough hom.
Txuas lub Ethernet WAN interface ntawm tus downstream router mus rau Opengear's Network Interface lossis Management LAN chaw nres nkoj nrog Ethernet cable.
Configure no interface ntawm downstream router kom tau txais nws lub network teeb tsa ntawm DHCP. Yog tias yuav tsum tau ua tsis tiav, teeb tsa lub router downstream rau kev poob qis ntawm nws qhov kev sib txuas tseem ceeb thiab Ethernet chaw nres nkoj txuas nrog Opengear.
3.13.2 IP Passthrough Pre-Configuration Cov kauj ruam uas yuav tsum tau ua ua ntej kom pab IP Passthrough yog:
1. Configure the Network Interface thiab qhov twg siv Management LAN interfaces nrog zoo li qub network chaw. · Nyem Serial & Network> IP. · Rau Network Interface thiab nyob qhov twg muaj feem xyuam rau Management LAN, xaiv Static rau txoj kev teeb tsa thiab nkag mus rau hauv lub network teeb tsa (saib seem npe Network Configuration rau cov lus qhia ntxaws). · Rau lub interface txuas nrog downstream router, koj tuaj yeem xaiv ib lub network tshwj xeeb uas lub network no tsuas muaj nyob nruab nrab ntawm Opengear thiab downstream router thiab tsis nquag siv tau. · Rau lwm qhov interface, teeb tsa nws raws li koj xav tau ib txwm muaj ntawm lub network hauv zos. · Rau ob qho tib si interfaces, tawm qhov rooj vag.
2. Kho lub modem nyob rau hauv ib txwm On Out-of-band hom.
69
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
· Rau kev sib txuas ntawm tes, nyem qhov System> Dial: Internal Cellular Modem. · Xaiv Qhib Dial-Out thiab nkag mus rau cov ntaub ntawv xov tooj xws li APN (saib ntu Cellular Modem
Kev sib txuas rau cov lus qhia ntxaws). 3.13.3 IP Passthrough Configuration Kom teeb tsa IP Passthrough:
· Nyem Serial & Network> IP Passthrough thiab kos Enable. · Xaiv lub Opengear Modem siv rau kev sib txuas hauv qab. · Optionally, nkag mus rau MAC Chaw Nyob ntawm downstream router lub interface txuas. Yog tias MAC chaw nyob yog
tsis tau teev tseg, Opengear yuav dhau mus rau thawj cov khoom siv downstream thov qhov chaw nyob DHCP. · Xaiv qhov Opengear Ethernet Interface los siv rau kev sib txuas rau lub router downstream.
· Nyem Thov. 3.13.4 Service Intercepts Cov no tso cai rau Opengear txuas ntxiv muab kev pabcuam, piv txwv liample, rau kev tswj tawm-ntawm-band thaum nyob hauv IP Passthrough hom. Kev sib txuas mus rau qhov chaw nyob modem ntawm qhov chaw nres nkoj uas tau teev tseg yog tswj hwm los ntawm Opengear es tsis dhau mus rau hauv lub router downstream.
· Rau qhov yuav tsum tau kev pab cuam ntawm HTTP, HTTPS los yog SSH, kos Enable · Optionally hloov lub Intercept Port mus rau lwm qhov chaw nres nkoj (xws li 8443 rau HTTPS), qhov no yuav pab tau yog tias koj
xav txuas ntxiv tso cai rau lub router downstream kom nyob twj ywm nkag tau ntawm nws qhov chaw nres nkoj tsis tu ncua. 3.13.5 IP Passthrough Status Refresh nplooj ntawv rau view ntu xwm txheej. Nws qhia txog modem's Sab Nraud IP Chaw nyob tau dhau los, Internal MAC Chaw Nyob ntawm lub downstream router (tsuas yog populated thaum lub downstream router lees txais DHCP daim ntawv xauj tsev), thiab tag nrho cov xwm txheej khiav ntawm IP Passthrough kev pabcuam. Tej zaum koj yuav raug ceeb toom rau cov xwm txheej tsis ua haujlwm ntawm lub router downstream los ntawm kev teeb tsa Routed Data Usage Check nyob rau hauv Alerts & Logging> Auto-Response. 3.13.6 Caveats Qee qhov downstream routers tej zaum yuav incompatible nrog lub rooj vag txoj kev. Qhov no tuaj yeem tshwm sim thaum IP Passthrough tab tom txuas rau 3G cellular network qhov chaw nyob qhov rooj yog qhov chaw nyob point-to-point chaw nyob thiab tsis muaj cov ntaub ntawv subnet muaj. Lub Opengear xa DHCP netmask ntawm 255.255.255.255. Cov cuab yeej siv ib txwm ua qhov no ua ib tus tswv tsev txoj hauv kev ntawm lub interface, tab sis qee cov khoom siv qis qis yuav muaj teeb meem.
