Lindy MC5-IP manual Ports, Security issues with ports, Router/firewall address

Page 100

Ports

If you accept the analogy of IP addresses being rather like telephone numbers, then think of ports as extension numbers. In a company of any size, you generally wouldn’t expect the accounts department to share the same telephone with the technical department. Although their calls may all be related to the same company, they concern very different aspects of that company.

It is the same with IP network connections. Although you have only one network link into your computer and only one IP address (phone number), you are probably performing many different tasks through that one link, often at the same time. Thus, when you browse the web your outgoing requests and the incoming information are all channelled through port 80. When you send an email, it travels through port 25 and when you transfer files you are, without knowing it, using port 20.

At the “border crossing” between the wider Internet and every local network attached to it, there is a router that is usually combined with a firewall. One of its main tasks is to direct incoming traffic to the correct place within its local network. A key piece of information to help it do this is the port number:

User accesses the company

Internet

User with VNC viewer accesses

IP address: 129.7.1.10 (this

website at: 129.7.1.10 (this

 

 

automatically uses port 5900).

automatically uses port 80).

 

 

 

 

 

Router/firewall address: 129.7.1.10

 

 

Router is programmed to send port 5900

 

 

VNC traffic to local address 192.168.0.3

 

 

and port 80 web traffic to local address

 

 

192.168.0.42

KVM Switch

Web server

MC5-IP has the local IP

Web server has the local

address: 192.168.0.3

IP address: 192.168.0.42

Security issues with ports

The settings of port numbers become important when the MC5-IP is situated behind a network firewall. In order for a remote VNC viewer or web browser to make contact with your MC5-IP, it is necessary for the firewall to allow communication through a particular numbered port to occur.

One specific function of firewalls is to restrict access to ports in order to prevent malicious attackers using them as a route into your network. Every new port that is opened offers a new possibility for hackers and so the number of accessible ports is purposefully kept to a minimum. In such cases, it may be advantageous to change one or both MC5-IP ports to use the same number. The other alternative is to place the MC5-IP unit outside the firewall and take full advantage of its secure operation features – see Networking issues for details.

IMPORTANT: The correct configuration of routers and firewalls requires advanced networking skills and intimate knowledge of the particular network. LINDY cannot provide specific advice on how to configure your network devices and strongly recommend that such tasks are carried out by a qualified professional.

   



