Lantronix XPort manual Encryption Tutorial, Command syntax telnet

Page 42

4: Using Setup Mode for Configuration

Encryption only applies to the port selected for tunneling (default 10001), regardless of whether you are using TCP or UDP.

Generally, one of two situations applies.

‹Encrypted XPort-to-XPort communication (and in the future, XPort communication to other Lantronix device servers) is supported without extra effort.

‹The XPort uses standard AES encryption protocols. To communicate successfully, products and applications on the peer side must use the same protocols and the same shared key as the XPort. To ease the development process, Lantronix provides an AES encryption DLL for Windows and protocol source code samples. See the document entitled Encryption Enabling Your Serial Device on the Lantronix web site (www.lantronix.com) for more instructions and sample code.

The following export agreement is required for the optional encryption:

I agree that I will not export or re-export this software file to a national resident of Cuba, Iran, Iraq, Libya, North Korea, Sudan, Syria or any other country to which the United States has embargoed goods; or to anyone on the US Treasury Department's list of Specially Designated Nationals and Blocked Persons, US Commerce Department's Table of Denial Orders and Entitles List, or the US State Department's Debarred List. By receiving this software, I am agreeing to the foregoing and I am representing and warranting that I am not located in, under the control of, or a national or resident of any such country or on any such list.

Encryption Tutorial

Rijndael is the block cipher algorithm chosen by the National Institute of Science and Technology (NIST) as the Advanced Encryption Standard (AES) to be used by the US government. The XPort supports 128, 192 and 256 bit encryption key lengths.

Follow the steps below to configure AES encryption on the XPort.

Note: Configuring encryption should be done through a local connection to the serial port of the XPort, or via a secured network connection. Initial configuration information including the encryption key is sent in clear text over the network.

1.Telnet to the configuration port on the XPort (Port 9999).

Example Telnet command syntax is shown below. In the command examples below, replace the x's with the IP address of the XPort.

Microsoft Windows command syntax: telnet xxx.xxx.xxx.xxx 9999 Unix

command syntax: telnet xxx.xxx.xxx.xxx:9999

2.When prompted, press Enter to go into Setup Mode.

3.At the Change Setup menu, select option 6 for security.

4.When prompted to enable encryption, press Y.

5.Enter the encryption key length when prompted. XPort supports 128-, 192- and 256-bit encryption key lengths.

XPort™ User Guide

42

Page 41 Page 43
Image 42
Page 41 Page 43
Contents XPort User Guide Copyright and Trademark Disclaimer and Revisions Date Rev CommentsContents Mail Settings Gpio Interface Using This Guide Purpose and AudienceChapter Summary Additional Documentation XPort Integration GuideIntroduction CapabilitiesApplications Hardware Address Protocol SupportAddresses and Port Numbers IP AddressAssigning an IP Address Getting Started Using DeviceInstaller to Assign an IP AddressInstalling DeviceInstaller Required InformationAssigning an IP Address Select Assign a specific IP address and click NextUsing Web-Manager to Configure the Unit Lantronix Web-ManagerUnit Configuration Settings Server Properties Port Properties Edit the following fields as necessaryConnect Mode Settings Flush Mode Input BufferDedicated Connection Additional Settings Packing AlgorithmFactory Settings Update SettingsUsing Setup Mode for Configuration Accessing Setup ModeUsing a Telnet Connection Using the Serial Port Setup Menu OptionsSetup Mode Configuration Parameters Set Gateway IP Address Server Configuration Network ConfigurationChange Telnet Configuration Password Netmask Number of Bits for Host PartChannel 1 Configuration Serial Port Parameters Dhcp NameBaudrate Mode Option Interface ModeMode XPort-485 only Common I/F Mode Setting Binary HexFlow Control Option Hex FlowPort Number Port Numbers Reserved forConnect Mode Connect Mode OptionIncoming Connection Response Autostart Automatic Connection HostlistModem Mode Datagram TypeWithout Echo 11. Modem Mode Messages Message MeaningFull Verbose Remote IP Address Modem Mode Function Command12. Modem Mode Commands Remote Port13. Disconnect Mode Options Flush Mode Buffer FlushingDisconnect Mode Option 14. Flush Mode OptionsPack Control OptionSend Characters DisConnTime Inactivity TimeoutChannel Port Password Telnet Terminal TypeMail Settings Mail SetupExpert Settings Trigger Setup Monitor Mode at Bootup ARP Cache timeout in seconds High CPU Performance mode RS-485 TX Enable Active LevelDisable Telnet Setup Security SettingsDisable Snmp Snmp Community NameDisable Web Server Disable Tftp Firmware UpgradeDisable Port 77FE Hex Disable Echo PortsCommand syntax telnet Encryption TutorialDisable Port 77F0 Hex Factory DefaultsEnable Enhanced Password Channel 1 Configuration DefaultsSecurity Settings Defaults Exit Configuration ModeExpert Settings Defaults Mail SettingsGpio Interface Configurable PinsFeatures Control ProtocolCommands Byte 0 Command TypesGuidelines Command 12h, Get Active Levels Command 10h, Get FunctionsCommand 11h, Get Directions Command 13h, Get Current StatesCommand 1Ah, Set Active Levels Command 1Bh, Set StatesExamples Command details Obtaining Firmware Reloading Firmware Using TftpUpdating Firmware ROM FileUser Guide Monitor Mode Commands Entering Monitor Mode via the Serial PortEntering Monitor Mode via the Network Port Monitoring the NetworkCommand Command Name Function Response MeaningTroubleshooting Problems and Error MessagesProblem/Message Reason Solution Address and Network Class Please try again Caps Lock is not onServer, the No Connection With Technical Support Email eutechsupp@lantronix.com
Top Page Image Contents