70
Cov neeg siv phau ntawv
Kev cuam tshuam rau cov kev pabcuam hauv zos yuav tsis ua haujlwm yog tias Opengear siv txoj hauv kev tsis yog lub modem. Tsis tas li ntawd, lawv yuav tsis ua haujlwm tshwj tsis yog tias qhov kev pabcuam tau qhib thiab nkag mus rau cov kev pabcuam tau qhib (saib System> Services, hauv qab Service Access tab nrhiav Dialout / Cellular).
Kev sib txuas sab nraud los ntawm Opengear mus rau cov kev pab cuam nyob deb tau txais kev txhawb nqa (xws li xa SMTP email ceeb toom, SNMP ntxiab, tau txais NTP lub sijhawm, IPSec tunnels). Muaj qhov pheej hmoo me me ntawm kev sib txuas tsis ua haujlwm yuav tsum yog ob qho tib si Opengear thiab cov khoom siv downstream sim nkag mus rau tib lub UDP lossis TCP chaw nres nkoj ntawm tib lub chaw taws teeb nyob rau tib lub sijhawm thaum lawv tau xaiv xaiv tib qhov chaw nres nkoj hauv zos.
3.14 Configuration dhau DHCP (ZTP)
Cov khoom siv Opengear tuaj yeem npaj tau thaum lawv pib khau raj los ntawm DHCPv4 lossis DHCPv6 server siv config-over-DHCP. Kev npaj ntawm cov tes hauj lwm tsis ntseeg tuaj yeem ua kom yooj yim los ntawm kev muab cov yuam sij ntawm USB flash drive. ZTP kev ua haujlwm tseem tuaj yeem siv los ua qhov hloov kho firmware ntawm kev sib txuas pib rau lub network, lossis rau npe rau hauv Lighthouse 5 piv txwv.
Kev Npaj Cov kauj ruam ib txwm rau kev teeb tsa hauv lub network ntseeg tau yog:
1. Configure ib hom Opengear ntaus ntawv. 2. Txuag nws qhov kev teeb tsa raws li Opengear thaub qab (.opg) file. 3. Xaiv System> Configuration Backup> Remote Backup. 4. Nyem Txuag thaub qab. Ib tug thaub qab configuration file — qauv-name_iso-format-date_config.opg — yog rub tawm los ntawm Opengear ntaus ntawv mus rau hauv zos. Koj tuaj yeem txuag qhov kev teeb tsa ua xml file: 1. Xaiv System > Configuration Backup > XML Configuration. Ib qho editable teb uas muaj cov
kev teeb tsa file hauv XML hom ntawv tshwm. 2. Nyem rau hauv daim teb kom nws nquag. 3. Yog tias koj tab tom khiav ib qho browser ntawm Windows lossis Linux, right-click thiab xaiv Xaiv Tag nrho los ntawm cov
contextual menu lossis nias Control-A. Txoj cai-nias thiab xaiv Luam los ntawm cov ntawv qhia zaub mov lossis nias Control-C. 4. Yog tias koj siv ib qho browser ntawm macOS, xaiv Kho kom raug> Xaiv Txhua lossis nias Command-A. Xaiv Kho> Luam lossis nias Command-C. 5. Nyob rau hauv koj nyiam cov ntawv nyeem-editor, tsim ib daim ntawv tshiab khoob, muab cov ntaub ntawv theej rau hauv daim ntawv khoob thiab txuag cov ntaub ntawv. file. Txawm li cas los xij file-npe koj xaiv, nws yuav tsum suav nrog .xml filenpe suf. 6. Luam qhov khaws tseg .opg lossis .xml file mus rau ib tug pej xeem-facing directory ntawm a file server ua haujlwm tsawg kawg yog ib qho ntawm cov kev cai hauv qab no: HTTPS, HTTP, FTP lossis TFTP. (Tsuas yog HTTPS tuaj yeem siv tau yog tias kev sib txuas ntawm file neeg rau zaub mov thiab yuav tsum-tau-configured Opengear ntaus ntawv taug kev hla ib lub network tsis ntseeg.). 