99

Page 99 Page 101
Image 100
Page 99 Page 101
Contents MC5-IP KVM Switch Contents Further information Index Local user One user can be connected directly to the MC5  Many computers CAM formatsMC5 features front and rear IndicatorsPower control port Upgrade port Modem port IP models only Front panel buttonsWhat’s in the box What you may additionally need SwitcMounting Rack bracketsConnections   To connect the local user port Local userMC5 rear panel Cable lengths for remote user locations Remote user via User StationTo connect a remote user To connect the Global user IP network port Global user IP network portIP network link To connect a computer system Access ModuleCategory 5, 5e or Cable from CAM To connect a modem or Isdn adapter Modem/ISDN portMC5 rear panel Cable from modem Or Isdn adapter To connect the power supply Power in connectionOutput lead from Power adapter Power control port To connect and address the switch boxesSee also Cascading multiple unitsCascade tree How cascade connections operate Addressing computers in a cascade 43 41Tips for successful cascading Connecting MC5 units in cascadeTo connect units in cascade Testing specific links to cascaded computers Using cascaded computersTo test a specific link Multiple video head connections Slave MC5Master MC5 Slave monitor Master monitorConfiguration Overall initial configurationConfiguration menus To access the configuration menu local and remote usersTo access the configuration menu global users HotkeysGeneral security and configuration steps Configuration menus layoutTo enable general security To set an Admin passwordAccess to all computers Press Access to no computers Press Registering users edit user listTo create/edit user accounts Cross markers indicate whichRegistering computers edit computer list Tips when creating/editing computer entriesTo create/edit computer entries See Remote user skew adjustment for details Video compensationComputer video compensation To apply computer video compensationCompensation will not be applied Currently selected cable lengthRemote user video compensation To display a suitable high contrast imageTo apply remote user video compensation If the image controls cannot provide a crisp imageRemote user skew adjustment To use skew adjustmentUsing the supplied skew pattern Creating a skew test patternConfiguration mode and permanently save all settings To select an autoscan mode AutoscanningTo select an autoscan period To define an autoscan listSaving and restoring configuration settings Preparations for configuration save/loadTo reset MC5 models What to do if the Admin password has been forgottenTo reset the MC5-IP models Which restore setting do I use? To restore mouse operation when hot pluggingHot plugging and mouse restoration Recognising an IntelliMouse-style mouseTo use the initial IP-configuration sequence Initial IP configurationTo configure IP-specific settings IP configuration by global user To configure IP details from a global user locationMC5-IP encryption settings Encryption settingsViewer encryption settings Positioning the MC5-IP in the network Networking issues   Port settings Placing the MC5-IP behind a router or firewallAddressing Firewall/router addressTo discover a DHCP-allocated IP address DNS addressingEnsuring sufficient security Placing the MC5-IP alongside the firewallPorts Power switching configuration Power control sequencesTo configure the power sequences for each host computer To control two or more ports simultaneouslyKvmadmin utility Kvmadmin command ip address parametersKvmadmin -getconfig kvm1.cfg Kvmadmin -setusers users.csvPerforming upgrades Items required to use the upgrade utilityUpgrading MC5 models and CAMs To use the KVM Firmware Uploader utilitySelect the items to be upgraded Select the upgrade file to be usedWhere Vxxx is the upgrade file version number Commence the upgradeTo upgrade MC5-IP models Upgrading MC5-IP modelsAccessing the MC5 Front panel controlsMC5 models MC5-IP modelsLocal and remote user access To gain access as a local or remote userTo select a computer using the front panel controls Selecting a computerTo select a computer using hotkeys Standard hotkeysAbove or for even longer cascaded computers Keep Pressed down until all other Numbers have been enteredTo select a computer using mouse buttons To select a computer using the on-screen menuTo select a computer using mouse buttons Advanced method Selecting cascaded computers Logging in and outConfirmation box To change banner colours or disable the banner To use the Routing status featureReminder banner Routing statusTo switch a computer on or off Power switching via configuration menuUser preferences and functions Global user access Global user access via VNC viewer To access via the VNC viewerTo download the VNC viewer 1 Open your Web browser Enter the MC5 address here and click OKGlobal user access via web browser To access via your web browserWhen using the viewer window Using the viewer windowMenu bar Mouse pointers ConfigureTo select a host Access mode shared/private Power switching via viewerAuto calibrate Re-synchronise mouseSingle Mouse Mode ControlsMouse Control Resync MouseKVM switch menu When entering codesVideo Settings Keyboard Control InfoUsing automatic configurations Increased by 50% when a slow link is detectedDetect such noise and adjust the threshold accordingly Setting the Threshold manuallyAccess via dial up modem or Isdn link If you need to enter a port numberTo initiate a dial up link To enter a port number in a Web browserViewer encryption settings Supported web browsersWindows LinuxTroubleshooting Getting assistanceAppendix 1 Configuration menus To access the configuration menusFunctions User Preferences Mouse Switching Autoscan ModeGlobal Preferences Screen SaverUser Timeout OSD Dwell TimeRS232 Mouse Type Mouse TypeSetup Options Keypads ControlsLanguage Exclusive UseAutomatic Logout DDC Source Settings AUTO, LOCAL, Default DDC Refresh Settings AT START, DisabledAdvanced Options DDC OptionsConfigure IP port Unit ConfigurationUnit Name Time and DateNetwork Configuration Modem Configuration Reset ConfigurationWhat is IP access control? Clearing IP access controlTo clear IP access control To access the remote configuration pages Appendix 2 Configuration pages via viewerMain configuration Logged on users User accounts Unit configuration Admin PasswordHardware Version Firmware VersionAdvanced unit configuration Time & date configuration Network configuration IP Access ControlMAC address IP Network MaskSetting IP access control To define a new IP access control entryTo reorder access control entries To edit/remove access control entriesPower control port Serial port configurationModem port Host configuration Erase Host ConfigurationAdd entry for unrecognised host To create a new host entryPort Direct Port/host addressing using Port DirectExamples Logging and status To copy and paste the logSyslog Server IP Address For further details To get hereClick here to access the options Colour/EncodingAuto select Preferred encodingEnable all inputs Disable all inputs view-only modeInputs CustomiseScaling MiscDefaults Reload Defaults SaveIdentities Load / SaveAppendix 4 VNC viewer window options Encoding and colour level Appendix 5 Browser viewer optionsSecurity IP addresses Appendix 6 Addresses, masks and portsNet masks Net masks the binary explanation Inside a bit-wise and functionBinary equivalent Binary octet afterCalculating the mask for IP access control Single locationsAll locations Address rangesPorts Security issues with portsRouter/firewall address Power switch to power switch daisy chain cable RS232 serial flash upgrade cable6pin mini-DIN Female 9pin D-type FemaleMulti-head synchronisation cable SLAVE2 end 9pin D-type malePermissible key presses Appendix 8 Hotkey sequence codesCreating macro sequences Appendix 9 Supported video modes Warranty Safety informationSafety considerations when using power switches with MC5 General Public License LinuxEnd user licence agreement European EMC directive 89/336/EEC Radio Frequency EnergyFCC Compliance Statement United States USA Germany France ItaliaIndex 109 110