7. Kho koj tus neeg rau zaub mov DHCP kom suav nrog 'tus neeg muag khoom tshwj xeeb' kev xaiv rau Opengear li. (Qhov no yuav ua tiav nyob rau hauv ib txoj kev DHCP server-specific txoj kev. URL ntawm qhov luam tawm .opg lossis .xml file hauv cov kauj ruam saum toj no. Txoj hlua xaiv yuav tsum tsis pub tshaj 250 cim thiab nws yuav tsum xaus rau hauv .opg lossis .xml.
71
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
8. Txuas lub cuab yeej Opengear tshiab, txawm tias lub Hoobkas rov pib dua lossis Config-Erased, rau lub network thiab siv lub zog. Nws yuav siv sijhawm li 5 feeb rau lub cuab yeej rov pib dua nws tus kheej.
Example ISC DHCP (dhcpd) server configuration
Hauv qab no yog ib qho example DHCP server configuration fragment rau kev ua hauj lwm ib .opg configuration duab ntawm ISC DHCP server, dhcpd:
xaiv qhov chaw opengear code dav 1 qhov ntev dav 1; kev xaiv opengear.config-url code 1 = text; chav kawm “opengear-config-over-dhcp-test” {
phim yog kev xaiv tus neeg muag khoom-chav kawm-tus cim ~~ “^Opengear/”; vendor-option-space opengear; kev xaiv opengear.config-url "https://example.com/opg/${class}.opg”; }
Qhov kev teeb tsa no tuaj yeem hloov kho kom hloov kho cov duab teeb tsa siv lub opengear.image-url xaiv, thiab muab URI rau cov duab firmware.
Teeb tsa thaum lub LAN tsis ntseeg Yog tias qhov kev sib txuas ntawm cov file neeg rau zaub mov thiab ib tug yuav tsum-configured Opengear ntaus ntawv suav nrog ib tug tsis ntseeg network, ib tug ob txhais tes mus kom ze yuav txo tau qhov teeb meem.
CEEB TOOM Qhov kev qhia no qhia txog ob kauj ruam ntawm lub cev uas kev ntseeg siab tuaj yeem nyuaj, yog tias tsis ua tsis tau, txhawm rau tsim kom tiav. Ua ntej, cov saw hlau saib xyuas los ntawm kev tsim cov ntaub ntawv nqa USB flash drive rau nws qhov kev xa tawm. Qhov thib ob, ob txhais tes txuas USB flash drive rau Opengear ntaus ntawv.
· Tsim ib daim ntawv pov thawj X.509 rau Opengear ntaus ntawv.
· Muab daim ntawv pov thawj thiab nws tus yuam sij ntiag tug rau hauv ib qho file npe client.pem.
· Luam client.pem rau hauv USB flash drive.
· Teeb tsa HTTPS server xws li nkag mus rau .opg lossis .xml file yog txwv rau cov neeg siv khoom uas tuaj yeem muab daim ntawv pov thawj X.509 tus neeg siv khoom tsim los saum toj no.
· Muab ib daim qauv ntawm daim ntawv pov thawj CA uas kos npe rau HTTP server daim ntawv pov thawj - ca-bundle.crt - mus rau USB flash drive bearing client.pem.
· Ntxig USB flash drive rau hauv lub cuab yeej Opengear ua ntej txuas lub zog lossis lub network.
· Txuas ntxiv cov txheej txheem los ntawm 'Copy the saved .opg or .xml file mus rau ib tug pej xeem-facing directory ntawm a file server' saum toj no siv HTTPS raws tu qauv ntawm tus neeg siv khoom thiab cov neeg rau zaub mov.
Npaj ib lub USB tsav thiab tsim daim ntawv pov thawj X.509 thiab tus yuam sij ntiag tug
· Tsim daim ntawv pov thawj CA kom tus neeg siv khoom thiab tus neeg rau zaub mov Certificate Signing Requests (CSRs) tuaj yeem kos npe.
# cp /etc/ssl/openssl.cnf . # mkdir -p exampleCA/newcerts # ncha 00 > exampleCA/serial # ncha 00 > exampleCA/crlnumber # kov exampleCA/index.txt # openssl genrsa -out ca.key 8192 # openssl req -new -x509 -days 3650 -key ca.key -out demoCA/cacert.pem
-subj /CN = ExampleCA # cp demoCA/cacert.pem ca-bundle.crt
Cov txheej txheem no tsim ib daim ntawv pov thawj hu ua ExampleCA tab sis ib daim ntawv pov thawj lub npe siv tau. Tsis tas li ntawd, cov txheej txheem no siv openssl ca. Yog tias koj lub koom haum muaj kev lag luam thoob plaws, ruaj ntseg CA tiam txheej txheem, uas yuav tsum tau siv los hloov.
72
Cov neeg siv phau ntawv
· Tsim daim ntawv pov thawj server.
# openssl genrsa -out server.key 4096 # openssl req -new -key server.key -out server.csr -subj /CN=demo.example.com # openssl ca -days 365 -in server.csr -out server.crt
-tus yuam sijfile ca.key -policy policy_anything -batch -notext
CEEB TOOM Lub hostname lossis IP chaw nyob yuav tsum yog tib txoj hlua siv hauv kev pabcuam URL. Hauv example saum toj no, lub hostname yog demo.example.com.
· Tsim daim ntawv pov thawj tus neeg siv khoom.
# openssl genrsa -out client.key 4096 # openssl req -new -key client.key -out client.csr -subj /CN=ExampleClient # openssl ca -days 365 -in client.csr -out client.crt
-tus yuam sijfile ca.key -policy policy_anything -batch -notext # cat client.key client.crt > client.pem
· Format USB flash drive ua ib lub ntim FAT32.
· Tsiv tus client.pem thiab ca-bundle.crt files mus rau flash drive's root directory.
Debugging ZTP teeb meem Siv ZTP cav feature los debug ZTP teeb meem. Thaum lub cuab yeej sim ua haujlwm ZTP, cov ntaub ntawv teev lus sau rau /tmp/ztp.log ntawm lub cuab yeej.
Hauv qab no yog ib qho example lub log file los ntawm kev ua tiav ZTP khiav.