MC5-IP specifications

The Lindy MC5-IP is an innovative and versatile presentation switcher designed for a variety of audiovisual settings, making it ideal for professional environments such as conferences, classrooms, and event spaces. Its primary objective is to provide seamless connectivity and efficient management of multiple video sources, enhancing the overall user experience in presentations and broadcasts.

One of the standout features of the MC5-IP is its capability to handle multiple input formats. It supports HDMI, DisplayPort, and VGA connections, allowing users to easily switch between various devices such as laptops, projectors, and media players. This flexibility promotes a smooth transition during presentations, minimizing downtime and interruptions.

The device is equipped with cutting-edge video processing technology, which ensures high-quality output at resolutions up to 4K. This high definition support is crucial in today’s digital landscape, as it provides crystal-clear images and vibrant colors, essential for impactful presentations. Furthermore, the MC5-IP employs advanced scaling technology that adjusts the output resolution to match the capabilities of the connected display, ensuring optimal visual quality.

Integration capabilities are another highlight of the MC5-IP. It can be easily integrated into existing AV systems and works seamlessly with popular control systems, such as Crestron and AMX. This compatibility allows for centralized control, making it easier for operators to manage video sources, adjust settings, and coordinate multiple displays without the need for complex setups.

In addition, the Lindy MC5-IP features an intuitive user interface that simplifies operation. The device can be controlled via a touch screen, remote control, or web-based application, providing users with convenient options to manage their presentations. The user-friendly design minimizes the learning curve, making it accessible for individuals who may not be tech-savvy.

The MC5-IP also prioritizes reliability and durability. It is built with high-quality components that ensure long-term performance, making it a dependable choice for frequently used environments. Finally, its compact form factor allows for easy transport and installation, catering to the dynamic needs of modern presentation scenarios.

In summary, the Lindy MC5-IP is a robust presentation switcher designed with professionalism in mind. Its versatility, high-resolution support, integration options, user-friendly interface, and durability make it an essential tool for anyone looking to enhance their AV presentations.
Top Page Image Contents