# cat /tmp/ztp.log Wed Dec 13 22:22:17 UTC 2017 [5127 notice] odhcp6c.eth0: restoring config via DHCP Wed Dec 13 22:22:17 UTC 2017 [5127 notice] odhcp6c.eth0: restoring config via DHCP Wed Dec 10 13:22:22 UTC 27 [2017 notice] odhc5127:eth waiting 6s. rau kev sib tham txog Lub Kaum Ob Hlis 0 13: 22: 22 UTC 27 [2017 ceeb toom] odhcp5127c.eth6: NTP skipped: tsis muaj neeg rau zaub mov Wed Dec 0 1: 07: 2218 UTC 1350 [44 info] odhcp1c.eth13: vendorspec http://[fd22:22:27:2017::5127]/tftpboot/config.sh' Wed Dec 6 0:2:13 UTC 22 [22 info] odhcp27c.eth2017: vendorspec.5127 (n/a) Wed Dec 6 0:3:13 UTC 22 [22 info] odhcp27c.eth2017: vendorspec.5127 (n/a) Wed Dec 6 0:4:13 UTC 22 [22 info] odhcp27c.eth2017: vendorspec. ) Wed Dec 5127 6:0:5 UTC 13 [22 info] odhcp22c.eth28: vendorspec.2017 (n/a) Wed Dec 5127 6:0:6 UTC 13 [22 info] odhcp22c.ethc28: vendors /a) Wed Dec 2017 5127:6:0 UTC 2 [XNUMX info] odhcpXNUMXc.ethXNUMX: no firmware to download (vendorspec.XNUMX) backup-url: sim http://[fd07:2218:1350:44::1]/tftpboot/config.sh … backup-url: yuam wan config hom rau DHCP thaub qab-url: teem hostname rau acm7004-0013c601ce97 backup-url: load succeeded Wed Dec 13 22:22:36 UTC 2017 [5127 notice] odhcp6c.eth0: Success config load Wed Dec 13 22:22:36 UTC 2017 [5127 info] odhcp6c.eth0: (no lighthouse configuration) 3/4/5) Wed Dec 6 13:22:22 UTC 36 [2017 notice] odhcp5127c.eth6: provisioning tiav, not rebooting
Qhov yuam kev raug kaw hauv lub cav no.
3.15 Nkag mus rau hauv Lighthouse
Siv Kev Nkag Mus Rau Hauv Lighthouse txhawm rau tso npe Opengear cov cuab yeej rau hauv Lighthouse piv txwv, muab kev nkag mus rau hauv nruab nrab rau cov chaw nres nkoj console, thiab tso cai rau nruab nrab ntawm Opengear li.
Saib Lighthouse User Guide rau cov lus qhia rau tso npe Opengear li rau hauv Lighthouse.
73
Tshooj 3: Serial Chaw nres nkoj, ntaus ntawv thiab cov neeg siv teeb tsa
3.16 Pab kom DHCPv4 Relay
Ib qho kev pabcuam DHCP relay xa mus rau DHCP pob ntawv ntawm cov neeg siv khoom thiab cov chaw taws teeb DHCP servers. DHCP relay kev pabcuam tuaj yeem qhib rau ntawm Opengear console server, yog li nws tau mloog rau DHCP cov neeg siv khoom ntawm cov kev xaiv qis dua, qhwv thiab xa lawv cov lus mus rau DHCP servers siv ob qho tib si routing, lossis tshaj tawm ncaj qha mus rau sab saud interfaces. Tus neeg sawv cev ntawm DHCP yog li tau txais DHCP cov lus thiab tsim cov lus DHCP tshiab kom xa tawm mus rau lwm qhov sib cuam tshuam. Hauv cov kauj ruam hauv qab no, console servers tuaj yeem txuas rau circuit-ids, Ethernet lossis cell modems siv DHCPv4 Relay kev pabcuam.
DHCPv4 Relay + DHCP Option 82 (circuit-id) Infrastructure - Local DHCP server, ACM7004-5 rau relay, lwm yam khoom siv rau cov neeg siv khoom. Txhua yam khoom siv nrog lub luag haujlwm LAN tuaj yeem siv los ua tus relay. Hauv no example, 192.168.79.242 yog qhov chaw nyob rau tus neeg siv khoom relayed interface (raws li tau hais tseg hauv DHCP server configuration file saum toj no) thiab 192.168.79.244 yog lub thawv relay lub chaw nyob sab saud, thiab enp112s0 yog qhov chaw nruab nrab ntawm DHCP server.
1 Infrastructure - DHCPv4 Relay + DHCP Option 82 (circuit-id)
Cov kauj ruam ntawm DHCP Server 1. Teeb tsa lub zos DHCP v4 server, tshwj xeeb, nws yuav tsum muaj "tus tswv" nkag raws li hauv qab no rau tus neeg siv DHCP: host cm7116-2-dac {# hardware ethernet 00:13:C6:02:7E :41; host-identifier xaiv agent.circuit-id "relay1"; taag-chaw nyob 192.168.79.242; } Nco tseg: kab "hardware ethernet" tau tawm tswv yim tawm, yog li DHCP server yuav siv qhov "circuit-id" teeb tsa los muab qhov chaw nyob rau cov neeg siv khoom. 2. Rov pib DHCP Server kom rov ua nws cov kev hloov pauv file. pkill -HUP dhcpd
74
Cov neeg siv phau ntawv
3. Manually ntxiv tus tswv txoj hauv kev rau tus neeg siv khoom "relayed" interface (qhov cuam tshuam tom qab DHCP relay, tsis yog lwm qhov cuam tshuam tus neeg siv kuj yuav muaj:
sudo ip txoj kev ntxiv 192.168.79.242/32 ntawm 192.168.79.244 dev enp112s0 Qhov no yuav pab kom tsis txhob muaj teeb meem asymmetric routing thaum tus neeg siv khoom thiab DHCP neeg rau zaub mov xav nkag mus rau ib leeg ntawm tus neeg siv khoom relayed interface, thaum tus neeg siv khoom muaj lwm yam cuam tshuam hauv tib qho. subnet ntawm DHCP chaw nyob pas dej.
Nco tseg: Cov kauj ruam no yog ib qho yuav tsum-yuav tsum tau txhawb nqa dhcp server thiab cov neeg siv khoom tuaj yeem nkag mus rau ib leeg.
Cov kauj ruam ntawm Relay lub thawv - ACM7004-5
1. Teeb WAN/eth0 nyob rau hauv static lossis dhcp hom (tsis yog hom unconfigured). Yog tias nyob rau hauv hom zoo li qub, nws yuav tsum muaj tus IP chaw nyob hauv qhov chaw nyob ntawm DHCP server.
2. Siv qhov kev teeb tsa no los ntawm CLI (qhov twg 192.168.79.1 yog DHCP server chaw nyob)
config -s config.services.dhcprelay.enabled=on config -s config.services.dhcprelay.lowers.lower1.circuit_id=relay1 config -s config.services.dhcprelay.lowers.lower1.role=lan config -s config.service .dhcprelay.lowers.total=1 config -s config.services.dhcprelay.servers.server1=192.168.79.1 config -s config.services.dhcprelay.servers.total=1 config -s config.services.dhcprelay.uppers.uppers. .role=wan config -s config.services.dhcprelay.uppers.total=1
3. Qhov qis dua ntawm DHCP relay yuav tsum muaj qhov chaw nyob IP zoo li qub nyob rau hauv qhov chaw nyob ntawm DHCP server. Hauv no example, giaddr = 192.168.79.245
config -s config.interfaces.lan.address=192.168.79.245 config -s config.interfaces.lan.mode=static config -s config.interfaces.lan.netmask=255.255.255.0 config -d config.interfaces.lan. -r ipconfig
4. Tos ib lub sijhawm luv luv rau tus neeg siv khoom kom tau DHCP daim ntawv xauj tsev los ntawm kev xa xov.
Cov kauj ruam ntawm tus neeg siv khoom (CM7116-2-dac hauv no example los yog lwm yam OG CS)
1. Txuas tus neeg siv lub LAN/eth1 mus rau lub relay lub LAN/eth1 2. Configure tus neeg siv lub LAN kom tau IP chaw nyob ntawm DHCP raws li ib txwm muaj 3. Thaum tus clie
Cov ntaub ntawv / Cov ntaub ntawv
 |
opengear ACM7000 Chaw Taws Teeb Chaw Taws Teeb [ua pdf] Tus neeg siv phau ntawv ACM7000 Chaw Taws Teeb Qhov Rooj, ACM7000, Chaw Taws Teeb Chaw Taws Teeb, Qhov Rooj Qhov Rooj, Rooj vag |